2021, Government, Manufacturing and Security - Information Management Today

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Security Affairs

OCTOBER 30, 2021

MITRE and CISA announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. MITRE and the DHS’s Cybersecurity and Infrastructure Security Agency (CISA) have announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list.

Manufacturing

Manufacturing Education Access Security

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. appeared first on Security Affairs. OwlProxy is a unique and custom tool used by the group.

Government

Government Manufacturing Education Access

Ranzy Locker ransomware hit tens of US companies in 2021

Security Affairs

OCTOBER 26, 2021

. “Unknown cyber criminals using Ranzy Locker ransomware had compromised more than 30 US businesses as of July 2021. The victims include the construction subsector of the critical manufacturing sector, the academia subsector of the government facilities sector, the information technology sector, and the transportation sector.”

Ransomware

Ransomware Manufacturing Access Phishing

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 ransomware attacks against Australian organizations starting July 2021. The Australian Cyber Security Centre (ACSC) warns of an escalation in LockBit 2.0 ransomware attacks against Australian organizations in multiple industry sectors starting July 2021.

Ransomware

Ransomware Retail Security Manufacturing

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Catches of the month: Phishing scams for July 2021

IT Governance

JULY 7, 2021

The number of officially reported HMRC-branded phishing scams increased from 572,029 in the 2019–2020 fiscal year to 1,069,522 in 2020–2021, according to data obtained under the Freedom of Information Act. Avanan’s 2021 Global Phish Cyber Attack Report found that credential harvesting is used in 54% of all phishing attacks.

Phishing

Phishing Manufacturing Insurance Data breaches

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

erwin

JANUARY 7, 2021

Our predictions for 2021 are rooted in what we’ve learned from the past year and the relevance of data in getting us to where we are and where we need to go. AI-Fueled Data Governance: Artificial intelligence (AI) has been narrowly tied to the internet of things (IoT) with smart features like Alexa, Nest and self-driving cars.

Metadata

Metadata Artificial Intelligence Compliance Government

US offers $10 million reward for info on Hive ransomware group leaders

Security Affairs

FEBRUARY 8, 2024

Government offers rewards of up to $10 million for information that could help locate, identify, or arrest members of the Hive ransomware group. According to a report published by blockchain analytics company Chainalysis, the Hive operation is one of the top 10 ransomware strains by revenue in 2021.

Ransomware

Ransomware Blockchain Manufacturing Analytics

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. June’s figures bring the annual running total of security incidents to 729 and the total number of breached records to 3,947,030,094.

Data breaches

Data breaches Ransomware Computer and Electronics Retail

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy

Data Privacy Manufacturing Privacy Security

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. .

Energy and Utilities

Energy and Utilities Military Government Phishing

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

Securing the Identities of Connected Cars

Thales Cloud Protection & Licensing

SEPTEMBER 9, 2021

Securing the Identities of Connected Cars. Thu, 09/09/2021 - 08:46. Manufacturing is one of the most attacked industries, facing a range of cybersecurity challenges. Use case: manufacturing enterprise. The manufacturer needed a certificate-based solution that would provide secure identity to every vehicle.

Security

Security Manufacturing Cloud IoT

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

All too often, this gives them a false sense of security: when in fact, threat actors can not only access and watch your camera feed but exploit the unsecured device to hack into your network. After looking at 28 of the most popular manufacturers, our research team found 3.5 Surge in internet-facing cameras. Most insecure brands.

Passwords

Passwords Manufacturing Authentication Government

Security Affairs newsletter Round 303

Security Affairs

FEBRUARY 28, 2021

Every week the best security articles from Security Affairs free for you in your email box. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. The post Security Affairs newsletter Round 303 appeared first on Security Affairs. Pierluigi Paganini.

Security

Security Blockchain Manufacturing Analytics

List of Data Breaches and Cyber Attacks in March 2021 – 21 Million Records Breached

IT Governance

APRIL 1, 2021

Don’t be fooled by the fact that we only recorded 20,995,371 breached records in March; it was one of the leakiest months we’ve ever seen, with 151 recorded incidents. By comparison, there was a seemingly Lilliputian 82 recorded breaches in January and 118 in February.

Data breaches

Data breaches Ransomware Manufacturing e-Delivery

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Witchetty APT used steganography in attacks against Middle East entities

Security Affairs

OCTOBER 1, 2022

The group used the backdoor in attacks against Middle Eastern governments. The APT group has been continuously improving its toolset by employing new malware in attacks aimed at governments, diplomatic missions, charities, and industrial/manufacturing organizations in the Middle East and Africa. Pierluigi Paganini.

Manufacturing

Manufacturing Government Cybersecurity IT

Holy Ghost ransomware operation is linked to North Korea

Security Affairs

JULY 15, 2022

The Holy Ghost ransomware gang has been active since June 2021 and it conducted ransomware attacks against small businesses in multiple countries. The list of victims includes manufacturing organizations, banks, schools, and event and meeting planning companies. ” concludes Microsoft. Pierluigi Paganini.

Ransomware

Ransomware Encryption Government Manufacturing

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Security Affairs

DECEMBER 12, 2023

The experts observed the use of NineRAT at around September 2023 against a European manufacturing entity. Operation Blacksmith involved the exploitation of CVE-2021-44228 , also known as Log4Shell. In March, the threat actors hit a South American agricultural organization. ” reads the analysis published by Talos.

Agriculture

Agriculture Data collection Access Manufacturing

Sandboxing: Advanced Malware Analysis in 2021

eSecurity Planet

APRIL 23, 2021

To fill this gap and aid in the analysis, detection, and testing of malware, sandboxing is widely used to give organizations the setting, isolation, and security tools needed to preserve the integrity of the host network. In 2021, sandboxes are now a fundamental part of an organization’s cybersecurity architecture. Sandbox Features.

Cybersecurity

Cybersecurity Cloud Risk Marketing

French authorities arrested a Russian national for his role in the Hive ransomware operation

Security Affairs

DECEMBER 14, 2023

The authorities reported that from June 2021 through at least November 2022, threat actors targeted a wide range of businesses and critical infrastructure sectors, including Government Facilities, Communications, Critical Manufacturing, Information Technology, and especially Healthcare and Public Health (HPH).

Ransomware

Ransomware Blockchain Manufacturing Analytics

The German BSI agency recommends replacing Kaspersky antivirus software

Security Affairs

MARCH 15, 2022

German Federal Office for Information Security agency, also known as BSI, recommends consumers not to use Kaspersky anti-virus software. The German Federal Office for Information Security agency, aka BSI, recommends consumers uninstall Kaspersky anti-virus software. ” reads the BSI announcement. Pierluigi Paganini.

Manufacturing

Manufacturing Information Security Military Authentication

US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

Security Affairs

FEBRUARY 16, 2024

government offers rewards of up to $10 million for information that could lead to the identification or location of ALPHV/Blackcat ransomware gang leaders. “FBI identified ALPHV/Blackcat actors as having compromised over 1,000 victim entities in the United States and elsewhere, including prominent government entities (e.g.,

Ransomware

Ransomware Government Manufacturing Access

China-linked Flax Typhoon APT targets Taiwan

Security Affairs

AUGUST 25, 2023

Microsoft has not observed The group has been active since mid-2021, it focuses on government agencies and education, critical manufacturing, and information technology organizations in Taiwan. The group is suspected to have been active since mid-2021.

Manufacturing

Manufacturing Education Access Government

NHTSA Publishes Final Cybersecurity Best Practices

Hunton Privacy

SEPTEMBER 26, 2022

The 2022 Best Practices reflect the agency’s final, non-binding vehicle cybersecurity guidance following its release of draft guidance in January 2021. The 2022 Best Practices also is an update to NHTSA’s first cybersecurity best practices document, which was issued in 2016. .

Cybersecurity

Cybersecurity Manufacturing Risk Information Security

Hive Ransomware Tor leak site apparently seized by law enforcement

Security Affairs

JANUARY 26, 2023

The authorities reported that from June 2021 through at least November 2022, threat actors targeted a wide range of businesses and critical infrastructure sectors, including Government Facilities, Communications, Critical Manufacturing, Information Technology, and especially Healthcare and Public Health (HPH).

Ransomware

Ransomware Blockchain Manufacturing Analytics

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild.

Authentication

Authentication Military Ransomware Manufacturing

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Third-party governance.

Compliance

Compliance Risk Government Retail

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Security Affairs

FEBRUARY 28, 2024

” Government experts believe that the increase in targeted attacks against the healthcare sector is the response of the group to law enforcement actions against the Blackcat group in early December 2023. municipal governments, defense contractors, and critical infrastructure organizations).” reads the press release. “To

Ransomware

Ransomware Government Insurance Manufacturing

Key Developments in IoT Security

Thales Cloud Protection & Licensing

JULY 15, 2021

Key Developments in IoT Security. Thu, 07/15/2021 - 10:09. The rush to market for consumers to enjoy the modern conveniences offered by these devices shocked the security community. Security experts were concerned that these devices were built with no security in mind.

IoT

IoT Security Data Privacy Encryption

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

Security Affairs

APRIL 26, 2023

German government warns that technology to regulate power consumption in Huawei network appliances could be used for sabotage purposes. government officials as well as European security authorities, which have warned of the risks associated with Chinese telecoms equipment.”

Government

Government Communications Risk Cybersecurity

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Security Affairs

JUNE 1, 2021

Just recently, the group has published a stolen data allegedly belonging to the Mexican Government which still remains available for sale today, and possibly becoming the first cybercriminal group that has touched a major state in Latin America on such a level. Ransomware ext:PROM[prometheushelp@mail.ch] mail: prometheushelp@mail.ch

Sales

Sales Ransomware Government GDPR

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

Dollars (USD) and received more than $60 million in ransom payments from over 100 victims worldwide as of August 2022, the US government states. ” Since December 2021 Cuba operators are continuing to target U.S. The post Cuba Ransomware received over $60M in Ransom payments as of August 2022 appeared first on Security Affairs.

Ransomware

Ransomware Financial Services Manufacturing Phishing

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Data Matters

DECEMBER 9, 2021

On November 26, 2021, the U.S. national security. Commerce invited interested parties to submit comments on the Proposed Rule by December 27, 2021. supply chain and approve or prohibit such transactions or require mitigating measures. As part of its request, Commerce asked parties to respond to specific questions.

Communications

Communications Manufacturing Risk Data collection

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Security Affairs

JUNE 26, 2023

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Cleanup

Cleanup Libraries Access Manufacturing

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

IT Governance

NOVEMBER 28, 2023

The dashboard was first spotted in June 2021. The post The Week in Cyber Security and Data Privacy: 20 – 26 November 2023 appeared first on IT Governance UK Blog. Breached records: more than 56 million. In the meantime, if you missed it, check out last week’s round-up.

Data Privacy

Data Privacy Privacy Energy and Utilities Data breaches

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

Security Affairs

FEBRUARY 27, 2024

“On February 21, 2024, UnitedHealth Group (the “Company”) identified a suspected nation-state associated cyber security threat actor had gained access to some of the Change Healthcare information technology systems. In response to the security breach, the company disconnected Change Healthcare’s systems to contain the threat.

Ransomware

Ransomware Government Insurance Manufacturing

Avaddon ransomware gang shuts down their operations and releases decryption keys

Security Affairs

JUNE 11, 2021

BleepingComputer shared the decryption keys with the security firm Emsisoft, which has released in the past free decryptors for multiple pieces of ransomware. — Fabian Wosar (@fwosar) June 11, 2021. The security company already develop a free decryptor for the victims of the Avaddon ransomware. Do not pay.

Ransomware

Ransomware Passwords Manufacturing Archiving

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Communications

Communications Manufacturing Education Government

China-linked Budworm APT returns to target a US entity

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

File names

File names Financial Services Manufacturing Libraries

MITRE and CISA publish the 2021 list of most common hardware weaknesses

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Webinars

Trending Sources

Ranzy Locker ransomware hit tens of US companies in 2021

Webinars

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Raspberry Robin malware used in attacks against Telecom and Governments

US indicted 4 Russian government employees for attacks on critical infrastructure

Catches of the month: Phishing scams for July 2021

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

US offers $10 million reward for info on Hive ransomware group leaders

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Securing the Identities of Connected Cars

Raspberry Robin malware used in attacks against Telecom and Governments

3.5m IP cameras exposed, with US in the lead

Security Affairs newsletter Round 303

List of Data Breaches and Cyber Attacks in March 2021 – 21 Million Records Breached

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Witchetty APT used steganography in attacks against Middle East entities

Holy Ghost ransomware operation is linked to North Korea

Operation Blacksmith: Lazarus exploits Log4j flaws to deploy DLang malware

Sandboxing: Advanced Malware Analysis in 2021

French authorities arrested a Russian national for his role in the Hive ransomware operation

The German BSI agency recommends replacing Kaspersky antivirus software

US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

China-linked Flax Typhoon APT targets Taiwan

NHTSA Publishes Final Cybersecurity Best Practices

Hive Ransomware Tor leak site apparently seized by law enforcement

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Top GRC Tools & Software for 2021

FBI chief says China is preparing to attack US critical infrastructure

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Key Developments in IoT Security

A component in Huawei network appliances could be used to take down Germany’s telecoms networks

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Cuba Ransomware received over $60M in Ransom payments as of August 2022

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

Avaddon ransomware gang shuts down their operations and releases decryption keys

China-linked APT Volt Typhoon linked to KV-Botnet

China-linked Budworm APT returns to target a US entity

Stay Connected