Blog, Military and Security - Information Management Today

Anonymous targets the Russian Military and State Television and Radio propaganda

Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military

Military Cybersecurity Security Government

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of data, including secret military data related to weapons production.

Military

Military Manufacturing Ransomware Mining

SHARED INTEL: How Russia’s war mongering compromises those holding security clearances

The Last Watchdog

APRIL 19, 2022

While global commerce is an important aspect of the world economy, individuals who hold national security clearances need to be aware that some of the activities they engage in could pose a security risk and may negatively impact their security clearances. national security secrets. national security secrets.

Security

Security Risk Military Government

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! billion rubles.

Security

Security Computer and Electronics Ransomware Marketing

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. x and Ivanti Policy Secure. is a command injection vulnerability in web components of Ivanti Connect Secure (9.x, x) and Ivanti Policy Secure. reads the advisory published by Ivanti.

Security

Security Authentication Military Government

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. Yet, there’s still work to be done to make this path more accessible and known among the veteran and transitioning military community. This experience can also be helpful when training cybersecurity talent. And it works.

Cybersecurity

Cybersecurity Military Education Government

Russia-linked APT Gamaredon update TTPs in recent attacks against Ukraine

Security Affairs

JUNE 15, 2023

The Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive Bear, UAC-0010, and Trident Ursa) continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. ” reads the report published by Symantec.

Military

Military File names Archiving Phishing

China-linked Moshen Dragon abuses security software to sideload malware

Security Affairs

MAY 3, 2022

RedFoxtrot has been active since at least 2014 and focused on gathering military intelligence from neighboring countries, it is suspected to work under the PLA China-linked Unit 69010. The threat actor systematically utilized software distributed by security vendors to sideload ShadowPad and PlugX variants.” Pierluigi Paganini.

Security

Security Military Insurance Cybersecurity

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Security Affairs

DECEMBER 15, 2023

.” The Snatch ransomware was first spotted at the end of 2019, Sophos researchers discovered a piece of the Snatch ransomware that reboots computers it infects into Safe Mode to bypass resident security solutions. HENSOLDT is a company specializing in military and defense electronics.

Ransomware

Ransomware Computer and Electronics Military Agriculture

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Cybersecurity

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. hacking tools and electronics appeared first on Security Affairs. His illegal acquisitions of sophisticated U.S.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

A search in Google for a string of text from that script turns up a December 2023 blog post from cryptocurrency security firm SlowMist about phishing attacks on Telegram from North Korean state-sponsored hackers. The North Korean regime is known to use stolen cryptocurrencies to fund its military and other state projects.

Phishing

Phishing Blockchain Military Passwords

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

Security Affairs

APRIL 5, 2022

Ukraine CERT-UA published a security advisory to warn of spear-phishing attacks conducted by Russia-linked Armageddon APT (aka Gamaredon , Primitive Bear, Armageddon, Winterflounder, or Iron Tilden) targeting local state organizations. The group targeted government and military organizations in Ukraine. To nominate, please visit:?

Military

Military Phishing File names Archiving

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The goal of this activity is assessed to be gaining access to the emails of military, government, and diplomatic organizations across Europe involved in the Russia Ukrainian War.”

IT

IT Military Phishing Passwords

Russian APT28 hacker accused of the NATO think tank hack in Germany

Security Affairs

JUNE 20, 2022

The attack took place in April 2017 and the man is accused of conducting the attack for the Russian military intelligence service GRU. “The German investigators were also able to secure the content of the Russian’s email accounts, who are said to have used Apple user accounts, among other things. ” continues the post.

Military

Military Access Cybersecurity Security

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Systems administration

Systems administration Military Phishing Government

Nation-state malware could become a commodity on dark web soon, Interpol warns

Security Affairs

MAY 24, 2022

Threat actors could perform reverse engineering of military-made malicious code and use their own versions in attacks in the wild. “The same applies for the digital weapons that, maybe today are used by the military, developed by military, and tomorrow will be available for criminals,” he explained. .

Military

Military Government Communications Security

Russia-linked threat actors launched hundreds of cyberattacks on Ukraine

Security Affairs

APRIL 27, 2022

The experts pointed out that starting just before the invasion threat actors linked to the military intelligence service GRU launched destructive wiper attacks on hundreds of systems in Ukraine. The post Russia-linked threat actors launched hundreds of cyberattacks on Ukraine appeared first on Security Affairs. Pierluigi Paganini.

Military

Military Government Cybersecurity Security

UK emphasises cyber security in new foreign policy strategy

IT Governance

MARCH 18, 2021

The UK government plans to invest £24 billion in cyber security and the armed forces as part of a major shake-up of its defence policy. For example, it is authorised to interfere with mobile phones to stop terrorists communicating with their contacts, and can implement defences to protect military aircraft from weapons systems.

Security

Security Military Government Communications

Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites

Security Affairs

MAY 4, 2022

Pro-Ukraine hackers, likely linked to Ukraine IT Army , are using Docker images to launch distributed denial-of-service (DDoS) attacks against a dozen websites belonging to government, military, and media. The post Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites appeared first on Security Affairs.

Honeypots

Honeypots Military Mining Government

Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict

Security Affairs

APRIL 10, 2022

This post provides a timeline of the events related to the Russian invasion of Ukraine from the cyber security perspective. Ukraine’s technical security and intelligence service warns of threat actors targeting aimed at gaining access to users’ Telegram accounts. Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict.

Military

Military Phishing Cybersecurity Government

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide.

Energy and Utilities

Energy and Utilities Military Government Phishing

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

The Last Watchdog

OCTOBER 17, 2018

Government Accountability Office audit last week found that the defense department is playing catch up when it comes to securing weapons systems from cyberattacks. military and civilian personnel were compromised. The result: personal information and credit card data of at least 30,000 U.S. Timely trust decisions.

Data breaches

Data breaches Security Military Government

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

Although there have still been a few surprises, with the death of Queen Elizabeth II and blazing heatwaves across the UK to name but two, it was a familiar year in the cyber security landscape. Google , Clearview AI , and Meta all receives hefty penalties in 2022, demonstrating the continued important of effective information security.

Security

Security Data breaches Ransomware Military

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. TAG also observed campaigns from this actor targeting attendees of the Munich Security Conference and the Masters of Digital conference.”

Phishing

Phishing Military Ransomware Education

North Korea-linked APT BlueNoroff used new macOS malware ObjCShellz

Security Affairs

NOVEMBER 8, 2023

blog, which was chosen by the attackers in an attempt to appear as the legitimate cryptocurrency exchange swissborg.com. ” North Korea-linked threat actors continue to target organizations in the cryptocurrency industry to circumvent international sanctions and finance its military operations.

Blockchain

Blockchain Military Communications IT

Strengthen information protection with a Zero Trust Information Governance program

OpenText Information Management

FEBRUARY 2, 2023

.” – Sun Tzu, The Art of War A critical element of any security plan is to assert command and control of every route through your defenses.

Information governance

Information governance Government Military Security

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Access Cybersecurity Education

Phishing attacks using the topic “Azovstal” targets entities in Ukraine

Security Affairs

APRIL 23, 2022

Since February the notorious cybercrime operation Trickbot is controlled by Conti ransomware, the ransomware gang that publicly announced its support to Russia after the invasion of Ukraine by Russian cyber militaries. The alert published by the Ukraine CERT-UA includes Indicators of Compromise (IoCs) for this campaign and recommendations.

Phishing

Phishing Military Ransomware Encryption

GUEST ESSAY: Rising cyber risks make business intelligence gathering more vital than ever

The Last Watchdog

JULY 5, 2022

The top reason, chosen from a proved list of ten, was ‘increased cyber security risks’, followed by the related concern, ‘new and/or increased data privacy regulations’. Cyber security keeps the C-suite up at night and perhaps that’s no surprise. Cyber security should also be viewed in a wider business context. Cyber in a silo?

Risk

Risk Military Marketing Data Privacy

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. Cybersecurity and Infrastructure Security Agency (CISA) has started a campaign to increase awareness of these risks to U.S.

Cybersecurity

Cybersecurity Military Passwords Education

Conti ransomware claims to have hacked Peru MOF – Dirección General de Inteligencia (DIGIMIN)

Security Affairs

MAY 8, 2022

The agency is responsible for national, military and police intelligence, as well as counterintelligence. Clearly, an attack against an intelligence agency could lead to the disclosure of secret and confidential documents and pose a risk to national security. The ransomware gang claimed to have stolen 9.41 GB of data.

Ransomware

Ransomware Military Cybersecurity Risk

A zero-click vulnerability in Windows allows stealing NTLM credentials

Security Affairs

MAY 11, 2023

Researchers shared technical details about a flaw in Windows MSHTML platform, tracked as CVE-2023-29324 , that could be abused to bypass security protections. Cybersecurity researchers have shared details about a now-patched security flaw, tracked as CVE-2023-29324 (CVSS score: 6.5), in Windows MSHTML platform. We are in the final!

Military

Military Cybersecurity Security Government

Catches of the Month: Phishing Scams for March 2022

IT Governance

MARCH 8, 2022

As the Russian invasion continues, many cyber security experts have advised that conflicts could play out in cyberspace. Meanwhile, the CERT-UA posted on Facebook that it had detected a widespread phishing campaign targeting Ukrainian military personnel. Get started.

Phishing

Phishing Military Access Education

China-linked APT Curious Gorge targeted Russian govt agencies

Security Affairs

MAY 3, 2022

. “ Curious Gorge, a group TAG attributes to China’s PLA SSF, has remained active against government, military, logistics and manufacturing organizations in Ukraine, Russia and Central Asia. ” wrote Google TAG Security Engineer Billy Leonard. To nominate, please visit:? Pierluigi Paganini.

Manufacturing

Manufacturing Phishing Passwords Military

Microsoft disrupted APT28 attacks on Ukraine through a court order

Security Affairs

APRIL 8, 2022

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The post Microsoft disrupted APT28 attacks on Ukraine through a court order appeared first on Security Affairs.

Military

Military Government Phishing Security

White hat hackers showed how to take over a European Space Agency satellite

Security Affairs

APRIL 30, 2023

Cyber security of satellite systems is becoming crucial due to the growing number of commercial and military applications that rely on them. .” Thales pointed out that throughout the entire exercise, ESA had access to the satellite’s systems to retain control. ” said Pierre-Yves Jolivet, VP Cyber Solutions, Thales.

Cybersecurity

Cybersecurity Military Access Education

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere.

Phishing

Phishing Passwords Military Education

The strange link between Industrial Spy and the Cuba ransomware operation

Security Affairs

MAY 28, 2022

We public schemes, drawings, technologies, political and military secrets, accounting reports and clients databases. However, it is peculiar and something that security researchers and analysts will need to keep an eye on. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

Ransomware

Ransomware Military Security Cybersecurity

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

The activity of the Lyceum APT group was first documented earlier in August 2019 by researchers at ICS security firm Dragos which tracked it as Hexane. The attack chain observed by the researchers starts with spear-phishing messages using weaponized Word document disguised as a news report related to military affairs in Iran.

IT

IT Military Communications Phishing

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

“Microsoft assesses that Mint Sandstorm is associated with an intelligence arm of Iran’s military, the Islamic Revolutionary Guard Corps (IRGC), an assessment that has been corroborated by multiple credible sources including Mandiant , Proofpoint , and SecureWorks.” ” reads the report published by Microsoft.

Energy and Utilities

Energy and Utilities Military Education Phishing

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

However, the attackers chose a domain name that gives the impression of a connection to the South African military. This domain has been hosted on eight other IPs throughout its history, none of these IPs were directly affiliated with the South African government. Experts added that the IP 196.216.136[.]139 139 resolved to vpn729380678.softether[.]net

Communications

Communications Military Government Libraries

Ghostwriter disinformation campaign aimed at discrediting NATO

Security Affairs

AUGUST 3, 2020

Security experts from FireEye have uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests. “We Pierluigi Paganini.

Military

Military CMS Government Security

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

The Last Watchdog

SEPTEMBER 27, 2021

To minimize their impact, implementing preventive security measures into these advanced systems is crucial. Businesses across all industries can function adequately without worrying about would-be hackers with malicious intent when they secure their networks. Related: How Russia uses mobile apps to radicalize U.S. As a result, the U.S.

Cybersecurity

Cybersecurity Military Encryption Risk

Anonymous targets the Russian Military and State Television and Radio propaganda

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Webinars

Trending Sources

SHARED INTEL: How Russia’s war mongering compromises those holding security clearances

Webinars

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Russia-linked APT Gamaredon update TTPs in recent attacks against Ukraine

China-linked Moshen Dragon abuses security software to sideload malware

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Calendar Meeting Links Used to Spread Mac Malware

Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Russian APT28 hacker accused of the NATO think tank hack in Germany

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Nation-state malware could become a commodity on dark web soon, Interpol warns

Russia-linked threat actors launched hundreds of cyberattacks on Ukraine

UK emphasises cyber security in new foreign policy strategy

Pro-Ukraine attackers compromise Docker images to launch DDoS attacks on Russian sites

Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

2022 Cyber Security Review of the Year

Google TAG warns of Russia-linked APT groups targeting Ukraine

North Korea-linked APT BlueNoroff used new macOS malware ObjCShellz

Strengthen information protection with a Zero Trust Information Governance program

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Phishing attacks using the topic “Azovstal” targets entities in Ukraine

GUEST ESSAY: Rising cyber risks make business intelligence gathering more vital than ever

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Conti ransomware claims to have hacked Peru MOF – Dirección General de Inteligencia (DIGIMIN)

A zero-click vulnerability in Windows allows stealing NTLM credentials

Catches of the Month: Phishing Scams for March 2022

China-linked APT Curious Gorge targeted Russian govt agencies

Microsoft disrupted APT28 attacks on Ukraine through a court order

White hat hackers showed how to take over a European Space Agency satellite

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

The strange link between Industrial Spy and the Cuba ransomware operation

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Ghostwriter disinformation campaign aimed at discrediting NATO

GUEST ESSAY – Notable events in hacking history that helped transform cybersecurity assessment

Stay Connected