2014 - Information Management Today

Mazda Connect flaws allow to hack some Mazda vehicles

Security Affairs

NOVEMBER 9, 2024

The vulnerabilities impact the Mazda Connect Connectivity Master Unit (CMU) system installed in multiple car models, including the Mazda 3 model year 2014-2021. Like in so many cases, these vulnerabilities are caused by insufficient sanitization when handling attacker-supplied input.” ” reads the advisory.

Ransomware

Ransomware Manufacturing Access Risk

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Security Affairs

APRIL 16, 2025

In June 2014 security experts at G Data discovered that a popular Chinese Android Smartphone, Star N9500 was commercialized with a pre-installed spyware, meanwhile in April, the Chinese TV station, CCTV, reported some cases of smartphones compromised by pre-installed malware before selling them on to unwitting customers.

Manufacturing

Manufacturing Passwords Security IT

The Mask APT is back after 10 years of silence

Security Affairs

DECEMBER 18, 2024

Kaspersky first identified the APT group in 2014, but experts believe the cyber espionage campaign had already been active for over five years. At the time, Kaspersky described it as the most sophisticated APT operation they had seen to date.

Government

Government IT Access Information Security

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

FBI deleted China-linked PlugX malware from over 4,200 US computers

Security Affairs

JANUARY 14, 2025

According to court documents, the Chinese government paid Mustang Panda to develop PlugX malware, used since 2014 to target U.S., The malware was operated by a China-linked threat actor, known as Mustang Panda (aka Twill Typhoon, to steal sensitive information from victim computers. European, and Asian entities.

Government

Government Cybersecurity Access IT

UPMC to Settle Breach Lawsuit for $2.7 Million

Data Breach Today

JULY 21, 2021

2014 Hacking Incident Affected 66,000 Employees A proposed $2.7 million settlement has been reached in a lawsuit filed against the University of Pittsburgh Medical Center in the wake of a 2014 data breach that exposed tens of thousands of employees' personal information and resulted in tax fraud.

Data breaches

Israel announced to have foiled an attempted cyber-attack on defence firms

Security Affairs

AUGUST 13, 2020

’ The Lazarus APT is linked to North Korea, the activity of the Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Agriculture

Agriculture Manufacturing Phishing Government

UK ICO fines hotel chain giant Marriott over data breach

Security Affairs

NOVEMBER 2, 2020

” In July 2019, the UK’s data privacy regulator announced that the giant hotel chain Marriott International faces a £99 million ($123 million) fines under GDPR over 2014 data breach. According to the company, hackers accessed to the Starwood’s guest reservation system since 2014 and copied and encrypted the information.

Data breaches

Data breaches Personal data GDPR Encryption

Victims of ThunderX ransomware can recover their files for free

Security Affairs

SEPTEMBER 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. When the decryption process is completed, the decryptor will show a summary of the files successfully and those once for which the recovery failed. Pierluigi Paganini.

Ransomware

Ransomware Encryption Cybersecurity Security

Hackers stole a six-figure amount from Swiss universities

Security Affairs

OCTOBER 5, 2020

” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .” reads the site SwissInfo. “Umbrella organisation swissuniversities has sent a warning email to keep universities on their guard.” Pierluigi Paganini.

Phishing

Phishing Access IT Security

Staples discloses data breach exposing customer order data

Security Affairs

SEPTEMBER 14, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Customers that received the data breach notification could contact the company by phone for any questions or concerns. Pierluigi Paganini. SecurityAffairs – hacking, Staples).

Data breaches

Data breaches Retail Access Security

A powerful DDoS attack hit Hungarian banks and telecoms services

Security Affairs

SEPTEMBER 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. “We repelled the attempt together with Telekom that was also affected and the short disruption in some of our services ended by Thursday afternoon.”. Pierluigi Paganini.

IT

IT Security Information Security

REvil ransomware operators are recruiting new affiliates

Security Affairs

SEPTEMBER 28, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. The deposit demonstrates that the ransomware operators have a profitable business and trust the hacker forum and don’t fear an exit scam of its administrators. Pierluigi Paganini.

Ransomware

Ransomware Security IT

Polish Space Agency POLSA disconnected its network following a cyberattack

Security Affairs

MARCH 5, 2025

It was established on 26 September 2014, and its headquarters are located in Gdask, Poland. The Polish Space Agency (POLSA; Polish: Polska Agencja Kosmiczna, PAK) is the space agency of Poland, administered by the Ministry of Economic Development and Technology. It is a member of the European Space Agency.

IT

IT Ransomware Cybersecurity Security

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Cyber researchers are still investigating the data leak and will provide updates on the story. Pierluigi Paganini. SecurityAffairs – hacking, NATO).

Military

Military Manufacturing Phishing Government

OpenSSL to fix the second critical flaw ever

Security Affairs

OCTOBER 26, 2022

This is the second critical vulnerability ever addressed by the OpenSSL Project after the critical Heartbleed vulnerability (CVE-2014-0160) in 2014. The highest severity issue fixed in this release is CRITICAL:” The critical vulnerability only impacts versions 3.0 OpenSSL Project also announced the upcoming bug-fix release 1.1.1s

Encryption

Encryption Security IT Information Security

Why Phishers Love New TLDs Like.shop,top and.xyz

Krebs on Security

DECEMBER 3, 2024

Image: Interisle Cybercrime Supply Chain 2014. Currently, there are around 2,500 registrars authorized to sell domains by the Internet Corporation for Assigned Names and Numbers (ICANN), the California nonprofit that oversees the domain industry. The top 5 new gTLDs, ranked by cybercrime domains reported.

Phishing

Phishing Marketing IT

REvil ransomware gang hacked gaming firm Gaming Partners International

Security Affairs

OCTOBER 31, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Gaming Partners International (GPI)).

Ransomware

Ransomware Encryption Security Information Security

France national cyber-security agency warns of a surge in Emotet attacks

Security Affairs

SEPTEMBER 7, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, botnet).

Security

Security Ransomware Access Information Security

Someone emptied a $1 billion BitCoin wallet ahead of Presidential Election

Security Affairs

NOVEMBER 4, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. In June 2020, a similar event caught the attention of the experts, at the time someone emptied another walled containing a similar amount of cryptocurrency. Pierluigi Paganini.

Passwords

Passwords Security IT Information Security

Ransomware attack disabled Georgia County Election database

Security Affairs

OCTOBER 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. The county website published an update to announce that the attack did not impact the voting process for citizens, a situation that is differed from the scenario reported by the Times.

Ransomware

Ransomware Authentication Government IT

Hackers hit Luxottica, production stopped at two Italian plants

Security Affairs

SEPTEMBER 22, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Security experts believe that threat actor exploited the above flaw to infect the systems at the company with ransomware. Pierluigi Paganini. SecurityAffairs – hacking, malware).

Retail

Retail Manufacturing Ransomware Security

Hackers stole $5.4 million from cryptocurrency exchange ETERBASE

Security Affairs

SEPTEMBER 10, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ETERBASE revealed it has tracked the fraudulent transactions and is following the stolen funds and informed exchanges where they were moved to avoid that attackers could cash them out.

Data breaches

Data breaches Security IT Information Security

French court indicted Nexa Technologies for complicity in acts of torture

Security Affairs

NOVEMBER 28, 2021

The complaint refers to the revelation made by the magazine Télérama that reported the sale in March 2014 of “a listening system at 10 million euros to fight – officially – against the Muslim Brotherhood” , the Islamist opposition in Egypt. The contract was signed in March 2014.

Sales

Sales Government Encryption Communications

How to check if an email or a domain was used in Emotet attacks?

Security Affairs

OCTOBER 1, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, malware).

Passwords

Passwords Ransomware Cybersecurity IT

CISA alert warns of Emotet attacks on US govt entities

Security Affairs

OCTOBER 6, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, CISA).

Government

Government Libraries Cybersecurity Phishing

A data breach broker is selling account databases of 17 companies

Security Affairs

NOVEMBER 1, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Users of the above companies have to immediately change their passwords, and if they use the same passwords at other sites, they should also change the password at those sites.

Data breaches

Data breaches Passwords Sales Security

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

Security Affairs

AUGUST 21, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Maze Ransomware Operators).

Ransomware

Ransomware Archiving Manufacturing Data breaches

University of Utah pays a $457,000 ransom to ransomware gang

Security Affairs

AUGUST 21, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . “ Law enforcement recommends never pay ransom because ransomware operators could not destroy the stolen data and attempting to monetize them in other illegal activities.

Ransomware

Ransomware Insurance Encryption Information Security

The British government aims at improving its offensive cyber capability

Security Affairs

OCTOBER 13, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. “Our adversaries are applying all means to gain advantage below the threshold of war and are accruing advantage insidiously and inevitably.”. Pierluigi Paganini.

Government

Government Military IT Security

VMware finally fixed the critical CVE-2020-3992 flaw in ESXi

Security Affairs

NOVEMBER 5, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Now the company has released security patches to address the flaw in ESXi 6.5, The vulnerability has yet to be fixed in VMware Cloud Foundation. Pierluigi Paganini.

Cloud

Cloud Access Security IT

Data from Airlink International UAE leaked on multiple dark web forums

Security Affairs

OCTOBER 8, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Airlink International UAE).

Insurance

Insurance Cybersecurity Communications Risk

Tyler Technologies finally paid the ransom to receive the decryption key

Security Affairs

OCTOBER 11, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. For this reason, the company decided to pay the ransom. Pierluigi Paganini. SecurityAffairs – hacking, Tyler).

Ransomware

Ransomware Encryption Access Government

Egregor ransomware gang leaked data alleged stolen from Ubisoft, Crytek

Security Affairs

OCTOBER 15, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Hey @Ubisoft , what would happen if someone from your company registers to @abuse_ch 's I Got Phished ( [link] ) service? Can you guess it? Pierluigi Paganini.

Ransomware

Ransomware Phishing Archiving Encryption

Who’s Behind Monday’s 14-State 911 Outage?

Krebs on Security

SEPTEMBER 29, 2020

On April 6, 2014, some 11 million people across the United States were disconnected from 911 services for eight hours thanks to an “entirely preventable” software error tied to Intrado’s systems. million for the multi-state 2014 outage. 2018 outage that lasted 65 minutes.

Communications

Communications Cloud IT Access

Toymaker giant Mattel disclosed a ransomware attack

Security Affairs

NOVEMBER 4, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, malware). The post Toymaker giant Mattel disclosed a ransomware attack appeared first on Security Affairs.

Ransomware

Ransomware Retail Encryption IT

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

“They are officers of the ‘Crimean’ FSB and traitors who defected to the enemy during the occupation of the peninsula in 2014. “The activity and development of the hacker group “Armageddon” during 2014-2021 has led to the existence of a new real cyber threat. ” reads the announcement published by the SSU.

Military

Military Metadata Government Passwords

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. Experts from Recorded Future’s Insikt Group linked a series of attacks, part of RedFoxtrot China-linked campaigns, to the PLA China-linked Unit 69010.

Military

Military Mining Government Communications

New Ttint IoT botnet exploits two zero-days in Tenda routers

Security Affairs

OCTOBER 5, 2020

” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . “We recommend that Tenda router users check their firmware and make necessary update.” ” concludes the report. Pierluigi Paganini.

IoT

IoT Encryption Communications Access

Is the Abaddon RAT the first malware using Discord as C&C?

Security Affairs

OCTOBER 25, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Experts pointed out that the malware also implements the commands to encrypt files of the infected system and decrypt them. The ransomware feature appears to be under development.

Ransomware

Ransomware Encryption IT Access

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Security Affairs

SEPTEMBER 24, 2020

The Emotet banking trojan has been active at least since 2014, the botnet is operated by a threat actor tracked as TA542. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” states the Italian CSIRT’s alert.

Passwords

Passwords Archiving Ransomware Security

Microsoft took down 18 Azure AD apps used by Chinese Gadolinium APT

Security Affairs

SEPTEMBER 27, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . “ Microsoft also took down a GitHub account that was used by the Gadolinium group as part of a 2018 campaign. Pierluigi Paganini. SecurityAffairs – hacking, Gadolinium).

Cloud

Cloud Phishing IT Security

NIST Unveils Second Iteration of Cybersecurity Framework

Data Breach Today

FEBRUARY 26, 2024

National Institute of Standards and Technology in 2014 has received its first major update. New CSF Adds 'Governance' to Core Functions Cybersecurity guidance for the private sector published by the U.S. The revised Cybersecurity Framework focuses on governance and says cybersecurity threats are a major source of enterprise risk.

Cybersecurity

Cybersecurity Government Risk IT

CISA Named Top-Level Root CVE Numbering Authority (CNA)

Security Affairs

SEPTEMBER 18, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Recently the OT and IoT security firm Nozomi Networks announced that it has become a Common Vulnerabilities and Exposures (CVE) Numbering Authority (CNA). Pierluigi Paganini.

IoT

IoT Cybersecurity Security Risk

University Hospital New Jersey paid a $670K ransom

Security Affairs

OCTOBER 3, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, University Hospital New Jersey).

Ransomware

Ransomware Archiving Phishing Encryption

Mazda Connect flaws allow to hack some Mazda vehicles

Chinese Android phones shipped with malware-laced WhatsApp, Telegram apps

Webinars

Trending Sources

The Mask APT is back after 10 years of silence

Webinars

FBI deleted China-linked PlugX malware from over 4,200 US computers

UPMC to Settle Breach Lawsuit for $2.7 Million

Israel announced to have foiled an attempted cyber-attack on defence firms

UK ICO fines hotel chain giant Marriott over data breach

Victims of ThunderX ransomware can recover their files for free

Hackers stole a six-figure amount from Swiss universities

Staples discloses data breach exposing customer order data

A powerful DDoS attack hit Hungarian banks and telecoms services

REvil ransomware operators are recruiting new affiliates

Polish Space Agency POLSA disconnected its network following a cyberattack

Researchers found alleged sensitive documents of NATO and Turkey

OpenSSL to fix the second critical flaw ever

Why Phishers Love New TLDs Like.shop,top and.xyz

REvil ransomware gang hacked gaming firm Gaming Partners International

France national cyber-security agency warns of a surge in Emotet attacks

Someone emptied a $1 billion BitCoin wallet ahead of Presidential Election

Ransomware attack disabled Georgia County Election database

Hackers hit Luxottica, production stopped at two Italian plants

Hackers stole $5.4 million from cryptocurrency exchange ETERBASE

French court indicted Nexa Technologies for complicity in acts of torture

How to check if an email or a domain was used in Emotet attacks?

CISA alert warns of Emotet attacks on US govt entities

A data breach broker is selling account databases of 17 companies

Steel sheet giant Hoa Sen Group hacked by Maze ransomware operators

University of Utah pays a $457,000 ransom to ransomware gang

The British government aims at improving its offensive cyber capability

VMware finally fixed the critical CVE-2020-3992 flaw in ESXi

Data from Airlink International UAE leaked on multiple dark web forums

Tyler Technologies finally paid the ransom to receive the decryption key

Egregor ransomware gang leaked data alleged stolen from Ubisoft, Crytek

Who’s Behind Monday’s 14-State 911 Outage?

Toymaker giant Mattel disclosed a ransomware attack

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

New Ttint IoT botnet exploits two zero-days in Tenda routers

Is the Abaddon RAT the first malware using Discord as C&C?

Microsoft, Italy and the Netherlands agencies warn of EMOTET campaigns

Microsoft took down 18 Azure AD apps used by Chinese Gadolinium APT

NIST Unveils Second Iteration of Cybersecurity Framework

CISA Named Top-Level Root CVE Numbering Authority (CNA)

University Hospital New Jersey paid a $670K ransom

Stay Connected