New wiper malware using Tokyo Olympic-themed documents as a disguise has been discovered. Researchers have analyzed the malware’s obfuscation techniques and specific targeting of files created using Japanese word processors, which likely indicate that Japanese organizations are at risk, although no targeted organizations have been confirmed. Wiper attacks are typically attributed to nation-state−associated threat groups; however, this attack had little impact and the malware’s code was not technically sophisticated, making the involvement of a nation-state less likely. Ongoing backlash in Japan towards the Olympics makes it realistically possible that a domestic threat actor is responsible. Attribution remains unconfirmed, but this incident demonstrates the varied nature of cyber activity towards Olympic events that often brings various cyber-threat activities to the fore.
Most Recent Flipbooks
The US government has issued an alert about the Iran-linked "MuddyWater" advanced persistent threat group
Microsoft has announced plans to restrict its product users' ability to manually enable macros in several Office documents
A recent attack showed the potential of cyber-threat activity when used by a nation-state for coercion.
The FBI has warned of a recent surge in cyber attacks that use quick response (QR) codes.
The Federal Security Service of the Russian Federation (FSB) conducted a series of raids and arrests against at least 20 members of the "REvil" ransomware group.
Researchers have discovered a critical vulnerability in the popular open-source Java SQL database H2
For 2022, cyber-security practitioners must be extraordinarily nimble and adept. Plus information on telegram dropping malware, North Korean group exploits Russia, and Log4j crisis spilling in to 2022
Log4j bug exposes fragility of digital ecosystem worldwide. Plus information on Magecart home for the holidays, Emotet regaining power, and Muddywater APT group hunts for airline data via Slack.