Dutch firms, sites targeted by Sea Turtle cyberespionage campaign

9 January 2024

Turkey-linked advanced persistent threat group Sea Turtle, also known as Teal Kurma, Cosmic Wolf, and Marbled Dust, has deployed island-hopping and supply chain attacks against the Netherlands’ telecommunications firms, internet services providers, IT service providers, and media organizations, as well as Kurdish websites, as part of its cyberespionage operations, according to Security Affairs. Aside from utilizing the SnappyTCP reverse TCP shell in a bid to breach systems on Linux and Unix, attackers also targeted cPanel accounts and leveraged SSH to facilitate initial systems compromise and eventually exfiltrate personal data to perform surveillance on possible political dissents and minorities, a report from Hunt & Hackett showed.

Source: SC Magazine

Date:

9 January 2024

Categorie(s):

NEWS

Tag(s):

Dutch, IT, News, Threat Intelligence, Turtle

Triangulation fraud: The costly scam hitting online retailers30 April 2024
Tracecat: Open-source SOAR30 April 2024
Why the automotive sector is a target for email-based cyber attacks30 April 2024
Passwords under seven characters can be easily cracked30 April 2024
Security analysts believe more than half of tasks could be automated30 April 2024