Communications, Government and Manufacturing - Information Management Today

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

According to Microsoft, the campaign aimed at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

e-Discovery

e-Discovery Communications Ransomware Government

UK urges to disconnect Chinese security cameras in government buildings

Security Affairs

NOVEMBER 24, 2022

The British government banned the installation of Chinese-linked security cameras at sensitive facilities due to security risks. Reuters reports that the British government ordered its departments to stop installing Chinese security cameras at sensitive buildings due to security risks. Federal Communications Commission (FCC).

Government

Government Security Risk Manufacturing

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. exe, and rundll32.exe.

Government

Government Communications Ransomware Manufacturing

Webinars

Going Beyond Chatbots: Connecting AI to Your Tools, Systems, & Data

Automation, Evolved: Your New Playbook for Smarter Knowledge Work

MORE WEBINARS

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Security Affairs

SEPTEMBER 26, 2021

German Federal Office for Information Security (BSI) is launching an investigation into the cybersecurity of mobile phones of certain Chinese manufacturers. Lithuanian government experts have analyzed three specific smartphone models, the Huawei P40 5G, the Xiaomi Mi 10T 5G and the OnePlus 8T 5G. reads the reply of Xiaomi.

Information Security

Information Security Manufacturing Security Communications

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4

Security

Security Manufacturing Passwords Ransomware

US officials claim Huawei Equipment has secret backdoor for spying

Security Affairs

FEBRUARY 13, 2020

Huawei can secretly tap into communications through the networking equipment, states a U.S. In November 2018, the Wall Street Journal reported that the US Government was urging its allies to exclude Huawei from critical infrastructure and 5G architectures. official , while White House urge allies to ban the Chinese giant. “U.S.

Manufacturing

Manufacturing Access Government Communications

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

After looking at 28 of the most popular manufacturers, our research team found 3.5 What is more, the overwhelming majority of internet-facing cameras are manufactured by Chinese companies. Most of the public-facing cameras we discovered are manufactured by the Chinese company Hikvision: the Cybernews research team found over 3.37

Passwords

Passwords Manufacturing Authentication Government

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

Security Affairs

AUGUST 8, 2024

The BlackSuit ransomware has targeted various critical infrastructure sectors, including commercial facilities, healthcare, government, and manufacturing. Historically, Royal actors were observed leveraging Chisel , Secure Shell (SSH) client, PuTTY, OpenSSH, and MobaXterm for C2 communications.

Ransomware

Ransomware Communications Manufacturing Phishing

The City of Durham shut down its network after Ryuk Ransomware attack

Security Affairs

MARCH 8, 2020

“IT officials are working to get the communication systems back online.” The list of the victims of the Ryuk ransomware is very long and includes the US government contractor Electronic Warfare Associates (EWA) , US railroad company Railworks , Croatian petrol station chain INA Group , and parts manufacturer Visser Precision.

Ransomware

Ransomware IT Computer and Electronics Mining

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Security Affairs

MAY 16, 2021

The Avaddon ransomware gang is giving Acer Finance 240 hours to communicate and cooperate with them before start leaking the stolen valuable company documents. The Company offers risk management, mutual funds, analysis, financial planning, and advisory services. ” reads the statement published by the group on its leak site.

Ransomware

Ransomware Manufacturing Communications Risk

Hackers target German Task Force for COVID-19 PPE procurement

Security Affairs

JUNE 9, 2020

Hackers are targeting executives of a German multinational corporation involved in the government supply of personal protective equipment (PPE) against COVID-19. Hackers are targeting executives of a German multinational corporation involved in the government supply of personal protective equipment (PPE).

Phishing

Phishing Healthcare Manufacturing Government

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

According to Microsoft, the campaign aimed at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

Communications

Communications Manufacturing Education Government

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Security Affairs

DECEMBER 4, 2021

. “The FBI has identified, as of early November 2021 that Cuba ransomware actors have compromised at least 49 entities in five critical infrastructure sectors, including but not limited to the financial, government, healthcare, manufacturing, and information technology sectors.” ” states the alert.

Ransomware

Ransomware Encryption Communications Manufacturing

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Major Belgium’s telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. One of the major Belgium telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei.

Manufacturing

Manufacturing Risk Communications Security

US offers $10 million reward for info on Hive ransomware group leaders

Security Affairs

FEBRUARY 8, 2024

Government offers rewards of up to $10 million for information that could help locate, identify, or arrest members of the Hive ransomware group. The US Department of State announced rewards up to $10,000,000 for information leading to the identification and/or location of the leaders of the Hive ransomware group.

Ransomware

Ransomware Blockchain Manufacturing Analytics

The US Gov is testing high-altitude balloons for surveillance

Security Affairs

AUGUST 4, 2019

The US government is testing high-altitude balloons manufactured by Sierra Nevada to conduct surveillance over American soil. The US government is planning to use high-altitude balloons to conduct surveillance over Americans. ” states The Guardian. ” states the authorization. . ” states the authorization.

Military

Military Manufacturing Communications Government

UK NCSC releases the Vulnerability Disclosure Toolkit

Security Affairs

SEPTEMBER 15, 2020

The guideline is organized into three main sections, Communication, Policy, and Security.txt. The process for communicating a vulnerability must be clear and well defined, it could be useful to set up a specific path for disclosing the issues (email address or secure web form).

Communications

Communications Risk Manufacturing Government

Coronavirus-themed campaign targets energy sector with PoetRAT

Security Affairs

APRIL 18, 2020

Threat actors employed the previously-undetected PoetRAT Trojan in a Coronavirus-themed campaign aimed at government and energy sectors. . docx,” they claim to be from departments from the Azerbaijan government and India’s Ministry of Defense. . ” reads the analysis published by Cisco Talos.

Energy and Utilities

Energy and Utilities Archiving Phishing Government

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

Security Affairs

FEBRUARY 12, 2023

Australia’s Defense Department announced that they will remove surveillance cameras made by Chinese firms linked to the government of Beijing. Australia’s Defense Department is going to replace surveillance cameras made by Chinese firms Hikvision and Dahua, who are linked to the government of Beijing. ” reported The Guardian. .”

Manufacturing

Manufacturing Government Risk Communications

District Court Finds Communications Decency Act Provides Automotive Device Manufacturer Immunity for Clean Air Act Violations

Data Matters

APRIL 4, 2024

The decision gives effect to the CDA as drafted and will make it significantly harder for the government to hold manufacturers and online retailers liable for content, including software, created and sold by third parties. This decision of first impression offers an important precedent in the automotive industry and beyond.

Manufacturing

Manufacturing Communications Retail Sales

Huawei faces 5G ban from British’s 5G network within months

Security Affairs

JULY 5, 2020

British Prime Minister Boris Johnson is expected to begin phasing out the use of network equipment manufactured by the Chinese tech giant Huawei in the UK’s 5G network as little as six months, The Daily Telegraph reported. ” Early this month, the U.S. The GCHQ report is expected to be presented to Johnson this week.

Risk

Risk Manufacturing Government Communications

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

As a result, you will prevent unauthorized access or communication interception. As an example, we could use communications between systems that are not properly encrypted. Hackers or other malicious sources can intercept poorly encrypted communications on the web. The Flaws in Manufacturing Process. Poor credentials.

IoT

IoT Cybersecurity Passwords Manufacturing

France will not ban Huawei from its upcoming 5G networks

Security Affairs

SEPTEMBER 1, 2020

French President Emmanuel Macron announced that his government will not exclude Chinese telecom giant Huawei from the building of the upcoming 5G telecommunication networks. It’s normal that … we want a European solution” because of the importance of “the security of our communication,” Macron told reporters.

IT

IT Military Manufacturing Risk

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

” PIONEER KITTEN operations leverage on SSH tunneling, through open-source tools such as Ngrok, they also used the custom tool SSHMinion to communication with malware deployed in the target networks. ” continues the report. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Access

Access Financial Services Retail Insurance

New Zealand Security Bureau halts Spark from using Huawei 5G equipment

Security Affairs

DECEMBER 3, 2018

According to New Zealand’s Government Communications Security Bureau, Huawei equipment for 5G infrastructure poses a “significant network security risk,” for this reason, it asked mobile company Spark to avoid using the equipment of the Chinese company. Australian authorities also banned the Chinese firm ZTE Corp.

Security

Security Government Communications Manufacturing

US DoJ indicts Chinese hackers over state-sponsored cyber espionage

Security Affairs

DECEMBER 21, 2018

The US Department of Justice charged two Chinese hackers for hacking numerous companies and government agencies in a dozen countries, US Indicts Two Chinese Government Hackers Over Global Hacking Campaign. Department of Energy’s Lawrence Berkeley National Laboratory. ” continues the DoJ’s Press release.

Computer and Electronics

Computer and Electronics Healthcare Manufacturing Government

China-linked APT used Daxin, one of the most sophisticated backdoor even seen

Security Affairs

MARCH 1, 2022

The malicious code was likely designed for long-running espionage campaigns against government entities and critical infrastructure targets. Daxin also implemented network tunneling to communicate with legitimate services on the target’s network that can be reached from any infected computer. ” continues the analysis.

Communications

Communications Manufacturing Government Risk

Grandoreiro banking malware targets Mexico and Spain

Security Affairs

AUGUST 21, 2022

The campaign began in June 2022 and is still ongoing, the attacks hit organizations in multiple industries, such as Automotive, Chemicals Manufacturing, and others. ” reads the post published by Zscaler. The ZIP archive contains the Grandoreiro Loader module with a PDF Icon in order to lure the victim into opening it.

Archiving

Archiving Phishing Communications Manufacturing

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Access

Australia banned Huawei from 5G network due to security concerns

Security Affairs

AUGUST 25, 2018

The Australian government considers risky the involvement of Huawei for the rolling out of next-generation 5G communication networks. The US was the first country that warned of the security risks associated with the usage of the products manufactured by the Chinese telecommunications giant.

Security

Security Military Manufacturing Retail

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

Security Affairs

APRIL 26, 2023

German government warns that technology to regulate power consumption in Huawei network appliances could be used for sabotage purposes. government officials as well as European security authorities, which have warned of the risks associated with Chinese telecoms equipment.” The activity will be completed in the coming months.

Government

Government Communications Risk Cybersecurity

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

Security Affairs

AUGUST 6, 2024

According to the South Korean authorities, the government of Pyongyang’s goal is to steal intellectual property and trade secrets from the South. The attack aimed at infecting PCs belonging to personnel from local governments, public institutions, and construction companies who accessed the site.

Information capture

Information capture Authentication Military Government

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Security Affairs

SEPTEMBER 16, 2024

Because of these efforts, along with the efforts of others in the industry and national governments to combat the rise of commercial spyware, Defendants have been substantially weakened.” The hacked Israeli ministry of justice communications revealed concerns that sensitive information could be accessed by Americans.

Risk

Risk Government Manufacturing IT

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report. ” concludes the report. .

Energy and Utilities

Energy and Utilities Military Government Phishing

China-linked APT41 group targets Hong Kong with Spyder Loader

Security Affairs

OCTOBER 18, 2022

The attacks detailed by Cybereason targeted technology and manufacturing companies primarily located in East Asia, Western Europe, and North America. Symantec pointed out that the attacks against government organizations in Hong Kong remained undetected for a year in some cases. ” continues the report.

File names

File names Encryption Manufacturing Libraries

China-linked APT likely linked to Fortinet zero-day attacks

Security Affairs

MARCH 17, 2023

An alleged Chinese threat actor group is behind attacks on government organizations exploiting a Fortinet zero-day flaw (CVE-2022-41328). A suspected China-linked group is exploiting a Fortinet zero-day vulnerability, tracked as CVE-2022-41328 , in attacks aimed at government organizations. ” concludes Mandiant.

Manufacturing

Manufacturing Access Government Communications

China-linked APT Volt Typhoon targets critical infrastructure organizations

Security Affairs

MAY 25, 2023

According to Microsoft, the campaign aims at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

Communications

Communications Manufacturing Access Archiving

Chinese APT Group Uses New Tradecraft to Live Off the Land

Data Breach Today

JUNE 26, 2023

Group Targeting Transportation, Construction, Government Agencies, CrowdStrike Says A Chinese state hacker is using novel tradecraft to gain initial access to victim systems, according to CrowdStrike.

Manufacturing

Manufacturing Education Communications Government

French authorities arrested a Russian national for his role in the Hive ransomware operation

Security Affairs

DECEMBER 14, 2023

The authorities reported that from June 2021 through at least November 2022, threat actors targeted a wide range of businesses and critical infrastructure sectors, including Government Facilities, Communications, Critical Manufacturing, Information Technology, and especially Healthcare and Public Health (HPH).

Ransomware

Ransomware Blockchain Manufacturing Analytics

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

Security Affairs

AUGUST 27, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Authentication Access

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Security Affairs

DECEMBER 12, 2023

Two of these malware strains are remote access trojans (RATs), respectively tracked as NineRAT and “DLRAT” The former relies on Telegram bots and channels for C2 communications. The experts observed the use of NineRAT at around September 2023 against a European manufacturing entity.

Agriculture

Agriculture Data collection Access Manufacturing

Vladimir Putin ‘s computers still run Windows XP, Media reports

Security Affairs

DECEMBER 30, 2019

Open Media pointed out that that Windows XP is the last operating system developed by Microsoft that was approved by the Kremlin for use on official Russian government computers. Microsoft Windows 10 is only allowed only for government systems that don’t manage secret information. ” reads the post published by The Guardian.

Government

Government Communications Military Manufacturing

China’s Volt Typhoon botnet has re-emerged

UK urges to disconnect Chinese security cameras in government buildings

Webinars

Trending Sources

Raspberry Robin malware used in attacks against Telecom and Governments

Webinars

German Federal Office for Information Security (BSI) investigates Chinese mobile phones

Security Affairs newsletter Round 377

US officials claim Huawei Equipment has secret backdoor for spying

3.5m IP cameras exposed, with US in the lead

FBI and CISA update a joint advisory on the BlackSuit Ransomware group

The City of Durham shut down its network after Ryuk Ransomware attack

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia

Hackers target German Task Force for COVID-19 PPE procurement

China-linked APT Volt Typhoon linked to KV-Botnet

Cuba ransomware gang hacked 49 US critical infrastructure organizations

Belgium telecom operators Proximus and Orange drop Huawei

US offers $10 million reward for info on Hive ransomware group leaders

The US Gov is testing high-altitude balloons for surveillance

UK NCSC releases the Vulnerability Disclosure Toolkit

Coronavirus-themed campaign targets energy sector with PoetRAT

Australian Defense Department will replace surveillance cameras from Chinese firms Hikvision and Dahua

District Court Finds Communications Decency Act Provides Automotive Device Manufacturer Immunity for Clean Air Act Violations

Huawei faces 5G ban from British’s 5G network within months

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

France will not ban Huawei from its upcoming 5G networks

Iran-linked APT group Pioneer Kitten sells access to hacked networks

New Zealand Security Bureau halts Spark from using Huawei 5G equipment

US DoJ indicts Chinese hackers over state-sponsored cyber espionage

China-linked APT used Daxin, one of the most sophisticated backdoor even seen

Grandoreiro banking malware targets Mexico and Spain

FBI chief says China is preparing to attack US critical infrastructure

Australia banned Huawei from 5G network due to security concerns

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

Apple dismisses lawsuit against surveillance firm NSO Group due to risk of threat intelligence exposure

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

China-linked APT41 group targets Hong Kong with Spyder Loader

China-linked APT likely linked to Fortinet zero-day attacks

China-linked APT Volt Typhoon targets critical infrastructure organizations

Chinese APT Group Uses New Tradecraft to Live Off the Land

French authorities arrested a Russian national for his role in the Hive ransomware operation

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Vladimir Putin ‘s computers still run Windows XP, Media reports

Stay Connected