File names and Metadata - Information Management Today

CDRThief Linux malware steals VoIP metadata from Linux softswitches

Security Affairs

SEPTEMBER 10, 2020

CDRThief specifically targets internal MySQL databases running in the devices to steal call metadata, including IP addresses of the callers, phone numbers, start time and duration of the call, call route, and call type. “To steal this metadata, the malware queries internal MySQL databases used by the Softswitch.”

Metadata

Metadata Encryption File names Passwords

CDRThief Linux malware steals VoIP metadata from Linux softswitches

Security Affairs

SEPTEMBER 10, 2020

CDRThief specifically targets internal MySQL databases running in the devices to steal call metadata, including IP addresses of the callers, phone numbers, start time and duration of the call, call route, and call type. “To steal this metadata, the malware queries internal MySQL databases used by the Softswitch.”

Metadata

Metadata Encryption File names Passwords

Leveraging Metadata for Enhanced Information Governance

Gimmal

NOVEMBER 21, 2024

Enter metadata—a powerful tool that can revolutionize your information governance strategy. Limited Sorting and Filtering : Users can only sort and filter files based on basic attributes like name and date within a folder, restricting efficient data retrieval. The Power of Metadata So, what is metadata?

Metadata

Metadata Information governance Government Records Management

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Digitizing Records: Understanding Metadata Requirements

National Archives Records Express

JUNE 12, 2023

S49-07-001 – STS-049 – In cabin view of crewmember at the forward flight deck with laptop terminal National Archives Identifier: 22702275 In this blog post, we will explore the key aspects of metadata requirements and their significance in recordkeeping.

Metadata

Metadata Digital transformation File names Archiving

Fake Falcon crash reporter installer used to target German Crowdstrike users

Security Affairs

JULY 28, 2024

The spear-phishing page included a download link pointing to a ZIP archive file that contained a malicious InnoSetup installer. The installer injected the executable into a JavaScript file named “jquery-3.7.1.min.js” While the final payload has not been recovered, metadata from these files has been obtained.

Passwords

Passwords Phishing File names Metadata

Microsoft Vancouver leaking website credentials via overlooked DS_STORE file

Security Affairs

DECEMBER 8, 2021

CyberNews researchers discovered a Desktop Services Store (DS_STORE) file left on a publicly accessible web server that belongs to Microsoft Vancouver. What’s the danger of leaving DS_STORE files on web servers? This DS_STORE file is also invisible. “As Original post @ [link]. DS_Store to see what information comes up.”

Passwords

Passwords Metadata File names Phishing

Evilnum APT used Python-based RAT PyVil in recent attacks

Security Affairs

SEPTEMBER 3, 2020

When the LNK file is executed, a JavaScript file is called, which acts only as a first-stage dropper (the file name is ddpp.exe). When comparing the malware executable with the original Oracle executable, we can see the similar metadata between the files.

Phishing

Phishing Encryption File names Metadata

SolarWinds Attack: Microsoft sheds lights into Solorigate second-stage activation

Security Affairs

JANUARY 21, 2021

Attackers prepared a unique Cobalt Strike DLL implant for each machine and avoided at any cost overlap and reuse of folder name, file name, export function names, C2 domain/IP, HTTP requests, timestamp, file metadata, config, and child process launched. Camouflage and blending into the environment.

File names

File names Metadata Data collection Security

A 15-Year-Old Unpatched Python bug potentially impacts over 350,000 projects

Security Affairs

SEPTEMBER 22, 2022

with the separator for the operating system (“/” or “”) into the file name to escape the directory the file is supposed to be extracted to. “The tarfile module lets users add a filter that can be used to parse and modify a file’s metadata before it is added to the tar archive.

Archiving

Archiving File names Metadata Security

Russia-linked APT29 relies on Google Drive, Dropbox to evade detection

Security Affairs

JULY 19, 2022

Threat actors used it to deobfuscate the contents of a second state malware, which is in the form of a malicious ISO file. The file Agenda.html employed in the attack was used to deobfuscate a payload, and also for writing a malicious ISO file to the victim’s hard drive. The payload file is an ISO file named Agenda.iso.

Phishing

Phishing Cloud File names Metadata

CrowdStrike uncovered a new campaign of GOBLIN PANDA APT aimed at Vietnam

Security Affairs

SEPTEMBER 5, 2018

“Two exploit documents with Vietnamese-language file names were observed with file metadata unique to the GOBLIN PANDA adversary.” ” The researchers analyzed two weaponized documents written in Vietnamese-language and attributed them to GOBLIN PANDA based their metadata.

Metadata

Metadata File names Libraries Government

A flaw in the Packagist PHP repository could have allowed supply chain attacks

Security Affairs

OCTOBER 4, 2022

reads the post published by SonarSource in April 2021, “A vulnerability in such a central component, serving more than 100M package metadata requests per month, has a huge impact as this access could have been used to steal maintainers’ credentials or to redirect package downloads to third-party servers delivering backdoored dependencies.”.

File names

File names Metadata Security IT

Iran-linked group Cobalt Dickens hit over 60 universities worldwide

Security Affairs

SEPTEMBER 12, 2019

Once the victims have provided their credentials, they are stored in a file named ‘pass.txt’ and the users are redirected to the genuine university website to avoid to raise suspicion. “Metadata in other spoofed web pages supports the assessment that the threat actors are of Iranian origin.

Phishing

Phishing Libraries File names Metadata

Iran-linked APT TA453 targets Windows and macOS systems

Security Affairs

JULY 8, 2023

At the provided URL, a password-encrypted.rar file named “Abraham Accords & MENA.rar” was hosted. The.rar archive contained a dropper named “Abraham Accords & MENA.pdf.lnk.” Once executed the macro, the recipient is directed to a Dropbox URL.

Archiving

Archiving Cloud File names Metadata

Visual Cues and Clues: Born-Digital Photographs and their Metadata

Unwritten Record

OCTOBER 5, 2021

A clear positive for digital copies is that physical space is no longer the largest obstacle for housing records, however, one of the lesser-thought of positives is embedded metadata. Similar to a hand-written caption on the back of a photographic print, embedded metadata can provide identifying information found within the digital file.

Metadata

Metadata Archiving Access File names

Is RIOT Data Undermining Your Information Governance? Here’s What You Need to Know

Gimmal

OCTOBER 30, 2024

Inaccessible File Identification : Find files that can’t be opened due to obsolete formats or missing applications. Advanced Metadata Insights Detailed Metadata Collection : Analyze metadata for every file, including unique file hashes, to precisely identify content.

Information governance

Information governance Government Cleanup Digital preservation

Key Takeaways from the NARA Digitizing Permanent Records Webinar

National Archives Records Express

JULY 24, 2023

Technical attributes, such as resolution, color depth, and file formats, must meet the technical standards in the regulation and the specific needs of the records. Metadata and Documentation Accurate and comprehensive metadata is crucial for the successful management and retrieval of digitized records.

Metadata

Metadata Archiving Digital preservation Data migration

Announcing PSIsafe 12 with Advanced Indexing & Search Functionality

Info Source

OCTOBER 21, 2020

Advanced search works based on document-level indexing: capturing all document information contained in its metadata, also called index data. Other document management software applications act like electronic filing cabinets and you can only search based on keywords located in document file names.

Digital transformation

Digital transformation File names Metadata Access

No Bates, No Problem for Native Files: eDiscovery Throwback Thursdays

eDiscovery Daily

JUNE 5, 2019

Back then, I talked about accepting a file-level Bates number where each file is named with a prefix and a sequential number (just like a Bates number, only they’re not stamped in the file, but used as the file name).

File names

File names Metadata GDPR Education

Production is the “Ringo” of the eDiscovery Phases: eDiscovery Throwback Thursdays

eDiscovery Daily

JULY 24, 2019

And, we have seen more cases related to disputes over production format, as some (but not enough) requesting parties are realizing that requesting native productions gives them more metadata about the produced ESI (while also making it more “tamper-proof”). paper, images or native files); Organization of files (e.g.,

File names

File names Metadata Paper Education

Complaint to FTC Alleges Cloud Service Dropbox Fails to Sync Security with Representations

Hunton Privacy

MAY 26, 2011

“Dropbox employees aren’t able to access user files, and when troubleshooting an account they only have access to file metadata (filenames, file sizes, etc, not the file contents).”.

Cloud

Cloud Encryption Security Metadata

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

It is a top provider of historical threat data, offering both current and historical metadata on IP addresses, domains, and other IoCs. But other features, like contextualized historic metadata, specialized rulesets, and enriched log data are all helpful for better security response and mitigation strategies. Free trial available.

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

Why Does Production Have to be Such a Big Production?, Part Three

eDiscovery Daily

APRIL 18, 2019

A classic example is the more technologically sophisticated party requesting tiff, text and load files as a production format and the other party agreeing without realizing what that means and the process necessary to do it correctly. So, what seems to be the problem?

Metadata

Metadata Computer and Electronics File names Blockchain

Discovering SharePoint Content Types and Columns with PowerShell

JKevinParker

FEBRUARY 1, 2014

You should also specify the location and file name of the resulting CSV file in the "$outputFile" variable assignment. Column Description. To run this script in your own (DEV!) environment, specify the site collection in the "$siteUrl" variable assignment. The script: # Get All Available Content Types and Columns # By J.

File names

File names Risk Access Metadata

Agency Metadata Requirements for Transferring Permanent Electronic Records

National Archives Records Express

JANUARY 21, 2025

As agencies are transitioning to a fully digital government, NARA would like to share a reminder of the metadata requirements for transferring permanent electronic records. NARA may not approve proposed accessions that lack metadata. NARA Bulletin 2015-04 provides descriptions of each field shown on the template.

Metadata

Metadata File names Access Archiving

Information Management Today

CDRThief Linux malware steals VoIP metadata from Linux softswitches

CDRThief Linux malware steals VoIP metadata from Linux softswitches

Webinars

Trending Sources

Leveraging Metadata for Enhanced Information Governance

Webinars

Digitizing Records: Understanding Metadata Requirements

Fake Falcon crash reporter installer used to target German Crowdstrike users

Microsoft Vancouver leaking website credentials via overlooked DS_STORE file

Evilnum APT used Python-based RAT PyVil in recent attacks

SolarWinds Attack: Microsoft sheds lights into Solorigate second-stage activation

A 15-Year-Old Unpatched Python bug potentially impacts over 350,000 projects

Russia-linked APT29 relies on Google Drive, Dropbox to evade detection

CrowdStrike uncovered a new campaign of GOBLIN PANDA APT aimed at Vietnam

A flaw in the Packagist PHP repository could have allowed supply chain attacks

Iran-linked group Cobalt Dickens hit over 60 universities worldwide

Iran-linked APT TA453 targets Windows and macOS systems

Visual Cues and Clues: Born-Digital Photographs and their Metadata

Is RIOT Data Undermining Your Information Governance? Here’s What You Need to Know

Key Takeaways from the NARA Digitizing Permanent Records Webinar

Announcing PSIsafe 12 with Advanced Indexing & Search Functionality

No Bates, No Problem for Native Files: eDiscovery Throwback Thursdays

Production is the “Ringo” of the eDiscovery Phases: eDiscovery Throwback Thursdays

Complaint to FTC Alleges Cloud Service Dropbox Fails to Sync Security with Representations

6 Best Threat Intelligence Feeds to Use in 2023

Why Does Production Have to be Such a Big Production?, Part Three

Discovering SharePoint Content Types and Columns with PowerShell

Agency Metadata Requirements for Transferring Permanent Electronic Records

Stay Connected