2020 and Military - Information Management Today

China Hacked Japan’s Military Networks

Schneier on Security

AUGUST 14, 2023

The NSA discovered the intrusion in 2020—we don’t know how—and alerted the Japanese. and Japanese officials interviewed, who spoke on the condition of anonymity because of the matter’s sensitivity. […] The 2020 penetration was so disturbing that Gen. Paul Nakasone, the head of the NSA and U.S.

Military

Military Access Security IT

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods.

Military

Military Government Access Risk

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

South Korea military exercise. The military drill, the Ulchi Freedom Guardian summer exercises , will start on Monday, August 21, 2023 , and will last 11 days. The military exercises aim at improving the ability of the two armies to respond to North Korea’s evolving nuclear and missile threats. .

Military

Military Phishing Government Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Big Cyberespionage Attack Against Japan Attributed to China

Data Breach Today

AUGUST 8, 2023

Japan's Classified Defense Networks Reportedly Suffered a Major Breach in 2020 Japanese classified military networks reportedly suffered a massive breach in 2020 at the hands of a Chinese cyberespionage group that proved tough to eject.

Military

Military Cybersecurity IT

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

Security Affairs

JUNE 14, 2023

The IT giant pointed out that Cadet Blizzard is distinct from other known APT groups operating under the control of the Russian military intelligence GRU, such as Forest Blizzard ( STRONTIUM ) and Seashell Blizzard (IRIDIUM). Unlike other Russia-linked APT group, CadetBlizzard operations are extremely disruptive.

Military

Military Government IT Security

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

Krebs on Security

JANUARY 13, 2020

military and to other high-value customers/targets that manage key Internet infrastructure, and that those organizations have been asked to sign agreements preventing them from disclosing details of the flaw prior to Jan. 14, the first Patch Tuesday of 2020.

Military

Military Cybersecurity Encryption Authentication

NSA: OT Security Guidance in Wake of SolarWinds Attack

Data Breach Today

MAY 1, 2021

Agency Warns Attackers Could Use IT Exploits to Pivot to OT Systems The NSA is offering operational technology security guidance for the Defense Department as well as third-party military contractors and firms in the wake of the attack that targeted SolarWinds in 2020.

Military

Military Security IT

Chinese APT CactusPete targets military and financial orgs in Eastern Europe

Security Affairs

AUGUST 14, 2020

China-linked threat actor tracked as CactusPete was employing an updated backdoor in recent attacks targeting military and financial organizations in Eastern Europe. All of them appeared between March 2019 and April 2020. Experts pointed out that despite the lack of sophistication, the group carried out successful attacks.

Military

Military Phishing Access IT

Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates

Security Affairs

FEBRUARY 28, 2020

Network data collected by the NetBlocks internet observatory confirm that Turkey has blocked access to social media as Idlib military crisis escalates. in #Turkey where social media have been blocked for six hours after a military incident in #Idlib , Syria. local time (8:30 p.m. .” It's 5:30 a.m. Pierluigi Paganini.

Military

Military Data collection Government Access

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. As of 2020, the LGM-30G Minuteman III version[a] is the only land-based ICBM in service in the United States and represents the land leg of the U.S. The LGM-30 Minuteman is a U.S.

Military

Military Ransomware Encryption Risk

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

A review of this user’s hacker identities shows that during his time on the forums he served as an officer in the special forces of the GRU , the foreign military intelligence agency of the Russian Federation. Or he could just be a guy wearing a military uniform.” Some of those photos date back to 2008. ” Mr. .

Military

Military IT Communications Risk

A new piece of Ryuk Stealer targets government, military and finance sectors

Security Affairs

JANUARY 26, 2020

A new piece of the Ryuk malware has been improved to steal confidential files related to the military, government, financial statements, and banking. Targeted keywords in the new variant of the Ryuk stealer confirm that attackers are looking for confidential information in military, banking, finance and law enforcement.

Military

Military Government Ransomware Privacy

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. The post Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing appeared first on Security Affairs. reads a translation of the message.

Military

Military Phishing CMS Government

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. ” reads the report published by Bitdefender.

Military

Military Passwords Government Security

SideWinder carried out over 1,000 attacks since April 2020

Security Affairs

MAY 31, 2022

SideWinder, an aggressive APT group, is believed to have carried out over 1,000 attacks since April 2020, Kaspersky reported. The group stands out for the high frequency and persistence of its attacks, researchers believe that the APT group has carried out over 1,000 attacks since April 2020. Pierluigi Paganini.

Encryption

Encryption Military Phishing Communications

EU Council sanctions two Russian military intelligence officers over 2015 Bundestag hack

Security Affairs

OCTOBER 22, 2020

The Council of the European Union announced sanctions imposed on Russian military intelligence officers for 2015 Bundestag hack. The 85th Main Centre for Special Services (GTsSS) is the military unit of the Russian government also tracked as APT28 (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ).

Military

Military Government IT Security

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Since at least June 2020, and possibly earlier, the cyberespionage group has used the tool GooseEgg to exploit the CVE-2022-38028 vulnerability. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Military

Military File names Education Phishing

Google sent over 50,000 warnings of state-sponsored attacks, +33% from same period in 2020

Security Affairs

OCTOBER 14, 2021

“So far in 2021, we’ve sent over 50,000 warnings, a nearly 33% increase from this time in 2020. The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Pierluigi Paganini.

Phishing

Phishing Military Government Security

Forward Progress: Congress Requires DOD to Digitize DD-214 Military Service Records

Archives Blogs

APRIL 9, 2020

Just as digitization will improve the processing and access of these records to qualify individuals for benefits based on their military service, so it will support public access for the open analysis of historically significant military actions and activities as recommended by the Public Interest Declassification Board (PIDB).

Military

Military Paper Archiving Access

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Military

Military Government Phishing Authentication

Russia-linked APT28 hacked Roundcube email servers of Ukrainian entities

Security Affairs

JUNE 21, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. One of the scripts, the “c.js”, was containing an exploit for the CVE-2020-12641 vulnerability.

Military

Military Phishing Government Communications

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Government Phishing Access

2020 Predictions – Quantum knows what you did last summer

Thales Cloud Protection & Licensing

DECEMBER 19, 2019

As technology becomes capable of defeating a higher proportion of current and legacy security efforts, cybersecurity in 2020 will be defined by the need to stand out. National Initiatives in 2020. 2020 will see an ongoing increase in state-sponsored efforts to establish hegemony in the quantum race.

Communications

Communications Encryption Government Military

List of data breaches and cyber attacks in July 2020 – 77 million records breached

IT Governance

AUGUST 3, 2020

Four military schools in Canada targeted in ‘mysterious’ cyber attack (unknown). The post List of data breaches and cyber attacks in July 2020 – 77 million records breached appeared first on IT Governance UK Blog. Brazilian health insurer Hapvida discloses cyber attack (unknown).

Data breaches

Data breaches Insurance Ransomware Personal data

List of data breaches and cyber attacks in March 2020 – 832 million records breached

IT Governance

APRIL 2, 2020

Medical and military contractor Kimchuk hit by ransomware (unknown). The post List of data breaches and cyber attacks in March 2020 – 832 million records breached appeared first on IT Governance UK Blog. Police investigate ransomware incident at Jamaica National Group (unknown). Data breaches.

Data breaches

Data breaches Ransomware Energy and Utilities Phishing

France agency ANSSI warns of Russia-linked APT28 attacks on French entities

Security Affairs

OCTOBER 27, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Phishing Government Security

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. In May 2020, Shevlyakov used one of his front companies to buy a licensed copy of the penetration testing platform Metasploit Pro.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Security Affairs

JUNE 19, 2021

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. These targets suggest the group is likely interested in gathering intelligence on military technology and defense” reads the report published by the Insikt Group.

Military

Military Mining Government Communications

Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity

The Security Ledger

FEBRUARY 21, 2024

Related Stories BitCoins To Bombs: North Korea Funds Military With Billions In Stolen Cryptocurrency China Calls Out U.S. Back in 2020, BIML’s message was one of cautious optimism: while threats to the integrity of LLMs were real, there were things that the users of LLMs could do to manage those risks. Read the whole entry. »

Artificial Intelligence

Artificial Intelligence Risk Military Security

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Security Affairs

JUNE 25, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Military Ransomware Cybersecurity

Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months

Security Affairs

AUGUST 29, 2023

The Japanese authorities are under scrutiny by the US and regional allies due to the forthcoming “deeper military co-operation” “The discovery of the incident and the sensitivity of the target comes at a time of unprecedented scrutiny of Japan’s vulnerability to cyber attack.” ” reported the Financial Times.

Cybersecurity

Cybersecurity Military Personal data Government

European Council extends sanctions against foreign threat actors

Security Affairs

MAY 18, 2021

In July 2020, for the first-ever time, the EU imposed economical sanctions on Russia, China, and North Korea following cyber-attacks aimed at the EU and its member states. The authorities froze their assets, imposed a travel ban, and forbidden the transfer of funds from any EU entities to sanctioned entities.

Military

Military Government IT Security

Mandiant links Ghostwriter operations to Belarus

Security Affairs

NOVEMBER 16, 2021

In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. “ In August 2020, the Ghostwriter campaign spread articles claiming that the protests in Belarus were orchestrated by the U.S.

Military

Military CMS Government Security

Pakistan-linked Transparent Tribe APT expands its arsenal

Security Affairs

MAY 16, 2021

The Operation Transparent Tribe (Operation C-Major, APT36, and Mythic Leopard) was first spotted by Proofpoint Researchers in Feb 2016, in a series of cyber espionage operations against Indian diplomats and military personnel in some embassies in Saudi Arabia and Kazakhstan. ” read the analysis published Cisco Talos.

IT

IT Military Phishing Archiving

Winter Vivern APT exploited zero-day in Roundcube webmail software in recent attacks

Security Affairs

OCTOBER 25, 2023

ESET researchers pointed out that is a different vulnerability than CVE-2020-35730 , that the group exploited in other attacks. The Winter Vivern group was first analyzed in 2021, it has been active since at least 2020 and it targets governments in Europe and Central Asia. The messages were sent from team.managment@outlook[.]com

Military

Military Government Phishing IT

DOD DISA US agency discloses a security breach

Security Affairs

FEBRUARY 21, 2020

The Defense Information Systems Agency (DISA), the DoD agency that is in charge of the security of IT and telecommunications for the White House and military troops has suffered a cyber attack. pic.twitter.com/TNOvEQwkO4 — Andy Piazza (@klrgrz) February 18, 2020. military and civilian personnel.

Military

Military Data breaches Security Communications

List of data breaches and cyber attacks in August 2020 – 36.6 million records breached

IT Governance

SEPTEMBER 1, 2020

The post List of data breaches and cyber attacks in August 2020 – 36.6 Cyber attacks. million) CO-based Mental Health Partners says an employee’s account was hacked (unknown) Sumitomo Forestry Co., Hitachi Chemical Co. million records breached appeared first on IT Governance UK Blog.

Data breaches

Data breaches Ransomware Insurance Manufacturing

Russia-linked APT28 targets govt bodies with fake NATO training docs

Security Affairs

SEPTEMBER 23, 2020

Even today, less than half of the known antivirus engines are flagging the infection on VirusTotal , as observed by BleepingComputer: The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Military

Military Government Encryption Communications

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Hunton Privacy

JUNE 22, 2020

On July 1, 2020, amendments to Vermont’s data breach notification law, signed into law earlier this year, will take effect along with Vermont’s new student privacy law. Security Breach Notice Act.

Data breaches

Data breaches Privacy Education Data Privacy

Operation North Star – North-Korea hackers targeted US defense and aerospace companies

Security Affairs

JULY 30, 2020

The campaign tracked ‘Operation North Star,’ was active between late March and May 2020. The Techniques, Tactics, and Procedures (TTPs) of the Operation North Star operations are very similar to those observed in 2017 and 2019 campaigns that targeted key military and defense technologies.

Military

Military Data collection Phishing Ransomware

Brazil Nominates Directors of the Brazil Data Protection Authority; Senate Approval Pending

Hunton Privacy

OCTOBER 16, 2020

On October 15, 2020, Brazil’s President Bolsonaro officially nominated the five Directors of the new Brazilian data protection authority ( Agência Nacional de Proteção de Dados , “ANPD”), as published in the Brazilia Official Journal. The Decree establishing the ANPD, on which we reported earlier , is now fully in effect.

Computer and Electronics

Computer and Electronics Military Paper Communications

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

The APT group, recently discovered by ESET, targeted government and private companies in Belarus, Moldova, Russia, Serbia, and Ukraine, including militaries and Ministries of Foreign Affairs. ” Experts believe that the hacker group could have targeted many other countries and a good portion of its operations has yet to be discovered.

Military

Military Phishing Passwords Government

Cabinet Office at risk of further data breaches, review concludes

The Guardian Data Protection

APRIL 9, 2020

The Cabinet Office apologised after the home addresses of celebrities and military figures named in the 2020 New Year honours list were inadvertently posted online. Continue reading.

Data breaches

Data breaches Risk Military Personal data

Taiwan Government faces 5 Million hacking attempts daily

Security Affairs

NOVEMBER 10, 2021

On the other end, the Chinese government considers the island its territory and does not exclude its military occupation in the future. In August 2020, Chinese hackers gained access to around 6,000 email accounts belonging to at least 10 Taiwan government agencies, officials said. Follow me on Twitter: @securityaffairs and Facebook.

Government

Government Military Information Security Security

China Hacked Japan’s Military Networks

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Webinars

Trending Sources

N. Korean Kimsuky APT targets S. Korea-US military exercises

Webinars

Big Cyberespionage Attack Against Japan Attributed to China

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

NSA: OT Security Guidance in Wake of SolarWinds Attack

Chinese APT CactusPete targets military and financial orgs in Eastern Europe

Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates

Maze ransomware operators stole data from US military contractor Westech

From Cybercrime Saul Goodman to the Russian GRU

A new piece of Ryuk Stealer targets government, military and finance sectors

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

SideWinder carried out over 1,000 attacks since April 2020

EU Council sanctions two Russian military intelligence officers over 2015 Bundestag hack

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Google sent over 50,000 warnings of state-sponsored attacks, +33% from same period in 2020

Forward Progress: Congress Requires DOD to Digitize DD-214 Military Service Records

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Russia-linked APT28 hacked Roundcube email servers of Ukrainian entities

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

2020 Predictions – Quantum knows what you did last summer

List of data breaches and cyber attacks in July 2020 ­– 77 million records breached

List of data breaches and cyber attacks in March 2020 – 832 million records breached

France agency ANSSI warns of Russia-linked APT28 attacks on French entities

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec

Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months

European Council extends sanctions against foreign threat actors

Mandiant links Ghostwriter operations to Belarus

Pakistan-linked Transparent Tribe APT expands its arsenal

Winter Vivern APT exploited zero-day in Roundcube webmail software in recent attacks

DOD DISA US agency discloses a security breach

List of data breaches and cyber attacks in August 2020 – 36.6 million records breached

Russia-linked APT28 targets govt bodies with fake NATO training docs

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Operation North Star – North-Korea hackers targeted US defense and aerospace companies

Brazil Nominates Directors of the Brazil Data Protection Authority; Senate Approval Pending

XDSpy APT remained undetected since at least 2011

Cabinet Office at risk of further data breaches, review concludes

Taiwan Government faces 5 Million hacking attempts daily

Stay Connected

List of data breaches and cyber attacks in July 2020 – 77 million records breached