Communications, Government and Military - Information Management Today

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Security Affairs

SEPTEMBER 20, 2024

Ukraine’s NCCC banned the Telegram app for government agencies, military, and critical infrastructure, due to national security concerns. ” Despite the ban on military and government devices, Ukrainian users rely heavily on Telegram to communicate and receive news on ongoing conflicts. .”

Military

Military Government Personal data Phishing

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Security Affairs

DECEMBER 12, 2023

The Ukrainian government’s military intelligence service announced the hack of the Russian Federal Taxation Service (FNS). The military intelligence service said that the hack was the result of a successful special operation on the territory of Russia. “As a result of the cyber attack, all servers received malware.

Military

Military Government Communications IT

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

In mid-January, the government of Kyiv attributed the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151. In November 2021, Mandiant Threat Intelligence researchers linked the Ghostwriter disinformation campaign (aka UNC1151) to the government of Belarus. reads a translation of the message.

Military

Military Phishing CMS Government

Germany and the Netherlands agreded to build TEN, the first ever joint military internet

Security Affairs

JUNE 30, 2019

The governments of Germany and The Netherlands agreed to build the first-ever joint military Internet, so-called TEN (Tactical Edge Networking). Government officials from Germany and the Netherlands signed an agreement for the building of the first-ever joint military Internet, so-called TEN (Tactical Edge Networking).

Military

Military Computer and Electronics Communications Government

Ukraine: Military defense agencies and banks hit by cyberattacks

Security Affairs

FEBRUARY 15, 2022

” reads the statement published by Ukraine’s State Service for Special Communication and Information Protection. Threat actors aim at destabilizing the social contest in the country and instilling fear and untrust in the country’s government. “As of 19:30, the work of banking web resources has been resumed.

Military

Military Communications Information Security Access

GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion

The Last Watchdog

OCTOBER 10, 2023

Accessing video-based intelligence at the right time and place is a very effective method for gaining information about the constantly changing military landscape. Value of protocols Technological innovations have widely been credited for helping Ukraine even the odds against Russia’s military might.

Metadata

Metadata Military Encryption Communications

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. Yet, there’s still work to be done to make this path more accessible and known among the veteran and transitioning military community. Veterans have the characteristics that make them ideal for these roles.

Cybersecurity

Cybersecurity Military Education Government

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Ransomware

Ransomware Government Military Encryption

Anonymous continues to support Ukraine against the Russia

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. Let’s summarize the most interesting attacks observed in the last few days.

Military

Military Communications Government Access

Ukraine’s SBU arrested a member of Pro-Russia hackers group ‘Cyber Army of Russia’

Security Affairs

JANUARY 29, 2024

The hacktivists group is known for having launched DDoS attacks against Western organizations and Ukrainian government agencies. The information secretly provided to Moscow includes military secrets such as the locations of Ukrainian troops and military weaponry in the country. The news was first reported by The Record Media.

Military

Military Communications Government Security

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Data Matters

DECEMBER 9, 2021

The Proposed Rule would bring “connected software applications” into the scope of Commerce’s authority to review certain transactions involving information and communications technology and services (ICTS) in the U.S. supply chain and approve or prohibit such transactions or require mitigating measures. The risk factors include.

Communications

Communications Manufacturing Data collection Risk

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. In Mid January the Ukrainian government was hit with destructive malware, tracked as WhisperGate , and several Ukrainian government websites were defaced by exploiting a separate vulnerability in OctoberCMS.

Government

Government Military Phishing Information Security

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

The Platinum cyber espionage group uses steganographic technique to hide communications with the Command and Control Servers (C&C). Experts from Kaspersky have linked the Platinum APT group with cyber attacks involving an elaborate, and new steganographic technique used to hide communications with C2 servers. Pierluigi Paganini.

Communications

Communications Encryption Military Government

Russian APT Gamaredon uses USB worm LitterDrifter against Ukraine

Security Affairs

NOVEMBER 18, 2023

The Gamaredon APT group continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. The LitterDrifter worm is written in VBS, it supports two main features: automatic USB propagating and communication with a broad, flexible set of C2.

Military

Military Communications IT Government

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

Security Affairs

MAY 23, 2024

A previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ has been targeting military and government entities since 2018. Our investigation also uncovered two additional variations that utilize cloud storage services for communication instead of direct HTTP requests.

Archiving

Archiving Military Communications Phishing

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Security Affairs

NOVEMBER 2, 2024

Sophos, with the help of other cybersecurity firms, government, and law enforcement agencies investigated the cyber attacks and attributed them multiple China-linked APT groups, such as Volt Typhoon , APT31 and APT41 / Winnti. Researchers observed the attackers monitoring network communications and stealing credentials from the victims.

Government

Government Access Military Cloud

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. These targets suggest the group is likely interested in gathering intelligence on military technology and defense” reads the report published by the Insikt Group.

Military

Military Mining Government Communications

U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

Krebs on Security

DECEMBER 14, 2020

Communications at the U.S. Treasury and Commerce Departments were reportedly compromised by a supply chain attack on SolarWinds , a security vendor that helps the federal government and a range of Fortune 500 companies monitor the health of their IT networks. Fortune 500. all ten of the top ten US telecommunications companies.

Military

Military Government Cybersecurity Security

Critical Vulnerabilities in GPS Trackers

Schneier on Security

JULY 21, 2022

BitSight found the device in use in 169 countries, with customers including governments, militaries, law enforcement agencies, and aerospace, shipping, and manufacturing companies. BitSight discovered what it said were six “severe” vulnerabilities in the device that allow for a host of possible attacks.

Manufacturing

Manufacturing Military Communications Authentication

Vulnerabilities in Weapons Systems

Schneier on Security

JUNE 8, 2021

Our military systems are vulnerable. We need to face that reality by halting the purchase of insecure weapons and support systems and by incorporating the realities of offensive cyberattacks into our military planning. Over the past decade, militaries have established cyber commands and developed cyberwar doctrine.

Military

Military Cybersecurity Communications Manufacturing

Classified NATO documents sold on darkweb after they were stolen from Portugal

Security Affairs

SEPTEMBER 9, 2022

The Armed Forces General Staff (Portuguese: Estado-Maior-General das Forças Armadas), or EMGFA, is the supreme military body of Portugal. According to the initial investigation, the documents were exfiltrated from systems in the EMGFA, in the secret military (CISMIL) and in the General Directorate of National Defense Resources.

Military

Military Sales Data breaches Cybersecurity

Russia-linked APT28 hacked Roundcube email servers of Ukrainian entities

Security Affairs

JUNE 21, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. According to CERT-UA, this campaign targeted more than 40 Ukrainian organizations, including government entities.

Military

Military Phishing Government Communications

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. Click to enlarge. PEACE HOSTING?

Cloud

Cloud Education Government Phishing

Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months

Security Affairs

AUGUST 29, 2023

The intruders China-linked hackers may have gained access to sensitive data, according to three government and private sector sources familiar with the situation, reported the Financial Times. NISC disclosed a potential security breach involving personal data associated with email communications. ” reported the Financial Times.

Cybersecurity

Cybersecurity Military Personal data Government

The U.S. FCC considers Huawei and ZTE as national security threats

Security Affairs

JULY 1, 2020

Federal Communications Commission (FCC) announced that Chinese telecommunications giants Huawei and ZTE are considered as national security threats. Last week China accused the US government of “oppressing Chinese companies” after U.S. regulators declared Huawei and ZTE to be national security threats. In November 2019, the U.S.

Communications

Communications Security Government Military

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Nation-state malware could become a commodity on dark web soon, Interpol warns

Security Affairs

MAY 24, 2022

Threat actors could perform reverse engineering of military-made malicious code and use their own versions in attacks in the wild. “The same applies for the digital weapons that, maybe today are used by the military, developed by military, and tomorrow will be available for criminals,” he explained. .

Military

Military Government Communications Security

Catches of the Month: Phishing Scams for March 2022

IT Governance

MARCH 8, 2022

The Ukrainian government and its military were targeted by DDoS (distributed denial-of-service) attacks, while a pro-Ukrainian group attacked the Belarusian railway system with ransomware after discovering that it was being used by Russia to transport tanks and weapons. Get started.

Phishing

Phishing Military Access Education

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Security Affairs

AUGUST 7, 2023

NPO Mashinostroyeniya (JSC MIC Mashinostroyenia, NPO Mash) is a leading Russian manufacturer of missiles and military spacecraft. Treasury Department in July 2014 due to its support to the Russian government in attempting of destabilizing eastern Ukraine and its ongoing occupation of Crimea. The Russian firm was sanctioned by the U.S.

Military

Military Communications Manufacturing Phishing

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 16, 2024

Japanese video-sharing platform Niconico was victim of a cyber attack UK NHS call for O-type blood donations following ransomware attack on London hospitals Christie’s data breach impacted 45,798 individuals Sticky Werewolf targets the aviation industry in Russia and Belarus Frontier Communications data breach impacted over 750,000 individuals PHP (..)

Data breaches

Data breaches Security Ransomware Sales

The Post-Quantum Cryptography Algorithms are finalized! Now what?

Thales Cloud Protection & Licensing

AUGUST 13, 2024

Broadly speaking this research can be grouped into 3 different categories: 1) quantum sensors, 2) quantum communications, and 3) post-quantum cryptography. 2) Quantum Communications Quantum technologies are set to directly impact the speed and scale of digital communications.

Computer and Electronics

Computer and Electronics Encryption Communications Military

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

In recent years, the researchers observed the group expanding its operations to include financial institutions and government entities. PingPull, was first spotted by Unit 42 in June 2022, the researchers defined the RAT as a “difficult-to-detect” backdoor that leverages the Internet Control Message Protocol (ICMP) for C2 communications.

Communications

Communications Military Government Libraries

The Myth of Consumer-Grade Security

Schneier on Security

AUGUST 28, 2019

Barr repeated a common fallacy about a difference between military-grade encryption and consumer encryption: "After all, we are not talking about protecting the nation's nuclear launch codes. The thing is, that distinction between military and consumer products largely doesn't exist.

Military

Military Computer and Electronics Encryption Security

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

The SSU has managed to identify the perpetrators’ names, intercept their communication and obtain irrefutable evidence of their involvement in the attacks. The group targeted government and military organizations in Ukraine. 5 members of the group have been notified of suspicion of treason.”

Military

Military Metadata Government Passwords

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Access

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

The Last Watchdog

SEPTEMBER 21, 2023

The program also commits to providing free training for transitioning military, first responders, veterans, military spouses, women, underrepresented minorities, and government personnel. Media Contact: Mackie Hill, Marketing and Communications Manager, MxD, mackie.hill@mxdusa.org 312.281.6872 manufacturing.

Cybersecurity

Cybersecurity Manufacturing Military Artificial Intelligence

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

Security Affairs

AUGUST 6, 2024

According to the South Korean authorities, the government of Pyongyang’s goal is to steal intellectual property and trade secrets from the South. The attack aimed at infecting PCs belonging to personnel from local governments, public institutions, and construction companies who accessed the site.

Information capture

Information capture Authentication Military Government

Asylum Ambuscade spear-phishing campaign targets EU countries aiding Ukrainian refugees

Security Affairs

MARCH 2, 2022

A spear-phishing campaign, tracked as Asylum Ambuscade, targets European government personnel aiding Ukrainian refugees. ” Since Russia’s invasion of Ukraine, the Ghostwriter APT group has launched , multiple attacks against the private email accounts of Ukrainian military personnel. .

Phishing

Phishing Military Government Communications

Russia-linked APT28 targets govt bodies with fake NATO training docs

Security Affairs

SEPTEMBER 23, 2020

Russia-linked cyberespionage group APT28 uses fake NATO training documents as bait in attacks aimed at government bodies. The Russia-linked cyberespionage group APT28 is behind a string of attacks that targeting government bodies with Zebrocy Delphi malware. ” reads the report published QuoIntelligence.

Military

Military Government Encryption Communications

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

Security Affairs

AUGUST 27, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Authentication Access

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Trending Sources

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Germany and the Netherlands agreded to build TEN, the first ever joint military internet

Ukraine: Military defense agencies and banks hit by cyberattacks

GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Anonymous continues to support Ukraine against the Russia

Ukraine’s SBU arrested a member of Pro-Russia hackers group ‘Cyber Army of Russia’

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Platinum APT and leverages steganography to hide C2 communications

Russian APT Gamaredon uses USB worm LitterDrifter against Ukraine

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

Critical Vulnerabilities in GPS Trackers

Vulnerabilities in Weapons Systems

Classified NATO documents sold on darkweb after they were stolen from Portugal

Russia-linked APT28 hacked Roundcube email servers of Ukrainian entities

Stark Industries Solutions: An Iron Hammer in the Cloud

Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months

The U.S. FCC considers Huawei and ZTE as national security threats

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Nation-state malware could become a commodity on dark web soon, Interpol warns

Catches of the Month: Phishing Scams for March 2022

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

The Post-Quantum Cryptography Algorithms are finalized! Now what?

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

The Myth of Consumer-Grade Security

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

FBI chief says China is preparing to attack US critical infrastructure

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

Asylum Ambuscade spear-phishing campaign targets EU countries aiding Ukrainian refugees

Russia-linked APT28 targets govt bodies with fake NATO training docs

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

Stay Connected