Chinese APT’s favorite vulnerabilities revealed

Categories: Exploits and vulnerabilities

Categories: News

Tags: Chinese APT

Tags: advanced persistent threat

Tags: APT

Tags: CISA

Tags: NSA

Tags: FBI

Tags: security advisory

CISA, the NSA and the FBI have compiled a list of the vulnerabilities targeted by state-sponsorted threat actors from China.

(Read more…)

The post Chinese APT’s favorite vulnerabilities revealed appeared first on Malwarebytes Labs.

Read more

Immigration organisations targeted by APT group Evilnum

Credit to Author: Christopher Boyd| Date: Thu, 30 Jun 2022 14:13:47 +0000

Immigration organisations are being targeted by the APT group Evilnum, using spear phishing to send malicious Word documents.

The post Immigration organisations targeted by APT group Evilnum appeared first on Malwarebytes Labs.

Read more

Securing the MSP: why they’re their own worst enemy

Credit to Author: William Tsing| Date: Thu, 30 Jan 2020 16:00:00 +0000

Behind each cyberattack on the MSP is typically a system left unpatched, asset management undone, security officer not hired, or board who sees investment in security as a cost center rather than a long-term investment.

Categories:

Tags:

(Read more…)

The post Securing the MSP: why they’re their own worst enemy appeared first on Malwarebytes Labs.

Read more

Securing the MSP: their own worst enemy

Credit to Author: William Tsing| Date: Thu, 30 Jan 2020 16:00:00 +0000

Behind each cyberattack on the MSP is typically a system left unpatched, asset management undone, security officer not hired, or board who sees investment in security as a cost center rather than a long-term investment.

Categories:

Tags:

(Read more…)

The post Securing the MSP: their own worst enemy appeared first on Malwarebytes Labs.

Read more

A week in security (July 15 – 21)

Credit to Author: Malwarebytes Labs| Date: Mon, 22 Jul 2019 15:50:35 +0000

A roundup of cybersecurity news from July 15–21, including the Zoom camera vulnerability, Extenbro, Sodinokibi, Magecart, and cybersecurity challenges facing the education sector.

Categories:

Tags:

(Read more…)

The post A week in security (July 15 – 21) appeared first on Malwarebytes Labs.

Read more

The Advanced Persistent Threat files: APT10

Credit to Author: William Tsing| Date: Wed, 16 Jan 2019 17:00:00 +0000

While security companies are getting good at analyzing the tactics of nation-state threat actors, they still struggle with placing these actions in context and making solid risk assessments. So in this series, we’re going to take a look at a few APT groups, and see how they fit into the larger threat landscape—starting with APT10.

Categories:

Tags:

(Read more…)

The post The Advanced Persistent Threat files: APT10 appeared first on Malwarebytes Labs.

Read more

Reverse engineering DUBNIUM –Stage 2 payload analysis

Recently, we blogged about the basic functionality and features of the DUBNIUM advanced persistent threat (APT) activity group Stage 1 binary and Adobe Flash exploit used during the December 2015 incident (Part 1, Part 2). In this blog, we will go through the overall infection chain structure and the Stage 2 executable details. Stage 2 executables…

Read more