China Page 1

A billion worth of Chinese citizens’ information had been allegedly stolen by an unidentified hacker who posted the database on a dark web forum and sold it for 10BTC or about $195,000. Reports show that the stolen database has summed to 22TB and is said to have been breached from the Shanghai National Police (SHGA)’s...Continue Reading

About 50 vulnerable networks were sold on an underground forum by an unidentified hacker, which was collected by exploiting the recent zero-day vulnerability on Atlassian Confluence. According to the researchers, the networks are available on the popular Russian dark web forum XSS. The sold networks were gained through Atlassian Confluence’s unauthenticated RCE flaw tracked as...Continue Reading

A Sydney-based trading company, ACY Securities, has accidentally exposed their users and businesses’ financial and personal data online for public usage. However, the company did not mind the issue and stated that the exposed dataset was a minor problem. The current database exposure owned by the ACY Securities is due to a misconfigured database. The...Continue Reading

The TeaBot malware has been found exploiting the Google Play Store for the second time as an attack vector to infect unaware users. Since last year, the malware has conducted several upgrades to its attack chain to expand its surface and infiltrate more targets. Researchers discovered the trojan impersonating a QR code application on Google...Continue Reading

Cerber ransomware is making itself known again, and it is now packed with new tools and strategies to infect its targets. Recent observations showed that the revived ransomware targets remote code execution flaws in Gitlab servers and Atlassian Confluence. According to analysts, the Cerber ransomware threat group now targets different victims worldwide and utilizes both...Continue Reading

A botnet known as Moobot has abused a critical vulnerability inside Hikvision products that were sanctioned and banned by the United States federal government from receiving contracts due to some security reasons. The Moobot botnet’s infrastructure is surprisingly based on the infamous Dark Mirai (MANGA) botnet and has been distributing in the dark web’s ecosystem...Continue Reading

A new Delhi-based threat group reportedly strikes government agencies and defence departments of countries within South Asia, including China and Pakistan. The report’s analysis came from the malicious attacks of a threat group dubbed “You Xiang” or translated to “Baby Elephant” that targets the tech and equipment sector. The study also exposed threat actors who...Continue Reading

Researchers from iZOOlogic have recently discovered a threat group who introduced themselves from a popular dark web forum website where they claimed to be against China – as opposed to their name “AgainstTheWest.” According to their About page on the forum website, entitled “Declaration of War on China,” they appeared to assert their opposition against...Continue Reading

Cybersecurity leaders have conducted a study that shows the alarming hike of domain name system (DNS) attacks against organisations for 2021. The survey result revealed that within the past 12 months, 72% of participants had experienced a DNS cyberattack.   61% of victimised organisations have suffered from multiple attacks, while 11% are attacked regularly. In terms of cyberattack recovery, one-third of the respondents said...Continue Reading

A Thai luxury hotel chain, Centara Hotels & Resort, has recently published a statement regarding a data breach suspected of being performed by a notorious group of threat actors behind a series of cyberattacks in the past weeks.  Through the security team’s investigation, it was verified that the system of the luxury hotel chain had suffered a data breach, and the threat actors were able to access some customers’...Continue Reading