Security Affairs

FEBRUARY 25, 2022

In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

Military 306

Military Phishing CMS Government 306

Security Affairs

APRIL 28, 2024

Security experts at Deep Instinct Threat Lab have uncovered a targeted campaign against Ukraine, exploiting a Microsoft Office vulnerability dating back almost seven years to deploy Cobalt Strike on compromised systems. The DLL also implements features to evade detection and avoid analysis by security experts. space and petapixel[.]fun

Military 343

Military Mining Libraries Security 343

Security Affairs

OCTOBER 13, 2020

. “[offensive cyber capability could] degrade, disrupt and even destroy critical capabilities and infrastructure of those who would do us harm, ranging from strategic to tactical targets” both in isolation or alongside traditional military force.” ” Sanders confirmed. ” reported The Guardian. . Pierluigi Paganini.

Government 363

Government Military IT Security 363

Security Affairs

JUNE 20, 2022

The attack took place in April 2017 and the man is accused of conducting the attack for the Russian military intelligence service GRU. Kozachek hacked the computed of the NATO think tank in 2017 and installed a keylogger to spy on the organization. ” reported the Tagesschau website. . ” continues the post.

Military 362

Military Access Security Cybersecurity 362

Security Affairs

JANUARY 22, 2020

US military claims to have disrupted the online propaganda activity of the Islamic State (ISIS) in a hacking operation dating back at least to 2016. “Today the National Security Archive is releasing 6 USCYBERCOM documents obtained through FOIA which shed new light on the campaign to counter ISIS in cyberspace.”

Military 232

Military FOIA Archiving Security 232

Security Affairs

FEBRUARY 20, 2020

The governments of Britain and the US declared that Russia’s military intelligence service GRU is behind the massive cyber attack that hit Georgia during 2019. ” reads a press release published by Foreign & Commonwealth Office , National Cyber Security Centre , and The Rt Hon Dominic Raab MP. Pierluigi Paganini.

Military 346

Military IT Government Encryption 346

Security Affairs

MAY 13, 2024

In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

CMS 356

CMS Military Archiving Security 356

Security Affairs

DECEMBER 6, 2020

Italian police have arrested two people that have been accused of stealing 10 GB of confidental data and military secrets from defense company Leonardo S.p.A. The two people are the former employee of the IT security management of Leonardo SpA, Arturo D’Elia, who is currently in jail, and Antonio Rossi, head of the CERT (Cyber ??Emergency

Military 335

Military Computer and Electronics Communications Personal data 335

Security Affairs

OCTOBER 7, 2018

The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. According to experts from Symantec, the group is now actively conducting cyber espionage campaigns against government and military organizations in Europe and South America. Pierluigi Paganini.

Military 278

Military Government Phishing Security 278

Security Affairs

AUGUST 3, 2020

Security experts from FireEye have uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests. “We

Military 351

Military CMS Security Government 351

Security Affairs

JULY 30, 2020

Security experts from McAfee uncovered a new cyber-espionage campaign carried out by North Korean hackers that targeted the US defense and aerospace sectors. Recently, security experts from Kaspersky Lab reported that North Korea-linked hackers are attempting to spread a new ransomware strain known as VHD. Pierluigi Paganini.

Military 340

Military Data collection Phishing Ransomware 340

Security Affairs

APRIL 13, 2021

The Swedish Sports Confederation organization was compromised in 2017-18 by hackers working for Russian military intelligence, officials said. In the same period, Russia-linked hackers working for the military intelligence service GRU targeted other prominent sporting bodies, including World Anti-Doping Agency (WADA) and FIFA.

Military 242

Military Government Security IT 242

Security Affairs

NOVEMBER 5, 2021

Ukraine’s premier law enforcement and counterintelligence disclosed the real identities of five alleged members of the Russia-linked APT group Gamaredon (aka Primitive Bear, Armageddon, Winterflounder, or Iron Tilden) that are suspected to be components of the Russian Federal Security Service (FSB). ” concludes the announcement.

Military 350

Military Metadata Government Passwords 350

Security Affairs

OCTOBER 7, 2019

In May 2017, a wave of “exploratory” cyber attacks targeted energy networks of the Baltic states. Suspected Russia-backed hackers have launched exploratory cyber attacks against the energy networks of the Baltic states, sources said, raising security concerns inside the West’s main military alliance, NATO.” Pierluigi Paganini.

Security 269

Security Military Cybersecurity IT 269

Security Affairs

JANUARY 8, 2023

Polish authorities charged Russian and Belarusian individuals with spying for the Russian military intelligence service (GRU). Polish authorities charged Russian and Belarusian individuals, who were arrested in April, with spying for the Russian military intelligence service (GRU) from 2017 to April 2022. Pierluigi Paganini.

Military 246

Military Ransomware Government Security 246

Security Affairs

OCTOBER 10, 2018

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military and defense sectors since at least 2017. Gallmaker is a politically motivated APT group that focused its surgical operations on the government, military or defense sectors. ” continues Symantec.

Military 269

Military File names Government Libraries 269

Data Breach Today

FEBRUARY 14, 2020

The latest edition of the ISMG Security Report analyzes the indictments of four Chinese military officers in connection with the 2017 Equifax data breach. Also featured: Advice on implementing NIST's new privacy framework; lessons learned in a breach disclosure.

Military 226

Military Data breaches Privacy Security 226

Security Affairs

MARCH 26, 2021

The attackers are suspected to be hackers of the tracked as Ghostwriter group that works under the control of the Russian military secret service GRU. In August, researchers from FireEye reported that GhostWriter group was behind a disinformation campaign that started at least in March 2017 and is aligned with Russian security interests.

Military 289

Military CMS Phishing Government 289

Security Affairs

JANUARY 20, 2020

The Chairman of the NATO Military Committee announced that the alliance has sent a counter-hybrid team to Montenegro to face Russian hybrid attacks. Last week in Brussels, the Chairman of the NATO Military Committee (MC), Marshal Sir Stuart Peach, announced the effort of the Alliance in facing Russian hybrid attacks.

Military 251

Military Government Phishing Cybersecurity 251

Security Affairs

AUGUST 9, 2022

In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. The attackers breached dozens of enterprises and in some cases compromised their IT infrastructure, taking over systems used to manage security solutions.

Encryption 316

Encryption Military Archiving Phishing 316

Security Affairs

JULY 31, 2020

The Council of the European Union announced sanctions imposed on a Russia-linked military espionage unit, as well as companies operating for Chinese and North Korean threat actors that launched cyber-attacks against the EU and its member states. ” states the Council of the European Union.” ” conclude the EU.

Military 332

Military Cloud Government Phishing 332

Security Affairs

MARCH 4, 2020

Chinese security firm Qihoo 360 revealed that the US CIA has hacked Chinese organizations in various sectors for the last 11 years. Chinese security firm Qihoo 360 is accusing that the US Central Intelligence Agency (CIA) of having hacked Chinese organizations for the last 11 years.

Military 363

Military Government Security IT 363

Security Affairs

AUGUST 23, 2020

The Transparent Tribe cyber-espionage group continues to improve its arsenal while targets Military and Government entities. The Transparent Tribe APT group is carrying out an ongoing cyberespionage campaign aimed at military and diplomatic targets worldwide. ” reads the analysis published by Kaspersky. Pierluigi Paganini.

Military 363

Military Phishing Passwords Access 363

Security Affairs

NOVEMBER 16, 2021

Security researchers at the Mandiant Threat Intelligence team believe that Ghostwriter APT group is linked to the government of Belarus. In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. Pierluigi Paganini.

Military 306

Military CMS Government Security 306

Security Affairs

MARCH 22, 2019

The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. According to a report published by Symantec in October, the group was actively conducting cyber espionage campaigns against government and military organizations in Europe and South America.

Government 279

Government Military Phishing Access 279

Security Affairs

FEBRUARY 10, 2020

Malaysia’s MyCERT issued a security alert to warn of a hacking campaign targeting government officials that was carried out by the China-linked APT40 group. The attackers exploit the CVE-2014-6352 and CVE-2017-0199 Office vulnerabilities to drop and execute the malware on the victim’s computer. Pierluigi Paganini.

Government 363

Government Military Phishing Security 363

Security Affairs

SEPTEMBER 25, 2021

The officials pointed out that these interferences are unacceptable because threaten the integrity and security of the targeted states, and pose risk to the EU democracies. According to FireEye, the campaign, tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

Military 323

Military CMS Phishing Security 323

Security Affairs

AUGUST 27, 2022

“Certain services were switched off temporarily for security reasons but the security of accounts belonging to citizens and companies and their data have not been jeopardised,” said Public Administration Minister Maras Dukaj. Montenegro immediately reported the attack to other members of the NATO alliance.

Military 246

Military Government Phishing Security 246

Security Affairs

JULY 30, 2024

SideWinder (also known as Razor Tiger, Rattlesnake, and T-APT-04) has been active since at least 2012, the group mainly targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. This method helps evade detection by security teams. ” reads the analysis published by the BlackBerry researchers.

Phishing 307

Phishing Military Access IT 307

Security Affairs

DECEMBER 22, 2022

The Government of Pyongyang focuses on crypto hacking to fund its military program following harsh U.N. economic sanctions were toughened in 2017 in response to its nuclear and missile tests.” Cyber security and intelligence experts believe that attacks aimed at the cryptocurrency industry will continue to increase next year.

Military 353

Military Government Ransomware Security 353

Security Affairs

JANUARY 5, 2024

Russia-linked APT group Sandworm was inside Ukrainian telecoms giant Kyivstar from at least May 2023, the head of Ukraine’s Security Service of Ukraine’s (SBU) told Reuters. The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017.

Military 322

Military Communications Access Ransomware 322

Security Affairs

FEBRUARY 23, 2022

National Security Agency (NSA) Equation Group. The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. .” Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, backdoor).

Encryption 323

Encryption Military Archiving Government 323

Security Affairs

JULY 7, 2019

The best news of the week with Security Affairs. Germany and the Netherlands agreded to build TEN, the first ever joint military internet. Germany and the Netherlands agreed to build TEN, the first ever joint military internet. Is Your Browser Secure? Is Your Browser Secure? Kindle Edition. Paper Copy.

Security 174

Security Military Ransomware Paper 174

Security Affairs

SEPTEMBER 9, 2019

Experts at Symantec first exposed the activity of the Chinese-linked APT Thrip in 2018, now the security firm confirms that cyber espionage group has continued to carry out attacks in South East Asia. This custom-built backdoor has been used since at least January 2017 to achieve persistence on compromised networks. Pierluigi Paganini.

Military 266

Military Communications Government Education 266

Security Affairs

NOVEMBER 24, 2023

The KONNI RAT was first spotted by Cisco Talos researchers in 2017, it has been undetected since 2014 and was employed in highly targeted attacks. Upon enabling the macro, the embedded VBA displays a Russian article titled “Western Assessments of the Progress of the Special Military Operation.”

Encryption 338

Encryption Military Phishing Communications 338

Security Affairs

MAY 26, 2020

Earlier versions of Agent.BTZ were used to compromise US military networks in the Middle East in 2008. “Version four of ComRAT is a totally revamped malware family released in 2017,” ESET concludes. Thus, it is able to bypass some security controls because it doesn’t rely on any malicious domain.”

Communications 342

Communications Military Encryption Authentication 342

Security Affairs

FEBRUARY 20, 2019

The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. According to a report published by Symantec in October, the group was actively conducting cyber espionage campaigns against government and military organizations in Europe and South America.

Military 275

Military Phishing Government Security 275