Nation-State Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Nation-State

Chinese APT Mustang Panda Updates, Expands Arsenal

The Chinese state-sponsored group Mustang Panda has used new and updated malicious tools in a recent attack.

Ionut Arghire4 hours ago

Nation-State

China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games

China accuses three alleged U.S. NSA operatives of cyberattacks targeting critical infrastructure and the Asian Games in Harbin.

Associated Press2 days ago

Nation-State

China Admitted to Volt Typhoon Cyberattacks on US Critical Infrastructure: Report

In a secret meeting between Chinese and US officials, the former confirmed conducting cyberattacks on US infrastructure.

Eduard Kovacs6 days ago

Cybercrime

North Korea’s IT Operatives Are Exploiting Remote Work Globally

The global rise of North Korean IT worker infiltration poses a serious cybersecurity risk—using fake identities, remote access, and extortion to compromise organizations.

Kevin TownsendApril 2, 2025

Nation-State

Lazarus Uses ClickFix Tactics in Fake Cryptocurrency Job Attacks

North Korea’s Lazarus hackers are using the ClickFix technique for malware deployment in fresh attacks targeting the cryptocurrency ecosystem.

Ionut ArghireApril 2, 2025

Nation-State

Chinese I-Soon Hackers Hit 7 Organizations in Operation FishMedley

The FishMonger APT group, a subdivision of Chinese cybersecurity firm I-Soon, compromised seven organizations in a 2022 campaign.

Ionut ArghireMarch 21, 2025

Malware & Threats

US Government Urges Cleanup of Routers Infected by Russia’s APT28

The US government says Russia’s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide.

Ionut ArghireFebruary 28, 2024

Malware & Threats

Chinese Cyberspies Use New Malware in Ivanti VPN Attacks

Chinese threat actors target Ivanti VPN appliances with new malware designed to persist system upgrades.

Ionut ArghireFebruary 28, 2024

Malware & Threats

Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts

US government and allies expose TTPs used by notorious Russian hacking teams and warn of the targeting of dormant cloud accounts.

Ionut ArghireFebruary 26, 2024

Data Breaches

State-Sponsored Group Blamed for Change Healthcare Breach

UnitedHealth Group is blaming a state-sponsored threat actor for a disruptive cyberattack on its subsidiary Change Healthcare.

Ionut ArghireFebruary 26, 2024

Malware & Threats

Russian Turla Cyberspies Target Polish NGOs With New Backdoor

Russian state-sponsored threat actor Turla has been using a new backdoor in recent attacks targeting Polish NGOs.

Ionut ArghireFebruary 22, 2024

Nation-State

Russian Cyberspies Exploit Roundcube Flaws Against European Governments

Russian cyberespionage group targets European government, military, and critical infrastructure entities via Roundcube vulnerabilities.

Ionut ArghireFebruary 19, 2024

Malware & Threats

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies

The US government says it has neutralized a network of hundreds of Ubiquiti Edge OS routers under the control of the Russia's APT28 hackers.

Ryan NaraineFebruary 15, 2024

Nation-State

Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years

A possibly China-linked threat actor uses a custom backdoor in a cyberespionage campaign ongoing since at least 2021.

Ionut ArghireFebruary 12, 2024

Nation-State

UN Experts Investigating 58 Suspected North Korean Cyberattacks Valued at About $3 Billion

U.N. experts are investigating 58 suspected North Korean cyberattacks valued at approximately $3 billion, with the money reportedly being used fund development of weapons...

Associated PressFebruary 10, 2024