Government webmail systems are under siege—hackers are exploiting XSS flaws to steal sensitive data in a global spy campaign. How safe is your inbox?

https://thedefendopsdiaries.com/government-webmail-hacked-via-xss-bugs-in-global-spy-campaign/

#xssvulnerabilities
#cyberespionage
#governmentsecurity
#webmailhacks
#infosectrends

China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures

A report from EclecticIQ on a China-Nexus nation-state cyber-espionage campaign against SAP NetWeaver reveals details of Chinese-speaking attackers' operations and how they target high-value networks.

Pulse ID: 6824ce5f2a19922c64e259ed
Pulse Link: https://otx.alienvault.com/pulse/6824ce5f2a19922c64e259ed
Pulse Author: AlienVault
Created: 2025-05-14 17:09:50

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#China #Chinese #CyberSecurity #Espionage #InfoSec #OTX #OpenThreatExchange #RAT #bot #cyberespionage #AlienVault

North Korea’s covert cyber strike in Ukraine isn’t just espionage—it’s a high-stakes play to realign military alliances and fund its ambitions. Curious how digital spying is reshaping global power?

https://thedefendopsdiaries.com/north-koreas-cyber-espionage-in-ukraine-strategic-motivations-and-global-implications/

#northkorea
#cyberespionage
#ukraine
#globalsecurity
#cybersecurity

Disruption of Drone Supply Chains Through Coordinated Multi-Wave Attacks in Taiwan

Earth Ammit, a Chinese-linked threat actor, conducted two campaigns targeting drone supply chains in Taiwan and South Korea from 2023 to 2024. The VENOM campaign focused on software service providers using open-source tools, while TIDRONE targeted military industries with custom malware. Their tactics included supply chain attacks, credential theft, and cyberespionage. Victims spanned military, satellite, heavy industry, media, technology, and healthcare sectors. Earth Ammit's goal was to compromise trusted networks for downstream attacks. They employed evolving techniques like fiber-based evasion and custom backdoors CXCLNT and CLNTEND. The campaigns showed progression from broad, low-cost tools to tailored capabilities for sensitive targets.

Pulse ID: 6823927586bc5e69008837fe
Pulse Link: https://otx.alienvault.com/pulse/6823927586bc5e69008837fe
Pulse Author: AlienVault
Created: 2025-05-13 18:41:56

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #Chinese #CyberSecurity #Cyberespionage #Espionage #Healthcare #ICS #InfoSec #Korea #Malware #Military #OTX #OpenThreatExchange #RCE #Rust #SouthKorea #SupplyChain #Venom #bot #AlienVault

#China and the #US are locked in a constant struggle for information, using #CyberEspionage to gain strategic advantage. Recently leaked files have shed light on rapid advances in China’s cyber capabilities as both nations prepare for any future conflict.

🔗 https://youtu.be/8kpnSb4yGR0

Google scopre LostKeys: malware russo per lo spionaggio
#ClickFix #COLDRIVER #CyberEspionage #Cybercrime #FSB #Geopolitica #Google #LostKeys #Malware #Notizie #Russia #Sicurezza #Spionaggio #StateSponsoredHacking #TechNews #Tecnologia #ThreatIntelligence #VBS

https://www.ceotech.it/google-scopre-lostkeys-malware-russo-per-lo-spionaggio/

Ever heard of LostKeys? Russian cyberspies are using a sneaky malware that adapts on the fly to steal valuable data—making even advanced systems vulnerable. How protected is your data?

https://thedefendopsdiaries.com/unveiling-lostkeys-a-new-cyber-threat-from-russian-cyberspies/

#lostkeys
#cyberespionage
#russiancyberspies
#malware
#cybersecurity

🕵️‍♂️ SlowTempest: A Covert Espionage Campaign

Uncover how attackers are targeting Chinese-speaking users.
🔗 https://wardenshield.com/slowtempest-uncovering-a-covert-cyber-espionage-campaign-targeting-chinese-speaking-users
#cyberespionage #advancedthreats #Apt #wardenshield