2018 and Education - Information Management Today

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

Security Affairs

MARCH 28, 2019

The vulnerability, tracked as CVE-2018-20250, was discovered by experts at Check Point in February, it could allow an attacker to gain control of the target system. This campaign was carried out by threat actors impersonating an educational accreditation council to hit users in the United States. Pierluigi Paganini.

Archiving

Archiving File names Education Libraries

CVE-2018-15961: Adobe ColdFusion Flaw exploited in attacks in the wild

Security Affairs

NOVEMBER 11, 2018

CVE-2018-15961) affecting the Adobe ColdFusion has been exploited in the wild. The flaw, tracked as CVE-2018-15961, is an unrestricted file upload vulnerability, successful exploitation could lead to arbitrary code execution. Security Affairs – CVE-2018-15961, ColdFusion). ” reads the advisory published by Volexity.

Education

Education Authentication Security Government

Experts observed the growth of hi-tech crime landscape in Asia in 2018

Security Affairs

MARCH 19, 2019

Security experts at Group-IB presented at Money2020 Asia the results of an interesting analysis of hi-tech crime landscape in Asia in 2018. The number of leaked cards increased in 2018 by 56%. The total underground market value of Singaporean banks’ cards compromised in 2018 is estimated at nearly $640 000.

Sales

Sales Passwords Government Marketing

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Guy Fawkes Day – LulzSec Italy hit numerous organizations in Italy

Security Affairs

NOVEMBER 9, 2018

Guy Fawkes Day, November 5th 2018 – LulzSec Italy announced credit a string of hacks and leaks targeting numerous systems and websites across Italy. In celebration of Guy Fawkes Day, November 5th 2018, LulzSec Italy announced credit for a massive string of hacks and leaks targeting numerous systems and websites across Italy.

Passwords

Passwords Archiving Mining Education

Vollgar botnet has managed to infect around 3k MSSQL DB servers daily

Security Affairs

APRIL 1, 2020

Cybersecurity researchers spotted a crypto-mining botnet, tracked as Vollgar, that has been hijacking MSSQL servers since at least 2018. Researchers at Guardicore Labs discovered a crypto-mining botnet , tracked as Vollgar botnet , that is targeting MSSQL databases since 2018. ” reads the analysis published by Guardicore.

Mining

Mining Passwords Education Cybersecurity

Shade Ransomware gang shut down operations and releases 750K decryption keys

Security Affairs

APRIL 27, 2020

The Shade infections increased during October 2018, keeping a constant trend until the second half of December 2018, taking a break around Christmas, and then resuming in mid-January 2019 doubled in size. Moth of the victims belongs to high-tech, wholesale and education sectors.

Ransomware

Ransomware File names Education Encryption

Fortinet warns of a spike in attacks against TBK DVR devices

Security Affairs

MAY 2, 2023

Threat actors are attempting to exploit a five-year-old authentication bypass issue, tracked as CVE-2018-9995 (CVSS score of 9.8), in TBK DVR devices. The CVE-2018-9995 flaw is due to an error when handling a maliciously crafted HTTP cookie. At this time, the vendor has yet to release security patches to address the flaw.

Authentication

Authentication Retail Education Marketing

UK Research and Innovation (UKRI) discloses ransomware attack

Security Affairs

JANUARY 30, 2021

Launched in April 2018, UKRI is a non-departmental public body sponsored by the Department for Business, Energy and Industrial Strategy (BEIS).

Ransomware

Ransomware Education Personal data Encryption

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

Security Affairs

FEBRUARY 24, 2020

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. The global median dwell time (the number of days an attacker remains undetected on the victim’s network) has continued to drop, from 78 days in 2018 to 56 days in 2019.

Data breaches

Data breaches GDPR Education Cybersecurity

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

In March 2018, the Department of Homeland Security and Federal Bureau of Investigation issued a joint technical alert to warn of attacks on US critical infrastructure powered by Russian threat actors. Hackers also targeted Exim mail agents ( CVE 2019-10149 ) and Fortinet SSL VPNs ( CVE-2018-13379 ).

Government

Government Passwords Access Cybersecurity

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Security Affairs

APRIL 21, 2023

The attackers may have gained access to the members’ credentials for a legacy member system that was decommissioned in 2018. The American Bar Association (ABA) is a voluntary bar association of lawyers and law students; it is not specific to any jurisdiction in the United States. The ABA has 166,000 members as of 2022.

Data breaches

Data breaches Passwords Education Cybersecurity

Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

Krebs on Security

SEPTEMBER 16, 2021

man charged in 2018 with operating two online services that allowed paying customers to launch powerful distributed denial-of-service (DDoS) attacks against Internet users and websites. 2018 , when the FBI joined with law enforcement partners overseas to seize 15 different booter service domains. Charles, Ill.

Education

Education Government Marketing IT

‘Aaron Smith’ Sextortion scam campaigns hit tens of thousands of individuals

Security Affairs

NOVEMBER 1, 2018

30, 2018 through Oct. 26, 2018 — 58 days’ worth of spam.” When these kinds of spam campaigns make it into users’ email inboxes, many of them may not be educated enough to identify that it’s a scam designed to make them give away their bitcoins.” ” reads the analysis published by Talos.

Data breaches

Data breaches Education Archiving Phishing

British Council exposed 144,000 files containing student details?

Security Affairs

FEBRUARY 1, 2022

The British Council is a British organisation specialising in international cultural and educational opportunities. It operates in over 100 countries: promoting a wider knowledge of the United Kingdom and the English language; encouraging cultural, scientific, technological and educational co-operation with the United Kingdom.

Education

Education Phishing GDPR Passwords

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. The FBI recommends mobile carriers take the following precautions: Educate employees and conduct training sessions on SIM swapping.

Passwords

Passwords Authentication Access Retail

The Information Commissioner’s Office Issues UK Department for Education with Formal Reprimand

Hunton Privacy

NOVEMBER 7, 2022

On November 2, 2022, the ICO issued to the UK Department for Education (“ DfE ”) a formal reprimand following an investigation into the sharing of personal data stored on the Learning Records Service (“ LRS ”), a database which provides a record of pupils’ qualifications that the DfE has overall responsibility for.

Education

Education Personal data Access IT

NASA hacked! An unauthorized Raspberry Pi connected to its network was the entry point

Security Affairs

JUNE 23, 2019

NASA Office of Inspector General revealed that the Agency’s network was hacked in April 2018, intruders exfiltrated roughly 500 MB of data related to Mars missions. According to a report published by the NASA Office of Inspector General, hackers breached the Agency’s network in April 2018 and remained undetected for nearly a year.

IT

IT Data breaches Archiving Education

Researcher published PoC exploit for Ghostscript zero-day

Security Affairs

SEPTEMBER 7, 2021

” wrote the expert that added that his PoC was created only for educational purposes and cannot be used for law violation or personal gain. In August 2018, the popular Google Project Zero white hat hacker Tavis Ormandy found another critical remote code execution (RCE) vulnerability in Ghostscript.

Libraries

Libraries Education Security IT

Georgia Tech security breach exposed up to 1.3 million individuals

Security Affairs

APRIL 3, 2019

The internal staff discovered that the intruders had gained access as early as December 14, 2018, by exploiting a vulnerability in a web application. Department of Education and University System of Georgia (USG) have been notified , Georgia Tech has started notifying potentially impacted individuals.

Security

Security Data breaches Access Education

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Security Affairs

DECEMBER 15, 2022

The services were involved in attacks against millions of individuals and organizations in multiple industries, including educational institutions, government agencies, and gaming platforms. In December 2018, the FBI seized other 15 domains associated with DDoS-for-hire services, the U.S. com, ragebooter(.)com, com, downthem(.)org

Education

Education Communications Government Access

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Security Affairs

SEPTEMBER 9, 2019

Experts at Symantec first exposed the activity of the Chinese-linked APT Thrip in 2018, now the security firm confirms that cyber espionage group has continued to carry out attacks in South East Asia. The China-linked APT group Thrip is continuing to target entities in Southeast Asia even after its activity was uncovered by Symantec.

Military

Military Communications Government Education

Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation

Security Affairs

APRIL 19, 2023

According to the indictment, between at least August 2018 and August 2021, Dubnikov and his co-conspirators are alleged to have knowingly and intentionally laundered the proceeds of ransomware attacks on individuals and organizations throughout the United States and abroad.” On February 7, 2023, Dubnikov pleaded guilty in the U.S.

Ransomware

Ransomware Education Cybersecurity Security

CarsBlues Bluetooth attack Affects tens of millions of vehicles

Security Affairs

NOVEMBER 18, 2018

” The attack technique was discovered by Privacy4Cars founder Andrea Amico in February 2018, he immediately notified the Automotive Information Sharing and Analysis Center (Auto-ISAC). Amico worked with Auto-ISAC to figure out how attackers could steal PII from vehicles manufactured by affected members.

Manufacturing

Manufacturing Privacy Education Personal data

Six Charged in Mass Takedown of DDoS-for-Hire Sites

Krebs on Security

DECEMBER 14, 2022

million attacks between 2018 and 2022, and attracted some 50,000 registered users. million attacks between 2018 and 2022. Colon is suspected of running the booter service securityteam[.]io. He was also charged with conspiracy and CFAA violations. The feds say the SecurityTeam stresser service conducted 1.3 astrostress[.]com.

Computer and Electronics

Computer and Electronics Education IT Risk

North Korea-linked TA406 cyberespionage group activity in 2021

Security Affairs

NOVEMBER 19, 2021

Since 2018, Proofpoint researchers tracked the activity associated with TA406 as three distinct threat actors, namely TA406, TA408 and TA427. Since the beginning of 2021, the TA406 group has carried out multiple credential theft campaigns targeting research, education, government, media and other organizations.

Government

Government Education Phishing IT

How Do I Tame My Information Chaos? 3 Ways to Address it Head-On

AIIM

APRIL 9, 2020

The IDC predicts that this “Global Datasphere” will grow from 33 Zettabytes (ZB) in 2018 to 175 ZB by 2025 and that the endpoints and edge will play an increasingly important role in this growth. The Edge - enterprise-hardened infrastructures like cell towers and branch offices. The Endpoints - PCs, smartphones, and IoT devices.

Digital transformation

Digital transformation Information capture IT Artificial Intelligence

New ‘PyXie’ Python RAT targets multiple industries

Security Affairs

DECEMBER 9, 2019

PyXie has been first observed in the wild in 2018, but it was underestimated by cybersecurity firms. “Analysts have observed evidence of the threat actors attempting to deliver ransomware to the healthcare and education industries with PyXie.” ” reads the analysis published by Cylance.

Education

Education Encryption Ransomware Communications

FIN12 ransomware gang don’t implement double extortion to prioritize speed

Security Affairs

OCTOBER 7, 2021

Researchers from Mandiant published a detailed report on the activities of a financially motivated ransomware group tracked as FIN12 that has been active since at least October 2018. The vast majority of FIN12 victims have more than $300 million in revenue.

Ransomware

Ransomware Encryption Education Risk

Experts warn of fake Adobe Flash update hiding a miner that works as a legitimate update

Security Affairs

OCTOBER 13, 2018

As early as August 2018, some samples impersonating Flash updates have borrowed pop-up notifications from the official Adobe installer.” Organizations with decent web filtering and educated users have a much lower risk of infection by these fake updates. ” reads the analysis published by Palo Alto Networks.

File names

File names Education Cloud Risk

2.6 billion records exposed in 2,308 disclosed data breaches in H1

Security Affairs

AUGUST 18, 2018

billion data records have been exposed in data breached in the first half of 2018. According to a new report titled “ Mid-Year 2018 Data Breach QuickView ” published by the cyber threat intelligence company Risk Based Security some 2.6. billion data records have been exposed in the first half of 2018. billion records.

Data breaches

Data breaches Phishing Risk GDPR

Authorities dismantled the card-checking platform Try2Check

Security Affairs

MAY 3, 2023

Over a nine-month period in 2018, the site performed at least 16 million checks, and over a 13-month period beginning in September 2021, the site performed at least 17 million checks.” ” reads the press release published by the DoJ. ” The indictment is the result of a law enforcement operation conducted by the U.S.

Education

Education Cybersecurity Government Security

The Problem With the Small Business Cybersecurity Assistance Act

Security Affairs

JULY 18, 2019

Small Business Development Center (SBDC) locations to secure educational materials, enroll in programs, and work with representatives from the Department of Homeland Security to better understand and confront cyber threats and risks. had almost 140,000 Starbucks locations in 2018, despite the company employing under 200,000 people that year.

Cybersecurity

Cybersecurity Education Government Risk

NYC Special Needs Student's Records Found Exposed on Web

Data Breach Today

MARCH 21, 2023

Researcher Says Database Containing Nearly 50,000 Documents Appears Secure Now Nearly 50,000 documents containing personal information of special education students who live in New York City and attend public school there were recently found exposed on the internet in an unsecured database. Some of those records date back to 2018.

Education

Education Security

SILENTFADE a long-running malware campaign targeted Facebook AD platform

Security Affairs

OCTOBER 3, 2020

Facebook spotted the campaign in December 2018 when noticed a surge in suspicious traffic across a number of Facebook endpoints. Only through user education and strong partnerships across the security industry will we measure the scale of malicious campaigns and effectively respond to them.”.

Healthcare

Healthcare Paper Authentication Metadata

0x20k of Ghost Squad Hackers Releases ODay Exploit Targeting Apache Hadoop

Security Affairs

NOVEMBER 1, 2018

In direct response to the publication of Radware’s analysis of the new discovery of the DemonBot malware strain effecting Hadoop clusters earlier the week, October 25th, 2018, 0x20k of Ghost Squad Hackers has released the full source code of the 0day exploit used to build his newest model; the FICORA Botnet. Pierluigi Paganini.

e-Discovery

e-Discovery Passwords Security Education

e-Records Conference 2018: Registration Open!

The Texas Record

SEPTEMBER 5, 2018

e-Records 2018 – Friday, November 16, 2018. Registration is open to state agency and local government staff for the 2018 e-Records Conference. About e-Records 2018. Visit the conference website to REGISTER and to read more about the exciting lineup and exhibitors. Be sure to register as soon as possible.

Records Management

Records Management Government Libraries Archiving

Combat the increasing ransomware threat by educating employees

IT Governance

FEBRUARY 28, 2018

Dan Schiappa, senior vice president and general manager of products at Sophos, said : “Organizations of all sizes are starting 2018 with inadequate protection against ransomware, despite last year’s international headlines.” Although this creates an opportunity for cybercriminals, it can be addressed through education.”.

Education

Education Ransomware Phishing Financial Services

DOJ indicts Fxmsp hacker for selling access to hacked businesses

Security Affairs

JULY 8, 2020

Between 2017 and 2018, Fxmsp created a network of trusted proxy resellers to promote their breaches on the criminal underground. Attorney Brian T. ” According to BleepingComputer , sources familiar with the case told it that local authorities detained the man in Kazakhstan.

Access

Access Passwords Education Government

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

Security Affairs

APRIL 26, 2023

In April 2018, the UK GCHQ intelligence agency warned UK telcos firms of the risks of using ZTE equipment and services for their infrastructure. In December 2018, a Czech cyber-security agency warned against using Huawei and ZTE technologies because they pose a threat to state security.

Government

Government Communications Risk Cybersecurity

T-Mobile suffered the second data breach in 2023

Security Affairs

MAY 1, 2023

In 2018, data breach exposed personal information of up to 2 million customers. In March 2020, threat actors gained access to T-Mobile customers and employee personal info. In 2019, T-Mobile disclosed data breach affecting prepaid wireless customers.

Data breaches

Data breaches Access Education Government

Iran-Linked Seedworm APT target orgs in the Middle East

Security Affairs

OCTOBER 23, 2020

In September 2018, experts from Symantec found evidence of Seedworm and the espionage group APT28 on a computer in the Brazil-based embassy of an oil-producing nation. Earlier this month, the Iranian APT group was observed actively targeting the Zerologon flaw. .”

Ransomware

Ransomware Education Security Government

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

RaaS rollout 2015 – 2018. The GandCrab RaaS that appeared in early 2018 was one of the last high-profile threats targeting individuals on a large scale. It vanished from the radar in June 2018, when the ransomware plague took another sharp turn. Targeting enterprises Late 2018 – present day.

Ransomware

Ransomware Encryption Privacy Security awareness

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

In 2018, the cyberespionage group targeted once again Vietnam running a spear-phishing campaign that uses weaponized documents featuring Vietnamese-language lures and themes. In 2014, experts noticed an intensification in the activity of the group that appeared interested in the dispute over the South China Sea.

Military

Military Government Phishing Libraries

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

ARCHIPELAGO also used malicious Google Chrome extensions to harvest sensitive data since at least 2018 as part of the STOLEN PENCIL campaign. The threat actor employed malware like BabyShark that were hosted on Google Drive in the form of blank files or ISO image files.

Phishing

Phishing Passwords Military Education

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

CVE-2018-15961: Adobe ColdFusion Flaw exploited in attacks in the wild

Webinars

Trending Sources

Experts observed the growth of hi-tech crime landscape in Asia in 2018

Webinars

Guy Fawkes Day – LulzSec Italy hit numerous organizations in Italy

Vollgar botnet has managed to infect around 3k MSSQL DB servers daily

Shade Ransomware gang shut down operations and releases 750K decryption keys

Fortinet warns of a spike in attacks against TBK DVR devices

UK Research and Innovation (UKRI) discloses ransomware attack

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

‘Aaron Smith’ Sextortion scam campaigns hit tens of thousands of individuals

British Council exposed 144,000 files containing student details?

Spanish police dismantled SIM swapping gang who stole money from victims’ bank accounts

The Information Commissioner’s Office Issues UK Department for Education with Formal Reprimand

NASA hacked! An unauthorized Raspberry Pi connected to its network was the entry point

Researcher published PoC exploit for Ghostscript zero-day

Georgia Tech security breach exposed up to 1.3 million individuals

FBI seized 48 domains linked to DDoS-for-Hire service platforms

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation

CarsBlues Bluetooth attack Affects tens of millions of vehicles

Six Charged in Mass Takedown of DDoS-for-Hire Sites

North Korea-linked TA406 cyberespionage group activity in 2021

How Do I Tame My Information Chaos? 3 Ways to Address it Head-On

New ‘PyXie’ Python RAT targets multiple industries

FIN12 ransomware gang don’t implement double extortion to prioritize speed

Experts warn of fake Adobe Flash update hiding a miner that works as a legitimate update

2.6 billion records exposed in 2,308 disclosed data breaches in H1

Authorities dismantled the card-checking platform Try2Check

The Problem With the Small Business Cybersecurity Assistance Act

NYC Special Needs Student's Records Found Exposed on Web

SILENTFADE a long-running malware campaign targeted Facebook AD platform

0x20k of Ghost Squad Hackers Releases ODay Exploit Targeting Apache Hadoop

e-Records Conference 2018: Registration Open!

Combat the increasing ransomware threat by educating employees

DOJ indicts Fxmsp hacker for selling access to hacked businesses

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

T-Mobile suffered the second data breach in 2023

Iran-Linked Seedworm APT target orgs in the Middle East

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Stay Connected