On July 11, 2023, Microsoft published an article about addressing the CVE-2023-36884 vulnerability. This breach allowed for remote code execution in Office and Windows HTML. Microsoft has acknowledged a targeted attack that exploits a vulnerability using specifically designed Microsoft Office documents. The attacker can gain control of a victim’s computer by creating a malicious Office… Continue reading Microsoft CVE-2023-36884 Vulnerability Exploited in the Wild
Tag: Russia
One Year of Russian-Ukrainian War in Cybersecurity
February 24, 2022, will be a turning point in history. It was the day of the full-scale Russian invasion of Ukraine and the most significant geopolitical event of the past year. This war was, without exaggeration, the bloodiest military conflict in Europe in decades. However, it is the first major hybrid war that uses cyberspace… Continue reading One Year of Russian-Ukrainian War in Cybersecurity
Hacker Group XDSpy Distributes Malware in Russia under the Guise of Subpoenas for the Army
In early October, Kaspersky Lab experts recorded a targeted attack on Russian organizations: attackers from the XDSpy hacker group sent several hundred malicious emails allegedly related to the topic of the so-called “partial mobilization”. Recall that dictator Vladimir Putin in September announced the mobilization into the armed forces of Russia against the backdrop of a… Continue reading Hacker Group XDSpy Distributes Malware in Russia under the Guise of Subpoenas for the Army
Chinese APTs Increasingly Target Russian Organizations
Specialists from SentinelLabs identified a new cyber threat activity that has been recently targeting Russian organizations. They assessed that the Chinese APT group is behind these attacks as also it was reported by Ukraine CERT (CERT-UA). Threat actors have used phishing emails to deliver Office documents which infected its victims with Bisonal, the most commonly… Continue reading Chinese APTs Increasingly Target Russian Organizations
The US won’t cooperate with Russia on ransomware anymore
The US suspends its cooperation with Russia on ransomware criminals amidst the brutal war the Russian government wages against Ukraine, State Department spokesperson told Sputnik. “The Russian government is engaged in a brutal and unjustified war against Ukraine, so our channel on criminal ransomware actors is not active,” the spokesperson said. On Thursday White House… Continue reading The US won’t cooperate with Russia on ransomware anymore
Most likely russian hackers defaced Ukrainian government websites
Hackers defaced several Ukrainian government websites: the attack occurred on the night of January 13-14 and affected the websites of the Ukrainian Foreign Ministry, the Ministry of Education and Science, the Ministry of Defense, the State Emergency Service, the website of the Cabinet of Ministers, and so on. The Record notes that all resources have… Continue reading Most likely russian hackers defaced Ukrainian government websites