The new sanctions also extend to several banks in Russia, Belarus, and Central Asia accused of facilitating crypto transactions that bypass Western restrictions.
The backdoor is a VBA macro that turns Outlook into a stealthy remote access and data-exfiltration channel.
The threat actors used legitimate remote monitoring tools, conducted network scanning, and moved laterally using Microsoft’s RDC client.
As per the report, at least four individuals affiliated with BIETA have clear or potential connections to MSS operatives.
Discord said the attackers gained access via an unauthorized breach of a third-party customer service platform.
The vulnerability “may be exploited over a network without the need for a username and password.”
The campaign began in early January and included a targeted attack on a Brazilian military organization.
In brief: Chinese hackers are exploiting a recently patched VMware flaw, a smishing campaign abuses Milesight routers for phishing, and more.
The hacker collective claims to have stolen nearly 570GB of compressed data spread across over 28,000 internal projects.
Once installed, the malicious apps gain persistent access and silently exfiltrate sensitive data.
Showing elements 361 - 370