Targeting
Operation FishMedley targeting governments, NGOs, and think tanks
On March 5th, 2025, the US DOJ unsealed an indictment against employees of the Chinese contractor I‑SOON for their involvement in multiple global espionage operations. Those include attacks that we previously documented and attributed to the FishMonger APT group – I‑SOON’s operational arm – including the compromise of seven organizations that we identified as being…
Targeting early-onset Parkinson’s with AI
Impact Published 21 September 2022 AlphaFold predictions are paving the way towards new treatments that can impact over 10 million people worldwide It was a source of hard-earned satisfaction after what had often felt like an uphill battle. David Komander and his colleagues had finally published the long-sought structure of PINK1. Mutations in the gene…
Operation RoundPress targeting high-value webmail servers
This blogpost introduces an operation that we named RoundPress, targeting high-value webmail servers with XSS vulnerabilities, and that we assess with medium confidence is run by the Sednit cyberespionage group. The ultimate goal of this operation is to steal confidential data from specific email accounts. Key points of this blogpost: In Operation RoundPress, the compromise…
Why cyber attackers are targeting your solar energy systems — and how to stop them
High energy costs and concerns over the stability and capacity of electric grids are leading businesses to evaluate and implement their own onsite energy generation systems. These onsite systems, referred to as distributed energy resources (DERs), are most commonly solar panel arrays, often paired with batteries to store energy for later use. DERs are usually…
_Pablo_Lagarto_Alamy.jpg?disable=upscale&width=1200&height=630&fit=crop&w=600&resize=600,400&ssl=1 "How Nation-State Cybercriminals Are Targeting the Enterprise")
How Nation-State Cybercriminals Are Targeting the Enterprise
COMMENTARY Cyber warfare often mirrors traditional conflict, but as global geopolitical tensions continue to rise, the landscape of nation-state cyber-threat actors has shifted significantly. Recent events have spurred altered tactics, targets, and patterns of state-sponsored cyberattacks. While historically these threat actors focused primarily on critical infrastructure and government entities like energy grids and transportation, today’s nation-state threat actors…
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
The Lazarus Group, an infamous threat actor linked to the Democratic People’s Republic of Korea (DPRK), has been observed leveraging a “complex infection chain” targeting at least two employees belonging to an unnamed nuclear-related organization within the span of one month in January 2024. The attacks, which culminated in the deployment of a new modular…