Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military 313

Military Government Security IT 313

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. The post Maze ransomware operators stole data from US military contractor Westech appeared first on Security Affairs. The LGM-30 Minuteman is a U.S. Pierluigi Paganini.

Military 348

Military Ransomware Encryption Risk 348

Security Affairs

MAY 8, 2024

The Ministry of Defence revealed that a malign actor gained access to part of the Armed Forces payment network, which is an external system completely separate to MOD’s core network. Defence Secretary Grant Shapps told House of Commons that the impacted system is not connected to the main military HR system. ” states the BBC.

Data breaches 339

Data breaches Military Government Personal data 339

Security Affairs

AUGUST 19, 2020

Chinese hackers have hacked thousands of Taiwan Government email accounts belonging at least 10 Taiwan government agencies, officials said. Chinese hackers have gained access to around 6,000 email accounts belonging to at least 10 Taiwan government agencies, officials said. Pierluigi Paganini.

Government 361

Government Military IT Access 361

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military 301

Military Phishing Government Sales 301

Security Affairs

NOVEMBER 10, 2021

Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five million cyber attacks hit Taiwan’s government agencies every day, and most of the hacking attempts are originated from China. SecurityAffairs – hacking, Taiwan Government).

Government 278

Government Military Information Security Security 278

Security Affairs

AUGUST 5, 2019

Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. ” reads the analysis from ESET. Pierluigi Paganini.

Military 249

Military Archiving Security Government 249

Security Affairs

AUGUST 21, 2023

military procurement system. Threat actors leveraged edge routers, or “living on the edge” access, to passively collect traffic and set up a covert C2 infrastructure. Threat actors leveraged edge routers, or “living on the edge” access, to passively collect traffic and set up a covert C2 infrastructure. 57 155.138.213[.]169

Military 246

Military Manufacturing Government Access 246

Security Affairs

MARCH 22, 2019

Russian APT groups are targeting European governments for cyber-espionage purposes ahead of the upcoming European elections. The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Pierluigi Paganini.

Government 279

Government Military Phishing Access 279

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. Follow me on Twitter: @securityaffairs and Facebook.

Military 261

Military Passwords Government Security 261

Security Affairs

FEBRUARY 15, 2022

While the website of the Oschadbank bank initially remained accessible, the customers were not able to access their online banking accounts. Threat actors aim at destabilizing the social contest in the country and instilling fear and untrust in the country’s government. Inform [link] ?? ????? Pierluigi Paganini.

Military 246

Military Communications Information Security Access 246

Security Affairs

JANUARY 7, 2021

government is going to launch the ‘Hack the Army 3.0’ government launched Hack the Army 3.0, US army asked participants to test more than 60 publicly accessible web assets, including *.army.mil, Now the US government announced that Hack the Army 3.0 army.mil, *.goarmy.mil, Volant, U.S. Hack the Army 3.0

Military 360

Military Government Security Cybersecurity 360

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Government 310

Government Ransomware Military Encryption 310

Security Affairs

JUNE 3, 2024

The compromise of networks associated with Ukraine’s Ministry of Defence and European railway systems could allow attackers to gather intelligence to influence battlefield tactics and broader military strategies. Insikt Group speculates the operation is aimed at influencing regional and military dynamics.

Military 355

Military Phishing Government Authentication 355

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. Let’s summarize the most interesting attacks observed in the last few days.

Military 364

Military Communications Government Access 364

Security Affairs

FEBRUARY 15, 2024

“A January 2024 court-authorized operation has neutralized a network of hundreds of small office/home office (SOHO) routers that GRU Military Unit 26165 , also known as APT28, Sofacy Group , Forest Blizzard , Pawn Storm , Fancy Bear , and Sednit , used to conceal and otherwise enable a variety of crimes.”

Military 344

Military Government Access Cybersecurity 344

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” states the DoJ.

Energy and Utilities 294

Energy and Utilities Government Cybersecurity Military 294

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. In Mid January the Ukrainian government was hit with destructive malware, tracked as WhisperGate , and several Ukrainian government websites were defaced by exploiting a separate vulnerability in OctoberCMS.

Government 251

Government Military Phishing Information Security 251

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. These targets suggest the group is likely interested in gathering intelligence on military technology and defense” reads the report published by the Insikt Group.

Military 341

Military Mining Government Communications 341

Security Affairs

APRIL 22, 2024

Microsoft has observed APT28 using GooseEgg in post-compromise activities against various targets, including government, non-governmental, education, and transportation sector organizations in Ukraine, Western Europe, and North America. This tool modifies a JavaScript constraints file and executes it with SYSTEM-level permissions.

Military 358

Military File names Education Phishing 358

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems.

Military 338

Military Government Phishing Authentication 338

Security Affairs

MARCH 4, 2024

Stolen documents include: confidential documents, including orders and reports circulated among over 2000 structural units of the Russian military service. Rosaviatsia is the government agency responsible for the oversight and regulation of civil aviation in Russia. ” reads the press release published by Ukraine’s GUR.

Military 354

Military Data breaches Encryption Government 354

Krebs on Security

JANUARY 19, 2021

military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. In January 2016, Ferizi pleaded guilty to providing material support to a terrorist group and to unauthorized access. military members and government employees.

Military 347

Military Government Passwords Personal data 347

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report.

Energy and Utilities 335

Energy and Utilities Military Government Phishing 335

Data Breach Today

JULY 14, 2023

State-Linked Spear-Phishing Campaign Targeting Government, Military Personnel Belarus state-linked hackers are targeting government and military entities in both Ukraine and Poland with spear-phishing campaigns that deliver remote access Trojans.

Phishing 225

Phishing Military Government Access 225

Security Affairs

SEPTEMBER 9, 2022

The Armed Forces General Staff (Portuguese: Estado-Maior-General das Forças Armadas), or EMGFA, is the supreme military body of Portugal. According to the initial investigation, the documents were exfiltrated from systems in the EMGFA, in the secret military (CISMIL) and in the General Directorate of National Defense Resources.

Military 363

Military Sales Data breaches Cybersecurity 363

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems. ” reads trhe announcement published by DKWOC.

Military 326

Military Government Access Phishing 326

Security Affairs

JULY 15, 2020

“This attack was done solely for fun” The group claims to have hacked numerous organizations and government agencies over the years, including US military, European Union, Washington DC, Israeli Defense Forces, the Indian Government, and some central banks.

Military 363

Military Government Communications Access 363

Schneier on Security

NOVEMBER 19, 2020

Vice has a long article about how the US military buys commercial location data worldwide. military is buying the granular movement data of people around the world, harvested from innocuous-seeming apps, Motherboard has learned. This isn’t new, this isn’t just data of non-US citizens, and this isn’t the US military.

Military 126

Military Sales Government Privacy 126

Security Affairs

OCTOBER 22, 2023

Chinese cyber espionage aims at obtaining commercial secrets and intellectual property to advantage the government of Beijing. Over the past year, British intelligence has observed over 20 cases involving Chinese firms contemplating or actively attempting to access sensitive technology developed by UK entities. ” reported BBC.

Military 361

Military Government Access Cybersecurity 361

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. ” reported the AFP agency. Pierluigi Paganini.

Government 231

Government Military Security IT 231

Security Affairs

NOVEMBER 5, 2021

The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement.

Military 350

Military Metadata Government Passwords 350

Security Affairs

OCTOBER 4, 2018

The Government of Canada blamed the GRU , the Russian military’s intelligence agency, for cyber attacks at the Montreal-based World Anti-Doping Agency. ” “all those who value this order to come together in its defence.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Military 256

Military IT Government Access 256

Security Affairs

AUGUST 25, 2022

Microsoft security researchers discovered a post-compromise malware, tracked as MagicWeb, which is used by the Russia-linked NOBELIUM APT group to maintain persistent access to compromised environments. Russia-linked APT group Nobelium is behind a new sophisticated post-exploitation malware tracked by Microsoft as MagicWeb.

Authentication 340

Authentication Military Access Government 340

Security Affairs

SEPTEMBER 17, 2021

“At the end of August the website of the Federal Returning Officer only had limited accessibility for a few minutes due to a malfunction,” said a spokesman for the body. The attack did not impact the IT infrastructure used to manage the election due to the defense implemented by the government technicians.

Military 310

Military Phishing Government Security 310

Security Affairs

MARCH 8, 2022

Google TAG observed Russian, Belarusian, and Chinese threat actors targeting Ukraine and European government and military orgs. Google TAG observed Russian, Belarusian, and Chinese threat actors targeting Ukrainian and European government and military organizations, as well as individuals. ” concludes the report.

Military 275

Military Phishing File names Government 275

Security Affairs

AUGUST 13, 2020

.” The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military 361

Military IoT Government Phishing 361