Education, Government and Information Security - Information Management Today

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. NetSupport RAT is a remote control and desktop management software developed by NetSupport Ltd.

Education

Education Government Business Services Archiving

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

National Cyber Security Centre (NCSC) has issued an alert about a surge in ransomware attacks targeting education institutions. National Cyber Security Centre (NCSC), has issued an alert about a surge in ransomware attacks against education institutions. SecurityAffairs – hacking, education institutions).

Education

Education Ransomware Phishing Encryption

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. Pierluigi Paganini.

Education

Education Government Libraries Mining

Webinars

How to Achieve High-Accuracy Results When Using LLMs

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

A massive DDoS knocked offline Belgian government websites

Security Affairs

MAY 4, 2021

A massive distributed denial of service (DDoS) attack shut down Belgiums’ government websites, internal networks were also impacted. A massive distributed denial of service (DDoS) attack hit most of the Belgium government ’s IT network, according to the media the attack also knocked offline internal systems. Pierluigi Paganini.

Government

Government Education Security IT

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. The malicious code appended the extension .

Education

Education Ransomware Encryption Government

Threat actors defaced Ukrainian government websites

Security Affairs

JANUARY 14, 2022

Threat actors defaced multiple Ukrainian government websites after talks between Ukrainian, US, and Russian officials hit a dead this week. Threat actors have defaced multiple websites of the Ukrainian government on the night between January 13 and January 14. SecurityAffairs – hacking, Ukrainian government websites).

Government

Government CMS Personal data Education

Nation-state actors target Australia, Government warns

Security Affairs

JUNE 19, 2020

A state-based actor is launching cyber attacks against government, public services and businesses, Australia ‘s prime minister said. Australia ‘s prime minister Scott Morrison said that a “state-based actor” is targeting government, public services, and businesses.

Government

Government Risk Education Passwords

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

“According to the indictment, Ptitsyn facilitated the worldwide use of a dangerous ransomware strain to target corporations and various organizations, including government agencies, healthcare facilities, educational institutions, and critical infrastructure.

Ransomware

Ransomware Education Sales Government

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. appeared first on Security Affairs. OwlProxy is a unique and custom tool used by the group.

Government

Government Manufacturing Education Access

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

The US government declared that Russia-linked APT group Energetic Bear has breached US government networks and exfiltrated data. This joint advisory provides information on Russia-linked APT actor activity targeting various U.S. state, local, territorial, and tribal (SLTT) government networks, as well as aviation networks. .

Government

Government Passwords Access Cybersecurity

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” reads the report published by Microsoft Threat Intelligence. “Microsoft assesses with medium confidence that Storm-2372 aligns with Russian interests, victimology, and tradecraft.”

Phishing

Phishing Authentication Access Government

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

Spanish Police arrested an unnamed hacker who allegedly breached tens of government institutions in Spain and the US. Spanish National Police arrested a hacker responsible for multiple cyberattacks on government institutions in Spain and the U.S. Targe including the U.S. Army, UN, NATO, and other agencies.

Data breaches

Data breaches Information Security Government Access

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. “The threat actors accessed and downloaded some personal information from previously used Port systems for employee, contractor, and parking data.

Data breaches

Data breaches Ransomware Manufacturing Education

Ransomware attacks hit 105 US local governments in 2022

Security Affairs

JANUARY 2, 2023

In 2022, ransomware attacks targeted 105 state or municipal governments or agencies in the US, reads a report published by Emsisoft. Below are the attacks reported by Emsisoft: 105 local governments. “When it comes to cybersecurity incidents, it has always been hard to get accurate statistical information.”

Ransomware

Ransomware Government Education Encryption

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Information Governance – 3 Common Pitfalls and How to Avoid Them

AIIM

SEPTEMBER 7, 2021

What is Information Governance, and Why is it Important? There are many benefits to constructing an Information Governance program plan. How to Avoid Information Governance Pitfalls. How to Avoid/Overcome: Overcome this issue by addressing objections directly with good communication and contextual education.

Information governance

Information governance Government Communications Education

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. government neutralized the Volt Typhoon botnet taking over its C2 and deleting the bot from infected devices.

e-Discovery

e-Discovery Communications Ransomware Government

Belgium Interior Ministry said it was hit by a sophisticated cyber attack

Security Affairs

MAY 26, 2021

In early May , a massive distributed denial of service (DDoS) attack hit most of the Belgium government ’s IT network, according to the media the attack also knocked offline internal systems. The websites of the Belgium government and police services were also unavailable.

IT

IT Education Government Communications

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

The fight against cybercrime Government authorities and financial institutions are stepping up efforts to combat cybercrime in the cryptocurrency sector. In addition, cryptocurrency exchange platforms are implementing more stringent security measures, such as two-factor authentication and advanced encryption, to protect users’ funds.

Education

Education Mining Encryption Cybersecurity

Iran-linked group APT33 adds new Tickler malware to its arsenal

Security Affairs

AUGUST 28, 2024

Iran-linked group APT33 used new Tickler malware in attacks against organizations in the government, defense, satellite, oil and gas sectors. The group also relied on social engineering efforts in attacks against organizations in the higher education, satellite, and defense sectors through LinkedIn.

IT

IT Education File names Passwords

ChaChi, a GoLang Trojan used in ransomware attacks on US schools

Security Affairs

JUNE 24, 2021

A new Trojan written in the Go programming language, tracked as ChaChi, was involved in ransomware attacks against government agencies and US schools. The malware was recently employed in attacks against large US schools and education organizations. . The Trojan leverages the gobfuscate GoLang tool for obfuscation. Pierluigi Paganini.

Ransomware

Ransomware Education Cybersecurity Government

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

CISA published an advisory on China-linked groups targeting government agencies by exploiting flaws in Microsoft Exchange, Citrix, Pulse, and F5 systems. CISA published a security advisory warning of a wave of attacks carried out by China-linked APT groups affiliated with China’s Ministry of State Security.

Government

Government Energy and Utilities Healthcare Access

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The victims of the group are “targets of opportunity.” reads the joint advisory.

Ransomware

Ransomware Manufacturing Education Libraries

German BSI warns of 17,000 unpatched Microsoft Exchange servers

Security Affairs

MARCH 30, 2024

The German Federal Office for Information Security (BSI) warned of thousands of Microsoft Exchange servers in the country vulnerable to critical flaws. The BSI also added that there is an unreported number of Exchange servers of comparable size that are potentially vulnerable.

Information Security

Information Security Cybersecurity Education Authentication

Ministry of Defence academy hit by state-sponsored hackers

Security Affairs

MARCH 22, 2021

The Defence Academy of the United Kingdom provides higher education for personnel in the British Armed Forces, Civil Service, other government departments and service personnel from other nations.

Education

Education Military Government IT

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

The majority of intercepted credentials by Agent Tesla related to financial services, online-retailers, e-government systems and personal and business e-mail accounts. . Researchers found active instances of Agent Tesla and developed a mechanism to enumerate the affected clients and extract compromised data.

Financial Services

Financial Services Retail Education Information Security

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

Help us #StopRansomware by visiting [link] pic.twitter.com/G5jpxtB0Fw — Cybersecurity and Infrastructure Security Agency (@CISAgov) June 14, 2023 The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. law enforcement).

Ransomware

Ransomware Cybersecurity Agriculture Education

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

Microsoft has observed APT28 using GooseEgg in post-compromise activities against various targets, including government, non-governmental, education, and transportation sector organizations in Ukraine, Western Europe, and North America. This tool modifies a JavaScript constraints file and executes it with SYSTEM-level permissions.

IT

IT Education Cybersecurity Risk

X will collect biometric data from its premium users

Security Affairs

SEPTEMBER 4, 2023

.” The company told Bloomberg that users can be identified by providing a government ID or a picture for identity matching, or using biometric data. However, the policy doesn’t include any details about the processes that the company will adopt to collect and retain these data.

IT

IT Privacy Education Government

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Microsoft has observed APT28 using GooseEgg in post-compromise activities against various targets, including government, non-governmental, education, and transportation sector organizations in Ukraine, Western Europe, and North America. This tool modifies a JavaScript constraints file and executes it with SYSTEM-level permissions.

Military

Military File names Education Phishing

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. According to the gang’s Tor leak site, at least 62 companies are victims of the operation. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Libraries

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

state privacy laws, the EUs governance of ethical AI deployment, and updated regulations in India and Japan. The SEC Cybersecurity Disclosure Rule highlights transparency in governance. Seara Jose Seara , CEO, DeNexus Recent regulatory updates highlight a shift toward robust cyber risk governance, requiring organizations to adapt.

Compliance

Compliance Cybersecurity Risk Privacy

Akira ransomware received $42M in ransom payments from over 250 victims

Security Affairs

APRIL 21, 2024

Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments. The operators frequently disable security software to evade detection and for lateral movement. It was this first time that the operators adopted this tactic.

Ransomware

Ransomware Encryption Education Phishing

Zero-day exploit used to hack iPhones of Al Jazeera employees

Security Affairs

DECEMBER 21, 2020

“In July and August 2020, government operatives used NSO Group ’s Pegasus spyware to hack 36 personal phones belonging to journalists, producers, anchors, and executives at Al Jazeera. Investments in journalist security and education must be accompanied by efforts to regulate the sale, transfer, and use of surveillance technology.”

Government

Government Security awareness Education Sales

Thinkful forces a password reset for all users after a data breach

Security Affairs

SEPTEMBER 23, 2019

The online education platform for developers Thinkful suffered a security breach and is notifying the incident to its customers requiring them to reset their passwords. ” It is not clear when the security breach took place and if Chegg was aware of the data breach prior to the acquisition.

Data breaches

Data breaches Passwords Education Access

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Security Affairs

DECEMBER 12, 2021

Today Canadian Minister Responsible for Digital Transformation and Access to Information Eric Caire confirmed the decision of the government to shut down the sites that are being scanned for potentially malicious purposes resulting from the exploitation of the Log4Shell flaw.

Libraries

Libraries Digital transformation Education Government

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The victims of the group are “targets of opportunity.” ” reads the joint advisory.

Ransomware

Ransomware Manufacturing Education Passwords

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. The APT41 has been active since at least 2012, it was involved in both state-sponsored espionage campaigns and financially-motivated attacks since 2014.

Healthcare

Healthcare Education Manufacturing Government

Google Gmail client-side encryption is available globally

Security Affairs

FEBRUARY 28, 2023

Gmail client-side encryption (CSE) is now available for Workspace Enterprise Plus, Education Plus, and Education Standard customers. Google announced that Gmail client-side encryption (CSE) is now available for all Google Workspace Enterprise Plus, Education Plus, and Education Standard customers.

Encryption

Encryption Education Digital transformation Access

Lockbit ransomware gang demanded an 80 million ransom to CDW

Security Affairs

OCTOBER 14, 2023

CDW Corporation is a provider of technology solutions and services for business, government and education. A secondary division of the company, known as CDW-G , focuses on United States governmental entities, including as K-12 schools, universities, non-profit healthcare organizations, State & Local and the Federal government.

Ransomware

Ransomware Archiving Cybersecurity Education

China-linked APT Silk Typhoon targets IT Supply Chain

Security Affairs

MARCH 5, 2025

Silk Typhoon targets multiple sectors worldwide, including information technology (IT) services and infrastructure, remote monitoring and management (RMM) companies, managed service providers (MSPs) and affiliates, healthcare, legal services, higher education, defense, government, non-governmental organizations (NGOs), and energy.

Energy and Utilities

Energy and Utilities IT Cloud Passwords

Akira ransomware attack on Tietoevry disrupted the services of many Swedish organizations

Security Affairs

JANUARY 24, 2024

A ransomware attack against the Finnish IT services provider Tietoevry disrupted the services of some Swedish government agencies and shops. At present, Tietoevry cannot provide a definite timeframe for the complete restoration process due to the complexity of the security breach.

Ransomware

Ransomware Government Retail Cloud

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

According to the summary findings related to the period 2013-2020, the most targeted critical infrastructures are government facilities, followed by education and healthcare.

Ransomware

Ransomware Data collection Education Security

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

NCSC warns of a surge in ransomware attacks on education institutions

Webinars

Trending Sources

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Webinars

A massive DDoS knocked offline Belgian government websites

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Threat actors defaced Ukrainian government websites

Nation-state actors target Australia, Government warns

Russian Phobos ransomware operator faces cybercrime charges

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Storm-2372 used the device code phishing technique since August 2024

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Port of Seattle ‘s August data breach impacted 90,000 people

Ransomware attacks hit 105 US local governments in 2022

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Information Governance – 3 Common Pitfalls and How to Avoid Them

China’s Volt Typhoon botnet has re-emerged

Belgium Interior Ministry said it was hit by a sophisticated cyber attack

Cryptocurrencies and cybercrime: A critical intermingling

Iran-linked group APT33 adds new Tickler malware to its arsenal

ChaChi, a GoLang Trojan used in ransomware attacks on US schools

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Rhysida ransomware gang claimed China Energy hack

German BSI warns of 17,000 unpatched Microsoft Exchange servers

Ministry of Defence academy hit by state-sponsored hackers

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Cybersecurity agencies published a joint LockBit ransomware advisory

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

X will collect biometric data from its premium users

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Rhysida ransomware group hacked Abdali Hospital in Jordan

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Akira ransomware received $42M in ransom payments from over 250 victims

Zero-day exploit used to hack iPhones of Al Jazeera employees

Thinkful forces a password reset for all users after a data breach

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

FBI and CISA warn of attacks by Rhysida ransomware gang

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Google Gmail client-side encryption is available globally

Lockbit ransomware gang demanded an 80 million ransom to CDW

China-linked APT Silk Typhoon targets IT Supply Chain

Akira ransomware attack on Tietoevry disrupted the services of many Swedish organizations

CIRWA Project tracks ransomware attacks on critical infrastructure

Stay Connected