2021 and Education - Information Management Today

Threat actors target K-12 distance learning education, CISA and FBI warn

Security Affairs

DECEMBER 11, 2020

The US Cybersecurity Infrastructure and Security Agency and the FBI warned about the increase in ransomware attacks targeting the US K-12 educational sector. The US CISA and the FBI warned about the increase in ransomware attacks targeting the US K-12 educational sector aimed at data theft and disruption of distance learning services.

Education

Education Ransomware Cybersecurity Security

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Security Affairs

OCTOBER 30, 2021

MITRE and CISA announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. MITRE and the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) have announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. Pierluigi Paganini.

Manufacturing

Manufacturing Access Education Security

Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw

Security Affairs

NOVEMBER 8, 2021

Experts warn of an ongoing hacking campaign that already compromised at least nine organizations worldwide from critical sectors by exploiting CVE-2021-40539. In the middle of September, the FBI, CISA, and the Coast Guard Cyber Command (CGCYBER) warned that nation-state APT groups were actively exploiting the CVE-2021-40539 flaw.

Communications

Communications Blockchain Passwords Financial Services

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

North Korea-linked TA406 cyberespionage group activity in 2021

Security Affairs

NOVEMBER 19, 2021

North Korea-linked TA406 APT group has intensified its attacks in 2021, particularly credential harvesting campaigns. A report published by Proofpoint revealed that the North Korea-linked TA406 APT group ( Kimsuky , Thallium , and Konni , Black Banshee, Velvet Chollima) has intensified its operations in 2021. Pierluigi Paganini.

Government

Government Education Phishing IT

Microsoft blocked tens of billions of brute-force and phishing attacks in 2021

Security Affairs

FEBRUARY 4, 2022

billion phishing emails with Microsoft Defender for Office 365 in 2021. However, only 22 percent of customers using Microsoft Azure Active Directory (Azure AD), Microsoft’s Cloud Identity Solution, have implemented a strong identity authentication protection as of December 2021. The IT giant added has blocked more than 25.6

Phishing

Phishing Authentication Education Cloud

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

Cyber espionage campaign targets Asian countries since 2021

Security Affairs

SEPTEMBER 13, 2022

A cyber espionage group targets governments and state-owned organizations in multiple Asian countries since early 2021. Threat actors are targeting government and state-owned organizations in multiple Asian countries as parts of a cyber espionage campaign that remained under the radar since early 2021. Pierluigi Paganini.

Government

Government Access Libraries Education

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

Affiliates paid fees to administrators like Ptitsyn for decryption keys, with payments routed via unique cryptocurrency wallets from 2021–2024. The attacks were observed as recently as February 2024, they targeted government, education, emergency services, healthcare, and other critical infrastructure sectors.

Ransomware

Ransomware Education Sales Government

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.”

Passwords

Passwords Authentication Retail Education

Five Steps to Win the Battle Against Information Chaos in 2021

AIIM

APRIL 15, 2021

For fun and visual effect, we've created this 2021 Informational Professionals' report card to present the results. You can have some great, fantastic ideas about what you want to do with information, but you need to be able to educate everyone up and down the stack about what you are planning. How to Deal with Information Chaos.

Education

Education Records Management GDPR Risk

Change Management - Still the Top Problem Facing End Users in 2021?

AIIM

FEBRUARY 9, 2021

This research not only fuels AIIM's educational and developmental releases for all of 2021, it also gives the community a voice. Click Here to Take the Official 2021 IIM Survey (and Get the Early Results). Each year, AIIM conducts extensive user-research throughout the community to address these questions and more.

Education

Education Communications IT

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. In May 2021, cybercriminals offered more than 36,000 login credentials for.edu email accounts and advertised the data on an instant messaging platform.

Sales

Sales Education Phishing Passwords

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Security Affairs

DECEMBER 12, 2021

Quebec shut down nearly 4,000 of its sites as a preventative measure after the disclosure of a PoC exploit for the Log4Shell flaw ( CVE-2021-44228 ) in the Apache Log4j Java-based logging library. Query our API for "tags=CVE-2021-44228" for source IP addresses and other IOCs. formatMsgNoLookups option is set to false.

Libraries

Libraries Digital transformation Education Government

Sabbath Ransomware target critical infrastructure in the US and Canada

Security Affairs

DECEMBER 1, 2021

Sabbath ransomware is a new threat that has been targeting critical infrastructure in the United States and Canada since June 2021. A new ransomware group called Sabbath (aka UNC2190) has been targeting critical infrastructure in the United States and Canada since June 2021.

Ransomware

Ransomware Education Encryption Security

Microsoft: Chinese Cyberspies Used 4 Exchange Server Flaws to Plunder Emails

Krebs on Security

MARCH 2, 2021

“Hafnium primarily targets entities in the United States across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs,” Microsoft said. Microsoft credited researchers at Reston, Va.

Education

Education Access Authentication Communications

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

e-Discovery

e-Discovery Communications Ransomware Government

Vice Society ransomware also exploits PrintNightmare flaws in its attack

Security Affairs

AUGUST 13, 2021

The PrintNightmare flaws (tracked as ( CVE-2021-1675 , CVE-2021-34527 , and CVE-2021-36958 ) reside in the Windows Print Spooler service, print drivers, and the Windows Point and Print feature. An attacker can exploit these vulnerabilities for local privilege escalation (LPE) or remote code execution (RCE).

Ransomware

Ransomware IT Education Security

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

Krebs on Security

FEBRUARY 22, 2022

In October 2021, St. Louis Post-Dispatch reporter Josh Renaud alerted Missouri education department officials that their website was exposing the Social Security numbers of more than 100,000 primary and secondary teachers in the state. Louis Post-Dispatch for reporting a security vulnerability that exposed teacher SSNs.

Education

Education Access Security Communications

SolarWinds Supply Chain Hack: Investigation Update

Data Breach Today

JANUARY 15, 2021

Also featured: A discussion of why security education is so crucial in 2021 and tips on how to retain SOC analysts. The latest edition of the ISMG Security Report describes new details emerging from the SolarWinds supply chain hack investigation.

Education

Education Security

Expert publishes PoC exploit code for Microsoft Exchange flaws

Security Affairs

MARCH 11, 2021

On March 2nd, Microsoft has released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported Microsoft Exchange versions that are actively exploited in the wild. — MalwareTech (@MalwareTechBlog) March 10, 2021.

Education

Education Access Security IT

COVID-19: The Impact of 'Uncontrolled Spread'

Data Breach Today

JULY 24, 2020

Pandemic Expert Regina Phelps on Virus Trends, Vaccine Trials and How to Plan Realistically for 2021 Trending Better. Pandemic expert Regina Phelps explains how the latest trends should guide our plans for business, education and healthcare in the fall. Caution Warranted. Trending Poorly. Uncontrolled Spread.

Education

Four zero-days in Microsoft Exchange actively exploited in the wild

Security Affairs

MARCH 2, 2021

Microsoft has released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported Microsoft Exchange versions that are actively exploited in the wild. link] — Kevin Beaumont (@GossiTheDog) March 2, 2021.

Authentication

Authentication Access Education Passwords

Data breaches and cyber attacks quarterly review: Q1 2021

IT Governance

APRIL 28, 2021

At the start of 2021, we decided to expand our research to learn more about the organisations that are being breached and how they were falling victim. IT Governance discovered 351 security incidents in the first three months of 2021, which accounted for 3,222,491,299 breached records. Download now.

Data breaches

Data breaches Passwords Education Phishing

Expert launched Malvuln, a project to report flaws in malware

Security Affairs

JANUARY 15, 2021

— Hyp3rlinx (@hyp3rlinx) January 10, 2021. Clearly, the initiative is born for educational and research purposes only. Currently, Page is the unique contributor of the Malvuln service, but he could start accepting third-party contributions in the future. Thanks, not at the moment want to see where it goes for now… will see.

Education

Education Security IT Information Security

Apple’s 2021 spring release: education opportunities

Jamf

MARCH 29, 2021

The power of universal apps offers students and teachers a huge opportunity for enhanced learning and teaching, regardless of device.

Education

WWDC 2021 Takeaways

Jamf

JUNE 11, 2021

Following a year unlike any other, Apple’s Worldwide Developer Conference (WWDC) wrapped up this week with news for enterprise IT, InfoSec leaders, and education IT professionals alike.

Education

Education IT

Researcher published PoC exploit for Ghostscript zero-day

Security Affairs

SEPTEMBER 7, 2021

So, here is another gift for you about Imagemagick RCE 0-day that afftceted to GhostScript-9.50 [link] #RCE #imagemagick #ghostscript pic.twitter.com/6tIeJL0uv1 — Nguyen The Duc (@ducnt_) September 5, 2021. Follow me on Twitter: @securityaffairs and Facebook.

Libraries

Libraries Education Security IT

Fileless SockDetour backdoor targets U.S.-based defense contractors

Security Affairs

FEBRUARY 26, 2022

Unit 42 attributes the malware to an APT campaign codenamed TiltedTemple (aka DEV-0322 ), threat actors also exploited the Zoho ManageEngine ADSelfService Plus vulnerability ( CVE-2021-40539 ) and ServiceDesk Plus vulnerability ( CVE-2021-44077 ). based defense contractor’s internet-facing Windows server on July 27, 2021.

Education

Education Encryption Ransomware Cybersecurity

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 8, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added the following five new issues to its Known Exploited Vulnerabilities Catalog : CVE-2021-27876 – Veritas Backup Exec Agent File Access Vulnerability CVE-2021-27877 – Veritas Backup Exec Agent Improper Authentication Vulnerability CVE-2021-27878 – Veritas Backup Exec (..)

IT

IT Ransomware Education Cybersecurity

Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation

Security Affairs

APRIL 19, 2023

The man was arrested in Amsterdam in November 2021 and was extradited to the US in August 2022. According to a joint report published in January 2021 by security firms Advanced-intel and HYAS, Ryuk operators earned, at the time of publishing the analysis, more than $150 million worth of Bitcoin from ransom paid by their victims.

Ransomware

Ransomware Education Cybersecurity Security

Best Cybersecurity Awareness Training for Employees in 2021

eSecurity Planet

JUNE 17, 2021

These days, all employees need to be well educated in security best practices and good habits if the organization wishes to steer clear of ransomware and malware. Thus the goal of training is to educate users so they are far less likely to fall prey to the various ploys from the hacking fraternity. Education tailored to users.

Cybersecurity

Cybersecurity Security awareness Phishing Education

Moobot botnet spreads by targeting Cacti and RealTek flaws

Security Affairs

APRIL 3, 2023

FortiGuard Labs researchers observed an ongoing hacking campaign targeting Cacti ( CVE-2022-46169 ) and Realtek ( CVE-2021-35394 ) vulnerabilities to spread ShellBot and Moobot malware. The Moobot botnet is actively exploiting critical vulnerabilities in Cacti, and Realtek in attacks in the wild.

Education

Education Encryption Passwords Communications

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

“These operations have targeted various industries, including Aerospace & Defense, Education, Energy & Utilities, Governments, Hospitality, Manufacturing, Oil & Gas, Retail, Technology, and Transportation. ” reads the joint report. Since September 2022, Moobot botnet was spotted targeting vulnerable D-Link routers.

Energy and Utilities

Energy and Utilities Military Government Phishing

SysJoker, a previously undetected cross-platform backdoor made the headlines

Security Affairs

JANUARY 12, 2022

The experts spotted a Linux variant of the backdoor in December while investigating an attack against an educational institution. The analysis of the C2 domain registration and samples found in VirusTotal suggests that the SysJoker has been active at least since the second half of 2021. .

Education

Education Ransomware Security IT

China-linked APT Earth Baku targets Europe, the Middle East, and Africa

Security Affairs

AUGUST 14, 2024

The group targeted multiple industries, including media and communications, telecoms, technology, healthcare, and education and government entities. The new variant of the StealthVector, while similar to the 2021 version, uses AES encryption instead of the customized ChaCha20. ” reads the report published by Trend Micro.

Encryption

Encryption Education Communications Access

ARMA Greater Columbus September 2021 Chapter Meeting – Tour of The Supreme Court of Ohio

IG Guru

SEPTEMBER 16, 2021

Front Street, Columbus, OH 43215 Date: September 23rd, 2021 Time: 2:40-4:00 pm. We will then be able to explore the Visitor Education Center’s interactive exhibits until 5:00 pm. The post ARMA Greater Columbus September 2021 Chapter Meeting – Tour of The Supreme Court of Ohio appeared first on IG GURU.

Education

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Vice Society ransomware gang adds the Italian City of Palermo to its data leak site

Security Affairs

JUNE 10, 2022

Vice Society ransomware has been active since June 2021, it is considered by researchers a spin-off of the HelloKitty ransomware , the malware targets both Windows and Linux systems primarily belonging to small or midsize victims.

Ransomware

Ransomware IT Data breaches Education

British Council exposed 144,000 files containing student details?

Security Affairs

FEBRUARY 1, 2022

The British Council is a British organisation specialising in international cultural and educational opportunities. It operates in over 100 countries: promoting a wider knowledge of the United Kingdom and the English language; encouraging cultural, scientific, technological and educational co-operation with the United Kingdom.

Education

Education Phishing GDPR Passwords

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

The previous campaigns associated with this group targeted government, education, and electronic manufacturers in East Asia and the Middle East. The activity of the group was described by ESET in June 2021, the experts pointed out that the group’s abilities allowed the APT to remain mostly under the radar.

Government

Government Manufacturing Education Access

Data breaches and cyber attacks quarterly review: Q3 2021

IT Governance

OCTOBER 26, 2021

Welcome to our third quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. IT Governance discovered 266 security incidents between July and September 2021, which accounted for 185,721,284 breaches records. Download now.

Data breaches

Data breaches Retail Government Ransomware

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

Security Affairs

MAY 2, 2023

The Monopoly Market was launched in 2019 and the German authorities seized the marketplace’s infrastructure in December 2021. “Europol has been compiling intelligence packages based on troves of evidence provided by German authorities, who successfully seized the marketplace’s criminal infrastructure in December 2021.

Marketing

Marketing Sales Education Security

58% of all nation-state attacks in the last year were launched by Russian nation-state actors

Security Affairs

OCTOBER 8, 2021

According to the IT giant, approximately 58% of all nation-state attacks between July 2020 and June 2021 were launched by Russian nation-state actors. Other nation-state groups that were very active between July 2020 and June 2021 are THALLIUM and PHOSPHORUS APT groups. ” continues the report.

Government

Government Education Security IT

FIN12 ransomware gang don’t implement double extortion to prioritize speed

Security Affairs

OCTOBER 7, 2021

“In the first half of 2021, as compared to 2020, FIN12 significantly improved their TTR, cutting it in half to just 2.5 The ransomware operators do not implement a double-extortion model to reduce the time-to-ransom (TTR) that is on average 12.4 days in ransomware attacks. ” reads the analysis published by the researchers.

Ransomware

Ransomware Encryption Education Risk

Threat actors target K-12 distance learning education, CISA and FBI warn

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Webinars

Trending Sources

Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw

Webinars

North Korea-linked TA406 cyberespionage group activity in 2021

Microsoft blocked tens of billions of brute-force and phishing attacks in 2021

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Cyber espionage campaign targets Asian countries since 2021

Russian Phobos ransomware operator faces cybercrime charges

US citizens lost more than $68M to SIM swap attacks in 2021, FBI warns

Five Steps to Win the Battle Against Information Chaos in 2021

Change Management - Still the Top Problem Facing End Users in 2021?

FBI: Compromised US academic credentials available on various cybercrime forums

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Sabbath Ransomware target critical infrastructure in the US and Canada

Microsoft: Chinese Cyberspies Used 4 Exchange Server Flaws to Plunder Emails

China’s Volt Typhoon botnet has re-emerged

Vice Society ransomware also exploits PrintNightmare flaws in its attack

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

SolarWinds Supply Chain Hack: Investigation Update

Expert publishes PoC exploit code for Microsoft Exchange flaws

COVID-19: The Impact of 'Uncontrolled Spread'

Four zero-days in Microsoft Exchange actively exploited in the wild

Data breaches and cyber attacks quarterly review: Q1 2021

Expert launched Malvuln, a project to report flaws in malware

Apple’s 2021 spring release: education opportunities

WWDC 2021 Takeaways

Researcher published PoC exploit for Ghostscript zero-day

Fileless SockDetour backdoor targets U.S.-based defense contractors

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Russian national sentenced to time served for committing money laundering for the Ryuk ransomware operation

Best Cybersecurity Awareness Training for Employees in 2021

Moobot botnet spreads by targeting Cacti and RealTek flaws

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

SysJoker, a previously undetected cross-platform backdoor made the headlines

China-linked APT Earth Baku targets Europe, the Middle East, and Africa

ARMA Greater Columbus September 2021 Chapter Meeting – Tour of The Supreme Court of Ohio

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Vice Society ransomware gang adds the Italian City of Palermo to its data leak site

British Council exposed 144,000 files containing student details?

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Data breaches and cyber attacks quarterly review: Q3 2021

SpecTor operation: 288 individuals arrested in the seizure of marketplace Monopoly Market

58% of all nation-state attacks in the last year were launched by Russian nation-state actors

FIN12 ransomware gang don’t implement double extortion to prioritize speed

Stay Connected