Access, Government, Military and Security - Information Management Today

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods.

Military

Military Government Access Risk

Cisco addressed Webex flaws used to compromise German government meetings

Security Affairs

JUNE 5, 2024

Cisco addressed vulnerabilities that were exploited to compromise the Webex meetings of the German government. In early May, German media outlet Zeit Online revealed that threat actors exploited vulnerabilities in the German government’s implementation of the Cisco Webex software to access internal meetings.

Government

Government Metadata Military Passwords

Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware

Security Affairs

AUGUST 31, 2023

Russia-linked threat actors have been targeting Android devices of the Ukrainian military with a new malware dubbed Infamous Chisel. The GCHQ’s National Cyber Security Centre (NCSC) and agencies in the United States, Australia, Canada, and New Zealand have published an analysis of the Android malware.

Military

Military Authentication Access Government

Webinars

Launching LLM-Based Products: From Concept to Cash in 90 Days

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

MORE WEBINARS

UK Ministry of Defense disclosed a third-party data breach exposing military personnel data

Security Affairs

MAY 8, 2024

The Ministry of Defence revealed that a malign actor gained access to part of the Armed Forces payment network, which is an external system completely separate to MOD’s core network. Defence Secretary Grant Shapps told House of Commons that the impacted system is not connected to the main military HR system. ” states the BBC. .”

Data breaches

Data breaches Military Government Personal data

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

A new piece of Ryuk Stealer targets government, military and finance sectors

Security Affairs

JANUARY 26, 2020

A new piece of the Ryuk malware has been improved to steal confidential files related to the military, government, financial statements, and banking. Targeted keywords in the new variant of the Ryuk stealer confirm that attackers are looking for confidential information in military, banking, finance and law enforcement.

Military

Military Government Ransomware Privacy

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

military procurement system. Threat actors leveraged edge routers, or “living on the edge” access, to passively collect traffic and set up a covert C2 infrastructure. Threat actors leveraged edge routers, or “living on the edge” access, to passively collect traffic and set up a covert C2 infrastructure. 57 155.138.213[.]169

Military

Military Manufacturing Government Access

The US Military Buys Commercial Location Data

Schneier on Security

NOVEMBER 19, 2020

Vice has a long article about how the US military buys commercial location data worldwide. military is buying the granular movement data of people around the world, harvested from innocuous-seeming apps, Motherboard has learned. This isn’t new, this isn’t just data of non-US citizens, and this isn’t the US military.

Military

Military Sales Government Privacy

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military

Military Government IT Security

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military

Military Security Ransomware Insurance

Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates

Security Affairs

FEBRUARY 28, 2020

Network data collected by the NetBlocks internet observatory confirm that Turkey has blocked access to social media as Idlib military crisis escalates. The access was first blocked via national provider Turk Telecom (AS9121), but later other service providers applied the government restrictions. local time (8:30 p.m.

Military

Military Data collection Government Access

Taiwan Government faces 5 Million hacking attempts daily

Security Affairs

NOVEMBER 10, 2021

Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five million cyber attacks hit Taiwan’s government agencies every day, and most of the hacking attempts are originated from China. SecurityAffairs – hacking, Taiwan Government).

Government

Government Military Information Security Security

Ukraine: Military defense agencies and banks hit by cyberattacks

Security Affairs

FEBRUARY 15, 2022

While the website of the Oschadbank bank initially remained accessible, the customers were not able to access their online banking accounts. Yesterday, the Security Service of Ukraine (SSU) today revealed the country is the target of an ongoing “wave of hybrid warfare” conducted by Russia-linked malicious actors.

Military

Military Communications Information Security Access

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. Security experts fear that hackers could attempt to sell stolen data about the nuclear deterrent on to a foreign state. The LGM-30 Minuteman is a U.S. Pierluigi Paganini.

Military

Military Ransomware Encryption Risk

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. Yet, there’s still work to be done to make this path more accessible and known among the veteran and transitioning military community. Veterans have the characteristics that make them ideal for these roles. And it works.

Cybersecurity

Cybersecurity Military Education Government

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 16, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Security Ransomware Sales

When Your Smart ID Card Reader Comes With Malware

Krebs on Security

MAY 17, 2022

government employees and contractors have been issued a secure smart ID card that enables physical access to buildings and controlled spaces, and provides access to government computer networks and systems at the cardholder’s appropriate security level. A sample Common Access Card (CAC).

Government

Government Military Access Security

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Passwords Government Security

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

Security Affairs

FEBRUARY 15, 2024

“A January 2024 court-authorized operation has neutralized a network of hundreds of small office/home office (SOHO) routers that GRU Military Unit 26165 , also known as APT28, Sofacy Group , Forest Blizzard , Pawn Storm , Fancy Bear , and Sednit , used to conceal and otherwise enable a variety of crimes.”

Military

Military Government Access Cybersecurity

GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion

The Last Watchdog

OCTOBER 10, 2023

Accessing video-based intelligence at the right time and place is a very effective method for gaining information about the constantly changing military landscape. Value of protocols Technological innovations have widely been credited for helping Ukraine even the odds against Russia’s military might.

Metadata

Metadata Military Encryption Communications

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Ransomware

Ransomware Government Military Access

Machete cyber-espionage group targets Latin America military

Security Affairs

AUGUST 5, 2019

Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. ” reads the analysis from ESET.

Military

Military Archiving Security Government

Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 24, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Cybersecurity US holds conference on military AI use with dozens of allies to determine ‘responsible’ use DFSA’s Cyber Risk Management Guidelines: A Blueprint for Cyber Resilience? Is it a Russia’s weapon?

Security

Security Passwords Military Marketing

Ukraine’s GUR hacked the Russian Ministry of Defense

Security Affairs

MARCH 4, 2024

Stolen documents include: confidential documents, including orders and reports circulated among over 2000 structural units of the Russian military service. Rosaviatsia is the government agency responsible for the oversight and regulation of civil aviation in Russia. ” reads the press release published by Ukraine’s GUR.

Military

Military Encryption Data breaches Government

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Ransomware

Ransomware Government Military Encryption

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Microsoft has observed APT28 using GooseEgg in post-compromise activities against various targets, including government, non-governmental, education, and transportation sector organizations in Ukraine, Western Europe, and North America. This tool modifies a JavaScript constraints file and executes it with SYSTEM-level permissions.

Military

Military File names Education Phishing

The Myth of Consumer-Grade Security

Schneier on Security

AUGUST 28, 2019

The Department of Justice wants access to encrypted consumer devices but promises not to infiltrate business products or affect critical infrastructure. They affect national security. The thing is, that distinction between military and consumer products largely doesn't exist. Consumer devices are critical infrastructure.

Military

Military Computer and Electronics Encryption Security

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

The Last Watchdog

OCTOBER 17, 2018

Government Accountability Office audit last week found that the defense department is playing catch up when it comes to securing weapons systems from cyberattacks. military and civilian personnel were compromised. The result: personal information and credit card data of at least 30,000 U.S. Timely trust decisions.

Data breaches

Data breaches Security Military Government

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. In Mid January the Ukrainian government was hit with destructive malware, tracked as WhisperGate , and several Ukrainian government websites were defaced by exploiting a separate vulnerability in OctoberCMS.

Government

Government Military Phishing Information Security

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Government Phishing Authentication

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. .

Energy and Utilities

Energy and Utilities Military Government Phishing

China Issues Draft Data Security Law

Hunton Privacy

JULY 7, 2020

China has lacked a comprehensive data protection and data security law that regulates in detail requirements and procedures relating to the collection, processing, control and storage of personal data. Recently, another significant draft law on data security was issued by the Chinese legislative authority.

Security

Security Military Government Risk

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems. ” reads trhe announcement published by DKWOC.

Military

Military Government Phishing Access

US Govt kicked off ‘Hack the Army 3.0’ bug bounty program

Security Affairs

JANUARY 7, 2021

government is going to launch the ‘Hack the Army 3.0’ government launched Hack the Army 3.0, US army asked participants to test more than 60 publicly accessible web assets, including *.army.mil, Now the US government announced that Hack the Army 3.0 army.mil, *.goarmy.mil, Volant, U.S. For years, the U.S.

Military

Military Government Security Cybersecurity

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Anonymous continues to support Ukraine against the Russia

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. Let’s summarize the most interesting attacks observed in the last few days.

Military

Military Communications Government Access

MY TAKE: Sophos X-Ops advances internal, external threat intelligence sharing to the next level

The Last Watchdog

NOVEMBER 14, 2023

Related: How ‘Internet Access Brokers’ fuel ransomware I happened to be in the audience at Stanford University when President Obama took to the stage to issue an executive order challenging the corporate sector and federal government to start collaborating as true allies. Yet, there remains much leeway for improvements.

Ransomware

Ransomware Military Security Government

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Data breaches Ransomware Artificial Intelligence

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Security Affairs

OCTOBER 22, 2023

During a meeting of security chiefs of the Five Eyes alliance held in California, McCallum told BBC that the Chinese cyber espionage reached an epic scale. Chinese cyber espionage aims at obtaining commercial secrets and intellectual property to advantage the government of Beijing. ” reported BBC. ” reported BBC.

Military

Military Government Access Cybersecurity

Russian APT groups target European governments ahead of May Elections

Security Affairs

MARCH 22, 2019

Russian APT groups are targeting European governments for cyber-espionage purposes ahead of the upcoming European elections. The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Pierluigi Paganini.

Government

Government Military Phishing Access

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

Security Affairs

AUGUST 6, 2024

South Korea’s National Cyber Security Center (NCSC) reported that North Korea-linked hackers hijacked VPN software updates to deploy malware. According to the South Korean authorities, the government of Pyongyang’s goal is to steal intellectual property and trade secrets from the South. ” reads the advisory.

Information capture

Information capture Authentication Military Government

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

The Last Watchdog

SEPTEMBER 21, 2023

Also in attendance were Access Living, The College of Lake County, CyberSkills2Work, and Task Force Movement. Access Living is committed to launching an Independent Living Technology Program to address the gap in digital skills in the disability community to reach 150 disabled participants by the end of 2024. Chicago, Ill.,

Cybersecurity

Cybersecurity Manufacturing Military Artificial Intelligence

Secret Service Investigates Breach at U.S. Govt IT Contractor

Krebs on Security

SEPTEMBER 9, 2019

Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned. government IT contractor that does business with more than 20 federal agencies, including several branches of the military.

IT

IT Government Military Access

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. x and Ivanti Policy Secure. A remote attacker can trigger the vulnerability to access restricted resources by bypassing control checks. x) and Ivanti Policy Secure.

Security

Security Authentication Military Government

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Cisco addressed Webex flaws used to compromise German government meetings

Webinars

Trending Sources

Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware

Webinars

UK Ministry of Defense disclosed a third-party data breach exposing military personnel data

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

A new piece of Ryuk Stealer targets government, military and finance sectors

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

The US Military Buys Commercial Location Data

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates

Taiwan Government faces 5 Million hacking attempts daily

Ukraine: Military defense agencies and banks hit by cyberattacks

Maze ransomware operators stole data from US military contractor Westech

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

When Your Smart ID Card Reader Comes With Malware

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Machete cyber-espionage group targets Latin America military

Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION

Ukraine’s GUR hacked the Russian Ministry of Defense

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

The Myth of Consumer-Grade Security

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

China Issues Draft Data Security Law

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

US Govt kicked off ‘Hack the Army 3.0’ bug bounty program

US indicted 4 Russian government employees for attacks on critical infrastructure

Anonymous continues to support Ukraine against the Russia

MY TAKE: Sophos X-Ops advances internal, external threat intelligence sharing to the next level

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Russian APT groups target European governments ahead of May Elections

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

Secret Service Investigates Breach at U.S. Govt IT Contractor

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Stay Connected