2017, Government and Security - Information Management Today

Russia-linked APT breached the network of Dutch police in 2017

Security Affairs

JUNE 10, 2021

Russia-linked cyberspies breached the internal network of Dutch police in 2017 while the authorities were investigating the crash of the MH-17. Russia-linked threat actors breached the internal network of Dutch police in 2017 during the investigation into the MH-17 crash. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Government Ransomware Security

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

Justice Department today unsealed indictments against four Chinese officers of the People’s Liberation Army (PLA) accused of perpetrating the 2017 hack against consumer credit bureau Equifax that led to the theft of personal data on nearly 150 million Americans. commercial and government interests. .”

Military

Military Phishing Government Sales

US Cyber Command warns of Iran-linked hackers exploiting CVE-2017-11774 Outlook flaw

Security Affairs

JULY 2, 2019

US Cyber Command posted on Twitter an alert about cyber attacks exploiting the CVE-2017-11774 vulnerability in Outlook. Yesterday I was using Twitter when I noticed the following alert issued by the account managed by the US Cyber Command : USCYBERCOM has discovered active malicious use of CVE-2017-11774 and recommends immediate #patching.

Energy and Utilities

Energy and Utilities Phishing Government Passwords

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

The British government aims at improving its offensive cyber capability

Security Affairs

OCTOBER 13, 2020

The news is not surprising for people working in the cyber security sector, the British military claims to have had an offensive cyber capability for a decade. Intelligence experts pointed out that the British government already conducted offensive hacking operations, including the one that targeted the ISIS in 2017.

Government

Government Military IT Security

Singapore Government will run its third bug bounty program

Security Affairs

JULY 1, 2019

Singapore has announced the third bug bounty program aimed at assessing the security of government systems exposed online. The government of Singapore has announced its third bug bounty program aimed at assessing the level of security implemented for government systems exposed online. Pierluigi Paganini.

Government

Government IT Communications Cybersecurity

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Russian APT groups target European governments ahead of May Elections

Security Affairs

MARCH 22, 2019

Russian APT groups are targeting European governments for cyber-espionage purposes ahead of the upcoming European elections. The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Pierluigi Paganini.

Government

Government Military Phishing Access

Security breach suffered by credit bureau Equifax has cost $1.4 Billion

Security Affairs

MAY 12, 2019

Equifax revealed its earnings release related to the security breach suffered in 2017, the incident has cost about $1.4 Equifax revealed this week its earnings release related to the security breach suffered by the credit bureau back in 2017, the incident has cost about $1.4 billion plus legal fees.

Security

Security Data breaches Cybersecurity Government

Ransomware infected systems at state government of Louisiana

Security Affairs

NOVEMBER 19, 2019

Another ransomware attack made the headlines, the victim is the state government of Louisiana, numerous services have been impacted. The incident forced the state of government of Louisiana to shut down several numerous web sites of the state as well as email and Internet services. Pierluigi Paganini.

Ransomware

Ransomware Government Cybersecurity Security

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Exodus, a government malware that infected innocent victims

Security Affairs

MARCH 30, 2019

Security researchers have found a new government spyware, tracked as Exodus, that was distributed through the Google Play Store. According to Motherboard, the Android surveillance malware on the Google Play store that was sold to the Italian government by a company that sells surveillance cameras. on November 6, 2017.”

Government

Government Marketing Compliance Security

Security Affairs newsletter Round 261

Security Affairs

APRIL 26, 2020

The best news of the week with Security Affairs. The post Security Affairs newsletter Round 261 appeared first on Security Affairs. A new round of the weekly newsletter arrived! Please give me your vote for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. Pierluigi Paganini.

Security

Security Ransomware Sales Government

UK, US and its allies blame Russia’s GRU for 2019 cyber-attacks on Georgia

Security Affairs

FEBRUARY 20, 2020

Britain and the United governments blame Russia for being behind a destructive cyber attack that hit Georgia during 2019. The governments of Britain and the US declared that Russia’s military intelligence service GRU is behind the massive cyber attack that hit Georgia during 2019. ” said the Foreign Secretary Dominic Raab.

Military

Military IT Government Encryption

When Security Takes a Backseat to Productivity

Krebs on Security

JUNE 17, 2020

“We must care as much about securing our systems as we care about running them if we are to make the necessary revolutionary change.” What kind of security failures created an environment that allegedly allowed a former CIA employee to exfiltrate so much sensitive data? Moving too slowly to enact key security safeguards.

Security

Security Data breaches Security awareness Passwords

Emissary Panda APT group hit Government Organizations in the Middle East

Security Affairs

MAY 30, 2019

Chinese Cyber-Spies Target Government Organizations in Middle East. Chinese APT group Emissary Panda has been targeting government organizations in two different countries in the Middle East. The report by the Saudi Cyber Security Centre suggests threat actors are primarily targeting organizations within the kingdom.

Government

Government Financial Services Security Cybersecurity

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Security Affairs

MAY 9, 2020

Nigerian cyber gang SilverTerrier, specialized in BEC attacks, used COVID-19 lures in recent attacks on healthcare and government organizations. A few weeks later, threat actors launched multiple attacks that attempted to exploit the CVE 2017-11882 Office flaw to run a malicious executable. ” continues the report.

Government

Government Energy and Utilities Insurance Phishing

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Security Affairs

NOVEMBER 28, 2021

North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms. North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported.

Security

Security Phishing Information Security Communications

US and UK details a new Python backdoor used by MuddyWater APT group

Security Affairs

FEBRUARY 24, 2022

CISA, the FBI, the US Cyber Command’s Cyber National Mission Force (CNMF), UK’s National Cyber Security Centre (NCSC-UK), and the NSA, and law enforcement agencies have published a joint advisory on new malware used by Iran-linked MuddyWater APT group (aka SeedWorm and TEMP.Zagros ) in attacks aimed at critical infrastructure worldwide.

Government

Government Cybersecurity Security IT

US agencies offer $2M in reward for Ukrainian hackers that breached the SEC

Security Affairs

JULY 22, 2020

The US State Department and Secret Service offered $2 million in reward money for help capturing two Ukrainian hackers that have been charged with hacking and selling insider corporate data stolen from the Securities and Exchange Commission. The offer was covered by the State Department’s Transnational Organized Crime Rewards Program.

Government

Government Security Access IT

Strategies for Securing Your Supply Chain

IT Governance

OCTOBER 23, 2024

What to do when your ‘supply chain’ is really a ‘supply loop’ When I asked Bridget Kenyon – CISO (chief information security officer) for SSCL, lead editor for ISO 27001:2022 and author of ISO 27001 Controls – what she’d like to cover in an interview, she suggested supply chain security. How can you secure a ‘supply loop’?

Security

Security Information Security Risk Access

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

Security Affairs

AUGUST 27, 2020

Cybersecurity experts at CyberNews hijacked close to 28,000 unsecured printers worldwide and forced them to print out a guide on printer security. Most of us already know the importance of using antivirus , anti-malware, and VPNs to secure our computers, phones, and other devices against potential attacks. Original post: [link].

Security

Security IoT Passwords Manufacturing

China-linked APT Sharp Panda targets government entities in Southeast Asia

Security Affairs

MARCH 8, 2023

China-linked APT group Sharp Panda targets high-profile government entities in Southeast Asia with the Soul modular framework. CheckPoint researchers observed in late 2022, a campaign attributed to the China-linked APT group Sharp Panda that is targeting a high-profile government entity in the Southeast Asia.

Government

Government Communications Phishing IT

Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company

Security Affairs

SEPTEMBER 30, 2018

Estonian sues Gemalto for 152 million euros following the security flaws in the citizen ID cards issued by the company that caused their recall in 2017. Estonian authorities sue the security firm Gemalto for 152 million euros following the security flaws in the citizen ID cards issued by the company that caused their recall in 2017.

Manufacturing

Manufacturing Government Security Risk

CISA warns of phishing attacks delivering KONNI RAT

Security Affairs

AUGUST 17, 2020

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert related to attacks delivering the KONNI remote access Trojan (RAT). The Cybersecurity and Infrastructure Security Agency (CISA) has published an alert to provide technical details on a new wave of attacks delivering the KONNI remote access Trojan (RAT).

Phishing

Phishing Cybersecurity Access Security

Malaysia’s MyCERT warns cyber espionage campaign carried out by APT40

Security Affairs

FEBRUARY 10, 2020

Malaysia’s MyCERT issued a security alert to warn of a hacking campaign targeting government officials that was carried out by the China-linked APT40 group. The attackers aimed at stealing confidential documents from government systems after having infected them with malware. ” reads the alert issued by MyCERT.

Government

Government Military Phishing Security

Mercedes-Benz data breach impacted roughly 1000 individuals

Security Affairs

JUNE 26, 2021

million customers, exposed data includes financial data and social security numbers (SSNs). Data belongs to individuals that provided their information to Mercedez-Benz and dealer websites between 2014 and 2017. The company will also notify the appropriate government agencies. The incident exposed approximately 1.6

Data breaches

Data breaches Cloud Security Government

AcidBox, a malware that borrows Turla APT exploit, hit Russian organizations

Security Affairs

JUNE 19, 2020

The Turla APT group (aka Snake , Uroburos , Waterbug , Venomous Bear and KRYPTON ) has been active since at least 2007 targeting diplomatic and government organizations and private businesses in the Middle East, Asia, Europe, North and South America, and former Soviet bloc nations. ” reads the analysis published by Palo Alto Networks.

Security

Security Government IT Information Security

USCYBERCOM shares five new North Korea-linked malware samples

Security Affairs

MAY 13, 2020

“On May 12, 2020, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense (DoD) released three Malware Analysis Reports (MARs) on malware variants used by the North Korean government.” Department of Homeland Security, the U.S.

Analytics

Analytics Government Cybersecurity Authentication

CIA Hacking unit APT-C-39 hit China since 2008

Security Affairs

MARCH 4, 2020

Chinese security firm Qihoo 360 revealed that the US CIA has hacked Chinese organizations in various sectors for the last 11 years. Chinese security firm Qihoo 360 is accusing that the US Central Intelligence Agency (CIA) of having hacked Chinese organizations for the last 11 years.

Military

Military Government Security IT

Data belonging 44 Million Pakistani mobile users leaked online

Security Affairs

MAY 6, 2020

It seems that the huge trove of data was the result of a data breach that took place in 2017, the oldest entries are dated back as 2013. – Database apparently got hacked in 2017. Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. Pierluigi Paganini.

Sales

Sales Data breaches Authentication Personal data

APT28 group return to covert intelligence gathering ops in Europe and South America.

Security Affairs

OCTOBER 7, 2018

The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. According to experts from Symantec, the group is now actively conducting cyber espionage campaigns against government and military organizations in Europe and South America. Pierluigi Paganini.

Military

Military Government Phishing Security

Russia-linked APT Turla used a new malware toolset named Crutch

Security Affairs

DECEMBER 2, 2020

The Turla APT group (aka Snake , Uroburos , Waterbug , Venomous Bear and KRYPTON ) has been active since at least 2007 targeting diplomatic and government organizations and private businesses in the Middle East, Asia, Europe, North and South America, and former Soviet bloc nations. ” reads the report published by ESET.

Archiving

Archiving Communications Government Access

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

Security Affairs

JANUARY 7, 2024

Researchers from Dutch security firm Hunt & Hackett observed Sea Turtle cyber espionage group (aka Teal Kurma, Marbled Dust, SILICON and Cosmic Wolf) targeting telco, media, ISPs, IT service providers, and Kurdish websites in the Netherlands. Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns.

IT

IT Passwords Government Archiving

US Treasury imposes sanctions on a Russian research institute behind Triton malware

Security Affairs

OCTOBER 24, 2020

. “Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) designated, pursuant to Section 224 of the Countering America’s Adversaries Through Sanctions Act (CAATSA), a Russian government research institution that is connected to the destructive Triton malware.” ” continues the press release.

Government

Government Cybersecurity Information Security IT

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

According to a report published by Symantec in 2017, Longhorn is a North American hacking group that has been active since at least 2011. In 2017, Symantec speculated that at least 40 targets in 16 countries have been compromised by the threat actors. The targets were all located in the Middle East, Europe, Asia, and Africa.

Communications

Communications Encryption Education Authentication

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Security Affairs

AUGUST 4, 2022

Taiwan government websites were temporarily forced offline by cyber attacks during the visit to Taipei of US House Speaker Nancy Pelosi. Major Taiwan government websites were temporarily forced offline by distributed denial of service (DDoS) attacks attacks during the visit to Taipei of US House Speaker Nancy Pelosi.

Government

Government Cloud Cybersecurity Security

Kaspersky report: Malware shared by USCYBERCOM first seen in December 2016

Security Affairs

JULY 9, 2019

Last week the United States Cyber Command (USCYBERCOM) uploaded to VirusTotal a malware used by Iran-linked APT33 group in attacks in Dec 2016 and Jan 2017. USCYBERCOM has discovered active malicious use of CVE-2017-11774 and recommends immediate #patching. ” reads a report published by Kaspersky. Pierluigi Paganini.

Phishing

Phishing Government Cybersecurity Security

Australian ACSC ‘s report confirms the use of Chinese malware in recent attacks

Security Affairs

JUNE 28, 2020

Recently, Australia ‘s prime minister Scott Morrison revealed that a “state-based actor” is targeting government, public services, and businesses. In many cases, attackers targeted unpatched versions of Telerik user interface (UI) by exploiting CVE-2019-18935 , CVE-2017-9248 , CVE-2017-11317 , CVE-2017-11357 vulnerabilities.

Risk

Risk Phishing Government Security

Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax

Krebs on Security

JULY 1, 2021

Before, you likely had to manually provide this info to lenders, creditors or government agencies. Equifax’s 2017 megabreach that exposed the personal and financial details of 145.5 At the time, all you needed to view someone’s entire work and salary history was their Social Security number and date of birth.

Financial Services

Financial Services Government Authentication IT

U.S. Indicts North Korean Hackers in Theft of $200 Million

Krebs on Security

FEBRUARY 17, 2021

Secret Service and Department of Homeland Security told reporters on Wednesday the trio’s activities involved extortion, phishing, direct attacks on financial institutions and ATM networks, as well as malicious applications that masqueraded as software tools to help people manage their cryptocurrency holdings.

Financial Services

Financial Services Phishing Blockchain Government

MuddyWater has been spotted targeting two Israeli entities

Security Affairs

NOVEMBER 3, 2023

The document describes what to do in case a government worker expresses opinions against the Israeli state on social networks. ” The first MuddyWater campaign was observed in late 2017, when the APT group targeted entities in the Middle East. .” continues the report. ” concludes the report.

Archiving

Archiving Phishing Government IT

Google warned 12K+ users targeted by state-sponsored hackers

Security Affairs

DECEMBER 1, 2019

“TAG tracks more than 270 targeted or government-backed groups from more than 50 countries. Users in 149 countries have been alerted between July and September 2019, which is consistent with a +/-10 percent range with the number of phishing email warnings sent in the same period of 2018 and 2017. Pierluigi Paganini.

Phishing

Phishing Passwords Authentication Risk

US House Passes IoT Cybersecurity Improvement Act

Security Affairs

SEPTEMBER 21, 2020

House of Representatives passed the IoT Cybersecurity Improvement Act, a bill that aims at improving the security of IoT devices. House of Representatives last week passed the IoT Cybersecurity Improvement Act, a bill designed to improve the security of IoT devices. Mark Warner. “I

IoT

IoT Cybersecurity Manufacturing Government

NSA warns of cloud attacks on authentication mechanisms

Security Affairs

DECEMBER 19, 2020

The US National Security Agency (NSA) warns of two techniques abused by threat actors for escalating attacks from local networks to cloud infrastructure. The US National Security Agency has published a security advisory that describes two techniques abused in recent attacks against cloud infrastructure. Pierluigi Paganini.

Authentication

Authentication Cloud Access Security

Russia-linked APT breached the network of Dutch police in 2017

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Webinars

Trending Sources

US Cyber Command warns of Iran-linked hackers exploiting CVE-2017-11774 Outlook flaw

Webinars

The British government aims at improving its offensive cyber capability

Singapore Government will run its third bug bounty program

US indicted 4 Russian government employees for attacks on critical infrastructure

Russian APT groups target European governments ahead of May Elections

Security breach suffered by credit bureau Equifax has cost $1.4 Billion

Ransomware infected systems at state government of Louisiana

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Exodus, a government malware that infected innocent victims

Security Affairs newsletter Round 261

UK, US and its allies blame Russia’s GRU for 2019 cyber-attacks on Georgia

When Security Takes a Backseat to Productivity

Emissary Panda APT group hit Government Organizations in the Middle East

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

US and UK details a new Python backdoor used by MuddyWater APT group

US agencies offer $2M in reward for Ukrainian hackers that breached the SEC

Strategies for Securing Your Supply Chain

Experts hacked 28,000 unsecured printers to raise awareness of printer security issues

China-linked APT Sharp Panda targets government entities in Southeast Asia

Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company

CISA warns of phishing attacks delivering KONNI RAT

Malaysia’s MyCERT warns cyber espionage campaign carried out by APT40

Mercedes-Benz data breach impacted roughly 1000 individuals

AcidBox, a malware that borrows Turla APT exploit, hit Russian organizations

USCYBERCOM shares five new North Korea-linked malware samples

CIA Hacking unit APT-C-39 hit China since 2008

Data belonging 44 Million Pakistani mobile users leaked online

APT28 group return to covert intelligence gathering ops in Europe and South America.

Russia-linked APT Turla used a new malware toolset named Crutch

Turkish Sea Turtle APT targets Dutch IT and Telecom firms

US Treasury imposes sanctions on a Russian research institute behind Triton malware

DePriMon downloader uses a never seen installation technique

Taiwan Government websites suffered DDoS attacks during the Nancy Pelosi visit

Kaspersky report: Malware shared by USCYBERCOM first seen in December 2016

Australian ACSC ‘s report confirms the use of Chinese malware in recent attacks

Intuit to Share Payroll Data from 1.4M Small Businesses With Equifax

U.S. Indicts North Korean Hackers in Theft of $200 Million

MuddyWater has been spotted targeting two Israeli entities

Google warned 12K+ users targeted by state-sponsored hackers

US House Passes IoT Cybersecurity Improvement Act

NSA warns of cloud attacks on authentication mechanisms

Stay Connected