Blog, Cybersecurity and Military - Information Management Today

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

It’s no secret that cybersecurity roles are in high demand. Today there are more than 500,000 open cybersecurity roles in the U.S., Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. This experience can also be helpful when training cybersecurity talent.

Cybersecurity

Cybersecurity Military Education Government

Anonymous targets the Russian Military and State Television and Radio propaganda

Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military

Military Cybersecurity Security Government

Cybersecurity Services combat an APT with NDR

OpenText Information Management

MARCH 28, 2024

State carry out comprehensive assessments of their cybersecurity services and practices. Enter OpenText™, a trailblazing force in the realm of cybersecurity , with its cutting-edge Network Detection and Response (NDR). OpenText Cybersecurity Services will be your guide to cyber resilience. Both the U.S.

Cybersecurity

Cybersecurity Military IoT Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

The Last Watchdog

SEPTEMBER 27, 2021

Here are five notable historical events that influenced cybersecurity assessment and transformed it into what it is today: The Battle of Midway (1942). military officials hired data analysts to crack the Japanese secret code known as JN-25. After the devastating blow of Pearl Harbor, U.S. As a result, the U.S. The ILOVEYOU Worm (2000).

Cybersecurity

Cybersecurity Military Encryption Risk

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. Cybersecurity and Infrastructure Security Agency (CISA) has started a campaign to increase awareness of these risks to U.S.

Cybersecurity

Cybersecurity Military Passwords Education

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The goal of this activity is assessed to be gaining access to the emails of military, government, and diplomatic organizations across Europe involved in the Russia Ukrainian War.”

IT

IT Military Phishing Passwords

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Security Affairs

APRIL 5, 2022

The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement. The Gamaredon group was first discovered by Symantec and TrendMicro in 2015, but evidence of its activities has been dated back to 2013.

Military

Military Phishing File names Archiving

Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites

Security Affairs

MAY 4, 2022

Pro-Ukraine hackers, likely linked to Ukraine IT Army , are using Docker images to launch distributed denial-of-service (DDoS) attacks against a dozen websites belonging to government, military, and media. The DDoS attacks also targeted three Lithuanian media websites. ” reported Crowdstrike. To nominate, please visit:? link] .

Honeypots

Honeypots Military Mining Government

White hat hackers showed how to take over a European Space Agency satellite

Security Affairs

APRIL 30, 2023

Thales cybersecurity researchers have shown this week how they seized control of a European Space Agency (ESA) satellite. Credit: ESA – European Space Agency The offensive cybersecurity team at Thales demonstrated how to take control of the ESA satellite, the is considered the world’s first ethical satellite hacking exercise.

Cybersecurity

Cybersecurity Military Access Education

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide.

Energy and Utilities

Energy and Utilities Military Government Phishing

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. Andrey Shevlyakov, an Estonian national, was charged in the US with conspiracy and other charges related to acquiring U.S.-made

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict

Security Affairs

APRIL 10, 2022

April 5 – Anonymous targets the Russian Military and State Television and Radio propaganda. Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict. To nominate, please visit:?

Military

Military Phishing Cybersecurity Government

Russia-linked threat actors launched hundreds of cyberattacks on Ukraine

Security Affairs

APRIL 27, 2022

The experts pointed out that starting just before the invasion threat actors linked to the military intelligence service GRU launched destructive wiper attacks on hundreds of systems in Ukraine. 32% percent of destructive attacks were aimed at Ukrainian government organizations at the national, regional, and city levels. link] .

Military

Military Government Cybersecurity Security

Russian APT28 hacker accused of the NATO think tank hack in Germany

Security Affairs

JUNE 20, 2022

The attack took place in April 2017 and the man is accused of conducting the attack for the Russian military intelligence service GRU. This gave them access to all sorts of private documents and photos, including photos that are said to show awards and uniforms of the Russian military intelligence service GRU.”

Military

Military Access Cybersecurity Security

Nation-state malware could become a commodity on dark web soon, Interpol warns

Security Affairs

MAY 24, 2022

Threat actors could perform reverse engineering of military-made malicious code and use their own versions in attacks in the wild. “The same applies for the digital weapons that, maybe today are used by the military, developed by military, and tomorrow will be available for criminals,” he explained. .

Military

Military Government Communications Security

China-linked APT Curious Gorge targeted Russian govt agencies

Security Affairs

MAY 3, 2022

The Google TAG team published a report focused on cybersecurity activity in Eastern Europe. “ Curious Gorge, a group TAG attributes to China’s PLA SSF, has remained active against government, military, logistics and manufacturing organizations in Ukraine, Russia and Central Asia. To nominate, please visit:?

Manufacturing

Manufacturing Phishing Passwords Military

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Systems administration

Systems administration Military Phishing Government

A zero-click vulnerability in Windows allows stealing NTLM credentials

Security Affairs

MAY 11, 2023

Cybersecurity researchers have shared details about a now-patched security flaw, tracked as CVE-2023-29324 (CVSS score: 6.5), in Windows MSHTML platform. Researchers shared technical details about a flaw in Windows MSHTML platform, tracked as CVE-2023-29324 , that could be abused to bypass security protections. We are in the final!

Military

Military Cybersecurity Security Government

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Access Cybersecurity Education

Phishing attacks using the topic “Azovstal” targets entities in Ukraine

Security Affairs

APRIL 23, 2022

Since February the notorious cybercrime operation Trickbot is controlled by Conti ransomware, the ransomware gang that publicly announced its support to Russia after the invasion of Ukraine by Russian cyber militaries. The alert published by the Ukraine CERT-UA includes Indicators of Compromise (IoCs) for this campaign and recommendations.

Phishing

Phishing Military Ransomware Encryption

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. ” reads the report published by the Google TAG.

Phishing

Phishing Military Ransomware Education

Conti ransomware claims to have hacked Peru MOF – Dirección General de Inteligencia (DIGIMIN)

Security Affairs

MAY 8, 2022

The agency is responsible for national, military and police intelligence, as well as counterintelligence. The Conti ransomware gang added the Peru MOF – Dirección General de Inteligencia (DIGIMIN) to the list of its victims on its Tor leak site. The National Directorate of Intelligence is the premier intelligence agency in Peru.

Ransomware

Ransomware Military Cybersecurity Risk

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

billion rubles. billion rubles. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter newsletter) The post Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Security

Security Computer and Electronics Ransomware Marketing

NB65 group targets Russia with a modified version of Conti’s ransomware

Security Affairs

APRIL 10, 2022

F**k the Russian Military. BleepingComputer first learned of NB65’s ransomware by cybersecurity researchers Tom Malka and during the weekend they were able to discover a sample of the Conti ransomware modified by NB65 that was uploaded to VirusTotal. And what kind of chincy ass soviet connection are you guys using? link] .

Ransomware

Ransomware Encryption Military Cybersecurity

Pro-Russian hacktivists target Italy government websites

Security Affairs

MAY 14, 2022

Our Legion conducts military cyber exercises in your countries in order to improve their skills. Since the beginning of Russia’s invasion of Ukraine, the Italian Cybersecurity agency, ACN, has raised alert levels due to the possible spillover of the cyber disputed between the two countries. To nominate, please visit:? link] .

Government

Government Military Cybersecurity Data breaches

Microsoft disrupted APT28 attacks on Ukraine through a court order

Security Affairs

APRIL 8, 2022

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election. To nominate, please visit:? link] .

Military

Military Government Phishing Security

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

“Microsoft assesses that Mint Sandstorm is associated with an intelligence arm of Iran’s military, the Islamic Revolutionary Guard Corps (IRGC), an assessment that has been corroborated by multiple credible sources including Mandiant , Proofpoint , and SecureWorks.” ” reads the report published by Microsoft.

Energy and Utilities

Energy and Utilities Military Education Phishing

Why Edward Snowden is urging users to stop using ExpressVPN?

Security Affairs

SEPTEMBER 19, 2021

Last week the Israeli cybersecurity firm Kape Technologies has acquired the industry’s leading virtual private networks ExpressVPN, as part of a $936 million deal. The trio has worked as hackers-for-hire for the United Arab Emirates cybersecurity company DarkMatter between January 2016 and November 2019. and its ally, the U.A.E.,

Military

Military Cybersecurity Privacy Compliance

The strange link between Industrial Spy and the Cuba ransomware operation

Security Affairs

MAY 28, 2022

We public schemes, drawings, technologies, political and military secrets, accounting reports and clients databases. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. We gather data using vunlerability in their IT infrastructure. in their IT infrastructure.

Ransomware

Ransomware Military Security Cybersecurity

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

The attack chain observed by the researchers starts with spear-phishing messages using weaponized Word document disguised as a news report related to military affairs in Iran. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. Pierluigi Paganini.

IT

IT Military Communications Phishing

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Security

Security Ransomware Data breaches Cybersecurity

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere.

Phishing

Phishing Passwords Military Education

Experts spotted Industrial Spy, a new stolen data marketplace

Security Affairs

APRIL 18, 2022

We public schemes, drawings, technologies, political and military secrets, accounting reports and clients databases. Below is the description for the marketplace: “There you can buy or download for free private and compromising data of your competitors. We gather data using vunlerability in their IT infrastructure.

Military

Military Sales Ransomware Cybersecurity

SideWinder carried out over 1,000 attacks since April 2020

Security Affairs

MAY 31, 2022

SideWinder has been active since at least 2012, the group main targeted Police, Military, Maritime, and the Naval forces of Central Asian countries. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. To nominate, please visit:? Pierluigi Paganini.

Encryption

Encryption Military Phishing Communications

China-linked Moshen Dragon abuses security software to sideload malware

Security Affairs

MAY 3, 2022

RedFoxtrot has been active since at least 2014 and focused on gathering military intelligence from neighboring countries, it is suspected to work under the PLA China-linked Unit 69010. Experts observed overlap between the TTPs of the Moshen Dragon group with the ones of the Chinese Nomad Panda (aka RedFoxtrot). To nominate, please visit:?

Security

Security Military Insurance Cybersecurity

New ToddyCat APT targets high-profile entities in Europe and Asia

Security Affairs

JUNE 21, 2022

The affected organizations, both governmental and military, show that this group is focused on very high-profile targets and is probably used to achieve critical goals, likely related to geopolitical interests. ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. .”

Military

Military Cybersecurity Security IT

US Department of State offers $10M reward for info to locate six Russian Sandworm members

Security Affairs

APRIL 27, 2022

The six individuals are Russian officers of the Main Intelligence Directorate of the General Staff of the Armed Forces of the Russian Federation (GRU), a division of the Russian military intelligence that was often involved in malicious cyber operations against US infrastructure. critical infrastructure.” To nominate, please visit:?

Military

Military Government Cybersecurity Security

Former National Security Council Legal Adviser Christopher Fonzone Joins Sidley in Washington, D.C.

Data Matters

NOVEMBER 29, 2017

He will be a member of Sidley’s global Privacy and Cybersecurity practice. Fonzone held positions within the Department of Justice and the Department of Defense, where he advised senior officials on a wide array of domestic and international legal issues, including those involving national security, military operations and litigation.

Military

Military Artificial Intelligence Security Cybersecurity

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

The Last Watchdog

OCTOBER 17, 2018

military and civilian personnel were compromised. Seasoned attackers know, of course, that it is typical for federal government suppliers to hold transactional data, and that some even possess technical data, schematics and program details that would be hard to access through a direct offensive attack on a hardened military target.

Data breaches

Data breaches Security Military Government

A brief history of cryptography: Sending secret messages throughout time

IBM Big Data Hub

JANUARY 5, 2024

In modern times, cryptography has become a critical lynchpin of cybersecurity. 650 BC: Ancient Spartans used an early transposition cipher to scramble the order of the letters in their military communications. Since the days of antiquity, the practice of sending secret messages has been common across almost all major civilizations.

Encryption

Encryption Communications Military Government

US dismantled the Russia-linked Cyclops Blink botnet

Security Affairs

APRIL 6, 2022

” In February, US and UK cybersecurity and law enforcement agencies published a joint security advisory about a new malware, dubbed Cyclops Blink, that has been linked to the Russian-backed Sandworm APT group. ” reads the DoJ. “The Russian government has recently used similar infrastructure to attack Ukrainian targets.

Military

Military Government Cybersecurity Ransomware

CyberheistNews Vol 13 #14 [Eyes on the Prize] How Crafty Cons Attempted a 36 Million Vendor Email Heist

KnowBe4

APRIL 4, 2023

Blog post with screenshots and links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. Blog post with screenshots and links: [link] A Master Class on IT Security: Roger A. Top Cybersecurity Newsletter."

Phishing

Phishing Security awareness Cybersecurity Education

Conti ransomware is shutting down operations, what will happen now?

Security Affairs

MAY 20, 2022

The agency is responsible for national, military and police intelligence, as well as counterintelligence. Recently the Conti ransomware gang added the Peru MOF – Dirección General de Inteligencia (DIGIMIN) to the list of its victims on its Tor leak site. The National Directorate of Intelligence is the premier intelligence agency in Peru.

Ransomware

Ransomware Government Military IT

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The sanctioned entities conducted operations to steal funds to support the military strategy of the regime. ” reads the announcement. In December 2022, South Korea’s spy agency, the National Intelligence Service, estimated that North Korea-linked threat actors have stolen an estimated 1.5 trillion won ($1.2 ” We are in the final!

Government

Government Military Financial Services IT

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Anonymous targets the Russian Military and State Television and Radio propaganda

Webinars

Trending Sources

Cybersecurity Services combat an APT with NDR

Webinars

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites

White hat hackers showed how to take over a European Space Agency satellite

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict

Russia-linked threat actors launched hundreds of cyberattacks on Ukraine

Russian APT28 hacker accused of the NATO think tank hack in Germany

Nation-state malware could become a commodity on dark web soon, Interpol warns

China-linked APT Curious Gorge targeted Russian govt agencies

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

A zero-click vulnerability in Windows allows stealing NTLM credentials

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Phishing attacks using the topic “Azovstal” targets entities in Ukraine

Google TAG warns of Russia-linked APT groups targeting Ukraine

Conti ransomware claims to have hacked Peru MOF – Dirección General de Inteligencia (DIGIMIN)

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

NB65 group targets Russia with a modified version of Conti’s ransomware

Pro-Russian hacktivists target Italy government websites

Microsoft disrupted APT28 attacks on Ukraine through a court order

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Why Edward Snowden is urging users to stop using ExpressVPN?

The strange link between Industrial Spy and the Cuba ransomware operation

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Experts spotted Industrial Spy, a new stolen data marketplace

SideWinder carried out over 1,000 attacks since April 2020

China-linked Moshen Dragon abuses security software to sideload malware

New ToddyCat APT targets high-profile entities in Europe and Asia

US Department of State offers $10M reward for info to locate six Russian Sandworm members

Former National Security Council Legal Adviser Christopher Fonzone Joins Sidley in Washington, D.C.

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

A brief history of cryptography: Sending secret messages throughout time

US dismantled the Russia-linked Cyclops Blink botnet

CyberheistNews Vol 13 #14 [Eyes on the Prize] How Crafty Cons Attempted a 36 Million Vendor Email Heist

Conti ransomware is shutting down operations, what will happen now?

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Stay Connected