Salt Typhoon Across the Internet

AIDE, the Global Cyber Alliance (AIDE), has identified patterns consistent with a long-term, state-sponsored cyber espionage campaign, described by the FBI, CISA, and industry partners.

Pulse ID: 695ca17ae0444583c2d8e680
Pulse Link: https://otx.alienvault.com/pulse/695ca17ae0444583c2d8e680
Pulse Author: Tr1sa111
Created: 2026-01-06 05:45:30

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CISA #CyberSecurity #Espionage #FBI #InfoSec #OTX #OpenThreatExchange #bot #Tr1sa111

Chính phủ Venezuela đã phát lệnh truy lùng toàn quốc đối với các cá nhân bị nghi là nội gián, hỗ trợ Mỹ trong âm mưu tấn công và bắt giữ Tổng thống Nicolás Maduro. Động thái này cho thấy mức độ nghiêm trọng của vụ việc và nguy cơ xâm phạm an ninh quốc gia. Quốc gia Nam Mỹ đang tăng cường an ninh và rà soát các hoạt động tình báo khả nghi.

#Venezuela #Maduro #Espionage #NationalSecurity #TinTức #ChínhTrị
#Venezuela #Maduro #GiánĐiệp #AnNinhQuốcGia #TinTức #ChínhTrị

https://vtcnews.vn/venezu

Everybody Is Spying On Everybody. The last decade has been WILD!

#News #TechNews #Surveillance #Espionage #spying

https://youtu.be/174vHLLow2s

Daily podcast: Everybody Is Spying On Everybody. The last decade has been WILD!

#News #TechNews #Surveillance #Espionage #spying #podcast

https://soundcloud.com/nickaesp/ese

HoneyMyte Campaign Weaponizes Rootkits to Hijack Asian Governments

HoneyMyte compromises government systems in Southeast and East Asia
by deploying rare kernel-mode rootkits. The rootkit enables the threat
actor to deploy a backdoor named “ToneShell” without being detected
enabling them to conduct long-term cyber-espionage activities against
government organizations while remaining undetected.

Pulse ID: 695ba557138e5247521b0042
Pulse Link: https://otx.alienvault.com/pulse/695ba557138e5247521b0042
Pulse Author: cryptocti
Created: 2026-01-05 11:49:43

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Asia #BackDoor #CyberSecurity #Espionage #Government #InfoSec #OTX #OpenThreatExchange #Rootkit #bot #cyberespionage #cryptocti

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET researchers have uncovered a new China-aligned APT group named LongNosedGoblin targeting governmental entities in Southeast Asia and Japan for cyberespionage. The group employs a varied custom toolset of C#/.NET applications and abuses Group Policy for lateral movement. Key tools include NosyHistorian for collecting browser history, NosyDoor backdoor using cloud services as C&C, and NosyStealer for exfiltrating browser data. The attackers also utilize techniques like AppDomainManager injection and AMSI bypassing. LongNosedGoblin has been active since at least September 2023, showing ongoing campaigns throughout 2024 and 2025. The research provides detailed analysis of the group's malware and tactics, including potential sharing of the NosyDoor backdoor among multiple China-aligned actors.

Pulse ID: 6958f815aa5cbfe2f0a8d82d
Pulse Link: https://otx.alienvault.com/pulse/6958f815aa5cbfe2f0a8d82d
Pulse Author: AlienVault
Created: 2026-01-03 11:05:57

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Asia #BackDoor #Browser #CandC #China #Cloud #CyberSecurity #Cyberespionage #ESET #Espionage #Government #ICS #InfoSec #Japan #Malware #NET #OTX #OpenThreatExchange #RAT #bot #AlienVault

MuddyWater: Snakes by the riverbank

MuddyWater, an Iran-aligned cyberespionage group, has been targeting critical infrastructure in Israel and Egypt with custom malware and improved tactics. The campaign uses previously undocumented tools like the Fooder loader and MuddyViper backdoor to enhance defense evasion and persistence. Fooder masquerades as a Snake game and uses game-inspired techniques to hinder analysis. MuddyViper enables system information collection, file manipulation, and credential theft. The group also employs browser-data stealers and reverse tunneling tools. This campaign demonstrates MuddyWater's evolution towards more sophisticated and refined approaches, though traces of operational immaturity remain. The group continues to pose a significant threat, particularly to government, military, telecommunications, and critical infrastructure sectors in the Middle East.

Pulse ID: 6958f81623f8ea731f649bfb
Pulse Link: https://otx.alienvault.com/pulse/6958f81623f8ea731f649bfb
Pulse Author: AlienVault
Created: 2026-01-03 11:05:58

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #Bank #Browser #CyberSecurity #Cyberespionage #Espionage #Government #ICS #InfoSec #Iran #Israel #Malware #MiddleEast #Military #MuddyWater #OTX #OpenThreatExchange #RAT #Telecom #Telecommunication #bot #AlienVault

They made the headlines when they were caught red handed in an operation and their faces went public. But these aren't common scammers. The Lazarus group is one to be feared. Here's why.

#hackers #APT #espionage #cybercrime

https://negativepid.blog/what-is-the-lazarus-group/
https://negativepid.blog/what-is-the-lazarus-group/

Tonight's movie is Top Secret! (1984). It's a silly parody that's free to stream on PlutoTV.

"An American rock and roll singer is invited to a cultural festival in East Germany in order to distract from a plot to destroy NATO submarines, but he accidentally becomes involved in a resistance plot to rescue an imprisoned scientist."

Stars Val Kilmer, Omar Sharif, Jeremy Kemp, Lucy Gutteridge, & Warren Clarke, with cameos by Ian McNeice & Peter Cushing.

Directed by Jim Abrahams & the Zucker brothers.

Music by Maurice Jarre, who also composed the music for Lawrence of Arabia, Doctor Zhivago, Ghost, Witness, & ~180 more.

https://pluto.tv/us/on-demand/movies/5637f06538d1bd272283ffa2

#movies 🎬 #NowWatching #ValKilmer #comedy #espionage