2012, Government and Security - Information Management Today

Horde Webmail Software is affected by a dangerous bug since 2012

Security Affairs

FEBRUARY 23, 2022

A feature in the Horde Webmail is affected by a nine-year-old unpatched security vulnerability that could be abused to gain complete access to email accounts simply by previewing an attachment. This webmail solution is widely adopted by universities and government agencies. ” reads a report published by Sonarsource.

Access

Access Communications Government Security

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Nikita Kislitsin , formerly the head of network security for one of Russia’s top cybersecurity firms, was arrested last week in Kazakhstan in response to 10-year-old hacking charges from the U.S. Nikita Kislitsin, at a security conference in Russia. Department of Justice. prison system.

Cybersecurity

Cybersecurity Passwords Government Security

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

The head of the Federal Cyber Security Authority (BSI) faces dismissal

Security Affairs

OCTOBER 10, 2022

The German Interior Minister wants to dismiss the head of the Federal Cyber Security Authority (BSI), Arne Schoenbohm, due to possible contacts with Russian security services. The news was reported by German media on Sunday, citing government sources. The news was reported by German media on Sunday, citing government sources.

Security

Security Government Cybersecurity IT

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

Security Affairs

FEBRUARY 14, 2020

According to the media, these are the largest penalties imposed by the Kremlin on Western IT firms under internet use laws since 2012. Roskomnadzor is attempting to oblige the IT giants, including Facebook, Twitter, and Google to move data related to Russian citizens to servers in Russia allowing the Government to monitor them.,

Personal data

Personal data Government Security IT

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

A British court has rejected the request of the US government to extradite Wikileaks founder Julian Assange to the country. government will likely appeal the decision. Assange faces multiple criminal charges under America’s Espionage Act and Computer Fraud and Abuse Act. Of course, the U.S.

Military

Military Government Risk Passwords

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

MAY 21, 2020

In January, the company disclosed a security breach that might have exposed personal and confidential corporate data, at the time, it claimed that attackers did not obtain sensitive information about defense contracts. Mitsubishi Electric had also already notified members of the Japanese government and the Ministry of Defense.

Security

Security Military Manufacturing Personal data

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate information. Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. According to the company, attackers did not obtain sensitive information about defense contracts.

Data breaches

Data breaches Computer and Electronics Government Manufacturing

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Security Affairs

JANUARY 31, 2021

Last year, the group published a detailed analysis on how the Chinese government has improved its surveillance system to detect and block the popular circumvention tools Shadowsocks and its variants. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. ” reads the paper published by the experts.

Paper

Paper Encryption Government IT

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Security Affairs

FEBRUARY 17, 2020

Since early February, the Russian government has blocked other encrypted email and VPN services in Russia, including ProtonMail and ProtonVPN VPN service. The Russian government asks all Internet service providers and VPN providers operating in the country to provide information about their users. ” states Tutanota.

Encryption

Encryption Communications Government Personal data

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Agriculture

Agriculture IT Retail Manufacturing

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Security Affairs

JANUARY 25, 2020

This week, Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. Mitsubishi Electric disclosed the security incident only after two local newspapers, the Asahi Shimbun and Nikkei , reported the security breach.

Manufacturing

Manufacturing Data breaches Sales Access

APT32 state hackers target human rights defenders with spyware

Security Affairs

FEBRUARY 24, 2021

“Amnesty Tech’s Security Lab found technical evidence in phishing emails sent to two prominent Vietnamese human rights defenders, one of whom lives in Germany, and a Vietnamese NGO based in the Philippines, showing that Ocean Lotus is responsible for the attacks between 2018 and November 2020.” Pierluigi Paganini.

Phishing

Phishing Manufacturing Government Security

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Security Affairs

JULY 25, 2022

The ransomware gang Lockbit claims to have hacked the Italian Revenue Agency (Agenzia delle Entrate) and added the government agency to the list of victims reported on its dark web leak site. It has its own statute and specific regulations governing administration and accounting. 300 of 1999. The new version 3.0 Pierluigi Paganini.

Ransomware

Ransomware Government IT Security

Russian spies are attempting to tap transatlantic undersea cables

Security Affairs

MARCH 1, 2020

Attacks against undersea cables are not a novelty, in 2014 The Register published information on a secret British spy base located at Seeb on the northern coast of Oman, a strategic position that allows the British Government to tap to various undersea cables passing through the Strait of Hormuz into the Persian/Arabian Gulf.

Military

Military Communications Data collection Access

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Security Affairs

APRIL 23, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Government

Government Phishing Manufacturing Cybersecurity

Wikileaks founder Julian Assange is free

Security Affairs

JUNE 25, 2024

He left Belmarsh maximum security prison on the morning of 24 June, after having spent 1901 days there. In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted a LulzSec leader who was working for the FBI and provided him a list of targets.

Military

Military Passwords Access Government

Chinese APT IronHusky use Win zero-day in recent wave of attacks

Security Affairs

OCTOBER 13, 2021

The vulnerability is a use-after-free issue in the Win32k kernel driver, tracked as CVE-2021-40449 , that was addressed by Microsoft with the release of October Patch Tuesday security updates. The post Chinese APT IronHusky use Win zero-day in recent wave of attacks appeared first on Security Affairs. Pierluigi Paganini.

Government

Government IT Security Access

Booter Boss Busted By Bacon Pizza Buy

Krebs on Security

FEBRUARY 4, 2020

Investigators say Bukoski’s booter service was among the longest running services targeted by the FBI, operating since at least 2012. The government’s sentencing memorandum says Bukoski’s replies demanding to know the reasons for the suspensions were instrumental in discovering his real name.

Government

Government IT Security

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

Security Affairs

FEBRUARY 21, 2024

Mustang Panda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. In the 2022 campaigns, threat actors used European Union reports on the conflict in Ukraine and Ukrainian government reports as lures.

Phishing

Phishing Government Archiving Passwords

Google dorks were the root cause of a catastrophic compromise of CIA’s communications

Security Affairs

NOVEMBER 5, 2018

Google queries allowed Iran Government to dismantle the CIA communication network used by its agents and kill dozens of tens of spies. News the security breach has happened in 2009, the Iranian intelligence infiltrated a series of websites used by the CIA to communicate with agents worldwide, including Iran and China.

Communications

Communications Government Security IT

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. The APT32 also targeted peripheral network security and technology infrastructure corporations, and security firms that may have connections with foreign investors.

Phishing

Phishing Manufacturing Archiving Security

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Security Affairs

MARCH 16, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Military

Military Manufacturing Access Security

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Security Affairs

JUNE 26, 2022

Department of Justice brought charges against four Russian nationals suspected of using TRITON malware in cyber attacks on behalf of the Russian government between 2012 and 2018. The post Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas appeared first on Security Affairs.

Military

Military Cloud Government Security

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Security Affairs

MARCH 10, 2020

Necurs botnet is one of the largest spam botnet , it has been active since at least 2012 and was involved in massive campaigns spreading malware such as the Locky ransomware , the Scarab ransomware , and the Dridex banking Trojan. The Necurs botnet is active since at least 2012, it is operated by the cybercrime gang tracked as TA505.

Ransomware

Ransomware Government IT Security

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Security Affairs

DECEMBER 1, 2022

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. Kaspersky first documented the operations of the group in 2016. ” reads the post published by ESET.

Military

Military Cloud Communications Access

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Security Affairs

APRIL 30, 2019

Bloomberg obtained Vodafone’s security briefing documents from 2009 and 2011 and spoke with people involved in the situation. “We were made aware of historical vulnerabilities in 2011 and 2012 and they were addressed at the time. appeared first on Security Affairs. ” reported the AFP. . ” continues bloomberg.

IT

IT Access Government Security

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The campaign, which may have started as far back as 2012, featured a multi-stage approach and was dubbed EasternRoppels.”

Communications

Communications Encryption Military Government

Belgium claims China-linked APT groups hit its ministries

Security Affairs

JULY 19, 2022

. “Belgium exposes malicious cyber activities that significantly affected our sovereignty, democracy, security and society at large by targeting the FPS Interior and the Belgian Defence. ” reads the Declaration by the Minister for Foreign Affairs on behalf of the Belgian Government. ” continues the declaration.

IT

IT Government Security Information Security

‘Justice Blade’ Hackers are Targeting Saudi Arabia

Security Affairs

NOVEMBER 7, 2022

The group of threat actors calling themselves ‘Justice Blade’ published leaked data from Smart Link BPO Solutions, an outsourcing IT vendor working with major enterprises and government agencies in the Kingdom of Saudi Arabia and other countries in the GCC. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Communications

Communications Government Data breaches Education

WikiLeaks founder Julian Assange faces superseding indictment for conspiring with LulzSec hackers

Security Affairs

JUNE 25, 2020

In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted s LulzSec leader who was working for the FBI and provided him a list of targets. “In 2010, Assange gained unauthorized access to a government computer system of a NATO country. Pierluigi Paganini.

Passwords

Passwords Communications Data breaches Access

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Security Affairs

JUNE 24, 2019

Cybersecurity and Infrastructure Security Agency (CISA) is warning of a significant increase in cyberattacks from Iranian hackers spreading data wipers. industries and government agencies, the statement was also published by the CISA Director Chris Krebs via his Twitter account. The attacks are targeting U.S. Pierluigi Paganini.

Passwords

Passwords Cybersecurity Phishing Authentication

Iran-linked APT is exploiting the Zerologon flaw in attacks

Security Affairs

OCTOBER 6, 2020

An attacker could also exploit the flaw to disable security features in the Netlogon authentication process and change a computer’s password on the domain controller’s Active Directory. Microsoft 365 Defender customers can also refer to these detections: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 5, 2020.

Authentication

Authentication Passwords Access Security

GALLIUM APT used a new PingPull RAT in recent campaigns

Security Affairs

JUNE 13, 2022

However, the group has been active at least since 2012. Since 2021, the cyberespionage group has started targeting financial institutions and government entities in Afghanistan, Australia, Belgium, Cambodia, Malaysia, Mozambique, the Philippines, Russia and Vietnam. Unlike past attacks, the group started using the PingPull RAT. .

Communications

Communications Government Access Cybersecurity

Predictions From Last Year: How I Did (2012 Edition)

John Battelle's Searchblog

JANUARY 2, 2013

The post Predictions From Last Year: How I Did (2012 Edition) appeared first on John Battelle's Search Blog. As you can see from my 2012 predictions roundup , I took something of a new approach to the prognostication game last year. But the company didn’t do too much to prove my point in 2012. I hope 2013 keeps pace.

Marketing

Marketing IT Government Access

GovPayNow.com Leaks 14M+ Records

Krebs on Security

SEPTEMBER 17, 2018

Government Payment Service Inc. — a company used by thousands of U.S. Indianapolis-based GovPayNet , doing business online as GovPayNow.com , serves approximately 2,300 government agencies in 35 states. GovPayNow.com displays an online receipt when citizens use it to settle state and local government fees and fines via the site.

Government

Government Access Encryption Passwords

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Security Affairs

JANUARY 23, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) this week added seventeen actively exploited vulnerabilities to the Catalog. One of the issues added this week is a vulnerability in the October CMS, tracked as CVE-2021-32648 , which was recently exploited in attacks against websites of the Ukrainian government.

CMS

CMS IT Authentication Libraries

Experts uncovered a new wave of attacks conducted by Mustang Panda

Security Affairs

MAY 9, 2022

MustangPanda, also known as “RedDelta” or “Bronze President,” has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. Asia and pseudo allies such as Russia. Pierluigi Paganini.

Phishing

Phishing Government Archiving Cybersecurity

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. ” Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Military

Military Encryption Passwords Security

New ExileRAT backdoor used in attacks aimed at users in Tibet

Security Affairs

FEBRUARY 6, 2019

A malware campaign using new LuckyCat-Linked RAT dubbed ExileRAT has been targeting the mailing list of the organization officially representing the Tibetan government-in-exile. Given the nature of the threat and the targets, the campaign was likely designed for espionage purposes, Talos’ security researchers say. . Pierluigi Paganini.

Government

Government Security IT

RedTorch Formed from Ashes of Norse Corp.

Krebs on Security

MARCH 22, 2021

Norse’s attack map was everywhere for several years, and even became a common sight in the “brains” of corporate security operations centers worldwide. Flushed with venture capital funding in 2012, Norse’s founders started hiring dozens of talented cybersecurity professionals.

Computer and Electronics

Computer and Electronics Honeypots Archiving Marketing

The Financial Dynamics Behind Ransomware Attacks

Security Affairs

JUNE 18, 2024

In some cases, attackers are even leveraging the threat of regulatory actions or causing cyber insurance policies to be rendered moot by reporting lapses in security on the part of the victim to regulators and insurers. In all cases, the economic impact from ransomware is profound, affecting businesses, governments, and individuals globally.

Ransomware

Ransomware Insurance Cybersecurity B2B

GAO report reveals new Pentagon weapon systems vulnerable to hack

Security Affairs

OCTOBER 10, 2018

According to a new report published by the Government Accountability Office (GAO) almost any new weapon systems in the arsenal of the Pentagon is vulnerable to hack. “ The report was committed by the Senate Armed Services Committee that requested to review the way the Pentagon was securing its weapons systems. .

Passwords

Passwords Cybersecurity Government Security

Horde Webmail Software is affected by a dangerous bug since 2012

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Webinars

Trending Sources

US indicted 4 Russian government employees for attacks on critical infrastructure

Webinars

The head of the Federal Cyber Security Authority (BSI) faces dismissal

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

British Court rejects the US’s request to extradite Julian Assange

Japan suspects HGV missile data leak in Mitsubishi security breach

Mitsubishi Electric discloses data breach, media blame China-linked APT

Experts Explain How to Bypass Recent Improvement of China’s Great Firewall

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Chinese hackers exploited a Trend Micro antivirus zero-day used in Mitsubishi Electric hack

APT32 state hackers target human rights defenders with spyware

Lockbit ransomware gang claims to have breached the Italian Revenue Agency

Russian spies are attempting to tap transatlantic undersea cables

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Wikileaks founder Julian Assange is free

Chinese APT IronHusky use Win zero-day in recent wave of attacks

Booter Boss Busted By Bacon Pizza Buy

New Mustang Panda campaign targets Asia with a backdoor dubbed DOPLUGS

Google dorks were the root cause of a catastrophic compromise of CIA’s communications

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Microsoft disrupted US-Based Infrastructure of the Necurs botnet

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

North Korea ScarCruft APT used previously undetected Dolphin Backdoor against South Korea

Vodafone discovered backdoors in Huawei equipment. But it was 2011.

Platinum APT and leverages steganography to hide C2 communications

Belgium claims China-linked APT groups hit its ministries

‘Justice Blade’ Hackers are Targeting Saudi Arabia

WikiLeaks founder Julian Assange faces superseding indictment for conspiring with LulzSec hackers

US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks

Iran-linked APT is exploiting the Zerologon flaw in attacks

GALLIUM APT used a new PingPull RAT in recent campaigns

Predictions From Last Year: How I Did (2012 Edition)

GovPayNow.com Leaks 14M+ Records

US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog

Experts uncovered a new wave of attacks conducted by Mustang Panda

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

New ExileRAT backdoor used in attacks aimed at users in Tibet

RedTorch Formed from Ashes of Norse Corp.

The Financial Dynamics Behind Ransomware Attacks

GAO report reveals new Pentagon weapon systems vulnerable to hack

Stay Connected