2022, Education and Government - Information Management Today

Ransomware attacks hit 105 US local governments in 2022

Security Affairs

JANUARY 2, 2023

In 2022, ransomware attacks targeted 105 state or municipal governments or agencies in the US, reads a report published by Emsisoft. Below are the attacks reported by Emsisoft: 105 local governments. ” The ransomware attack against local governments resulted in data theft in at least 27 of the 105 incidents (26 percent).

Ransomware

Ransomware Government Education Encryption

Experts released PoC exploit code for critical VMware CVE-2022-22972 flaw

Security Affairs

MAY 26, 2022

Security researchers released PoC exploit code for the critical authentication bypass vulnerability CVE-2022-22972 affecting multiple VMware products. The virtualization giant recently warned that a threat actor can exploit the CVE-2022-22972 flaw (CVSSv3 base score of 9.8) using CVE-2022-22972. states VMware.

Authentication

Authentication Cybersecurity Access Education

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. Pierluigi Paganini.

Education

Education Government Libraries Mining

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028. The vulnerability CVE-2022-38028 was reported by the U.S.

Military

Military File names Education Phishing

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. Later, in November 2022, most of the devices composing the botnet were ProSAFE devices, and a smaller number of DrayTek routers.

e-Discovery

e-Discovery Communications Ransomware Government

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. Gelsemium is a group focused on cyberespionage that has been active since at least 2014.

Government

Government Manufacturing Education Access

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

CISA added the Windows Print Spooler flaw CVE-2022-38028 to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-38028 Microsoft Windows Print Spooler Privilege Escalation vulnerability to its Known Exploited Vulnerabilities (KEV) catalog.

IT

IT Education Cybersecurity Risk

2022 Foundation Education Scholarships

IG Guru

MARCH 14, 2022

Applications are being accepted between February 15th and March 15th, 2022. The post 2022 Foundation Education Scholarships appeared first on IG GURU. At least one of each will be awarded to qualified International applicants. The deadline for ALL scholarship application material is Tuesday, March 31st, Midnight (US […].

Education

Education Information governance Government

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Security Affairs

JUNE 6, 2022

The IT giant has seized the domains used by the threat actors employed in its attacks aimed at organizations in tech, transportation, government, and education sectors located in the U.S., The court filings can be found here: [link] — Amy Hogan-Burney (@CyberAmyHB) June 2, 2022. Middle East, and India.

Phishing

Phishing Manufacturing Education Cybersecurity

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report. ” concludes the report.

Energy and Utilities

Energy and Utilities Military Government Phishing

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

The botnet is comprised of two complementary activity clusters, the experts believe it has been active since at least February 2022. In early July and August of 2022, the researchers noticed several Cisco RV320s , DrayTek Vigor routers , and NETGEAR ProSAFEs that were part of the botnet.

Communications

Communications Manufacturing Education Government

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. Later, in November 2022, most of the devices composing the botnet were ProSAFE devices, and a smaller number of DrayTek routers.

Energy and Utilities

Energy and Utilities Communications Military Access

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

Help us #StopRansomware by visiting [link] pic.twitter.com/G5jpxtB0Fw — Cybersecurity and Infrastructure Security Agency (@CISAgov) June 14, 2023 The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. law enforcement).

Ransomware

Ransomware Cybersecurity Agriculture Education

A Russian national charged for committing LockBit Ransomware attacks

Security Affairs

JUNE 16, 2023

In November 2022, the U.S. On or about May 27, 2022, the man and his Hive coconspirators allegedly hit a nonprofit behavioral healthcare organization in New Jersey. The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. law enforcement).

Ransomware

Ransomware Agriculture Education Government

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The CVE-2022-27926 flaw affects Zimbra Collaboration version 9.0.0, The threat actors created bespoke JavaScript payloads designed for each government targets’ webmail portal.

IT

IT Military Phishing Passwords

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. Lockbit ransomware group administrative staff has confirmed with us their websites have been seized.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

Register Now for InfoCon 2022!

IG Guru

MARCH 29, 2022

ARMA InfoCon 2022 is the premiere educational event for records management, information management, and information governance professionals to learn and share industry best practices. The post Register Now for InfoCon 2022! Registration is now open! Click here for conference details and registration information. .

Records Management

Records Management Information governance Education Government

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In 2022, the Russian APT used multiple wipers in attacks aimed at Ukraine, including AwfulShred , CaddyWiper , HermeticWiper , Industroyer2 , IsaacWiper , WhisperGate , Prestige , RansomBoggs , and ZeroWipe. The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017.

Phishing

Phishing Military Ransomware Education

China-linked APT Earth Baku targets Europe, the Middle East, and Africa

Security Affairs

AUGUST 14, 2024

China-linked threat actor Earth Baku expanded its operations in Europe, the Middle East, and Africa starting in late 2022. The group targeted multiple industries, including media and communications, telecoms, technology, healthcare, and education and government entities. ” reads the report published by Trend Micro.

Encryption

Encryption Education Communications Access

Security Affairs newsletter Round 353

Security Affairs

FEBRUARY 13, 2022

US seizes $3.6 to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps.

Security

Security Ransomware Data breaches Education

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Data Matters

OCTOBER 21, 2021

On 22 September 2021, the UK Government (the “ Government ”) published its Artificial Intelligence (“ AI ”) strategy. The paper outlines the Government’s plan to make Britain a “global superpower” in the AI arena, and sets out an agenda to build the most “pro-innovation regulatory environment in the world”.

Artificial Intelligence

Artificial Intelligence Government Paper IT

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Click to enlarge. PEACE HOSTING?

Cloud

Cloud Education Government Communications

China-linked APT41 group spotted using open-source red teaming tool GC2

Security Affairs

APRIL 17, 2023

The attack took place in October 2022, threat actors sent phishing emails that contained links to a password-protected file hosted in Drive. Finally, the targeting of Taiwanese media illustrates the continued overlap of public sector threat actors targeting private sector organizations with limited government ties.

Cloud

Cloud Phishing Government Education

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

In recent years, the researchers observed the group expanding its operations to include financial institutions and government entities. PingPull, was first spotted by Unit 42 in June 2022, the researchers defined the RAT as a “difficult-to-detect” backdoor that leverages the Internet Control Message Protocol (ICMP) for C2 communications.

Communications

Communications Military Government Libraries

Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

Krebs on Security

SEPTEMBER 16, 2021

Investigators say Downthem helped some 2,000 customers launch debilitating digital assaults at more than 200,000 targets, including many government, banking, university and gaming Web sites. Gatrel’s sentencing is scheduled for January 27, 2022. He faces a statutory maximum sentence of 35 years in federal prison.

Education

Education Government Marketing IT

Helping higher education institutions graduate to data intelligence

Collibra

JUNE 27, 2023

1) How can institutions of higher education use data to start making strategic decisions? Get all the details in Collibra Data Intelligence Cloud for Higher Education , our helpful solution brief. Graduate to data intelligence It’s no secret that data is key to the educational mission. In 2020, the U.S.

Education

Education Cloud Digital transformation Data science

A cyber attack hit the water controllers for irrigating fields in the Jordan Valley

Security Affairs

APRIL 11, 2023

During the last week, private and government organizations in Israel were hit by massive cyber attacks that were part of the #OPIsrael campaign launched by hacktivists against Israeli critical infrastructure.

Education

Education Risk Ransomware Cybersecurity

North Korea-linked TA444 group turns to credential harvesting activity

Security Affairs

JANUARY 25, 2023

Federal Bureau of Investigation (FBI) this week confirmed that in June 2022 the North Korea-linked Lazarus APT group and APT38 stole $100 million worth of cryptocurrency assets from the Blockchain company Harmony Horizon Bridge. According to the experts, the new credential harvesting campaign began in early December 2022.

Blockchain

Blockchain Phishing Education Government

Cybersecurity Employment in 2022: Solving the Skills Gap

eSecurity Planet

JANUARY 11, 2022

As we enter 2022, the shortage of cybersecurity pros hasn’t gotten better. With all that going on, the need for experienced cybersecurity staff hasn’t dwindled, causing recruiters and government officials alike to search for solutions to the skills shortage. Government Initiatives. In fact, it’s gotten worse.

Cybersecurity

Cybersecurity Government Digital transformation Communications

Trends and Predictions for 2022 – More of the Same?

Thales Cloud Protection & Licensing

JANUARY 5, 2022

Trends and Predictions for 2022 – More of the Same? Wed, 01/05/2022 - 05:12. What will 2022 bring for cybersecurity? What are the key security challenges for 2022? Andy Green and I discussed many more pressing and emerging topics around the trends we expect to see in 2022.

Phishing

Phishing Digital transformation Communications Cybersecurity

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

An Iran-linked APT group tracked as Mint Sandstorm is behind a string of attacks aimed at US critical infrastructure between late 2021 to mid-2022. Microsoft has linked the Iranian Mint Sandstorm APT (previously tracked by Microsoft as PHOSPHORUS ) to a series of attacks aimed at US critical infrastructure between late 2021 to mid-2022.

Energy and Utilities

Energy and Utilities Military Education Phishing

Data Breaches and Cyber Attacks in 2022: 408 Million Breached Records

IT Governance

JANUARY 9, 2023

Welcome to our review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly lists of data breaches and cyber attacks. IT Governance discovered 1,063 security incidents in 2022, which accounted for 480,014,323 breached records. The biggest data breaches of 2022.

Data breaches

Data breaches Ransomware Government Passwords

Catches of the Month: Phishing Scams for March 2022

IT Governance

MARCH 8, 2022

Welcome to our March 2022 review of phishing attacks, in which we explore the latest email scams and the tactics that cyber criminals use to trick people into handing over their personal information. You can help educate your staff with IT Governance’s Phishing Staff Awareness Training Programme. Get started.

Phishing

Phishing Military Access Education

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Security Affairs

SEPTEMBER 11, 2023

The researchers discovered Sponsor while investigating a cyber attack on a system in Israel in May 2022. Most of the victims of the campaign are education, government, and healthcare organizations, as well as human rights activists and journalists. The Sponsor backdoor has been used at least since September 2021.

Education

Education Access Government Security

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Security Affairs

JUNE 6, 2024

According to the UK agency, data retrieved from the systems belonging to the ransomware gang revealed that from June 2022 to February 2024, the criminals gave orchestrated over 7,000 attacks. In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. continues the NCA.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Encryption

Data Breaches and Cyber Attacks Quarterly Review: Q1 2022

IT Governance

APRIL 12, 2022

Welcome to our first quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 266 security incidents between January and March 2022, which accounted for 75,099,482 breached records.

Data breaches

Data breaches Ransomware Government Retail

Data Breaches and Cyber Attacks Quarterly Review: Q3 2022

IT Governance

OCTOBER 19, 2022

Welcome to our third quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance identified 285 publicly disclosed security incidents between July and September 2022, which accounted for 232,266,148 compromised records.

Data breaches

Data breaches Ransomware Phishing Government

Catches of the Month: Phishing Scams for February 2022

IT Governance

FEBRUARY 8, 2022

Welcome to our February 2022 review of phishing attacks, in which we explore the latest scams and the tactics that cyber criminals use to trick people into handing over their personal information. As we move into 2022, organisations should consider email security and phishing awareness at one of their biggest priorities. Get started.

Phishing

Phishing Passwords Authentication Education

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Security Affairs

APRIL 12, 2023

“QuaDream Ltd (קוודרים בע”מ) is an Israeli company that specialises in the development and sale of advanced digital offensive technology to government clients. QuaDream reportedly sells a platform they call REIGN to governments for law enforcement purposes. ” reads the report published by Citizen Lab. .

Government

Government Education Sales Marketing

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Russia-linked APT28 group is targeting Ukrainian government bodies with fake ‘Windows Update’ guides, Computer Emergency Response Team of Ukraine (CERT-UA) warns.

Systems administration

Systems administration Military Phishing Government

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

.” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. “Certifications range from penetration testers , government/industry regulatory compliance , ethical hacking , to industry knowledge,” he said. As of mid-2022, the cost is $381 USD. As of mid-2022, the cost is $249. .

Cybersecurity

Cybersecurity Systems administration Information Security Compliance

Data Breaches and Cyber Attacks Quarterly Review: Q2 2022

IT Governance

JULY 11, 2022

Welcome to our second quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 237 security incidents between April and June 2022, which accounted for 99,019,967 breached records.

Data breaches

Data breaches Ransomware Phishing Government

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

IT Governance

OCTOBER 3, 2022

Welcome to our September 2022 list of data breaches and cyber attacks. If you’re facing a cyber security disaster, IT Governance is here to help. The post List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached appeared first on IT Governance UK Blog.

Data breaches

Data breaches Ransomware Education Phishing

Ransomware attacks hit 105 US local governments in 2022

Experts released PoC exploit code for critical VMware CVE-2022-22972 flaw

Webinars

Trending Sources

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Webinars

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

China’s Volt Typhoon botnet has re-emerged

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

2022 Foundation Education Scholarships

Microsoft seized 41 domains used by Iran-linked Bohrium APT

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

China-linked APT Volt Typhoon linked to KV-Botnet

FBI chief says China is preparing to attack US critical infrastructure

Cybersecurity agencies published a joint LockBit ransomware advisory

A Russian national charged for committing LockBit Ransomware attacks

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Operation Cronos: law enforcement disrupted the LockBit operation

Register Now for InfoCon 2022!

Google TAG warns of Russia-linked APT groups targeting Ukraine

China-linked APT Earth Baku targets Europe, the Middle East, and Africa

Security Affairs newsletter Round 353

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Stark Industries Solutions: An Iron Hammer in the Cloud

China-linked APT41 group spotted using open-source red teaming tool GC2

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

Helping higher education institutions graduate to data intelligence

A cyber attack hit the water controllers for irrigating fields in the Jordan Valley

North Korea-linked TA444 group turns to credential harvesting activity

Cybersecurity Employment in 2022: Solving the Skills Gap

Trends and Predictions for 2022 – More of the Same?

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Data Breaches and Cyber Attacks in 2022: 408 Million Breached Records

Catches of the Month: Phishing Scams for March 2022

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Data Breaches and Cyber Attacks Quarterly Review: Q1 2022

Data Breaches and Cyber Attacks Quarterly Review: Q3 2022

Catches of the Month: Phishing Scams for February 2022

QuaDream surveillance firm’s spyware targeted iPhones with zero-click exploit

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

15 Top Cybersecurity Certifications for 2022

Data Breaches and Cyber Attacks Quarterly Review: Q2 2022

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

Stay Connected