Bringing Access Back — Initial Access Brokers Exploit F5 BIG-IP (CVE-2023-46747) and ScreenConnect

During the course of an intrusion investigation in late October 2023, Mandiant observed novel N-day exploitation of CVE-2023-46747 affecting F5 BIG-IP Traffic Management User Interface. Additionally, in February 2024, Mandiant researchers observed exploitation of Connectwise ScreenConnect CVE-2024-1709 by the same Read More …

China’s MSS publicizes typical case to remind public of overseas cyber ransom attacks

China’s national security authorities publicized on Thursday a typical case of cyber ransom attacks to help raise public awareness over online blackmail and attacks from overseas, which not only affects social stability and economic development but also threatens China’s national Read More …

The Updated APT Playbook: Tales from the Kimsuky threat actor group

Rapit7 team recently ran across some interesting activity that they believe is the work of the Kimsuky threat actor group, also known as Black Banshee or Thallium. Originating from North Korea and active since at least 2012, Kimsuky focuses primarily on Read More …

Tech giant Fujitsu says it was hacked, warns of data breach

Multinational technology giant Fujitsu confirmed a cyberattack in a statement Friday, and warned that hackers may have stolen personal data and customer information. “We confirmed the presence of malware on multiple work computers at our company, and as a result Read More …

Southeast Asia’s three-nation partnership to fight cyber threats

From rampant job scams to sophisticated e-commerce attacks, cyber threats in Southeast Asia are skyrocketing. Singapore reportedly had more than 46,000 cybercrime cases in 2023, including job scams and e-commerce scams, the highest since 2016. Things were almost as bad in Read More …

CIA allegedly made fake social media accounts to troll the Chinese government

The CIA allegedly launched a secret operation to troll Chinese officials and turn public opinion against them through leaked intelligence and negative news on social media. Reuters reports the operation began in 2019 and was also aimed at causing paranoia Read More …

Chinese international purchasing agency for military equipment has agency qualification revoked for serious risk of information leakage

A Chinese international purchasing agency has had its purchasing agency qualification revoked for serious risk of information leakage due to the company’s internal mismanagement and poor practices around managing sensitive data, the Equipment Development Department (EDD) of China’s Central Military Read More …

Chinese security authority warns of espionage traps in online dating and job hunting

Are they your like-minded “online friends”? Intimate “lovers”? Caring “friends”? Helpful “good Samaritans”? Or perhaps, these are all just sweet “traps” set by espionage forces, Chinese Ministry of State Security warned the public in its latest article published on Wednesday. Read More …