Government and Libraries - Information Management Today

Foreign adversary hacked email communications of the Library of Congress says

Security Affairs

NOVEMBER 18, 2024

The Library of Congress discloses the compromise of some of its IT systems, an alleged foreign threat actor hacked their emails. Only email communications between congressional offices and some library staff, including the Congressional Research Service, from January to September, were affected. ” reported the NBC News.

Libraries

Libraries Communications Access Government

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It is one of the largest libraries in the world. ” reads the announcement.

Libraries

Libraries Ransomware Manufacturing Education

CERT France – Pysa ransomware is targeting local governments

Security Affairs

MARCH 19, 2020

CERT France is warning of a new wave of attacks using Pysa ransomware (Mespinoza) that is targeting local governments. CERT France cyber-security agency is warning about a new wave of ransomware attack that is targeting the networks of local government authorities. Pierluigi Paganini. SecurityAffairs – Pysa ransomware, cybercrime).

Ransomware

Ransomware Government Encryption Passwords

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Russia-linked APT28 targets government Polish institutions

Security Affairs

MAY 10, 2024

CERT Polska warns of a large-scale malware campaign against Polish government institutions conducted by Russia-linked APT28. CERT Polska and CSIRT MON teams issued a warning about a large-scale malware campaign targeting Polish government institutions, allegedly orchestrated by the Russia-linked APT28 group. ” reads the alert.

Government

Government Military Libraries Archiving

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Security Affairs

MARCH 28, 2024

In 2023, the researchers observed a surge in zero-day vulnerabilities in third-party components and libraries that can impact all products that use them. The Chinese government made the headlines because government-linked APT groups exploited 12 zero-day vulnerabilities in 2023, which marks a notable increase from seven in 2022.

Government

Government Ransomware Libraries Access

Federal Communications Commission has cut off government funding for equipment from Chinese firms

Security Affairs

NOVEMBER 25, 2019

Federal Communications Commission has cut off government funding for equipment from Huawei and ZTE due to security concerns. Federal Communications Commission has cut off government funding for equipment from the Chinese companies Huawei and ZTE due to security concerns. Rural schools, hospitals, and libraries will feel the effects.

Communications

Communications Government Libraries Risk

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs

OCTOBER 13, 2023

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. The CurKeep payload is very small, it is 10kb in size, contains 26 functions and is not statically compiled with any library. Is it linked to ToddyCat APT? appeared first on Security Affairs.

Government

Government IT Encryption Libraries

Invitation to tender: Future ready libraries

CILIP

JANUARY 31, 2025

Invitation to tender: Future ready libraries CILIP is inviting researchers to undertake a gap analysis and consultation with sector experts to create a comprehensive review of training provision for leadership in the public library workforce in England.

Libraries

Libraries Access Government

Trust Libraries: 10 Pledges for libraries to a new Government

CILIP

JUNE 7, 2024

Trust Libraries: 10 Pledges for libraries to a new Government A General Election is just round the corner and its outcome will affect us all, with a new government and potentially hundreds of new MPs taking their seats in the House of Commons.

Libraries

Libraries Government Access IT

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

Breach Roundup: Canada Bans WeChat and Kaspersky Apps

Data Breach Today

NOVEMBER 2, 2023

Also: Iranian State Hackers Stalk Middle Eastern Governments This week, Canada banned WeChat and Kaspersky apps, REvil members faced trial in a Russian military court, the British Library experienced an IT outage, Iranian state-backed hackers targeted Middle East governments and European officials extended the ban on Meta's behavioral advertising practices. (..)

Military

Military Libraries Government IT

Vulnerabilities in Microsoft apps for macOS allow stealing permissions

Security Affairs

SEPTEMBER 3, 2024

These flaws could allow attackers to inject malicious libraries into Microsoft’s apps and steal permissions. Despite these risks, Microsoft considers the issues low-risk and declined to fix them, stating that some apps need to allow unsigned libraries for plugin support. ” continues the report.

Libraries

Libraries Risk Access Security

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Security Affairs

DECEMBER 12, 2021

Quebec shut down nearly 4,000 of its sites in response to the discovery of the Log4Shell flaw in the Apache Log4j Java-based logging library. Quebec shut down nearly 4,000 of its sites as a preventative measure after the disclosure of a PoC exploit for the Log4Shell flaw ( CVE-2021-44228 ) in the Apache Log4j Java-based logging library.

Libraries

Libraries Digital transformation Education Government

Chinese cyberspies obtained Microsoft signing key from Windows crash dump due to a mistake

Security Affairs

SEPTEMBER 6, 2023

Microsoft revealed that the Chinese group Storm-0558 stole a signing key used to breach government email accounts from a Windows crash dump. Storm-0558 threat actors focus on government agencies in Western Europe and were observed conducting cyberespionage, data theft, and credential access attacks.

Authentication

Authentication Libraries Access Government

EastWind campaign targets Russian organizations with sophisticated backdoors

Security Affairs

AUGUST 12, 2024

A campaign tracked as EastWind is targeting Russian government and IT organizations with PlugY and GrewApacha Backdoors. In late July 2024, Kaspersky researchers detected a series of targeted cyberattacks against the Russian government and IT organizations. “This library is a backdoor packed with the VMProtect tool.

Libraries

Libraries Encryption Cloud Archiving

CILIP and school library organisations submit joint response to DfE’s Curriculum & Assessment Review

CILIP

DECEMBER 2, 2024

The Government review was launched in September 2024 and aims to ensure that the national curriculum appropriately balances ambition, excellence, relevance, flexibility, and inclusivity for all children and young people. If they are lost it will be incredibly hard to replace them and their skilled staff. We are still awaiting a response.

Libraries

Libraries Education Government Access

The Governance and Recordkeeping Around the World Newsletter April 2021 Edition available via Library and Archives Canada

IG Guru

APRIL 27, 2021

The post The Governance and Recordkeeping Around the World Newsletter April 2021 Edition available via Library and Archives Canada appeared first on IG GURU. Check out the post here.

Libraries

Libraries Archiving Government Records Management

DinodasRAT Linux variant targets users worldwide

Security Affairs

MARCH 31, 2024

ESET researchers reported that a Windows version of DinodasRAT was used in attacks against government entities in Guyana. The campaign seems active since at least early 2022 and focuses primarily on government organizations. The library uses the Tiny Encryption Algorithm ( TEA ) in CBC mode to cipher and decipher the data.

Libraries

Libraries Encryption Communications Government

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The CISA agency is warning of a surge in Emotet attacks targeting multiple state and local governments in the US since August. The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert to warn of a surge of Emotet attacks that have targeted multiple state and local governments in the U.S. since August.

Government

Government Libraries Cybersecurity Phishing

Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401

Security Affairs

SEPTEMBER 8, 2024

This issue arises because the GeoTools library API, which GeoServer uses, evaluates property/attribute names for feature types in a way that unsafely passes them to the commons-jxpath library, allowing arbitrary code execution. government entities in Belgium, and telecommunications companies in Thailand and Brazil.

Libraries

Libraries Encryption Cybersecurity Access

Statement: Libraries Minister must protect local library services

CILIP

MARCH 6, 2024

CILIP has previously signalled deep concern over the lack of financial support to Local Authorities and the fact that the recently announced ‘Exceptional Financial Support’ (EFS) package will prompt a ‘fire sale’ of vital assets, including public libraries, in the 19 Councils concerned.

Libraries

Libraries Sales Risk Government

Libraries Change Lives 2024 – Putting libraries in the spotlight

CILIP

APRIL 16, 2024

Libraries Change Lives Week anticipates this year’s General Election, puts the sector on a public platform where libraries, library staff and library users can evidence the value of this statutory service - both locally and nationally - to the leaders of tomorrow.

Libraries

Libraries Government IT

CISA releases a scanner to identify web services affected by Apache Log4j flaws

Security Affairs

DECEMBER 22, 2021

Government experts warn of sophisticated cyber threat actors which are actively scanning networks to potentially exploit the above flaws in vulnerable systems. Government experts warn of sophisticated cyber threat actors which are actively scanning networks to potentially exploit the above flaws in vulnerable systems.

Libraries

Libraries Cybersecurity Security Government

[Podcast] Strategic Considerations for Information Governance Audits

AIIM

APRIL 17, 2020

Information governance audits, in particular, are used to ensure compliance with relevant information governance policies and procedures. On this episode of the AIIM on Air podcast , your host Kevin Craine explores Information Governance Audits with AIIM member Andrew du Fresne. Do they make compliance objectives more effective?

Information governance

Information governance Government Compliance Libraries

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Recently organizations in healthcare, research, and government facilities have been hit by Coronavirus-themed attacks that deployed multiple malware families, including ransomware and information stealers (i.e.

Ransomware

Ransomware Phishing Government File names

US CISA orders federal agencies to fix Log4Shell by December 24th

Security Affairs

DECEMBER 14, 2021

US CISA ordered federal agencies to address the critical Log4Shell vulnerability in the Log4j library by December 24th, 2021. US CISA ordered federal agencies to address the critical Log4Shell vulnerability in the Log4j library by December 24th, 2021. beta9 to 2.14.1. ” reads the announcement published by CISA.

Libraries

Libraries Cybersecurity Security Risk

Alleged APT implanted a backdoor in the network of a US federal agency

Security Affairs

DECEMBER 20, 2021

federal government commission associated with international rights. federal government commission associated with international rights. ” According to security firm Avast who discovered the attack, the backdoor was likely used as the initial vector in a multi-stage attack to penetrate the government network.

Government

Government Libraries Access Security

Leveraging Metadata for Enhanced Information Governance

Gimmal

NOVEMBER 21, 2024

Enter metadata—a powerful tool that can revolutionize your information governance strategy. Facilitate Compliance and Governance : Use metadata to automate records management processes, apply retention policies, and ensure regulatory compliance. A Visual Analogy Imagine walking down a supermarket aisle looking for soup.

Metadata

Metadata Information governance Government Records Management

Iran-linked threat actors compromise US Federal Network

Security Affairs

NOVEMBER 16, 2022

. “CISA obtained four malicious files for analysis during an on-site incident response engagement at a Federal Civilian Executive Branch (FCEB) organization compromised by Iranian government sponsored advanced persistent threat (APT) actors.” ” reads the Malware Analysis Report (AR22-320A) published by CISA.

Government

Government Mining Cybersecurity Libraries

Zeus Sphinx continues to be used in Coronavirus-themed attacks

Security Affairs

MAY 12, 2020

The Zeus Sphinx malware was first observed on August 2015, a few days after a new variant of the popular Zeus banking trojan was offered for sale on hacker forums, At the end of March, experts from IBM X-Force uncovered a hacking campaign employing the Zeus Sphinx malware that focused on government relief payment.

Libraries

Libraries Sales Government IT

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

The Last Watchdog

MARCH 24, 2025

In general, this means avoiding hardcoding particular algorithms and favoring libraries and systems that simplify migrating between algorithms. Governments are concerned about protecting citizen information that passes over the Internet and about protecting classified information that moves within its network.

Encryption

Encryption Financial Services Risk Libraries

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

Recently, the Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The victims of the group are “targets of opportunity.”

Ransomware

Ransomware Manufacturing Education Libraries

DuneQuixote campaign targets the Middle East with a complex backdoor

Security Affairs

APRIL 21, 2024

Threat actors target government entities in the Middle East with a new backdoor dubbed CR4T as part of an operation tracked as DuneQuixote. The malware is developed in C/C++ without utilizing the Standard Template Library (STL), and certain segments are coded in pure Assembler.” ” reads the analysis published by Kaspersky.

Libraries

Libraries Communications IT Government

Delivering Malware Through Abandoned Amazon S3 Buckets

Schneier on Security

FEBRUARY 12, 2025

These buckets contained software libraries that are still used. The TL;DR is that this time, we ended up discovering ~150 Amazon S3 buckets that had previously been used across commercial and open source software products, governments, and infrastructure deployment/update pipelines—and then abandoned.

Libraries

Libraries Communications Government IT

Experts warn of attacks using a new Linux variant of SFile ransomware

Security Affairs

JANUARY 17, 2022

“The SFile ransomware uses the Mbed TLS library, RSA-2048 and AES-256 algorithms for file encryption. The ransomware was involved in targeted attacks against corporate and government networks. The ransomware does not have its own portal; the attackers communicate with victims via email” reported ESET.

Ransomware

Ransomware Encryption Libraries Communications

MY TAKE: Poorly protected local government networks cast shadow on midterm elections

The Last Watchdog

SEPTEMBER 14, 2018

It’s easy to think of it as a problem the federal government must address or something that enterprises deal with, but cybersecurity has to be addressed closer to home, as well. His company supplies a co-managed SIEM service to mid-sized and large enterprises, including local government agencies. I spoke to A.N. Election threat.

Government

Government Digital transformation Mining Insurance

OceanLotus APT group leverages a steganography-based loader to deliver backdoors

Security Affairs

APRIL 3, 2019

The hackers targeting organizations across multiple industries and have also targeted foreign governments, dissidents, and journalists. The two loaders discovered by Cylance and used by the APT group use side-loaded DLLs and an AES128 implementation from Crypto++ library for payload decryption.

Libraries

Libraries Encryption Communications Manufacturing

Libraries at Risk: Update

CILIP

MARCH 18, 2024

Libraries at Risk: Update CILIP has written to eight councils in the Libraries at Risk Campaign, launched the #DearChancellor campaign on social media, and written a formal letter to Lord Parkinson to initiate dialogue on the future of libraries. View all the #DearChancellor tweets on X (formerly Twitter).

Libraries

Libraries Risk Sales Government

CILIP writes to Libraries Minister

CILIP

AUGUST 30, 2024

CILIP writes to Libraries Minister CILIP has written to Sir Chris Bryant, detailing how CILIP can support the new government’s key missions. Chief Executive Louis Coiffait-Gunn reached out to the MP after he was announced as heading up responsibility for public libraries.

Libraries

Libraries Government IT

CILIP welcomes publication of Sanderson Review of Public Libraries

CILIP

JANUARY 16, 2024

CILIP welcomes publication of Sanderson Review of Public Libraries CILIP has welcomed the publication of the findings of Baroness Sanderson of Welton’s Independent Review of Public Libraries, announced today at an event at the House of Lords attended by our CEO, Nick Poole.

Libraries

Libraries Government Education Communications

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

Security Affairs

OCTOBER 3, 2018

Government experts analyzed 10 samples of malware involved in FASTCash attacks, state-sponsored hackers used them to compromise payment “switch application servers” within the targeted banks to facilitate fraudulent transactions. ” states the report. ” continues the report.

Retail

Retail Libraries Government Phishing

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

Experts observed a 400% increase in the number of attacks, compared with October, that hit government organizations. PYSA ransomware operators focus on large or high-value finance, government and healthcare organisations. CERT-FR’s alert states that the Pysa ransomware code is based on public Python libraries.

Ransomware

Ransomware Encryption Government Retail

Foreign adversary hacked email communications of the Library of Congress says

Rhysida ransomware gang is auctioning data stolen from the British Library

Webinars

Trending Sources

CERT France – Pysa ransomware is targeting local governments

Webinars

Russia-linked APT28 targets government Polish institutions

Google: China dominates government exploitation of zero-day vulnerabilities in 2023

Federal Communications Commission has cut off government funding for equipment from Chinese firms

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Invitation to tender: Future ready libraries

Trust Libraries: 10 Pledges for libraries to a new Government

Raspberry Robin malware used in attacks against Telecom and Governments

Breach Roundup: Canada Bans WeChat and Kaspersky Apps

Vulnerabilities in Microsoft apps for macOS allow stealing permissions

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Chinese cyberspies obtained Microsoft signing key from Windows crash dump due to a mistake

EastWind campaign targets Russian organizations with sophisticated backdoors

CILIP and school library organisations submit joint response to DfE’s Curriculum & Assessment Review

The Governance and Recordkeeping Around the World Newsletter April 2021 Edition available via Library and Archives Canada

DinodasRAT Linux variant targets users worldwide

CISA alert warns of Emotet attacks on US govt entities

Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401

Statement: Libraries Minister must protect local library services

Libraries Change Lives 2024 – Putting libraries in the spotlight

CISA releases a scanner to identify web services affected by Apache Log4j flaws

[Podcast] Strategic Considerations for Information Governance Audits

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

US CISA orders federal agencies to fix Log4Shell by December 24th

Alleged APT implanted a backdoor in the network of a US federal agency

Leveraging Metadata for Enhanced Information Governance

Iran-linked threat actors compromise US Federal Network

Zeus Sphinx continues to be used in Coronavirus-themed attacks

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

Rhysida ransomware gang claimed China Energy hack

DuneQuixote campaign targets the Middle East with a complex backdoor

Delivering Malware Through Abandoned Amazon S3 Buckets

Experts warn of attacks using a new Linux variant of SFile ransomware

MY TAKE: Poorly protected local government networks cast shadow on midterm elections

OceanLotus APT group leverages a steganography-based loader to deliver backdoors

Libraries at Risk: Update

CILIP writes to Libraries Minister

CILIP welcomes publication of Sanderson Review of Public Libraries

Hidden Cobra APT used the new ATM cash-out scheme FASTCash to hit banks worldwide

PYSA ransomware gang is the most active group in November

Stay Connected