Military, Presentation and Security - Information Management Today

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

Someone is sending mysterious smartwatches to the US Military personnel

Security Affairs

JUNE 24, 2023

Army’s Criminal Investigation Division warns that US military personnel have reported receiving unsolicited smartwatches in the mail. Army’s Criminal Investigation Division reported that service members across the military received smartwatches unsolicited in the mail. ” reads the alert. ” reads the alert.

Military

Military Passwords Access Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 34

Security Affairs

FEBRUARY 23, 2025

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Military & Defense Sector: A Cybersecurity Disaster in the Making Analyzing ELF/Sshdinjector.A!

Security

Security Military Ransomware Cybersecurity

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

According to Group-IB’s experts, the most frustrating trend of 2019 was the use of cyberweapons in military operations. Group-IB’s annual report was presented at CyberCrimeCon 2019 international Threat Hunting and Intelligence conference in Singapore. The latter cannot be ignored by any state, corporation, or individual.”.

IT

IT Military Cybersecurity Phishing

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 23, 2025

Every week the best security articles from Security Affairs are free in your email box. Military & Defense Sector: A Cybersecurity Disaster in the Making Analyzing ELF/Sshdinjector.A!tr A new round of the weekly SecurityAffairs newsletter arrived! Lazarus APT stole $1.5B

Security

Security CMS Phishing Encryption

Has the US Created the Wrong War Machine?

Data Breach Today

FEBRUARY 28, 2024

Developing and deploying advanced military technologies involves balancing the desire to improve national security with the need to navigate the ethical, strategic and existential challenges these technologies present. We Need Low-Cost, High-Volume Weapons Systems to Prevail in Future Conflicts Has the U.S.

Military

Military Security

Ghostwriter disinformation campaign aimed at discrediting NATO

Security Affairs

AUGUST 3, 2020

Security experts from FireEye have uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests. “We Pierluigi Paganini.

Military

Military CMS Security Government

EU leaders aim at boosting defense and security, including cybersecurity

Security Affairs

FEBRUARY 28, 2021

During a video conference of the members of the European Council, EU leaders agreed on a new strategy aimed at boosting defense and security. The EU leaders emphasized that they looked forward to cooperating with the new US administration on a strong and ambitious transatlantic agenda that included a close dialogue on security and defence.

Cybersecurity

Cybersecurity Security Military Risk

Security Affairs newsletter Round 431 by Pierluigi Paganini – International edition

Security Affairs

AUGUST 6, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. It’s Testing U.S.

Security

Security Military Phishing Sales

Threat actor claims to have hacked European manufacturer of missiles MBDA

Security Affairs

JULY 31, 2022

The attackers said that the stolen data includes information about the employees of the company involved in military projects, commercial activities, contract agreements and correspondence with other companies. The post Threat actor claims to have hacked European manufacturer of missiles MBDA appeared first on Security Affairs.

Manufacturing

Manufacturing Military Archiving Cybersecurity

Chinese man charged for spear-phishing against NASA and US Government

Security Affairs

SEPTEMBER 17, 2024

Attorney Buchanan, the indictment, and other information presented in court: Song allegedly engaged in a multi-year “spear phishing” email campaign in which he created email accounts to impersonate U.S.-based However, this indictment demonstrates that borders are not barriers to prosecuting bad actors who threaten our national security.”

Phishing

Phishing Government Military Security

Russia-linked APT28 has been scanning vulnerable email servers in the last year

Security Affairs

MARCH 20, 2020

According to security researchers from Trend Micro, the Russia-linked APT28 cyberespionage group has been scanning vulnerable email servers for more than a year. The cyberespionage group continues to target members of defense companies, embassies, governments, and the military. ” reads the report published by Trend Micro.

Phishing

Phishing Military Government Passwords

Security Affairs newsletter Round 186 – News of the week

Security Affairs

OCTOBER 28, 2018

The best news of the week with Security Affairs. Security Affairs – Newsletter ). The post Security Affairs newsletter Round 186 – News of the week appeared first on Security Affairs. A new round of the weekly SecurityAffairs newsletter arrived! 20% discount. Kindle Edition. Paper Copy. Pierluigi Paganini.

Security

Security IoT Military Data breaches

Flaws in DataVault encryption software impact multiple storage devices

Security Affairs

DECEMBER 30, 2021

Researcher Sylvain Pelissier has discovered that the DataVault encryption software made by ENC Security and used by multiple vendors is affected by a couple of key derivation function issues. ” reads the presentation of the speech published on the rc3 website. ” reads the security advisory published by ENC.

Encryption

Encryption Passwords Military Security

France will not ban Huawei from its upcoming 5G networks

Security Affairs

SEPTEMBER 1, 2020

However, Macron said that France will favor European providers of 5G technology due to security concerns. It’s normal that … we want a European solution” because of the importance of “the security of our communication,” Macron told reporters. ” reported the Associated Press agency. .'”

IT

IT Military Manufacturing Risk

Mandiant links Ghostwriter operations to Belarus

Security Affairs

NOVEMBER 16, 2021

Security researchers at the Mandiant Threat Intelligence team believe that Ghostwriter APT group is linked to the government of Belarus. In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. Pierluigi Paganini.

Military

Military CMS Government Security

European Union formally blames Russia for the GhostWriter operation

Security Affairs

SEPTEMBER 25, 2021

The officials pointed out that these interferences are unacceptable because threaten the integrity and security of the targeted states, and pose risk to the EU democracies. According to FireEye, the campaign, tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

Military

Military CMS Phishing Security

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

The activity of the Lyceum APT group was first documented earlier in August 2019 by researchers at ICS security firm Dragos which tracked it as Hexane. The attack chain observed by the researchers starts with spear-phishing messages using weaponized Word document disguised as a news report related to military affairs in Iran.

IT

IT Military Communications Phishing

Russia-linked APT28 targets govt bodies with fake NATO training docs

Security Affairs

SEPTEMBER 23, 2020

Even today, less than half of the known antivirus engines are flagging the infection on VirusTotal , as observed by BleepingComputer: The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Military

Military Government Encryption Communications

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Security Affairs

OCTOBER 22, 2023

During a meeting of security chiefs of the Five Eyes alliance held in California, McCallum told BBC that the Chinese cyber espionage reached an epic scale. “And we know that authoritarian states are laser-focused on the opportunities that these technologies may present for them.” ” reported BBC.

Military

Military Government Access Cybersecurity

Is the recent accident at Iran Natanz nuclear plant a cyber attack?

Security Affairs

APRIL 11, 2021

Back to the present, the Iranian authorities are still investigating the accident, they only revealed that no injuries or pollution were caused by the attack. Last week, a spokesman for the Iranian military blamed Israel and the US for an explosion on the Islamic Revolutionary Guards Corps’ Saviz vessel in the Red Sea.

Energy and Utilities

Energy and Utilities Military IT Security

Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency

Security Affairs

AUGUST 23, 2019

The security incident has happened in July at the South Ukraine Nuclear Power Plant at Yuzhnoukrainsk, in the south of the country. The equipment was discovered present in the power plant’s administration offices. ” reported ZDnet. Pierluigi Paganini. SecurityAffairs – nuclear power plant, hacking).

Mining

Mining Military Security Access

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

A review of this user’s hacker identities shows that during his time on the forums he served as an officer in the special forces of the GRU , the foreign military intelligence agency of the Russian Federation. ” Stalker himself credited Djamix with keeping Mazafaka online for so many years. Some of those photos date back to 2008.

Military

Military IT Communications Risk

North Korea-linked Konni APT uses Russian-language weaponized documents

Security Affairs

NOVEMBER 24, 2023

Upon enabling the macro, the embedded VBA displays a Russian article titled “Western Assessments of the Progress of the Special Military Operation.” ” The macro launches the “check.bat” script using the “vbHide” parameter to avoid presenting a command prompt window to the victim.

Encryption

Encryption Military Phishing Communications

Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

Security Affairs

MAY 23, 2024

A previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ has been targeting military and government entities since 2018. Bitdefender researchers discovered a previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ that has been targeting military and government entities since 2018.

Archiving

Archiving Military Communications Phishing

Iran-linked APT groups continue to evolve

Security Affairs

NOVEMBER 17, 2021

Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021. The post Iran-linked APT groups continue to evolve appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – hacking, Operation Cyclone).

Ransomware

Ransomware Passwords Military Authentication

Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware

Security Affairs

DECEMBER 10, 2020

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The post Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware appeared first on Security Affairs.

Phishing

Phishing Healthcare Military Data collection

Russia-linked Gamaredon group targets Ukraine officials

Security Affairs

DECEMBER 7, 2019

Russia-linked Gamaredon cyberespionage group has been targeting Ukrainian targets, including diplomats, government and military officials. Russia linked APT group tracked as Gamaredon has been targeting several Ukrainian diplomats, government and military officials, and law enforcement. ” concludes Anomaly. Pierluigi Paganini.

Military

Military Government Phishing Archiving

GCHQ implements World War II cipher machines in encryption app CyberChef

Security Affairs

MARCH 18, 2019

We've brought technology from our past into the present by creating emulators for Enigma, Typex and The Bombe in #CyberChef. The GCHQ developed emulators for Enigma, Typex and the Bombe that could be executed in the CyberChef , The Enigma machines were used by the German military to protect communications during the Second World War.

Encryption

Encryption Military Education Communications

Crypto AG was spied for US, German intelligence agencies for decades

Security Affairs

FEBRUARY 12, 2020

The list of Crypto’s customers included Iran, India and Pakistan, military juntas in Latin America and the Vatican. The events under discussion date back to 1945 and are difficult to reconstruct and interpret in the present-day context,”. The company was completely under the control of the spy agencies since 1970.

Military

Military Communications Encryption Government

Prime Minister Boris Johnson wants to enhance UK cyber capabilities

Security Affairs

MARCH 18, 2021

The announcement comes ahead of the presentation of a long-term review of national security strategy to parliament on Tuesday which could lead to a reduction in armed forces personnel. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Government Communications Security

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

Krebs on Security

JANUARY 13, 2020

is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. National Security Agency (NSA) stating that NSA’s Director of Cybersecurity Anne Neuberger is slated to host a call on Jan.

Military

Military Cybersecurity Encryption Authentication

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Security Affairs

AUGUST 7, 2023

NPO Mashinostroyeniya (JSC MIC Mashinostroyenia, NPO Mash) is a leading Russian manufacturer of missiles and military spacecraft. The cyberspies targeted NPO Mashinostroyeniya in an attempt to steal highly confidential intellectual property on sensitive missile technology currently in use and under development for the Russian military.

Military

Military Communications Manufacturing Phishing

Hunting the ICEFOG APT group after years of silence

Security Affairs

JUNE 8, 2019

A security researcher found new evidence of activities conducted by the ICEFOG APT group, also tracked by the experts as Fucobha. Chi-en (Ashley) Shen, a senior security researcher at FireEye, collected evidence that demonstrates that China-linked APT group ICEFOG (aka Fucobha ) is still active. Pierluigi Paganini.

Agriculture

Agriculture Government Military Communications

Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours

Security Affairs

MAY 31, 2024

“We compared the banner hashes that were present on this ASN on October 27, to the banner hashes present on October 28th and observed a drop of ~179k IP addresses that had an ActionTec banner. In addition, this type of attack has only ever happened once before, with AcidRain used as a precursor to an active military invasion.”

Military

Military IoT Encryption Communications

SideWinder carried out over 1,000 attacks since April 2020

Security Affairs

MAY 31, 2022

SideWinder has been active since at least 2012, the group main targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. Below are the slides presented by the Kaspersky researcher Noushin Shabab at the BlackHat Asia 2022: Download Slides. To nominate, please visit:? Pierluigi Paganini.

Encryption

Encryption Military Phishing Communications

Here’s Why Credit Card Fraud is Still a Thing

Krebs on Security

JULY 29, 2020

A lack of region locks may also have caused card thieves to gravitate toward buying up as many cards as they could from USAA , a savings bank that caters to active and former military service members and their immediate families. Not long ago, the price of CNP accounts was less than half that of card-present accounts.

Sales

Sales Retail Military Paper

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

The Last Watchdog

OCTOBER 17, 2018

Government Accountability Office audit last week found that the defense department is playing catch up when it comes to securing weapons systems from cyberattacks. military and civilian personnel were compromised. The result: personal information and credit card data of at least 30,000 U.S. Timely trust decisions.

Data breaches

Data breaches Security Military Government

Experts detailed how China Telecom used BGP hijacking to redirect traffic worldwide

Security Affairs

NOVEMBER 8, 2018

Security researchers revealed in a recent paper that over the past years, China Telecom used BGP hijacking to misdirect Internet traffic through China. Security researchers Chris C. gov’’) and military (‘‘.mil’’) ” states the paper. The incident also affected US government (‘‘.gov’’) mil’’) websites. Pierluigi Paganini.

Paper

Paper Military Government Security

0v1ru$ hackers breach FSB contractor SyTech and expose Russian intel projects

Security Affairs

JULY 20, 2019

SyTech , a contractor for the Federal Security Service of the Russian Federation (FSB) has been hacked, attackers stole data about interna l projects. Attackers have hacked SyTech, a contractor for the Federal Security Service of the Russian Federation (FSB), and exfiltrated data about interna l projects. Pierluigi Paganini.

Data breaches

Data breaches Military Communications Security

Apple AirTag Bug Enables ‘Good Samaritan’ Attack

Krebs on Security

SEPTEMBER 28, 2021

When scanned, an AirTag in Lost Mode will present a short message asking the finder to call the owner at at their specified phone number. The vulnerability was discovered and reported to Apple by Bobby Rauch , a security consultant and penetration tester based in Boston. A sample “Lost Mode” message.

Phishing

Phishing Communications Military Security

Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

Security Affairs

FEBRUARY 21, 2020

The Operation Transparent Tribe was first spotted by Proofpoint Researchers in Feb 2016, in a series of espionages operations against Indian diplomats and military personnel in some embassies in Saudi Arabia and Kazakhstan. The document presents itself as a request for a DSOP FUND (Defence Services Officers Provident Fund ).

Military

Military Communications Encryption IT

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

Security Affairs

OCTOBER 17, 2018

Yoroi security firm uncovered a targeted attack against one of the most important companies in the Italian Naval Industry leveraging MartyMcFly Malware. The victim was one of the most important leaders in the field of security and defensive military grade Naval ecosystem in Italy.

Computer and Electronics

Computer and Electronics Encryption Security Military

NSA releases a guide to reduce location tracking risks

Security Affairs

AUGUST 5, 2020

The United States National Security Agency (NSA) is warning of risks posed by location services for staff who work in defence or national security. The United States National Security Agency (NSA) published a new guide to warn of the risks posed by location services for staff who work in defence or national security.

Risk

Risk Communications Security IT

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Someone is sending mysterious smartwatches to the US Military personnel

Webinars

Trending Sources

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 34

Webinars

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION

Has the US Created the Wrong War Machine?

Ghostwriter disinformation campaign aimed at discrediting NATO

EU leaders aim at boosting defense and security, including cybersecurity

Security Affairs newsletter Round 431 by Pierluigi Paganini – International edition

Threat actor claims to have hacked European manufacturer of missiles MBDA

Chinese man charged for spear-phishing against NASA and US Government

Russia-linked APT28 has been scanning vulnerable email servers in the last year

Security Affairs newsletter Round 186 – News of the week

Flaws in DataVault encryption software impact multiple storage devices

France will not ban Huawei from its upcoming 5G networks

Mandiant links Ghostwriter operations to Belarus

European Union formally blames Russia for the GhostWriter operation

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Russia-linked APT28 targets govt bodies with fake NATO training docs

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Is the recent accident at Iran Natanz nuclear plant a cyber attack?

Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency

From Cybercrime Saul Goodman to the Russian GRU

North Korea-linked Konni APT uses Russian-language weaponized documents

Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

Iran-linked APT groups continue to evolve

Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware

Russia-linked Gamaredon group targets Ukraine officials

GCHQ implements World War II cipher machines in encryption app CyberChef

Crypto AG was spied for US, German intelligence agencies for decades

Prime Minister Boris Johnson wants to enhance UK cyber capabilities

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Hunting the ICEFOG APT group after years of silence

Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours

SideWinder carried out over 1,000 attacks since April 2020

Here’s Why Credit Card Fraud is Still a Thing

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

Experts detailed how China Telecom used BGP hijacking to redirect traffic worldwide

0v1ru$ hackers breach FSB contractor SyTech and expose Russian intel projects

Apple AirTag Bug Enables ‘Good Samaritan’ Attack

Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

MartyMcFly Malware: new Cyber-Espionage Campaign targeting Italian Naval Industry

NSA releases a guide to reduce location tracking risks

Stay Connected