Security Affairs

FEBRUARY 25, 2022

In mid-January, the government of Kyiv attributed the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151. In November 2021, Mandiant Threat Intelligence researchers linked the Ghostwriter disinformation campaign (aka UNC1151) to the government of Belarus. Pierluigi Paganini.

Military 103

Military Phishing CMS Government 103

Security Affairs

FEBRUARY 28, 2020

Network data collected by the NetBlocks internet observatory confirm that Turkey has blocked access to social media as Idlib military crisis escalates. The access was first blocked via national provider Turk Telecom (AS9121), but later other service providers applied the government restrictions. local time (8:30 p.m. It's 5:30 a.m.

Military 96

Military Data collection Government Access 96

Security Affairs

MAY 5, 2024

This week the Federal Government condemned in the strongest possible terms the long-term espionage campaign conducted by the group APT28 that targeted the Executive Committee of the Social Democratic Party of Germany. The Russia-linked APT also targeted NATO entities and Ukrainian government agencies.

Military 101

Military Government Phishing Authentication 101

Security Affairs

NOVEMBER 10, 2021

Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five million cyber attacks hit Taiwan’s government agencies every day, and most of the hacking attempts are originated from China. SecurityAffairs – hacking, Taiwan Government).

Government 117

Government Military Information Security Security 117

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. As of 2020, the LGM-30G Minuteman III version[a] is the only land-based ICBM in service in the United States and represents the land leg of the U.S. The LGM-30 Minuteman is a U.S.

Military 106

Military Ransomware Encryption Risk 106

Krebs on Security

DECEMBER 14, 2020

Treasury and Commerce Departments were reportedly compromised by a supply chain attack on SolarWinds , a security vendor that helps the federal government and a range of Fortune 500 companies monitor the health of their IT networks. released between March 2020 and June 2020.” the National Security Agency.

Military 363

Military Government Cybersecurity Communications 363

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. ” reads the report published by Bitdefender.

Military 94

Military Passwords Government Security 94

Security Affairs

APRIL 22, 2024

Since at least June 2020, and possibly earlier, the cyberespionage group has used the tool GooseEgg to exploit the CVE-2022-38028 vulnerability. National Security Agency and Microsoft addressed it with the release of Microsoft October 2022 Patch Tuesday security updates. The vulnerability CVE-2022-38028 was reported by the U.S.

Military 107

Military File names Education Phishing 107

Security Affairs

JUNE 25, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 84

Security Military Ransomware Cybersecurity 84

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems.

Military 102

Military Government Phishing Authentication 102

Security Affairs

OCTOBER 22, 2020

The Council of the European Union announced sanctions imposed on Russian military intelligence officers for 2015 Bundestag hack. The 85th Main Centre for Special Services (GTsSS) is the military unit of the Russian government also tracked as APT28 (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ).

Military 71

Military Government IT Security 71

Security Affairs

OCTOBER 14, 2021

The data were provided by Google’s Threat Analysis Group (TAG), which tracks government-backed hacking campaign, which warns of a significant increase in the number of the alert compared to the previous year. “So far in 2021, we’ve sent over 50,000 warnings, a nearly 33% increase from this time in 2020. Pierluigi Paganini.

Phishing 78

Phishing Military Government Security 78

The Last Watchdog

SEPTEMBER 7, 2021

Google in ‘Operation Aurora’ Despite this threat, the United States currently does not possess a similar strategic plan to combat China’s advancements or create a sustainably secure cyber system. The external aspect of this strategy attempts to secure their supply chains against pressures from the United States.

Security 201

Security Government Military Marketing 201

Krebs on Security

JANUARY 19, 2021

military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. The release was granted in part due to Ferizi’s 2018 diagnosis if asthma, as well as a COVID outbreak at the facility where he was housed in 2020.

Military 317

Military Passwords Government Personal data 317

Security Affairs

JUNE 21, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. One of the scripts, the “c.js”, was containing an exploit for the CVE-2020-12641 vulnerability.

Military 82

Military Phishing Government Communications 82

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems.

Military 98

Military Government Phishing Access 98

Hunton Privacy

JULY 7, 2020

China has lacked a comprehensive data protection and data security law that regulates in detail requirements and procedures relating to the collection, processing, control and storage of personal data. Recently, another significant draft law on data security was issued by the Chinese legislative authority.

Security 140

Security Military Government Risk 140

The Last Watchdog

MARCH 20, 2024

In the weeks leading up to the 2020 U.S. Hart “A more fitting approach would be for the government to focus on identifying and elucidating potential threats, thereby empowering citizens to make informed decisions regarding the technologies they use,” Hart says. I’ll keep watch and keep reporting.

Blockchain 298

Blockchain Military Government Sales 298

Security Affairs

NOVEMBER 25, 2020

Group-IB , a global threat hunting and intelligence company, has presented its annual Hi-Tech Crime Trends 2020/2021 report. In the report, the company examines key shifts in the cybercrime world internationally between H2 2019 and H1 2020 and gives forecasts for the coming year.

Ransomware 125

Ransomware Phishing Sales Manufacturing 125

Security Affairs

OCTOBER 15, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Lockbit ransomware gang demanded an 80 million ransom to CDW CISA warns of vulnerabilities and misconfigurations exploited in ransomware attacks Stayin’ Alive campaign targets high-profile Asian government and telecom entities.

Security 89

Security Ransomware Data breaches Military 89

Security Affairs

OCTOBER 27, 2023

France National Agency for the Security of Information Systems warns that the Russia-linked APT28 group has breached several critical networks. The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems. ” The script was hosted on “mocky[.]io,”

Military 101

Military Phishing Government Security 101

Security Affairs

NOVEMBER 16, 2021

Security researchers at the Mandiant Threat Intelligence team believe that Ghostwriter APT group is linked to the government of Belarus. Mandiant Threat Intelligence researchers believe that the Ghostwriter disinformation campaign (aka UNC1151) was linked to the government of Belarus.

Military 104

Military CMS Government Security 104

IT Governance

MARCH 18, 2021

The UK government plans to invest £24 billion in cyber security and the armed forces as part of a major shake-up of its defence policy. Under the new strategy, the government says it’s prepared to launch nuclear attacks if the country faced an exceptional threat that used cyber weapons or other “emerging technologies”.

Security 124

Security Military Government Communications 124

Security Affairs

OCTOBER 25, 2023

ESET researchers pointed out that is a different vulnerability than CVE-2020-35730 , that the group exploited in other attacks. The Winter Vivern group was first analyzed in 2021, it has been active since at least 2020 and it targets governments in Europe and Central Asia. The messages were sent from team.managment@outlook[.]com

Military 106

Military Government Phishing IT 106

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics 78

Computer and Electronics Military Manufacturing Government 78

Security Affairs

AUGUST 5, 2020

ZDNet has reported in exclusive that a list of plaintext usernames and passwords for 900 Pulse Secure VPN enterprise servers, along with IP addresses, has been shared on a Russian-speaking hacker forum. According to Bank Security , all the Pulse Secure VPN servers included in the list were vulnerable to the CVE-2019-11510 flaw.

Passwords 130

Passwords Security Ransomware Military 130

Thales Cloud Protection & Licensing

DECEMBER 19, 2019

As technology becomes capable of defeating a higher proportion of current and legacy security efforts, cybersecurity in 2020 will be defined by the need to stand out. Therefore, governments and organizations, such as NIST, are racing to become cryptographically quantum resilient. National Initiatives in 2020.

Communications 83

Communications Encryption Government Military 83

Security Affairs

AUGUST 29, 2023

The intruders China-linked hackers may have gained access to sensitive data, according to three government and private sector sources familiar with the situation, reported the Financial Times. NISC disclosed a potential security breach involving personal data associated with email communications. ” reported the Financial Times.

Cybersecurity 88

Cybersecurity Military Personal data Government 88

IT Governance

APRIL 2, 2020

Australia’s Defence Force Recruiting systems were taken offline after security breach (unknown). South African utility provider Eskom is still feeling effects of a cyber security incident (unknown). Wichita State University notifies students and staff of a security incident (1,762). Data breaches. Financial information.

Data breaches 143

Data breaches Ransomware Energy and Utilities Phishing 143

Security Affairs

MARCH 7, 2021

The annual national security threat assessment report released by Lithuania’s State Security Department states that Russia-linked APT groups conducted cyber-attacks against top Lithuanian officials and decision-makers last in 2020. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

Military 124

Military Government Security IT 124

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. These targets suggest the group is likely interested in gathering intelligence on military technology and defense” reads the report published by the Insikt Group.

Military 113

Military Mining Government Communications 113

Security Affairs

SEPTEMBER 23, 2020

Russia-linked cyberespionage group APT28 uses fake NATO training documents as bait in attacks aimed at government bodies. The Russia-linked cyberespionage group APT28 is behind a string of attacks that targeting government bodies with Zebrocy Delphi malware. The researchers analyzed files (Course 5 – 16 October 2020.zipx)

Military 105

Military Government Encryption Communications 105

Schneier on Security

JUNE 8, 2021

Our military systems are vulnerable. We need to face that reality by halting the purchase of insecure weapons and support systems and by incorporating the realities of offensive cyberattacks into our military planning. Over the past decade, militaries have established cyber commands and developed cyberwar doctrine.

Military 144

Military Cybersecurity Communications Manufacturing 144

Security Affairs

MARCH 1, 2020

The best news of the week with Security Affairs. ObliqueRAT, a new malware employed in attacks on government targets in Southeast Asia. FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019. Lampion malware v2 February 2020. European Commission has chosen the Signal app to secure its communications.

Security 85

Security Ransomware Military Data breaches 85

IT Governance

SEPTEMBER 1, 2020

There were a massive 99 data breaches and cyber attacks in August, making it the third-biggest monthly total of the year by number of security incidents. The true figure, as always, will be higher than this – in part because organisations rarely disclose how many records were involved in security incidents. Cyber attacks. Ransomware.

Data breaches 122

Data breaches Ransomware Insurance Manufacturing 122

IT Governance

AUGUST 3, 2020

Four military schools in Canada targeted in ‘mysterious’ cyber attack (unknown). Western Australia government hacked, with COVID-19 communications intercepted (unknown). CNY Works jobseekers Social Security numbers exposed in suspected ransomware attack (56,000). Brazilian health insurer Hapvida discloses cyber attack (unknown).

Data breaches 141

Data breaches Insurance Ransomware Personal data 141

IT Governance

JUNE 1, 2020

Russian military accessed Chancellor Angela Merkel’s emails in 2015 hack (unknown). Wright County, MN, government notifies those affected by cyber attack (12,320). Security lapse at Indian cell network Jio exposes coronavirus symptom checker results (unknown). Japanese media firm Nikkei infected by malware (12,514).

Data breaches 145

Data breaches Ransomware Computer and Electronics e-Delivery 145