Nation-State Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Nation-State

Mandiant Uncovers Custom Backdoors on End-of-Life Juniper Routers

China-nexus cyberespionage group caught planting custom backdoors on end-of-life Juniper Networks Junos OS routers.

Ryan NaraineMarch 12, 2025

Nation-State

1,600 Victims Hit by South American APT’s Malware

South American cyberespionage group Blind Eagle has infected over 1,600 organizations in Colombia in a recent campaign.

Ionut ArghireMarch 11, 2025

Malware & Threats

How Social Engineering Sparked a Billion-Dollar Supply Chain Cryptocurrency Heist

The $1.4 billion ByBit cryptocurrency heist combined social engineering, stolen AWS session tokens, MFA bypasses and a rigged JavaScript file.

Ryan NaraineMarch 6, 2025

China's Salt Typhoon hacks US telecoms firms

Malware & Threats

China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain

Silk Typhoon APT caught using IT supply chain entry points to conduct reconnaissance, siphon data, and move laterally on victim networks.

Ryan NaraineMarch 5, 2025

Nation-State

Iranian Hackers Target UAE Firms With Polyglot Files

An Iranian threat actor was seen targeting UAE organizations with polyglot files to deliver a new backdoor named Sosano.

Ionut ArghireMarch 5, 2025

Nation-State

North Korean Fake IT Workers Pose as Blockchain Developers on GitHub

North Korean fake IT workers are creating personas on GitHub to land blockchain developer jobs at US and Japanese firms.

Ionut ArghireMarch 5, 2025

Nation-State

In Other News: China’s Undersea Spying, Hotel Spyware, Iran’s Disruptive Attacks

Noteworthy stories that might have slipped under the radar: Chinese repair ships might be spying on undersea communications, spyware found at hotel check-ins, UK...

SecurityWeek NewsMay 24, 2024

Nation-State

Newly Detected Chinese Group Targeting Military, Government Entities

Unfading Sea Haze has been targeting military and government entities in South China Sea countries since 2018.

Ionut ArghireMay 23, 2024

Cloud Security

Google Cites ‘Monoculture’ Risks in Response to CSRB Report on Microsoft

Google is invoking the 'monoculture' word in response to a scathing U.S. government report on Microsoft's inadequate cybersecurity practices.

Ryan NaraineMay 20, 2024

Nation-State

MITRE Hack: China-Linked Group Breached Systems in December 2023

MITRE has shared more details on the recent hack, including the new malware involved in the attack and a timeline of the attacker’s activities.

Eduard KovacsMay 7, 2024

Nation-State

Iranian Cyberspies Hit Targets With New Backdoors

Iranian state-sponsored group APT42 is targeting NGOs, government, and intergovernmental organizations with two new backdoors.

Ionut ArghireMay 6, 2024

Email Security

US Says North Korean Hackers Exploiting Weak DMARC Settings

The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks.

Ionut ArghireMay 3, 2024

Nation-State

ArcaneDoor Espionage Campaign Targeting Cisco Firewalls Linked to China

An analysis of IoCs suggests that a Chinese threat group may be behind the recent ArcaneDoor espionage campaign targeting Cisco firewalls.

Eduard KovacsMay 3, 2024

Malware & Threats

Cuttlefish Malware Targets Routers, Harvests Cloud Authentication Data

Cuttlefish malware platform roaming around enterprise SOHO routers capable of covertly harvesting public cloud authentication data from internet traffic.

Ryan NaraineMay 1, 2024

Nation-State

Cisco Raises Alarm for ‘ArcaneDoor’ Zero-Days Hitting ASA Firewall Platforms

Cisco warns that nation state-backed hackers are exploiting at least two zero-day vulnerabilities in its ASA firewall platforms to plant malware on telecommunications and...

Ryan NaraineApril 24, 2024