BotNet News

Cyberthreat News is a weekly roundup of key cybersecurity threats and developments around the world.

In January 2024, hackers launched a ransomware attack against Sweden’s digital services provider, which handles all of the country’s government systems. The attack impacted 120 government offices, leaving many services inaccessible and disrupting operations.

Cybercriminals are reportedly selling a stolen dataset from China’s Ministry of State Security. The data set includes personal identification information from half a billion Chinese citizens and classified documents, according to criminals.

Russian hackers breached emails of U.S. government employees in the State Department and Commerce, exploiting a Microsoft vulnerability to gain unauthorized access. This is one of the most significant breaches against U.S. government personnel in the past two years.

Chinese hackers targeted telecommunication service providers in Africa as part of an espionage campaign since November 2022. The attackers used phishing campaigns to imbed malware into their targets, which allowed them to move laterally within the networks to spy on users and steal data.

In September, Chinese hackers allegedly stole the login credentials for an unnamed country’s power grid. The hackers were using the compromised systems to gather critical military intelligence, such as the status of nuclear weapons and power stations.

In October, Russia and Iran were alleged to have attacked Israeli government sites and Hamas websites in support of Palestinian militants. Meanwhile, Indian hacktivists targeted Canadian government sites after Prime Minister Justin Trudeau accused India of killing Sikh independence activist Hardeep Singh Nijjar.