2022, Government and Security - Information Management Today

Increased GDPR Enforcement Highlights the Need for Data Security

Security Affairs

NOVEMBER 18, 2024

GDPR protects sensitive data like health and financial details, and its enforcement underscores the growing need for stronger data security measures. These penalties apply to all aspects of GDPR compliance, including inadequate data security, improper consent, and data breach failures. government surveillance.

GDPR

GDPR Security Compliance Data Privacy

Italy announced its National Cybersecurity Strategy 2022/26

Security Affairs

MAY 26, 2022

Italy announced its National Cybersecurity Strategy for 2022/26, a crucial document to address cyber threats and increase the resilience of the country. The threat landscape rapidly changes and urges the government to review its strategy and propose a series of objectives to achieve in the next four years.

Cybersecurity

Cybersecurity IT Risk Government

Experts released PoC exploit code for critical VMware CVE-2022-22972 flaw

Security Affairs

MAY 26, 2022

Security researchers released PoC exploit code for the critical authentication bypass vulnerability CVE-2022-22972 affecting multiple VMware products. The virtualization giant recently warned that a threat actor can exploit the CVE-2022-22972 flaw (CVSSv3 base score of 9.8) using CVE-2022-22972. states VMware.

Authentication

Authentication Cybersecurity Access Education

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Experts warn of ransomware attacks against government organizations of small states

Security Affairs

MAY 31, 2022

Cyber Research Labs reported a rise in ransomware attacks in the second quarter of 2022, small states are more exposed to these attacks. The experts warn of ransomware attacks against government organizations. They observed a total of 48 government organizations from 21 countries that were hit by 13 ransomware attacks in 2022.

Ransomware

Ransomware Government Cybersecurity Sales

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028. The vulnerability CVE-2022-38028 was reported by the U.S.

Military

Military File names Education Phishing

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Security Affairs

OCTOBER 12, 2024

Since April 2021, Russian state-sponsored hackers have exploited vulnerabilities, including Zimbra’s CVE-2022-27924 for injecting commands to access credentials and emails, and JetBrains TeamCity’s CVE-2023-42793 for arbitrary code execution through an authentication bypass. cyber agencies warned.

Data collection

Data collection Authentication Access Cybersecurity

Threat actors hacked hundreds of servers by exploiting Zimbra CVE-2022-41352 bug

Security Affairs

OCTOBER 16, 2022

Threat actors have compromised hundreds of servers exploiting critical flaw CVE-2022-41352 in Zimbra Collaboration Suite (ZCS). Last week, researchers from Rapid7 warned of the exploitation of unpatched zero-day remote code execution vulnerability, tracked as CVE-2022-41352 , in the Zimbra Collaboration Suite. reported Rapid7. “We

Archiving

Archiving Government Ransomware IT

China-linked threat actors stole 10% of Belgian State Security Service (VSSE)’s staff emails

Security Affairs

FEBRUARY 27, 2025

Belgian authorities are investigating Chinese hackers for breaching its State Security Service (VSSE), stealing 10% of emails from 2021 to May 2023. The Belgian federal prosecutor’s office is probing a possible security breach on its State Security Service (VSSE) by China-linked threat actors. ” reported Reuters.

Security

Security Access Government Cybersecurity

Australian government announced sanctions for Medibank hacker

Security Affairs

JANUARY 23, 2024

The Australian government announced sanctions for a member of the REvil ransomware group for the Medibank hack that occurred in 2022. The Australian government announced sanctions for Aleksandr Gennadievich Ermakov (aka GustaveDore, aiiis_ermak, blade_runner, JimJones), a Russian national who is a member of the REvil ransomware group.

Government

Government Insurance Ransomware Data breaches

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The botnet is comprised of two complementary activity clusters, the experts believe it has been active since at least February 2022.

e-Discovery

e-Discovery Communications Ransomware Government

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. appeared first on Security Affairs. OwlProxy is a unique and custom tool used by the group.

Government

Government Manufacturing Education Access

North Korea-linked hackers stole $626 million in virtual assets in 2022

Security Affairs

DECEMBER 22, 2022

The Government of Pyongyang focuses on crypto hacking to fund its military program following harsh U.N. Cyber security and intelligence experts believe that attacks aimed at the cryptocurrency industry will continue to increase next year. trillion won ($1.2 billion) in cryptocurrency and other virtual assets in the past five years.

Military

Military Government Ransomware Security

Unknown APT group is targeting Russian government entities

Security Affairs

MAY 25, 2022

An unknown APT group is targeting Russian government entities since the beginning of the Russian invasion of Ukraine. ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. To nominate, please visit:?. Follow me on Twitter: @securityaffairs and Facebook.

Government

Government Phishing Archiving Cybersecurity

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

Following the attacks of the Killnet Collective, the group responsible for the attacks against major government resources and law enforcement, a new group has been identified called “Cyber Spetsnaz”. Sources interviewed by Security Affairs interpreted this activity with high levels of confidence to be state-supported.

Government

Government Cybersecurity IoT Security

Zimbra zero-day exploited to steal government emails by four groups

Security Affairs

NOVEMBER 16, 2023

Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day ( CVE-2023-37580 ) to steal emails from governments. The first campaign aimed at a government organization in Greece, threat actors sent emails containing exploit urls to their targets. ” continues the report. .”

Government

Government Authentication Phishing IT

Security Affairs newsletter Round 369 by Pierluigi Paganini

Security Affairs

JUNE 12, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. Pierluigi Paganini.

Security

Security Ransomware Cybersecurity Encryption

Why DSPM is Essential for Achieving Data Privacy in 2024

Security Affairs

OCTOBER 23, 2024

Data Security Posture Management (DSPM) helps organizations address evolving data security and privacy requirements by protecting and managing sensitive information. To add to the difficulty, the advent of Generative AI (GenAI) has brought unprecedented security and privacy risks. What is Data Security Posture Management?

Data Privacy

Data Privacy Privacy GDPR Compliance

The Mask APT is back after 10 years of silence

Security Affairs

DECEMBER 18, 2024

The APT group targeted an organization in Latin America in 2019 and 2022. While investigating the 2022 attack, the researchers noticed that the victim organization had also suffered a 2019 attack using “Careto2” and “Goreto” frameworks. ” reads the analysis published by Kaspersky.

Government

Government IT Access Information Security

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Security Affairs

MARCH 28, 2024

Google’s Threat Analysis Group (TAG) and its subsidiary Mandiant reported that in 2023 97 zero-day vulnerabilities were exploited in attacks, while in 2022 the actively exploited zero-day flaws were 62. In 2023, Google (TAG) and Mandiant discovered 29 out of 97 vulnerabilities exploited in the wild. ” continues the report.

Government

Government Ransomware Libraries Access

Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors

Security Affairs

APRIL 21, 2022

Threat intelligence firm Resecurity details how crooks are delivering IRS tax scams and phishing attacks posing as government vendors. The post Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

Phishing

Phishing e-Delivery Government Passwords

The government of Lithuania confirmed it had been hit by an intense cyberattack

Security Affairs

JUNE 27, 2022

The government of Lithuania announced on Monday that it had been hit by an “intense” cyberattack, likely launched from Moscow, days after the Russian government protested restrictions Vilnius imposed on the rail transit of certain goods to Kaliningrad. which was one of the 1st targets of the new campaign.

Government

Government IT IoT Cybersecurity

Security Affairs newsletter Round 367 by Pierluigi Paganini

Security Affairs

MAY 29, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. To nominate, please visit:?.

Security

Security Cybersecurity Ransomware Government

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The Ukrainian government experts noticed that some messages were sent from compromised contacts to increase trust. The use of popular instant messaging apps on both mobile and desktop devices broadens the attack surface, creating uncontrolled information exchange channels that bypass security measures.

Computer and Electronics

Computer and Electronics Archiving Passwords Government

China-Linked BRONZE PRESIDENT APT targets Government officials worldwide

Security Affairs

SEPTEMBER 10, 2022

China-linked BRONZE PRESIDENT group is targeting government officials in Europe, the Middle East, and South America with PlugX malware. Secureworks researchers reported that China-linked APT group BRONZE PRESIDENT conducted a new campaign aimed at government officials in Europe, the Middle East, and South America with the PlugX malware.

Government

Government Archiving Metadata Encryption

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Government

Government Ransomware Military Encryption

Russia-linked APT28 targets government Polish institutions

Security Affairs

MAY 10, 2024

CERT Polska warns of a large-scale malware campaign against Polish government institutions conducted by Russia-linked APT28. CERT Polska and CSIRT MON teams issued a warning about a large-scale malware campaign targeting Polish government institutions, allegedly orchestrated by the Russia-linked APT28 group. ” reads the alert.

Government

Government Military Libraries Archiving

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

CISA added the Windows Print Spooler flaw CVE-2022-38028 to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-38028 Microsoft Windows Print Spooler Privilege Escalation vulnerability to its Known Exploited Vulnerabilities (KEV) catalog.

IT

IT Education Cybersecurity Risk

Pro-Russian hacktivists target Italy government websites

Security Affairs

MAY 14, 2022

The Italian police is investigating the attack, while the National Computer Security Incident Response Team (CSIRT) confirmed that the websites were hit with DDoS attacks. The post Pro-Russian hacktivists target Italy government websites appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

Government

Government Military Data breaches Cybersecurity

UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw

Security Affairs

AUGUST 29, 2023

China-linked threat actors breached government organizations worldwide with attacks exploiting Barracuda ESG zero-day. The vulnerability, tracked as CVE-2023-2868 , resides in the module for email attachment screening, the issue was discovered on May 19 and the company fixed it with the release of two security patches on May 20 and 21.

Government

Government Access Security Cybersecurity

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 10

Security Affairs

SEPTEMBER 8, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security

Security Insurance Ransomware Government

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs

OCTOBER 13, 2023

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. The APT group was discovered in June 2022 by Kaspersky which linked it to a series of attacks aimed at high-profile entities in Europe and Asia since at least December 2020. appeared first on Security Affairs.

Government

Government IT Encryption Libraries

Security Affairs newsletter Round 395

Security Affairs

NOVEMBER 27, 2022

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 395 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Data from 5.4M Data from 5.4M Data from 5.4M Data from 5.4M Pierluigi Paganini.

Security

Security Ransomware Analytics Sales

CISA, FBI, and NSA published the list of 12 most exploited vulnerabilities of 2022

Security Affairs

AUGUST 3, 2023

CISA, the FBI, and NSA, along with Five Eyes cybersecurity agencies published a list of the 12 most exploited vulnerabilities of 2022. CISA, the NSA, and the FBI, in collaboration with cybersecurity authorities from Australia, Canada, New Zealand, and the United Kingdom, have published a list of the 12 most exploited vulnerabilities of 2022.

Authentication

Authentication Cybersecurity Access Risk

Earth Krahang APT breached tens of government organizations worldwide

Security Affairs

MARCH 19, 2024

The campaign seems active since at least early 2022 and focuses primarily on government organizations. The group often exploited access to government infrastructure to target other government entities. “Earth Krahang abuses the trust between governments to conduct their attacks.

Government

Government Phishing Access Passwords

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Security Affairs

FEBRUARY 8, 2024

26 key cyber security stats for 2024 that every user should know, from rising cyber crime rates to the impact of AI technolog y. Cyber Insurance: US cyber insurance premiums soared by 50% in 2022, reaching $7.2 million unfilled cyber security jobs, showing a big need for skilled professionals. million, up 15% in three years.

Security

Security Phishing IoT Ransomware

Strategies for Securing Your Supply Chain

IT Governance

OCTOBER 23, 2024

What to do when your ‘supply chain’ is really a ‘supply loop’ When I asked Bridget Kenyon – CISO (chief information security officer) for SSCL, lead editor for ISO 27001:2022 and author of ISO 27001 Controls – what she’d like to cover in an interview, she suggested supply chain security. How can you secure a ‘supply loop’?

Security

Security Information Security Risk Access

Anonymous continues to support Ukraine against the Russia

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. link] — Anonymous (@YourAnonNews) March 15, 2022. Stay tuned!

Military

Military Communications Government Access

Anonymous: Operation Russia after 100 days of war

Security Affairs

JUNE 4, 2022

pic.twitter.com/nZ8zk7bWV9 — Anonymous TV (@YourAnonTV) June 3, 2022. OpRussia #FreeUkraine pic.twitter.com/5lEUYliGgH — Anonymous TV (@YourAnonTV) June 1, 2022. OpRussia #FreeUkraine pic.twitter.com/5lEUYliGgH — Anonymous TV (@YourAnonTV) June 1, 2022. All their biggest government websites are #Offline.

Archiving

Archiving Government Passwords Security

Electronic prescription provider MediSecure impacted by a ransomware attack

Security Affairs

MAY 16, 2024

MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. “MediSecure has identified a cyber security incident impacting the personal and health information of individuals. ” reads the statement published by the company.

Ransomware

Ransomware e-Delivery Data breaches Insurance

Russia-linked Sandworm APT targets energy facilities in Ukraine with wipers

Security Affairs

APRIL 12, 2022

The initial compromise took place no later than February 2022. It is interesting to note that the disconnection of electrical substations and the decommissioning of the company’s infrastructure was scheduled for Friday evening, April 8, 2022. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybersecurity

Cybersecurity Government Security IT

Anonymous targets oligarchs’ Russian businesses: Marathon Group hacked

Security Affairs

APRIL 1, 2022

#OpRussia #DDoSecrets pic.twitter.com/kATuo2CxC1 — Anonymous TV (@YourAnonTV) March 31, 2022. MORE: [link] pic.twitter.com/RPVtDUMWdy — Anonymous TV (@YourAnonTV) March 31, 2022. OpRussia Defend Ukraine #Anonymous pic.twitter.com/gaMzlGbejT — Anonymous • News (@Anonymous_Link) March 31, 2022.

Archiving

Archiving Government Security IT

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Security Affairs

MARCH 5, 2022

Anonymous announced to have hacked more than 2,500 websites linked to the Russian and Belarusian governments, state-owned media outlets spreading disinformation, Russian private organizations, banks, hospitals, airports. FckPutin #FreeUkraine pic.twitter.com/NJZiLx5c0d — Anonymous TV (@YourAnonTV) March 3, 2022.

Passwords

Passwords Government Military Authentication

Poland thwarted cyberattacks that were carried out by Russia and Belarus

Security Affairs

SEPTEMBER 10, 2024

Poland ‘s security officials announced that they successfully thwarted cyberattacks that were carried out by Russia and Belarus. Nation-state actors targeted government institutions and state-owned companies involved in military contracts. ” reported the Associated Press.

Ransomware

Ransomware Government Military Security

Anonymous leaked 28GB of data stolen from the Central Bank of Russia

Security Affairs

MARCH 25, 2022

pic.twitter.com/0VUhqVmo89 — Anonymous (@LatestAnonPress) March 23, 2022. MESSAGE FROM #ANONYMOUS RABBIT: "People shouldn't be afraid of their government, governments should be afraid of their people." Ukraine #OpRussia [link] — Anonymous TV (@YourAnonTV) March 25, 2022. Pierluigi Paganini.

Government

Government Authentication Cloud Access

Increased GDPR Enforcement Highlights the Need for Data Security

Italy announced its National Cybersecurity Strategy 2022/26

Webinars

Trending Sources

Experts released PoC exploit code for critical VMware CVE-2022-22972 flaw

Webinars

Experts warn of ransomware attacks against government organizations of small states

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Russia-linked group APT29 is targeting Zimbra and JetBrains TeamCity servers on a large scale

Threat actors hacked hundreds of servers by exploiting Zimbra CVE-2022-41352 bug

China-linked threat actors stole 10% of Belgian State Security Service (VSSE)’s staff emails

Australian government announced sanctions for Medibank hacker

China’s Volt Typhoon botnet has re-emerged

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

North Korea-linked hackers stole $626 million in virtual assets in 2022

Unknown APT group is targeting Russian government entities

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Zimbra zero-day exploited to steal government emails by four groups

Security Affairs newsletter Round 369 by Pierluigi Paganini

Why DSPM is Essential for Achieving Data Privacy in 2024

The Mask APT is back after 10 years of silence

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors

The government of Lithuania confirmed it had been hit by an intense cyberattack

Security Affairs newsletter Round 367 by Pierluigi Paganini

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

China-Linked BRONZE PRESIDENT APT targets Government officials worldwide

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Russia-linked APT28 targets government Polish institutions

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Pro-Russian hacktivists target Italy government websites

UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 10

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs newsletter Round 395

CISA, FBI, and NSA published the list of 12 most exploited vulnerabilities of 2022

Earth Krahang APT breached tens of government organizations worldwide

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Strategies for Securing Your Supply Chain

Anonymous continues to support Ukraine against the Russia

Anonymous: Operation Russia after 100 days of war

Electronic prescription provider MediSecure impacted by a ransomware attack

Russia-linked Sandworm APT targets energy facilities in Ukraine with wipers

Anonymous targets oligarchs’ Russian businesses: Marathon Group hacked

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Poland thwarted cyberattacks that were carried out by Russia and Belarus

Anonymous leaked 28GB of data stolen from the Central Bank of Russia

Stay Connected