Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military 308

Military Government Security IT 308

Security Affairs

MAY 8, 2024

The Ministry of Defence revealed that a malign actor gained access to part of the Armed Forces payment network, which is an external system completely separate to MOD’s core network. Defence Secretary Grant Shapps told House of Commons that the impacted system is not connected to the main military HR system. ” states the BBC. .”

Data breaches 334

Data breaches Military Government Personal data 334

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods.

Military 352

Military Government Access Risk 352

Security Affairs

JUNE 24, 2023

Army’s Criminal Investigation Division warns that US military personnel have reported receiving unsolicited smartwatches in the mail. Army’s Criminal Investigation Division reported that service members across the military received smartwatches unsolicited in the mail. ” reads the alert. ” reads the alert.

Military 246

Military Passwords Access Security 246

Security Affairs

FEBRUARY 21, 2020

The Defense Information Systems Agency (DISA) US agency in charge of secure IT and communication for the White House has disclosed a data breach. The Defense Information Systems Agency (DISA), the DoD agency that is in charge of the security of IT and telecommunications for the White House and military troops has suffered a cyber attack.

Data breaches 359

Data breaches Military Security Communications 359

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military 295

Military Government Phishing Libraries 295

Security Affairs

AUGUST 5, 2019

Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. ” reads the analysis from ESET.

Military 248

Military Archiving Security Government 248

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military 301

Military Phishing Government Sales 301

Security Affairs

JANUARY 20, 2025

The Donot Team (aka APT-C-35 and Origami Elephant) has been active since 2016, it focuses ongovernment and military organizations, ministries of foreign affairs, and embassies in India, Pakistan, Sri Lanka, Bangladesh, and other South Asian countries. The Tanzeem App mimics chat functionality and prompts users to enable accessibility access.

Military 284

Military Access Phishing Cybersecurity 284

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. The attack chain begins with the deployment of a TCP downloader that fetches the next stage payload.

Military 300

Military Communications Libraries Encryption 300

Security Affairs

AUGUST 21, 2023

military procurement system. Threat actors leveraged edge routers, or “living on the edge” access, to passively collect traffic and set up a covert C2 infrastructure. Threat actors leveraged edge routers, or “living on the edge” access, to passively collect traffic and set up a covert C2 infrastructure. 57 155.138.213[.]169

Military 246

Military Manufacturing Government Access 246

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. Follow me on Twitter: @securityaffairs and Facebook.

Military 259

Military Passwords Government Security 259

Security Affairs

FEBRUARY 15, 2022

While the website of the Oschadbank bank initially remained accessible, the customers were not able to access their online banking accounts. Yesterday, the Security Service of Ukraine (SSU) today revealed the country is the target of an ongoing “wave of hybrid warfare” conducted by Russia-linked malicious actors.

Military 246

Military Communications Information Security Access 246

Security Affairs

JUNE 5, 2024

In early May, German media outlet Zeit Online revealed that threat actors exploited vulnerabilities in the German government’s implementation of the Cisco Webex software to access internal meetings. Experts believe threat actors exploited an insecure direct object reference (IDOR) vulnerability to access internal Webex meetings.

Government 357

Government Metadata Military Passwords 357

Data Breach Today

NOVEMBER 28, 2023

Prominent Threat Actor Advertises Access to GE's Military Projects General Electric says it is aware of claims made by "a bad actor" about gaining unauthorized access to its sensitive data and taking "appropriate measures to help protect the integrity of our systems" after a hacker known as IntelBroker advertised access to its networks and data.

Military 283

Military Security Access IT 283

Security Affairs

AUGUST 5, 2020

ZDNet has reported in exclusive that a list of plaintext usernames and passwords for 900 Pulse Secure VPN enterprise servers, along with IP addresses, has been shared on a Russian-speaking hacker forum. According to Bank Security , all the Pulse Secure VPN servers included in the list were vulnerable to the CVE-2019-11510 flaw.

Passwords 361

Passwords Security Ransomware Military 361

Security Affairs

JANUARY 7, 2021

US army asked participants to test more than 60 publicly accessible web assets, including *.army.mil, “Bug bounty programs are a unique and effective ‘force multiplier’ for safeguarding critical Army networks, systems and data, and build on the efforts of our Army and DoD security professionals,” said Brig. .

Military 359

Military Government Security Cybersecurity 359

Security Affairs

MARCH 10, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 314

Security Data breaches Military Ransomware 314

Security Affairs

JUNE 3, 2024

The compromise of networks associated with Ukraine’s Ministry of Defence and European railway systems could allow attackers to gather intelligence to influence battlefield tactics and broader military strategies. Insikt Group speculates the operation is aimed at influencing regional and military dynamics.

Military 352

Military Phishing Government Authentication 352

Security Affairs

FEBRUARY 23, 2025

Every week the best security articles from Security Affairs are free in your email box. Military & Defense Sector: A Cybersecurity Disaster in the Making Analyzing ELF/Sshdinjector.A!tr A new round of the weekly SecurityAffairs newsletter arrived! Lazarus APT stole $1.5B

Security 163

Security CMS Phishing Encryption 163

Security Affairs

MAY 3, 2022

RedFoxtrot has been active since at least 2014 and focused on gathering military intelligence from neighboring countries, it is suspected to work under the PLA China-linked Unit 69010. The threat actor systematically utilized software distributed by security vendors to sideload ShadowPad and PlugX variants.” Pierluigi Paganini.

Security 338

Security Military Insurance Cybersecurity 338

Security Affairs

JUNE 16, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 307

Data breaches Security Ransomware Sales 307

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. These targets suggest the group is likely interested in gathering intelligence on military technology and defense” reads the report published by the Insikt Group.

Military 337

Military Mining Government Communications 337

Security Affairs

OCTOBER 5, 2023

Additional cyber security measures have been put in place. There has been no impact on NATO missions, operations and military deployments.” The group published a series of screenshots showing access to hacked systems as proof of the hack. SiegedSec is a threat actor that last year carried out multiple attacks against U.S.

Military 361

Military Security Access IT 361

Security Affairs

SEPTEMBER 9, 2022

The Armed Forces General Staff (Portuguese: Estado-Maior-General das Forças Armadas), or EMGFA, is the supreme military body of Portugal. The National Security Office (GNS) and Portugal’s national cybersecurity center launched an investigation into the incident to determine the extent of the data breach. ” continues the website.

Military 363

Military Sales Data breaches Cybersecurity 363

Data Breach Today

JUNE 12, 2020

OmniBallot Voting Platform Is Vulnerable to Hacking, Researchers Say Researchers at MIT and the University of Michigan have uncovered multiple security flaws in the online voting platform OmniBallot which could allow hackers to access and manipulate voter data.

Military 232

Military Security Access 232

Security Affairs

MARCH 17, 2022

The hacktivists also attempted to interfere with Russian military communications on the battlefield, recently they captured and shared Russian Military unencrypted High Frequency and morse code communications. Early this week, the GhostSec group announced to have seized more than 100 Russian government and military printers.

Military 364

Military Communications Government Access 364

Security Affairs

NOVEMBER 6, 2022

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 392 appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security 251

Security Ransomware Military Manufacturing 251

Security Affairs

APRIL 22, 2024

National Security Agency and Microsoft addressed it with the release of Microsoft October 2022 Patch Tuesday security updates. APT28 deployed GooseEgg to gain elevated access to target systems and steal credentials and sensitive information. The vulnerability CVE-2022-38028 was reported by the U.S.

Military 356

Military File names Education Phishing 356

Security Affairs

JUNE 20, 2022

The attack took place in April 2017 and the man is accused of conducting the attack for the Russian military intelligence service GRU. The hacker compromised at least two systems and got access to internal information from NATO, however at this time it is not clear the extent of the attack. ” reported the Tagesschau website.

Military 361

Military Access Security Cybersecurity 361

Security Affairs

AUGUST 25, 2019

BadPackets experts observed on August 22 a mass scanning activity targeting Pulse Secure “Pulse Connect Secure” VPN endpoints vulnerable to CVE-2019-11510. On August 22, BadPackets experts observed a mass scanning activity targeting Pulse Secure “Pulse Connect Secure” VPN endpoints vulnerable to CVE-2019-11510.

Security 279

Security Honeypots Military Access 279

Security Affairs

AUGUST 6, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. It’s Testing U.S.

Security 246

Security Military Phishing Sales 246

Security Affairs

DECEMBER 17, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 303

Security Data breaches Ransomware Artificial Intelligence 303

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. x and Ivanti Policy Secure. A remote attacker can trigger the vulnerability to access restricted resources by bypassing control checks. x) and Ivanti Policy Secure.

Security 312

Security Authentication Military Government 312

Security Affairs

FEBRUARY 28, 2021

During a video conference of the members of the European Council, EU leaders agreed on a new strategy aimed at boosting defense and security. The EU leaders emphasized that they looked forward to cooperating with the new US administration on a strong and ambitious transatlantic agenda that included a close dialogue on security and defence.

Cybersecurity 280

Cybersecurity Security Military Risk 280

Security Affairs

FEBRUARY 15, 2024

“A January 2024 court-authorized operation has neutralized a network of hundreds of small office/home office (SOHO) routers that GRU Military Unit 26165 , also known as APT28, Sofacy Group , Forest Blizzard , Pawn Storm , Fancy Bear , and Sednit , used to conceal and otherwise enable a variety of crimes.”

Military 340

Military Government Access Cybersecurity 340

Security Affairs

DECEMBER 6, 2020

Italian police have arrested two people that have been accused of stealing 10 GB of confidental data and military secrets from defense company Leonardo S.p.A. The two people are the former employee of the IT security management of Leonardo SpA, Arturo D’Elia, who is currently in jail, and Antonio Rossi, head of the CERT (Cyber ??Emergency

Military 330

Military Computer and Electronics Communications Personal data 330