CyberSecurity Updates

On March 5th, 2025, the US DOJ unsealed an indictment against employees of the Chinese contractor I‑SOON for their involvement in multiple global espionage operations. Those include attacks that we previously documented and attributed to the FishMonger APT group – I‑SOON’s operational arm – including the compromise of seven organizations that we identified as being targeted in a 2022 campaign that we named Operation FishMedley. Key points of this blogpost: Verticals targeted during Operation FishMedley…

Read More

In July 2024, ESET Research noticed suspicious activity on the system of a trade group in the United States that operates in the financial sector. While helping the affected entity remediate the compromise, we made an unexpected discovery in the victim’s network: malicious tools belonging to FamousSparrow, a China-aligned APT group. There had been no publicly documented FamousSparrow activity since 2022, so the group was thought to be inactive. Not only was FamousSparrow still active…

Read More

ESET researchers take a look back at the significant changes in the ransomware ecosystem in 2024 and focus on the newly emerged and currently dominating ransomware-as-a-service (RaaS) gang, RansomHub. We share previously unpublished insights into RansomHub’s affiliate structure and uncover clear connections between this newly emerged giant and well-established gangs Play, Medusa, and BianLian. We also emphasize the emerging threat of EDR killers, unmasking EDRKillShifter, a custom EDR killer developed and maintained by RansomHub. We…

Read More

Once thought to be dormant, the China-aligned group has also been observed using the privately-sold ShadowPad backdoor for the first time 27 Mar 2025 The FamousSparrow APT group has infiltrated a trade group in the financial sector in the United States, a research institute in Mexico, and a governmental institution in Honduras, according to new ESET research. While assisting one of the affected entities with the remediation of the attack, ESET’s experts found that the…

Read More

ESET researchers also examine the growing threat posed by tools that ransomware affiliates deploy in an attempt to disrupt EDR security solutions 27 Mar 2025 ESET research has released a deep-dive analysis of changes in the ransomware ecosystem in 2024, focusing especially on RansomHub, a new but highly prolific ransomware-as-a-service (RaaS) gang. Among other things, the report features previously unpublished insights into RansomHub’s affiliate structure and uncovers connections between this gang and its peers, such…

Read More

Business Security Security awareness training doesn’t have to be a snoozefest – games and stories can help instill ‘sticky’ habits that will kick in when a danger is near Tomáš Foltýn 28 Mar 2025  •  , 5 min. read Let me start with an attempt at a story: Sarah’s eyes darted across the email subject line, which read: “URGENT: Payment Needed – Action Required”. It was 4 p.m. on a Friday, and the CEO’s name…

Read More

Business Security Ransomware Your company’s ability to tackle the ransomware threat head-on can ultimately be a competitive advantage Tomáš Foltýn 31 Mar 2025  •  , 3 min. read “Everybody has a plan until they get punched in the mouth.”  Mike Tyson’s punchy (pun intended) adage rings all too true for organizations reeling from a ransomware attack. In recent years, ransomware has proven capable of bringing even a thriving business to its knees in a matter of…

Read More

From an exploited vulnerability in a third-party ChatGPT tool to a bizarre twist on ransomware demands, it’s a wrap on another month filled with impactful cybersecurity news 31 Mar 2025 As you might expect, the world of cybersecurity doesn’t sleep, so much so that keeping up with new threats and other impactful news actually feels like a full-time job. This is where our roundup of the month’s most impactful cybersecurity stories comes in. In the…

Read More

Artificial intelligence is on everybody’s lips these days, sparking excitement, fear and endless debates. Is it a force for good or bad – or a force we actually have yet to fully understand? We sat down with prominent computer scientist and AI researcher Mária Bieliková to discuss these and other pressing issues surrounding AI, its impact on humanity, and broader ethical dilemmas and questions of trust it raises. Congratulations on becoming the latest laureate of…

Read More