North Korean APT Targets Yanbian Gamers via Trojanized Platform
ESET warns that North Korean hackers compromised a Yanbian gaming site in a supply‑chain attack, trojanizing Windows and Android software to spy on users
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
ESET warns that North Korean hackers compromised a Yanbian gaming site in a supply‑chain attack, trojanizing Windows and Android software to spy on users
Attackers are abusing Microsoft 365 mailbox rules to hide activity, exfiltrate data and retain access after account compromise, researchers warn
New Remcos RAT variant enhances real-time surveillance and evasion techniques to compromise Windows
A newly identified hacking group named GhostRedirector has compromised 65 Windows servers using previously unknown tools
A total of 396 compromised Microsoft SharePoint systems have been identified globally, affecting 145 organizations across 41 countries in the wake of the ToolShell zero-day vulnerability
Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in on-prem SharePoint systems
On-prem SharePoint customers have been told to assume compromise, with attackers observed to be exfiltrating data from victim servers across critical sectors
Ukraine’s CERT-UA has identified a new AI-powered malware, dubbed “LameHug,” which executes commands on compromised Windows systems in cyber-attacks, targeting the nation’s security and defense sector
Microsoft has reported Scattered Spider continues to evolve tactics to compromise both on-premises infrastructure and cloud environments
Fortinet has identified a new Windows RAT operating stealthily on compromised systems with advanced evasion techniques
A newly-discovered Russian group, Void Blizzard, has successfully compromised organizations in critical industries, Microsoft warned
Volexity highlighted how Russian nation-state actors are stealing Microsoft device authentication codes to compromise accounts
HTTP client tools used to compromise Microsoft 365 environments with 78% of tenants targeted in 2024
Microsoft has spotted a major spearphishing campaign from the Russian APT29 group using RDP for compromise
Threat group APT29 is using secrets stolen in an earlier attack to compromise Microsoft’s internal systems
Microsoft said the Russian nation-state group Midnight Blizzard obfuscated its attack through the use of an OAuth application
Russian intelligence hackers compromise emails of senior Microsoft leadership with simple password spray attacks
Chinese actor Storm-0558 compromised Outlook accounts
The new campaign is believed to be perpetrated by Storm-0324, which distributes the payloads of other attackers after achieving initial network compromise
Microsoft observed attackers continually attempting to compromise connected systems at the 2022 World Cup