2013 and Government - Information Management Today

CERT-UA warns of a phishing campaign targeting government entities

Security Affairs

AUGUST 13, 2024

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign targeting organizations in the country, including government entities. UAC-0006 has been active since at least 2013. The campaign, tracked as UAC-0198, has been active since July. ” Upon clicking the link, an MSI file is downloaded.

Phishing

Phishing Government File names Access

Ex Twitter employee found guilty of spying for Saudi Arabian government

Security Affairs

AUGUST 10, 2022

In November 2019, the former Twitter employees Abouammo and the Saudi citizen Ali Alzabarah have been charged with spying on thousands of Twitter user accounts on behalf of the Saudi Arabian government. The two former Twitter employees operated for the Saudi Arabian government with the intent of unmasking dissidents using the social network.

Government

Government Marketing Access IT

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

United States government files civil lawsuit against Edward Snowden

Security Affairs

SEPTEMBER 17, 2019

The United States government sued Edward Snowden , the former CIA employee and NSA contractor, to block payment for his book, Permanent Record. The government of the United States has just announced a lawsuit over my memoir, which was just released today worldwide. ” reads the press release published by the DoJ.

Government

Government Compliance Security IT

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. In Mid January the Ukrainian government was hit with destructive malware, tracked as WhisperGate , and several Ukrainian government websites were defaced by exploiting a separate vulnerability in OctoberCMS.

Government

Government Military Phishing Information Security

Russian Government-owned research institute linked to Triton attacks

Security Affairs

OCTOBER 23, 2018

Security experts from FireEye found evidence that links the development of the Triton malware (aka Trisis and HatMan) to a Russian government research institute. a Russian government-owned technical research institution located in Moscow. The following factors supporting this assessment are further detailed in this post.”

Government

Government Communications Access Security

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

The project was launched in September 2019 and as of August 2020, the experts collected 680 records of ransomware attacks that took place since November 2013. now has 687 records assembled from publicly disclosed incidents between November 2013 and August 2020.” ” reads the project description.

Ransomware

Ransomware Data collection Education Security

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Security Affairs

AUGUST 1, 2019

million to settle a legal dispute for selling vulnerable software to the US government. Back in 2008, a whistle-blower identifies a vulnerability in Cisco video surveillance software, but the tech giant continued to sell the software to US agencies until July 2013. Cisco is going to pay $8.6 ” reported The New York Times.

Government

Government Sales Access Security

Malaysia’s MyCERT warns cyber espionage campaign carried out by APT40

Security Affairs

FEBRUARY 10, 2020

Malaysia’s MyCERT issued a security alert to warn of a hacking campaign targeting government officials that was carried out by the China-linked APT40 group. Malaysia’s Computer Emergency Response Team (MyCERT) warns of a cyber espionage campaign carried out by the China-linked APT40 group aimed at Malaysian government officials.

Government

Government Military Phishing Security

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement.

Government

Government Military Financial Services Security

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Security Affairs

APRIL 5, 2022

The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013. The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement.

Military

Military Phishing File names Archiving

Chinese-Linked APT Spying On Organizations for 10 Years

Data Breach Today

JUNE 12, 2022

Attacker Use DLL hijacking, DNS tunneling to Evade Post-Compromise Detection A recently identified Chinese hacking group dubbed "Aoqin Dragon" has been found to have targeted government, education and telecommunication organizations in Southeast Asia and Australia since 2013 as part of an ongoing cyberespionage campaign, according to research from (..)

Education

Education Government

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Security Affairs

APRIL 12, 2021

Inglis retired from NSA in 2014 where he served the US government for 28 years, since 2013 as the agency’s deputy director. Easterly has worked in the cybersecurity division at Morgan Stanley for the past four years, she has served 14 years in government and military service. I’m proud of what we are building across the U.S.

Military

Military Government Cybersecurity Security

Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs

Security Affairs

NOVEMBER 22, 2020

The list includes devices belonging to big enterprises, financial institutions, and government organizations across the world. After a nslookup on all IPs, I found that among the victims there are some Banks, many.gov domains and thousands of companies around the world. link] — Bank Security (@Bank_Security) November 20, 2020.

Government

Government Ransomware Access Cybersecurity

The 2013 Summit Arrives: Bridging Data And Humanity

John Battelle's Searchblog

FEBRUARY 11, 2013

The post The 2013 Summit Arrives: Bridging Data And Humanity appeared first on John Battelle's Search Blog. Some of the more than 25 speakers already joining us at the 2013 CM Summit. Our society has embarked on a historic conversation around the role of data in business, government, and our personal lives. Register here.

Marketing

Marketing Cloud Government IT

Two former Twitter employees charged of spying on Users for Saudi Arabian Government

Security Affairs

NOVEMBER 7, 2019

Two former Twitter employees have been charged with spying on thousands of Twitter user accounts on behalf of the Saudi Arabian government. Two former Twitter employees have been charged with spying on thousands of Twitter user accounts on behalf of the Saudi Arabian government.

Government

Government Marketing Privacy Risk

Hunting the ICEFOG APT group after years of silence

Security Affairs

JUNE 8, 2019

The activities of the APT group were first uncovered by Kaspersky Lab in September 2013, at the time the researchers defined the crew as an emerging group of cyber-mercenaries that was able to carry out surgical hit and run operations against strategic targets.

Agriculture

Agriculture Government Military Communications

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Krebs on Security

JUNE 10, 2022

The government alleged that between December 2010 and September 2014, the defendants engaged in a conspiracy to identify or pay to identify blocks of Internet Protocol (IP) addresses that were registered to others but which were otherwise inactive. .'” ” Amobee has not yet responded to requests for comment.

Marketing

Marketing Government Systems administration Sales

CERT-UA warns of malware campaign conducted by threat actor UAC-0006

Security Affairs

MAY 26, 2024

UAC-0006 has been active since at least 2013. The government experts reported that the group carried out at least two massive campaigns since May 20, threat actors aimed at distributing SmokeLoader malware via email.

Archiving

Archiving Phishing Access Cybersecurity

A Light at the End of Liberty Reserve’s Demise?

Krebs on Security

FEBRUARY 14, 2020

In May 2013, the U.S. Prompted by assurances that the government would one day afford Liberty Reserve users a chance to reclaim any funds seized as part of the takedown, KrebsOnSecurity filed a claim shortly thereafter to see if and when this process might take place.

Government

Government Phishing Access IT

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013. The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement.

Military

Military Metadata Government Passwords

Misconfigured WBSC server leaks thousands of passports

Security Affairs

SEPTEMBER 29, 2023

According to our team, the exposed files belonged to the WBSC, the world governing body for baseball, softball, and Baseball5 – a recently introduced sport combining the previous two. Government-issued documents are arguably the most important form of identification a person holds. the team said.

Risk

Risk Phishing Government Cloud

Data belonging 44 Million Pakistani mobile users leaked online

Security Affairs

MAY 6, 2020

It seems that the huge trove of data was the result of a data breach that took place in 2017, the oldest entries are dated back as 2013. At the time it is not possible to determine if the dump has been stolen from Jazz servers, it is possible that hackers breached the systems of one of its business partners or a government organization.

Sales

Sales Data breaches Authentication Personal data

Iranian hackers breached Albania’s Institute of Statistics (INSTAT)

Security Affairs

FEBRUARY 2, 2024

The attack did not impact systems employed in the 2013 census. The cyberattack hit the servers of the National Agency for Information Society (AKSHI), which handles many government services. The relations between Albania and Iran have deteriorated since the government of Tirana offered asylum to thousands of Iranian dissidents.

Computer and Electronics

Computer and Electronics Government Communications IT

US authorities behind $1 billion Bitcoin transaction of Silk Road funds

Security Affairs

NOVEMBER 6, 2020

In October 2013, the FBI has shut down the popular black market Silk Road after many years of investigation, the website was hosted in the Tor Network and was seized by US law enforcement. According to FBI, between February of 2011 and July 2013, Silk Road managed $1.2 .” On November 5, the U.S. million USD. .

Sales

Sales Marketing Government IT

Gamaredon group uses a new Outlook tool to spread malware

Security Affairs

JUNE 12, 2020

The group was first discovered by Symantec and TrendMicro in 2015 but evidence of its activities has been dated back to 2013. The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement.

Military

Military Phishing Government IT

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Security Affairs

JUNE 19, 2021

The security breach took place on on May 14, and the institute discovered it only on May 31, then the research institute reported the incident to the government and launched an investigation. North Korea-linked cyber espionage group Kimsuky (aka Black Banshee, Thallium , Velvet Chollima) was first spotted by Kaspersky researcher in 2013.

Phishing

Phishing Government Data collection Cybersecurity

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Security Affairs

DECEMBER 1, 2022

In 2013, Yahoo suffered one of the worst data breaches in history, exposing over 3 billion user accounts. government agencies. government agencies and large organizations were hit by cyberattacks due to a vulnerability in their IT infrastructure provider – SolarWinds. SolarWinds attack on U.S.

Data breaches

Data breaches Passwords Encryption Cybersecurity

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, the government alleges. cryptocurrency holdings online. Troy Woody Jr.

Government

Government Artificial Intelligence Personal data Phishing

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs

JANUARY 18, 2022

A sophisticated threat actor, tracked as Earth Lusca, is targeting government and private organizations worldwide as for financial purposes. The Winnti group was first spotted by Kaspersky in 2013, but according to the researchers the gang has been active since 2007.

Healthcare

Healthcare Phishing Archiving Education

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs

FEBRUARY 23, 2022

The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. The name “ Bvp47 ” comes form numerous references to the string “Bvp” and the numerical value “0x47” used in the encryption algorithm.

Encryption

Encryption Military Archiving Government

U.S. sanctioned virtual currency exchanges Cryptex and PM2BTC for facilitating illegal activities

Security Affairs

SEPTEMBER 27, 2024

government sanctioned the virtual currency exchanges Cryptex and PM2BTC for facilitating cybercrime and money maundering. government sanctioned two cryptocurrency exchanges, Cryptex and PM2BTC, and indicted a Russian national for allegedly facilitating cybercriminal activities and money laundering. million from darknet drug markets.

Ransomware

Ransomware Blockchain Data breaches Government

North Korea-Linked APT Group Kimsuky spotted using new malware

Security Affairs

NOVEMBER 2, 2020

North Korea-linked APT group Kimsuky was recently spotted using a new piece of malware in attacks on government agencies and human rights activists. At the end of October, the US-CERT published a report on Kimusky’s recent activities that provided information of their TTPs and infrastructure.

Government

Government IT Security Information Security

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Experts say Kislitsin’s prosecution could soon put the Kazakhstan government in a sticky diplomatic position, as the Kremlin is already signaling that it intends to block his extradition to the United States. Kislitsin also was indicted in Nevada in 2013, but the Nevada indictment does not name his alleged victim(s) in that case.

Cybersecurity

Cybersecurity Passwords Government Security

Here’s Some Bitcoin: Oh, and You’ve Been Served!

Krebs on Security

JANUARY 10, 2024

Mora said it’s unclear if the bitcoin address that holds his client’s stolen money is being held by the government or by the anonymous hackers. “The government doesn’t need the crypto as evidence, but in a forfeiture action the money goes to the government,” Rasch said. For example, in 2013 the U.S.

Government

Government Blockchain Metadata IT

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. ” Reached for comment, Microsoft said it is working closely with the U.S.

Cybersecurity

Cybersecurity Government Cleanup Cloud

North Korea-linked Kimsuky used a new Linux backdoor in recent attacks

Security Affairs

MAY 19, 2024

Kimsuky cyberespionage group (aka Springtail, ARCHIPELAGO, Black Banshee, Thallium , Velvet Chollima, APT43 ) was first spotted by Kaspersky researcher in 2013. Troll Stealer can also copy the GPKI (Government Public Key Infrastructure) folder on infected computers. WIZVERA VeraPort is used to digitally sign and verify downloads.

Communications

Communications Government IT Encryption

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Security Affairs

DECEMBER 1, 2020

The OceanLotus APT group is a state-sponsored group that has been active since at least 2013. The hackers targeted organizations across multiple industries and have also hit foreign governments, dissidents, and journalists. ” Microsoft said.

Mining

Mining Manufacturing Government Phishing

Journalist Matthew Keys is now charged with an attack on a magazine

Security Affairs

APRIL 29, 2020

Keys was accused of providing Anonymous login credentials that allowed the group to deface access and deface the website of the Los Angeles Times in 2013. We welcome the opportunity to read all the relevant materials and work with the government before the next hearing,” Keys’ attorney, Mark Reichel, told the Bee.

CMS

CMS Cybersecurity Government Access

North Korea-linked TA406 cyberespionage group activity in 2021

Security Affairs

NOVEMBER 19, 2021

The TA406 cyber espionage group was first spotted by Kaspersky researchers in 2013. Since the beginning of 2021, the TA406 group has carried out multiple credential theft campaigns targeting research, education, government, media and other organizations. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Government

Government Education Phishing IT

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Security Affairs

MARCH 16, 2021

Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). We have tested this tool across Exchange Server 2013, 2016, and 2019 deployments.” ” reads the post published by Microsoft.

Military

Military Manufacturing Access Security

Up to Georgia 2,000 websites have been hit by cyber attacks

Security Affairs

OCTOBER 28, 2019

” According to Georgia’s Interpress news agency, the hackers targeted the websites for Georgia’s general jurisdiction courts, government agencies, NGOs and media outlets. Saakashvili is wanted by Georgia’s new government on multiple criminal charges, which he decries as politically motivated.

Government

Government Security IT Information Security

Russia-linked InvisiMole APT targets state organizations of Ukraine

Security Affairs

MARCH 21, 2022

The Government Team for Response to Computer Emergencies of Ukraine (CERT-UA) warns of spear-phishing messages conducted by UAC-0035 group (aka InvisiMole) against Ukrainian state bodies. Ukraine CERT (CERT-UA) warns of spear-phishing ??attacks attacks conducted by UAC-0035 group (aka InvisiMole) on state organizations of Ukraine.

Phishing

Phishing Military Archiving Government

Multiple cybersecurity agencies warn of China-linked APT40 ‘s capabilities

Security Affairs

JULY 10, 2024

Justice Department (DoJ) indicted four members of the cyber espionage group APT40 (aka TEMP.Periscope , TEMP.Jumper , and Leviathan ) for hacking tens of government organizations, private businesses and universities around the world between 2011 and 2018.

Cybersecurity

Cybersecurity Government Phishing IT

CERT-UA warns of a phishing campaign targeting government entities

Ex Twitter employee found guilty of spying for Saudi Arabian government

Webinars

Trending Sources

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Webinars

United States government files civil lawsuit against Edward Snowden

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Russian Government-owned research institute linked to Triton attacks

CIRWA Project tracks ransomware attacks on critical infrastructure

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Malaysia’s MyCERT warns cyber espionage campaign carried out by APT40

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Chinese-Linked APT Spying On Organizations for 10 Years

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs

The 2013 Summit Arrives: Bridging Data And Humanity

Two former Twitter employees charged of spying on Users for Saudi Arabian Government

Hunting the ICEFOG APT group after years of silence

Adconion Execs Plead Guilty in Federal Anti-Spam Case

CERT-UA warns of malware campaign conducted by threat actor UAC-0006

A Light at the End of Liberty Reserve’s Demise?

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Misconfigured WBSC server leaks thousands of passports

Data belonging 44 Million Pakistani mobile users leaked online

Iranian hackers breached Albania’s Institute of Statistics (INSTAT)

US authorities behind $1 billion Bitcoin transaction of Silk Road funds

Gamaredon group uses a new Outlook tool to spread malware

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

3 of the Worst Data Breaches in the World That Could Have Been Prevented

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Financially motivated Earth Lusca threat actors targets organizations worldwide

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

U.S. sanctioned virtual currency exchanges Cryptex and PM2BTC for facilitating illegal activities

North Korea-Linked APT Group Kimsuky spotted using new malware

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Here’s Some Bitcoin: Oh, and You’ve Been Served!

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

North Korea-linked Kimsuky used a new Linux backdoor in recent attacks

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Journalist Matthew Keys is now charged with an attack on a magazine

North Korea-linked TA406 cyberespionage group activity in 2021

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Up to Georgia 2,000 websites have been hit by cyber attacks

Russia-linked InvisiMole APT targets state organizations of Ukraine

Multiple cybersecurity agencies warn of China-linked APT40 ‘s capabilities

Stay Connected