This year, several notorious threat groups are on a cyberespionage binge. This trend shows no signs of slowing down even during the ongoing pandemic.
What’s happened?
DeathStalker APT was found launching cyberespionage campaigns against targets spread across Europe and Latin America. The malware toolchains used by the group include Janicub, Evilnum, and Powersing. Evilnum was spotted to be spying on the targeted firms and their customers.
What does this imply?
The group chooses its victims based on the latter’s perceived value or customer base. Moreover, they have been identified targeting diplomatic entities as well. However, any organization operating in the financial sector is more likely to garner the attention of DeathStalker.
Recent cyberespionage attacks
The Transparent Tribe APT group was found deploying a novel mobile malware tool in its cyberespionage campaigns. The threat actors have been primarily targeting Android users with spyware impersonating popular apps.
In another cyberespionage campaign, an international architecture firm was targeted. The attackers exploited a vulnerability in the Autodesk software to infiltrate the targeted network.
The NSA and the FBI issued an advisory detailing the deployment of the Drovorub malware by APT28, popularly known as Fancy Bear. This malware has been designed to target Linux systems as part of the threat actor’s cyberespionage campaigns.
Strategic outcomes
A mix of smaller ..
Support the originator by clicking the read the rest link below.
