Government, Groups and Military - Information Management Today

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Military Exercises Trigger Russian DDoS Attacks on Japan

Data Breach Today

OCTOBER 18, 2024

Russian Actors Disrupt Websites of Political Party, Business and Government Groups Plans by Japan and U.S.

Military

Military Government

Machete cyber-espionage group targets Latin America military

Security Affairs

AUGUST 5, 2019

Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. ” continues the report.

Military

Military Archiving Security Government

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

The Ukrainian agency attributes the campaign to the Belarus-linked cyberespionage group tracked as UNC1151. In mid-January, the government of Kyiv attributed the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151. For Volhynia, OUN UPA, Galicia, Poland and historical areas.”

Military

Military Phishing CMS Government

Russian APT groups target European governments ahead of May Elections

Security Affairs

MARCH 22, 2019

Russian APT groups are targeting European governments for cyber-espionage purposes ahead of the upcoming European elections. The activity of the Russia-linked groups is focused on NATO member states. The group was involved also in the string of attacks that targeted 2016 Presidential election. Pierluigi Paganini.

Government

Government Military Phishing Access

Alleged cyber attacks caused fire and explosions at nuclear and military facilities in Iran

Security Affairs

JULY 3, 2020

The media reported a fire at the Natanz nuclear enrichment site and an explosion at the Parchin military complex near Tehran, the latter is suspected to be a government center for the production of missiles. The group took credit for the attack without providing details of the incident. and Israel.” and Israel.”

Military

Military Government Security IT

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military

Military Government IT Security

Movie From 1983 Had AI and InfoGov Right

Weissman's World

JANUARY 6, 2025

In it, a high school teenager seeking the newest, hottest prerelease videogame hacks into a NORAD computer by mistake, and the simulation he triggers nearly causes WWIII because the soldierly decision-making was intentionally left to the machine, not the military.

Military

Military IT Information governance Government

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. ” Recently Maze ransomware operators started publishing documents stolen from the ST Engineering group on their leak website. The LGM-30 Minuteman is a U.S.

Military

Military Ransomware Encryption Risk

Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates

Security Affairs

FEBRUARY 28, 2020

Network data collected by the NetBlocks internet observatory confirm that Turkey has blocked access to social media as Idlib military crisis escalates. The access was first blocked via national provider Turk Telecom (AS9121), but later other service providers applied the government restrictions. local time (8:30 p.m. It's 5:30 a.m.

Military

Military Data collection Government Access

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. Organizations targeted by the group were located in multiple countries around the South China Sea, including the Philippines, Malaysia, Indonesia, Singapore, and Thailand.

Military

Military Passwords Government Security

Anonymous targets the Russian Military and State Television and Radio propaganda

Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military

Military Cybersecurity Security Government

Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks

Security Affairs

MARCH 7, 2021

Russia-linked APT groups leveraged the Lithuanian nation’s technology infrastructure to launch cyber-attacks against targets worldwide. ” In 2020, Russian intelligence operations against Lithuania decreased due to the COVID-19 pandemic, but Russia-linked APT groups increased cyber espionage campaigns against targets worldwide.

Military

Military Government Security IT

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

Ukraine’s premier law enforcement and counterintelligence revealed the real identities of five FSB members behind the Gamaredon cyberespionage group. 5 members of the group have been notified of suspicion of treason.” “The ARMAGEDON hacker group is an FSB special project, which specifically targeted Ukraine.

Military

Military Metadata Government Passwords

Gamaredon group uses a new Outlook tool to spread malware

Security Affairs

JUNE 12, 2020

The group was first discovered by Symantec and TrendMicro in 2015 but evidence of its activities has been dated back to 2013. The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement.

Military

Military Phishing Government IT

Ukraine’s SBU arrested a member of Pro-Russia hackers group ‘Cyber Army of Russia’

Security Affairs

JANUARY 29, 2024

Ukraine’s security service (SBU) detained an alleged member of the pro-Russia hacker group “the Cyber Army of Russia.” ” Ukraine’s security service, the SBU, announced that it has identified and detained an alleged member of the pro-Russia hacker group known as the Cyber Army of Russia.

Military

Military Communications Government Security

Group-IB identifies leaked credentials of 40,000 users of government websites in 30 countries

Security Affairs

DECEMBER 11, 2018

Group-IB, an international company that specializes in preventing cyberattacks , has detected more than 40 000 compromised user credentials of online government services in 30 countries around the world. Group-IB Threat Intelligence has detected government websites’ user accounts compromised by cyber criminals in 30 countries.

Government

Government Passwords Military Archiving

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

Security Affairs

JUNE 14, 2023

Microsoft linked a series of wiping attacks to a Russia-linked APT group, tracked as Cadet Blizzard, that is under the control of the GRU. Microsoft attributes the operations carried out by the Russia-linked APT group tracked as Cadet Blizzard to the Russian General Staff Main Intelligence Directorate (GRU).

Military

Military Government IT Security

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

North Korea-linked APT group Kimsuky carried out a spear-phishing campaign against US contractors involved in a joint U.S.-South South Korea military exercise. The military drill, the Ulchi Freedom Guardian summer exercises , will start on Monday, August 21, 2023 , and will last 11 days. ” reported Reuters agency.

Military

Military Phishing Government Security

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Government Access Phishing

APT28 group return to covert intelligence gathering ops in Europe and South America.

Security Affairs

OCTOBER 7, 2018

Experts from Symantec collected evidence that APT28 group returns to covert intelligence gathering operations in Europe and South America. The APT28 group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Military targets in Europe.

Military

Military Government Phishing Security

Iran-linked APT groups continue to evolve

Security Affairs

NOVEMBER 17, 2021

Over the past 12 months, MSTIC experts observed increasingly sophisticated attacks orchestrated by Iranian APT groups. The analysis focuses on six Iranian hacking groups that are increasingly utilizing ransomware to either fundraise or disrupt the computer networks of the targets.

Ransomware

Ransomware Passwords Military Authentication

LUCKY ELEPHANT campaign targets South Asian governments

Security Affairs

MARCH 27, 2019

The NETSCOUT Threat Intelligence team uncovered a credential harvesting campaign tracked as LUCKY ELEPHANT targeting mostly South Asian governments. Security experts at NETSCOUT Threat Intelligence team uncovered a credential harvesting campaign, tracked as LUCKY ELEPHANT, targeting mostly South Asian governments.

Government

Government Military Phishing Security

New Gallmaker APT group eschews malware in cyber espionage campaigns

Security Affairs

OCTOBER 10, 2018

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military and defense sectors since at least 2017. A new cyber espionage group tracked as Gallmaker appeared in the threat landscape. ” continues Symantec. Pierluigi Paganini.

Military

Military File names Government Libraries

Taiwan Government faces 5 Million hacking attempts daily

Security Affairs

NOVEMBER 10, 2021

Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five million cyber attacks hit Taiwan’s government agencies every day, and most of the hacking attempts are originated from China. SecurityAffairs – hacking, Taiwan Government).

Government

Government Military Information Security Security

APT28 targets key networks in Europe with HeadLace malware

Security Affairs

JUNE 3, 2024

Researchers at Insikt Group observed Russian GRU’s unit APT28 targeting networks across Europe with information-stealer Headlace and credential-harvesting web pages. Insikt Group speculates the operation is aimed at influencing regional and military dynamics. ” reads the report published by the Insikt Group.

Military

Military Phishing Government Authentication

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Security Affairs

SEPTEMBER 9, 2019

The China-linked APT group Thrip is continuing to target entities in Southeast Asia even after its activity was uncovered by Symantec. Experts at Symantec first exposed the activity of the Chinese-linked APT Thrip in 2018, now the security firm confirms that cyber espionage group has continued to carry out attacks in South East Asia.

Military

Military Communications Government Education

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

military procurement system. In June the group started a reconnaissance and targeting activity aimed at a U.S. One of these virtual private servers was exclusively employed in attacks against entities across Taiwan, including commercial firms and at least one municipal government organization. ” continues the report.

Military

Military Manufacturing Government Access

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of data, including secret military data related to weapons production.

Military

Military Manufacturing Ransomware Mining

Turkish Hackers hit Greek Government websites and local stock exchange

Security Affairs

JANUARY 18, 2020

While eastern Libya ports controlled by commander Khalifa Haftar are shutting down oil exports, the group of Turkish hackers named Anka Neferler Tim claimed Friday to have hijacked for more than 90 minutes the official websites of the Greek parliament, the foreign affairs, and economy ministries, as well as the country’s stock exchange.

Government

Government Military Security IT

Anonymous continues to support Ukraine against the Russia

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. Anonymous hacks into Russian firm nuclear plant. Stay tuned!

Military

Military Communications Government Access

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Ransomware

Ransomware Government Military Encryption

Pro-Russian hacktivists target Italy government websites

Security Affairs

MAY 14, 2022

Pro-Russian hacker group Killnet targeted the websites of several Italian institutions, including the senate and the National Institute of Health. Our Legion conducts military cyber exercises in your countries in order to improve their skills. The impact was limited, the websites were unreachable for a short period of time.

Government

Government Military Data breaches Cybersecurity

Mandiant identifies 3 hacktivist groups working in support of Russia

Security Affairs

SEPTEMBER 27, 2022

Researchers are tracking multiple self-proclaimed hacktivist groups working in support of Russia, and identified 3 groups linked to the GRU. Mandiant researchers are tracking multiple self-proclaimed hacktivist groups working in support of Russia, and identified 3 groups linked to the Russian Main Intelligence Directorate (GRU).

Military

Military Phishing Government Security

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. Experts from Recorded Future’s Insikt Group linked a series of attacks, part of RedFoxtrot China-linked campaigns, to the PLA China-linked Unit 69010. ” continues the report.

Military

Military Mining Government Communications

Russia-linked Gamaredon group targets Ukraine officials

Security Affairs

DECEMBER 7, 2019

Russia-linked Gamaredon cyberespionage group has been targeting Ukrainian targets, including diplomats, government and military officials. Russia linked APT group tracked as Gamaredon has been targeting several Ukrainian diplomats, government and military officials, and law enforcement. The Gamaredon group.

Military

Military Government Phishing Archiving

Hunting the ICEFOG APT group after years of silence

Security Affairs

JUNE 8, 2019

A security researcher found new evidence of activities conducted by the ICEFOG APT group, also tracked by the experts as Fucobha. Chi-en (Ashley) Shen, a senior security researcher at FireEye, collected evidence that demonstrates that China-linked APT group ICEFOG (aka Fucobha ) is still active.

Agriculture

Agriculture Government Military Communications

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Russia-linked APT28 group used a previously unknown tool, dubbed GooseEgg, to exploit Windows Print Spooler service flaw. Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028.

Military

Military File names Education Phishing

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. In Mid January the Ukrainian government was hit with destructive malware, tracked as WhisperGate , and several Ukrainian government websites were defaced by exploiting a separate vulnerability in OctoberCMS.

Government

Government Military Phishing Information Security

Ukraine: Military defense agencies and banks hit by cyberattacks

Security Affairs

FEBRUARY 15, 2022

A working group of experts from the main subjects of the national cybersecurity system is taking all necessary measures to localize and resist the cyberattack.” Threat actors aim at destabilizing the social contest in the country and instilling fear and untrust in the country’s government. ” ???? ??? ??????, ????????

Military

Military Communications Information Security Access

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

Russia-linked group APT28 exploited Microsoft Outlook zero-day to target European NATO members, including a NATO Rapid Deployable Corps. Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military.

Military

Military Government Phishing Authentication

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Group-IB, has analyzed key recent changes to the global cyberthreat landscape in the “Hi-Tech Crime Trends 2019/2020” report. Group-IB , a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has analyzed key recent changes to the global cyberthreat landscape.

IT

IT Military Cybersecurity Phishing

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Security Affairs

APRIL 5, 2022

The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013. The group targeted government and military organizations in Ukraine. The phishing messages have been sent from “vadim_melnik88@i[.]ua,”

Military

Military Phishing File names Archiving

Russia-linked Nobelium APT group uses custom backdoor to target Windows domains

Security Affairs

SEPTEMBER 28, 2021

Microsoft discovered new custom malware, dubbed FoggyWeb, used by the Nobelium cyberespionage group to implant backdoor in Windows domains. NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers.

Encryption

Encryption Military Government Access

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Military Exercises Trigger Russian DDoS Attacks on Japan

Webinars

Trending Sources

Machete cyber-espionage group targets Latin America military

Webinars

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Russian APT groups target European governments ahead of May Elections

Alleged cyber attacks caused fire and explosions at nuclear and military facilities in Iran

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Movie From 1983 Had AI and InfoGov Right

Maze ransomware operators stole data from US military contractor Westech

Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Anonymous targets the Russian Military and State Television and Radio propaganda

Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Gamaredon group uses a new Outlook tool to spread malware

Ukraine’s SBU arrested a member of Pro-Russia hackers group ‘Cyber Army of Russia’

Group-IB identifies leaked credentials of 40,000 users of government websites in 30 countries

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

N. Korean Kimsuky APT targets S. Korea-US military exercises

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

APT28 group return to covert intelligence gathering ops in Europe and South America.

Iran-linked APT groups continue to evolve

LUCKY ELEPHANT campaign targets South Asian governments

New Gallmaker APT group eschews malware in cyber espionage campaigns

Taiwan Government faces 5 Million hacking attempts daily

APT28 targets key networks in Europe with HeadLace malware

Symantec uncovered the link between China-Linked Thrip and Billbug groups

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Turkish Hackers hit Greek Government websites and local stock exchange

Anonymous continues to support Ukraine against the Russia

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Pro-Russian hacktivists target Italy government websites

Mandiant identifies 3 hacktivist groups working in support of Russia

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Russia-linked Gamaredon group targets Ukraine officials

Hunting the ICEFOG APT group after years of silence

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Ukraine: Military defense agencies and banks hit by cyberattacks

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Group-IB presents its annual report on global threats to stability in cyberspace

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Russia-linked Nobelium APT group uses custom backdoor to target Windows domains

Stay Connected