Tag: #cyberespionage
In a deeply concerning case of prolonged cyberespionage, the Chinese state-linked hacking group Weaver Ant (a subgroup of the larger APT41) was discovered to have infiltrated a telecom provider’s internal network for more than four years, from 2019 to mid-2023. The hackers deployed custom malware, including xDealer and LionsBot, targeting both Windows and Linux environments […]
A new kind of Hyper-V ransomware attack is raising alarms across the cybersecurity landscape. RedCurl, a corporate cyber-espionage group known for stealthy attacks since 2018, has pivoted to deploying custom ransomware called QWCrypt. Unlike common ransomware campaigns focused solely on ransom payments, RedCurl’s approach fuses espionage and extortion—targeting Hyper-V environments that form the backbone of […]
The Auto-Color Linux backdoor is a newly discovered malware threat targeting government institutions and universities across multiple continents. Uncovered by Palo Alto Networks’ Unit 42 researchers between November and December 2024, Auto-Color has already breached academic and government servers in North America and Asia. This stealthy Linux malware employs advanced evasion techniques to avoid detection […]