HAFNIUM

HAFNIUM is a likely state-sponsored cyber espionage group operating out of China that has been active since at least January 2021. HAFNIUM primarily targets entities in the US across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs.

This Cyber News was published on attack.mitre.org. Publication date: Thu, 07 Dec 2023 22:12:07 +0000

Cyber News related to HAFNIUM

HAFNIUM - HAFNIUM is a likely state-sponsored cyber espionage group operating out of China that has been active since at least January 2021. HAFNIUM primarily targets entities in the US across a number of industry sectors, including infectious disease ...
1 year ago Attack.mitre.org HAFNIUM

Threat Actors Weaponize Shell Techniques to Maintain Persistence and Exfiltrate Data - These shells enable attackers to execute commands, browse file systems, and transfer sensitive data outside networks, often operating undetected for extended periods while maintaining persistent access to compromised infrastructure. This seemingly ...
4 days ago Cybersecuritynews.com APT3 APT32 HAFNIUM APT28

Latest Cyber News

Microsoft warns of blue screen crashes caused by April updates

Trump Revenge Tour Targets Cyber Leaders, Elections – Krebs on Security

RansomHub Ransomware-as-a-service Facing Internal Conflict as Affiliates Lost Access to Chat Portals

Tycoon2FA phishing kit targets Microsoft 365 with new tricks

CISA extends CVE program contract with MITRE for 11 months amid alarm over potential lapse | The Record from Recorded Future News

Malicious NPM Packages Targeting PayPal Users to Steal Sensitive Data

Hackers using AI-produced audio to impersonate tax preparers, IRS | The Record from Recorded Future News

British law firm fined after ransomware group publishes confidential client data | The Record from Recorded Future News

Cybersecurity Weekly Recap: Key Updates on Attacks, Vulnerabilities

AI-hallucinated code dependencies become new supply chain risk

Chinese eCrime Hacker Group Attacking Users in 120+ Coutries to Steal Banking Credentials

Rep. Green on CISA cuts, China hacking and cyber as a bipartisan issue | The Record from Recorded Future News

Critical Erlang/OTP SSH Vulnerability Allows Unauthenticated Remote Code Execution

Govtech giant Conduent confirms client data stolen in January cyberattack

0-Click RCE in the SuperNote Nomad E-ink Tablet Lets Hackers Install Rootkit & Gain Full Control

ViperSoftX Malware Attacking Users via Cracked Software

Hackers Allegedly Leaked 1.59 Million Rows of Indian Insurance Users Sensitive Data

Integrate Modern Strategies for Zero Trust with Identity & Access Management (IAM)

Cyber Trends (last 7 days)

Trending Cyber News (last 7 days)

Interlock ransomware gang pushes fake IT tools in ClickFix attacks

OpenAI details ChatGPT-o3, o4-mini, o4-mini-high usage limits

Alleged SmokeLoader malware operator facing federal charges in Vermont | The Record from Recorded Future News

Leaked KeyPlug Malware Infrastructure Contains Exploit Scripts to Hack Fortinet Firewall and VPN

FBI: Scammers pose as FBI IC3 employees to 'help' recover lost funds

ASUS warns of critical auth bypass flaw in routers using AiCloud

SonicWall SMA VPN devices targeted in attacks since January

New payment-card scam involves a phone call, some malware and a personal tap | The Record from Recorded Future News

Chinese hackers target Russian govt with upgraded RAT malware

7 Steps to Take After a Credential-Based cyberattack

7 Steps to Take After a Credential-Based Attack

How to Build a Security Champions Program Within Your Organization

Fortinet Ends SSL-VPN Support From 7.6.3 Onwards!

Linux Kernel Vulnerability Let Attackers Escalate Privilege - PoC Released

Beware! Android Spyware 'SpyMax' Gain Total Control of Your Android Phone

Global Zoom Outage Caused by Server Block Imposed from GoDaddy Registry

Over 6 Million Chrome Extensions Can Execute Remote Commands on Users’ Browsers

Cisco Webex bug lets hackers gain code execution via meeting links

Researchers Uncovered The Stealthy StrelaStealer Malware Tactics, Techniques, and Procedures

Using Passive DNS To Trace Command And Control Infrastructure