Government and Tools - Information Management Today

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

First, forensic traces showed that Serbian police used a Cellebrite tool to unlock and extract data from his device without informing him, obtaining legal consent, or disclosing the searchs purpose. Amnesty International made two disconcerting discoveries while investigating the case of Milanovs phone. ” continues the report.

Personal data

Personal data Encryption Security Privacy

China-linked APT Mustang Panda upgrades tools in its arsenal

Security Affairs

APRIL 17, 2025

Mustang Panda has been active since at least 2012, targeting American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. In the 2022 campaigns, threat actors used European Union reports on the conflict in Ukraine and Ukrainian government reports as lures.

IT

IT Archiving Encryption Communications

CISA compiled a list of free cybersecurity tools and services

Security Affairs

FEBRUARY 19, 2022

CISA has created a list of free cybersecurity tools and services that can help organizations increase their resilience. The list includes open source tools and free resources provided by government organizations and private cybersecurity firms. The list also includes tens of tools are open source. Pierluigi Paganini.

Cybersecurity

Cybersecurity Risk Government Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

APTs Using New Tools to Target ICS/SCADA

Data Breach Today

APRIL 14, 2022

US Government Agencies, Mandiant, Dragos, Schneider Electric Issue Joint Advisory U.S.

Government

Government Cybersecurity

Beware of Pixels & Trackers on U.S. Healthcare Websites

The healthcare industry has massively adopted web tracking tools, including pixels and trackers.

Cybersecurity

US NCSC and DoS share best practices against surveillance tools

Security Affairs

JANUARY 9, 2022

The US NCSC and the Department of State published joint guidance on defending against attacks using commercial surveillance tools. In the last years, we have reported several cases of companies selling commercial surveillance tools to governments and other entities that have used them for malicious purposes. Pierluigi Paganini.

Sales

Sales Risk Encryption Passwords

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Russia-linked APT28 group used a previously unknown tool, dubbed GooseEgg, to exploit Windows Print Spooler service flaw. Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028.

Military

Military File names Education Phishing

AI Chatbots Are Invading Your Local Government—and Making Everyone Nervous

WIRED Threat Level

SEPTEMBER 11, 2023

State and local governments in the US are scrambling to harness tools like ChatGPT to unburden their bureaucracies, rushing to write their own rules—and avoid generative AI's many pitfalls.

Government

Government Artificial Intelligence Privacy Security

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. OwlProxy is a unique and custom tool used by the group. ” concludes Palo Alto Networks.

Government

Government Manufacturing Education Access

CERT-UA warns of a phishing campaign targeting government entities

Security Affairs

AUGUST 13, 2024

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign targeting organizations in the country, including government entities. ANONVNC borrows the code of the open-source remote management tool MeshAgent , it allows attackers to remotely control the infected hosts.

Phishing

Phishing Government File names Access

This Cryptomining Tool Is Stealing Secrets

WIRED Threat Level

OCTOBER 28, 2023

Plus: Details emerge of a US government social media-scanning tool that flags “derogatory” speech, and researchers find vulnerabilities in the global mobile communications network.

Communications

Communications Government Privacy Security

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

Following the attacks of the Killnet Collective, the group responsible for the attacks against major government resources and law enforcement, a new group has been identified called “Cyber Spetsnaz”.

Government

Government Cybersecurity IoT Security

US government imposed sanctions on six Iranian intel officials

Security Affairs

FEBRUARY 4, 2024

The US government issued sanctions against six Iranian government officials linked to cyberattacks against critical infrastructure organizations. The Iranian Islamic Revolutionary Guard Corps Cyber-Electronic Command (IRGC-CEC) is an organization within the Iranian government responsible for cybersecurity and cyber warfare.

Government

Government Manufacturing Ransomware Cybersecurity

NSO Group, Positive Technologies and other firms sanctioned by the US government

Security Affairs

NOVEMBER 3, 2021

sanctioned four companies for the development of surveillance malware or the sale of hacking tools used by nation-state actors, including NSO Group. The Commerce Department’s Bureau of Industry and Security (BIS) has sanctioned four companies for the development of spyware or the sale of hacking tools used by nation-state actors.

Government

Government Sales Cybersecurity Security

Awaken Likho APT group targets Russian government with a new implant

Security Affairs

OCTOBER 9, 2024

A threat actor tracked as Awaken Likho is targeting Russian government agencies and industrial entities, reported cybersecurity firm Kaspersky. The threat actor continues to target Russian government entities and enterprises. ” reads the report.

Government

Government Archiving Phishing Access

Increased GDPR Enforcement Highlights the Need for Data Security

Security Affairs

NOVEMBER 18, 2024

government surveillance. Automated Data Governance : Leverage advanced data security platforms that provide real-time visibility and automated compliance checks. Alert in real-time when any data violations occur, providing organizations with the tools to remediate issues swiftly and reduce risks.

GDPR

GDPR Security Compliance Data Privacy

China-Linked BRONZE PRESIDENT APT targets Government officials worldwide

Security Affairs

SEPTEMBER 10, 2022

China-linked BRONZE PRESIDENT group is targeting government officials in Europe, the Middle East, and South America with PlugX malware. Secureworks researchers reported that China-linked APT group BRONZE PRESIDENT conducted a new campaign aimed at government officials in Europe, the Middle East, and South America with the PlugX malware.

Government

Government Archiving Metadata Encryption

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

According to the indictment, Ptitsyn facilitated the worldwide use of a dangerous ransomware strain to target corporations and various organizations, including government agencies, healthcare facilities, educational institutions, and critical infrastructure. Barron for the District of Maryland.

Ransomware

Ransomware Education Sales Government

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Security Affairs

OCTOBER 13, 2023

A cyberespionage campaign, tracked as Stayin’ Alive, targeted high-profile government and telecom entities in Asia. The tools have no code similarities with any known tool used by other threat actors. All the tools connect to the same infrastructure, which is associated with China-linked APT ToddyCat. .”

Government

Government IT Encryption Libraries

Chinese threat actors use Quad7 botnet in password-spray attacks

Security Affairs

NOVEMBER 3, 2024

Active since 2021, Storm-0940 gains access through password spraying, brute-force attacks, and exploiting network edge services, targeting sectors like government, law, defense, and NGOs in North America and Europe. “Microsoft assesses that a threat actor located in China established and maintains this network. .”

Passwords

Passwords Access Cloud Government

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. The attack aims at making the device unusable. ” the researchers concluded.

Military

Military Encryption Passwords Security

Earth Krahang APT breached tens of government organizations worldwide

Security Affairs

MARCH 19, 2024

The campaign seems active since at least early 2022 and focuses primarily on government organizations. The group often exploited access to government infrastructure to target other government entities. In many attacks, the group scanned public-facing servers with open-source scanning tools.

Government

Government Phishing Access Passwords

A data leak exposes the operations of the Chinese private firm TopSec, which provides Censorship-as-a-Service

Security Affairs

FEBRUARY 24, 2025

TopSec was founded in 1995, it offers cybersecurity services such as Endpoint Detection and Response (EDR) and vulnerability scanning, along with “boutique” solutions to align with government initiatives and intelligence requirements. ” reads the report published by SentinelLabs. ” concludes the report.”The

Cybersecurity

Cybersecurity Government Cloud Security

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The Ukrainian government experts noticed that some messages were sent from compromised contacts to increase trust. The archive contains a fake PDF report and DarkTortilla malware, which acts as a launcher for the Dark Crystal RAT ( DCRat ). ” reads the report published CERT-UA. . ” reads the report published CERT-UA.

Computer and Electronics

Computer and Electronics Archiving Passwords Government

Researchers released a free decryption tool for the Rhysida Ransomware

Security Affairs

FEBRUARY 12, 2024

Researchers discovered a vulnerability in the code of the Rhysida ransomware that allowed them to develop a decryption tool. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Encryption Paper Manufacturing

UK Government Debuts AI Tools for Enhanced Public Services

Data Breach Today

JANUARY 21, 2025

Humphrey' Meant so Streamline Civil Service Work Across Whitehall The British government on Tuesday launched artificial intelligence-powered tools intended to help civil servants offer improved public service in a first step toward implementing a plan meant to transform the United Kingdom into a world AI leader.

Government

Government Artificial Intelligence

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

Krebs on Security

FEBRUARY 20, 2024

Instead of listing data stolen from ransomware victims who didn’t pay, LockBit’s victim shaming website now offers free recovery tools, as well as news about arrests and criminal charges involving LockBit affiliates. The DOJ today unsealed indictments against two Russian men alleged to be active members of LockBit.

Ransomware

Ransomware Encryption Insurance Manufacturing

CERT-UA reports attacks in March 2025 targeting Ukrainian agencies with WRECKSTEEL Malware

Security Affairs

APRIL 4, 2025

. “The Ukrainian government’s computer emergency response team, CERT-UA, is taking systematic measures to accumulate and analyze data on cyber incidents in order to provide up-to-date information on cyber threats.” The primary tool used for stealing files, tracked as WRECKSTEEL, has versions in VBScript and PowerShell.

Government

Government Information Security IT Security

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

e-Discovery

e-Discovery Communications Ransomware Government

UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw

Security Affairs

AUGUST 29, 2023

China-linked threat actors breached government organizations worldwide with attacks exploiting Barracuda ESG zero-day. The threat actors also deployed additional tools to maintain a presence on ESG appliances. reads the report published by Mandiant. ” continues the report.

Government

Government Access Security Cybersecurity

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

Krebs on Security

JANUARY 31, 2025

The “fud” bit stands for “Fully Un-Detectable,” and it refers to cybercrime resources that will evade detection by security tools like antivirus software or anti-spam appliances. “These tools were also used to acquire victim user credentials and utilize those credentials to further these fraudulent schemes. .

Phishing

Phishing e-Delivery Sales Passwords

How DSPM Helps Businesses Meet Compliance Requirements

Security Affairs

NOVEMBER 27, 2024

Organizations in sectors like healthcare, finance, legal, and government often process vast amounts of highly sensitive data, and regulations exist to ensure and verify that organizations are taking appropriate measures to protect employee, customer, and enterprise data. DSPM tools can help with this process in a number of ways.

Compliance

Compliance Cloud Data Privacy Risk

Strengthening data reliability at WGU through smarter governance

Collibra

APRIL 17, 2025

In a recent episode of Data Citizens Dialogues , Garth Gelbach , Head of Data Governance at Western Governors University (WGU) , described how the university transitioned from fragmented data management to a more structured governance model. Before we had the data governance initiative, it was a scramble for data.

Government

Government Metadata Marketing IT

AI Governance vs. Data Governance: Understanding the Differences and Opportunities

Gimmal

JANUARY 8, 2025

AI Governance vs. Data Governance: Understanding the Differences and Opportunities Written by In our current rapidly evolving technological landscape, enterprises are collecting, analyzin g, and lev eraging unprecedented amounts of data. YouTube Video: What is AI governance? What is AI Governance? What is AI Governance?

Government

Government Information governance Privacy Compliance

Canada Gov plans to ban the Flipper Zero to curb car thefts

Security Affairs

FEBRUARY 12, 2024

The Canadian government is going to ban the tool Flipper Zero because it is abused by crooks to steal vehicles in the country. The Canadian government announced that it plans to ban the tool Flipper Zero , and similar hacking devices, to curb the surge in car thefts. ” reads a statement from the Canadian Government.

Government

Government Sales Insurance IT

Why DSPM is Essential for Achieving Data Privacy in 2024

Security Affairs

OCTOBER 23, 2024

Building upon the same concept, GigaOm rolled out its first-ever DSPM vendor evaluation report, defining DSPM as a tool that offers “visibility into where sensitive data is, who has access to it, and how it is being used. Consequently, organizations face various security, governance, privacy, and compliance risks.

Data Privacy

Data Privacy Privacy GDPR Compliance

Chinese SharpPanda APT developed a new backdoor in the last 3 years

Security Affairs

JUNE 6, 2021

Check Point Research (CPR) said that the Chinese APT group SharpPanda spent three years developing a new backdoor to spy on Asian governments. . The spear-phishing messages impersonate departments of the targeted governments. . In some cases, the emails are spoofed to look like they were from other government-related entities.

Phishing

Phishing Encryption Government IT

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

Cisa added the flaw to the KEV catalog after Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028. The vulnerability CVE-2022-38028 was reported by the U.S.

IT

IT Education Cybersecurity Risk

After CrowdStrike Outage: Time to Rebuild Microsoft Windows?

Data Breach Today

SEPTEMBER 6, 2024

Global Outage Triggers Calls for 'Less-Invasive Access' to Essential Functions The global disruption caused by a faulty CrowdStrike software triggering a kernel panic and computer meltdowns has led government agencies, experts and vendors to call for rethinking Windows operating system resiliency, including the deep-level OS access security tools now (..)

Government

Government Access Security

Russia-linked GRU Unit 29155 targeted critical infrastructure globally

Security Affairs

SEPTEMBER 6, 2024

The government expert pointed out that Unit 29155 operates independently from other GRU-affiliated groups like Unit 26165 and Unit 74455. The threat actors targeted critical infrastructure sectors such as government, finance, transportation, energy, and healthcare. Since 2022, the unit focused on disrupting aid efforts for Ukraine.

Financial Services

Financial Services Government IoT Communications

Inside the Black Box of Predictive Travel Surveillance

WIRED Threat Level

JANUARY 13, 2025

Behind the scenes, companies and governments are feeding a trove of data about international travelers into opaque AI tools that aim to predict whos safeand whos a threat.

Government

Government Privacy Security

US cyber and law enforcement agencies warn of Phobos ransomware attacks

Security Affairs

MARCH 2, 2024

The attacks were observed as recently as February 2024, they targeted government, education, emergency services, healthcare, and other critical infrastructure sectors. Phobos intrusions also involved the use of various open-source tools, including Smokeloader, Cobalt Strike , and Bloodhound. ” reads the joint CSA.

Ransomware

Ransomware Education Phishing Government

US adds Tencent to the list of companies supporting Chinese military

Security Affairs

JANUARY 7, 2025

The US government does not explain the decision. The organizations in the Section 1260 list support the Military-Civil Fusion strategy of the Chinese government. Cloud Services : Tencent Cloud may enable data storage, processing, and secure collaboration via enterprise tools like VooV, aiding military operations.

Military

Military Cloud Government Analytics

Police in Europe Arrest 31 for Hacking and Stealing Autos

Data Breach Today

OCTOBER 18, 2022

Keyless Auto Theft Mounting Threat for Car Owners A European ring of auto thieves used software branded as a diagnostic tool to make fobless thefts of cars made by two French manufacturers. It looks like the thieves found a vulnerability in the electronic control unit governing the authorization of new key fobs.

Manufacturing

Manufacturing Government IT

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

China-linked APT Mustang Panda upgrades tools in its arsenal

Webinars

Trending Sources

CISA compiled a list of free cybersecurity tools and services

Webinars

APTs Using New Tools to Target ICS/SCADA

Beware of Pixels & Trackers on U.S. Healthcare Websites

US NCSC and DoS share best practices against surveillance tools

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

AI Chatbots Are Invading Your Local Government—and Making Everyone Nervous

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

CERT-UA warns of a phishing campaign targeting government entities

This Cryptomining Tool Is Stealing Secrets

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

US government imposed sanctions on six Iranian intel officials

NSO Group, Positive Technologies and other firms sanctioned by the US government

Awaken Likho APT group targets Russian government with a new implant

Increased GDPR Enforcement Highlights the Need for Data Security

China-Linked BRONZE PRESIDENT APT targets Government officials worldwide

Russian Phobos ransomware operator faces cybercrime charges

Stayin’ Alive campaign targets high-profile Asian government and telecom entities. Is it linked to ToddyCat APT?

Chinese threat actors use Quad7 botnet in password-spray attacks

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Earth Krahang APT breached tens of government organizations worldwide

A data leak exposes the operations of the Chinese private firm TopSec, which provides Censorship-as-a-Service

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Researchers released a free decryption tool for the Rhysida Ransomware

UK Government Debuts AI Tools for Enhanced Public Services

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

CERT-UA reports attacks in March 2025 targeting Ukrainian agencies with WRECKSTEEL Malware

China’s Volt Typhoon botnet has re-emerged

UNC4841 threat actors hacked US government email servers exploiting Barracuda ESG flaw

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

How DSPM Helps Businesses Meet Compliance Requirements

Strengthening data reliability at WGU through smarter governance

AI Governance vs. Data Governance: Understanding the Differences and Opportunities

Canada Gov plans to ban the Flipper Zero to curb car thefts

Why DSPM is Essential for Achieving Data Privacy in 2024

Chinese SharpPanda APT developed a new backdoor in the last 3 years

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

After CrowdStrike Outage: Time to Rebuild Microsoft Windows?

Russia-linked GRU Unit 29155 targeted critical infrastructure globally

Inside the Black Box of Predictive Travel Surveillance

US cyber and law enforcement agencies warn of Phobos ransomware attacks

US adds Tencent to the list of companies supporting Chinese military

Police in Europe Arrest 31 for Hacking and Stealing Autos

Stay Connected