Daryna Antoniuk reports: Researchers say they have uncovered new evidence linking a long-running threat actor known as Bitter to the Indian government…. In a two-part report released this week, researchers from U.S.-based Proofpoint and Switzerland-based Threatray said their new findings are based on a series of campaigns conducted between October 2024 and April 2025. During this period, Bitter —…
Category: cyberwar
Pro-Ukraine hacker group Black Owl poses ‘major threat’ to Russia, Kaspersky says
Daryna Antoniuk reports: A little-known hacking group has emerged as a major threat to Russian state institutions and critical industries, carrying out attacks aimed at causing maximum disruption and extracting financial gain, according to a new report. BO Team, also known as Black Owl, has been active since early 2024 and appears to operate independently,…
Russian-linked hackers target UK Defense Ministry while posing as journalists
Martin Fornusek reports: Russian-linked hackers targeted U.K. Defense Ministry staff in an espionage operation while posing as journalists, Sky News reported on May 29, citing the British government. The cyber attack was detected and thwarted, the government said. Speaking to reporters at a government facility where a team had disrupted the Russian-backed operation, U.K. Defense Minister John Healey revealed the…
Western intelligence agencies unite to expose Russian hacking campaign against logistics and tech firms
Alexander Martin reports: A notorious Russian hacking unit was blamed on Wednesday for conducting a widespread campaign that officials say “presents a serious risk” to the targeted organizations and sectors in more than a dozen countries. In a joint cybersecurity advisory co-sealed by what appears to be a record number of allied countries (11) and intelligence agencies…
Chinese Hackers Hit Drone Sector in Supply Chain Attacks
Ionut Arghire reports: A Chinese threat actor was seen disrupting the drone supply chain in multi-wave attacks against various organizations in Taiwan and South Korea, Trend Micro reports. Dubbed Earth Ammit and believed to be tied to Chinese APTs, the hacking group was seen launching two attack campaigns between 2023 and 2024, targeting organizations across…
Turkish Group Hacks Zero-Day Flaw to Spy on Kurdish Forces
Chris Riotta reports: Turkish-linked cyber spies used a zero-day exploit housed in a popular chat software to target Kurdish military operations in Iraq, Microsoft Threat Intelligence reported Monday. Microsoft’s cybersecurity research arm said the threat actor tracked as “Marbled Dust” exploited unpatched user accounts in the Output Messenger Server Manager application, allowing the group to collect user…