Remove Communications Remove Government Remove Libraries
article thumbnail

Foreign adversary hacked email communications of the Library of Congress says

Security Affairs

The Library of Congress discloses the compromise of some of its IT systems, an alleged foreign threat actor hacked their emails. Only email communications between congressional offices and some library staff, including the Congressional Research Service, from January to September, were affected. ” reported the NBC News.

Libraries 166
article thumbnail

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. The CurKeep payload is very small, it is 10kb in size, contains 26 functions and is not statically compiled with any library. The backdoor uses HTTP for its communications. Is it linked to ToddyCat APT?

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military 299
article thumbnail

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. exe, and rundll32.exe.

article thumbnail

DinodasRAT Linux variant targets users worldwide

Security Affairs

ESET researchers reported that a Windows version of DinodasRAT was used in attacks against government entities in Guyana. The campaign seems active since at least early 2022 and focuses primarily on government organizations. Both Linux and Windows versions of DinodasRAT communicates with the C2 over TCP or UDP.

Libraries 362
article thumbnail

EastWind campaign targets Russian organizations with sophisticated backdoors

Security Affairs

A campaign tracked as EastWind is targeting Russian government and IT organizations with PlugY and GrewApacha Backdoors. In late July 2024, Kaspersky researchers detected a series of targeted cyberattacks against the Russian government and IT organizations. “This library is a backdoor packed with the VMProtect tool.

Libraries 345
article thumbnail

Delivering Malware Through Abandoned Amazon S3 Buckets

Schneier on Security

These buckets contained software libraries that are still used. The TL;DR is that this time, we ended up discovering ~150 Amazon S3 buckets that had previously been used across commercial and open source software products, governments, and infrastructure deployment/update pipelines—and then abandoned.

Libraries 117