2015, Government, Manufacturing and Security - Information Management Today

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. appeared first on Security Affairs. OwlProxy is a unique and custom tool used by the group.

Government

Government Manufacturing Education Access

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing

Manufacturing e-Delivery IT Security

D-Link confirms data breach, but downplayed the impact

Security Affairs

OCTOBER 18, 2023

Taiwanese manufacturer D-Link confirmed a data breach after a threat actor offered for sale on BreachForums stolen data. The company became aware of the a claim of data breach on October 2, 2023 and immediately launched an investigation into the alleged incident with the help of the security firm Trend Micro.

Data breaches

Data breaches Sales Phishing Manufacturing

The German BSI agency recommends replacing Kaspersky antivirus software

Security Affairs

MARCH 15, 2022

German Federal Office for Information Security agency, also known as BSI, recommends consumers not to use Kaspersky anti-virus software. The German Federal Office for Information Security agency, aka BSI, recommends consumers uninstall Kaspersky anti-virus software. ” reads the BSI announcement.

Manufacturing

Manufacturing Information Security Military Authentication

Security Affairs newsletter Round 282

Security Affairs

SEPTEMBER 20, 2020

Every week the best security articles from Security Affairs free for you in your email box. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly SecurityAffairs newsletter arrived!

Security

Security Ransomware Data breaches Manufacturing

Czech cyber-security agency warns over Huawei, ZTE security threat

Security Affairs

DECEMBER 18, 2018

A Czech cyber-security agency is warning against using Huawei and ZTE technologies because they pose a threat to state security. The US first, and many other countries after, have decided to ban network equipment manufactured by the Chinese telecom giant Huawei. ” reported the AFP press. Pierluigi Paganini.

Security

Security Manufacturing Information Security Risk

The Week in Cyber Security and Data Privacy: 16–22 October 2023

IT Governance

OCTOBER 24, 2023

Breached organisation: BHI Energy, providing staffing solutions to the nuclear, fossil, wind, hydro and government energy markets. Incident details: Network security incident, where allegedly AlphV gained unauthorised access and made demands to the hospital’s leadership, suggesting a ransomware attack. Records breached: Unknown.

Data Privacy

Data Privacy Privacy Security Data breaches

5 IoT Security Predictions for 2019

Security Affairs

DECEMBER 21, 2018

2018 was the year of the Internet of Things (IoT), massive attacks and various botnets hit smart devices, These are 5 IoT Security Predictions for 2019. The regulation around IoT security was this year’s signal that the answer is, fortunately, no. Insights from VDOO’s leadership. 2019 will continue these trends but at a faster pace.

IoT

IoT Security Manufacturing Privacy

Security Affairs newsletter Round 250

Security Affairs

FEBRUARY 9, 2020

The best news of the week with Security Affairs. The Russian Government blocked ProtonMail and ProtonVPN. Japanese defense contractors Pasco and Kobe Steel disclose security breaches. IoT devices at major Manufacturers infected with crypto-miner. A new round of the weekly newsletter arrived! Pierluigi Paganini.

Security

Security Ransomware IoT Manufacturing

EVRAZ operations in North America disrupted by Ryuk ransomware

Security Affairs

MARCH 7, 2020

In most of the plants, manufacturing operations were shut down at most plants. “Manufacturing has been halted at most plants, our source told us, and the company’s IT staff is working to contain the infection and prevent it from spreading.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Computer and Electronics Mining Manufacturing

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

CISA published an advisory on China-linked groups targeting government agencies by exploiting flaws in Microsoft Exchange, Citrix, Pulse, and F5 systems. CISA published a security advisory warning of a wave of attacks carried out by China-linked APT groups affiliated with China’s Ministry of State Security.

Government

Government Energy and Utilities Healthcare Access

New TA2101 threat actor poses as government agencies to distribute malware

Security Affairs

NOVEMBER 15, 2019

A new threat actor tracked as TA2101 is conducting malware campaigns using email to impersonate government agencies in the United States, Germany, and Italy. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government Ransomware Manufacturing Phishing

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Security experts from Cyble found alleged sensitive documents of NATO and Turkey, is it a case of cyber hacktivism or cyber espionage? Also, in September 2020, it was reported that Russian hackers targeted government agencies in NATO member countries, and nations who cooperate with NATO -> Link.” Pierluigi Paganini.

Military

Military Manufacturing Phishing Government

Australia banned Huawei from 5G network due to security concerns

Security Affairs

AUGUST 25, 2018

Chinese-owned telecommunications firm Huawei has been banned from Australia’s 5G network due to security concerns. The Australian government considers risky the involvement of Huawei for the rolling out of next-generation 5G communication networks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security

Security Military Manufacturing Retail

US officials claim Huawei Equipment has secret backdoor for spying

Security Affairs

FEBRUARY 13, 2020

national security adviser, Robert O’Brien, made the statement at an Atlantic Council forum. national security adviser, Robert O’Brien, made the statement at an Atlantic Council forum on Tuesday evening, but he did not provide any evidence of the presence of the alleged backdoors. ” reported the AP News. Pierluigi Paganini.

Manufacturing

Manufacturing Access Government Communications

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Security Affairs

DECEMBER 12, 2023

The experts observed the use of NineRAT at around September 2023 against a European manufacturing entity. ” The Andariel APT (aka Stonefly) has been active since at least 2015, it was involved in several attacks attributed to the North Korean government.

Agriculture

Agriculture Data collection Access Manufacturing

Japan suspects HGV missile data leak in Mitsubishi security breach

Security Affairs

MAY 21, 2020

In January, the company disclosed a security breach that might have exposed personal and confidential corporate data, at the time, it claimed that attackers did not obtain sensitive information about defense contracts. Mitsubishi Electric had also already notified members of the Japanese government and the Ministry of Defense.

Security

Security Military Manufacturing Personal data

China planted tiny chips on US computers for cyber espionage

Security Affairs

OCTOBER 4, 2018

China used tiny chips implanted on computer equipment manufactured for US companies and government agencies to steal secret information. Amazon discovered the tiny chips when it acquired software firm Elemental and conducted a security assessment of equipment made for Elemental by California-based Supermicro. government.”

Manufacturing

Manufacturing Government Security IT

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Major Belgium’s telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. One of the major Belgium telecom operator Proximus announced on Friday that it will gradually replace its equipment from the Chinese manufacturer Huawei. Pierluigi Paganini.

Manufacturing

Manufacturing Risk Communications Security

New Zealand Security Bureau halts Spark from using Huawei 5G equipment

Security Affairs

DECEMBER 3, 2018

According to New Zealand’s Government Communications Security Bureau, Huawei equipment for 5G infrastructure poses a “significant network security risk,” for this reason, it asked mobile company Spark to avoid using the equipment of the Chinese company. ” reported the Associated Press. Pierluigi Paganini.

Security

Security Government Communications Manufacturing

US House Passes IoT Cybersecurity Improvement Act

Security Affairs

SEPTEMBER 21, 2020

House of Representatives passed the IoT Cybersecurity Improvement Act, a bill that aims at improving the security of IoT devices. House of Representatives last week passed the IoT Cybersecurity Improvement Act, a bill designed to improve the security of IoT devices. Mark Warner. “I

IoT

IoT Cybersecurity Manufacturing Government

Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks

Security Affairs

DECEMBER 7, 2019

Alleged Vietnamese Ocean Lotus (APT32) hackers breached the networks of the car manufacturers BMW and Hyundai to steal automotive trade secrets. According to German media, hackers suspected to be members of the Vietnam-linked APT Ocean Lotus ( APT32 ) group breached the networks of the car manufacturers BMW and Hyundai.

Manufacturing

Manufacturing Government Security IT

Marcus “MalwareTech” Hutchins Pleads Guilty to Writing, Selling Banking Malware

Krebs on Security

APRIL 19, 2019

Marcus Hutchins, just after he was revealed as the security expert who stopped the WannaCry worm. Hutchins, who authors the popular blog MalwareTech , was virtually unknown to most in the security community until May 2017 when the U.K. The government says between July 2012 and Sept. Image: twitter.com/malwaretechblog.

Manufacturing

Manufacturing Government Communications Ransomware

Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company

Security Affairs

SEPTEMBER 30, 2018

Estonian sues Gemalto for 152 million euros following the security flaws in the citizen ID cards issued by the company that caused their recall in 2017. Estonian authorities sue the security firm Gemalto for 152 million euros following the security flaws in the citizen ID cards issued by the company that caused their recall in 2017.

Manufacturing

Manufacturing Government Security Risk

To Secure Medical Devices, the FDA Turns to Ethical Hackers

Security Affairs

OCTOBER 23, 2018

Food and Drug Administration (FDA) is embracing the work of ethical hackers and their researches to secure medical devices. People typically shudder to think about their smart speakers or home security systems getting compromised, and indeed, vulnerabilities in those devices would be traumatizing. All the while, the U.S.

Security

Security Manufacturing Cybersecurity Government

France will not ban Huawei from its upcoming 5G networks

Security Affairs

SEPTEMBER 1, 2020

French President Emmanuel Macron announced that his government will not exclude Chinese telecom giant Huawei from the building of the upcoming 5G telecommunication networks. However, Macron said that France will favor European providers of 5G technology due to security concerns. ” reported the Associated Press agency.

IT

IT Military Manufacturing Risk

Russian military plans to replace Windows with Astra Linux

Security Affairs

MAY 31, 2019

Cyber security seems to subvert the globalization concept, governments are working to develop their own technology fearing possible espionage and sabotage activities of foreign states. Astra Linux is a Debian-based distro developed in Russia by the Scientific/Manufacturing Enterprise Rusbitech RusBITech about ten years ago.

Military

Military Government Manufacturing Data Privacy

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

It is the largest office furniture manufacturer in the world. In an 8-K form filed with the Securities and Exchange Commission (SEC), the company has disclosed the ransomware attack that took place on October 22nd, 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. billion in 2020.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

reads the advisory The vulnerability is a heap-based buffer overflow issue and according to the vendor it may have been exploited in a limited number of attacks aimed at government, manufacturing, and critical infrastructure sectors. states the report published by Fortinet. ” continues the report.

Manufacturing

Manufacturing Authentication Risk Security

Hackers target German Task Force for COVID-19 PPE procurement

Security Affairs

JUNE 9, 2020

Hackers are targeting executives of a German multinational corporation involved in the government supply of personal protective equipment (PPE) against COVID-19. Hackers are targeting executives of a German multinational corporation involved in the government supply of personal protective equipment (PPE). Pierluigi Paganini.

Phishing

Phishing Healthcare Manufacturing Government

Attack against Florida Water Treatment Facility

Schneier on Security

FEBRUARY 12, 2021

Despite its similarities to a Russian attack of a Ukrainian power plant in 2015, my bet is that it’s a disgruntled insider: either a current or former employee. This could have been fatal to people living downstream, if an alert operator hadn’t noticed the change and reversed it. We don’t know who is behind this attack.

Manufacturing

Manufacturing Passwords Cybersecurity Access

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors.

Phishing

Phishing Manufacturing Archiving Government

Australian beverages firm Lion hit for the second time in a few days by a cyber attack

Security Affairs

JUNE 20, 2020

At the time of the first attack, the security breach caused the disruption of manufacturing processes and customer service. Yesterday Prime Minister Scott revealed that a state-based actor is launching cyber attacks against government, public services and businesses. ” The Sydney Morning Herald reported.

Ransomware

Ransomware Manufacturing Marketing Government

Exclusive: TIM’s Red Team Research finds 4 zero-days in WOWZA Streaming Engine product

Security Affairs

AUGUST 5, 2020

Today, the TIM’s Red Team Research led by Massimiliano Brolli, discovered 4 new vulnerabilities that have been addressed by the manufacturer WOWZA Streaming Engine, between the end of 2019 and July 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Manufacturing

Manufacturing Government Access Security

Sopra Steria hit by the Ryuk ransomware gang

Security Affairs

OCTOBER 23, 2020

Security measures have been taken to limit the risk of propagation.” The list of the victims of the Ryuk ransomware is very long and includes the US government contractor Electronic Warfare Associates (EWA) , US railroad company Railworks , Croatian petrol station chain INA Group , and parts manufacturer Visser Precision.

Ransomware

Ransomware Computer and Electronics Mining Manufacturing

UK NCSC releases the Vulnerability Disclosure Toolkit

Security Affairs

SEPTEMBER 15, 2020

The British National Cyber Security Centre (NCSC) released a guideline, dubbed The Vulnerability Disclosure Toolkit, for the implementation of a vulnerability disclosure process. Having a clearly signposted reporting process demonstrates that your organisation takes security seriously. ” states the document. Pierluigi Paganini.

Communications

Communications Risk Manufacturing Government

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Access

Access Financial Services Retail Insurance

The City of Durham shut down its network after Ryuk Ransomware attack

Security Affairs

MARCH 8, 2020

.” “While it is an inconvenience for them to be disconnected, it’s safer for the state as a whole due to the critical nature of this network for all of North Carolina’s Law Enforcement,” reads the security breach notification sent by email. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware IT Computer and Electronics Mining

Nation-state actors are targeting UK universities to steal info on COVID-19 research

Security Affairs

MAY 4, 2020

The UK’s National Cyber Security Centre (NCSC) is warning of cyber attacks against UK universities and scientific institutes involved in COVID-19 research. . The UK’s National Cyber Security Centre (NCSC) warned of targeted attacks against UK universities and scientific facilities that are involved in the COVID-19 research. .

Manufacturing

Manufacturing Cybersecurity Government Security

Cyber mercenaries and insiders hired by Chinese intelligence to hack aerospace and tech firms

Security Affairs

OCTOBER 31, 2018

US intelligence believes that the cyber espionage operation was under the control of Zha Rong and Chai Meng, two intelligence officers working for the Jiangsu Province Ministry of State Security (JSSD) in the Chinese city of Nanjing. The campaign was carried out at least from January 2010 to May 2015. According to U.S. based firm.

Manufacturing

Manufacturing Military Phishing Security

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Security Affairs

JUNE 17, 2022

Lookout Threat Lab researchers uncovered enterprise-grade Android surveillance spyware, named Hermit, used by the government of Kazakhstan to track individuals within the country. The malware samples analyzed impersonated the applications of telecommunications companies or smartphone manufacturers. To nominate, please visit:?.

Military

Military Manufacturing Government Security

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate information. Mitsubishi Electric disclosed a security breach that might have exposed personal and confidential corporate data. According to the company, attackers did not obtain sensitive information about defense contracts.

Data breaches

Data breaches Computer and Electronics Government Manufacturing

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

A hacker managed to identify a weak spot in a security camera model. Usually, the default settings are not focused on security. Furthermore, consumers believe that companies and services have the responsibility of keeping their data secure. Users could leave all the responsibility to governments and other institutions.

IoT

IoT Cybersecurity Manufacturing Passwords

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Security Affairs

APRIL 23, 2020

The APT32 group has been active since at least 2012, it has targeted organizations across multiple industries and foreign governments, dissidents, and journalists. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors.

Phishing

Phishing Government Manufacturing Cybersecurity

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Trending Sources

D-Link confirms data breach, but downplayed the impact

The German BSI agency recommends replacing Kaspersky antivirus software

Security Affairs newsletter Round 282

Czech cyber-security agency warns over Huawei, ZTE security threat

The Week in Cyber Security and Data Privacy: 16–22 October 2023

5 IoT Security Predictions for 2019

Security Affairs newsletter Round 250

EVRAZ operations in North America disrupted by Ryuk ransomware

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

New TA2101 threat actor poses as government agencies to distribute malware

Researchers found alleged sensitive documents of NATO and Turkey

Australia banned Huawei from 5G network due to security concerns

US officials claim Huawei Equipment has secret backdoor for spying

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Japan suspects HGV missile data leak in Mitsubishi security breach

China planted tiny chips on US computers for cyber espionage

Belgium telecom operators Proximus and Orange drop Huawei

New Zealand Security Bureau halts Spark from using Huawei 5G equipment

US House Passes IoT Cybersecurity Improvement Act

Vietnam-linked Ocean Lotus hacked BMW and Hyundai networks

Marcus “MalwareTech” Hutchins Pleads Guilty to Writing, Selling Banking Malware

Estonia sues Gemalto for 152M euros over flaws in citizen ID cards issued by the company

To Secure Medical Devices, the FDA Turns to Ethical Hackers

France will not ban Huawei from its upcoming 5G networks

Russian military plans to replace Windows with Astra Linux

Steelcase office furniture giant hit by Ryuk ransomware attack

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Hackers target German Task Force for COVID-19 PPE procurement

Attack against Florida Water Treatment Facility

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Australian beverages firm Lion hit for the second time in a few days by a cyber attack

Exclusive: TIM’s Red Team Research finds 4 zero-days in WOWZA Streaming Engine product

Sopra Steria hit by the Ryuk ransomware gang

UK NCSC releases the Vulnerability Disclosure Toolkit

Iran-linked APT group Pioneer Kitten sells access to hacked networks

The City of Durham shut down its network after Ryuk Ransomware attack

Nation-state actors are targeting UK universities to steal info on COVID-19 research

Cyber mercenaries and insiders hired by Chinese intelligence to hack aerospace and tech firms

Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company

Mitsubishi Electric discloses data breach, media blame China-linked APT

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Vietnam-linked APT32 group launches COVID-19-themed attacks against China

Stay Connected