Molerats Hackers Return With New Attacks Targeting Middle Eastern Governments – Tempemail

A Middle Eastern advanced persistent threat (APT) group has resurfaced after a two-month hiatus to target government institutions in the Middle East and global government entities associated with geopolitics in the region in a rash of new campaigns observed earlier this month. Sunnyvale-based enterprise security firm Proofpoint attributed the activity Continue Reading

A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran – Tempemail

Threat actors with suspected ties to Iran have been found to leverage instant messaging and VPN apps like Telegram and Psiphon to install a Windows remote access trojan (RAT) capable of stealing sensitive information from targets’ devices since at least 2015. Russian cybersecurity firm Kaspersky, which pieced together the activity, Continue Reading

The ‘green influencers’ targeting the TikTok generation | Environmental activism- Tempemail

Social media platforms are no longer just for selfies and blogs but a place “to organise and educate” people about the climate crisis, according to YouTube star turned activist filmmaker Jack Harries. One of a growing band of “green influencers” who are harnessing the power of social media to tell Continue Reading

New Cyber Espionage Group Targeting Ministries of Foreign Affairs – Tempemail

Cybersecurity researchers on Thursday took the wraps off a new cyberespionage group that has been behind a series of targeted attacks against diplomatic entities and telecommunication companies in Africa and the Middle East since at least 2017. Dubbed “BackdoorDiplomacy,” the campaign involves targeting weak points in internet-exposed devices such as Continue Reading

Crypto-Mining Attacks Targeting Kubernetes Clusters via Kubeflow Instances – Tempemail

Cybersecurity researchers on Tuesday disclosed a new large-scale campaign targeting Kubeflow deployments to run malicious cryptocurrency mining containers. The campaign involved deploying TensorFlow pods on Kubernetes clusters, with the pods running legitimate TensorFlow images from the official Docker Hub account. However, the container images were configured to execute rogue commands Continue Reading

Researchers Discover First Known Malware Targeting Windows Containers – Tempemail

Security researchers have discovered the first known malware, dubbed “Siloscope,” targeting Windows Server containers to infect Kubernetes clusters in cloud environments. “Siloscape is heavily obfuscated malware targeting Kubernetes clusters through Windows containers,” said Unit 42 researcher Daniel Prizmant. “Its main purpose is to open a backdoor into poorly configured Kubernetes Continue Reading

Researchers Uncover Hacking Operations Targeting Government Entities in South Korea – Tempemail

A North Korean threat actor active since 2012 has been behind a new espionage campaign targeting high-profile government officials associated with its southern counterpart to install an Android and Windows backdoor for collecting sensitive information. Cybersecurity firm Malwarebytes attributed the activity to a threat actor tracked as Kimsuky, with the Continue Reading

Malware Spreads Via Xcode Projects Now Targeting Apple’s M1-based Macs – Tempemail

A Mac malware campaign targeting Xcode developers has been retooled to add support for Apple’s new M1 chips and expand its features to steal confidential information from cryptocurrency apps. XCSSET came into the spotlight in August 2020 after it was found to spread via modified Xcode IDE projects, which, upon Continue Reading

Experts uncover a new Banking Trojan targeting Latin American users – Tempemail

Researchers on Tuesday revealed details of a new banking trojan targeting corporate users in Brazil at least since 2019 across various sectors such as engineering, healthcare, retail, manufacturing, finance, transportation, and government. Dubbed “Janeleiro” by Slovak cybersecurity firm ESET, the malware aims to disguise its true intent via lookalike pop-up Continue Reading

Hackers Targeting professionals With ‘more_eggs’ Malware via LinkedIn Job Offers – Tempemail

A new spear-phishing campaign is targeting professionals on LinkedIn with weaponized job offers in an attempt to infect targets with a sophisticated backdoor trojan called “more_eggs.” To increase the odds of success, the phishing lures take advantage of malicious ZIP archive files that have the same name as that of Continue Reading