CyberSecurity updates
Updated: 2024-10-29 18:20:31 Pacfic


trendmicro.com
New 'More_eggs' Backdoor Targets Recruiters with Fake Job Applications - 23d

A new backdoor, named ‘More_eggs’, has emerged, specifically targeting recruiters using a spear-phishing campaign with malicious LNK files disguised as fake job applications. This attack vector, delivered through phishing emails, aims to infiltrate systems and provide attackers with unauthorized access. The malicious LNK files, when executed, silently download and run a Python distribution package containing a malicious Python script. This script is designed to establish persistence and provide the attacker with remote access to the compromised system. Organizations are urged to implement robust security measures, including email security solutions, employee training on phishing awareness, and regular security audits, to protect themselves from this evolving threat.

securityonline.info
Chinese Engineer Indicted for Alleged Cyber Espionage Campaign Against US Aerospace Industry: Spear Phishing Attacks and Data Theft - 10d

Song Wu, a Chinese national, has been indicted on charges related to an alleged multi-year spear phishing campaign targeting the US aerospace industry. The indictment claims that Wu engaged in activities designed to steal sensitive information, potentially impacting national security. The case highlights the ongoing threat of cyber espionage and the importance of implementing robust cybersecurity measures to protect sensitive data and intellectual property within critical industries.

cyble.com
Gamaredon APT Launches Spear-Phishing Campaign Targeting Ukrainian Military Personnel - 22d

The Gamaredon APT (Advanced Persistent Threat) group has launched a spear-phishing campaign targeting Ukrainian military personnel. The group, also known as Primitive Bear or Armageddon, is a Russian-affiliated threat actor with a history of targeting Ukrainian government and critical infrastructure. The campaign uses emails disguised as military summons, with malicious attachments designed to deliver payloads that potentially exfiltrate sensitive data from compromised systems. This campaign highlights the ongoing cyber warfare threat in Ukraine.


This site is an experimental news aggregator using feeds I personally follow. You can reach me using contacts documented at my website here (https://royans.net/) if you have feedback. You can also find FlagThis at Mastodon.