A South Korean activist specialized in North Korean human rights affairs has been hacked. Hackers infected their PC with malware and then sent malicious links to the target's KakaoTalk contacts. South Korean police suspect a North Korean APT group
Human rights activist's computer hacked — possibly by North Koreans
Police are investigating a suspected malware attack linked to a North Korean hacking group after a human rights activist reported their computer ha...
AhnLab looks at the new Cephalus ransomware, a strain first seen in August. The group leverages RDP accounts for initial access and operates a dark web leak site that hasn't been updated in more than two months, suggesting the group might have disbanded already.
ASEC
An Unerring Spear: Cephalus Ransomware Analysis - ASEC
An Unerring Spear: Cephalus Ransomware Analysis ASEC
 image
Proofpoint has spotted a new Iranian APT group—UNK_SmudgedSerpent. The group's TTPs overlap with many other Iranian groups, showing some sort of collaboration, personnel movement, or similar training/contractors. https://www.proofpoint.com/us/blog/threat-insight/crossed-wires-case-study-iranian-espionage-and-attribution
Two US senators have introduced a bill that would require US companies and federal agencies to report the number of workers they fired and replaced with AI technology. The data would be compiled by the Dept. of Labor and released via a public report. https://www.warner.senate.gov/public/index.cfm/pressreleases?id=FD838E66-72CE-49E0-A4AD-90896C8576BC
NVISO has linked VShell to UNC5174, a cyber contractor for the Chinese MSS
NVISO
NVISO analyzes VShell post-exploitation tool
NVISO has actively tracked VShell for months, a Chinese-language intrusion tool used in espionage campaigns. NVISO has actively tracked VShell for ...
 image
Repeat after me: Do not fill in and sync your government ID data to your Google account
Google
Chrome now helps you fill in passport, driver’s license, vehicle information and more.
Chrome already saves you time every day by securely filling in your addresses, passwords and payment information. Today, we’re making it even mor...
CISA's election day monitoring room was not stood up yesterday for the first time in years According to Bloomberg, remaining CISA election security staff, who have not been fired, have been "prohibited" from contacting state election officials.
Bloomberg.com
US Elections Face Security Test as DHS Cuts Local Cyber Support
As voters across the US from New York City to New Jersey and Virginia prepare to cast ballots Tuesday, election officials are operating with sharpl...