ESET has analyzed two variants of the yty malware framework: Gedit and DarkMusical. ESET researchers have decided to call one of the variants DarkMusical because many of the names the attackers chose for their files and folders are inspired by the movie High School Musical. These attacks are focused on government and military organizations, Ministries … More ESET Research investigates Donot Team: Cyberespionage targeting military & governments
ESET reveals research into a campaign of strategic web compromises targeting the websites of media, government, internet service providers and aerospace/military tech companies, with links to the Middle East and a strong focus on Yemen and the surrounding conflict. The targets are located in the Middle East: Iran, Saudi Arabia, Syria, Yemen; in Europe: Italy, … More ESET Research discovers watering hole attacks on websites in the Middle East with links to Candiru spyware
A year into the pandemic, ESET reveals new research into activities of the LuckyMouse APT group and considers how governments can rise to the cybersecurity challenges of the accelerated shift to digital. Earlier this year, a well-known APT group dubbed LuckyMouse (aka Emissary Panda, APT27) began exploiting several zero-day Microsoft Exchange Server vulnerabilities. Its end goal? … More Prime targets: Governments shouldn’t go it alone on cybersecurity
How can organizations tackle the growing menace of attacks that shake trust in software? Cybersecurity is only as good as the weakest link, and in a supply chain this could be virtually anywhere. The big questions may be, “what and where is the weakest link?” and “is it something that you have control over and … More Supply‑chain attacks: When trust goes wrong, try hope?
Several services, including the national revenue agency, had to be shut down following a series of credential-stuffing attacks. Cybercriminals set their sights on the Canadian government at the beginning of August, when several government services were disabled following a series of cyberattacks. On August 15, the Treasury Board Secretariat announced that approximately 11,000 online government … More Cyber attacks: Several Canadian government services disrupted