spearphishing Archives - AZGAD WEBSITE SECURITY BLOG

Sunday, April 20, 2025

Latest:

APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures
Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems
ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware
Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States
Multi-Stage Malware Attack Uses .JSE and PowerShell to Deploy Agent Tesla and XLoader

best practices Cloud Security Cyberattacks cybersecurity Defense InfoSec Insider Malware mobile security nation state social engineering spearphishing state actors State sponsored technical defenses tips Vulnerabilities

2020-12-22 Saryu Nayyar

Defending Against State and State-Sponsored Threat Actors

State and state-sponsored threat actors are the apex predators of the cybersecurity world.

exact domain spoofing financial services healthcare Ironscales manufacturing Microsoft Office 365 spearphishing Spoofing telecom utilities vertical markets Web Security

2020-12-08 Elizabeth Montalbano

Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users

It remains unknown as to why Microsoft is allowing a spoof of their very own domain against their own email infrastructure.

advanced persistent threat apt Breach cisa alert covid-19. remote access Cyberattacks data exfiltration espionage exploits Government Hacks Malware nation states Phishing remote working spearphishing Think tanks VPN Vulnerabilities Web Security

2020-12-03 Tara Seals

Think-Tanks Under Attack by Foreign APTs, CISA Warns

The feds have seen ongoing cyberattacks on think-tanks (bent on espionage, malware delivery and more), using phishing and VPN exploits as primary attack vectors.

attachment bot Breach CISA cybersecurity Department of Homeland Security DHS emotet Emotet Alert Emotet warning Government local government Malware mobile Phishing ransomware spearphishing state government Trojan virus warning Worm

2020-10-07 Becky Bracken

Feds Sound Alarm Over Emotet Attacks on State, Local Govs

CISA warned already-strained public-sector entities about disturbing spikes in Emotet phishing attacks aimed at municipalities.

Armenia Azerbaijan Cisco Talos conflict Dostoevsky email espionage Government macros malicious documents Malware Malware analysis microsoft word nation state PoetRAT public sector spearphishing spyware The Brothers Karamazov threat actors war Web Security

2020-10-07 Elizabeth Montalbano

PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict

Spear-phishing attacks targeting VIPs and others show key malware changes and are likely linked to the current conflict with Armenia.

Cobalt Strike cyberattack Group-IB Hacks Malware oldgremlin phishing attack ransomware RBC Russian organization spearphishing threat threat group TinyNode Vulnerabilities Web Security

2020-09-23 Lindsey O'Donnell

OldGremlin Ransomware Group Bedevils Russian Orgs

The cybercriminal group has plagued firms with ransomware, sent via spear phishing emails with COVID-19 lures, since March.

china chopper CISA Citrix VPNs Cobalt Strike CVE-2019-11510 CVE-2019-19781 CVE-2020-0688 CVE-2020-5902 Exploit F5 BIG-IP devices Government Hacks Microsoft Microsoft Exchange Mimikatz network compromise Pulse Secure VPNs spearphishing U.S. Government Vulnerabilities

2020-09-15 Lindsey O'Donnell

Feds Warn Nation-State Hackers are Actively Exploiting Unpatched Microsoft Exchange, F5, VPN Bugs

Monday’s CISA advisory is a staunch reminder for federal government and private sector entities to apply patches for flaws in F5 BIG-IP devices, Citrix VPNs, Pulse Secure VPNs and Microsoft Exchange servers.

apple Bill Gates Bitcoin Breach data leak direct messages elected officials elon musk employee credentials Hackers Hacks Joe biden mobile mobile security social engineering Spear Phishing spearphishing The Netherlands Twitter uber Web Security

2020-07-31 Elizabeth Montalbano

Twitter: Epic Account Hack Caused by Mobile Spearphishing Scam

Hackers “mislead certain employees” to gain access to internal tools to take over high-profile accounts and push out a Bitcoin scam.

dropper emails guloader hackbit microsoft excel ransomware spearphishing Web Security

2020-06-23 Lindsey O'Donnell

Hackbit Ransomware Attack Uses GuLoader, Malicious Microsoft Excel Attachments

Recent spearphishing emails spread the Hackbit ransomware using malicious Microsoft Excel attachments and the GuLoader dropper.

BEC Business Email Compromise coronavirus COVID-19 Critical Infrastructure Email Fraud email scam FBI fbi alert Federal government medical supplies PPE procurement spearphishing threat actors ventilators Web Security

2020-04-15 Elizabeth Montalbano

PPE, COVID-19 Medical Supplies Targeted by BEC Scams

FBI said that government agencies aiming to buy critical items like ventilators have unknowingly transferred funds to threat actors.

← Previous

By continuing to use the site, you agree to the use of cookies. more information