Encryption and Military - Information Management Today

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. Threat actors first compromised the Westech’s network, then stole the documents before encrypting them. The LGM-30 Minuteman is a U.S. Pierluigi Paganini.

Military

Military Ransomware Encryption Risk

How Shady Chinese Encryption Chips Got Into the Navy, NATO, and NASA

WIRED Threat Level

JUNE 15, 2023

The US government warns encryption chipmaker Hualan has suspicious ties to China’s military. Yet US agencies still use one of its subsidiary’s chips, raising fears of a backdoor.

Encryption

Encryption Military Government IT

Chinese Military personnel charged with hacking into credit reporting agency Equifax

Security Affairs

FEBRUARY 10, 2020

The United States Department of Justice charged 4 Chinese military hackers with hacking into credit reporting agency Equifax. The United States Department of Justice officially charged 4 members of the China’s PLA’s 54th Research Institute, a division of the Chinese military, with hacking into credit reporting agency Equifax.

Military

Military Data breaches Encryption Communications

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Flaws in DataVault encryption software impact multiple storage devices

Security Affairs

DECEMBER 30, 2021

Researchers found several vulnerabilities in third-party encryption software that is used by multiple storage devices from major vendors. Researcher Sylvain Pelissier has discovered that the DataVault encryption software made by ENC Security and used by multiple vendors is affected by a couple of key derivation function issues.

Encryption

Encryption Passwords Military Security

NSA Offers Guidance on Adopting Encrypted DNS

Data Breach Today

JANUARY 15, 2021

Agency Describes How DoH Can Help Prevent Eavesdropping The NSA has released guidance on how organizations can adopt encrypted domain name system protocols to prevent eavesdropping and manipulation of DNS traffic.

Encryption

Encryption Military IT

DoJ Blasts Apple on Lack of Encryption Backdoor - Again

Data Breach Today

MAY 19, 2020

Law Enforcement Leaders Say Encryption Delayed Terrorist Investigation; Apple Pushes Back Although FBI technicians were able to gain access to data in two iPhones belonging to a Saudi national who killed three U.S.

Encryption

Encryption Military Access IT

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. Pierluigi Paganini. SecurityAffairs – hacking, InvisiMole).

Military

Military Communications Libraries Encryption

GCHQ implements World War II cipher machines in encryption app CyberChef

Security Affairs

MARCH 18, 2019

UK intelligence agency GCHQ released emulators for World War II cipher machines (Enigma, Typex and The Bombe) that can be executed in the encryption app CyberChef. The post GCHQ implements World War II cipher machines in encryption app CyberChef appeared first on Security Affairs. Pierluigi Paganini.

Encryption

Encryption Military Education Communications

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

Russian Hackers Increase Attacks on Ukraine's Energy Sector

Data Breach Today

SEPTEMBER 30, 2024

Attackers Embrace Dating Sites and Encrypted Messaging Apps for Social Engineering Russian military and intelligence hacking teams continue to refine their Ukrainian targeting, lately shifting to online attacks designed to support and help Moscow's military operations succeed, including social engineering schemes launched via dating portals and encrypted (..)

Military

Military Encryption

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

JULY 30, 2018

One sliver of the $90 billion, or so, companies are expected to spend this year on cybersecurity products and services is an estimated $85 million they will shell out for encrypted flash drives. We discussed why encrypted flash drives have become established as a must-have portable business tool in the digital age. Park: Exactly.

Encryption

Encryption Military Passwords Authentication

ENC Security, the encryption provider for Sony and Lexar, leaked sensitive data for over a year

Security Affairs

NOVEMBER 30, 2022

When you buy a Sony, Lexar, or Sandisk USB key or any other storage device, it comes with an encryption solution to keep your data safe. Netherlands-based company with 12 million users worldwide provides “military-grade data protection” solutions with its popular DataVault encryption software. Pierluigi Paganini.

Encryption

Encryption Security Phishing Ransomware

Ukraine’s GUR hacked the Russian Ministry of Defense

Security Affairs

MARCH 4, 2024

Stolen documents include: confidential documents, including orders and reports circulated among over 2000 structural units of the Russian military service. software used by the Russian Ministry of Defense to encrypt and protect its data. ” reads the press release published by Ukraine’s GUR.

Military

Military Data breaches Encryption Government

Don't make this USB mistake! Protect your data with this discounted encrypted gadget

Collaboration 2.0

MARCH 29, 2025

Kingston's IronKey is one of the most secure USBs you can buy, from a military-standardized build to a complex passphrase mode.

Encryption

Encryption Military Security

Maze Ransomware operators hacked the Xerox Corporation

Security Affairs

JULY 1, 2020

Xerox Corporation is the last victim of the Maze ransomware operators, hackers have encrypted its files and threaten of releasing them. Maze ransomware operators have breached the systems of the Xerox Corporation and stolen files before encrypting them. “The Cyble Research Team has identified and analyzed the proof.

Ransomware

Ransomware Encryption Military IT

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs

FEBRUARY 23, 2022

The name “ Bvp47 ” comes form numerous references to the string “Bvp” and the numerical value “0x47” used in the encryption algorithm. National Security Agency (NSA) Equation Group. Follow me on Twitter: @securityaffairs and Facebook.

Encryption

Encryption Military Archiving Government

US Govn contractor Electronic Warfare Associates infected with Ryuk ransomware

Security Affairs

JANUARY 30, 2020

Evidence of the hack is still visible online because Google has cashed the ransom notes and encrypted files. The encrypted files and ransom note are associated with a Ryuk ransomware infection. EWA Technologies Inc., Simplicikey, and Homeland Protection Institute. Anyone remember this "Ryuk Stealer"?

Ransomware

Ransomware Encryption Military Government

North Korea-linked Konni APT uses Russian-language weaponized documents

Security Affairs

NOVEMBER 24, 2023

Upon enabling the macro, the embedded VBA displays a Russian article titled “Western Assessments of the Progress of the Special Military Operation.” The malicious code uploads the exfiltrated, encrypted data to the C2 server via a POST request. The Word document seems to be in the Russian language.

Encryption

Encryption Military Phishing Communications

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 23, 2025

from Bybit, it is the largest cryptocurrency heist ever Apple removes iCloud encryption in UK following backdoor demand B1acks Stash released 1 Million credit cards U.S. Military & Defense Sector: A Cybersecurity Disaster in the Making Analyzing ELF/Sshdinjector.A!tr Lazarus APT stole $1.5B

Security

Security CMS Phishing Encryption

Swiss army asks its personnel to use the Threema instant-messaging app

Security Affairs

JANUARY 9, 2022

All communication is end-to-end encrypted, and the app is open source. ” Recently media shared an FBI training document that reveals the surveillance capabilities of the US law enforcement detailing which data can be extracted from encrypted messaging apps. Source Property of the People. Pierluigi Paganini.

FOIA

FOIA Computer and Electronics IT Encryption

Maze Ransomware operators published data from LG and Xerox

Security Affairs

AUGUST 4, 2020

Maze ransomware operators have also breached the systems of the Xerox Corporation and stolen files before encrypting them. The company did not disclose the cyberattack, but early June the Maze ransomware operators published some screenshots that showed that a Xerox domain has been encrypted.

Ransomware

Ransomware Encryption Military Data breaches

SolarWinds hackers stole some of Mimecast source code

Security Affairs

MARCH 17, 2021

Back in December, the SolarWinds supply chain attack made the headlines when a Russian cyber espionage group tampered with updates for SolarWinds’ Orion Network Management products that the IT company provides to government agencies, military, and intelligence offices. Upgraded encryption algorithm strength for all stored credentials.

Encryption

Encryption Military Access Archiving

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

The malware stole data and encrypted files to block remediation attempts. “The malware that exploited the vulnerability discovered by Guan was designed to steal information from infected computers and to encrypt files on them if a victim attempted to remediate the infection. ” reads the press release published by DoJ.

Passwords

Passwords Encryption Access Ransomware

Encryption: How It Works, Types, and the Quantum Future

eSecurity Planet

MAY 25, 2022

Encryption and the development of cryptography have been a cornerstone of IT security for decades and remain critical for data protection against evolving threats. While cryptology is thousands of years old, modern cryptography took off in the 1970s with the help of the Diffie-Hellman-Merkle and RSA encryption algorithms.

Encryption

Encryption IT Computer and Electronics Passwords

White House's Operational Security Fail: No Signal Required

Data Breach Today

MARCH 25, 2025

Encryption Can't Protect You From Stupid,' Says Leading Cryptographer We're all human. Who among us hasn't lost a thumb drive or added a journalist to a consumer-grade encrypted app group chat devoted to White House war planning and military operations? Still, some accidental data breaches pose a bigger risk than others.

Military

Military Encryption Data breaches Security

Security Affairs newsletter Round 399 by Pierluigi Paganini

Security Affairs

DECEMBER 25, 2022

Expert found Backdoor credentials in ZyXEL LTE3301 M209 Raspberry Robin malware used in attacks against Telecom and Governments TikTok parent company ByteDance revealed the use of TikTok data to track journalists BetMGM discloses security breach impacting 1.5 Follow me on Twitter: @securityaffairs and Facebook and Mastodon. Pierluigi Paganini.

Security

Security Military Ransomware Encryption

Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

Security Affairs

JANUARY 18, 2024

The ColdRiver APT (aka “ Seaborgium “, “Callisto”, “Star Blizzard”, “TA446”) is a Russian cyberespionage group that has been targeting government officials, military personnel, journalists and think tanks since at least 2015. When the victims opens the PDF, an encrypted text is displayed. ” concludes the report.

Phishing

Phishing Encryption Military Archiving

US administration requests $9.8B for cyber 2021 budget for the Department of Defense

Security Affairs

FEBRUARY 16, 2020

The amount requested for the Department of Defense in the “ DOD Releases Fiscal Year 2021 Budget Proposal ” is nearly the same one as last year for cyber operations that the US military will conduct in 2020. The budget was released on February 10, it requests $9.8 billion in the fiscal year 2020.

Artificial Intelligence

Artificial Intelligence Military Cybersecurity Risk

Platinum APT and leverages steganography to hide C2 communications

Security Affairs

JUNE 6, 2019

In June 2018, experts at Kaspersky were investigating attacks against government and military entities in South and Southeast Asian countries, The experts tracked the campaign as EasternRoppels, they speculate it may have started as far back as 2012. ” reads the analysis published by the expert. ” continues Kaspersky.

Communications

Communications Encryption Military Government

Crypto AG was spied for US, German intelligence agencies for decades

Security Affairs

FEBRUARY 12, 2020

Swiss authorities are investigating into allegations the company Crypto AG, a Switzerland-based maker of encryption devices, was a front company for the CIA and German intelligence. The list of Crypto’s customers included Iran, India and Pakistan, military juntas in Latin America and the Vatican.

Military

Military Communications Encryption Government

Russia-linked APT28 targets govt bodies with fake NATO training docs

Security Affairs

SEPTEMBER 23, 2020

Even today, less than half of the known antivirus engines are flagging the infection on VirusTotal , as observed by BleepingComputer: The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Military

Military Government Encryption Communications

Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MAY 12, 2024

Ohio Lottery data breach impacted over 538,000 individuals Notorius threat actor IntelBroker claims the hack of the Europol A cyberattack hit the US healthcare giant Ascension Google fixes fifth actively exploited Chrome zero-day this year Russia-linked APT28 targets government Polish institutions Citrix warns customers to update PuTTY version installed (..)

Data breaches

Data breaches Security Military Ransomware

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Kr00k Wi-Fi Encryption flaw affects more than a billion devices. Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates. Hacking campaign targets sites running popular Duplicator WordPress plugin. South Korea suffers from the spread of people infected with Corona 19. Fbot re-emerged, the backstage.

Security

Security Ransomware Military Data breaches

SideWinder carried out over 1,000 attacks since April 2020

Security Affairs

MAY 31, 2022

SideWinder has been active since at least 2012, the group main targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. The URLs used for C2 communications for these domains are split into two parts: The Installer module contains the first part of the URL which is the C2 server domain name in encrypted form.

Encryption

Encryption Military Phishing Communications

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report. ” concludes the report.

Energy and Utilities

Energy and Utilities Military Government Phishing

Maze ransomware gang leaked Canon USA’s stolen files

Security Affairs

AUGUST 14, 2020

Maze ransomware operators have also breached the systems of the Xerox Corporation and stolen files before encrypting them. In the past months Maze Ransomware gang breached the US chipmaker MaxLinear and Threadstone Advisors LLP, a US corporate advisory firm specialising in mergers ‘n’ acquisitions.

Ransomware

Ransomware Archiving Military Encryption

Guy Fawkes Day – LulzSec Italy hit numerous organizations in Italy

Security Affairs

NOVEMBER 9, 2018

Italian Military Personnel and National Association of Professional Educators. Hackers were able to obtain 97 un-encrypted passwords, emails, telephone numbers, virtual hosts. Military Personnel. Exposed in the Hack: National Research Center. 38 Databases Total: [link]. 41 Names & emails in ENHANCE datbase: [link].

Passwords

Passwords Archiving Mining Education

Russia-linked Nobelium APT group uses custom backdoor to target Windows domains

Security Affairs

SEPTEMBER 28, 2021

.” The attackers use the version.dll DLL to load FoggyWeb which is stored in the encrypted file Windows.Data.TimeZones.zh-PH.pri. The loader uses the custom Lightweight Encryption Algorithm (LEA) routine to decrypt the backdoor directly in the memory. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Encryption

Encryption Military Government Access

Phishing attacks using the topic “Azovstal” targets entities in Ukraine

Security Affairs

APRIL 23, 2022

The analysis of encryption techniques employed in the attack allowed the government experts to associate the campaign with the cybercrime group Trickbot. The alert published by the Ukraine CERT-UA includes Indicators of Compromise (IoCs) for this campaign and recommendations.

Phishing

Phishing Military Ransomware Encryption

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

Security Affairs

NOVEMBER 5, 2023

Elastic researchers traced this campaign to April 2023 through the RC4 key used to encrypt the SUGARLOADER and KANDYKORN C2. North Korea-linked threat actors continue to target organizations in the cryptocurrency industry to circumvent international sanctions and finance its military operations.

Blockchain

Blockchain Archiving Military Encryption

Chinese actors behind attacks on industrial enterprises and public institutions

Security Affairs

AUGUST 9, 2022

In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. China-linked threat actors targeted dozens of industrial enterprises and public institutions in Afghanistan and Europe.

Encryption

Encryption Military Archiving Phishing

The Dangers of Using Unsecured Wi-Fi Networks

Security Affairs

AUGUST 22, 2019

Data that travels over a public hotspot network is rarely encrypted. The answer is a virtual private network (VPN) which creates a private tunnel between your device and the internet and encrypts your data. BullGuard VPN for instance uses military grade encryption which would take more than a lifetime to crack.

Encryption

Encryption Passwords Military Privacy

Did Maze ransomware operators steal 10 GB of data from Canon?

Security Affairs

AUGUST 7, 2020

Maze ransomware operators have also breached the systems of the Xerox Corporation and stolen files before encrypting them. In the past months Maze Ransomware gang breached the US chipmaker MaxLinear and Threadstone Advisors LLP, a US corporate advisory firm specialising in mergers ‘n’ acquisitions.

Ransomware

Ransomware Military Encryption Cloud

Maze ransomware operators stole data from US military contractor Westech

How Shady Chinese Encryption Chips Got Into the Navy, NATO, and NASA

Webinars

Trending Sources

Chinese Military personnel charged with hacking into credit reporting agency Equifax

Webinars

Flaws in DataVault encryption software impact multiple storage devices

NSA Offers Guidance on Adopting Encrypted DNS

DoJ Blasts Apple on Lack of Encryption Backdoor - Again

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

GCHQ implements World War II cipher machines in encryption app CyberChef

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Russian Hackers Increase Attacks on Ukraine's Energy Sector

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

ENC Security, the encryption provider for Sony and Lexar, leaked sensitive data for over a year

Ukraine’s GUR hacked the Russian Ministry of Defense

Don't make this USB mistake! Protect your data with this discounted encrypted gadget

Maze Ransomware operators hacked the Xerox Corporation

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

US Govn contractor Electronic Warfare Associates infected with Ryuk ransomware

North Korea-linked Konni APT uses Russian-language weaponized documents

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Swiss army asks its personnel to use the Threema instant-messaging app

Maze Ransomware operators published data from LG and Xerox

SolarWinds hackers stole some of Mimecast source code

Chinese national charged for hacking thousands of Sophos firewalls

Encryption: How It Works, Types, and the Quantum Future

White House's Operational Security Fail: No Signal Required

Security Affairs newsletter Round 399 by Pierluigi Paganini

Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

US administration requests $9.8B for cyber 2021 budget for the Department of Defense

Platinum APT and leverages steganography to hide C2 communications

Crypto AG was spied for US, German intelligence agencies for decades

Russia-linked APT28 targets govt bodies with fake NATO training docs

Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 253

SideWinder carried out over 1,000 attacks since April 2020

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Maze ransomware gang leaked Canon USA’s stolen files

Guy Fawkes Day – LulzSec Italy hit numerous organizations in Italy

Russia-linked Nobelium APT group uses custom backdoor to target Windows domains

Phishing attacks using the topic “Azovstal” targets entities in Ukraine

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

Chinese actors behind attacks on industrial enterprises and public institutions

The Dangers of Using Unsecured Wi-Fi Networks

Did Maze ransomware operators steal 10 GB of data from Canon?

Stay Connected