China-based cyberespionage actor seen targeting South America - Cyber Security News

Read Time:33 Second

China-based cyberespionage actor DEV-0147 has been observed compromising diplomatic targets in South America, according to Microsoft’s Security Intelligence team.

The initiative is “a notable expansion of the group’s data exfiltration operations that traditionally targeted gov’t agencies and think tanks in Asia and Europe,” the team tweeted on Monday.

DEV-0147’s attacks in South America included post-exploitation activity involving the abuse of on-premises identity infrastructure for reconnaissance and lateral movement, and the use of Cobalt Strike — a penetration testing tool — for command and control and data exfiltration, Microsoft wrote in its tweet.

To read this article in full, please click here

More Stories

CISA’s 2024 Review Highlights Major Efforts in Cybersecurity Industry Collaboration

The US Cybersecurity and Infrastructure Security Agency’s 2024 Year in Review marks Jen Easterly’s final report before resignation Read More

December 27, 2024

Casino Players Using Hidden Cameras for Cheating

The basic strategy is to place a device with a hidden camera in a position to capture normally hidden card...

December 27, 2024

Friday Squid Blogging: Squid on Pizza

Pizza Hut in Taiwan has a history of weird pizzas, including a “2022 scalloped pizza with Oreos around the edge,...

December 27, 2024

Scams Based on Fake Google Emails

Scammers are hacking Google Forms to send email to victims that come from google.com. Brian Krebs reports on the effects....

December 26, 2024

Infostealers Dominate as Lumma Stealer Detections Soar by Almost 400%

The vacuum left by RedLine’s takedown will likely lead to a bump in the activity of other a infostealers Read...

December 26, 2024

The AI Fix #30: ChatGPT reveals the devastating truth about Santa (Merry Christmas!)

In episode 30 of The AI Fix, AIs are caught lying to avoid being turned off, Apple’s AI flubs a...

December 24, 2024