2015, Government and Libraries - Information Management Today

CERT France – Pysa ransomware is targeting local governments

Security Affairs

MARCH 19, 2020

CERT France is warning of a new wave of attacks using Pysa ransomware (Mespinoza) that is targeting local governments. CERT France cyber-security agency is warning about a new wave of ransomware attack that is targeting the networks of local government authorities. Pierluigi Paganini. SecurityAffairs – Pysa ransomware, cybercrime).

Ransomware

Ransomware Government Encryption Passwords

Federal Communications Commission has cut off government funding for equipment from Chinese firms

Security Affairs

NOVEMBER 25, 2019

Federal Communications Commission has cut off government funding for equipment from Huawei and ZTE due to security concerns. Federal Communications Commission has cut off government funding for equipment from the Chinese companies Huawei and ZTE due to security concerns. Rural schools, hospitals, and libraries will feel the effects.

Communications

Communications Government Libraries Risk

Zeus Sphinx continues to be used in Coronavirus-themed attacks

Security Affairs

MAY 12, 2020

The Zeus Sphinx malware was first observed on August 2015, a few days after a new variant of the popular Zeus banking trojan was offered for sale on hacker forums, At the end of March, experts from IBM X-Force uncovered a hacking campaign employing the Zeus Sphinx malware that focused on government relief payment.

Libraries

Libraries Sales Government IT

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The CISA agency is warning of a surge in Emotet attacks targeting multiple state and local governments in the US since August. The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert to warn of a surge of Emotet attacks that have targeted multiple state and local governments in the U.S. since August.

Government

Government Libraries Cybersecurity Phishing

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Recently organizations in healthcare, research, and government facilities have been hit by Coronavirus-themed attacks that deployed multiple malware families, including ransomware and information stealers (i.e.

Ransomware

Ransomware Phishing Government File names

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

Security Affairs

OCTOBER 3, 2018

The activity of the Lazarus Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks and experts that investigated on the crew consider it highly sophisticated. “HIDDEN COBRA actors most likely deployed ISO 8583 libraries on the targeted switch application servers. ” states the report.

Retail

Retail Libraries Government Phishing

1.2 million CPR numbers for Danish citizen leaked through tax service

Security Affairs

FEBRUARY 10, 2020

” states the Government Agency. “Google Hosted Libraries have been designed to remove all information that allows identifying users before logging on. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Encryption

Encryption Libraries Access Government

Security Affairs newsletter Round 248

Security Affairs

JANUARY 26, 2020

Malware attack took down 600 computers at Volusia County Public Library. For the second time in a few days, Greek Government websites hit by DDoS attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. US-based childrens clothing maker Hanna Andersson discloses a data breach. Pierluigi Paganini.

Security

Security Data breaches Military IoT

OceanLotus APT group leverages a steganography-based loader to deliver backdoors

Security Affairs

APRIL 3, 2019

The hackers targeting organizations across multiple industries and have also targeted foreign governments, dissidents, and journalists. The two loaders discovered by Cylance and used by the APT group use side-loaded DLLs and an AES128 implementation from Crypto++ library for payload decryption. Pierluigi Paganini.

Libraries

Libraries Encryption Communications Manufacturing

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

The APT group, recently discovered by ESET, targeted government and private companies in Belarus, Moldova, Russia, Serbia, and Ukraine, including militaries and Ministries of Foreign Affairs. The malware samples analyzed by the researchers are slightly obfuscated using string obfuscation and dynamic Windows API library loading.

Military

Military Phishing Passwords Government

New Gallmaker APT group eschews malware in cyber espionage campaigns

Security Affairs

OCTOBER 10, 2018

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military and defense sectors since at least 2017. Gallmaker is a politically motivated APT group that focused its surgical operations on the government, military or defense sectors. ” continues Symantec.

Military

Military File names Government Libraries

Crowley Company Honored with Four 2021 Platinum Modern Library Awards

IG Guru

JANUARY 25, 2021

. – The Crowley Company (Crowley), a worldwide leader in digitization scanning solutions and services with offices in Frederick, Maryland, San Dimas, California and Basingstoke, UK, is pleased to announce that the firm has been honored with LibraryWorks’ Modern Library (MLA) awards for the seventh consecutive year.

Libraries

Libraries Information governance Government

Security Affairs newsletter Round 222 – News of the week

Security Affairs

JULY 13, 2019

Croatia government agencies targeted with news SilentTrinity malware. Backdoor mechanism found in Ruby strong_password library. Cyberattack shuts down La Porte County government systems. Prototype Pollution flaw discovered in all versions of Lodash Library. Once again thank you! Pierluigi Paganini.

Security

Security Libraries Data breaches Ransomware

APT10 is back with two new loaders and new versions of known payloads

Security Affairs

MAY 27, 2019

The APT10 group has added two new malware loaders to its arsenal and used in attacks aimed at government and private organizations in Southeast Asia. In April 2019, China-linked cyber-espionage group tracked as APT10 has added two new loaders to its arsenal and used it against government and private organizations in Southeast Asia.

Libraries

Libraries Government Phishing Cloud

The evolutions of APT28 attacks

Security Affairs

DECEMBER 4, 2019

In other words all the infrastructures, the samples, the command and controls, the domains and IPs, the certificate, the libraries and, general speaking, all the operations that come before the attack phase in term of environments. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Computer and Electronics

Computer and Electronics Libraries Security Military

ESET analyzes Turla APT’s usage of weaponized PowerShell

Security Affairs

JUNE 2, 2019

Turla group has been active since at least 2007 targeting government organizations and private businesses. “To confound detection, its operators recently started using PowerShell scripts that provide direct, in- memory loading and execution of malware executables and libraries. ” reads the report published by ESET.

Libraries

Libraries Security Cloud Cybersecurity

China-linked APT40 group hides behind 13 front companies

Security Affairs

JANUARY 13, 2020

The cyber-espionage group tracked as APT40 (aka TEMP.Periscope , TEMP.Jumper , and Leviathan ), apparently linked to the Chinese government, is focused on targeting countries important to the country’s Belt and Road Initiative (i.e. Hainan Xiandun even appears to operate from the Hainan University Library!” Pierluigi Paganini.

Libraries

Libraries Information Security Military Government

DHS CISA orders federal agencies to fix Zerologon flaw by Monday

Security Affairs

SEPTEMBER 20, 2020

DHS CISA issued an emergency directive to tells government agencies to address the Zerologon vulnerability (CVE-2020-1472) by Monday. The Department of Homeland Security’s CISA issued an emergency directive to order government agencies to address the Zerologon vulnerability (CVE-2020-1472) by Monday. Pierluigi Paganini.

Authentication

Authentication Passwords Government Libraries

Security Affairs newsletter Round 249

Security Affairs

FEBRUARY 2, 2020

A new piece of Ryuk Stealer targets government, military and finance sectors. CVE-2020-7247 RCE flaw in OpenSMTPD library affects many BSD and Linux distros. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The best news of the week with Security Affairs. Did H&M spy on its German employees?

Security

Security Military Ransomware Libraries

A few binary plating 0-days for Windows

Security Affairs

MARCH 15, 2019

This library tries to load the missing DLL “diagtrack_wininternal.dll” several times per day. The “diagtrack.dll” also tries to run the missing “WindowsPerformanceRecorderControl” and “diagtrack_win.dll” libraries from time to time (but less often than “diagtrack_wininternal.dll”). Exploitation.

Libraries

Libraries Authentication Access IT

Analyzing the APT34’s Jason project

Security Affairs

JUNE 6, 2019

Microsoft.Exchange.WebService.dll which includes the real functionalities used by Jason.exe, it’s a Microsoft developed library, PassSamplewhich includes some patterns implementation of possible Passwords (ie.[User@first]@@[user@first]123) Last Microsoft Exchange WebServices dll version dates to 2015. WebService.dll assemply version.

Computer and Electronics

Computer and Electronics Passwords Security Cybersecurity

CrowdStrike uncovered a new campaign of GOBLIN PANDA APT aimed at Vietnam

Security Affairs

SEPTEMBER 5, 2018

GOBLIN PANDA was focused on Vietnam, most of the targets were in the defense, energy, and government sectors. The document did not specifically reference projects related to the Vietnamese government or departments, however, they could be used to trick Government of Vietnam personnel to open them. Pierluigi Paganini.

Metadata

Metadata File names Libraries Government

Apple Mail stores parts of encrypted emails in plaintext DB

Security Affairs

NOVEMBER 10, 2019

“This led me to the process called , run by the system level LaunchAgent apple, and the Suggestions folder in the user-level Library folder, which contains multiple files and some potentially important database files ( files).” ” reads a post published by Gendler on Medium. ” continues the post. Pierluigi Paganini.

Encryption

Encryption Libraries Data collection Privacy

Security Affairs newsletter Round 228

Security Affairs

AUGUST 25, 2019

At least 23 Texas local governments targeted by coordinated ransomware attacks. A backdoor mechanism found in tens of Ruby libraries. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Once again thank you! Bluetana App allows detecting Bluetooth card skimmers in just 3 seconds. Pierluigi Paganini.

Security

Security Mining Data breaches Libraries

Security Affairs newsletter Round 239

Security Affairs

NOVEMBER 10, 2019

Ransomware attack impacted government services in the territory of Nunavut, Canada. A flaw in the Libarchive library impacts major Linux distros. Two former Twitter employees charged of spying on Users for Saudi Arabian Government. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security

Security Ransomware Libraries Archiving

Documentation Theory for Information Governance

ARMA International

NOVEMBER 15, 2019

iv] Further, “the practices of government [and other public and private institutions] become formal or official to the extent that they are documented.” [v] This article aims to consider what a documentary focus can offer to the practices and understandings of information governance. A Documentary Approach.

Information governance

Information governance Government Libraries Paper

Web application exposures continue do bedevil companies as digital transformation accelerates

The Last Watchdog

MARCH 21, 2019

Related: Cyber spies feast on government shut down. This jQuery vulnerability has been known to the black hat community since about 2015. Your software library might not depend on this (jQuery) library, but you might use some other third-party library, and that library depends on the vulnerable library,” Becker explained. “So

Digital transformation

Digital transformation Libraries Security Cloud

Writing Your First Bootloader for Better Analyses

Security Affairs

SEPTEMBER 3, 2019

We need to tell to the liner that we want a plain binary file without linked libraries or linked symbols, fir such a reason we’re going to use –oformat binar. David Jurgens: Help PC Reference Library AshakiranBhatter : Writing BootLoader. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Computer and Electronics

Computer and Electronics Libraries Cybersecurity Security

After 2 years under the radars, Ratsnif emerges in OceanLotus ops

Security Affairs

JULY 1, 2019

The hackers targeted organizations across multiple industries and have also hit foreign governments, dissidents, and journalists. of the wolfSSL library , formerly known as CyaSSL. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” continues the analysis. Pierluigi Paganini.

Manufacturing

Manufacturing Libraries Security Communications

Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

Security Affairs

FEBRUARY 21, 2020

The money is kept by the government and in return, a “non-permanent” profit officially titled as “interest” is given back to the officers at the end of each year. The two dll are legit windows library and are used in support of the malicious behaviour. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Military

Military Communications Encryption IT

Latest Turla backdoor leverages email PDF attachments as C&C mechanism

Security Affairs

AUGUST 23, 2018

Turla is the name of a Russian cyber espionage APT group (also known as Waterbug, Venomous Bear and KRYPTON) that has been active since at least 2007 targeting government organizations and private businesses. The backdoor is a standalone DLL (dynamic link library) that interacts with Outlook and The Bat! Pierluigi Paganini.

Metadata

Metadata Military Libraries Access

New release of Lampion trojan spreads in Portugal with some improvements on the VBS downloader

Security Affairs

JULY 7, 2020

Lampion was first documented in December 2019 , and it was distributed in Portugal via phishing emails using templates based on the Portuguese Government Finance & Tax. VBS file leverages the Windows rundll32 library to inject the first DLL into memory (P-14-7.dll), More recently, in May 2020, a new variant of Lampion was observed.

Communications

Communications Cloud Phishing Encryption

Do libraries have a role at the cutting edge of tech ethics?

CILIP

AUGUST 12, 2020

Do libraries have a role at the cutting edge of tech ethics? Set up by tech entrepreneur Martha Lane Fox in 2015, Doteveryone has lobbied government for more regulation of big tech and lobbied big tech companies to act more responsibly towards their users. Government solution? s terrible that people are being excluded.

Libraries

Libraries Government IT Risk

History of the State Records Center

The Texas Record

NOVEMBER 1, 2018

The history of the Texas State Library and Archives Commission began in the 1830s when Texas was still a Republic. In 1909, the Texas Library and Historical Commission was created to direct the State Library, aid and encourage public libraries, and collect materials related to Texas history. Land at 4400 Shoal Creek Blvd.

Records Management

Records Management Libraries Archiving Government

Writing Your First Bootloader for Better Analyses

Security Affairs

SEPTEMBER 3, 2019

We need to tell to the liner that we want a plain binary file without linked libraries or linked symbols, fir such a reason we’re going to use --oformat binar. David Jurgens: Help PC Reference Library AshakiranBhatter : Writing BootLoader. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. as -o boot.o

Computer and Electronics

Computer and Electronics Libraries Security Cybersecurity

A new trojan Lampion targets Portugal

Security Affairs

DECEMBER 29, 2019

New trojan called ‘Lampion’ has spread using template emails from the Portuguese Government Finance & Tax during the last days of 2019. Last days of 2019 were the perfect time to spread phishing campaigns using email templates based on the Portuguese Government Finance & Tax. To get details about the library inside the 0.zip

Passwords

Passwords e-Discovery IT Cleanup

FAQ: How does web archiving fit into records management?

The Texas Record

APRIL 9, 2020

Recorded Webinar – July 2015 – 33 mins). Records Management for Blogs, Texts, Social Media, Cloud Computing and more!

Records Management

Records Management Archiving Metadata Libraries

Invitation to Tender ? Workforce Mapping

CILIP

OCTOBER 18, 2021

s library and information association and the Archives & Records Association (ARA) have jointly convened a Workforce Data Consortium (please see below for a full list of partners) to fund a Workforce Mapping Survey of the library, archives, records, information and knowledge sector. Invitation to Tender ? Workforce Mapping.

Libraries

Libraries Archiving Records Management Education

General Election 2019 ? Manifesto Special

CILIP

NOVEMBER 29, 2019

Access to quality library services is one of the most transformative investments our society could make. Manifesto for Libraries? calling on the Government to ?recognise recognise the opportunity to transform lives across the UK by investing in the future of our libraries.? Fair funding for Local Government.

Libraries

Libraries Education Government Access

The Evolution of Aggah: From Roma225 to the RG Campaign

Security Affairs

AUGUST 6, 2019

The attack attribution is still unclear but the large scale of the malicious activities has also been confirmed by Unit42, who reported attack attempt against government verticals too. . Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Figure 7: Static information about payload described in table 2.

IT

IT Libraries Education Security

Interview With Mark Myers on the Texas Digital Archive

The Texas Record

JULY 31, 2018

But in January 2015, the records of Governor Rick Perry’s administration were received by TSLAC. This unprecedented transfer of electronic records provided the catalyst for developing a repository for the long-term preservation of and access to the historic digital records of the Texas State Government. Can be accessed here: [link]. [2]

Archiving

Archiving Paper Libraries Government

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now

CILIP

JUNE 14, 2023

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now The libraries and information sector has a highly experienced and predominantly female workforce, with 40 per cent of staff having more than 20 years of work experience, according to data gathered for the Workforce Mapping 2023 survey.

Libraries

Libraries Records Management Archiving Government

Preservica to partner with the Ohio History Connection to safeguard permanent digital records

Preservica

FEBRUARY 27, 2019

For more than 50 years, the Ohio History Connection has worked with state and local government agencies to preserve the history of Ohio and its citizens. The state archives and the official memory of Ohio's government are recorded through public records, documents and images. About Preservica.

Digital preservation

Digital preservation Archiving Libraries Government

Follow the path, but don?t be afraid to explore different routes

CILIP

OCTOBER 4, 2021

A WELL-trodden path from Weekend Assistant in a public library to a career as an information professional may sound familiar to many readers. My first experience of working in libraries was during my time at college when I was an A-Level student and I secured a Saturday job in my local public library. s LIS course. Jake says: ?My

Libraries

Libraries Education Artificial Intelligence IT

CERT France – Pysa ransomware is targeting local governments

Federal Communications Commission has cut off government funding for equipment from Chinese firms

Webinars

Trending Sources

Zeus Sphinx continues to be used in Coronavirus-themed attacks

Webinars

CISA alert warns of Emotet attacks on US govt entities

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

1.2 million CPR numbers for Danish citizen leaked through tax service

Security Affairs newsletter Round 248

OceanLotus APT group leverages a steganography-based loader to deliver backdoors

XDSpy APT remained undetected since at least 2011

New Gallmaker APT group eschews malware in cyber espionage campaigns

Crowley Company Honored with Four 2021 Platinum Modern Library Awards

Security Affairs newsletter Round 222 – News of the week

APT10 is back with two new loaders and new versions of known payloads

The evolutions of APT28 attacks

ESET analyzes Turla APT’s usage of weaponized PowerShell

China-linked APT40 group hides behind 13 front companies

DHS CISA orders federal agencies to fix Zerologon flaw by Monday

Security Affairs newsletter Round 249

A few binary plating 0-days for Windows

Analyzing the APT34’s Jason project

CrowdStrike uncovered a new campaign of GOBLIN PANDA APT aimed at Vietnam

Apple Mail stores parts of encrypted emails in plaintext DB

Security Affairs newsletter Round 228

Security Affairs newsletter Round 239

Documentation Theory for Information Governance

Web application exposures continue do bedevil companies as digital transformation accelerates

Writing Your First Bootloader for Better Analyses

After 2 years under the radars, Ratsnif emerges in OceanLotus ops

Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

Latest Turla backdoor leverages email PDF attachments as C&C mechanism

New release of Lampion trojan spreads in Portugal with some improvements on the VBS downloader

Do libraries have a role at the cutting edge of tech ethics?

History of the State Records Center

Writing Your First Bootloader for Better Analyses

A new trojan Lampion targets Portugal

FAQ: How does web archiving fit into records management?

Invitation to Tender ? Workforce Mapping

General Election 2019 ? Manifesto Special

The Evolution of Aggah: From Roma225 to the RG Campaign

Interview With Mark Myers on the Texas Digital Archive

Highly skilled and predominantly female - Workforce Mapping 2023 Survey results out now

Preservica to partner with the Ohio History Connection to safeguard permanent digital records

Follow the path, but don?t be afraid to explore different routes

Stay Connected