2012, Government and Security - Information Management Today

Horde Webmail Software is affected by a dangerous bug since 2012

Security Affairs

FEBRUARY 23, 2022

A feature in the Horde Webmail is affected by a nine-year-old unpatched security vulnerability that could be abused to gain complete access to email accounts simply by previewing an attachment. This webmail solution is widely adopted by universities and government agencies. ” reads a report published by Sonarsource.

Access

Access Communications Government Security

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Nikita Kislitsin, at a security conference in Russia. Department of Justice. prison system.

Cybersecurity

Cybersecurity Passwords Government Security

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

The head of the Federal Cyber Security Authority (BSI) faces dismissal

Security Affairs

OCTOBER 10, 2022

The German Interior Minister wants to dismiss the head of the Federal Cyber Security Authority (BSI), Arne Schoenbohm, due to possible contacts with Russian security services. The news was reported by German media on Sunday, citing government sources. The news was reported by German media on Sunday, citing government sources.

Security

Security Government Cybersecurity IT

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

Security Affairs

FEBRUARY 14, 2020

According to the media, these are the largest penalties imposed by the Kremlin on Western IT firms under internet use laws since 2012. Roskomnadzor is attempting to oblige the IT giants, including Facebook, Twitter, and Google to move data related to Russian citizens to servers in Russia allowing the Government to monitor them.,

Personal data

Personal data Government Security IT

China-linked APT Mustang Panda upgrades tools in its arsenal

Security Affairs

APRIL 17, 2025

Mustang Panda has been active since at least 2012, targeting American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. In the 2022 campaigns, threat actors used European Union reports on the conflict in Ukraine and Ukrainian government reports as lures.

IT

IT Archiving Encryption Communications

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

A British court has rejected the request of the US government to extradite Wikileaks founder Julian Assange to the country. government will likely appeal the decision. Assange faces multiple criminal charges under America’s Espionage Act and Computer Fraud and Abuse Act. Of course, the U.S.

Military

Military Government Risk Passwords

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

MAY 21, 2020

In January, the company disclosed a security breach that might have exposed personal and confidential corporate data, at the time, it claimed that attackers did not obtain sensitive information about defense contracts. Mitsubishi Electric had also already notified members of the Japanese government and the Ministry of Defense.

Security

Security Military Manufacturing Personal data

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate information. Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. According to the company, attackers did not obtain sensitive information about defense contracts.

Data breaches

Data breaches Computer and Electronics Government Manufacturing

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Krebs on Security

SEPTEMBER 17, 2020

The government alleges the men used malware-laced phishing emails and “supply chain” attacks to steal data from companies and their customers. One of the alleged hackers was first profiled here in 2012 as the owner of a Chinese antivirus firm. Security analysts and U.S. Image: FBI.

Government

Government Mining Big data Phishing

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Recently organizations in healthcare, research, and government facilities have been hit by Coronavirus-themed attacks that deployed multiple malware families, including ransomware and information stealers (i.e.

Ransomware

Ransomware Phishing Government File names

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. ” reads the paper published by the experts.

Paper

Paper Encryption Government IT

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Agriculture

Agriculture IT Retail Manufacturing

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

This week, Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. Mitsubishi Electric disclosed the security incident only after two local newspapers, the Asahi Shimbun and Nikkei , reported the security breach.

Manufacturing

Manufacturing Data breaches Access Sales

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Security Affairs

FEBRUARY 17, 2020

Since early February, the Russian government has blocked other encrypted email and VPN services in Russia, including ProtonMail and ProtonVPN VPN service. The Russian government asks all Internet service providers and VPN providers operating in the country to provide information about their users. ” states Tutanota.

Encryption

Encryption Communications Government Personal data

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Security Affairs

JULY 25, 2022

The ransomware gang Lockbit claims to have hacked the Italian Revenue Agency (Agenzia delle Entrate) and added the government agency to the list of victims reported on its dark web leak site. It has its own statute and specific regulations governing administration and accounting. 300 of 1999. The new version 3.0 Pierluigi Paganini.

Ransomware

Ransomware Government IT Security

Russian spies are attempting to tap transatlantic undersea cables

Security Affairs

MARCH 1, 2020

Attacks against undersea cables are not a novelty, in 2014 The Register published information on a secret British spy base located at Seeb on the northern coast of Oman, a strategic position that allows the British Government to tap to various undersea cables passing through the Strait of Hormuz into the Persian/Arabian Gulf.

Military

Military Communications Data collection Access

Booter Boss Busted By Bacon Pizza Buy

Krebs on Security

FEBRUARY 4, 2020

Investigators say Bukoski’s booter service was among the longest running services targeted by the FBI, operating since at least 2012. The government’s sentencing memorandum says Bukoski’s replies demanding to know the reasons for the suspensions were instrumental in discovering his real name.

Government

Government IT Security

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

“Amnesty Tech’s Security Lab found technical evidence in phishing emails sent to two prominent Vietnamese human rights defenders, one of whom lives in Germany, and a Vietnamese NGO based in the Philippines, showing that Ocean Lotus is responsible for the attacks between 2018 and November 2020.” Pierluigi Paganini.

Phishing

Phishing Manufacturing Government Security

Wikileaks founder Julian Assange is free

Security Affairs

JUNE 25, 2024

He left Belmarsh maximum security prison on the morning of 24 June, after having spent 1901 days there. In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted a LulzSec leader who was working for the FBI and provided him a list of targets.

Military

Military Passwords Access Government

Chinese APT IronHusky use Win zero-day in recent wave of attacks

Security Affairs

OCTOBER 13, 2021

The vulnerability is a use-after-free issue in the Win32k kernel driver, tracked as CVE-2021-40449 , that was addressed by Microsoft with the release of October Patch Tuesday security updates. The post Chinese APT IronHusky use Win zero-day in recent wave of attacks appeared first on Security Affairs. Pierluigi Paganini.

Government

Government IT Security Access

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

Security Affairs

FEBRUARY 21, 2024

Mustang Panda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. In the 2022 campaigns, threat actors used European Union reports on the conflict in Ukraine and Ukrainian government reports as lures.

Phishing

Phishing Government Archiving Passwords

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Security Affairs

APRIL 23, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Government

Government Phishing Manufacturing Cybersecurity

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Phishing

Phishing Manufacturing Archiving Security

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Security Affairs

MARCH 16, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Military

Military Manufacturing Access Security

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Security Affairs

JUNE 26, 2022

Department of Justice brought charges against four Russian nationals suspected of using TRITON malware in cyber attacks on behalf of the Russian government between 2012 and 2018. The post Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas appeared first on Security Affairs.

Military

Military Cloud Government Security

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Security Affairs

MARCH 10, 2020

Necurs botnet is one of the largest spam botnet , it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware , the Scarab ransomware , and the Dridex banking Trojan. The Necurs botnet is active since at least 2012, it is operated by the cybercrime gang tracked as TA505.

Ransomware

Ransomware Government IT Security

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Security Affairs

DECEMBER 1, 2022

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. Kaspersky first documented the operations of the group in 2016. ” reads the post published by ESET.

Military

Military Cloud Communications Access

Belgium claims China-linked APT groups hit its ministries

Security Affairs

JULY 19, 2022

. “Belgium exposes malicious cyber activities that significantly affected our sovereignty, democracy, security and society at large by targeting the FPS Interior and the Belgian Defence. ” reads the Declaration by the Minister for Foreign Affairs on behalf of the Belgian Government. ” continues the declaration.

IT

IT Government Security Information Security

‘Justice Blade’ Hackers are Targeting Saudi Arabia

Security Affairs

NOVEMBER 7, 2022

The group of threat actors calling themselves ‘Justice Blade’ published leaked data from Smart Link BPO Solutions, an outsourcing IT vendor working with major enterprises and government agencies in the Kingdom of Saudi Arabia and other countries in the GCC. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Communications

Communications Government Data breaches Education

WikiLeaks founder Julian Assange faces superseding indictment for conspiring with LulzSec hackers

Security Affairs

JUNE 25, 2020

In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted s LulzSec leader who was working for the FBI and provided him a list of targets. “In 2010, Assange gained unauthorized access to a government computer system of a NATO country. Pierluigi Paganini.

Passwords

Passwords Communications Data breaches Access

What Did NSA Do to Help Prevent Supply Chain Attacks?

Data Breach Today

FEBRUARY 2, 2021

Lawmakers Probe Why Juniper Breach Didn’t Lead to Actions to Help Prevent SolarWinds Hack In light of the recent SolarWinds supply chain hack on government agencies and others, 10 Democratic lawmakers are asking the National Security Agency to explain why it apparently did not take action after the 2012 Juniper Networks supply chain hack to help prevent (..)

Government

Government Security IT

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Security Affairs

APRIL 30, 2019

Bloomberg obtained Vodafone’s security briefing documents from 2009 and 2011 and spoke with people involved in the situation. “We were made aware of historical vulnerabilities in 2011 and 2012 and they were addressed at the time. appeared first on Security Affairs. ” reported the AFP. . ” continues bloomberg.

IT

IT Access Government Security

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Security Affairs

JUNE 24, 2019

Cybersecurity and Infrastructure Security Agency (CISA) is warning of a significant increase in cyberattacks from Iranian hackers spreading data wipers. industries and government agencies, the statement was also published by the CISA Director Chris Krebs via his Twitter account. The attacks are targeting U.S. Pierluigi Paganini.

Passwords

Passwords Cybersecurity Phishing Authentication

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The campaign, which may have started as far back as 2012, featured a multi-stage approach and was dubbed EasternRoppels.”

Communications

Communications Encryption Military Government

Iran-linked APT is exploiting the Zerologon flaw in attacks

Security Affairs

OCTOBER 6, 2020

An attacker could also exploit the flaw to disable security features in the Netlogon authentication process and change a computer’s password on the domain controller’s Active Directory. Microsoft 365 Defender customers can also refer to these detections: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 5, 2020.

Authentication

Authentication Passwords Access Security

GovPayNow.com Leaks 14M+ Records

Krebs on Security

SEPTEMBER 17, 2018

Government Payment Service Inc. — a company used by thousands of U.S. Indianapolis-based GovPayNet , doing business online as GovPayNow.com , serves approximately 2,300 government agencies in 35 states. GovPayNow.com displays an online receipt when citizens use it to settle state and local government fees and fines via the site.

Government

Government Access Encryption Passwords

GALLIUM APT used a new PingPull RAT in recent campaigns

Security Affairs

JUNE 13, 2022

However, the group has been active at least since 2012. Since 2021, the cyberespionage group has started targeting financial institutions and government entities in Afghanistan, Australia, Belgium, Cambodia, Malaysia, Mozambique, the Philippines, Russia and Vietnam. Unlike past attacks, the group started using the PingPull RAT. .

Communications

Communications Government Access Cybersecurity

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014. The post China-linked APT41 group exploits Citrix, Cisco, Zoho flaws appeared first on Security Affairs. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Healthcare

Healthcare Education Manufacturing Government

RedTorch Formed from Ashes of Norse Corp.

Krebs on Security

MARCH 22, 2021

Norse’s attack map was everywhere for several years, and even became a common sight in the “brains” of corporate security operations centers worldwide. Flushed with venture capital funding in 2012, Norse’s founders started hiring dozens of talented cybersecurity professionals.

Computer and Electronics

Computer and Electronics Honeypots Archiving Marketing

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Security Affairs

NOVEMBER 9, 2018

The popular US whistleblower Edward Snowden has reported the abuse of surveillance made by many governments, he blamed the Israeli company NSO Group for developing and selling surveillance software to Saudi Arabia. Security Affairs – NSO Group, Khashoggi). COUNTRY NEXUS. REPORTED CASES OF INDIVIDUALS TARGETED. Saudi Arabia.

Sales

Sales Government Security IT

Experts uncovered a new wave of attacks conducted by Mustang Panda

Security Affairs

MAY 9, 2022

MustangPanda, also known as “RedDelta” or “Bronze President,” has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. Asia and pseudo allies such as Russia. Pierluigi Paganini.

Phishing

Phishing Government Archiving Access

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

JANUARY 23, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) this week added seventeen actively exploited vulnerabilities to the Catalog. One of the issues added this week is a vulnerability in the October CMS, tracked as CVE-2021-32648 , which was recently exploited in attacks against websites of the Ukrainian government.

CMS

CMS IT Authentication Libraries

Horde Webmail Software is affected by a dangerous bug since 2012

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Webinars

Trending Sources

US indicted 4 Russian government employees for attacks on critical infrastructure

Webinars

The head of the Federal Cyber Security Authority (BSI) faces dismissal

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

China-linked APT Mustang Panda upgrades tools in its arsenal

British Court rejects the US’s request to extradite Julian Assange

Japan suspects HGV missile data leak in Mitsubishi security breach

Mitsubishi Electric discloses data breach, media blame China-linked APT

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Russian spies are attempting to tap transatlantic undersea cables

Booter Boss Busted By Bacon Pizza Buy

APT32 state hackers target human rights defenders with spyware

Wikileaks founder Julian Assange is free

Chinese APT IronHusky use Win zero-day in recent wave of attacks

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Belgium claims China-linked APT groups hit its ministries

‘Justice Blade’ Hackers are Targeting Saudi Arabia

WikiLeaks founder Julian Assange faces superseding indictment for conspiring with LulzSec hackers

What Did NSA Do to Help Prevent Supply Chain Attacks?

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Platinum APT and leverages steganography to hide C2 communications

Iran-linked APT is exploiting the Zerologon flaw in attacks

GovPayNow.com Leaks 14M+ Records

GALLIUM APT used a new PingPull RAT in recent campaigns

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

RedTorch Formed from Ashes of Norse Corp.

Snowden speaks about the role of surveillance firm NSO Group in Khashoggi murder

Experts uncovered a new wave of attacks conducted by Mustang Panda

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Stay Connected