Security Affairs

FEBRUARY 25, 2022

In mid-January, the government of Kyiv attributed the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151. In November 2021, Mandiant Threat Intelligence researchers linked the Ghostwriter disinformation campaign (aka UNC1151) to the government of Belarus. reads a translation of the message.

Military 109

Military Phishing CMS Government 109

Schneier on Security

DECEMBER 21, 2023

They’re linked to the Russian military, so it’s unclear whether the attack was government directed or freelance. This is one of the most significant cyberattacks since Russia invaded in February 2022. The Solntsepek group has taken credit for the attack.

Military 96

Military Government IT 96

Security Affairs

FEBRUARY 15, 2022

“Starting from the afternoon of February 15, 2022, there is a powerful DDOS attack on a number of information resources of Ukraine. — Defence of Ukraine (@DefenceU) February 15, 2022. Threat actors aim at destabilizing the social contest in the country and instilling fear and untrust in the country’s government.

Military 90

Military Communications Information Security Access 90

Security Affairs

MARCH 17, 2022

The collective Anonymous and its affiliated groups continue to target the Russian government and private organizations. The collective Anonymous, and other groups in its ecosystem, continue to target the Russian government and private organizations. link] — Anonymous (@YourAnonNews) March 15, 2022.

Military 143

Military Communications Government Access 143

Security Affairs

DECEMBER 22, 2022

The Government of Pyongyang focuses on crypto hacking to fund its military program following harsh U.N. According to local media, US federal prosecutors believe that North Korea’s government considers cryptocurrency a long-term investment and it is amassing crypto funds through illegal activities. ” reported the AP agency.

Military 128

Military Government Ransomware Security 128

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. According to Unit 42, APT28 started exploiting the above vulnerability in March 2022. ” reads the report published by the company.

Military 111

Military Government Phishing Authentication 111

IT Governance

DECEMBER 20, 2022

2022 will go down as the year where some semblance of normality returned. In total, we have so far reported more than 1,000 data breaches in 2022, with almost half a billion breached records. Google , Clearview AI , and Meta all receives hefty penalties in 2022, demonstrating the continued important of effective information security.

Security 132

Security Data breaches Ransomware Military 132

Security Affairs

FEBRUARY 15, 2024

“A January 2024 court-authorized operation has neutralized a network of hundreds of small office/home office (SOHO) routers that GRU Military Unit 26165 , also known as APT28, Sofacy Group , Forest Blizzard , Pawn Storm , Fancy Bear , and Sednit , used to conceal and otherwise enable a variety of crimes.”

Military 103

Military Government Access Cybersecurity 103

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report.

Energy and Utilities 99

Energy and Utilities Military Government Phishing 99

Security Affairs

MAY 18, 2022

The Conti ransomware gang is threatening to ‘overthrow’ the new government of Costa Rica after last month’s attack. Last month, the Conti ransomware gang claimed responsibility for the attack on Costa Rica government infrastructure after that the government refused to pay a ransom. ” reads the message.

Ransomware 110

Ransomware Government Military Encryption 110

Security Affairs

JANUARY 29, 2024

The hacktivists group is known for having launched DDoS attacks against Western organizations and Ukrainian government agencies. The information secretly provided to Moscow includes military secrets such as the locations of Ukrainian troops and military weaponry in the country. The news was first reported by The Record Media.

Military 113

Military Communications Government Security 113

Security Affairs

MARCH 9, 2022

government. government. Update on recent batch of Google TAG Government Backed Attack Warnings: In February, we detected an APT31 phishing campaign targeting high profile Gmail users affiliated with the U.S. government. — Shane Huntley (@ShaneHuntley) March 8, 2022. Pierluigi Paganini.

Government 92

Government Phishing Military IT 92

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Ransomware 245

Ransomware Government Military Access 245

Security Affairs

MAY 14, 2022

Our Legion conducts military cyber exercises in your countries in order to improve their skills. ” The list of the targeted websites was shared on the Telegram channel of the Pro-Russian hacker collective known as The Legion which focuses on attacks against Western organizations and governments, including NATO countries and the Ukraine.

Government 106

Government Military Cybersecurity Data breaches 106

Preservica

DECEMBER 29, 2022

From academic institutions and government agencies to corporate businesses and the health sector, 2022 was full of world events that will shape our history forever. The new Charter incorporates 7 Sustainability Principles around data, software, operations, knowledge, finance, governance, and environmental impact.

Digital preservation 75

Digital preservation Archiving Records Management e-Discovery 75

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. The sanctioned entities conducted operations to steal funds to support the military strategy of the regime.

Government 83

Government Military Financial Services IT 83

IT Governance

MARCH 1, 2022

First, Russia targeted banks and government departments, then Ukraine hit back, attacking the Moscow stock exchange. Meanwhile, you can find the full list of cyber attacks and data breaches for February 2022 below. If you find yourself facing a cyber security disaster, IT Governance is here to help. Cyber attacks. Ransomware.

Data breaches 134

Data breaches Ransomware Government Blockchain 134

Security Affairs

FEBRUARY 6, 2024

Dutch Military Intelligence and Security Service (MIVD) and the General Intelligence and Security Service (AIVD) published a joint report warning that a China-linked APT group breached the Dutch Ministry of Defence last year. ” The attack chain starts with the exploitation of the CVE-2022-42475 vulnerability for FortiGate devices.

Military 110

Military Government IT Security 110

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. In Mid January the Ukrainian government was hit with destructive malware, tracked as WhisperGate , and several Ukrainian government websites were defaced by exploiting a separate vulnerability in OctoberCMS.

Government 84

Government Military Phishing Information Security 84

IT Governance

NOVEMBER 1, 2022

Welcome to our October 2022 review of data breaches and cyber attacks. If you’re facing a cyber security disaster, IT Governance is here to help. We identified 102 security incidents throughout the month, which is the second largest figure so far this year – trailing only August (112). Cyber attacks.

Data breaches 111

Data breaches Ransomware Insurance Phishing 111

Security Affairs

APRIL 4, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added a Zimbra flaw, tracked as CVE-2022-27926 , to its Known Exploited Vulnerabilities Catalog. The CVE-2022-27926 flaw affects Zimbra Collaboration version 9.0.0, The threat actors created bespoke JavaScript payloads designed for each government targets’ webmail portal.

IT 93

IT Military Phishing Passwords 93

The Last Watchdog

NOVEMBER 14, 2023

Related: How ‘Internet Access Brokers’ fuel ransomware I happened to be in the audience at Stanford University when President Obama took to the stage to issue an executive order challenging the corporate sector and federal government to start collaborating as true allies. This strengthens the overall Windows ecosystem, Budd noted.

Ransomware 260

Ransomware Military Government Security 260

Security Affairs

FEBRUARY 9, 2024

In December 2023, Fortinet urged its customers to update their installs to address an actively exploited FortiOS SSL-VPN vulnerability, tracked as CVE-2022-42475, that could be exploited by an unauthenticated, remote attacker to execute arbitrary code on devices. The malware survives reboots and firmware upgrades.

Military 105

Military Government Security IT 105

Security Affairs

JANUARY 8, 2023

Polish authorities charged Russian and Belarusian individuals with spying for the Russian military intelligence service (GRU). Polish authorities charged Russian and Belarusian individuals, who were arrested in April, with spying for the Russian military intelligence service (GRU) from 2017 to April 2022.

Military 80

Military Ransomware Government Security 80

Security Affairs

MARCH 31, 2023

A Russian hacking group, tracked Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats. The CVE-2022-27926 flaw affects Zimbra Collaboration versions 9.0.0,

Military 89

Military Phishing Passwords Government 89

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The botnet is comprised of two complementary activity clusters, the experts believe it has been active since at least February 2022.

Energy and Utilities 100

Energy and Utilities Communications Military Manufacturing 100

Security Affairs

MARCH 7, 2022

#TangoDown #OpRussia pic.twitter.com/2V8opv7Dg9 — Anonymous TV (@YourAnonTV) March 6, 2022. pic.twitter.com/fCZaYpQjYP — Anonymous TV (@YourAnonTV) March 6, 2022. The collective remarked that it wants peace and wants only to hit Putin and not Russian citizens, it wants to stop the military invasion of Ukraine.

Military 98

Military Access Government IT 98

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems.

Military 107

Military Government Phishing Access 107

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics 86

Computer and Electronics Military Manufacturing Government 86

Security Affairs

JUNE 15, 2023

The Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive Bear, UAC-0010, and Trident Ursa) continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. ” reads the report published by Symantec.

Military 85

Military File names Archiving Phishing 85

Security Affairs

APRIL 5, 2022

The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement. The messages use the HTML-file “War criminals of the Russian Federation.htm” as attachment.

Military 117

Military Phishing File names Archiving 117

The Last Watchdog

JULY 5, 2022

At any point the external environment can throw a curve ball – new government regulations, changes in political and social dynamics, or trends in sustainability to name a few. In our recent report Intelligent Business: 2022 Strategic Intelligence Report we asked 205 creators and consumers of intelligence within large organizations (i.e.

Risk 279

Risk Military Marketing Data Privacy 279

Security Affairs

MARCH 5, 2022

Anonymous announced to have hacked more than 2,500 websites linked to the Russian and Belarusian governments, state-owned media outlets spreading disinformation, Russian private organizations, banks, hospitals, airports. FckPutin #FreeUkraine pic.twitter.com/NJZiLx5c0d — Anonymous TV (@YourAnonTV) March 3, 2022.

Passwords 144

Passwords Government Military Authentication 144

Security Affairs

AUGUST 29, 2023

The intruders China-linked hackers may have gained access to sensitive data, according to three government and private sector sources familiar with the situation, reported the Financial Times. The intrusion began in the autumn of 2022 and was discovered in June. ” reported the Financial Times.

Cybersecurity 94

Cybersecurity Military Personal data Government 94

The Security Ledger

DECEMBER 6, 2023

Related Stories FBI: Iranian APT Targets Israeli-Made PLCs Used In Critical Industries BitCoins To Bombs: North Korea Funds Military With Billions In Stolen Cryptocurrency Cyberattacks on Industrial Control Systems Jumped in 2022

Military 64

Military Cybersecurity Security Government 64

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. On September 2022, the Sandworm group was observed impersonating telecommunication providers to target Ukrainian entities with malware.

Phishing 89

Phishing Military Ransomware Education 89

Security Affairs

OCTOBER 27, 2023

The French National Agency for the Security of Information Systems ANSSI (Agence Nationale de la sécurité des systèmes d’information) warns that the Russia-linked APT28 group has been targeting multiple French organizations, including government entities, businesses, universities, and research institutes and think tanks.

Military 111

Military Phishing Government Security 111