Security Affairs

DECEMBER 31, 2018

The first phase of the FOSSA project started in 2014, the “pilot project” phase ran over two years from 2015-2016. The project was launched between 2015-2016 at the initiative of Julia Reda , Member of European Parliament (MEP) from the Pirate Party , and Max Andersson , MEP from the Green Party. . 15/04/2020. 15/04/2020.

Libraries 96

Libraries Privacy Security IT 96

National Archives Records Express

NOVEMBER 6, 2017

Metadata are records that need to be managed and retrievable These NARA Bulletins provide further records management guidance for agencies on the topic of metadata and cloud computing: NARA Bulletin 2015-04 : Metadata Guidance for the Transfer of Permanent Electronic Records.

Metadata 71

Metadata Cloud Computer and Electronics Records Management 71

Security Affairs

MAY 10, 2020

May 04 – Nation-state actors are targeting UK universities to steal info on COVID-19 research. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. May 03 – TrickBot operators exploit Coronavirus as lures. Coronavirus-themed attacks April 26 – May 02, 2020. Pierluigi Paganini.

Ransomware 74

Ransomware Government Cybersecurity Security 74

Security Affairs

MAY 10, 2019

The flaw tracked as CVE-2019-8285 affects Kaspersky Lab Antivirus Engine version before 04. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Security experts at the Imaginary team discovered a Heap Buffer Overflow vulnerability in Kaspersky Antivirus Engine. Pierluigi Paganini.

Security 89

Security IT 89

National Archives Records Express

DECEMBER 4, 2017

Measures must be put in place to ensure the records have the minimum metadata required in NARA Bulletin 2015-04: Metadata Guidance for the Transfer of Permanent Electronic Records. Metadata for records maintained in a shared drive must be managed and retrievable.

Metadata 61

Metadata Records Management 61

Security Affairs

APRIL 12, 2020

Coronavirus-themed attacks March 29 – April 04, 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. If you are interested in COVID19-themed attacks from February 1 give a look at the following posts: Coronavirus-themed attacks February 1 – March 15, 2020. Pierluigi Paganini.

Phishing 93

Phishing Ransomware Data breaches Government 93

Security Affairs

APRIL 12, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived! The best news of the week with Security Affairs. hacked, data of 600k users available for sale Updated: Italian email provider Email.it

Security 86

Security Sales Phishing IoT 86

Security Affairs

JULY 6, 2020

The activity of the Lazarus Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks and experts that investigated on the crew consider it highly sophisticated. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the researchers. Pierluigi Paganini.

Retail 96

Retail Phishing Marketing IT 96

Security Affairs

SEPTEMBER 5, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Access 77

Access Security IT Information Security 77

Security Affairs

JULY 17, 2020

A cryptovirus-type computer attack was detected by Orange teams during the night of Saturday 04 July to Sunday 05 July 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The gang gained access to twenty Orange Pro/SME customers’ data. “A ” reads a statement issued by Orange.

Business Services 119

Business Services Ransomware Manufacturing Archiving 119

Security Affairs

JANUARY 27, 2022

The activity of the Lazarus APT group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks. Both documents were compiled on 2020-04-24, but experts believe that they have been used in a campaign around late December 2021 and early 2022.

Metadata 81

Metadata Phishing Communications Ransomware 81

ForAllSecure

MARCH 11, 2021

Watch EP 04 See TV Guide. In July 2015, two renowned security researchers Charlie Miller and Chris Valasek demonstrated the remote hacking of a then newly released Jeep Chrysler. The Application Security Report from Cybersecurity Ventures predicts that zero-day exploits will rise from one-per-week in 2015 to one-per-day by 2021.

Risk 52

Risk Retail Data breaches Cybersecurity 52

Security Affairs

MARCH 4, 2020

[link] says revocations may start from 2020-03-04 00:00:00 UTC. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. pic.twitter.com/gdcBdsd1y9 — Peanut Butter Guillotine (@xurizaemon) March 3, 2020. Users can check if their domain is affected by this bug querying the tool at [link].

Encryption 110

Encryption IT Security Information Security 110

National Archives Records Express

MAY 31, 2018

Required metadata, as specified in NARA Bulletin 2015-04 , must have the same retention and disposition as the records they describe whether maintained in a separate system, records management application, or case management system.

Metadata 45

Metadata Records Management Access 45

Security Affairs

NOVEMBER 3, 2020

Reported by Abdelhamid Naceri (halov) on 2020-09-04 [$TBD][ 1134107 ] High CVE-2020-16008: Stack buffer overflow in WebRTC. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Reported by Jaehun Jeong(@n3sk) of Theori on 2020-10-16 [$5000][ 1133527 ] High CVE-2020-16006: Inappropriate implementation in V8.

Libraries 108

Libraries Security IT Access 108

Security Affairs

SEPTEMBER 15, 2019

The Iran-aligned Houthi rebel movement fights the Yemeni government and a coalition of regional countries led by Saudi Arabia that fights the rebels since 2015, when President Abdrabbuh Mansour Hadi was was kicked out of Sanaa by the Houthis. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Military 93

Military Marketing Government Security 93

Security Affairs

SEPTEMBER 6, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. UTC Coordinated Release Date / Disclosure to oss -security, exim -users, public repositories. The flaw could be exploited by unauthenticated remote attackers to execute arbitrary commands on mail servers for some non-default server configurations.

Access 86

Access Security IT Information Security 86

Security Affairs

FEBRUARY 27, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. As confirmed in Figure 3 , the server was created and is maintained to target specificly Portuguese users in-the-wild; as suggested by its internal name: “portaldasfinancas “. Nome do Servidor: Linux portaldasfinancas 4.4.0-116-generic Pierluigi Paganini.

Government 102

Government IT Security Information Security 102

Security Affairs

JULY 30, 2018

The incident occurred on July 26, at 09:04 UTC, KickICO CEO Anti Danilevski explained that its staff learned of the security breach from victims who complained to it. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. million at the time). ” reported the website cryptovest.com. Pierluigi Paganini.

Security 53

Security Blockchain Data breaches Access 53

Security Affairs

SEPTEMBER 16, 2019

“ 2019-04-30 07:07:59 – The first signed malicious file appears in the wild. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The verification is done using a public antivirus scanning service, then the threat actors use the file scan record as “a clean bill of health” for potential buyers.

Marketing 81

Marketing GDPR Security IT 81

Security Affairs

MAY 13, 2019

Below the timeline of the attack: 04/02/19: Initial finding by Elliot Alderson 11/03/19: Responsible disclosure to the Samsung Security Team 18/03/19: The Samsung Security Team considered this issue as no/little security impact. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security 93

Security IT Information Security 93

Security Affairs

APRIL 23, 2019

This CARBANAK work was in active development when whoopsed to VT from RU on 2017-04-19. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The two archives were both uploaded two years ago from the same Russian IP address. I have to admit, this @virustotal find is going to be hard for me to top.

Archiving 75

Archiving Systems administration Cybersecurity IT 75

Security Affairs

DECEMBER 11, 2019

TURKEY-MIX-03” had roughly 190,000 records, while “TURKEY-MIX-04” had about 205,000 cards. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The cards were valued at 1$ each. Group-IB is a partner of INTERPOL, Europol, and has been recommended by the OSCE as a cybersecurity solutions provider.

Sales 62

Sales Marketing CMS Cybersecurity 62

Security Affairs

APRIL 6, 2020

According to the BGPmon.net , starting from 2020-04-01 19:27:28 its service detected a possible BGP hijack, the prefix involved is 31.13.64.0 /19, Over 8,800 internet traffic routes from more than 200 networks were impacted for about an hour. The large scale BGP hijack incident involved AS12389 (Rostelecom) affecting over 8,000 prefixes.

IT 89

IT Cloud Paper Marketing 89

Security Affairs

DECEMBER 9, 2018

Experts pointed out that the attackers did not use a malware to compromise the targets, the STOLEN PENCIL attackers employed RDP to access the compromised systems, researchers observed remote access occurring daily from 06:00 to 09:00 UTC (01:00-04:00 EST). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing 96

Phishing Passwords Access Archiving 96

Security Affairs

MARCH 28, 2020

0-day Since 2019-12-04 08:22:29 (UTC), we have been witnessing ongoing 0 day attack targeting a network CPE vendor (not the big players, but there are about ~100,000 devices online according to public available data). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Vigor300B < v1.5.1

Manufacturing 82

Manufacturing Access IT Security 82

Security Affairs

APRIL 23, 2019

This CARBANAK work was in active development when whoopsed to VT from RU on 2017-04-19. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The two archives were both uploaded two years ago from the same Russian IP address. I have to admit, this @virustotal find is going to be hard for me to top.

Archiving 52

Archiving Systems administration Cybersecurity IT 52

Security Affairs

FEBRUARY 27, 2019

Below the timeline for the vulnerability: 2018-12-04: SecureAuth sent an initial notification to the Cisco PSIRT including a draft advisory. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The first one targeting the 33.8.X

Authentication 83

Authentication Security IT 83

CGI

DECEMBER 21, 2015

Mon, 12/21/2015 - 04:39. What successful chief information security officers are doing right. The role of the chief information security officer (CISO) has become increasingly mainstream and strategic in recent years.

Information Security 64

Information Security Security Risk Compliance 64

CGI

MARCH 3, 2016

Thu, 03/03/2016 - 04:02. McKinsey in their 2015 report, Unlocking the Potential of the Internet of Things believe that 40% of the value they identified was dependent on interoperability between systems. Internet of Things (IoT) – Living Happily Ever After? p.butler@cgi.com.

IoT 40

IoT Data collection IT Security 40

CGI

DECEMBER 11, 2015

Fri, 12/11/2015 - 04:23. Why I believe the Blockchain will transform Government. ravi.kumarv@cgi.com. You may not yet have come across the Blockchain but it is making waves within the financial services community and is heralded as one of the most significant advances in technology for a generation.

Blockchain 40

Blockchain Government Financial Services Access 40

CGI

APRIL 10, 2015

Fri, 04/10/2015 - 05:36. The perfect digital storm. ravi.kumarv@cgi.com. I recently attended a Tech UK discussion forum, the subject was ‘Has technology created or destroyed jobs’, t he answer is, of course, both.

Personal data 40

Personal data Communications Cloud Risk 40

CGI

JULY 2, 2018

Mon, 07/02/2018 - 04:52. The key authorities that broaden the CIO’s influence are: The Federal IT Acquisition Reform Act (FITARA) (2015), which gives CIOs authority to lead agency IT investment decision making. The Modern Federal CIO: Making the most of new tools. premanath.puch….

Digital transformation 40

Digital transformation Analytics Cybersecurity Government 40

CGI

APRIL 7, 2015

Tue, 04/07/2015 - 04:00. The Internet of Things (IoT) – Start small but start. ravi.kumarv@cgi.com. In September 2014, Gartner’s Annual Big Data survey reported, “Looking only at those organizations that have invested in big data, 32% report having deployed, up from 25% in 2013(1).

IoT 40

IoT Big data Risk IT 40

CGI

APRIL 22, 2015

Thu, 04/23/2015 - 00:00. Submitted by Jacqui Murray on April 5, 2015. Submitted by Philippa Green on July 5, 2015. CGI in the community: developing the next generation. Young people are becoming increasingly polarised due to their social background, into those who achieve success at school or work and those who don’t.

Education 40

Education IT Access Security 40

CGI

JANUARY 22, 2016

Fri, 01/22/2016 - 04:18. I previously blogged about the new General Data Protection Regulation (GDPR) agreed as European legislation in December 2015. New European Cyber Laws (NISD) – Do you understand the potential impact on your business?

Insurance 40

Insurance GDPR Personal data Marketing 40

CGI

JANUARY 6, 2016

Wed, 01/06/2016 - 04:00. Submitted by Sandeep Raut on December 5, 2015. Digital transformation: are you flying, or falling with style? A pilot told me what it’s like to land a small plane. First, you hear your co-pilot counting down your approach: “8 miles, 10,000 feet.”. “6 6 miles, 6,000 feet.”. “4 4 miles, 2,000 feet.”.

Digital transformation 40

Digital transformation Big data Analytics Paper 40