Document and Government - Information Management Today

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Security experts from Cyble found alleged sensitive documents of NATO and Turkey, is it a case of cyber hacktivism or cyber espionage? Also, in September 2020, it was reported that Russian hackers targeted government agencies in NATO member countries, and nations who cooperate with NATO -> Link.” Pierluigi Paganini.

Military

Military Manufacturing Phishing Government

Chinese Hacking Contractor iSoon Leaks Internal Documents

Data Breach Today

FEBRUARY 20, 2024

Company Mainly Hacked for the Ministry of Public Security An apparent leak of internal documents from a Chinese hacking contractor paints a picture of a disaffected, poorly paid workforce that nonetheless penetrated multiple regional governments and possibly NATO.

Information Security

Information Security Government Security

A data leak exposes the operations of the Chinese private firm TopSec, which provides Censorship-as-a-Service

Security Affairs

FEBRUARY 24, 2025

TopSec was founded in 1995, it offers cybersecurity services such as Endpoint Detection and Response (EDR) and vulnerability scanning, along with “boutique” solutions to align with government initiatives and intelligence requirements. ” reads the report published by SentinelLabs.

Cybersecurity

Cybersecurity Government Cloud Security

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Classified NATO documents sold on darkweb after they were stolen from Portugal

Security Affairs

SEPTEMBER 9, 2022

Threat actors claimed to have stolen classified NATO documents from the Armed Forces General Staff agency of Portugal (EMGFA). “It was a cyberattack prolonged in time and undetectable , through bots programmed to detect this type of documents, which were later removed in several stages”, explained one of these sources. .

Military

Military Sales Data breaches Cybersecurity

FBI deleted China-linked PlugX malware from over 4,200 US computers

Security Affairs

JANUARY 14, 2025

According to court documents, the Chinese government paid Mustang Panda to develop PlugX malware, used since 2014 to target U.S., The malware was operated by a China-linked threat actor, known as Mustang Panda (aka Twill Typhoon, to steal sensitive information from victim computers. European, and Asian entities. systems. .”

Government

Government Cybersecurity Access IT

U.S. CISA: hackers breached a state government organization

Security Affairs

FEBRUARY 16, 2024

CISA revealed that threat actors breached an unnamed state government organization via an administrator account belonging to a former employee. The government experts conducted an incident response assessment of the state government organization after its documents were posted on the dark web.

Government

Government Authentication Cybersecurity Data breaches

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia

Security Affairs

MAY 1, 2024

NSA employee has been sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia. Dalke pleaded guilty to six counts of attempting to transmit classified documents to a foreign agent while he was working at the NSA. A former U.S.

Encryption

Encryption Government Security Access

China-Linked BRONZE PRESIDENT APT targets Government officials worldwide

Security Affairs

SEPTEMBER 10, 2022

China-linked BRONZE PRESIDENT group is targeting government officials in Europe, the Middle East, and South America with PlugX malware. Secureworks researchers reported that China-linked APT group BRONZE PRESIDENT conducted a new campaign aimed at government officials in Europe, the Middle East, and South America with the PlugX malware.

Government

Government Archiving Metadata Encryption

Estonia ‘s police arrested a Tallin resident who stole 286K ID scans from a government DB

Security Affairs

JULY 30, 2021

Estonia ‘s police arrested a man from Tallinn that is suspected to be the hacker who stole 286K ID scans from the government systems. Estonian police arrested a man from Tallinn that is suspected to have stolen 286,438 belonging to Estonians citizens from the government systems. or take a new document photo.

Government

Government Access Sales Personal data

Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns

Security Affairs

APRIL 27, 2020

The Israeli government has issued an alert to organizations in the water sector following a series of cyberattacks that targeted the water facilities. ” reads the alert issued by the Israeli government. The post Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns appeared first on Security Affairs.

Energy and Utilities

Energy and Utilities Government Passwords Ransomware

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Security Affairs

MARCH 28, 2024

Out of the eight in-the-wild zero-day issues targeting Chrome in 2023, none of the vulnerabilities impacted the Document Object Model (DOM) and there were use-after-free issues. “In 2023 there were no use-after-free vulnerabilities exploited in Chrome for the first time since we began seeing Chrome zero days in-the-wild.

Government

Government Ransomware Libraries Access

Unknown APT group is targeting Russian government entities

Security Affairs

MAY 25, 2022

An unknown APT group is targeting Russian government entities since the beginning of the Russian invasion of Ukraine. The post Unknown APT group is targeting Russian government entities appeared first on Security Affairs. exe for its malware. Experts attributed the attacks, with low confidence, to a China-linked APT group.

Government

Government Phishing Archiving Cybersecurity

Ex Twitter employee found guilty of spying for Saudi Arabian government

Security Affairs

AUGUST 10, 2022

In November 2019, the former Twitter employees Abouammo and the Saudi citizen Ali Alzabarah have been charged with spying on thousands of Twitter user accounts on behalf of the Saudi Arabian government. The two former Twitter employees operated for the Saudi Arabian government with the intent of unmasking dissidents using the social network.

Government

Government Marketing Access IT

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

The US government declared that Russia-linked APT group Energetic Bear has breached US government networks and exfiltrated data. state, local, territorial, and tribal (SLTT) government networks, as well as aviation networks. . This joint advisory provides information on Russia-linked APT actor activity targeting various U.S.

Government

Government Passwords Access Cybersecurity

Awaken Likho APT group targets Russian government with a new implant

Security Affairs

OCTOBER 9, 2024

A threat actor tracked as Awaken Likho is targeting Russian government agencies and industrial entities, reported cybersecurity firm Kaspersky. The threat actor continues to target Russian government entities and enterprises.

Government

Government Archiving Phishing Access

NSO Group, Positive Technologies and other firms sanctioned by the US government

Security Affairs

NOVEMBER 3, 2021

” reads the PUBLIC INSPECTION DOCUMENT published by the Federal Register. In April, US Government accused the Russian cybersecurity firm Positive Technologies of providing support to the cyber operations carried out by Russian Intelligence Services. . “Pursuant to § 744.11(b) national security or foreign policy interests.”

Government

Government Sales Cybersecurity Security

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

Evidence, including the spywares installation during BIA interviews, attributes these surveillance campaigns with high confidence to the BIA and Serbian government. Serbian authorities also extensively and illegitimately used the Cellebrite extraction suite to download personal data from the phones of journalists and protest organizers.

Personal data

Personal data Encryption Security Privacy

Russian government claims to have dismantled REvil ransomware gang

Security Affairs

JANUARY 14, 2022

The FSB of Russia established the full composition of the REvil criminal community and the involvement of its members in the illegal circulation of means of payment, and documented illegal activities.” The post Russian government claims to have dismantled REvil ransomware gang appeared first on Security Affairs.

Ransomware

Ransomware Government Encryption Security

Information Governance: It’s What you Retain that Matters

AIIM

APRIL 11, 2024

It’s funny how corporate leaders get serious about information governance right after their company has been hit with a lawsuit or regulatory action. But that’s usually when many executives decide it's time to implement information governance and in particular, document retention. OK, it’s not funny at all.

Information governance

Information governance Government IT

China-linked APT Sharp Panda targets government entities in Southeast Asia

Security Affairs

MARCH 8, 2023

China-linked APT group Sharp Panda targets high-profile government entities in Southeast Asia with the Soul modular framework. CheckPoint researchers observed in late 2022, a campaign attributed to the China-linked APT group Sharp Panda that is targeting a high-profile government entity in the Southeast Asia.

Government

Government Communications Phishing IT

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

Spanish Police arrested an unnamed hacker who allegedly breached tens of government institutions in Spain and the US. Spanish National Police arrested a hacker responsible for multiple cyberattacks on government institutions in Spain and the U.S. Targe including the U.S. Army, UN, NATO, and other agencies.

Data breaches

Data breaches Information Security Government Access

Anonymous leaked 28GB of data stolen from the Central Bank of Russia

Security Affairs

MARCH 25, 2022

This week the Anonymous hacker collective claims to have hacked the Central Bank of Russia and stole accessed 35,000 documents. The group of hacktivists announced that will leak the stolen documents in 48 hours. The group plans to distribute the stolen documents to various points of the internet to prevent that they are censored.

Government

Government Authentication Cloud Access

Ukraine’s GUR hacked the Russian Ministry of Defense

Security Affairs

MARCH 4, 2024

The Main Intelligence Directorate (GUR) of Ukraine’s Ministry of Defense announced it had breached the Russian Ministry of Defense servers as part of a special operation, and exfiltrated confidential documents. Rosaviatsia is the government agency responsible for the oversight and regulation of civil aviation in Russia.

Military

Military Data breaches Encryption Government

US Government Says Relying on Chinese Lithium Batteries Is Too Risky

WIRED Threat Level

OCTOBER 21, 2024

A new document shows the Department of Homeland Security is concerned that Chinese investment in lithium batteries to power energy grids will make them a threat to US supply chain security.

Government

Government Security

Secretive White House Surveillance Program Gives Cops Access to Trillions of US Phone Records

WIRED Threat Level

NOVEMBER 20, 2023

A WIRED analysis of leaked police documents verifies that a secretive government program is allowing federal, state, and local law enforcement to access phone records of Americans who are not suspected of a crime.

Access

Access Government Privacy Security

Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities

Security Affairs

FEBRUARY 26, 2024

Recently the leak of a collection of files apparently stolen from the Chinese government hacking contractor, I-Soon, exposed Chinese hacking capabilities. i-SOON is a prominent contractor for various agencies of the Chinese government, including Ministry of Public Security, Ministry of State Security, and the People’s Liberation Army.

Government

Government Marketing IoT Data breaches

LockBit 3.0 gang claims to have stolen data from Kearney & Company

Security Affairs

NOVEMBER 6, 2022

Kearney is the premier CPA firm that services across the financial management spectrum to government entities. The company provides audit, consulting and IT services to the United States government. It has helped the Federal Government improve its financial operations’ overall effectiveness and efficiency.

Ransomware

Ransomware Government IT Security

Chinese SharpPanda APT developed a new backdoor in the last 3 years

Security Affairs

JUNE 6, 2021

Check Point Research (CPR) said that the Chinese APT group SharpPanda spent three years developing a new backdoor to spy on Asian governments. . The spear-phishing messages impersonate departments of the targeted governments. . In some cases, the emails are spoofed to look like they were from other government-related entities.

Phishing

Phishing Encryption Government IT

Poland institutions and individuals targeted by an unprecedented series of cyber attacks

Security Affairs

JUNE 16, 2021

Poland ‘s government announced that it was targeted by an ‘Unprecedented’ series of cyber attacks, hackers hit against institutions and individuals. Mateusz Morawiecki had to provide details about the attacks presenting secret documents related to attacks, as anticipated by government spokesman Piotr Muller.

Metadata

Metadata Government Phishing Communications

North Korea-linked APT37 targets South with RokRat Trojan

Security Affairs

JANUARY 7, 2021

Experts spotted the RokRat Trojan being used by North Korea-linked threat actors in attacks aimed at the South Korean government. On December 7 2020 researchers from Malwarebytes uncovered a campaign targeting the South Korean government with a variant of the RokRat RAT. ” reads the post published by Malwarebytes.

Phishing

Phishing Government Encryption Access

Gamaredon group uses a new Outlook tool to spread malware

Security Affairs

JUNE 12, 2020

Russia-linked Gamaredon APT use a new module for Microsoft Outlook that creates custom emails with malicious documents and sends them to a victim’s contacts. The group targeted government and military organizations in Ukraine. The VBA code builds the email body and attaches the malicious document to the email in both .docx

Military

Military Phishing Government IT

Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration.

Security Affairs

MARCH 8, 2024

The ransomware attack on Xplain impacted tens of thousands Federal government files, said the National Cyber Security Centre (NCSC) of Switzerland. Xplain provides its services to several federal and cantonal government departments, the army, customs, and the Federal Office of Police (Fedpol). Threat actors stole and leaked roughly 1.3

Ransomware

Ransomware Data breaches Unstructured data Personal data

Anonymous hit Russian Nuclear Institute and leak stolen data

Security Affairs

FEBRUARY 28, 2022

Anonymous and numerous hacker groups linked to the popular collective continue to launch cyber attacks against Russian and Belarussian government organizations and private businesses. In the last few days massive DDoS attacks have taken offline numerous websites of Russian government entities, including the Duma and Ministry of Defense.

Government

Government Security IT Information Security

Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks

Security Affairs

MARCH 7, 2021

Jauniskis explained that the Russian government is using military and economic means to carry out its operation, including disinformation campaigns. In the last years, security experts documented multiple hacking and disinformation campaigns, attributed to Russia-linked APT groups, that targeted Lithuania, Estonia , and Latvia.

Military

Military Government Security IT

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The CISA agency is warning of a surge in Emotet attacks targeting multiple state and local governments in the US since August. The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert to warn of a surge of Emotet attacks that have targeted multiple state and local governments in the U.S. since August.

Government

Government Libraries Cybersecurity Phishing

Maze Ransomware operators hacked Highways Authority Of India (Nhai)

Security Affairs

JULY 2, 2020

The National Highways Authority of India (NHAI) is an autonomous agency of the Government of India, set up in 1988, and is responsible for the management of a network of over 50,000 km of National Highways out of 1,15,000 km in India. The Maze ransomware operators allegedly breached the NHAI and leaked the data of their leak site.

Ransomware

Ransomware Government Phishing Security

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement.

Government

Government Military Financial Services Security

APT28 relies on PowerPoint Mouseover to deliver Graphite malware

Security Affairs

SEPTEMBER 29, 2022

The Russia-linked APT28 group is using mouse movement in decoy Microsoft PowerPoint documents to distribute malware. The Russia-linked APT28 employed a technique relying on mouse movement in decoy Microsoft PowerPoint documents to deploy malware, researchers from Cluster25 reported. ” reads the analysis published by Cluster25.

Metadata

Metadata Communications Government IT

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. Threat actors first compromised the Westech’s network, then stole the documents before encrypting them. The LGM-30 Minuteman is a U.S.

Military

Military Ransomware Encryption Risk

MuddyWater has been spotted targeting two Israeli entities

Security Affairs

NOVEMBER 3, 2023

“It contains hidden files, an LNK file that initiates the infection, and an executable file designed to unhide a decoy document while executing Advanced Monitoring Agent , a remote administration tool.” The threat actors used an official memo from the Israeli Civil Service Commission as a decoy document.

Archiving

Archiving Phishing Government IT

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

Security Affairs

FEBRUARY 15, 2024

. “These crimes included vast spearphishing and similar credential harvesting campaigns against targets of intelligence interest to the Russian government, such as U.S. and foreign governments and military, security, and corporate organizations. The US government operation blocked access to the routers by Russian cyberspies.

Military

Military Government Access Cybersecurity

NATO is checking its systems to determine the impact of SolarWinds hack

Security Affairs

DECEMBER 19, 2020

NATO announced it is assessing its systems after the SolarWinds supply chain attack that impacted multiple US government agencies. SolarWinds confirmed that up to 18,000 customers , including government agencies and Fortune 500 companies, were impacted by the attack. government is a significant client of SolarWinds.

IT

IT Government Marketing Risk

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Security Affairs

MARCH 5, 2022

Anonymous announced to have hacked more than 2,500 websites linked to the Russian and Belarusian governments, state-owned media outlets spreading disinformation, Russian private organizations, banks, hospitals, airports. JUST IN: #Anonymous leaks database of the Russian Government website [ [link] ].

Passwords

Passwords Government Military Authentication

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

A British court has rejected the request of the US government to extradite Wikileaks founder Julian Assange to the country. government will likely appeal the decision. He published thousands of classified diplomatic and military documents on WikiLeaks in 2010. link] — Freedom of the Press (@FreedomofPress) January 4, 2021.

Military

Military Government Risk Passwords

Researchers found alleged sensitive documents of NATO and Turkey

Chinese Hacking Contractor iSoon Leaks Internal Documents

Webinars

Trending Sources

A data leak exposes the operations of the Chinese private firm TopSec, which provides Censorship-as-a-Service

Webinars

Classified NATO documents sold on darkweb after they were stolen from Portugal

FBI deleted China-linked PlugX malware from over 4,200 US computers

U.S. CISA: hackers breached a state government organization

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia

China-Linked BRONZE PRESIDENT APT targets Government officials worldwide

Estonia ‘s police arrested a Tallin resident who stole 286K ID scans from a government DB

Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Unknown APT group is targeting Russian government entities

Ex Twitter employee found guilty of spying for Saudi Arabian government

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Awaken Likho APT group targets Russian government with a new implant

NSO Group, Positive Technologies and other firms sanctioned by the US government

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Russian government claims to have dismantled REvil ransomware gang

Information Governance: It’s What you Retain that Matters

China-linked APT Sharp Panda targets government entities in Southeast Asia

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Anonymous leaked 28GB of data stolen from the Central Bank of Russia

Ukraine’s GUR hacked the Russian Ministry of Defense

US Government Says Relying on Chinese Lithium Batteries Is Too Risky

Secretive White House Surveillance Program Gives Cops Access to Trillions of US Phone Records

Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities

LockBit 3.0 gang claims to have stolen data from Kearney & Company

Chinese SharpPanda APT developed a new backdoor in the last 3 years

Poland institutions and individuals targeted by an unprecedented series of cyber attacks

North Korea-linked APT37 targets South with RokRat Trojan

Gamaredon group uses a new Outlook tool to spread malware

Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration.

Anonymous hit Russian Nuclear Institute and leak stolen data

Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks

CISA alert warns of Emotet attacks on US govt entities

Maze Ransomware operators hacked Highways Authority Of India (Nhai)

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

APT28 relies on PowerPoint Mouseover to deliver Graphite malware

Maze ransomware operators stole data from US military contractor Westech

MuddyWater has been spotted targeting two Israeli entities

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

NATO is checking its systems to determine the impact of SolarWinds hack

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

British Court rejects the US’s request to extradite Julian Assange

Stay Connected