APT

China | Sep 28, 2023

Threat group is installing a backdoor in compromised Cisco router firmware. NSA says get better kit

"The modified firmware uses a built-in SSH backdoor, allowing BlackTech actors to maintain access to the compromised router without their connections being logged"

Cybersecurity | May 16, 2023

Chinese APT taps trojanised routers for mystery purposes

Horse Shell has a "penchant for complex structures" (and simple errors)

Cybersecurity | Apr 18, 2023

Russian APT hacked Cisco routers to hit US government

Cisco "deeply concerned" at attacks on "routers and firewalls globally"

Cybersecurity | Jun 02, 2022

Kaspersky says Chinese APT demonstrating "seemingly impossible network behaviors"

Threat group's infrastructure "nothing short of extraordinary"

Cybersecurity | Apr 23, 2022

The Year of the Zero Day: A record 6 a month exploited in 2021

Vendor telemetry is improving...

Cybersecurity | Mar 02, 2022

Previously undocumented rootkit being deployed by Chinese APT

Daxin malware has some really clever C2 techniques to exfiltrate intelligence

Cybersecurity | Jan 20, 2022

Unique new UEFI firmware attack dubbed "MoonBounce" spotted by Kaspersky, raises questions

UEFI rootkits survive OS re-installation, hard disk replacement.

Featured | Oct 13, 2021

"MysterySnail" 0day in Win32k used to hit IT, defence firms

Kaspersky, NSA report critical vulns, one used in a major campaign.

Featured | Jul 19, 2021

Revealed: Over 50 TTPs of Chinese state-backed hackers APT 40

APT exfiltrated data using Dropbox API, steganography to hide hoard in GitHub

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();