Data Breach Today

OCTOBER 22, 2021

The latest edition of the ISMG Security Report features an analysis of whether businesses are stepping up their ransomware defenses in response to several warnings released by the U.S. governments highlighting the threat posed to infrastructure. Also featured are the Thingiverse data breach and airline fraud trends.

Ransomware 293

Ransomware Data breaches Government Security 293

Krebs on Security

JUNE 21, 2020

The collection, dubbed “ BlueLeaks ” and made searchable online, stems from a security breach at a Texas web design and hosting company that maintains a number of state law enforcement data-sharing portals. “Additionally, the data dump contains emails and associated attachments,” the alert reads.

Archiving 364

Archiving Government Risk Security 364

Schneier on Security

JANUARY 2, 2024

(This is a serious analysis, and the methodology looks sound.) Future research should aim towards a more comprehensive analysis to determine the potential influence of TikTok on popular public narratives.

Government 126

Government IT Paper 126

Security Affairs

FEBRUARY 16, 2024

CISA revealed that threat actors breached an unnamed state government organization via an administrator account belonging to a former employee. The government experts conducted an incident response assessment of the state government organization after its documents were posted on the dark web.

Government 144

Government Authentication Cybersecurity Data breaches 144

Data Breach Today

FEBRUARY 11, 2020

Analysis: Equifax Failed on Security, But Only Governments Can Hold Each Other to Account Who's surprised Chinese military hackers allegedly hacked Equifax?

Big data 236

Big data Military Personal data Government 236

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government 302

Government Cybersecurity Sales Blockchain 302

The Last Watchdog

JUNE 23, 2023

June 22, 2023 — Dasera , the premier automated data security and governance platform for top-tier finance, healthcare, and technology enterprises, is thrilled to unveil “Ski Lift,” a complimentary platform exclusively designed for Snowflake users. Mountain View, Calif.

Government 113

Government Security Compliance Risk 113

Security Affairs

MARCH 28, 2024

Google’s Threat Analysis Group (TAG) and Mandiant reported a surge in the number of actively exploited zero-day vulnerabilities in 2023. The Chinese government made the headlines because government-linked APT groups exploited 12 zero-day vulnerabilities in 2023, which marks a notable increase from seven in 2022.

Government 140

Government Ransomware Libraries Access 140

Schneier on Security

AUGUST 31, 2023

A used government surveillance van is for sale in Chicago: So how was this van turned into a mobile spying center? Multiple Sony DVD-based video recorders store footage captured by cameras, audio recorders by high-end equipment brand Marantz capture sounds, and time and date generators sync gathered media up for accurate analysis.

Government 134

Government Sales IT Privacy 134

Security Affairs

JUNE 6, 2022

Following the attacks of the Killnet Collective, the group responsible for the attacks against major government resources and law enforcement, a new group has been identified called “Cyber Spetsnaz”. Sources interviewed by Security Affairs interpreted this activity with high levels of confidence to be state-supported.

Government 145

Government Cybersecurity IoT Security 145

Security Affairs

NOVEMBER 16, 2023

Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day ( CVE-2023-37580 ) to steal emails from governments. The first campaign aimed at a government organization in Greece, threat actors sent emails containing exploit urls to their targets. ” continues the report. .”

Government 141

Government Authentication Phishing IT 141

Krebs on Security

DECEMBER 18, 2020

government cybersecurity agencies warned this week that the attackers behind the widespread hacking spree stemming from the compromise at network software firm SolarWinds used weaknesses in other, non-SolarWinds products to attack high-value targets. National Security Agency (NSA) warned on Dec.

Authentication 362

Authentication Access Security Government 362

Krebs on Security

DECEMBER 16, 2020

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as a “killswitch” designed to turn the sprawling cybercrime operation against itself, KrebsOnSecurity has learned.

Communications 361

Communications Sales Cybersecurity Government 361

Krebs on Security

MAY 12, 2022

KrebsOnSecurity has learned the alleged compromise is tied to a cybercrime and online harassment community that routinely impersonates police and government officials to harvest personal information on their targets. The DEA declined to comment on the validity of the claims, issuing only a brief statement in response.

Authentication 302

Authentication Passwords Government Access 302

Krebs on Security

JANUARY 12, 2021

Soon after, the attackers began testing code designed to surreptitiously inject backdoors into Orion , a suite of tools used by many Fortune 500 firms and a broad swath of the federal government to manage their internal networks. Image: SolarWinds. ”

Government 328

Government Access IT Security 328

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. The researchers recommend reading the detailed analysis of the recent TAG-70 campaign here.

Military 142

Military Government Access Risk 142

Security Affairs

SEPTEMBER 10, 2022

China-linked BRONZE PRESIDENT group is targeting government officials in Europe, the Middle East, and South America with PlugX malware. Secureworks researchers reported that China-linked APT group BRONZE PRESIDENT conducted a new campaign aimed at government officials in Europe, the Middle East, and South America with the PlugX malware.

Government 130

Government Archiving Metadata Encryption 130

Data Breach Today

AUGUST 19, 2024

German Government Analysis Finds Screenshots of File Directories A massive February leak of internal documents from Chinese hacking contractor iSoon revealed apparent hacking against European institutions and states, a German federal agency warned this week.

Government 162

Government Security 162

Security Affairs

APRIL 24, 2024

Nation-state actor UAT4356 has been exploiting two zero-days in ASA and FTD firewalls since November 2023 to breach government networks. Early in 2024, a customer contacted Cisco to report a suspicious related to its Cisco Adaptive Security Appliances (ASA). Cisco Talos researchers tracked this cyber-espionage campaign as ArcaneDoor.

Government 133

Government Authentication Communications Access 133

The Last Watchdog

NOVEMBER 14, 2023

Related: How ‘Internet Access Brokers’ fuel ransomware I happened to be in the audience at Stanford University when President Obama took to the stage to issue an executive order challenging the corporate sector and federal government to start collaborating as true allies. Yet, there remains much leeway for improvements.

Ransomware 260

Ransomware Military Security Government 260

The Last Watchdog

JULY 5, 2022

At any point the external environment can throw a curve ball – new government regulations, changes in political and social dynamics, or trends in sustainability to name a few. Cyber security keeps the C-suite up at night and perhaps that’s no surprise. Cyber security should also be viewed in a wider business context.

Risk 279

Risk Military Marketing Data Privacy 279

Security Affairs

MARCH 19, 2024

The campaign seems active since at least early 2022 and focuses primarily on government organizations. The group often exploited access to government infrastructure to target other government entities. Analysis of the backdoors uploaded on VirusTotal revealed that threat actors utilized geopolitical topics as bait.

Government 107

Government Phishing Access Passwords 107

Security Affairs

SEPTEMBER 15, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 120

Security Military Ransomware Marketing 120

Security Affairs

AUGUST 11, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 125

Security Ransomware Cloud Government 125

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. x and Ivanti Policy Secure. is a command injection vulnerability in web components of Ivanti Connect Secure (9.x, x) and Ivanti Policy Secure. reads the advisory published by Ivanti.

Security 129

Security Authentication Military Government 129

Collibra

JUNE 27, 2024

More broadly, AI software is expensive to develop, especially as HIPAA requirements present added security considerations for protected health information. Healthcare executives are doubting whether their returns on AI investments will materialize, highlighting the importance of risk assessment and impact analysis.

Government 105

Government Artificial Intelligence Access Libraries 105

Security Affairs

OCTOBER 9, 2024

A threat actor tracked as Awaken Likho is targeting Russian government agencies and industrial entities, reported cybersecurity firm Kaspersky. The threat actor continues to target Russian government entities and enterprises. This campaign highlights the group’s continued efforts to refine their remote access strategies.

Government 122

Government Archiving Phishing Access 122

Krebs on Security

MARCH 22, 2021

Norse’s attack map was everywhere for several years, and even became a common sight in the “brains” of corporate security operations centers worldwide. By 2014 it was throwing lavish parties at top Internet security conferences. A snapshot of Norse’s semi-live attack map, circa Jan.

Computer and Electronics 299

Computer and Electronics Honeypots Archiving Marketing 299

Krebs on Security

MARCH 8, 2022

.” “We decided to disconnect the network due to increased security risk inside Russia,” the statement continues. At the same time, the Russian government has blocked Facebook and partly blocked Twitter , while other platforms like TikTok have suspended services in the country.

Military 332

Military Government Risk Business Services 332

Security Affairs

SEPTEMBER 8, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security 115

Security Insurance Ransomware Government 115

Security Affairs

OCTOBER 13, 2023

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. ” reads the analysis published by Checkpoint. The analysis of the C2 allowed the researchers to discover other loader variants used by the threat actor, such as CurLu, CurCore, and CurLog.

Government 132

Government IT Encryption Libraries 132

Krebs on Security

MAY 31, 2022

The Costa Rican publication CRprensa.com reports that affected systems at the Costa Rican Social Security Fund (CCSS) were taken offline on the morning of May 31, but that the extent of the breach was still unclear. He added that many printers within the government agency this morning began churning out copies of the Hive ransom note.

Ransomware 300

Ransomware Government Communications Cybersecurity 300

OpenText Information Management

SEPTEMBER 10, 2024

Public sector agencies across federal, state, and local governments want to deliver reliable and secure services to their employees, contractors, citizens, and other fellow agencies. Because such agencies may be the target from multiple threat actors and have access to sensitive data, they have stringent security requirements.

Government 102

Government Cloud Compliance Digital transformation 102

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. ” reads the analysis published by Carbon Black Managed Detection & Response team.

Education 138

Education Government Business Services Archiving 138

IT Governance

DECEMBER 11, 2024

GDPR gap analysis data shows compliance in the UK is quite low When implementing a GDPR (General Data Protection Regulation) compliance programme, a key challenge is securing the required resources and support particularly from top management. This is also key to effective control selection in information security.)

GDPR 52

GDPR Security Compliance Privacy 52

KnowBe4

AUGUST 21, 2024

Analysis of a phishing campaign targeting thousands of government contractors, dubbed “Operation Uncle Sam,” takes advantage of some sophisticated steps to avoid detection.

Phishing 96

Phishing Government Security awareness Security 96

Schneier on Security

NOVEMBER 21, 2023

Google’s Threat Analysis Group announced a zero-day against the Zimbra Collaboration email server that has been used against governments around the world. TAG has observed four different groups exploiting the same bug to steal email data, user credentials, and authentication tokens. The vulnerability was discovered in June.

Security 115

Security Authentication Government IT 115