Blog, Cybersecurity, Education and Military - Information Management Today

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

It’s no secret that cybersecurity roles are in high demand. Today there are more than 500,000 open cybersecurity roles in the U.S., Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. This experience can also be helpful when training cybersecurity talent.

Cybersecurity

Cybersecurity Military Education Government

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. Cybersecurity and Infrastructure Security Agency (CISA) has started a campaign to increase awareness of these risks to U.S.

Cybersecurity

Cybersecurity Military Passwords Education

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

The Last Watchdog

SEPTEMBER 27, 2021

Here are five notable historical events that influenced cybersecurity assessment and transformed it into what it is today: The Battle of Midway (1942). military officials hired data analysts to crack the Japanese secret code known as JN-25. After the devastating blow of Pearl Harbor, U.S. As a result, the U.S. The ILOVEYOU Worm (2000).

Cybersecurity

Cybersecurity Military Encryption Risk

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The goal of this activity is assessed to be gaining access to the emails of military, government, and diplomatic organizations across Europe involved in the Russia Ukrainian War.”

IT

IT Military Phishing Passwords

White hat hackers showed how to take over a European Space Agency satellite

Security Affairs

APRIL 30, 2023

Thales cybersecurity researchers have shown this week how they seized control of a European Space Agency (ESA) satellite. Credit: ESA – European Space Agency The offensive cybersecurity team at Thales demonstrated how to take control of the ESA satellite, the is considered the world’s first ethical satellite hacking exercise.

Cybersecurity

Cybersecurity Military Access Education

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. Andrey Shevlyakov, an Estonian national, was charged in the US with conspiracy and other charges related to acquiring U.S.-made

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide.

Energy and Utilities

Energy and Utilities Military Government Phishing

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Systems administration

Systems administration Military Phishing Government

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. The group targeted multiple sectors, including government, defense, energy, transportation/logistics, education, and humanitarian organizations.

Phishing

Phishing Military Ransomware Education

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Access Cybersecurity Education

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

billion rubles. billion rubles. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Security

Security Computer and Electronics Ransomware Marketing

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

“Microsoft assesses that Mint Sandstorm is associated with an intelligence arm of Iran’s military, the Islamic Revolutionary Guard Corps (IRGC), an assessment that has been corroborated by multiple credible sources including Mandiant , Proofpoint , and SecureWorks.” ” reads the report published by Microsoft.

Energy and Utilities

Energy and Utilities Military Education Phishing

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere.

Phishing

Phishing Passwords Military Education

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Security

Security Ransomware Data breaches Cybersecurity

CyberheistNews Vol 13 #14 [Eyes on the Prize] How Crafty Cons Attempted a 36 Million Vendor Email Heist

KnowBe4

APRIL 4, 2023

Blog post with screenshots and links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. Blog post with screenshots and links: [link] A Master Class on IT Security: Roger A. Date/Time: TOMORROW, Wednesday, April 5, @ 2:00 PM (ET) Save My Spot!

Phishing

Phishing Security awareness Cybersecurity Education

The U.S. Innovation and Competition Act: Senate Passes Sweeping $250 Billion Bill to Bolster Scientific Innovation and Compete With China

Data Matters

JUNE 16, 2021

semiconductor production, scientific research, development of artificial intelligence, and space exploration in the face of growing economic, technological, and military competition from China. cybersecurity or engage in the theft of trade secrets. Senate adopted by a 68-32 vote S. Senate Majority Leader Charles Schumer, D-N.Y.,

Artificial Intelligence

Artificial Intelligence Military Manufacturing Education

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

KnowBe4

MARCH 28, 2023

A leader tasked with cybersecurity can get ahead of the game by understanding where we are in the story of machine learning (ML) as a hacking tool," Tyson writes. "At At present, the most important area of relevance around AI for cybersecurity is content generation. Remember: Culture eats strategy for breakfast and is always top-down.

Phishing

Phishing Security awareness Insurance Cybersecurity

List of data breaches and cyber attacks in August 2020 – 36.6 million records breached

IT Governance

SEPTEMBER 1, 2020

You can find our full list of publicly disclosed data breaches from August in this blog, with incidents affecting UK organisations listed in bold. Meanwhile, you can stay up to date with the latest news by subscribing to our Weekly Round-up or visiting our blog. million records breached appeared first on IT Governance UK Blog.

Data breaches

Data breaches Ransomware Insurance Manufacturing

Cyber is Cyber is Cyber

Lenny Zeltser

JUNE 2, 2018

Are you in cybersecurity? Yet, the term cybersecurity is growing in popularity. This might be because the industry continues to embrace the lexicon used in government and military circles, where cyber reigns supreme. Paul Melson and Loren Dealy Mahler viewed cybersecurity as a subset of information security.

Computer and Electronics

Computer and Electronics Information Security Cybersecurity Communications

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

In the inaugural episode, The Hacker Mind looks at why the West Point Military Academy, and other organizations within the DoD, is training its young cadets to hack. Or maybe, just maybe back in 2014, West Point and other military service academies, are on to something really important. The military has these massive computer networks.

Military

Military Passwords Cybersecurity IT

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

In the inaugural episode, The Hacker Mind looks at why the West Point Military Academy, and other organizations within the DoD, is training its young cadets to hack. Or maybe, just maybe back in 2014, West Point and other military service academies, are on to something really important. The military has these massive computer networks.

Military

Military Passwords Cybersecurity IT

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Source New Defence USA Yes 1,051 Connecticut College Source New Education USA Yes 954 American Alarm & Communications Inc. Source New Professional services USA Yes 146 Community School of Naples Source New Education USA Yes 4 Software Systems, Inc. TB KSA Architecture Source New Construction and real estate USA Yes 1.5

Data Privacy

Data Privacy Manufacturing Privacy Security

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure

JULY 21, 2020

In the inaugural episode, The Hacker Mind looks at why the West Point Military Academy, and other organizations within the DoD, is training its young cadets to hack. Or maybe, just maybe back in 2014, West Point and other military service academies, are on to something really important. The military has these massive computer networks.

Military

Military Passwords Cybersecurity IT

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

It’s been a year full of predictable and unpredictable incidents alike, and in this blog, we’ve compiled the most memorable stories of 2022. Tensions rose throughout February as the Russian military amassed across the Ukrainian border. The post 2022 Cyber Security Review of the Year appeared first on IT Governance UK Blog.

Security

Security Data breaches Ransomware Military

GUEST ESSAY: 6 steps any healthcare organization can take to help mitigate inevitable cyber attacks

The Last Watchdog

FEBRUARY 21, 2022

The risks are real, and the impact of cybersecurity events continues to grow. A cyber catastrophe may seem inevitable, but there are basic practices and actionable steps any healthcare organization can take to begin reducing the clear and present risk of being impacted by a cybersecurity event. Educate employees. Scheduling?

Passwords

Passwords Cybersecurity Education Phishing

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

I paged through weekly reports, presentation slides from status meetings, and general briefings to educate visitors. It’s used to keeping this stuff behind multiple levels of security: gates with alarms, armed guards, safe doors, and military-grade cryptography. The meeting presenters try to spice things up.

Computer and Electronics

Computer and Electronics Encryption Government Privacy

Pro-Russia hackers launched a massive attack against the EUROCONTROL agency

Security Affairs

APRIL 21, 2023

The organisation works with national authorities, air navigation service providers, civil and military airspace users, airports, and other organisations. A senior Eurocontrol official told The Wall Street Journal , that the Pro-Russia hackers cannot access systems for aviation safety because these systems are air-gapped.

Military

Military Education Access Cybersecurity

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors. Adopting the NIST Cybersecurity Framework.

Cybersecurity

Cybersecurity Risk Passwords Authentication

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc. Source (New) Professional services Netherlands Yes 28.3 Source (New) Professional services Netherlands Yes 28.3 Source (New) Professional services Netherlands Yes 28.3

Data Privacy

Data Privacy Privacy Security Data breaches

PWNYOURHOME, FINDMYPWN, LATENTIMAGE: 3 iOS Zero-Click exploits used by NSO Group in 2022

Security Affairs

APRIL 18, 2023

In 2022, the Citizen Lab analyzed the NSO Group activity after finding evidence of attacks on members of Mexico’s civil society, including two human rights defenders from Centro PRODH, which represents victims of military abuses in Mexico.

Military

Military Risk Education Security

CyberheistNews Vol 13 #16 [Finger on the Pulse]: How Phishers Leverage Recent AI Buzz

KnowBe4

APRIL 18, 2023

Blog post with links: [link] [New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist Now there's a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform! Blog post with links: [link] Try SecurityCoach NOW With a Free Preview!

Phishing

Phishing Security awareness Passwords Risk

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

IT Governance

OCTOBER 3, 2022

Our blog has become the go-to source for monthly data breach statistics, and we’ve been producing this series for over seven years. You can leave your comments and suggestions on our blog, or can start the conversation by getting in touch with us via LinkedIn or Twitter. Cyber attacks. Ransomware. Data breaches. million).

Data breaches

Data breaches Ransomware Education Phishing

SEC and FINRA Issue 2020 Examination Priorities (Including Cybersecurity) for Broker-Dealers and Investment Advisers

Data Matters

JANUARY 24, 2020

OCIE also will focus on recommendations and advice provided to retail investors, with a particular emphasis on seniors, retirees, teachers and military personnel, as well as products that the SEC considers higher risk (e.g., Cybersecurity. Additional Focus Areas Specific to Broker-Dealers. OCIE Examination Trends.

Cybersecurity

Cybersecurity Retail Compliance Marketing

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

IT Governance

APRIL 22, 2024

Mobile Guardian, which is used to help parents manage their children’s device usage, was hacked on 19 April, according to the Singaporean Ministry of Education. Mobile Guardian, which is based in the UK, said that its investigations detected unauthorised access to its systems via an administrative account on its management portal.

Data Privacy

Data Privacy Privacy Manufacturing Security

Operationalizing responsible AI principles for defense

IBM Big Data Hub

FEBRUARY 22, 2024

Recognizing this, the Department of Defense (DoD) launched the Joint Artificial Intelligence Center (JAIC) in 2019, the predecessor to the Chief Digital and Artificial Intelligence Office (CDAO), to develop AI solutions that build competitive military advantage, conditions for human-centric AI adoption, and the agility of DoD operations.

Artificial Intelligence

Artificial Intelligence Metadata Military Government

CyberheistNews Vol 13 #27 [Heads Up] Massive Impersonation Phishing Campaign Imitates Over 100 Brands and Thousands of Domains

KnowBe4

JULY 5, 2023

Blog post with links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. Blog post with links: [link] New Phishing Benchmarks Unlocked: Is Your Organization Ahead of the Curve in 2023? This may be the first time a CISO got a Wells notice.

Phishing

Phishing Security awareness Passwords Computer and Electronics

It’s Time to Combine Security Awareness and Privacy Awareness

KnowBe4

MAY 22, 2019

He’s got info security folks requiring him to take annual training, posting educational videos, and sending simulated phishing email all the time. What’s the first image that comes to mind when you think of the “bad guy” or enemy when it comes to cybersecurity? This article was originally published on CPO Magazine. . The Time is Right.

Security awareness

Security awareness Privacy Security Risk

The Hacker Mind Podcast: Shall We Play A Game?

ForAllSecure

JANUARY 27, 2021

Additionally, I am kind of pulled into the marketing department, a little bit to give presentations and write blog posts and kind of be out in the spotlight educating the community, and that's fun, but not nowhere near as much fun as doing the real work, kind of on the keyboard. So, that’s the military. Vamosi: Wait.

Computer and Electronics

Computer and Electronics Military IT Education

The Hacker Mind Podcast: Shall We Play A Game?

ForAllSecure

JANUARY 27, 2021

Additionally, I am kind of pulled into the marketing department, a little bit to give presentations and write blog posts and kind of be out in the spotlight educating the community, and that's fun, but not nowhere near as much fun as doing the real work, kind of on the keyboard. So, that’s the military. Vamosi: Wait.

Computer and Electronics

Computer and Electronics Military IT Education

SEC and FINRA Issue 2020 Examination Priorities for Broker-Dealers and Investment Advisers

Data Matters

FEBRUARY 20, 2020

OCIE will continue to examine municipal advisors (including broker-dealers and RIAs dually registered as municipal advisors) for compliance with registration, professional qualification and continuing education requirements. Cybersecurity. Additional Focus Areas Specific to Broker-Dealers. OCIE Examination Trends.

Retail

Retail Compliance Marketing Risk

CyberheistNews Vol 13 #18 [Eye on AI] Does ChatGPT Have Cybersecurity Tells?

KnowBe4

MAY 2, 2023

CyberheistNews Vol 13 #18 | May 2nd, 2023 [Eye on AI] Does ChatGPT Have Cybersecurity Tells? Blog post with links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. Blog post with links: [link] Re-Check Your Email Attack Surface Now. (We

Cybersecurity

Cybersecurity Phishing Security awareness Military

CyberheistNews Vol 13 #10 [Eye Opener] BusinessWeek: The Satellite Hack Everyone Is Finally Talking About

KnowBe4

MARCH 7, 2023

They started out with: "As Putin began his invasion of Ukraine, a network used throughout Europe—and by the Ukrainian military—faced an unprecedented cyberattack that doubled as an industrywide wake-up call. The KnowBe4 blog initially reported on this hack on March 24, 2022 here: [link] and in our CyberheistNews May 17, 2022 here: [link].

Phishing

Phishing Ransomware Cybersecurity Security awareness

The Russia-linked APT29 is behind recent attacks targeting NATO and EU

Security Affairs

APRIL 13, 2023

Poland’s Military Counterintelligence Service and its Computer Emergency Response Team linked a recent string of attacks targeting NATO and European Union countries to the Russia-linked APT29 group (aka SVR group , Cozy Bear , Nobelium , and The Dukes ). The Military Counterintelligence Service and CERT.PL

Libraries

Libraries Military Education Phishing

List of Data Breaches and Cyber Attacks in August 2023 – 79,729,271 Records Breached

IT Governance

SEPTEMBER 6, 2023

– JDSupra (unknown) VNS Health Confirms Data Breach at TMG Health Resulted in Data of 103,775 Consumers Being Leaked | Console and Associates, P.C. – JDSupra (unknown) Hillsborough County Confirms MOVEit Data Breach Leaks Information of 70k+ | Console and Associates, P.C.

Data breaches

Data breaches Ransomware Insurance Privacy

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Trending Sources

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

White hat hackers showed how to take over a European Space Agency satellite

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Google TAG warns of Russia-linked APT groups targeting Ukraine

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

CyberheistNews Vol 13 #14 [Eyes on the Prize] How Crafty Cons Attempted a 36 Million Vendor Email Heist

The U.S. Innovation and Competition Act: Senate Passes Sweeping $250 Billion Bill to Bolster Scientific Innovation and Compete With China

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

List of data breaches and cyber attacks in August 2020 – 36.6 million records breached

Cyber is Cyber is Cyber

ForAllSecure Launches The Hacker Mind Podcast

ForAllSecure Launches The Hacker Mind Podcast

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

ForAllSecure Launches The Hacker Mind Podcast

2022 Cyber Security Review of the Year

GUEST ESSAY: 6 steps any healthcare organization can take to help mitigate inevitable cyber attacks

Snowden Ten Years Later

Pro-Russia hackers launched a massive attack against the EUROCONTROL agency

An Approach to Cybersecurity Risk Oversight for Corporate Directors

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

PWNYOURHOME, FINDMYPWN, LATENTIMAGE: 3 iOS Zero-Click exploits used by NSO Group in 2022

CyberheistNews Vol 13 #16 [Finger on the Pulse]: How Phishers Leverage Recent AI Buzz

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

SEC and FINRA Issue 2020 Examination Priorities (Including Cybersecurity) for Broker-Dealers and Investment Advisers

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

Operationalizing responsible AI principles for defense

CyberheistNews Vol 13 #27 [Heads Up] Massive Impersonation Phishing Campaign Imitates Over 100 Brands and Thousands of Domains

It’s Time to Combine Security Awareness and Privacy Awareness

The Hacker Mind Podcast: Shall We Play A Game?

The Hacker Mind Podcast: Shall We Play A Game?

SEC and FINRA Issue 2020 Examination Priorities for Broker-Dealers and Investment Advisers

CyberheistNews Vol 13 #18 [Eye on AI] Does ChatGPT Have Cybersecurity Tells?

CyberheistNews Vol 13 #10 [Eye Opener] BusinessWeek: The Satellite Hack Everyone Is Finally Talking About

The Russia-linked APT29 is behind recent attacks targeting NATO and EU

List of Data Breaches and Cyber Attacks in August 2023 – 79,729,271 Records Breached

Stay Connected