2014, Analysis, Data, Government and Security - Information Management Today

IT Governance Podcast 08.09.23: Electoral Commission (again), Meta, Pôle emploi

IT Governance

SEPTEMBER 7, 2023

This week, we discuss security issues at the Electoral Commission, Meta’s appeal against daily GDPR fines, and a breach affecting 10 million users of the French unemployment agency Pôle emploi. Transcript: Hello and welcome to the IT Governance podcast for Friday, 8 September 2023.

Government

Government IT Personal data GDPR

Dark Overlord hacking crew publishes first batch of confidential 9/11 files

Security Affairs

JANUARY 6, 2019

The Dark Overlord published the first batch of decryption keys for 650 confidential documents related to the 9/11 terrorist attacks. In April 2018, Hiscox acknowledged the data breach and confirmed that the hacked server “may have included information relating to up to 1,500 of Hiscox’s US-based commercial insurance policyholders.”.

Insurance

Insurance Data breaches Sales Government

Australian Privacy Regulator Sues in Data Breach Case

Hunton Privacy

NOVEMBER 15, 2023

Patrick Gunning from King & Wood Mallesons reports that, on November 2, 2023, the Australian Information Commissioner filed proceedings in the Federal Court of Australia against Australian Clinical Labs Limited seeking a civil penalty ( i.e. , a fine) in connection with the company’s response to a data breach that occurred in February 2022.

Data breaches

Data breaches Privacy Risk Information Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Data leak exposes sensitive data of all Ecuador ‘citizens

Security Affairs

SEPTEMBER 16, 2019

Experts discovered a huge data leak affecting Ecuador, maybe the largest full-country leak, that exposed data belonging to 20 million Ecuadorian Citizens. Security experts at vpnMentor have discovered a huge data leak affecting Ecuador that exposed data belonging to 20 million Ecuadorian Citizens.

Data breaches

Data breaches Education Government Security

FBI warns US organizations of ProLock ransomware decryptor not working

Security Affairs

MAY 18, 2020

issued a flash alert to warn organizations of the new threat actor targeting healthcare, government, financial, and retail industries in the US. Feds warned that the decryptor for the ProLock is not correctly working and using it could definitively destroy the data. ” reads the analysis published by Krebs.

Ransomware

Ransomware Retail Access Security

Former NSA TAO hacker sentenced to 66 months in prison over Kaspersky Leak

Security Affairs

SEPTEMBER 26, 2018

Former NSA TAO hacker was sentenced to 66 months in prison because he leaked top-secret online documents related to the US government ban on Kaspersky. The tools were detected by the Kaspersky Lab software installed on the NSA hacker’s personal computer and were sent back to Kaspersky’s server for further analysis. Equestre.*”.

Archiving

Archiving Government Access Cloud

New FinFisher spyware used to spy on iOS and Android users in 20 countries

Security Affairs

JULY 11, 2019

According to the experts, the new versions have been active at least since 2018, one of the samples analyzed by Kaspersky was used last month in Myanmar, where local government is accused of violating human rights. This is very important if we consider that iOS 11 is the first iOS OS version that does not support ARMv7 any more.

Communications

Communications Government Access IT

Is Emotet gang targeting companies with external SOC?

Security Affairs

OCTOBER 14, 2019

Today I’d like to share a quick analysis resulted by a very interesting email which claimed to deliver a SOC “weekly report” on the victim email. doc ( 6125489453c1824da3e28a54708e7c77875e500dd82a59c96c1d1e5ee88dcad7 ) is the delivered file sent on Oct 11, 2019, 11:06:09 PM from grecia@ambientehomedecor.com. Conclusion.

Computer and Electronics

Computer and Electronics Security Encryption IT

Fractured Block Campaign: CARROTBAT dropper dupports a dozen decoy document formats

Security Affairs

DECEMBER 5, 2018

Security experts from Palo Alto Networks have discovered a malware dropper, dubbed CARROTBAT, that could support a dozen decoy document file formats to drop many payloads. ” reads the analysis published by Palo Alto Networks. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government Security IT

Using Microsoft Powerpoint as Malware Dropper

Security Affairs

NOVEMBER 16, 2018

Marco Ramilli, founder and CEO at cyber security firm Yoroi has explained how to use Microsoft Powerpoint as Malware Dropper. The downloaded PE Executable is a.NET file created by ExtendedScript Toolkit (according to compilation time) on 2018-11-13 15:21:54 and submitted a few hours later on VirusTotal. Stage 3: NET file.

Computer and Electronics

Computer and Electronics File names Security IT

Trojan Lampion is back after 3 months

Security Affairs

MAY 12, 2020

Trojan Lampion is a malware observed at the end of the year 2019 impacting Portuguese users using template emails from the Portuguese Government Finance & Tax and EDP. Figure 4: Malicious MSI file downloaded from AWS S3 bucket and using COVID-19 theme that impersonates the Portuguese Government. Lampion email templates – May 2020.

Cloud

Cloud Government Access Phishing

Russia-linked Sofacy APT developed a new ‘Go’ variant of Zebrocy tool

Security Affairs

DECEMBER 19, 2018

The Sofacy APT group has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. ” reads the analysis published by Palo alto Networks. The first attack observed by the experts that involved the Go variant of Zebrocywas spotted on October 11.

Military

Military Data collection Phishing Government

Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

Security Affairs

FEBRUARY 21, 2020

So, Cybaze-Yoroi ZLab team decided to dive deep into technical analysis. Technical Analysis. The money is kept by the government and in return, a “non-permanent” profit officially titled as “interest” is given back to the officers at the end of each year. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Military

Military Communications Encryption IT

A new trojan Lampion targets Portugal

Security Affairs

DECEMBER 29, 2019

New trojan called ‘Lampion’ has spread using template emails from the Portuguese Government Finance & Tax during the last days of 2019. Last days of 2019 were the perfect time to spread phishing campaigns using email templates based on the Portuguese Government Finance & Tax. Technical Analysis. ChePro family.

Passwords

Passwords e-Discovery IT Cleanup

The Evolution of Aggah: From Roma225 to the RG Campaign

Security Affairs

AUGUST 6, 2019

The attack attribution is still unclear but the large scale of the malicious activities has also been confirmed by Unit42, who reported attack attempt against government verticals too. . Technical Analysis. Figure 11: Comparison among RevengeRAT belonging to different campaigns. The “ Edited Registry Keys ” section reports them.

Libraries

Libraries IT Education Security

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia. All threats use at least one obfuscation method to make the analysis harder. Technical Analysis. Figure 11: CMSTP Bypass evidence.

Manufacturing

Manufacturing e-Delivery IT Security

CIA Hacking unit APT-C-39 hit China since 2008

Security Affairs

MARCH 4, 2020

Chinese security firm Qihoo 360 revealed that the US CIA has hacked Chinese organizations in various sectors for the last 11 years. Chinese security firm Qihoo 360 is accusing that the US Central Intelligence Agency (CIA) of having hacked Chinese organizations for the last 11 years.

Military

Military Government Security IT

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

ForAllSecure

AUGUST 12, 2019

Open Source Security Podcast helps listeners better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers, the pair covers a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. Transcript. Today I'm super excited.

Security

Security IT Marketing IoT

The ‘MartyMcFly’ investigation: Italian naval industry under attack

Security Affairs

NOVEMBER 14, 2018

Experts at Yoroi’s Cyber Security Defence Center along with Fincantieri’s security team investigated the recently discovered Martymcfly malware attacks. Analysis ) where unknown attackers were targeting Italian naval industries. Whois data of “anchors-chain.com”. Background. Malicious Email. anchors-chain.com.

Computer and Electronics

Computer and Electronics Phishing Security Encryption

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

ARMA International

SEPTEMBER 27, 2021

Some technology trends such as real-time data analytics are ongoing, while others are more recent, such as blockchain. Srivastav 2014, p 18). Take the example of the pandemic: only some governments engaged pandemic experts to develop actions plans. Risk Management and DT Experience. Uncertainty and risk are not the same.

Digital transformation

Digital transformation Risk IT Computer and Electronics

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

ForAllSecure

AUGUST 12, 2019

Open Source Security Podcast helps listeners better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers, the pair covers a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. Transcript. Today I'm super excited.

Security

Security IT Marketing IoT

OPEN SOURCE SECURITY PODCAST EP. 151-- THE DARPA CYBER GRAND CHALLENGE WITH DAVID BRUMLEY

ForAllSecure

AUGUST 12, 2019

Open Source Security Podcast helps listeners better understand security topics of the day. Hosted by Kurt Seifried and Josh Bressers, the pair covers a wide range of topics including IoT, application security, operational security, cloud, devops, and security news of the day. Transcript. Today I'm super excited.

Security

Security IT Marketing IoT

10 Personal Finance Lessons for Technology Professionals

Troy Hunt

DECEMBER 30, 2018

She left a very successful corporate role in late 2014 and very shortly after, my own corporate job was made redundant. I've had many occasions in the past where I've literally sat down and written all my analysis in C# because I understood the code better than the finances! Tax is also where professional help is really important.

Education

Education Marketing IT Insurance

[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users

Security Affairs

MARCH 6, 2019

Jcry is a recent ransomware written in Go which increases its analysis. Criminals have been concerned about protecting their code, however the UPX packer can be easily overcome by allowing a more efficient threat analysis. The attacks happen one month before the common data of the campaign. An Israeli website nagish[.]co[.]il

Ransomware

Ransomware Encryption Archiving Access

[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users

Security Affairs

MARCH 6, 2019

Jcry is a recent ransomware written in Go which increases its analysis. Criminals have been concerned about protecting their code, however the UPX packer can be easily overcome by allowing a more efficient threat analysis. The attacks happen one month before the common data of the campaign. An Israeli website nagish[.]co[.]il

Ransomware

Ransomware Encryption Archiving Access

Information Management Today

IT Governance Podcast 08.09.23: Electoral Commission (again), Meta, Pôle emploi

Dark Overlord hacking crew publishes first batch of confidential 9/11 files

Webinars

Trending Sources

Australian Privacy Regulator Sues in Data Breach Case

Webinars

Data leak exposes sensitive data of all Ecuador ‘citizens

FBI warns US organizations of ProLock ransomware decryptor not working

Former NSA TAO hacker sentenced to 66 months in prison over Kaspersky Leak

New FinFisher spyware used to spy on iOS and Android users in 20 countries

Is Emotet gang targeting companies with external SOC?

Fractured Block Campaign: CARROTBAT dropper dupports a dozen decoy document formats

Using Microsoft Powerpoint as Malware Dropper

Trojan Lampion is back after 3 months

Russia-linked Sofacy APT developed a new ‘Go’ variant of Zebrocy tool

Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

A new trojan Lampion targets Portugal

The Evolution of Aggah: From Roma225 to the RG Campaign

Cyber-Criminal espionage Operation insists on Italian Manufacturing

CIA Hacking unit APT-C-39 hit China since 2008

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

The ‘MartyMcFly’ investigation: Italian naval industry under attack

Part 3: OMG! Not another digital transformation article! Is it about effecting risk management and change management?

Open Source Security Podcast EP. 151 - The DARPA Cyber Grand Challenge With David Brumley

OPEN SOURCE SECURITY PODCAST EP. 151-- THE DARPA CYBER GRAND CHALLENGE WITH DAVID BRUMLEY

10 Personal Finance Lessons for Technology Professionals

[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users

[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users

Stay Connected