2011 and Analysis - Information Management Today

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

Researchers from ESET uncovered the activity of a new APT group, tracked as XDSpy, that has been active since at least 2011. XDSpy is the name used by ESET researchers to track a nation-state actor that has been active since at least 2011. The post XDSpy APT remained undetected since at least 2011 appeared first on Security Affairs.

Military

Military Phishing Passwords Government

Sandboxing: Advanced Malware Analysis in 2021

eSecurity Planet

APRIL 23, 2021

To fill this gap and aid in the analysis, detection, and testing of malware, sandboxing is widely used to give organizations the setting, isolation, and security tools needed to preserve the integrity of the host network. Sandbox solutions today are compared today by their set of features to aid advanced malware analysis. Automation.

Cybersecurity

Cybersecurity Cloud Risk Marketing

Data, analysis and the library: Joining the dots at the Department for Work and Pensions

CILIP

MARCH 28, 2021

s analysis function, supporting wider decision-making and policy formulation. including leading the analysis for the Pensions Commission, Chaired by Adair Turner and which reported in 2005. He has since moved away from that direct involvement in analysis work to oversee the department?s analysis function ? Trevor says: ?I

Libraries

Libraries Access Government Analytics

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

The analysis of the code reuse revealed many links between North Korea malware

Security Affairs

AUGUST 10, 2018

The experts focused their analysis on the code reuse, past investigations revealed that some APT groups share portions of code and command and control infrastructure for their malware. ” reads the analysis published by the experts. ” states the analysis published by the experts. ” states the report. .”

Libraries

Libraries Ransomware Security Access

ENISA published “Proactive detection – Measures and information sources” report

Security Affairs

MAY 31, 2020

This report identifies and analyzes how proactive detection in the EU is evolved between 2011 and 2019. Survey among incident response teams in Europe; Comparison with the 2011 survey. 3- Report – Good practices gap analysis recommendations. Analysis of the data gathered; Recommendations.

Cybersecurity

Cybersecurity Security IT Information Security

Identifying the Person Behind Bitcoin Fog

Schneier on Security

MAY 3, 2021

Identifying the person behind Bitcoin Fog serves as an illustrative example of how hard it is to be anonymous online in the face of a competent police investigation: Most remarkable, however, is the IRS’s account of tracking down Sterlingov using the very same sort of blockchain analysis that his own service was meant to defeat.

Blockchain

Blockchain IT

French Data Protection Authority Unveils its Goals for 2011 Inspections

Hunton Privacy

APRIL 27, 2011

On April 26, 2011, the French Data Protection Authority (the “CNIL”) issued a press release unveiling its inspection goals for the coming year. Electronic Tracking and Behavioral Analysis.

IT

IT Personal data Marketing Security

US Treasury FinCEN linked $5.2 billion in BTC transactions to ransomware payments

Security Affairs

OCTOBER 16, 2021

FinCEN analyzed a data set composed of 2,184 SARs filed between 1 January 2011 and 30 June 2021 and identified 177 CVC (convertible virtual currency) wallets addresses that were used in ransomware operations associated with the above ransomware variants. million and the median average was $45 million.

Ransomware

Ransomware Security Information Security IT

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

JUNE 21, 2023

has been associated with the user Kerens on the Russian hacking forum Exploit from 2011 to the present day. The very first post by Kerens on Exploit in 2011 was a negative review of a popular crypting service that predated Cryptor[.]biz .” Meanwhile, the Jabber address masscrypt@exploit.im is no longer active.

e-Delivery

e-Delivery Passwords Cybersecurity Sales

PyMICROPSIA Windows malware includes checks for Linux and macOS

Security Affairs

DECEMBER 15, 2020

AridViper is an Arabic speaking APT group that is active in the Middle East since at least 2011. ” reads the analysis published by Palo Alto Networks. ” concludes the analysis. ” Experts don’t exclude that the checks might have been introduced by vxers copy-pasting code from other ‘projects.’

Communications

Communications Libraries IT Security

Who Is the Network Access Broker ‘Babam’?

Krebs on Security

DECEMBER 3, 2021

com back in 2011, and sanjulianhotels[.]com ” A report on Palvisa (PDF) purchased from Rekvizitai.vz — an official online directory of Lithuanian companies — says Palvisa was established in 2011 by a Vytautaus Mockus, using the phone number 86.7273687 , and the email address bo3dom@gmail.com. com (2017).

Access

Access Ransomware Sales Passwords

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

Security Affairs

JANUARY 2, 2022

It is estimated that the cryptocurrencies stolen between January 2011 and December 2021 amount to $12.1 The countries where cryptocurrencies were most popular suffered major losses, including Japan, South Korea, the United States, the United Kingdom, and China. ” reads the report published by Invezz. . Threat actors stole $3.18

Security

Security Marketing IT Information Security

VMware fixes critical SSRF flaw in Workspace ONE UEM Console

Security Affairs

DECEMBER 17, 2021

” reads the analysis published by VMware. and above 2011 Workspace ONE UEM patch 20.11.0.40 and above 2011 Workspace ONE UEM patch 20.11.0.40 . “VMware Workspace ONE UEM console contains a Server Side Request Forgery (SSRF) vulnerability. and above 2105 Workspace ONE UEM patch 21.5.0.37 and above. .”

Access

Access Authentication Cloud Security

Silent Night Zeus botnet available for sale in underground forums

Security Affairs

MAY 23, 2020

The source code of the Zeus Trojan is available in the cybercrime underground since 2011 allowing crooks to develop their own release since. “Based on the analysis of the bot’s configurations, we may confidently say that there is more than one customer of the “Silent Night”.” ” concludes the report.

Sales

Sales Data collection Passwords IT

Iran’s Mahan Air claims it has failed a cyber attack, hackers say the opposite

Security Affairs

NOVEMBER 22, 2021

The US had sanctioned Mahan Air in 2011 for providing financial, material, or technological support to Iran’s Islamic Revolutionary Guard Corps. Microsoft Threat Intelligence Center (MSTIC) recently shared the results of their analysis on the evolution of Iran-linked threat actors at the CyberWarCon 2021.

IT

IT Security Cybersecurity Government

New book provides an accessible and practical introduction to data science

CILIP

SEPTEMBER 2, 2020

This book aims to provide an accessible introduction to data science using detailed examples and analysis on real data sets, with a focus on the application of open source software. Practical Data Science for Information Professionals also features an analysis of the future of data science and the role of the information professional.

Data science

Data science Access Libraries Analytics

France ANSSI agency warns of APT31 campaign against French organizations

Security Affairs

JULY 21, 2021

“ Finding one of the IOCs in logs does not mean the entire system has been compromised and further analysis will be required. As such, indicators of compromises (IOCs) are shared to help assess possible compromises (searches should start at the beginning of 2021) and used in detection services.” ” concludes the alert.

Government

Government Security IT Cybersecurity

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

Since 2011 it was employed in attacks aimed at Human Rights Defenders (HRDs) in many countries, including Bahrain, Ethiopia, UAE, and more. ” continues the analysis. FinSpy can spy on most popular desktop and mobile operating systems, including Android, iOS, Windows, macOS, and Linux.

Encryption

Encryption Communications IT Government

Fintech Giant Fiserv Used Unclaimed Domain

Krebs on Security

MARCH 17, 2021

Many other emails poured in, including numerous “bounced” messages delivered in reply to missives from Cashedge.com , a money transfer service that Fiserv acquired in 2011. Upon being made aware of the situation we immediately conducted an analysis to locate and replace instances of the placeholder domain name.

e-Discovery

e-Discovery Phishing Communications IT

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

According to a report published by Symantec in 2017, Longhorn is a North American hacking group that has been active since at least 2011. ” reads the analysis. ESET researchers pointed out that the authors have put significant effort into encryption in order to prevent the analysis of the DePriMon malware.

Communications

Communications Encryption Education Authentication

Can Application Security Testing Be Fixed?

ForAllSecure

SEPTEMBER 15, 2021

Shoenfield calls on a 2011 study that showed 85% of static analysis findings were false positives. Shoenfield shares a team he worked with had 72,000 static analysis findings, of which zero were fixed because they were simply overwhelmed by the number. They want one bug for the problem, not forty. Price is also a problem.

Security

Security Marketing IT

NUVOLA: the new Cloud Security tool

Security Affairs

SEPTEMBER 28, 2022

nuvola (with the lowercase n ) is a tool to dump and perform automatic and manual security analysis on AWS environments configurations and services using predefined, extensible and custom rules created using graphs and a simple Yaml syntax. Entering nuvola. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cloud

Cloud Security Metadata Data breaches

YTStealer info-stealing malware targets YouTube content creators

Security Affairs

JUNE 29, 2022

Aparat is an Iranian video-sharing site that was founded in 2011. The analysis of the files that either dropped or downloaded the YTStealer samples revealed that most of them don’t just drop the YTStealer. All the results were under the domain aparat[.]com. The image matched was used as a profile picture for a user on the site.

Authentication

Authentication Libraries Encryption Marketing

Estonia's Volunteer Cyber Militia

Schneier on Security

FEBRUARY 19, 2019

Formally established in 2011, Padar's unit mostly runs on about €150,000 ($172,000) in annual state funding, plus salaries for him and four colleagues. (If Officially, the team is part of Estonia's 26,000-strong national guard, the Defense League. [.]. If that sounds paltry, remember that the country's median annual income is about €12,000.)

Military

Military IT Security

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

The Tropic Trooper APT that has been active at least since 2011, it was first spotted in 2015 by security experts at Trend Micro when it targeted government ministries and heavy industries in Taiwan and the military in the Philippines. ” reads the analysis published by Trend Micro.

Military

Military Government IT Security

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

A deeper analysis of some of these samples revealed that they were compiled in 2014 and used in the wild between 2014 and 2015. reads the analysis published by Symantec. Symantec believes Longhorn is a North American hacking group that has been active since at least 2011.

Cybersecurity

Cybersecurity Government Education Security

SEC Issues New Interpretive Guidance on Cybersecurity Disclosures

HL Chronicle of Data Protection

MARCH 19, 2018

The Commission’s release follows shorter cybersecurity “disclosure guidance” issued in 2011 by the staff of the SEC’s Division of Corporation Finance. In this post, we provide an overview of the guidance and a link to our more detailed analysis. To read our full analysis, click here. The Commission’s release is available here.

Cybersecurity

Cybersecurity Risk Data breaches Compliance

Senators Kerry and McCain Introduce the Commercial Privacy Bill of Rights Act of 2011

Hunton Privacy

APRIL 12, 2011

On April 12, 2011, U.S. Senators John Kerry (D-MA) and John McCain (R-AZ) introduced the Commercial Privacy Bill of Rights Act of 2011 (the “Act”) to “establish a regulatory framework for the comprehensive protection of personal data for individuals under the aegis of the Federal Trade Commission.”

Privacy

Privacy Marketing Communications Risk

Antlion APT group used a custom backdoor that allowed them to fly under the radar for months

Security Affairs

FEBRUARY 3, 2022

” reads the analysis published by the Broadcom-owned company Symantec. Symantec speculates Antlion is has been active since at least 2011, its TTP overlaps the ones associated with China-linked nation-state actors. ” concludes the report that includes IoCs and Yara Rules.

Manufacturing

Manufacturing Data collection Encryption Passwords

Iran-linked APT35 accidentally exposed 40 GB associated with their operations

Security Affairs

JULY 17, 2020

” reads the analysis published by IBM. Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. . The experts found several files on the server, roughly five hours of training videos recorded by the APT group. continues IBM.

Military

Military Authentication Cloud IT

The Story of Mayhem: The Next-Generation in Application Security

ForAllSecure

MAY 11, 2021

In 2011, ForAllSecure co-founders, Thanassis Avgerinos and Alex Rebert, then students at Carnegie Mellon University led by Professor David Brumley, were pondering what to name their new technology. They took inspiration from Chaos Engineering, first popularized by Netflix in 2011. Want to Learn More About Fuzz Testing?

Security

Security Cybersecurity IT

The Story of Mayhem: The Next-Generation in Application Security

ForAllSecure

MAY 11, 2021

In 2011, ForAllSecure co-founders, Thanassis Avgerinos and Alex Rebert, then students at Carnegie Mellon University led by Professor David Brumley, were pondering what to name their new technology. They took inspiration from Chaos Engineering, first popularized by Netflix in 2011. Mayhem Goes to Battle.

Security

Security Cybersecurity IT

Hunting the ICEFOG APT group after years of silence

Security Affairs

JUNE 8, 2019

This week, Chi-en (Ashley) Shen presented at the CONFidence cybersecurity conference held in Poland her analysis on new samples of malware associated with the ICEFOG group. Below the conclusions of the excellent analysis conducted by Shen: ICEFOG is malware shared among Roaming Tiger, APT15, Temp Group A and suspected APT9.

Agriculture

Agriculture Government Military Communications

Facebook to Take Lead in Display on Web? Hold On.

John Battelle's Searchblog

MAY 10, 2011

It continues: Facebook’s large user base will make it the world’s largest online display advertising company by revenue this year, overtaking the comparable businesses of Google and Yahoo, according to analysis published on Tuesday.

IT

OCR Settlement Emphasizes Importance of Implementing Safeguards to Protect PHI

Hunton Privacy

JANUARY 25, 2017

In 2011, MAPFRE, which underwrites group health insurance plans, submitted a breach report to OCR indicating that it had suffered a breach when a USB data storage device was stolen from the company’s IT Department. submit annual compliance reports for a period of three years. submit annual compliance reports for a period of three years.

Security awareness

Security awareness Insurance Risk Compliance

The rise of cyber crime

IT Governance

DECEMBER 14, 2017

The president of the National Health Information Sharing and Analysis Center said, “Ransomware will continue to be a threat and evolve, not to just encrypting data, but also to blackmailing data owners based on the content of the data”. Number of records breached. 174 million. 44 million. 822 million. 700 million. 736 million.

Ransomware

Ransomware Encryption Security IT

Ramnit is back and contributes in creating a massive proxy botnet, tracked as ‘Black’ botnet

Security Affairs

AUGUST 8, 2018

Ramnit is one of the most popular banking malware families in existence today, it was first spotted in 2010 as a worm, in 2011, its authors improved it starting from the leaked Zeus source code turning the malware into a banking Trojan. ” reads the analysis published by Checkpoint security. Bot-B connects to Bot-A.

Encryption

Encryption Mining Security Ransomware

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

Balaban This ransomware was doing the rounds over spam generated by the Gameover ZeuS botnet, which had been originally launched in 2011 as a toolkit for stealing victim’s banking credentials and was repurposed for malware propagation. About the essayist.

Ransomware

Ransomware Encryption Privacy Security awareness

Comprehensive Personal Data Protection Law Enacted in Korea

Hunton Privacy

MAY 17, 2011

As we previously reported , Korea’s long-awaited Personal Information Protection Act (“PIPA”) was enacted on March 29, 2011. Kwang Hyun Ryoo from Bae, Kim & Lee LLC in Korea has provided a detailed analysis of the law.

Personal data

Personal data Government Information Security Security

Iran-linked Phosphorus group hit a 2020 presidential campaign

Security Affairs

OCTOBER 6, 2019

Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011. . ” reads the analysis published by Microsoft. ” reads the analysis published by Microsoft. “The targeted accounts are associated with a U.S.

Passwords

Passwords Government Access Authentication

Taking down Gooligan: part 2 — inner workings

Elie

MARCH 17, 2018

This post provides an in-depth analysis of the inner workings of Gooligan, the infamous Android OAuth stealing botnet. since at least 2011. back in 2011. Based on this infrastructure analysis and other data, we strongly believe that it is a group operating from mainland China. first post. Android malware. on the subject.

Encryption

Encryption Libraries Ransomware Marketing

Taking down Gooligan: part 2 — inner workings

Elie

MARCH 17, 2018

This post provides an in-depth analysis of the inner workings of Gooligan, the infamous Android OAuth stealing botnet. since at least 2011. back in 2011. Based on this infrastructure analysis and other data, we strongly believe that it is a group operating from mainland China. first post. Android malware. on the subject.

Encryption

Encryption Libraries Ransomware Marketing

FRANCE: New cooperation agreement between the CNIL and DGCCRF

DLA Piper Privacy Matters

FEBRUARY 1, 2019

Share their analysis in the evolution of the legal and regulatory consumer and data protection framework. An annual report will be produced to monitor the outcomes of this cooperation between the CNIL and DGCCRF. A new era of consumer and data protection litigation is therefore up and running!

GDPR

GDPR Personal data B2C Retail

Crooks use carding bots to check stolen card data ahead of the holiday season

Security Affairs

NOVEMBER 17, 2019

” reads the analysis published by PerimeterX. Researchers were able to detect the first Canary bot attack after noticing a Safari browser version from 2011 changing IP addresses on a daily basis and that originate from cloud and colocation services. . ” continues the experts.

Retail

Retail Cloud Access IT

XDSpy APT remained undetected since at least 2011

Sandboxing: Advanced Malware Analysis in 2021

Webinars

Trending Sources

Data, analysis and the library: Joining the dots at the Department for Work and Pensions

Webinars

The analysis of the code reuse revealed many links between North Korea malware

ENISA published “Proactive detection – Measures and information sources” report

Identifying the Person Behind Bitcoin Fog

French Data Protection Authority Unveils its Goals for 2011 Inspections

US Treasury FinCEN linked $5.2 billion in BTC transactions to ransomware payments

Why Malware Crypting Services Deserve More Scrutiny

PyMICROPSIA Windows malware includes checks for Linux and macOS

Who Is the Network Access Broker ‘Babam’?

Crypto security breaches cause $4.25 billion losses worth of cryptos in 2021

VMware fixes critical SSRF flaw in Workspace ONE UEM Console

Silent Night Zeus botnet available for sale in underground forums

Iran’s Mahan Air claims it has failed a cyber attack, hackers say the opposite

New book provides an accessible and practical introduction to data science

France ANSSI agency warns of APT31 campaign against French organizations

Unknown FinSpy Mac and Linux versions found in Egypt

Fintech Giant Fiserv Used Unclaimed Domain

DePriMon downloader uses a never seen installation technique

Can Application Security Testing Be Fixed?

NUVOLA: the new Cloud Security tool

YTStealer info-stealing malware targets YouTube content creators

Estonia's Volunteer Cyber Militia

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Purple Lambert, a new malware of CIA-linked Lambert APT group

SEC Issues New Interpretive Guidance on Cybersecurity Disclosures

Senators Kerry and McCain Introduce the Commercial Privacy Bill of Rights Act of 2011

Antlion APT group used a custom backdoor that allowed them to fly under the radar for months

Iran-linked APT35 accidentally exposed 40 GB associated with their operations

The Story of Mayhem: The Next-Generation in Application Security

The Story of Mayhem: The Next-Generation in Application Security

Hunting the ICEFOG APT group after years of silence

Facebook to Take Lead in Display on Web? Hold On.

OCR Settlement Emphasizes Importance of Implementing Safeguards to Protect PHI

The rise of cyber crime

Ramnit is back and contributes in creating a massive proxy botnet, tracked as ‘Black’ botnet

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Comprehensive Personal Data Protection Law Enacted in Korea

Iran-linked Phosphorus group hit a 2020 presidential campaign

Taking down Gooligan: part 2 — inner workings

Taking down Gooligan: part 2 — inner workings

FRANCE: New cooperation agreement between the CNIL and DGCCRF

Crooks use carding bots to check stolen card data ahead of the holiday season

Stay Connected