Security Alerts & News
by Tymoteusz A. Góral

History
#1563 On the StrongPity waterhole attacks targeting Italian and Belgian encryption users
The StrongPity APT is a technically capable group operating under the radar for several years. The group has quietly deployed zero-day in the past, effectively spearphished targets, and maintains a modular toolset. What is most interesting about this group’s more recent activity however, is their focus on users of encryption tools, peaking this summer. In particular, the focus was on Italian and Belgian users, but the StrongPity watering holes affected systems in far more locations than just those two. Adding in their creative waterholing and poisoned installer tactics, we describe the StrongPity APT as not only determined and well-resourced, but fairly reckless and innovative as well.
Read more
#1566 Odinaff Trojan attacks banks and more, monitoring networks and stealing credentials
#1565 NSA could put undetectable “trapdoors” in millions of crypto keys
#1564 Ransomware: Expert advice on how to keep safe and secure
#1563 On the StrongPity waterhole attacks targeting Italian and Belgian encryption users
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12