Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. Follow me on Twitter: @securityaffairs and Facebook.

Military 100

Military Passwords Government Security 100

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. “Shevlyakov also attempted to acquire computer hacking tools.” ” reads a press release published by DoJ.

Computer and Electronics 92

Computer and Electronics Military Manufacturing Government 92

Data Breach Today

JUNE 12, 2020

The platform is currently in use in three states for military personnel and disabled residents.

Military 228

Military Security Access 228

Schneier on Security

JUNE 6, 2019

Since these leaks have revealed that the US can hack into almost anything, the Chinese government's plan is to adopt a "security by obscurity" approach and run a custom operating system that will make it harder for foreign threat actors -- mainly the US -- to spy on Chinese military operations. Or it could be something completely new.

Military 87

Military Government Security IT 87

Security Affairs

MARCH 16, 2021

Microsoft released an Exchange On-premises Mitigation Tool (EOMT) tool to small businesses for the fix of ProxyLogon vulnerabilities. Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). ” reads the post published by Microsoft.

Military 104

Military Manufacturing Access Security 104

Threatpost

DECEMBER 30, 2021

Researchers from CrowdStrike disrupted an attempt by the threat group to steal industrial intelligence and military secrets from an academic institution.

Military 107

Military Security 107

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. Pierluigi Paganini. SecurityAffairs – hacking, InvisiMole).

Military 85

Military Communications Libraries Encryption 85

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. The attack aims at making the device unusable. ” the researchers concluded.

Military 108

Military Encryption Passwords IT 108

Security Affairs

JUNE 12, 2020

Reseaerchers from ESET reported that Russia-linked Gamaredon APT has a new tool in its arsenal, it is a module for Microsoft Outlook that creates custom emails with malicious documents and sends them to a victim’s contacts. The group targeted government and military organizations in Ukraine. Pierluigi Paganini.

Military 111

Military Phishing Government IT 111

Security Affairs

APRIL 28, 2024

The payload includes a dynamic-link library (vpn.sessings) that injects the post-exploitation tool Cobalt Strike Beacon into memory and awaits commands from the C2 server. “The lure contained military-related content, suggesting it was targeting military personnel. Threat actors used a cracked version of Cobalt Strike.

Military 118

Military Mining Libraries Security 118

The Last Watchdog

OCTOBER 10, 2023

Related: Apple tool used as warfare weapon Ukraine’s defense against Russian invaders has changed the role of video. Accessing video-based intelligence at the right time and place is a very effective method for gaining information about the constantly changing military landscape.

Metadata 130

Metadata Military Encryption Communications 130

Security Affairs

MAY 23, 2024

A previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ has been targeting military and government entities since 2018. Bitdefender researchers discovered a previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ that has been targeting military and government entities since 2018.

Archiving 116

Archiving Military Communications Phishing 116

Security Affairs

APRIL 22, 2021

Cellebrite mobile forensics tool Ufed contains multiple flaws that allow arbitrary code execution on the device, SIGNAL creator warns. Cellebrite develops forensics tools for law enforcement and intelligence agencies that allow automating physically extracting and indexing data from mobile devices. ” concludes the expert.

Military 97

Military Encryption Security Risk 97

Threatpost

JANUARY 13, 2022

US Cyber Command linked the group to Iranian intelligence and detailed its multi-pronged, increasingly sophisticated suite of malware tools.

Military 86

Military IT Government Security 86

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Military 115

Military Government Phishing Authentication 115

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Military 102

Military Security Ransomware Insurance 102

WIRED Threat Level

NOVEMBER 10, 2022

Security researchers see updated tactics and tools—and a tempo change—in the cyberattacks Russia’s GRU military intelligence agency is inflicting on Ukraine.

Military 90

Military Security 90

WIRED Threat Level

FEBRUARY 3, 2023

A popular military tool during the Cold War, spy balloons have since fallen out of favor—for good reason.

Military 82

Military Security 82

Security Affairs

OCTOBER 27, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military 116

Military Phishing Government Security 116

The Last Watchdog

SEPTEMBER 21, 2023

The program also commits to providing free training for transitioning military, first responders, veterans, military spouses, women, underrepresented minorities, and government personnel. factories with the digital tools, cybersecurity, and workforce expertise needed to begin building every part better than the last.

Cybersecurity 147

Cybersecurity Manufacturing Military Artificial Intelligence 147

The Last Watchdog

NOVEMBER 14, 2023

And today, with the mainstreaming of next-gen AI tools, attackers enjoy an abundance of viable attack vectors, putting security teams that operate unilaterally at a huge disadvantage. The task force can deploy leading-edge detection and response tools and leverage the timeliest intelligence.

Ransomware 260

Ransomware Military Government Security 260

Security Affairs

JUNE 15, 2023

The Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive Bear, UAC-0010, and Trident Ursa) continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. The attack chain commences with spear-phishing emails with malicious attachments (.docx,rar,sfx

Military 91

Military File names Archiving Phishing 91

Schneier on Security

APRIL 15, 2021

States’ increasing use of cyber operations as a tool of national power, including increasing use by militaries around the world, raises the prospect of more destructive and disruptive cyber activity.

Military 135

Military Cybersecurity Government IT 135

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military 111

Military Government Phishing Access 111

IT Governance

MARCH 8, 2022

The Ukrainian government and its military were targeted by DDoS (distributed denial-of-service) attacks, while a pro-Ukrainian group attacked the Belarusian railway system with ransomware after discovering that it was being used by Russia to transport tanks and weapons. Beware of remote access takeover scams.

Phishing 144

Phishing Military Access Education 144

Security Affairs

NOVEMBER 18, 2023

The Gamaredon APT group continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. Since the beginning of the Russian invasion of Ukraine, the cyber espionage group has carried out multiple campaigns against Ukrainian targets.

Military 119

Military Communications IT Government 119

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report. ” concludes the report.

Energy and Utilities 104

Energy and Utilities Military Government Phishing 104

Security Affairs

DECEMBER 24, 2019

A popular mobile app in the Middle East called ToTok has been removed from both Apple and Google’s online stores because it was a spy tool. According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. ” reported the AFP agency. Pierluigi Paganini.

Government 67

Government Military Security IT 67

Security Affairs

DECEMBER 19, 2018

The Sofacy APT group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. “The Sofacy threat group continues to carry out attacks using their Zebrocy tool. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military 95

Military Data collection Phishing Government 95

Schneier on Security

APRIL 28, 2022

However, collectively, the cyber and kinetic actions work to disrupt or degrade Ukrainian government and military functions and undermine the public’s trust in those same institutions. […].

Military 88

Military Government IT 88

Security Affairs

JUNE 26, 2022

That same day, the FBI issued an advisory warning that TRITON malware tools still remain a major threat to industrial systems around the world.” ” reported the American Military News website. ” continues the American Military News website. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Military 119

Military Cloud Government Security 119

The Last Watchdog

AUGUST 1, 2023

New applications of AI-powered security tools are being applied to reduce analyst workloads and alleviate burnout, but they are only one piece of the puzzle. Founded in Australia just over one year ago, Cybermindz entered the U.S. in April to expand its global reach.

Cybersecurity 189

Cybersecurity Analytics Military Cloud 189

Security Affairs

SEPTEMBER 27, 2022

The experts discovered that some APT28 tools were used to compromise the networks of Ukrainian victims, whose data was subsequently leaked on Telegram within 24 hours of wiping activity by APT28. The group was involved also in the string of attacks that targeted 2016 Presidential election. ” Mandiant concludes. Pierluigi Paganini.

Military 93

Military Phishing Government Security 93

eSecurity Planet

SEPTEMBER 16, 2021

The investigators said the advanced threat actors used a mixture of known and unique malware tools in the attack – which they dubbed Operation Harvest – to compromise the victim’s IT environment, exfiltrate the data and evade detection. PlugX, Winnti and some other custom tools all point to a group that had access to the same tools.

Military 145

Military Access Manufacturing Phishing 145

Security Affairs

AUGUST 15, 2021

The MoD is offering a salary of £33k to “work alongside some of the best scientists and engineers within defence and will be tasked with delivering prototype solutions directly to the soldiers and officers of a unique and specialized military unit.” ”What unique and specialised military unit is famously based in Hereford?

Computer and Electronics 102

Computer and Electronics Military Manufacturing Communications 102

The Last Watchdog

MAY 13, 2020

One new challenge CISOs’ suddenly face is how to lock down web conferencing tools, like Zoom, Skype and Webex, without gutting their usefulness. One of their main duties continues to be vetting security solutions and making buy versus build decisions with respect to security tools and services.

Security 309

Security Cybersecurity Military Risk 309

Security Affairs

MARCH 31, 2023

A Russian hacking group, tracked Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats. The CVE-2022-27926 flaw affects Zimbra Collaboration versions 9.0.0,

Military 94

Military Phishing Passwords Government 94