Archiving and Libraries - Information Management Today

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” As of September 5, 2024, the Internet Archive held more than 42.1 Internet Archive hacked. Hunt also verified the authenticity of the information included in the stolen archive.

Archiving

Archiving Data breaches Passwords File names

A flaw in the Libarchive library impacts major Linux distros

Security Affairs

NOVEMBER 6, 2019

Google experts found a flaw, tracked as CVE-2019-18408, in the compression library libarchive could lead to arbitrary code execution. Google experts found a vulnerability, tracked as CVE-2019-18408, in the compression library libarchive could be exploited to execute arbitrary code. . c in libarchive before 3.4.0

Libraries

Libraries Archiving Security Information Security

Critical bug in WINRAR affects all versions released in the last 19 years

Security Affairs

FEBRUARY 21, 2019

The flaw is an “Absolute Path Traversal” issue in the library that could be exploited to execute arbitrary code by using a specially-crafted file archive. The issue affects a third-party library, called UNACEV2.DLL The flaw resides in the way an old third-party library, called UNACEV2.DLL, dll library in 2005.

Libraries

Libraries Archiving Security IT

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Malware spam campaign exploits WinRAR flaw to deliver Backdoor

Security Affairs

FEBRUARY 25, 2019

Experts discovered a malspam campaign that is distributing a malicious RAR archive that could exploit the WinRAR flaw to install deliver malware on a computer. The flaw is an “Absolute Path Traversal” issue a third-party library, called UNACEV2.DLL, dll library in 2005. dll and released WINRar version 5.70

Archiving

Archiving Libraries Security IT

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Security Affairs

SEPTEMBER 2, 2019

The malware attempt to connect via SSH on Port 22 and deliver itself as a gzip archive. “The malware is uploaded as gzip compressed tarball archives of binaries, scripts, and libraries. ” The expert discovered that the script executes init2, that is one of the files in the gzip archive, if the directory.

IoT

IoT Honeypots Libraries Archiving

Recently fixed WinRAR bug actively exploited in the wild

Security Affairs

MARCH 15, 2019

The flaw is an “Absolute Path Traversal” issue in the library that could be exploited to execute arbitrary code by using a specially-crafted file archive. The issue affects a third-party library, called UNACEV2.DLL DLL that is used by WINRAR, it resides in the way an old third-party library, called UNACEV2.DLL,

Archiving

Archiving Libraries File names Security

Unwrapping the Archives

The Texas Record

DECEMBER 16, 2020

When most people think of archives, the first thing that comes to mind is Indiana Jones swinging on vines and storing artifacts in giant rooms. While that is an interesting popular image, the archives and archivists here at the Texas State Library and Archives Commission (TSLAC) are the protectors of documented history.

Archiving

Archiving Libraries Paper Access

The Governance and Recordkeeping Around the World Newsletter April 2021 Edition available via Library and Archives Canada

IG Guru

APRIL 27, 2021

The post The Governance and Recordkeeping Around the World Newsletter April 2021 Edition available via Library and Archives Canada appeared first on IG GURU. Check out the post here.

Libraries

Libraries Archiving Government Records Management

EastWind campaign targets Russian organizations with sophisticated backdoors

Security Affairs

AUGUST 12, 2024

Threat actors sent phishing emails with RAR archive attachments containing a Windows shortcut to install malware. “Attackers use the classic DLL sideloading technique: when the desktop.exe file is launched, the malicious VERSION.dll library is loaded into the corresponding process” reads the report published by Kaspersky.

Libraries

Libraries Encryption Cloud Archiving

Access-to-info system at Library and Archives Canada in ‘bleak state’: watchdog via Times Colonist

IG Guru

MAY 11, 2022

The post Access-to-info system at Library and Archives Canada in ‘bleak state’: watchdog via Times Colonist appeared first on IG GURU. Check out the article here.

Libraries

Libraries Archiving Access Records Management

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

Security Affairs

MARCH 28, 2019

The recently patched vulnerability affecting the popular archiver utility WinRAR has been exploited to deliver new malware to targeted users. The flaw is an “Absolute Path Traversal” issue in the library that could be exploited to execute arbitrary code by using a specially-crafted file archive.

Archiving

Archiving File names Education Libraries

Threat actors scrape 600 million LinkedIn profiles and are selling the data online – again

Security Affairs

JULY 12, 2021

Once again, an archive of data collected from hundreds of millions of LinkedIn user profiles surfaced on a hacker forum, where it’s currently being sold for an undisclosed sum. To see if any of your online accounts were exposed in previous security breaches, use our personal data leak checker with a library of 15+ billion breached records.

Archiving

Archiving Passwords Data collection Sales

Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024

Security Affairs

SEPTEMBER 16, 2024

In the group’s attack chain, Void Banshee attempts to trick victims into opening zip archives containing malicious files disguised as book PDFs. The archives are disseminated in cloud-sharing websites, Discord servers, and online libraries, and other means. The APT group focuses on North America, Europe, and Southeast Asia.

Archiving

Archiving File names Libraries Passwords

Archives Month: Web Archive (WARC) File Format

The Texas Record

OCTOBER 6, 2021

It’s October, which means that it is once again time to celebrate American Archives Month ! First on the docket: web archiving. Web archiving requires the use of a preservation format that maintains all hyperlinked content and metadata in its original context. Store the harvested data in a web archive format, like WARC.

Archiving

Archiving Records Management Libraries Metadata

Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

Security Affairs

MAY 23, 2024

The messages use specially crafted archives containing LNK files disguised as regular documents. These archives mimicked the installation process of Microsoft Defender or exploited current US political issues. Upon receiving a request, it executes the encoded JavaScript code using the Microsoft.JScript library.

Archiving

Archiving Military Communications Phishing

XCSSET MacOS malware targets Telegram, Google Chrome data and more

Security Affairs

JULY 25, 2021

In order to target Telegram, the malware creates the archive “telegram.applescript” for the “keepcoder.Telegram” folder which is located in the Group Containers folder (“~/Library/Group Containers/6N38VWS5BX.ru.keepcoder.Telegram”). This differs from the practice on iOS. ” reads the analysis published by Trend Micro. ” .

Libraries

Libraries Passwords Archiving Access

Void Banshee exploits CVE-2024-38112 zero-day to spread malware

Security Affairs

JULY 17, 2024

In the group’s attack chain, Void Banshee attempts to trick victims into opening zip archives containing malicious files disguised as book PDFs. The archives are disseminated in cloud-sharing websites, Discord servers, and online libraries, and other means. ” states Trend Micro.

Archiving

Archiving Ransomware Libraries Passwords

New JNEC.a Ransomware delivered through WinRAR exploit

Security Affairs

MARCH 19, 2019

The ransomware was involved in the attacks observed by the Qihoo 360 Threat Intelligence Center in the wild, threat actors used an archive named “vk_4221345.rar” The attacker lures victims to decompress the archive through embedding a corrupt and incomplete female picture. rar” that delivers JNEC. bitcoins (about $200).

Ransomware

Ransomware Archiving Encryption Libraries

October is Archives Month

The Texas Record

OCTOBER 2, 2019

Each October, Texas joins archival repositories across the nation to celebrate Archives Month and promote the preservation of our country’s documentary heritage. Want to learn how to preserve your personal digital archive? The Texas State Library and Archives Commission has a workshop for that!

Archiving

Archiving Libraries Metadata Access

Bizarro banking Trojan targets banks in Brazil and abroad

Security Affairs

MAY 17, 2021

. “Once launched, Bizarro downloads a ZIP archive from a compromised website. While writing this article, we saw hacked WordPress, Amazon and Azure servers used for storing archives. It loads the magnification.dll library and gets the address of the deprecated MagSetImageScalingCallback API function,” continues the analysis.

Archiving

Archiving Libraries Authentication IT

UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces

Security Affairs

JUNE 7, 2024

The UA-CERT states that the “sync.exe” file contains the legitimate SyncThing components and SPECTR malware files, including additional libraries and scripts.

Archiving

Archiving Libraries Phishing Passwords

What Happens to Electronic Records in the Archives?

The Texas Record

FEBRUARY 2, 2021

The Archives and information services division at the Texas State Library and Archives Commission (TSLAC) has a sophisticated electronic records processes. Many agencies who submit their records to the Archives, may not know how their records are incorporated into TSLAC’s archival inventory.

Archiving

Archiving Digital preservation Metadata Computer and Electronics

New PyLocky Ransomware stands out for anti-machine learning capability

Security Affairs

SEPTEMBER 12, 2018

exe will drop malware components — several C++ and Python libraries and the Python 2.7 Core dynamic-link library (DLL) — along with the main ransomware executable (lockyfud.exe, which was created via PyInstaller ) in C:Users{user}AppDataLocalTempis-{random}.tmp.” zip) that contains a signed executable (Facture_23100.31.07.2018.exe).

Ransomware

Ransomware Libraries Encryption Archiving

China-linked LuminousMoth APT targets entities from Southeast Asia

Security Affairs

JULY 14, 2021

The Dropbox link leads to a RAR archive that masquerades as a Word document by setting the “file_subpath” parameter to point to a filename with a.DOCX extension. “The archive contains two malicious DLL libraries as well as two legitimate executables that sideload the DLL files.

Archiving

Archiving File names Government Libraries

UNC2565 threat actors continue to improve the GOOTLOADER malware

Security Affairs

JANUARY 29, 2023

This forum hosted a ZIP archive that contains the malicious.js Below is the attack chain of this new variant: The user visits an UNC2565-compromised site (usually related to business documents) and downloads a malicious ZIP archive. Recently observed trojanized JavaScript libraries include jQuery, Chroma.js, and Underscore.js.

Libraries

Libraries Archiving Ransomware IT

A Vision for AI in Libraries – Gene Tan to give Keynote at CILIP conference 2025

CILIP

FEBRUARY 24, 2025

A Vision for AI in Libraries Gene Tan to give Keynote at CILIP conference 2025 Early bird full conference rates are limited and in high demandsecure your spot now for the best deal on tickets for CILIP Conference 2025. Don't miss this opportunity to hear from Gene Tan as he shares his ground-breaking work on AI innovation in libraries.

Libraries

Libraries Archiving

Preserving Our Libraries’ Digital Collections is Simple, Powerful, and Affordable

Preservica

MARCH 18, 2022

Academic libraries are in the midst of rapid, widespread changes as it shifts into the digital age. Our libraries have been a steady flame for patrons to depend on, not just throughout the pandemic, but throughout history. See how Preservica customers are creating engaging internal and public access.

Libraries

Libraries Digital preservation Archiving e-Discovery

Unpatched Python Library Affects More Than 300,000 Open Source Projects

eSecurity Planet

SEPTEMBER 22, 2022

Trellix security researchers have revealed a major vulnerability in the Python tarfile library that could be exploited in software supply chain attacks. The post Unpatched Python Library Affects More Than 300,000 Open Source Projects appeared first on eSecurityPlanet. Read next: Best Third-Party Risk Management (TPRM) Tools.

Libraries

Libraries Archiving Risk Security

New malware Cthulhu Stealer targets Apple macOS users

Security Affairs

AUGUST 23, 2024

Then the malware creates a zip archive of the stolen data, which includes system and network information, and sends a notification to a command-and-control (C2) server. The malicious code is written in GoLang, upon mounting the dmg it prompts users to enter their system and MetaMask passwords using the macOS osascript tool.

Passwords

Passwords Blockchain Libraries Archiving

The Lay-RMO’s Guide to Appraising Archival/Historical Records

The Texas Record

OCTOBER 22, 2021

The records management assistance unit at the Texas State Library and Archives Commission (TSLAC) receives many questions from state agencies when it comes to recertifying retention schedules. Let’s look at what archives considers when reviewing a record. This includes but is not limited to the following: 1.

Archiving

Archiving Records Management Paper Access

Emotet campaign hits Lithuania’s National Public Health Center and several state institutions

Security Affairs

DECEMBER 31, 2020

The Emotet campaign uses malicious emails that attempt to trick recipients into opening the zipped archive with the password included in the message. Emotet is a modular malware, its operators could develop new Dynamic Link Libraries to update its capabilities. since August.

Passwords

Passwords Archiving Libraries Government

New variant of BBTok Trojan targets users of +40 banks in LATAM

Security Affairs

SEPTEMBER 24, 2023

BBTok is written in Delphi and uses the Visual Component Library (VCL) to dynamically generate interfaces. Upon clicking the link, it results in the download of either a ZIP archive or an ISO image, depending on the operating system of the victim’s machine. The phishing messages include a malicious link.

Phishing

Phishing Libraries Archiving IT

Astaroth Trojan relies on legitimate os and antivirus processes to steal data

Security Affairs

FEBRUARY 16, 2019

7zip file as an attachment or include a hyperlink that points to the archive. 7zip archive contains a.lnk file which will instantiate a wmic.exe process that will “initialize an XSL Script Processing attack.” The BITSAdmin is a command-line tool that you can use to create download or upload jobs and monitor their progress.

Passwords

Passwords Archiving Libraries Security

Black Hat 2018 – Expert demonstrated a new PHP code execution attack

Security Affairs

AUGUST 17, 2018

The expert discovered that an attacker can use low-risk functions against Phar archives to trigger deserialization attack without requiring the use of unserialize() function. Phar archives are similar to Java JAR archives but are specific for PHP applications. A Phar application or library could be distributed in a single file.

Archiving

Archiving Metadata Libraries Authentication

Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof

Security Affairs

APRIL 8, 2021

An archive containing data purportedly scraped from 500 million LinkedIn profiles has been put for sale on a popular hacker forum, with another 2 million records leaked as a proof-of-concept sample by the post author. Original Post at [link].

Passwords

Passwords Phishing Personal data Libraries

Enigma info-stealing malware targets the cryptocurrency industry

Security Affairs

FEBRUARY 13, 2023

The attack chain starts with phishing emails or social media messages distributing a RAR archive. The archive contains two files, Interview questions.txt, and Interview conditions.word.exe. The files pose an interview for a fake cryptocurrency role or job opening. ” continues the report.

Archiving

Archiving File names Libraries Phishing

Drupal addressed several issues, including a critical file processing bug

Security Affairs

DECEMBER 19, 2019

The most serious issue is related to the Archive_Tar third-party library, it has been assigned a severity rating of critical. Archive_Tar is a tool designed for handling TAR archive files in PHP. The issue affects Drupal 7x, 8.7.x x versions.

CMS

CMS Libraries Archiving Access

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs

OCTOBER 13, 2023

The threat actors leverage spear-phishing emails to deliver archive files utilizing DLL side-loading schemes. The CurKeep payload is very small, it is 10kb in size, contains 26 functions and is not statically compiled with any library. ’ Each functionality is assigned to a different message type that is sent to the C2 server.

Government

Government IT Encryption Libraries

Iran-linked APT TA453 targets Windows and macOS systems

Security Affairs

JULY 8, 2023

The.rar archive contained a dropper named “Abraham Accords & MENA.pdf.lnk.” ” It is worth noting that the use of a.rar archive and an LNK file for malware distribution deviates from TA453’s typical infection chain involving VBA macros or remote template injection. ” continues the analysis.

Archiving

Archiving Cloud File names Metadata

Clasiopa group targets materials research in Asia

Security Affairs

FEBRUARY 25, 2023

The experts noticed that both the Domino and Agile software appear to be using old certificates and the Agile servers use old vulnerable libraries. The attackers used two legitimate software packages, the HCL Domino (formerly IBM Domino) and the Agile DGS and Agile FD servers. Modified versions of the publicly available Lilith RAT.

Passwords

Passwords Libraries Archiving Access

The best of times, the worst of times for public libraries

CILIP

JANUARY 22, 2024

The best of times, the worst of times for public libraries Isobel Hunter, CEO of Libraries Connected, discusses how the sector is demonstrating its best innovation while facing its worst financial crisis. ISOBEL Hunter became the first Chief Executive of Libraries Connected in 2018.

Libraries

Libraries Archiving Government IT

People with dementia reconnect with past memories at Brent Libraries

CILIP

JUNE 25, 2024

People with dementia reconnect with past memories at Brent Libraries A library book formed the basis for the sessions that stimulated the memories of people living with dementia and created a sense of community for carers and family members. One participant said: “If you want to live long, make yourself happy”.

Libraries

Libraries Archiving

Industrial Sector targeted in surgical spear-phishing attacks

Security Affairs

AUGUST 3, 2018

“For example, the archive mentioned above contains an executable file, which has the same name and is a password-protected self-extracting archive. The archive extracts the files and runs a script that installs and launches the actual malware in the system.” states the researchers.

Phishing

Phishing Libraries Passwords Archiving

Thousands of Humana customers have their medical data leaked online by threat actors

Security Affairs

JULY 21, 2021

One of the forum members who downloaded the database claims that the archive contains information from 2020, and not 2019, as suggested by the leaker. To see if any of your online accounts were exposed in previous security breaches, use our personal data leak checker with a library of 15+ billion breached records. What was leaked?

Insurance

Insurance Passwords Libraries Access

Internet Archive data breach impacted 31M users

A flaw in the Libarchive library impacts major Linux distros

Webinars

Trending Sources

Critical bug in WINRAR affects all versions released in the last 19 years

Webinars

Malware spam campaign exploits WinRAR flaw to deliver Backdoor

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Recently fixed WinRAR bug actively exploited in the wild

Unwrapping the Archives

The Governance and Recordkeeping Around the World Newsletter April 2021 Edition available via Library and Archives Canada

EastWind campaign targets Russian organizations with sophisticated backdoors

Access-to-info system at Library and Archives Canada in ‘bleak state’: watchdog via Times Colonist

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

Threat actors scrape 600 million LinkedIn profiles and are selling the data online – again

Recently patched Windows flaw CVE-2024-43461 was actively exploited as a zero-day before July 2024

Archives Month: Web Archive (WARC) File Format

Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

XCSSET MacOS malware targets Telegram, Google Chrome data and more

Void Banshee exploits CVE-2024-38112 zero-day to spread malware

New JNEC.a Ransomware delivered through WinRAR exploit

October is Archives Month

Bizarro banking Trojan targets banks in Brazil and abroad

UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces

What Happens to Electronic Records in the Archives?

New PyLocky Ransomware stands out for anti-machine learning capability

China-linked LuminousMoth APT targets entities from Southeast Asia

UNC2565 threat actors continue to improve the GOOTLOADER malware

A Vision for AI in Libraries – Gene Tan to give Keynote at CILIP conference 2025

Preserving Our Libraries’ Digital Collections is Simple, Powerful, and Affordable

Unpatched Python Library Affects More Than 300,000 Open Source Projects

New malware Cthulhu Stealer targets Apple macOS users

The Lay-RMO’s Guide to Appraising Archival/Historical Records

Emotet campaign hits Lithuania’s National Public Health Center and several state institutions

New variant of BBTok Trojan targets users of +40 banks in LATAM

Astaroth Trojan relies on legitimate os and antivirus processes to steal data

Black Hat 2018 – Expert demonstrated a new PHP code execution attack

Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof

Enigma info-stealing malware targets the cryptocurrency industry

Drupal addressed several issues, including a critical file processing bug

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Iran-linked APT TA453 targets Windows and macOS systems

Clasiopa group targets materials research in Asia

The best of times, the worst of times for public libraries

People with dementia reconnect with past memories at Brent Libraries

Industrial Sector targeted in surgical spear-phishing attacks

Thousands of Humana customers have their medical data leaked online by threat actors

Stay Connected