China-based cyberespionage actor seen targeting South America

Read Time:33 Second

China-based cyberespionage actor DEV-0147 has been observed compromising diplomatic targets in South America, according to Microsoft’s Security Intelligence team.

The initiative is “a notable expansion of the group’s data exfiltration operations that traditionally targeted gov’t agencies and think tanks in Asia and Europe,” the team tweeted on Monday.

DEV-0147’s attacks in South America included post-exploitation activity involving the abuse of on-premises identity infrastructure for reconnaissance and lateral movement, and the use of Cobalt Strike — a penetration testing tool — for command and control and data exfiltration, Microsoft wrote in its tweet.

To read this article in full, please click here

Generated by Feedzy

Cyber Security News

Friday Squid Blogging: Giant Squid vs. Blue Marlin

German Police Raid DDoS-Friendly Host ‘FlyHosting’

From Workshops to Leader Panels: A Recap of Women’s History Month at McAfee

Italy’s Privacy Watchdog Blocks ChatGPT Amid Privacy Concerns

Modular “AlienFox” Toolkit Used to Steal Cloud Service Credentials

New Azure Flaw “Super FabriXss” Enables Remote Code Execution Attacks

Spyware vendors use exploit chains to take advantage of patch delays in mobile ecosystem

Italian privacy regulator bans ChatGPT over collection, storage of personal data

Hack the Pentagon website promotes the benefits of bug bounties to US Military