Communications and Government - Information Management Today

NSA releases guidance for securing Unified Communications and VVoIP

Security Affairs

JUNE 21, 2021

The US National Security Agency (NSA) released guidance for securing Unified Communications/Voice and Video over IP Systems (VVoIP). NSA last week released guidance for securing their communication systems, specifically Unified Communications (UC) and Voice and Video over IP (VVoIP). Pierluigi Paganini.

Communications

Communications Security Authentication Encryption

Government Surveillance Reform Act of 2023 Seeks to End Warrantless Police and FBI Spying

WIRED Threat Level

NOVEMBER 7, 2023

The Government Surveillance Reform Act of 2023 pulls from past privacy bills to overhaul how police and the feds access Americans’ data and communications.

Government

Government Communications Privacy Access

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Security Affairs

SEPTEMBER 20, 2024

Ukraine’s NCCC banned the Telegram app for government agencies, military, and critical infrastructure, due to national security concerns. ” Despite the ban on military and government devices, Ukrainian users rely heavily on Telegram to communicate and receive news on ongoing conflicts. .”

Military

Military Government Personal data Phishing

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Is the Belarusian government behind the surveillance Android app banned by Google?

Security Affairs

SEPTEMBER 3, 2020

Google has removed an app from the Play Store that was used by the Belarusian government to spy on anti-government protesters. Google has removed the app NEXTA LIVE ( com.moonfair.wlkm ) from the official Play Store because it was used by the Belarusian government to spy on anti-government protesters. site (89.223.89[.]47).”

Government

Government Communications Risk IT

US Federal Communications Commission (FCC) warns of the rise of smishing attacks

Security Affairs

JULY 31, 2022

The Federal Communications Commission (FCC) warned Americans of the rising threat of smishing (robotexts) attacks. The Federal Communications Commission (FCC) issued an alert to warn Americans of the rising threat of smishing (robotexts) attacks aimed at stealing their personal information or for financial scams. Pierluigi Paganini.

Communications

Communications Government Security IT

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

broadband providers and gained access to private communications of a limited number of U.S. government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. China-linked threat actors breached U.S. broadband providers.

Government

Government Communications Access Risk

A massive DDoS attack hit Israel, government sites went offline

Security Affairs

MARCH 14, 2022

Many Israel government websites were offline after a cyberattack, defense sources claim that this is the largest-ever attack that hit the country. Israeli media reported that a massive DDoS attack has taken down many Israel government websites. As of now, all of the websites are operational.” Pierluigi Paganini.

Government

Government Communications Access Security

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Ransomware

Ransomware Government Military Encryption

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks

Security Affairs

APRIL 24, 2024

Nation-state actor UAT4356 has been exploiting two zero-days in ASA and FTD firewalls since November 2023 to breach government networks. “Gaining a foothold on these devices allows an actor to directly pivot into an organization, reroute or modify traffic and monitor network communications.”

Government

Government Authentication Communications Access

Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors

Security Affairs

APRIL 21, 2022

Threat intelligence firm Resecurity details how crooks are delivering IRS tax scams and phishing attacks posing as government vendors. The post Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

Phishing

Phishing e-Delivery Government Passwords

UK urges to disconnect Chinese security cameras in government buildings

Security Affairs

NOVEMBER 24, 2022

The British government banned the installation of Chinese-linked security cameras at sensitive facilities due to security risks. Reuters reports that the British government ordered its departments to stop installing Chinese security cameras at sensitive buildings due to security risks. Federal Communications Commission (FCC).

Government

Government Security Risk Manufacturing

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs

OCTOBER 13, 2023

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. The backdoor uses HTTP for its communications. report – CurKeep collects information about the infected machine. In turn, the C2 responds with strings of commands. Is it linked to ToddyCat APT?

Government

Government IT Encryption Libraries

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. exe, and rundll32.exe.

Government

Government Communications Ransomware Manufacturing

China-linked APT Sharp Panda targets government entities in Southeast Asia

Security Affairs

MARCH 8, 2023

China-linked APT group Sharp Panda targets high-profile government entities in Southeast Asia with the Soul modular framework. CheckPoint researchers observed in late 2022, a campaign attributed to the China-linked APT group Sharp Panda that is targeting a high-profile government entity in the Southeast Asia.

Government

Government Communications Phishing IT

Foreign adversary hacked email communications of the Library of Congress says

Security Affairs

NOVEMBER 18, 2024

The Library of Congress informed lawmakers about a security breach, an alleged foreign adversary compromised some of their IT systems and gained access to email communications between congressional offices and some library staff, including the Congressional Research Service. Copyright Office systems, were not impacted by the incident.

Libraries

Libraries Communications Access Government

Bank of Seychelles hit by a ransomware attack

Security Affairs

SEPTEMBER 12, 2020

DBS is a joint venture by the Seychelles government and some shareholders including Bank, Caisse Francaise de Cooperation, European Investment Bank, DEG, Standard Chartered Bank, and Barclays Bank. . DBS bought back Barclays’ share and Government purchased the shares of DEG, hence, increasing its shareholding to 60.50%.

Ransomware

Ransomware Communications Government Encryption

Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs

Security Affairs

MAY 17, 2024

Russia-linked Turla APT allegedly used two new backdoors, named Lunar malware and LunarMail, to target European government agencies. Notably, the attacker also included a second backdoor – which we named LunarMail – that uses a different method for command and control (C&C) communications.” ” continues the report.

Communications

Communications Phishing Government Encryption

US FCC bans China Unicom Americas telecom over national security risks

Security Affairs

JANUARY 29, 2022

The Federal Communications Commission (FCC) revoked the license for the China Unicom Americas over serious national security concerns. The Federal Communications Commission (FCC) has revoked the license for China Unicom Americas over “serious national security concerns.” ” reads the order. Pierluigi Paganini.

Risk

Risk Security Communications Government

State-sponsored hackers are using COVID-19 lures, Google warns

Security Affairs

APRIL 23, 2020

. “Our security systems have detected examples ranging from fake solicitations for charities and NGOs, to messages that try to mimic employer communications to employees working from home, to websites posing as official government pages and public health agencies.” government employees. ” concludes Google.

Phishing

Phishing Government Communications IT

Russian internet watchdog Roskomnadzor bans six more VPN services

Security Affairs

DECEMBER 2, 2021

Russian communications watchdog Roskomnadzor tightens the control over the Internet and blocked access to six more VPN services. In September Russian communications watchdog Roskomnadzor blocked access to Hola! In September Russian communications watchdog Roskomnadzor blocked access to Hola!VPN,

Communications

Communications Access Government Security

U.S. gov adds more Chinese Telecom firms to the Covered List

Security Affairs

SEPTEMBER 21, 2022

Federal Communications Commission (FCC) has added more Chinese telecom firms to the Covered List. Federal Communications Commission (FCC) has added Pacific Network Corp, ComNet (USA) LLC, and China Unicom (Americas) Operations Limited, to the Covered List. subject to section 214 of the Communications Act of 1934.

Communications

Communications Risk Government Information Security

Anonymous continues to support Ukraine against the Russia

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. Let’s summarize the most interesting attacks observed in the last few days.

Military

Military Communications Government Access

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The US agencies confirmed that Chinese threat actors had compromised the private communications of a “limited number” of government officials following the compromise of multiple U.S.

Data breaches

Data breaches Communications Artificial Intelligence Government

North Korea-linked Kimsuky used a new Linux backdoor in recent attacks

Security Affairs

MAY 19, 2024

Troll Stealer can also copy the GPKI (Government Public Key Infrastructure) folder on infected computers. GPKI is the public key infrastructure schema for South Korean government personnel and state organizations, suggesting that government agencies were among the targeted by state-sponsored hackers. ” (hardcoded).

Communications

Communications Government IT Encryption

WhatsApp, Signal Preview UK Exit Over Threat to Encryption

Data Breach Today

APRIL 18, 2023

UK's Online Safety Bill Criticized for Infringing on Private Communications Major internet chat platforms are urging the United Kingdom government to reconsider a bill intended to decrease exposure to online harms but which opponents say would open the door to massive government surveillance.

Encryption

Encryption Communications Government

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Security Affairs

AUGUST 8, 2024

The BlackSuit ransomware has targeted various critical infrastructure sectors, including commercial facilities, healthcare, government, and manufacturing. Historically, Royal actors were observed leveraging Chisel , Secure Shell (SSH) client, PuTTY, OpenSSH, and MobaXterm for C2 communications.

Ransomware

Ransomware Communications Manufacturing Phishing

New Android Banking Trojan Targets Southeast Asia Region

Data Breach Today

AUGUST 30, 2023

Android Banking Trojan Disguised As Dating or Government App Hackers are deploying a novel Android malware using an uncommon communication method to steal banking login data from compromised devices primarily in Southeast Asia.

Phishing

Phishing Communications Government

Kyiv’s hackers launched an unprecedented cyber attack on Russian state media VGTRK on Putin’s birthday

Security Affairs

OCTOBER 7, 2024

A Ukrainian government source told Reuters that Kyiv’s hackers are behind the cyber attack that disrupted operations at the Russian state media company VGTRK on Putin’s birthday. The cyberattack on VGTRK disrupted online broadcasts, internal services, and communications, reportedly wiping servers and backups.

Government

Government Communications IT Information Security

US govt offers $10 million reward for info on nation-state cyber operations

Security Affairs

JULY 17, 2021

The US government is offering a $10 million reward to everyone that provides information on operations conducted by nation-state actors. The US government is offering a $10 million reward for information on campaigns conducted by state-sponsored hackers. The move was announced by the U.S. “The U.S.

Government

Government Ransomware Access Communications

Chinese APT Earth Baxia target APAC by exploiting GeoServer flaw

Security Affairs

SEPTEMBER 23, 2024

Suspected China-linked APT Earth Baxia targeted a government organization in Taiwan by exploiting a recently patched OSGeo GeoServer GeoTools flaw. Trend Micro researchers reported that China-linked APT group Earth Baxia has targeted a government organization in Taiwan and potentially other countries in the Asia-Pacific (APAC) region.

Phishing

Phishing File names Cloud Government

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Security Affairs

MARCH 30, 2020

Online communication platforms such as Zoom are essential instruments at the time of Coronavirus outbreak, and crooks are attempting to exploit their popularity. ” reads the analysis published by CheckPoint. ” reads the analysis published by CheckPoint.

Communications

Communications Retail Authentication Government

China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems

Security Affairs

OCTOBER 6, 2024

“A cyberattack tied to the Chinese government penetrated the networks of a swath of U.S. broadband providers, potentially accessing information from systems the federal government uses for court-authorized network wiretapping requests.” broadband providers is still ongoing, government experts are assessing its scope.

Government

Government Access Risk Security

Poland institutions and individuals targeted by an unprecedented series of cyber attacks

Security Affairs

JUNE 16, 2021

Poland ‘s government announced that it was targeted by an ‘Unprecedented’ series of cyber attacks, hackers hit against institutions and individuals. Mateusz Morawiecki had to provide details about the attacks presenting secret documents related to attacks, as anticipated by government spokesman Piotr Muller.

Metadata

Metadata Government Phishing Communications

APT28 relies on PowerPoint Mouseover to deliver Graphite malware

Security Affairs

SEPTEMBER 29, 2022

The latter downloads a payload that extracts and injects in itself a new PE (Portable Executable) file, that the analysis showed to be a variant of a malware family known as Graphite, that uses the Microsoft Graph API and OneDrive for C&C communications.” ” reads the analysis published by Cluster25. Microsoft[.]com,

Metadata

Metadata Communications Government IT

Hackers targeted the US Census Bureau network, DHS report warns

Security Affairs

OCTOBER 11, 2020

The US Census Bureau is the largest US federal government statistical agency responsible dedicated to providing current facts and figures about America’s people, places, and economy. Data collected by the agency is used by the federal government to allocate over $675 billion in federal funds to tribal, local, and state governments every year.

Government

Government Data collection Access Communications

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

According to Microsoft, the campaign aimed at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

Communications

Communications Manufacturing Education Government

DinodasRAT Linux variant targets users worldwide

Security Affairs

MARCH 31, 2024

ESET researchers reported that a Windows version of DinodasRAT was used in attacks against government entities in Guyana. The campaign seems active since at least early 2022 and focuses primarily on government organizations. Both Linux and Windows versions of DinodasRAT communicates with the C2 over TCP or UDP.

Libraries

Libraries Encryption Communications Government

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities

Security Affairs

FEBRUARY 26, 2024

Recently the leak of a collection of files apparently stolen from the Chinese government hacking contractor, I-Soon, exposed Chinese hacking capabilities. i-SOON is a prominent contractor for various agencies of the Chinese government, including Ministry of Public Security, Ministry of State Security, and the People’s Liberation Army.

Government

Government Marketing IoT Data breaches

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Access

Exclusive, Ghost Squad Hackers defaced European Space Agency (ESA) site

Security Affairs

JULY 15, 2020

“This attack was done solely for fun” The group claims to have hacked numerous organizations and government agencies over the years, including US military, European Union, Washington DC, Israeli Defense Forces, the Indian Government, and some central banks.

Military

Military Government Communications Access

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Security Affairs

SEPTEMBER 26, 2021

Lithuanian government experts have analyzed three specific smartphone models, the Huawei P40 5G, the Xiaomi Mi 10T 5G and the OnePlus 8T 5G. “Xiaomi’s devices do not censor communications to or from its users. . “Xiaomi’s devices do not censor communications to or from its users. Pierluigi Paganini.

Information Security

Information Security Manufacturing Security Communications

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

Security Affairs

APRIL 26, 2023

German government warns that technology to regulate power consumption in Huawei network appliances could be used for sabotage purposes. government officials as well as European security authorities, which have warned of the risks associated with Chinese telecoms equipment.” The activity will be completed in the coming months.

Government

Government Communications Risk Cybersecurity

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

Krebs on Security

DECEMBER 16, 2020

FireEye said hacked networks were seen communicating with a malicious domain name — avsvmcloud[.]com Today, FireEye responded that the domain seizure was part of a collaborative effort to prevent networks that may have been affected by the compromised SolarWinds software update from communicating with the attackers.

Communications

Communications Sales Cybersecurity Government

NSA releases guidance for securing Unified Communications and VVoIP

Government Surveillance Reform Act of 2023 Seeks to End Warrantless Police and FBI Spying

Webinars

Trending Sources

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Webinars

Is the Belarusian government behind the surveillance Android app banned by Google?

US Federal Communications Commission (FCC) warns of the rise of smishing attacks

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

A massive DDoS attack hit Israel, government sites went offline

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks

Cybercriminals Deliver IRS Tax Scams & Phishing Campaigns By Mimicking Government Vendors

UK urges to disconnect Chinese security cameras in government buildings

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Raspberry Robin malware used in attacks against Telecom and Governments

China-linked APT Sharp Panda targets government entities in Southeast Asia

Foreign adversary hacked email communications of the Library of Congress says

Bank of Seychelles hit by a ransomware attack

Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs

US FCC bans China Unicom Americas telecom over national security risks

State-sponsored hackers are using COVID-19 lures, Google warns

Russian internet watchdog Roskomnadzor bans six more VPN services

U.S. gov adds more Chinese Telecom firms to the Covered List

Anonymous continues to support Ukraine against the Russia

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

North Korea-linked Kimsuky used a new Linux backdoor in recent attacks

WhatsApp, Signal Preview UK Exit Over Threat to Encryption

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

New Android Banking Trojan Targets Southeast Asia Region

Kyiv’s hackers launched an unprecedented cyber attack on Russian state media VGTRK on Putin’s birthday

US govt offers $10 million reward for info on nation-state cyber operations

Chinese APT Earth Baxia target APAC by exploiting GeoServer flaw

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems

Poland institutions and individuals targeted by an unprecedented series of cyber attacks

APT28 relies on PowerPoint Mouseover to deliver Graphite malware

Hackers targeted the US Census Bureau network, DHS report warns

China-linked APT Volt Typhoon linked to KV-Botnet

DinodasRAT Linux variant targets users worldwide

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities

FBI chief says China is preparing to attack US critical infrastructure

Exclusive, Ghost Squad Hackers defaced European Space Agency (ESA) site

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

Stay Connected