South Korean police have revealed a major hacking campaign which saw defense secrets stolen by hackers from the north over the period of a year. A report from the Korean National Police Agency (KNPA) published yesterday blamed the campaign on three North Korean state-backed groups: Lazarus, Kimsuky and Andariel. Local reports claimed they targeted as […]
Defense Unicorns has raised a $35 million Series A funding round led by Sapphire Ventures and Ansa Capital. Founded by early leaders of the Department of Defense’s software factories – a grassroots Air Force initiative turned mandate to accelerate secure, agile software development practices – Defense Unicorns enables continuous delivery of software and AI applications […]
The Main Intelligence Directorate (GUR) of Ukraine’s Ministry of Defense has announced that it successfully breached the servers of the Russian Ministry of Defense (Minoborony) and obtained sensitive documents.
Taiwan’s Defense Ministry is urging Chunghwa Telecom, the the island’s largest telecom company, to improve its cybersecurity following a data breach that compromised government-related information. The hackers, reportedly believed to be backed by the Chinese government, made off with 1.7TB of data following the Chunghwa compromise and have put it all up for sale on […]
Defense evasion by exploiting CVE-2023-36025 Once the malicious .url file exploiting CVE-2023-36025 is executed, it connects to an attacker-controlled server to download and execute a control panel item (.cpl) file. Microsoft Windows Defender SmartScreen should warn users with a security prompt before executing the .url file from an untrusted source. However, the attackers craft a […]
The Department of Defense provided new projections for how much money contractors and other organizations will have to spend to implement the Pentagon’s Cybersecurity Maturity Model Certification program. The updated estimates were included in a proposed rule for CMMC 2.0 that was published Tuesday in the Federal Register. The program would mandate that defense contractors […]
Dec 22, 2023NewsroomMalware / Cyber Threat Indian government entities and the defense sector have been targeted by a phishing campaign that’s engineered to drop Rust-based malware for intelligence gathering. The activity, first detected in October 2023, has been codenamed Operation RusticWeb by enterprise security firm SEQRITE. “New Rust-based payloads and encrypted PowerShell commands have been […]
Dec 22, 2023NewsroomMalware / Cyber Threat Indian government entities and the defense sector have been targeted by a phishing campaign that’s engineered to drop Rust-based malware for intelligence gathering. The activity, first detected in October 2023, has been codenamed Operation RusticWeb by enterprise security firm SEQRITE. “New Rust-based payloads and encrypted PowerShell commands have been […]
Dec 22, 2023NewsroomThreat Intelligence / Supply Chain Attack Organizations in the Defense Industrial Base (DIB) sector are in the crosshairs of an Iranian threat actor as part of a campaign designed to deliver a never-before-seen backdoor called FalseFont. The findings come from Microsoft, which is tracking the activity under its weather-themed moniker Peach Sandstorm (formerly […]
- 1
- 2