2011, Government and Security - Information Management Today

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

Researchers from ESET uncovered the activity of a new APT group, tracked as XDSpy, that has been active since at least 2011. XDSpy is the name used by ESET researchers to track a nation-state actor that has been active since at least 2011. The post XDSpy APT remained undetected since at least 2011 appeared first on Security Affairs.

Military

Military Phishing Passwords Government

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Security Affairs

APRIL 30, 2019

Bloomberg obtained Vodafone’s security briefing documents from 2009 and 2011 and spoke with people involved in the situation. Bloomberg revealed that once discovered the backdoors in home routers in 2011, Vodafone asked Huawei to address them. ” reported the AFP. ” continues bloomberg. ” continues bloomberg.

IT

IT Access Government Security

Happy birthday, Security Affairs celebrates its ninth Anniversary today

Security Affairs

NOVEMBER 17, 2020

Happy BirthDay Security Affairs! I launched Security Affairs for passion in November 2011 and since then the blog read by millions of readers. I started with a single post per day, nine years later I’m still the only contributor and I do all my best to cover the most important news in the cyber security landscape.

Security

Security IT Cybersecurity Risk

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

The Full Story of the Stunning RSA Hack Can Finally Be Told

WIRED Threat Level

MAY 20, 2021

In 2011, Chinese spies stole the crown jewels of cybersecurity—stripping protections from firms and government agencies worldwide. Here’s how it happened.

Cybersecurity

Cybersecurity Government IT Security

US Indicts 4 Chinese Nationals for Lengthy Hacking Campaign

Data Breach Today

JULY 19, 2021

All Aligned With China's Ministry of State Security The U.S.

Government

Government Security

Russian Government-owned research institute linked to Triton attacks

Security Affairs

OCTOBER 23, 2018

Security experts from FireEye found evidence that links the development of the Triton malware (aka Trisis and HatMan) to a Russian government research institute. a Russian government-owned technical research institution located in Moscow. Security Affairs – Triton Malware, ICS). ” continues the expert.

Government

Government Communications Access Security

Happy birthday Security Affairs … 11 years together!

Security Affairs

NOVEMBER 15, 2022

Happy BirthDay Security Affairs! I launched Security Affairs for passion in November 2011 and since then the blog was visited by tens of millions of readers. Eleven years ago I decided to launch Security Affairs, a blog that is considered today one of the most valuable sources of the cybersecurity industry.

Security

Security Cybersecurity Government IT

US DoJ indicts four members of China-linked APT40 cyberespionage group

Security Affairs

JULY 19, 2021

US DoJ indicted four members of the China-linked cyberespionage group known as APT40 for hacking various entities between 2011 and 2018. The APT40 group has been active since at least 2013 and appears to be focused on supporting naval modernization efforts of the Government of Beijing. Ltd. (????) . ” states DoJ.

Government

Government Cybersecurity Security Access

Russia-linked threat actors targets critical infrastructure, US authorities warn

Security Affairs

JANUARY 12, 2022

US Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) issued a joint alert to warn critical infrastructure operators about threats from Russian state-sponsored hackers. ” reads the joint alert. Pierluigi Paganini.

Cybersecurity

Cybersecurity Risk Government Phishing

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

Security Affairs

APRIL 22, 2024

The threat actors shared a portion of the stolen data with TechCrunch as proof of the hack, it includes records on current and former government officials, diplomats, and politically exposed people. Curiously, in 2011, Thomson Reuters acquired World-Check, then in October 2018, Thomson Reuters closed a deal with The Blackstone Group.

Risk

Risk Archiving Access Privacy

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate information. Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. According to the company, attackers did not obtain sensitive information about defense contracts.

Data breaches

Data breaches Computer and Electronics Government Access

Iran’s Mahan Air claims it has failed a cyber attack, hackers say the opposite

Security Affairs

NOVEMBER 22, 2021

According to Iran’s Fars News Agency, Mahan Air was hit by similar attacks “many times,” for this reason Mahan’s Cyber Security Team rapidly neutralized these attacks. The US had sanctioned Mahan Air in 2011 for providing financial, material, or technological support to Iran’s Islamic Revolutionary Guard Corps. Pierluigi Paganini.

IT

IT Security Cybersecurity Government

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Security Affairs

AUGUST 1, 2019

million to settle a legal dispute for selling vulnerable software to the US government. The case was filed in the Federal District Court for the Western District of New York and was handled under the False Claims Act, which specifically addresses fraud and misconduct in federal government contracts. Cisco is going to pay $8.6

Government

Government Sales Access Security

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

The Tropic Trooper APT that has been active at least since 2011, it was first spotted in 2015 by security experts at Trend Micro when it targeted government ministries and heavy industries in Taiwan and the military in the Philippines. ” reads the analysis published by Trend Micro. ” continues the report.

Military

Military Government Security IT

CIA Hacking unit APT-C-39 hit China since 2008

Security Affairs

MARCH 4, 2020

Chinese security firm Qihoo 360 revealed that the US CIA has hacked Chinese organizations in various sectors for the last 11 years. Chinese security firm Qihoo 360 is accusing that the US Central Intelligence Agency (CIA) of having hacked Chinese organizations for the last 11 years. time zone. . Pierluigi Paganini.

Military

Military Government Security IT

France ANSSI agency warns of APT31 campaign against French organizations

Security Affairs

JULY 21, 2021

French cyber-security agency ANSSI warned of an ongoing cyberespionage campaign aimed at French organizations carried out by China-linked APT31 group. The French national cyber-security agency ANSSI warned of ongoing attacks against a large number of French organizations conducted by the Chine-linked APT31 cyberespionage group.

Government

Government Security IT Cybersecurity

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

According to a report published by Symantec in 2017, Longhorn is a North American hacking group that has been active since at least 2011. ” The malware leverages the Microsoft implementation of SSL/TLS, Secure Channel, for C2 communication. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Communications

Communications Encryption Education Authentication

Iran-linked Charming Kitten APT contacts targets via WhatsApp, LinkedIn

Security Affairs

AUGUST 28, 2020

Clearsky security researchers revealed that Iran-linked Charming Kitten APT group is using WhatsApp and LinkedIn to conduct spear-phishing attacks. Now, security researchers from Clearsky reported details about a new phishing campaign in which the threat actors impersonate journalists from ‘DeutscheWelle’ and the ‘Jewish Journal.’

Phishing

Phishing Security Government IT

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Cybersecurity Sales Blockchain

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Finisher, aka FinFisher, is a multiplatform surveillance software used by government and law enforcement agencies for their investigations, but unfortunately, it made the headlines because it was also used by oppressive regimes to spy on dissidents, activists, and Journalists. Pierluigi Paganini. SecurityAffairs – hacking, FinSpy).

Encryption

Encryption Communications IT Government

Iran-linked Phosphorous APT hacked emails of security conference attendees

Security Affairs

OCTOBER 29, 2020

Iran-linked APT group Phosphorus successfully hacked into the email accounts of multiple high-profile individuals and security conference attendees. “Phosphorus, an Iranian actor, has targeted with this scheme potential attendees of the upcoming Munich Security Conference and the Think 20 (T20) Summit in Saudi Arabia.”

Security

Security Authentication Phishing Government

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

This week, Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. Mitsubishi Electric disclosed the security incident only after two local newspapers, the Asahi Shimbun and Nikkei , reported the security breach.

Manufacturing

Manufacturing Data breaches Access Sales

GUEST ESSAY: Here’s why penetration testing has become a ‘must-have’ security practice

The Last Watchdog

FEBRUARY 24, 2022

Yes, and that is what Sony exactly lost when they were hacked and the personal info of every one of its customers leaked in 2011. Now, let me give you a few reasons, why pen testing has emerged as a “must-have” security practice. For example, your website security may prove strong, applications not so much.

Security

Security Compliance Retail Risk

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

In April 2017, Symantec security experts who analyzed the alleged CIA hacking tools included in the Vault 7 dump that were involved in attacks aimed at least 40 governments and private organizations across 16 countries. Symantec believes Longhorn is a North American hacking group that has been active since at least 2011.

Government

Government Cybersecurity Education Security

German authorities raid the offices of the FinFisher surveillance firm

Security Affairs

OCTOBER 14, 2020

Finisher, aka FinFisher, is a multiplatform surveillance software used by government and law enforcement agencies for their investigations, but unfortunately, it made the headlines because it was also used by oppressive regimes to spy on dissidents, activists, and Journalists. Pierluigi Paganini. SecurityAffairs – hacking, K-Electric).

Sales

Sales Communications Privacy IT

US Treasury imposes sanctions on a Russian research institute behind Triton malware

Security Affairs

OCTOBER 24, 2020

. “Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) designated, pursuant to Section 224 of the Countering America’s Adversaries Through Sanctions Act (CAATSA), a Russian government research institution that is connected to the destructive Triton malware.” ” continues the press release.

Government

Government Cybersecurity Information Security IT

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Security Affairs

SEPTEMBER 11, 2023

ESET researchers observed a series of attacks, conducted by the Iran-linked APT group Charming Kitten (aka Ballistic Bobcat APT, APT35 , Phosphorus , Newscaster , TA453 , and Ajax Security Team), which are targeting various entities in Brazil, Israel, and the United Arab Emirates. Israel, Iraq, and Saudi Arabia.

Education

Education Access Government Security

Iran-linked APT35 accidentally exposed 40 GB associated with their operations

Security Affairs

JULY 17, 2020

Iran-linked Charming Kitten group, (aka APT35 , Phosphorus , Newscaster , and Ajax Security Team) made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media. continues IBM. and Greek Navy.”. . Pierluigi Paganini.

Military

Military Authentication Cloud IT

#OpFukushima: Anonymous group protests against the plan to dump Fukushima RADIOACTIVE wastewater into Pacific

Security Affairs

AUGUST 18, 2023

The campaign was launched to protest against the Government’s plan to release the treated radioactive water from the Fukushima nuclear plant into the sea. The security firm warns of a possible escalation of the attacks and urge to increase the level of cyber security of potential targets. ” reported the Japan Times.

Government

Government Security IT Information Security

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

The government alleges Khoroshev created, sold and used the LockBit ransomware strain to personally extort more than $100 million from hundreds of victim organizations, and that LockBit as a group extorted roughly half a billion dollars over four years. 2011 said he was a system administrator and C++ coder. Dmitry Yuryevich Khoroshev.

Ransomware

Ransomware Encryption Systems administration Government

Multiple cybersecurity agencies warn of China-linked APT40 ‘s capabilities

Security Affairs

JULY 10, 2024

Multiple cybersecurity agencies released a joint advisory warning about a China-linked group APT40 ‘s capability to rapidly exploit disclosed security flaws. The group appears to be focused on supporting the naval modernization efforts of the Government of Beijing. and the U.S.

Cybersecurity

Cybersecurity Government Phishing IT

Hunting the ICEFOG APT group after years of silence

Security Affairs

JUNE 8, 2019

A security researcher found new evidence of activities conducted by the ICEFOG APT group, also tracked by the experts as Fucobha. Chi-en (Ashley) Shen, a senior security researcher at FireEye, collected evidence that demonstrates that China-linked APT group ICEFOG (aka Fucobha ) is still active. Pierluigi Paganini.

Agriculture

Agriculture Government Military Communications

Iran-linked Phosphorus group hit a 2020 presidential campaign

Security Affairs

OCTOBER 6, 2019

Microsoft says that the Iran-linked cyber-espionage group tracked as Phosphorus (aka APT35 , Charming Kitten , Newscaster , and Ajax Security Team) a 2020 presidential campaign. Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. .

Passwords

Passwords Government Access Authentication

Greek authorities approved extradition of Russian hacker Alexander Vinnik to Russia

Security Affairs

SEPTEMBER 17, 2018

The authorities reported that since 2011, 7 million Bitcoin went into the BTC-e exchange and 5.5 The Russian government officially asked the Greek government to extradite Vinnik to Russia, where he is facing around $10,000 worth of fraud charges, practically nothing compared the charges in the US and France. .

Government

Government Security IT

Anonymous hacked Russian PSCB Commercial Bank and companies in the energy sector

Security Affairs

APRIL 29, 2022

ECM’s domestic clients include the Novovoronezh, Kursk and Smolensk nuclear power plants, Russian Railways JSC, State enterprise Moscow Power Directorate, the Energy department of Moscow Government, the Moscow united electric grid JSC branch, and Baltic Oil Pipelines LLC. The collective has released a 1.7 Pierluigi Paganini.

ECM

ECM Archiving Government Cybersecurity

The Belgacom hack was the work of the UK GCHQ intelligence agency

Security Affairs

OCTOBER 28, 2018

Many experts linked the Regin malware to the Five Eyes alliance , they found alleged references to the super spyware in a number of presentations leaked by Edward Snowden and according to malware researchers, it has been used in targeted attacks against government agencies in the EU and the Belgian telecoms company Belgacom.

Communications

Communications Access Phishing Security

Iran-linked APT group Charming Kitten targets journalists, political and human rights activists

Security Affairs

FEBRUARY 7, 2020

Iran-linked Charming Kitten group, (aka APT35 , Phosphorus , Newscaster , and Ajax Security Team) made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media. candidate , government officials, and expatriate Iranians.

Phishing

Phishing Government Passwords Authentication

Iran-linked APT42 is behind over 30 espionage attacks

Security Affairs

SEPTEMBER 11, 2022

APT42’s TTPs overlap with another Iran-linked APT group tracked as APT35 (aka ‘ Charming Kitten ‘, ‘ Phosphorus ‘, Newscaster , and Ajax Security Team) which made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media.

Phishing

Phishing Government Authentication IT

Charming Kitten APT is targeting Iranian dissidents in Germany

Security Affairs

AUGUST 10, 2023

The intelligence agency attributes the attack to the Iran-linked APT group Charming Kitten (aka APT35 , Phosphorus , Newscaster , and Ajax Security Team). Intelligence officers believe that Iranian dissidents tracked by the government of Teheran could be killed by the regime. Israel, Iraq, and Saudi Arabia.

Phishing

Phishing Security Government Access

Charming Kitten Campaign involved new impersonation methods

Security Affairs

OCTOBER 13, 2019

Security experts at ClearSky analyzed attacks recently uncovered by Microsoft that targeted a US presidential candidate, government officials, journalists, and prominent expatriate Iranians. The post Charming Kitten Campaign involved new impersonation methods appeared first on Security Affairs. Pierluigi Paganini.

Phishing

Phishing Government Security Information Security

Op Wocao – China-linked APT20 was able to bypass 2FA

Security Affairs

DECEMBER 23, 2019

China-linked cyber espionage group APT20 has been bypassing two-factor authentication (2FA) in recent attacks, cyber-security firm Fox-IT warns. Security experts from cyber-security firm Fox-IT warns of a new wave of attacks, tracked as Operation Wocao, carried out by China-linked cyber espionage group APT20 that has been bypassing 2FA.

Authentication

Authentication Insurance Access Government

NSA Launches New Cybersecurity Directorate

Security Affairs

OCTOBER 5, 2019

But this new directorate seems to signal a pivot towards a more public approach to security than the Agency has taken in the past. The directorate also reflects a change in the importance of national cybersecurity and provides a hint as to how government agencies are rethinking how cybersecurity divisions should be organized.

Cybersecurity

Cybersecurity Military Security Access

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

Security Affairs

AUGUST 31, 2022

Over the years, the group hit defence contractors, manufacturers, universities, government agencies, legal firms involved in diplomatic disputes, and foreign companies involved with Australasian policy or South China Sea operations. . ” read the report published by the experts. Follow me on Twitter: @securityaffairs and Facebook.

Energy and Utilities

Energy and Utilities Manufacturing Phishing Government

XDSpy APT remained undetected since at least 2011

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Webinars

Trending Sources

Happy birthday, Security Affairs celebrates its ninth Anniversary today

Webinars

US indicted 4 Russian government employees for attacks on critical infrastructure

The Full Story of the Stunning RSA Hack Can Finally Be Told

US Indicts 4 Chinese Nationals for Lengthy Hacking Campaign

Russian Government-owned research institute linked to Triton attacks

Happy birthday Security Affairs … 11 years together!

US DoJ indicts four members of China-linked APT40 cyberespionage group

Russia-linked threat actors targets critical infrastructure, US authorities warn

Hackers threaten to leak a copy of the World-Check database used to assess potential risks associated with entities

Mitsubishi Electric discloses data breach, media blame China-linked APT

Iran’s Mahan Air claims it has failed a cyber attack, hackers say the opposite

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

CIA Hacking unit APT-C-39 hit China since 2008

France ANSSI agency warns of APT31 campaign against French organizations

DePriMon downloader uses a never seen installation technique

Iran-linked Charming Kitten APT contacts targets via WhatsApp, LinkedIn

New Leak Shows Business Side of China’s APT Menace

Unknown FinSpy Mac and Linux versions found in Egypt

Iran-linked Phosphorous APT hacked emails of security conference attendees

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

GUEST ESSAY: Here’s why penetration testing has become a ‘must-have’ security practice

Purple Lambert, a new malware of CIA-linked Lambert APT group

German authorities raid the offices of the FinFisher surveillance firm

US Treasury imposes sanctions on a Russian research institute behind Triton malware

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Iran-linked APT35 accidentally exposed 40 GB associated with their operations

#OpFukushima: Anonymous group protests against the plan to dump Fukushima RADIOACTIVE wastewater into Pacific

How Did Authorities Identify the Alleged Lockbit Boss?

Multiple cybersecurity agencies warn of China-linked APT40 ‘s capabilities

Hunting the ICEFOG APT group after years of silence

Iran-linked Phosphorus group hit a 2020 presidential campaign

Greek authorities approved extradition of Russian hacker Alexander Vinnik to Russia

Anonymous hacked Russian PSCB Commercial Bank and companies in the energy sector

The Belgacom hack was the work of the UK GCHQ intelligence agency

Iran-linked APT group Charming Kitten targets journalists, political and human rights activists

Iran-linked APT42 is behind over 30 espionage attacks

Charming Kitten APT is targeting Iranian dissidents in Germany

Charming Kitten Campaign involved new impersonation methods

Op Wocao – China-linked APT20 was able to bypass 2FA

NSA Launches New Cybersecurity Directorate

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

Stay Connected