Plus, attackers target Tibetan leadership with spyware, a phishing scam snaps up your Instagram credentials, and YouTube is hit with a massive wave of account hijacks
A new website titled Hire Military Heroes pretends to help U.S. veterans find jobs, but cybersecurity researchers have discovered it to be a malicious site run by an Iranian nation-state hacking group. Dark Reading reports the group is called Tortoiseshell, while some experts believe they are actually the infamous Imperial Kitten hacking group. The phony site prompts visitors to download an app, which is actually a malicious downloader that plants malware in the user’s system. The malware then collects a wealth of information about the victim’s network, including hardware details, system configuration, and other admin data. It is unclear how the group is sourcing or luring its victims, but the backdoor created by the malware allows the group to spy on American military veterans while gathering personal information about them. Avast Security Evangelist Luis Corrons says these actions may lead to further data theft. “These are social engineering tactics targeting a specific social group, probably to gather certain information they need to perform further attacks.”
This week’s stat
The FAA predicts there will be between 1.3 million and 1.7 million hobby drones in the U.S. by 2023. Read more on drones.
Dalai Lama team targeted with spyware
Using WhatsApp, a hacker group targeted Tibetan leadership with messages falsely claiming to be from nonprofit activist groups like Amnesty International. The messages contained malicious links that if clicked would infect ..
Support the originator by clicking the read the rest link below.
