Tag: Earth
-
Earth Lusca Using Multiplatform Backdoor to Attack Windows & Linux Machines
Earth Lusca is a suspected China-based cyber espionage group active since at least April 2019. Besides this, hackers often target Windows …
-
Expanded attacks by Earth Baku detailed
More recent intrusions by the APT41-linked threat group — which were confirmed to hit Italy, Qatar, and the United Arab Emirates and …
-
Earth Baku Using Customized Tools To Maintain Persistence And Steal Data
Earth Baku, an APT actor who initially focused on the Indo-Pacific region, has grown its activities extensively since late 2022. The group …
-
China-Backed Earth Baku Expands Cyber Attacks to Europe, Middle East, and Africa
The China-backed threat actor known as Earth Baku has diversified its targeting footprint beyond the Indo-Pacific region to include Europe, …
-
A Dive into Earth Baku’s Latest Campaign
Earth Baku, an advanced persistent threat (APT) actor that we previously wrote about in 2021, has expanded its activities to Europe, the …
-
Earth Freybug Uses UNAPIMON for Unhooking Critical APIs
This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and …
-
Earth Krahang campaign compromised government servers in 23 countries
A two-year cyberespionage campaign by a previously unknown advanced persistent threat (APT) group linked to China compromised 70 …
-
Earth Lusca Uses Geopolitical Lure to Target Taiwan Before Elections
During our monitoring of Earth Lusca, we noticed a new campaign that used Chinese-Taiwanese relations as a social engineering lure to …
-
Earth Preta Hackers Abuses Google Drive to Deploy DOPLUGS Malware
Cybersecurity researchers at Check Point recently found SMUGX in July 2023, linked to Earth Preta, hitting Europe. They also found a …
-
China-Linked Actor Taps Linux Backdoor in Forceful Espionage Campaign
“Earth Lusca,” a China-linked cyber espionage actor that’s been actively targeting government organizations in Asia, Latin America, and …
-
Earth Lusca’s New SprySOCKS Linux Backdoor Targets Government Entities
The China-linked threat actor known as Earth Lusca has been observed targeting government entities using a never-before-seen Linux backdoor …
-
Sophisticated Cyber-Espionage Group Earth Estries Exposed
A sophisticated cyber-espionage group named “Earth Estries” has been exposed by cybersecurity firm Trend Micro. Operating since at …
●●●