2019 and Education - Information Management Today

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. The malicious code appended the extension .

Education

Education Ransomware Encryption Government

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

Security Affairs

FEBRUARY 24, 2020

FireEye’s report revealed that the incident response division Mandiant observed more than 500 new malware families in 2019. million malware samples per day in 2019 and identified 1,268 malware families. The post FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019 appeared first on Security Affairs.

Data breaches

Data breaches GDPR Education Cybersecurity

Cyber Defense Magazine – April 2019 has arrived. Enjoy it!

Security Affairs

APRIL 2, 2019

Cyber Defense eMagazine April 2019 Edition has arrived. GARY BERMAN AND HIS TEAM BELIEVE THAT INFOSEC KNOWLEDGE IS POWERFUL – TAKE YOUR AVERAGE EMPLOYEE AND MAKE THEM A CYBER HERO – YOU WILL EMPOWERED THEM AGAINST THE LATEST SPEAR PHISHING ATTACKS AND RANSOMWARE, IN A FUN EDUCATIONAL WAY. InfoSec Knowledge is Power.

IT

IT Libraries Education Phishing

Webinars

Automation, Evolved: Your New Playbook for Smarter Knowledge Work

MORE WEBINARS

Annual RSA Conference Exclusive 2019 Edition of Cyber Defense Magazine is arrived

Security Affairs

MARCH 4, 2019

We’re honored to bring you our 7th Annual edition of Cyber Defense Magazine (CDM), exclusively in print at the RSA Conference (RSAC) 2019. Cyber Defense eMagazine – Annual RSA Conference 2019 Edition. Setting the Standard in Cyber Training & Education. and by the RSA Conference 2019 Team! Congratulations!

Libraries

Libraries Education Cybersecurity Security

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

“According to the indictment, Ptitsyn facilitated the worldwide use of a dangerous ransomware strain to target corporations and various organizations, including government agencies, healthcare facilities, educational institutions, and critical infrastructure.

Ransomware

Ransomware Education Sales Government

Report: Tycoon Ransomware Targets Windows, Linux Systems

Data Breach Today

JUNE 6, 2020

Attacks Targeting Education and Software Companies Started in December 2019 A sophisticated strain of ransomware called Tycoon has been selectively targeting education and software companies since December 2019, according to a joint report released by BlackBerry and KPMG.

Ransomware

Ransomware Education IT

Belgium Interior Ministry said it was hit by a sophisticated cyber attack

Security Affairs

MAY 26, 2021

The attack took place in 2019, but it was discovered only in March. Belnet (or the Belgian National research and education network ) is a Belgian internet provider for educational institutions, research centres, scientific institutes, and government services.

IT

IT Education Government Communications

Shade Ransomware gang shut down operations and releases 750K decryption keys

Security Affairs

APRIL 27, 2020

The Shade infections increased during October 2018, keeping a constant trend until the second half of December 2018, taking a break around Christmas, and then resuming in mid-January 2019 doubled in size. Moth of the victims belongs to high-tech, wholesale and education sectors.

Ransomware

Ransomware File names Education Encryption

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

The project was launched in September 2019 and as of August 2020, the experts collected 680 records of ransomware attacks that took place since November 2013. “In September 2019, we started a repository of Critical Infrastructures Ransomware Attacks (CIRWAs).

Ransomware

Ransomware Data collection Education Security

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

Security Affairs

NOVEMBER 16, 2022

DTrack is a modular backdoor used by the Lazarus group since 2019 , it was employed in attacks against a wide variety of targets, from financial environments to a nuclear power plan. Despite this, Lazarus has not changed the backdoor much since 2019, when it was initially discovered.” ” concludes the report.

Manufacturing

Manufacturing Education Encryption IT

FBI issued a flash alert about Netwalker ransomware attacks

Security Affairs

AUGUST 2, 2020

and foreign government organizations, education entities, private companies, and health agencies by unidentified cyber actors.” “Two of the most common vulnerabilities exploited by actors using Netwalker are Pulse Secure VPN (CVE-2019-11510) and Telerik UI (CVE-2019-18935).” ” reads the alert.

Ransomware

Ransomware Encryption Passwords Government

Mysterious open database included ‘BreedReady’ status for 1.8 Million Women

Security Affairs

MARCH 12, 2019

The database also contained GPS coordinates, URLs to photos, ID numbers, marital status, political and education related details, and a ‘HasVideo’ field. Followed by Germany, the Netherlands, and France according to ZoomEye pic.twitter.com/DD6GBNt0oh — Victor Gevers (@0xDUDE) March 5, 2019.

Archiving

Archiving Education Security Data breaches

Unprotected Elasticsearch DB exposed 33 Million job profiles in China

Security Affairs

MARCH 17, 2019

The expert discovered the Elasticsearch database using the Shodan search engine, the 57GB archive included a username, gender, age, current city, home address, email address, phone number, marriage status, job history, education history, and salary history. The Elasticsearch database was shutdown on March 13, 2019.

Archiving

Archiving Education Security Data breaches

0patch released micropatch for BearLPE Zero-Day flaw in Windows 10 Task Scheduler

Security Affairs

MAY 31, 2019

It's free for home and educational use. link] pic.twitter.com/gvWTpVM52f — 0patch (@0patch) May 31, 2019. Will Dormann, vulnerability analyst at CERT/CC, confirmed that the Windows zero-day works on a fully patched (May 2019) Windows 10 x86 system. Works quickly, and 100% of the time in my testing.

Education

Education Cybersecurity Security IT

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. The hackers initially exploited the CVE-2019-19781 flaw in Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP appliances.

Healthcare

Healthcare Education Manufacturing Government

NetWalker ransomware operators have made $25 million since March 2020

Security Affairs

AUGUST 4, 2020

The malware has been active at least since August 2019, over the months the NetWalker ransomware was made available through a ransomware-as-a-service (RaaS) model attracting criminal affiliates. “Since 2019, NetWalker ransomware has reached a vast number of different targets, mostly based in western European countries and the US.

Ransomware

Ransomware Phishing Encryption Education

DDoS Attacks on Education Escalate in 2020

Dark Reading

SEPTEMBER 4, 2020

The number of DDoS attacks affecting educational resources was far higher between February and June 2020 compared with 2019.

Education

Hackers breach 62 US colleges by allegedly exploiting Ellucian Banner Web flaw

Security Affairs

JULY 21, 2019

US Department of Education warned that hackers have breached at least 62 college and university networks by exploiting a vulnerability in the Ellucian Banner Web Tailor module of the Ellucian Banner ERP. Unfortunately, threat actors started exploiting the CVE-2019-8978 flaw in the wild.

Education

Education Authentication Access Security

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Security Affairs

JANUARY 24, 2020

The Danish security researcher Ollypwn has published a proof-of-concept (PoC) denial of service exploit for the CVE-2020-0609 and CVE-2020-0610 vulnerabilities in the Remote Desktop Gateway (RD Gateway) component on Windows Server (2012, 2012 R2, 2016, and 2019) devices.

Education

Education Authentication Access Security

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

Based on logs from compromised phones, we believe that NSO Group customers also successfully deployed KISMET or a related zero-click, zero-day exploit between October and December 2019.” These surgical attacks took place between July and August 2020, but experts speculate the attack are going on since at least October 2019.

Government

Government Security awareness Education Sales

Nation-state actors target Australia, Government warns

Security Affairs

JUNE 19, 2020

“This activity is targeting Australian organisations across a range of sectors, including all levels of government, industry, political organisations, education, health, essential service providers and operators of other critical infrastructure,” he said.

Government

Government Risk Education Passwords

German BSI warns of 17,000 unpatched Microsoft Exchange servers

Security Affairs

MARCH 30, 2024

Most affected organizations are educational institutions such as schools and universities, healthcare facilities including clinics and doctors’ practices, nursing services, legal and tax advisory firms, local governments, and a multitude of medium-sized enterprises. ” reads the alert published by the BSI.

Information Security

Information Security Cybersecurity Education Authentication

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

The state-sponsored hackers scanned for vulnerable Citrix ( CVE-2019-19781 ) and Microsoft Exchange services ( CVE-2020-0688 ) and identified vulnerable installs for future exploitation. Hackers also targeted Exim mail agents ( CVE 2019-10149 ) and Fortinet SSL VPNs ( CVE-2018-13379 ).

Government

Government Passwords Access Cybersecurity

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

pic.twitter.com/SvpbeslrCd — vx-underground (@vxunderground) February 19, 2024 LockBit is a prominent ransomware operation that first emerged in September 2019. Lockbit ransomware group administrative staff has confirmed with us their websites have been seized.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 18, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added the following five new issues to its Known Exploited Vulnerabilities Catalog : CVE-2019-8526 – Apple macOS Use-After-Free Vulnerability. The issue was used to dump iCloud Keychain if the macOS version is lower than 10.14.4.

IT

IT Cybersecurity Education Risk

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Google sued by New Mexico attorney general for collecting student data through its Education Platform. FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019. ISS reveals malware attack impacted parts of the IT environment. ObliqueRAT, a new malware employed in attacks on government targets in Southeast Asia.

Security

Security Ransomware Military Data breaches

Newcastle University becomes latest ransomware victim as education sector fails to heed warnings

IT Governance

SEPTEMBER 10, 2020

This incident is the latest in a long line of cyber attacks on the education sector. It followed August’s ransomware attack on the education administrator Blackbaud , in which students’ phone numbers, donation history and events attendance were all compromised. Ransomware epidemic.

Education

Education Ransomware Government Security

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

7 ] CVE-2019-19781 : Citrix Virtual Private Network (VPN) Appliances – CISA has observed the threat actors attempting to discover vulnerable Citrix VPN Appliances. CVE-2019-19781 enabled the actors to execute directory traversal attacks.[ CVE-2019-19781 enabled the actors to execute directory traversal attacks.[

Government

Government Energy and Utilities Healthcare Access

Bad News: AI and 5G Are Expected to Worsen Cybersecurity Risks

Security Affairs

NOVEMBER 10, 2019

Information Risk Management (IRM) recently published its 2019 Risky Business Report. AI could also assist sectors that cybercriminals frequently target, such as the education industry. One tip that education brands should follow is to create a prioritized list of risks.

Cybersecurity

Cybersecurity Risk Artificial Intelligence Education

Ransomware Strikes 49 School Districts & Colleges in 2019

Dark Reading

SEPTEMBER 20, 2019

The education sector has seen 10 new victims in the past nine days alone, underscoring a consistent trend throughout 2019.

Ransomware

Ransomware Education

US cyber and law enforcement agencies warn of Phobos ransomware attacks

Security Affairs

MARCH 2, 2024

The attacks were observed as recently as February 2024, they targeted government, education, emergency services, healthcare, and other critical infrastructure sectors. Phobos operation uses a ransomware-as-a-service (RaaS) model, it has been active since May 2019.

Ransomware

Ransomware Education Phishing Government

Experts found a new TrickBot module (rdpScanDll) built for RDP bruteforcing operations

Security Affairs

MARCH 19, 2020

For example, in February 2019 Trend Micro detected a variant that includes a new module used for Remote App Credential-Grabbing. ” The module appears to be under development, but experts pointed out that threat actors already used it to target organizations, mostly in telecoms, education, and financial services sectors.

Financial Services

Financial Services Education Communications IT

Capital One hacker suspected to have breached other 30 companies

Security Affairs

AUGUST 17, 2019

District Court in Seattle today and was ordered detained pending a hearing on August 1, 2019.”. Attorney’s Office in Seattle said servers found in Thompson’s bedroom contained data stolen from more than 30 unnamed companies, educational institutions and other entities.” reads the press release published by the DoJ. Now the U.S.

Data breaches

Data breaches Education Access Security

Critical flaws affect Jira Service Desk and Jira Service Desk Data Center

Security Affairs

SEPTEMBER 22, 2019

The flaw, tracked as CVE-2019-14994, could lead to information disclosure, it could be exploited by anyone with access to the portal, including customers. The following versions of Service Desk Server and Service Desk Data Center address the CVE-2019-14994: 3.9.16, 3.16.8, The flaw tracked as CVE-2019-15001 affects version 7.0.10

Access

Access Manufacturing Education Security

Fileless SockDetour backdoor targets U.S.-based defense contractors

Security Affairs

FEBRUARY 26, 2022

According to the experts, the SockDetour backdoor has been in the wild since at least July 2019. The attackers successfully compromised more than a dozen organizations across multiple industries, including technology, energy, healthcare, education, finance and defense. based defense contractors. ” concludes the report.

Education

Education Encryption Ransomware Cybersecurity

Maastricht University finally paid a 30 bitcoin ransom to crooks

Security Affairs

FEBRUARY 9, 2020

In December 2019, Maastricht University (UM) announced that ransomware infected almost all of its Windows systems on December 23. “Since the cyber attack on 23 December 2019, UM has been working hard: on the one hand, to repair the damage and, on the other hand, to make education and research p ossible again as soon as p ossible.”

Ransomware

Ransomware Encryption Passwords Retail

The source code of Zeppelin Ransomware sold on a hacking forum

Security Affairs

JANUARY 5, 2024

The Zeppelin ransomware first appeared on the threat landscape in November 2019 when experts from BlackBerry Cylance found a new variant of the Vega RaaS, dubbed Zeppelin.

Ransomware

Ransomware Sales Encryption Cybersecurity

China-linked APT41 group targets US-Based Research University

Security Affairs

AUGUST 21, 2019

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. based research university took place on April 2019. ” states the report published by FireEye. The attack against a publicly-accessible web server at a U.

Libraries

Libraries Education Phishing Encryption

Join us at ISTE 2019

Jamf

JUNE 20, 2019

Jamf is excited to attend ISTE 2019, where educator-tested strategies meet proven resources for transforming learning and teaching. See you in Philly next week?

Education

GCHQ implements World War II cipher machines in encryption app CyberChef

Security Affairs

MARCH 18, 2019

UK intelligence agency GCHQ, as part of the celebration of its centenary , has released emulators for World War II cipher machines that can be executed in the encryption app CyberChef released for educational purposes. link] #GCHQ100 pic.twitter.com/t2ixVE6j7H — GCHQ (@GCHQ) March 14, 2019. Try them out for yourself!

Encryption

Encryption Military Education Communications

Microsoft: Chinese Cyberspies Used 4 Exchange Server Flaws to Plunder Emails

Krebs on Security

MARCH 2, 2021

The patches released today fix security problems in Microsoft Exchange Server 2013 , 2016 and 2019. The software giant typically releases security updates on the second Tuesday of each month, but it occasionally deviates from that schedule when addressing active attacks that target newly identified and serious vulnerabilities in its products.

Education

Education Access Authentication Communications

Why has there been increase in cyber risks for the education sector?

IT Governance

SEPTEMBER 17, 2020

The coronavirus pandemic has arguably affected the education sector more than any other, with schools, colleges and universities around the globe having been forced to close their doors and deliver classes remotely. The most common threat that the education sector faces are downloaders, adware and Trojan horses. Adware and malware.

Education

Education Risk Ransomware Government

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . In November 2019, ESET researchers discovered a new downloader, dubbed DePriMon, that used new “Port Monitor” methods in attacks in the wild.

Government

Government Cybersecurity Education Security

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 8, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added the following five new issues to its Known Exploited Vulnerabilities Catalog : CVE-2021-27876 – Veritas Backup Exec Agent File Access Vulnerability CVE-2021-27877 – Veritas Backup Exec Agent Improper Authentication Vulnerability CVE-2021-27878 – Veritas Backup Exec (..)

IT

IT Ransomware Education Cybersecurity

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

Webinars

Trending Sources

Cyber Defense Magazine – April 2019 has arrived. Enjoy it!

Webinars

Annual RSA Conference Exclusive 2019 Edition of Cyber Defense Magazine is arrived

Russian Phobos ransomware operator faces cybercrime charges

Report: Tycoon Ransomware Targets Windows, Linux Systems

Belgium Interior Ministry said it was hit by a sophisticated cyber attack

Shade Ransomware gang shut down operations and releases 750K decryption keys

CIRWA Project tracks ransomware attacks on critical infrastructure

Lazarus APT uses DTrack backdoor in attacks against LATAM and European orgs

FBI issued a flash alert about Netwalker ransomware attacks

Mysterious open database included ‘BreedReady’ status for 1.8 Million Women

Unprotected Elasticsearch DB exposed 33 Million job profiles in China

0patch released micropatch for BearLPE Zero-Day flaw in Windows 10 Task Scheduler

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

NetWalker ransomware operators have made $25 million since March 2020

DDoS Attacks on Education Escalate in 2020

Hackers breach 62 US colleges by allegedly exploiting Ellucian Banner Web flaw

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Zero-day exploit used to hack iPhones of Al Jazeera employees

Nation-state actors target Australia, Government warns

German BSI warns of 17,000 unpatched Microsoft Exchange servers

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Operation Cronos: law enforcement disrupted the LockBit operation

CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog

Security Affairs newsletter Round 253

Newcastle University becomes latest ransomware victim as education sector fails to heed warnings

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Bad News: AI and 5G Are Expected to Worsen Cybersecurity Risks

Ransomware Strikes 49 School Districts & Colleges in 2019

US cyber and law enforcement agencies warn of Phobos ransomware attacks

Experts found a new TrickBot module (rdpScanDll) built for RDP bruteforcing operations

Capital One hacker suspected to have breached other 30 companies

Critical flaws affect Jira Service Desk and Jira Service Desk Data Center

Fileless SockDetour backdoor targets U.S.-based defense contractors

Maastricht University finally paid a 30 bitcoin ransom to crooks

The source code of Zeppelin Ransomware sold on a hacking forum

China-linked APT41 group targets US-Based Research University

Join us at ISTE 2019

GCHQ implements World War II cipher machines in encryption app CyberChef

Microsoft: Chinese Cyberspies Used 4 Exchange Server Flaws to Plunder Emails

Why has there been increase in cyber risks for the education sector?

Purple Lambert, a new malware of CIA-linked Lambert APT group

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Stay Connected