2009, Government and Security - Information Management Today

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Security Affairs

NOVEMBER 28, 2021

North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms. North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported.

Security

Security Phishing Information Security Communications

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Security Affairs

AUGUST 4, 2022

Taiwan government websites were temporarily forced offline by cyber attacks during the visit to Taipei of US House Speaker Nancy Pelosi. Major Taiwan government websites were temporarily forced offline by distributed denial of service (DDoS) attacks attacks during the visit to Taipei of US House Speaker Nancy Pelosi.

Government

Government Cloud Cybersecurity Security

U.S. Internet Leaked Years of Internal, Customer Emails

Krebs on Security

FEBRUARY 14, 2024

has a business unit called Securence , which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. Internet/Securence says your email is secure. Hold Security founder Alex Holden said his researchers had unearthed a public link to a U.S.

Education

Education Data breaches Government Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

North Korea-linked APT group BeagleBoyz targets banks

Security Affairs

AUGUST 29, 2020

According to a joint advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA), the Department of the Treasury, the Federal Bureau of Investigation (FBI), and U.S. Government refers to this team as BeagleBoyz, who represent a subset of HIDDEN COBRA activity.” ” reads the alert. Pierluigi Paganini.

Access

Access Government Ransomware Cybersecurity

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Security Affairs

SEPTEMBER 9, 2019

Experts at Symantec first exposed the activity of the Chinese-linked APT Thrip in 2018, now the security firm confirms that cyber espionage group has continued to carry out attacks in South East Asia. Security experts at Symantec speculate that Thrip is a sub-group of Billbug. ” continues the report. Pierluigi Paganini.

Military

Military Communications Government Education

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Orange Belgium is using Huawei equipment since 2007 for its mobile network in Belgium and Luxembourg, while the collaboration between Proximus and the Shenzhen-based company started in 2009 for the progressive upgrading of its network. The post Belgium telecom operators Proximus and Orange drop Huawei appeared first on Security Affairs.

Manufacturing

Manufacturing Risk Communications Security

China planted tiny chips on US computers for cyber espionage

Security Affairs

OCTOBER 4, 2018

China used tiny chips implanted on computer equipment manufactured for US companies and government agencies to steal secret information. Amazon discovered the tiny chips when it acquired software firm Elemental and conducted a security assessment of equipment made for Elemental by California-based Supermicro. government.”

Manufacturing

Manufacturing Government Security IT

US DoJ indicts Chinese hackers over state-sponsored cyber espionage

Security Affairs

DECEMBER 21, 2018

The US Department of Justice charged two Chinese hackers for hacking numerous companies and government agencies in a dozen countries, US Indicts Two Chinese Government Hackers Over Global Hacking Campaign. The post US DoJ indicts Chinese hackers over state-sponsored cyber espionage appeared first on Security Affairs.

Computer and Electronics

Computer and Electronics Healthcare Manufacturing Government

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs

NOVEMBER 18, 2020

The group, also known as Cicada, Stone Panda , and Cloud Hopper , has been active at least since 2009, in April 2017 experts from PwC UK and BAE Systems uncovered a widespread hacking campaign, tracked as Operation Cloud Hopper , targeting managed service providers (MSPs) in multiple countries worldwide. ” Pierluigi Paganini.

Healthcare

Healthcare Archiving Cloud Manufacturing

EU has imposed sanctions on foreign actors for the first time ever

Security Affairs

JULY 31, 2020

The group has been active at least since 2009, in April 2017 experts from PwC UK and BAE Systems uncovered a widespread hacking campaign, tracked as Operation Cloud Hopper , targeting managed service providers (MSPs) in multiple countries worldwide. . ” states the Council of the European Union.” ” conclude the EU.

Military

Military Cloud Government Phishing

PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web

Security Affairs

OCTOBER 23, 2023

An Aadhaar is a unique, 12-digit individual identification number “issued by the Unique Identification Authority of India on behalf of the Government of India,” according to the UIDAI website. The Moody’s report also warned that there are security and privacy vulnerabilities in Aadhaar’s centralized system. With roughly 1.4

Sales

Sales e-Discovery Data breaches Risk

APT10 is back with two new loaders and new versions of known payloads

Security Affairs

MAY 27, 2019

The APT10 group has added two new malware loaders to its arsenal and used in attacks aimed at government and private organizations in Southeast Asia. In April 2019, China-linked cyber-espionage group tracked as APT10 has added two new loaders to its arsenal and used it against government and private organizations in Southeast Asia.

Libraries

Libraries Government Phishing Cloud

Lazarus malware delivered to South Korean users via supply chain attacks

Security Affairs

NOVEMBER 16, 2020

North Korea-linked Lazarus APT group is behind new campaigns against South Korean supply chains that leverage stolen security certificates. . Security experts from ESET reported that North-Korea-linked Lazarus APT (aka HIDDEN COBRA ) is behind cyber campaigns targeting South Korean supply chains.

Financial Services

Financial Services Security Government Phishing

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

Security Affairs

OCTOBER 3, 2018

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. Security Affairs – Hidden Cobra, FastCash ). ” states the report. Pierluigi Paganini.

Retail

Retail Libraries Government Phishing

Experts link attack on Chilean interbank network Redbanc NK Lazarus APT

Security Affairs

JANUARY 16, 2019

Security experts at Flashpoint linked the recently disclosed attack on the Chilean interbank network to the dreaded Lazarus APT group. This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems.

Communications

Communications Ransomware Security IT

The US Treasury placed sanctions on North Korea linked APT Groups

Security Affairs

SEPTEMBER 13, 2019

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. Andariel , is another Lazarus subgroup that focuses in targeting businesses, government agencies, and individuals. Pierluigi Paganini.

Government

Government Ransomware Cybersecurity Access

China-linked APT10 Target Taiwan’s financial trading industry

Security Affairs

FEBRUARY 22, 2022

The group (also known as Cicada, Stone Panda , MenuPass group, Bronze Riverside, and Cloud Hopper ) has been active at least since 2009, in April 2017 experts from PwC UK and BAE Systems uncovered a widespread hacking campaign, tracked as Operation Cloud Hopper , targeting managed service providers (MSPs) in multiple countries worldwide.

Passwords

Passwords Cloud Security Cybersecurity

Russian spies are attempting to tap transatlantic undersea cables

Security Affairs

MARCH 1, 2020

Attacks against undersea cables are not a novelty, in 2014 The Register published information on a secret British spy base located at Seeb on the northern coast of Oman, a strategic position that allows the British Government to tap to various undersea cables passing through the Strait of Hormuz into the Persian/Arabian Gulf.

Military

Military Communications Data collection Access

Adventures in Contacting the Russian FSB

Krebs on Security

JUNE 7, 2021

KrebsOnSecurity recently had occasion to contact the Russian Federal Security Service (FSB), the Russian equivalent of the U.S. federal prison for his role in the theft of $9 million from RBS WorldPay in 2009. federal prison for his role in the theft of $9 million from RBS WorldPay in 2009. Federal Bureau of Investigation (FBI).

Encryption

Encryption Ransomware Government Communications

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Nikita Kislitsin, at a security conference in Russia. Department of Justice. “The company is monitoring developments.”

Cybersecurity

Cybersecurity Passwords Government Security

Spain extradites 94 Taiwanese to China phone and online fraud charges

Security Affairs

JUNE 10, 2019

According to the Chinese Public Security Ministry, the telephone and online frauds allowed the suspects to earn 120 million yuan ($17 million). The two governments signed an agreement in 2009 to join the efforts in the fight against the crime. “Similar scams operate from several countries and usually prey on Chinese.”

Government

Government Security IT Information Security

US authorities aim to dismantle North Korea’s Joanap Botnet

Security Affairs

FEBRUARY 1, 2019

authorities will also inform foreign victims through the FBI’s Legal Attaches that works with the law enforcement and security agencies in their countries. The Joanap botnet has been around since 2009, experts pointed out that the threat is still spreading through unpatched systems and unprotected networks. Pierluigi Paganini.

Military

Military Access Communications Security

SimJacker attack allows hacking any phone with just an SMS

Security Affairs

SEPTEMBER 12, 2019

Cybersecurity researchers at AdaptiveMobile Security disclosed a critical vulnerability in SIM cards dubbed SimJacker that could be exploited by remote attackers to compromise targeted mobile phones and spy on victims just by sending an SMS. The SIMalliance recommends implementing security for S@T push messages.

Manufacturing

Manufacturing Security Cybersecurity Risk

Cloud Hopper operation hit 8 of the world’s biggest IT service providers

Security Affairs

JUNE 27, 2019

“Teams of hackers connected to the Chinese Ministry of State Security had penetrated HPE’s cloud computing service and used it as a launchpad to attack customers, plundering reams of corporate and government secrets for years in what U.S. The list of victims is long and includes tech giants like HPE, IBM, DXC, Fujitsu, and Tata.

Cloud

Cloud IT Systems administration Phishing

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Security Affairs

APRIL 30, 2019

Bloomberg obtained Vodafone’s security briefing documents from 2009 and 2011 and spoke with people involved in the situation. A few days ago, the British Government has approved a limited role for Huawei in the building of a national 5G network in the country, ignoring security concerns from senior ministers.

IT

IT Access Government Security

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

A 31-year-old Canadian man has been arrested and charged with fraud in connection with numerous ransomware attacks against businesses, government agencies and private citizens throughout Canada and the United States. Federal Bureau of Investigation (FBI) contacted them regarding ransomware attacks that were based in Canada.

IT

IT Ransomware Mining Government

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. An ad for war.md, circa 2009.

Cloud

Cloud Education Government Communications

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The post Platinum APT and leverages steganography to hide C2 communications appeared first on Security Affairs.

Communications

Communications Encryption Military Government

Buckeye APT group used Equation Group tools prior to ShadowBrokers leak

Security Affairs

MAY 7, 2019

The APT3 cyberespionage group had been active since at least 2009 and its last operation was uncovered in mid-2017. In 2010, security vendor FireEye identified the Pirpi Remote Access Trojan (RAT) which exploited a then 0-day vulnerability in Internet Explorer versions 6, 7 and 8. ” concludes Symantec. Pierluigi Paganini.

Access

Access Security IT Cybersecurity

US and UK sanctioned seven Russian members of Trickbot gang

Security Affairs

FEBRUARY 9, 2023

” This is the first time the UK government has imposed such kind of sanctions, its authorities collaborated with the U.S. government and U.S. based financial institutions that occurred in 2009 and 2010, predating his involvement in Dyre or the Trickbot Group. and the U.K.” ” continues the press release.

Ransomware

Ransomware Access Government Passwords

Key aerospace player Safran Group leaks sensitive data

Security Affairs

MARCH 15, 2023

It is crucial to ensure that leaked keys are in longer bit-lengths and encoded using secure encryption/hashing algorithms. Additionally, the company should consider whether the platform needs to be accessible through the internet or only through a VPN, which would provide an additional layer of security.

Manufacturing

Manufacturing Access Risk IT

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

For years, security experts — and indeed, many top cybercriminals in the Spamit affiliate program — have expressed the belief that Sal and Icamis were likely the same person using two different identities. He is currently housed in a federal prison in Michigan, serving the final stretch of a 60-month sentence.

Computer and Electronics

Computer and Electronics Passwords Government Sales

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Krebs on Security

MARCH 22, 2022

But according to information obtained by KrebsOnSecurity, it is equally likely Vrublevsky was arrested thanks to his propensity for carefully documenting the links between Russia’s state security services and the cybercriminal underground. prison for his role in the 2009 theft of more than $9 million from RBS Worldpay.

Risk

Risk Marketing Archiving IT

Latest Turla backdoor leverages email PDF attachments as C&C mechanism

Security Affairs

AUGUST 23, 2018

Turla is the name of a Russian cyber espionage APT group (also known as Waterbug, Venomous Bear and KRYPTON) that has been active since at least 2007 targeting government organizations and private businesses. ” The Turla backdoor has been used since at least 2009 and was continuously improved across the years. .

Metadata

Metadata Military Libraries Access

The Platinum APT group adds the Titanium backdoor to its arsenal

Security Affairs

NOVEMBER 9, 2019

Security experts at Kaspersky Lab have spotted a new backdoor, tracked as Titanium, that was used by the Platinum APT group in attacks in the wild, the malicious code implements sophisticated evasion techniques. The post The Platinum APT group adds the Titanium backdoor to its arsenal appeared first on Security Affairs.

IT

IT Archiving Encryption Passwords

Data Privacy Day 2009

Hunton Privacy

JANUARY 23, 2009

Wednesday, January 28, 2009, marks the second annual international Data Privacy Day, which brings together a broad coalition of privacy professionals from both the private and public sectors, as well as corporations, academics and policymakers, with the goal of promoting awareness and collaboration on a variety of data privacy issues.

Data Privacy

Data Privacy Privacy Government Security

Best Network Security Tools 2021

eSecurity Planet

MAY 27, 2021

With almost every aspect of business becoming more digital, enterprise network security software minimizes the impact of cyberattacks — especially as guarding against them protects a company’s operations and safeguards its competitiveness in a fast-moving marketplace. Top network security tools. Network Security Product.

Security

Security Cloud Analytics Access

Newly Discovered Malware Evades Detection by Hijacking Communications

eSecurity Planet

MARCH 1, 2022

Symantec this week reported a highly sophisticated malware called “Backdoor.Daxin” that “appears to be used in a long-running espionage campaign against select governments and other critical infrastructure targets” and appears to be linked to China. Codebase Dates to 2009. Trade Cyberthreats.

Communications

Communications Encryption Government Cybersecurity

Real-Time Attacks Against Two-Factor Authentication

Schneier on Security

DECEMBER 14, 2018

Attackers are targeting two-factor authentication systems: Attackers working on behalf of the Iranian government collected detailed information on targets and used that knowledge to write spear-phishing emails that were tailored to the targets' level of operational security, researchers with security firm Certfa Lab said in a blog post.

Authentication

Authentication Passwords Phishing Government

Swiss Game Developer Settles FTC Allegations Over COPPA Safe Harbor Claims

Hunton Privacy

MAY 20, 2020

In 2009, Miniclip joined the FTC-approved Children’s Advertising Review Unit (“CARU”) COPPA safe harbor program and remained a member of the program until 2015, when CARU terminated Miniclip’s participation. Under COPPA, the FTC may approve self-regulatory safe harbor programs that implement the protections of the FTC’s final COPPA Rule.

Compliance

Compliance Privacy Government IT

Sophie Sayer on the IT Governance Partner Programme

IT Governance

FEBRUARY 14, 2024

The benefits of partnering with us, and our partner-exclusive event IT Governance launched its partner programme in 2017, which now includes more than 400 organisations. And why should organisations consider partnering with IT Governance? What is it that makes IT Governance special? What else can partners expect from the event?

Government

Government IT Sales Data Privacy

Backdoor in XZ Utils That Almost Happened

Schneier on Security

APRIL 11, 2024

There’s an important moral to the story of the attack and its discovery : The security of the global internet depends on countless obscure pieces of software written and maintained by even more obscure unpaid, distractible, and sometimes vulnerable volunteers. And to its security. It’s probably on yours. This is a systems problem.)

Libraries

Libraries e-Discovery Cybersecurity Government

MY TAKE: A primer on how ransomware arose to the become an enduring scourge

The Last Watchdog

AUGUST 15, 2019

However, that’s more a function of hackers targeting individuals less, and companies and governments more. While reporting for USA Today in 2009, I wrote about how fraudsters launched scareware campaigns to lock up computer screens as a means to extract $80 for worthless antivirus protection. Best security practices are a must.

Ransomware

Ransomware Access Cybersecurity Insurance

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Webinars

Trending Sources

U.S. Internet Leaked Years of Internal, Customer Emails

Webinars

North Korea-linked APT group BeagleBoyz targets banks

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Belgium telecom operators Proximus and Orange drop Huawei

China planted tiny chips on US computers for cyber espionage

US DoJ indicts Chinese hackers over state-sponsored cyber espionage

China-linked APT10 leverages ZeroLogon exploits in recent attacks

EU has imposed sanctions on foreign actors for the first time ever

PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web

APT10 is back with two new loaders and new versions of known payloads

Lazarus malware delivered to South Korean users via supply chain attacks

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

Experts link attack on Chilean interbank network Redbanc NK Lazarus APT

The US Treasury placed sanctions on North Korea linked APT Groups

China-linked APT10 Target Taiwan’s financial trading industry

Russian spies are attempting to tap transatlantic undersea cables

Adventures in Contacting the Russian FSB

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Spain extradites 94 Taiwanese to China phone and online fraud charges

US authorities aim to dismantle North Korea’s Joanap Botnet

SimJacker attack allows hacking any phone with just an SMS

Cloud Hopper operation hit 8 of the world’s biggest IT service providers

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Canada Charges Its “Most Prolific Cybercriminal”

Stark Industries Solutions: An Iron Hammer in the Cloud

Platinum APT and leverages steganography to hide C2 communications

Buckeye APT group used Equation Group tools prior to ShadowBrokers leak

US and UK sanctioned seven Russian members of Trickbot gang

Key aerospace player Safran Group leaks sensitive data

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Top Database Security Solutions for 2021

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Latest Turla backdoor leverages email PDF attachments as C&C mechanism

The Platinum APT group adds the Titanium backdoor to its arsenal

Data Privacy Day 2009

Best Network Security Tools 2021

Newly Discovered Malware Evades Detection by Hijacking Communications

Real-Time Attacks Against Two-Factor Authentication

Swiss Game Developer Settles FTC Allegations Over COPPA Safe Harbor Claims

Sophie Sayer on the IT Governance Partner Programme

Backdoor in XZ Utils That Almost Happened

MY TAKE: A primer on how ransomware arose to the become an enduring scourge

Stay Connected