Government, Industry and Military - Information Management Today

US adds Tencent to the list of companies supporting Chinese military

Security Affairs

JANUARY 7, 2025

US adds Chinese multinational technology and entertainment conglomerate Tencent to the list of companies supporting the Chinese military. The US Department of Defense has added Chinese multinational technology and entertainment conglomerate Tencent to its “Chinese military company” list under the Section 1260 requirement.

Military

Military Cloud Government Analytics

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” ” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. ” reads the message published on the leak site.

Military

Military Manufacturing Ransomware Mining

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military

Military Government Security IT

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Alleged cyber attacks caused fire and explosions at nuclear and military facilities in Iran

Security Affairs

JULY 3, 2020

Recently several major Iranian industrial facilities suffered a sequence of mysterious incidents. The media reported a fire at the Natanz nuclear enrichment site and an explosion at the Parchin military complex near Tehran, the latter is suspected to be a government center for the production of missiles. Pierluigi Paganini.

Military

Military Government Security IT

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Security Affairs

DECEMBER 12, 2023

The Ukrainian government’s military intelligence service announced the hack of the Russian Federal Taxation Service (FNS). The military intelligence service said that the hack was the result of a successful special operation on the territory of Russia. “As a result of the cyber attack, all servers received malware.

Military

Military Government Communications IT

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

The homepage of Stark Industries Solutions. Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe.

Cloud

Cloud Education Government Communications

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

military procurement system. military procurement system and was spotted targeting Taiwan-based organizations The choice of the new targets in the latest campaign suggests a strategic interest of the People’s Republic of China according to the 2023 ODNI threat assessment. military server used for contract proposals and submissions.

Military

Military Manufacturing Government Access

Chinese man charged for spear-phishing against NASA and US Government

Security Affairs

SEPTEMBER 17, 2024

” The man, who remails at large, used fake email accounts posing as US-based researchers and engineers to target government personnel to obtain software and source code created by the National Aeronautics and Space Administration (“NASA”), research universities, and private companies. Air Force, Navy, Army, and the FAA.”

Phishing

Phishing Government Military Security

Chinese actors behind attacks on industrial enterprises and public institutions

Security Affairs

AUGUST 9, 2022

China-linked threat actors targeted dozens of industrial enterprises and public institutions in Afghanistan and Europe. In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. ” concludes the report.

Encryption

Encryption Military Archiving Phishing

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Security Affairs

JUNE 26, 2022

Experts speculate a cyber attack may have turned off the industrial safety controls at the natural gas facility. ICS malware like TRITON , which experts associated with Russia-linked APT group XENOTIME , has offensive capabilities to shut down industrial safety controls and cause extensive damages to industrial facilities.

Military

Military Cloud Government Security

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

Security Affairs

FEBRUARY 24, 2023

This year, 750 cyber specialists have participated in the military cyberwarfare exercise. The Defence Cyber Marvel 2 (DCM2) is the largest training exercise organised by the Army Cyber Association to allow personnel from across the Armed Forces to build their skills within the cyber and electromagnetic domain.

Military

Military Education Government IT

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. Pierluigi Paganini.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

Security Affairs

OCTOBER 17, 2018

Yoroi security firm uncovered a targeted attack against one of the most important companies in the Italian Naval Industry leveraging MartyMcFly Malware. The victim was one of the most important leaders in the field of security and defensive military grade Naval ecosystem in Italy. Edited by Pierluigi Paganini.

Computer and Electronics

Computer and Electronics Encryption Security Military

Ukraine’s GUR hacked the Russian Ministry of Defense

Security Affairs

MARCH 4, 2024

Stolen documents include: confidential documents, including orders and reports circulated among over 2000 structural units of the Russian military service. Rosaviatsia is the government agency responsible for the oversight and regulation of civil aviation in Russia.

Military

Military Data breaches Encryption Government

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems.

Military

Military Government Phishing Authentication

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. The sanctioned entities conducted operations to steal funds to support the military strategy of the regime.

Government

Government Military Financial Services Security

US adds Tencent to the list of companies supporting Chinese military

Security Affairs

JANUARY 7, 2025

US adds Chinese multinational technology and entertainment conglomerate Tencent to the list of companies supporting the Chinese military. The US Department of Defense has added Chinese multinational technology and entertainment conglomerate Tencent to its “Chinese military company” list under the Section 1260 requirement.

Military

Military Cloud Government Analytics

The US Military Buys Commercial Location Data

Schneier on Security

NOVEMBER 19, 2020

Vice has a long article about how the US military buys commercial location data worldwide. military is buying the granular movement data of people around the world, harvested from innocuous-seeming apps, Motherboard has learned. This isn’t new, this isn’t just data of non-US citizens, and this isn’t the US military.

Military

Military Sales Government Privacy

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11

Security Affairs

SEPTEMBER 15, 2024

Mythical Beasts and Where to Find Them: Mapping the Global Spyware Market and its Threats to National Security and Human Rights Dissecting Lumma Malware: Analyzing the Fake CAPTCHA and Obfuscation Techniques – Part 2 Predator Spyware Infrastructure Returns Following Exposure and Sanctions Malware’s Shared Secrets: Code Similarity Insights for (..)

Security

Security Military Ransomware Marketing

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. Yet, there’s still work to be done to make this path more accessible and known among the veteran and transitioning military community. Veterans have the characteristics that make them ideal for these roles. And it works.

Cybersecurity

Cybersecurity Military Education Government

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S.

Military

Military Security Ransomware Government

Malaysia’s MyCERT warns cyber espionage campaign carried out by APT40

Security Affairs

FEBRUARY 10, 2020

Malaysia’s MyCERT issued a security alert to warn of a hacking campaign targeting government officials that was carried out by the China-linked APT40 group. Malaysia’s Computer Emergency Response Team (MyCERT) warns of a cyber espionage campaign carried out by the China-linked APT40 group aimed at Malaysian government officials.

Government

Government Military Phishing Security

Russian and Belarusian men charged with spying for Russian GRU

Security Affairs

JANUARY 8, 2023

Polish authorities charged Russian and Belarusian individuals with spying for the Russian military intelligence service (GRU). Polish authorities charged Russian and Belarusian individuals, who were arrested in April, with spying for the Russian military intelligence service (GRU) from 2017 to April 2022.

Military

Military Ransomware Government Security

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

Security Affairs

AUGUST 6, 2024

According to the South Korean authorities, the government of Pyongyang’s goal is to steal intellectual property and trade secrets from the South. According to the South Korean authorities, the government of Pyongyang’s goal is to steal intellectual property and trade secrets from the South. ” reads the advisory.

Information capture

Information capture Authentication Military Government

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

.” At the time of the report, although Mandiant has no evidence about the purposes of the attacks, the broad targeting across multiple industries and the choosing of targets of a global scale, suggests that the attackers could be financially motivated. ” Follow me on Twitter: @securityaffairs and Facebook.

Manufacturing

Manufacturing Phishing Military Retail

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Security Affairs

OCTOBER 22, 2023

Chinese cyber espionage aims at obtaining commercial secrets and intellectual property to advantage the government of Beijing. The espionage activity used different means to conceal the involvement of the Chinese government, including financial investments. ” reported BBC.

Military

Military Government Access Cybersecurity

CIA Hacking unit APT-C-39 hit China since 2008

Security Affairs

MARCH 4, 2020

According to the firm, the US cyber spies are targeting various industry sectors and government agencies. The Qihoo 360 experts claim that a CIA hacking unit tracked as APT-C-39 has hacked organizations in the aviation, scientific research, oil, technology industries, it also targeted government agencies.

Military

Military Government Security IT

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

MAY 21, 2020

Mitsubishi Electric had also already notified members of the Japanese government and the Ministry of Defense. ” The advanced prototype missile was designed to be deployed in Japan’s remote islands as a deterrence to military activities conducted by China in the area. . ” states the AP press agency.

Security

Security Military Manufacturing Personal data

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Cybersecurity Sales Blockchain

North Korea-linked hackers stole $626 million in virtual assets in 2022

Security Affairs

DECEMBER 22, 2022

The Government of Pyongyang focuses on crypto hacking to fund its military program following harsh U.N. Cyber security and intelligence experts believe that attacks aimed at the cryptocurrency industry will continue to increase next year. economic sanctions were toughened in 2017 in response to its nuclear and missile tests.”

Military

Military Government Ransomware Security

Most of the attacks on Telecom Sector in 2019 were carried out by China-linked hackers

Security Affairs

MARCH 5, 2020

China-linked cyber espionage groups increasingly targeted organizations in the telecommunications industry in 2019. According to the CrowdStrike 2020 Global Threat Report, the telecommunications and government sectors were the most targeted by the threat actors. ” reads the report published by CrowdStrike.

Military

Military Government IT Security

Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

Security Affairs

NOVEMBER 27, 2023

” Rosaviatsia is the government agency responsible for the oversight and regulation of civil aviation in Russia. The state-sponsored hackers claimed to have stolen sensitive documents that contained proof of a crisis in Russia’s aviation industry. ” continues the announcement. ” concludes the report.

Military

Military Manufacturing Government Authentication

CISA’s MAR warns of North Korean BLINDINGCAN RAT

Security Affairs

AUGUST 19, 2020

According to the government experts, the BLINDINGCAN malware was employed in attacks aimed at US and foreign companies operating in the military defense and aerospace sectors. Some of the attacks were attributed by the researchers to cyber espionage campaigns tracked as Operation North Star and Operation Dream Job. .

Military

Military Systems administration Government Access

Teheran: U.S. has started ‘Cyber War’ against Iran

Security Affairs

OCTOBER 1, 2019

Iran ’s Passive Defense Organization chief Gholamreza Jalali declared that the US government has started its cyber war against the country. Jalali is an Islamic Revolution Guard Corps (IRGC) brigadier general, in November 2018 he announced that government experts have uncovered and neutralized a new strain of Stuxnet.

Military

Military Government IT Security

Security Affairs newsletter Round 399 by Pierluigi Paganini

Security Affairs

DECEMBER 25, 2022

Expert found Backdoor credentials in ZyXEL LTE3301 M209 Raspberry Robin malware used in attacks against Telecom and Governments TikTok parent company ByteDance revealed the use of TikTok data to track journalists BetMGM discloses security breach impacting 1.5

Security

Security Military Ransomware Encryption

SolarWinds hackers also breached the US NNSA nuclear agency

Security Affairs

DECEMBER 20, 2020

The Department of Energy is responding to a cyber incident related to the Solar Winds compromise in coordination with our federal and industry partners. The agency is responsible for enhancing national security through the military application of nuclear science. said Shaylyn Hynes, DOE Spokeswoman.

Military

Military Risk Security Communications

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs

FEBRUARY 23, 2022

The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. The name “ Bvp47 ” comes form numerous references to the string “Bvp” and the numerical value “0x47” used in the encryption algorithm.

Encryption

Encryption Military Archiving Government

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 16, 2024

Japanese video-sharing platform Niconico was victim of a cyber attack UK NHS call for O-type blood donations following ransomware attack on London hospitals Christie’s data breach impacted 45,798 individuals Sticky Werewolf targets the aviation industry in Russia and Belarus Frontier Communications data breach impacted over 750,000 individuals PHP (..)

Data breaches

Data breaches Security Ransomware Sales

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Security Affairs

AUGUST 5, 2020

The researchers also analyzed the distribution of the vulnerable hosts by industry and discovered that the flaw affects hosts in: According to BadPacket, 677 out of the 913 unique IP addresses found in the list were detected by Bad Packets CTI scans to be vulnerable to CVE-2019-11510 immediately after the exploit was made public in 2019.

Passwords

Passwords Security Ransomware Military

Pakistani-Aligned APT36 Targets Indian Defense Organizations

Data Breach Today

MAY 22, 2024

Espionage Group Using Linux-based Espionage Tools to Nab Defense Secrets A politically motivated hacking group aligned with Pakistani interests is matching the Indian military's shift away from the Windows operating system with a heavy focus on malware encoded for Linux.

Military

Military Government

EU bodies agree on new EU export rules for dual-use technology

Security Affairs

NOVEMBER 11, 2020

EU lawmakers and the European Council aim to update controls for the sale of dual-use solutions such as surveillance spyware, facial recognition systems and drones to prevent authoritarian government abusing them for censorship and to persecute political opponents and dissidents violating human rights.

Sales

Sales Military Government Risk

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Security Affairs

SEPTEMBER 18, 2024

and Taiwan across various sectors, including military, government, higher education, telecommunications, defense industrial base, and IT.” “This botnet has targeted entities in the U.S. ” concludes the report.

IoT

IoT Military Education Cybersecurity

US adds Tencent to the list of companies supporting Chinese military

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Webinars

Trending Sources

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Webinars

Alleged cyber attacks caused fire and explosions at nuclear and military facilities in Iran

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Stark Industries Solutions: An Iron Hammer in the Cloud

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Chinese man charged for spear-phishing against NASA and US Government

Chinese actors behind attacks on industrial enterprises and public institutions

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

US indicted 4 Russian government employees for attacks on critical infrastructure

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

Ukraine’s GUR hacked the Russian Ministry of Defense

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

US adds Tencent to the list of companies supporting Chinese military

The US Military Buys Commercial Location Data

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Malaysia’s MyCERT warns cyber espionage campaign carried out by APT40

Russian and Belarusian men charged with spying for Russian GRU

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

CIA Hacking unit APT-C-39 hit China since 2008

Japan suspects HGV missile data leak in Mitsubishi security breach

New Leak Shows Business Side of China’s APT Menace

North Korea-linked hackers stole $626 million in virtual assets in 2022

Most of the attacks on Telecom Sector in 2019 were carried out by China-linked hackers

Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

CISA’s MAR warns of North Korean BLINDINGCAN RAT

Teheran: U.S. has started ‘Cyber War’ against Iran

Security Affairs newsletter Round 399 by Pierluigi Paganini

SolarWinds hackers also breached the US NNSA nuclear agency

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Pakistani-Aligned APT36 Targets Indian Defense Organizations

EU bodies agree on new EU export rules for dual-use technology

Experts warn of China-linked APT’s Raptor Train IoT Botnet

Stay Connected