Security Affairs

JULY 14, 2021

LuminousMoth: Kaspersky uncovered an ongoing and large-scale APT campaign that targeted government entities in Southeast Asia, including Myanmar and the Philippines. The Dropbox link leads to a RAR archive that masquerades as a Word document by setting the “file_subpath” parameter to point to a filename with a.DOCX extension.

Archiving 98

Archiving File names Government Libraries 98

Security Affairs

MAY 26, 2023

Researchers from the Fortinet FortiGuard Labs observed an attack targeting a government entity in the United Arab Emirates with a new PowerShell-based backdoor dubbed PowerExchange. The backdoor uses emails for C2 communications, where the C2 is the victim’s Microsoft Exchange server. ” reads the analysis published by Fortinet.

Communications 89

Communications File names Archiving Phishing 89

Security Affairs

JUNE 7, 2021

Ukraine warned of a “massive” spear-phishing campaign carried out by Russia-linked threat actors against its government and private businesses. This is the third massive spear-phishing campaign that the Ukrainian government attributed to Russia-linked threat actors this year. Details in the application… ».

Phishing 93

Phishing Archiving Government Passwords 93

Security Affairs

MAY 25, 2023

According to Microsoft, the campaign aims at building capabilities that could disrupt critical communications infrastructure between the United States and Asia region in the case of future crises. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

Communications 77

Communications Manufacturing Access Archiving 77

Security Affairs

JUNE 29, 2022

Zimbra is an enterprise-ready email solution used by over 200,000 businesses, government and financial institutions. “ “An attacker is able to create files outside of the target extraction directory when an application or victim user extracts an untrusted archive. .” ” continues the report. .

Archiving 93

Archiving Authentication Communications Security 93

IBM Big Data Hub

MAY 28, 2024

Together, these comprehensive approaches not only deter threat actors but also standardize the management of sensitive data and corporate information security and limit any business operations lost to downtime. The phases of DLM include data creation, data storage, data sharing and usage, data archiving, and data deletion.

Data breaches 82

Data breaches GDPR Compliance Encryption 82

Security Affairs

MAY 23, 2023

In October 2022, Kaspersky researchers uncovered a malware campaign aimed at infecting government, agriculture and transportation organizations located in the Donetsk, Lugansk, and Crimea regions with a previously undetected framework dubbed CommonMagic. The archive contained two files, a decoy document (i.e.

Communications 79

Communications Agriculture Cloud Archiving 79

Security Affairs

FEBRUARY 23, 2022

The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. The name “ Bvp47 ” comes form numerous references to the string “Bvp” and the numerical value “0x47” used in the encryption algorithm.

Encryption 115

Encryption Military Archiving Government 115

Security Affairs

APRIL 20, 2022

The researchers pointed out that each variant will communicate with a different command-and-control (C&C) server. The attackers are using multiple different payloads to establish persistence on the infected systems and to be resilient to takedown operations conducted by security firms and government experts.

Archiving 113

Archiving Phishing Communications Cybersecurity 113

Krebs on Security

MARCH 1, 2022

The records also provide insight into how Conti has dealt with its own internal breaches and attacks from private security firms and foreign governments. Conti makes international news headlines each week when it publishes to its dark web blog new information stolen from ransomware victims who refuse to pay an extortion demand. .”

Ransomware 276

Ransomware Government Security IT 276

Security Affairs

MARCH 13, 2020

The Turla APT group (aka Snake , Uroburos , Waterbug , Venomous Bear and KRYPTON ) has been active since at least 2007 targeting diplomatic and government organizations and private businesses in the Middle East, Asia, Europe, North and South America, and former Soviet bloc nations. ” reads the analysis published by ESET.

Archiving 121

Archiving Government Communications IT 121

Security Affairs

MAY 10, 2023

A new sophisticated malware strain, dubbed DownEx, was involved in attacks aimed at Government organizations in Central Asia. In late 2022, Bitdefender Labs researchers first observed a highly targeted cyberattack targeting foreign government institutions in Kazakhstan that involved a new sophisticated strain of malware dubbed DownEx.

File names 90

File names Archiving Phishing Government 90

Security Affairs

AUGUST 9, 2022

The attack targeted industrial plants, design bureaus and research institutes, government agencies, ministries and departments in several East European countries (Belarus, Russia, and Ukraine), as well as Afghanistan.” Once gained control of a target’s IT infrastructure, threat actors started stealing sensitive information.

Encryption 99

Encryption Military Archiving Phishing 99

Hunton Privacy

JULY 17, 2015

On July 14, 2015, pursuant to an implementation requirement of Government Regulation 82 of 2012, the Indonesian government published the Draft Regulation of the Minister of Communication and Information (RPM) of the Protection of Personal Data in Electronic Systems (“Proposed Regulation”). 82 of 2012.

Personal data 40

Personal data Archiving Financial Services Communications 40

Schneier on Security

JUNE 6, 2023

He had been working on the Edward Snowden archive for a couple of months, and had a pile of more technical documents that he wanted help interpreting. Neither were any of the algorithm names I knew, not even algorithms I knew that the US government used. I tried to talk to Greenwald about his own operational security.

Computer and Electronics 121

Computer and Electronics Encryption Government Privacy 121

Security Affairs

NOVEMBER 9, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The backdoor deploys an SFX archive containing a Windows task installation script. ” reads the analysis publisjed by Kaspersky.

IT 47

IT Archiving Encryption Passwords 47

Security Affairs

FEBRUARY 21, 2020

The money is kept by the government and in return, a “non-permanent” profit officially titled as “interest” is given back to the officers at the end of each year. Analyzing these files, we have a vbs script, a C# script and a zip file, inside this archive we found 4 PE artifacts: Figure 5: Content of the “systemidleperf.zip” file.

Military 114

Military Communications Encryption IT 114

IG Guru

OCTOBER 30, 2019

Five years ago, a CBS 60 Minutes report publicized a bit of technology trivia many in the defense community were aware of: the fact that eight-inch floppy disks were still used to store data critical to operating the Air Force's intercontinental ballistic missile command, control, and communications network.

Communications 40

Communications Archiving Information governance Risk 40

Information is Currency

NOVEMBER 8, 2018

It next defines the disciplines that an information professional can work in as one of the following categories: archiving, compliance, information leadership/strategy, information management, information technology (IT), legal, privacy, records management and security. Information Lifecycle.

Records Management 40

Records Management Risk Paper Archiving 40

ForAllSecure

JULY 28, 2021

If the problem is that there's a government that's holding us back, we'll figure out a way around it. That was the security of the area that everyone was in no street lamps meant that thugs were running around. The Shoulders of InfoSec Project seeks to chronicle leaders in the community. It's an amazing archive to have.

Computer and Electronics 52

Computer and Electronics Communications Education IT 52

Security Affairs

APRIL 18, 2020

Threat actors employed the previously-undetected PoetRAT Trojan in a Coronavirus-themed campaign aimed at government and energy sectors. . docx,” they claim to be from departments from the Azerbaijan government and India’s Ministry of Defense. . ” reads the analysis published by Cisco Talos.

Energy and Utilities 106

Energy and Utilities Archiving Phishing Government 106

Security Affairs

FEBRUARY 7, 2023

The Russian government illegally monitors citizens and private organizations across Russia. Exposed data put Russian organizations, whose data are included in the archive, at risk of hacking. The huge trove of data was leased by an affiliate of Anonymous’s affiliate group called Caxxii. continues the group.

Government 92

Government Archiving Communications Security 92

ARMA International

DECEMBER 31, 2019

This year, ARMA International released the Informational Governance Implementation Model (IGIM), beta version. There are, of course, other information governance (IG) models available to the community, each looking at IG through a different lens. PDF/a for archiving or locked/uneditable finalized records)?

Information governance 118

Information governance Government Information architecture Metadata 118

ARMA International

NOVEMBER 7, 2019

Over the years, the regulations reflected the conflicting forces of centralized government control to maintain stability in the financial system vs. the fear of too much control being concentrated in too few hands, which resulted in deregulation. financial system continues to evolve in response to changing regulations.

Financial Services 52

Financial Services Communications Compliance Risk 52

IT Governance

MARCH 11, 2024

Other news ISO/IEC 27006:2024 published ISO (the International Organization for Standardization) and the IEC (International electrotechnical Commission) have published a new standard in the ISO 27000 information security series. Alternatively, you can view our full archive.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

Thales Cloud Protection & Licensing

SEPTEMBER 26, 2019

The UK government is promoting the MIKEY-SAKKE protocol [16] that implements an identity-based protocol proposed by SAKAI and KASAHARA in 2003. Companies and governments can host their own PKGs to issue private keys for their departments and employees to secure their work-related communications and intellectual properties.

e-Delivery 91

e-Delivery Encryption Authentication Government 91

ForAllSecure

FEBRUARY 22, 2023

WIENS: Yeah, so So Vector 35 grew out of a number of folks that were playing CTFs that were doing vulnerability research doing reverse engineering for government contracting purposes and then thought like, you know what, it'd be nice to see sunshine, have a window at her office, get outside, do more Hilton commercial.

IT 40

IT Marketing Access Government 40

eSecurity Planet

APRIL 13, 2022

Hiring, training, and retaining the staff needed to effectively run an information security program can be a challenge for any size business given the cybersecurity talent shortage. This increase in vendors leads to excess complexity – and often reduced information security. Cybersecurity Talent Shortage.

Compliance 125

Compliance Cloud Encryption Risk 125

JKevinParker

JUNE 25, 2011

I will be interfacing directly with a federal government agency, helping them create a new robust SharePoint 2010 environment and migrating content from thousands of SharePoint 2007/2003 sites to this new environment. It's about Enterprise Information Architecture and Enterprise Content and Records Management. Information Strategy.

Information architecture 49

Information architecture ECM Records Management Communications 49

Archives Blogs

APRIL 12, 2019

Government records to Argentine Minister of Justice and Human Rights, the Honorable Germán Carlos Garavano. Declassification Project for Argentina, the largest government-to-government declassification release in United States history. documents from 16 Executive Branch agencies were provided to the Government of Argentina.

Archiving 37

Archiving Libraries Government Access 37