Government, Military and Security - Information Management Today

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Security Affairs

SEPTEMBER 20, 2024

Ukraine’s NCCC banned the Telegram app for government agencies, military, and critical infrastructure, due to national security concerns. ” reads the announcement published by the National Security and Defense Council of Ukraine. The ban does not affect Ukrainian citizens. ” continues the announcement.

Military

Military Government Personal data Phishing

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods.

Military

Military Government Access Risk

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Report Suggests CISA Should Dominate Federal Cybersecurity

Data Breach Today

OCTOBER 24, 2023

Federal Civilian Agencies 'Are Likely to Resist This Dramatic Change,' Report Says A study of federal government cybersecurity suggests the Department of Homeland Security could play a more prominent role in securing civilian networks, in a report that touts a "more centralized defensive strategy."

Cybersecurity

Cybersecurity Military Government Security

Russia Says It's Seen 'Unprecedented' Level of Cyberattacks

Data Breach Today

MARCH 18, 2022

Also: Anonymous Continues Its Cyberwar Against the Russian Government As the Ukrainian military resists Russian advances toward its major population centers, its IT security teams are contending with record cyber incidents - although the same is true of their eastern neighbors, with Russia reporting "unprecedented" cyberattacks on its networks.

Military

Military IT Government Security

New Charges Derail COVID Release for Hacker Who Aided ISIS

Krebs on Security

JANUARY 19, 2021

military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. based e-commerce company, stealing personal and financial data on 1,300 government employees, and providing the data to an Islamic State hacking group.

Military

Military Passwords Government Personal data

Netherlands Says Armed Forces May Combat Ransomware Attacks

Data Breach Today

OCTOBER 8, 2021

Officials and Experts Debate Legality, Diplomatic Ramifications of the Statement The Dutch government says it may use intelligence agencies or military services to counter cyberattacks - including ransomware attacks - that threaten the country's national security.

Ransomware

Ransomware Military Government Security

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Security Affairs

DECEMBER 12, 2023

The Ukrainian government’s military intelligence service announced the hack of the Russian Federal Taxation Service (FNS). The military intelligence service said that the hack was the result of a successful special operation on the territory of Russia. “As a result of the cyber attack, all servers received malware.

Military

Military Government Communications IT

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. Security experts fear that hackers could attempt to sell stolen data about the nuclear deterrent on to a foreign state. The LGM-30 Minuteman is a U.S. Pierluigi Paganini.

Military

Military Ransomware Encryption Risk

Anonymous targets the Russian Military and State Television and Radio propaganda

Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military

Military Cybersecurity Security Government

SHARED INTEL: How Russia’s war mongering compromises those holding security clearances

The Last Watchdog

APRIL 19, 2022

While global commerce is an important aspect of the world economy, individuals who hold national security clearances need to be aware that some of the activities they engage in could pose a security risk and may negatively impact their security clearances. national security secrets. national security secrets.

Security

Security Risk Military Government

The British government aims at improving its offensive cyber capability

Security Affairs

OCTOBER 13, 2020

. “[offensive cyber capability could] degrade, disrupt and even destroy critical capabilities and infrastructure of those who would do us harm, ranging from strategic to tactical targets” both in isolation or alongside traditional military force.” ” Sanders confirmed. ” reported The Guardian. . Pierluigi Paganini.

Government

Government Military IT Security

U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

Krebs on Security

DECEMBER 14, 2020

Treasury and Commerce Departments were reportedly compromised by a supply chain attack on SolarWinds , a security vendor that helps the federal government and a range of Fortune 500 companies monitor the health of their IT networks. the National Security Agency. Communications at the U.S. Treasury and Commerce departments.

Military

Military Government Cybersecurity Security

When Your Smart ID Card Reader Comes With Malware

Krebs on Security

MAY 17, 2022

government employees and contractors have been issued a secure smart ID card that enables physical access to buildings and controlled spaces, and provides access to government computer networks and systems at the cardholder’s appropriate security level. government smart cards. government smart cards.

Government

Government Military Access Security

Alleged cyber attacks caused fire and explosions at nuclear and military facilities in Iran

Security Affairs

JULY 3, 2020

The media reported a fire at the Natanz nuclear enrichment site and an explosion at the Parchin military complex near Tehran, the latter is suspected to be a government center for the production of missiles. The Cheetahs group claimed to be dissident members of Iran’s security forces. ” reported the Associated Press.

Military

Military Government Security IT

Cisco addressed Webex flaws used to compromise German government meetings

Security Affairs

JUNE 5, 2024

Cisco addressed vulnerabilities that were exploited to compromise the Webex meetings of the German government. In early May, German media outlet Zeit Online revealed that threat actors exploited vulnerabilities in the German government’s implementation of the Cisco Webex software to access internal meetings.

Government

Government Metadata Military Passwords

No Surprise: China Blamed for 'Big Data' Hack of Equifax

Data Breach Today

FEBRUARY 11, 2020

Analysis: Equifax Failed on Security, But Only Governments Can Hold Each Other to Account Who's surprised Chinese military hackers allegedly hacked Equifax?

Big data

Big data Military Personal data Government

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. Yet, there’s still work to be done to make this path more accessible and known among the veteran and transitioning military community. Many government and non-profit organizations like VetJobs and VetsinTech are doing just this.

Cybersecurity

Cybersecurity Military Education Government

GAO: Pentagon's Cyber Hygiene Programs Come Up Short

Data Breach Today

APRIL 17, 2020

Audit Finds DoD Would Benefit From Better Security Training The U.S. Defense Department needs to improve its cybersecurity training programs for civilian and military employees to reduce the risks that common security incidents pose, a new audit from the Government Accountability Office finds.

Military

Military Cybersecurity Risk Government

UK Ministry of Defense disclosed a third-party data breach exposing military personnel data

Security Affairs

MAY 8, 2024

Defence Secretary Grant Shapps told House of Commons that the impacted system is not connected to the main military HR system. For reasons of national security, we can’t release further details of the suspected cyber activity behind this incident,” Mr. Shapps added. ” states the BBC. .” ” states the BBC.

Data breaches

Data breaches Military Government Personal data

N Korean Hackers Phishing With US Army Job Lures

Data Breach Today

JULY 29, 2023

Researchers Say APT37 Group Likely Behind Campaign Targeting South Koreans Government-backed North Korean hackers are posting convincing U.S. military job recruitment documents to lure Korean-speaking victims into downloading malware staged from legitimate but compromised South Korean websites, according to security researchers.

Military

Military Phishing Government Security

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

In mid-January, the government of Kyiv attributed the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151. In November 2021, Mandiant Threat Intelligence researchers linked the Ghostwriter disinformation campaign (aka UNC1151) to the government of Belarus. Pierluigi Paganini.

Military

Military Phishing CMS Government

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Cybersecurity Sales Blockchain

Report: Recent 10x Increase in Cyberattacks on Ukraine

Krebs on Security

MARCH 11, 2022

As their cities suffered more intense bombardment by Russian military forces this week, Ukrainian Internet users came under renewed cyberattacks, with one Internet company providing service there saying they blocked ten times the normal number of phishing and malware attacks targeting Ukrainians.

Phishing

Phishing Military Government Data collection

U.S. Government Indicts Chinese National For Alleged Spear Phishing Attacks

KnowBe4

SEPTEMBER 18, 2024

military and government entities, research institutions and private companies. Justice Department has indicted a Chinese national, Song Wu, for allegedly sending spear phishing emails to employees at various U.S.

Phishing

Phishing Government Military Security

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

The Last Watchdog

OCTOBER 17, 2018

Government Accountability Office audit last week found that the defense department is playing catch up when it comes to securing weapons systems from cyberattacks. military and civilian personnel were compromised. The result: personal information and credit card data of at least 30,000 U.S. Timely trust decisions.

Data breaches

Data breaches Security Military Government

Chinese man charged for spear-phishing against NASA and US Government

Security Affairs

SEPTEMBER 17, 2024

” The man, who remails at large, used fake email accounts posing as US-based researchers and engineers to target government personnel to obtain software and source code created by the National Aeronautics and Space Administration (“NASA”), research universities, and private companies. Air Force, Navy, Army, and the FAA.”

Phishing

Phishing Government Military Security

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military

Military Security Ransomware Insurance

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

South Korea military exercise. The military drill, the Ulchi Freedom Guardian summer exercises , will start on Monday, August 21, 2023 , and will last 11 days. The military exercises aim at improving the ability of the two armies to respond to North Korea’s evolving nuclear and missile threats.

Military

Military Phishing Government Security

Secret Service Investigates Breach at U.S. Govt IT Contractor

Krebs on Security

SEPTEMBER 9, 2019

Secret Service is investigating a breach at a Virginia-based government technology contractor that saw access to several of its systems put up for sale in the cybercrime underground, KrebsOnSecurity has learned. government IT contractor that does business with more than 20 federal agencies, including several branches of the military.

IT

IT Government Access Military

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

Security Affairs

JUNE 14, 2023

The IT giant pointed out that Cadet Blizzard is distinct from other known APT groups operating under the control of the Russian military intelligence GRU, such as Forest Blizzard ( STRONTIUM ) and Seashell Blizzard (IRIDIUM). Unlike other Russia-linked APT group, CadetBlizzard operations are extremely disruptive.

Military

Military Government IT Security

UAC-0142 APT targets Ukraine’s Delta military intelligence program

Security Affairs

DECEMBER 20, 2022

Ukraine’s CERT-UA revealed the national Delta military intelligence program has been targeted with a malware-based attack. ” states the Ukrainian military. SecurityAffairs – hacking, Delta military intelligence). Follow me on Twitter: @securityaffairs and Facebook and Mastodon. Pierluigi Paganini.

Military

Military Archiving Phishing Government

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

military procurement system. military procurement system and was spotted targeting Taiwan-based organizations The choice of the new targets in the latest campaign suggests a strategic interest of the People’s Republic of China according to the 2023 ODNI threat assessment. military server used for contract proposals and submissions.

Military

Military Manufacturing Government Access

GUEST ESSAY: Rising cyber risks make business intelligence gathering more vital than ever

The Last Watchdog

JULY 5, 2022

At any point the external environment can throw a curve ball – new government regulations, changes in political and social dynamics, or trends in sustainability to name a few. Cyber security keeps the C-suite up at night and perhaps that’s no surprise. Cyber security should also be viewed in a wider business context.

Risk

Risk Military Marketing Data Privacy

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11

Security Affairs

SEPTEMBER 15, 2024

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.

Security

Security Military Ransomware Marketing

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Ransomware

Ransomware Government Military Access

Pro-Russian hacktivists target Italy government websites

Security Affairs

MAY 14, 2022

The Italian police is investigating the attack, while the National Computer Security Incident Response Team (CSIRT) confirmed that the websites were hit with DDoS attacks. Our Legion conducts military cyber exercises in your countries in order to improve their skills. Follow me on Twitter: @securityaffairs and Facebook.

Government

Government Military Data breaches Cybersecurity

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

JULY 30, 2018

DataLocker honed its patented approach to manufacturing encrypted portable drives and landed some key military and government clients early on; the company has continued branching out ever since. You need to rely on external storage to securely transport your data. Park: Any industry that requires security.

Encryption

Encryption Military Passwords Authentication

China Issues Draft Data Security Law

Hunton Privacy

JULY 7, 2020

China has lacked a comprehensive data protection and data security law that regulates in detail requirements and procedures relating to the collection, processing, control and storage of personal data. Recently, another significant draft law on data security was issued by the Chinese legislative authority.

Security

Security Military Government Risk

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of data, including secret military data related to weapons production.

Military

Military Manufacturing Ransomware Mining

US Govt kicked off ‘Hack the Army 3.0’ bug bounty program

Security Affairs

JANUARY 7, 2021

government is going to launch the ‘Hack the Army 3.0’ government launched Hack the Army 3.0, Now the US government announced that Hack the Army 3.0 We’re calling on civilian and military hackers to show us what they’ve got in this bug bounty and to help train the future force.”. army.mil, *.goarmy.mil,

Military

Military Government Security Cybersecurity

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. As the United States and other nations condemn Russia’s actions, the odds of Russian cyber actors targeting the U.S.,

Cybersecurity

Cybersecurity Passwords Military Education

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Government

Government Ransomware Military Encryption

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Trending Sources

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Report Suggests CISA Should Dominate Federal Cybersecurity

Russia Says It's Seen 'Unprecedented' Level of Cyberattacks

New Charges Derail COVID Release for Hacker Who Aided ISIS

Netherlands Says Armed Forces May Combat Ransomware Attacks

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Maze ransomware operators stole data from US military contractor Westech

Anonymous targets the Russian Military and State Television and Radio propaganda

SHARED INTEL: How Russia’s war mongering compromises those holding security clearances

The British government aims at improving its offensive cyber capability

U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

When Your Smart ID Card Reader Comes With Malware

Alleged cyber attacks caused fire and explosions at nuclear and military facilities in Iran

Cisco addressed Webex flaws used to compromise German government meetings

No Surprise: China Blamed for 'Big Data' Hack of Equifax

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

GAO: Pentagon's Cyber Hygiene Programs Come Up Short

UK Ministry of Defense disclosed a third-party data breach exposing military personnel data

N Korean Hackers Phishing With US Army Job Lures

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

New Leak Shows Business Side of China’s APT Menace

Report: Recent 10x Increase in Cyberattacks on Ukraine

U.S. Government Indicts Chinese National For Alleged Spear Phishing Attacks

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

Chinese man charged for spear-phishing against NASA and US Government

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

N. Korean Kimsuky APT targets S. Korea-US military exercises

Secret Service Investigates Breach at U.S. Govt IT Contractor

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

UAC-0142 APT targets Ukraine’s Delta military intelligence program

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

GUEST ESSAY: Rising cyber risks make business intelligence gathering more vital than ever

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 11

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Pro-Russian hacktivists target Italy government websites

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

China Issues Draft Data Security Law

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

US Govt kicked off ‘Hack the Army 3.0’ bug bounty program

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Conti Ransomware gang threatens to overthrow the government of Costa Rica

Stay Connected