Blog, Education, Groups and Security - Information Management Today

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Communications

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

The ransomware group added the company to the list of victims on its Tor leak site, it claims to have stolen the source code from the company, including a framework to develop bios, and private keys. MSI is headquartered in Taipei, Taiwan.

Ransomware

Ransomware IT Manufacturing Education

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

Microsoft fixed the issue with the release of Patch Tuesday security updates for April 2023. The experts pointed out that while the majority of zero-days they have discovered in the past were used by APT groups, this zero-day was exploited by a sophisticated cybercrime group. ” reads the analysis published by Kaspersky.

Ransomware

Ransomware Education Cybersecurity Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG). The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017.

Phishing

Phishing Military Ransomware Education

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

At least a dozen patriotic Russian hacking groups have been launching DDoS attacks since the start of the war at a variety of targets seen as opposed to Moscow. But by all accounts, few attacks from those gangs have come close to the amount of firepower wielded by a pro-Russia group calling itself “ NoName057(16).”

Cloud

Cloud Education Government Phishing

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Security Affairs

APRIL 26, 2023

Pro-Russia hacking group Zarya caused a cybersecurity incident at a Canadian gas pipeline, the critical infrastructure sector is on alert. A Canadian gas pipeline suffered a cyber security incident, Canada’s top cyber official and Pro-Russia hacking group Zarya claimed the attack could have caused an explosion.

Cybersecurity

Cybersecurity Education Authentication Security

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) warns of a North Korea-linked cyberespionage group tracked as ARCHIPELAGO. Google experts are tracking ARCHIPELAGO since 2012 and have observed the group targeting individuals with expertise in North Korea policy issues. ” reads the analysis published by Google TAG.

Phishing

Phishing Passwords Military Education

PWNYOURHOME, FINDMYPWN, LATENTIMAGE: 3 iOS Zero-Click exploits used by NSO Group in 2022

Security Affairs

APRIL 18, 2023

Citizen Lab reported that Israeli surveillance firm NSO Group used at least three iOS zero-click exploits in 2022. A new report from Citizen Lab states that the Israeli surveillance firm NSO Group used at least three zero-click zero-day exploits to deliver its Pegasus spyware. ” reads the report. ” reads the report.

Military

Military Risk Education Security

China-linked APT41 group spotted using open-source red teaming tool GC2

Security Affairs

APRIL 17, 2023

China-linked APT41 group used the open-source red teaming tool GC2 in an attack against a Taiwanese media organization. Google Threat Analysis Group (TAG) team reported that the China-linked APT41 group used the open-source red teaming tool Google Command and Control ( GC2 ) in an attack against an unnamed Taiwanese media organization.

Phishing

Phishing Cloud Government Education

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

Keyboard app vulnerabilities reveal keystrokes to network eavesdroppers Security researchers have identified critical security vulnerabilities in Cloud-based pinyin keyboard apps from Baidu, Inc., The company has fixed the issue, blaming it on a vulnerability in the app’s groups feature. Data breached: 4,186,879,104 messages.

Data Privacy

Data Privacy Privacy Manufacturing Security

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Security Affairs

APRIL 24, 2023

The company received two vulnerability reports from the cybersecurity firm Trend Micro ) for high/critical severity security issues in PaperCut MF/NG. Cybersecurity and Infrastructure Security Agency (CISA) added it to its Known Exploited Vulnerabilities Catalog. ” reads the advisory published by PaperCut. Last week, the U.S.

Cybersecurity

Cybersecurity Ransomware Education Authentication

The intricate relationships between the FIN7 group and members of the Conti ransomware gang

Security Affairs

APRIL 18, 2023

A new malware, dubbed Domino, developed by the FIN7 cybercrime group has been used by the now-defunct Conti ransomware gang. IBM Security X-Force researchers recently discovered a new malware family, called Domino, which was created by developers associated with the FIN7 cybercriminal group (tracked by X-Force as ITG14).

Ransomware

Ransomware Education Security Cybersecurity

Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack

Security Affairs

APRIL 20, 2023

North Korea-linked APT group Lazarus employed new Linux malware in attacks that are part of Operation Dream Job. North Korea-linked APT group Lazarus is behind a new campaign tracked as Operation DreamJob (aka DeathNote or NukeSped ) that employed Linux malware.

Archiving

Archiving Education Phishing Cybersecurity

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

Multinational IT corporation MSI (Micro-Star International) confirms security breach after Money Message ransomware gang claimed the hack. The ransomware group added the company to the list of victims on its Tor leak site, it claims to have stolen the source code from the company, including a framework to develop bios, and private keys.

Ransomware

Ransomware Security Manufacturing Cybersecurity

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

IT Governance

JANUARY 3, 2024

We’ll also soon publish our 2023 review of publicly disclosed incidents and records known to be breached across the year, as well as our quarterly report, so keep an eye on our blog. billion records The security researcher Jeremiah Fowler discovered an unprotected database exposing more than 1.5 Data breached: >151,000,000 records.

Data Privacy

Data Privacy Insurance Manufacturing Retail

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Security Affairs

JANUARY 26, 2023

National Cyber Security Centre (NCSC) warns of a surge in the number of attacks from Russian and Iranian nation-state actors. National Cyber Security Centre (NCSC) is warning of targeted phishing attacks conducted by threat actors based in Russia and Iran. The are increasingly targeting organizations and individuals.

Phishing

Phishing Education Authentication Passwords

Western Digital took its services offline due to a security breach

Security Affairs

APRIL 3, 2023

Western Digital disclosed a security breach, according to the company an unauthorized party gained access to multiple systems. Western Digital has shut down several of its services after discovering a security breach, the company disclosed that an unauthorized party gained access to multiple systems. We apologize for any inconvenience.

IT

IT Security Cloud Ransomware

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. suffers second ransomware attack in months Having been struck by a ransomware attack in October by the BlackSuit group , which led to operations and appointments being postponed, Akumin Inc. Akumin Inc.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs

APRIL 30, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Cybersecurity Authentication

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! If you want to also receive for free the newsletter with the international press subscribe here.

Security

Security Artificial Intelligence Data breaches Ransomware

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! billion rubles.

Security

Security Computer and Electronics Ransomware Marketing

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

IT Governance

DECEMBER 5, 2023

The security researcher Bob Diachenko of SecurityDiscovery first identified the exposed information in mid-September. This was confirmed about a fortnight later, in early November, when the ALPHV/BlackCat ransomware group took responsibility for the attack , claiming to have encrypted Henry Schein’s files and exfiltrated 35 TB of data.

Data Privacy

Data Privacy Privacy Manufacturing Retail

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Cybersecurity

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Source (New) Transport USA Yes 3,815 Okta Source 1 ; source 2 (Update) Cyber security USA Yes 3,800 Shah Dixit & Associates, P.C. Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc.

Data Privacy

Data Privacy Privacy Security Data breaches

LockBit leaks data stolen from the South Korean National Tax Service

Security Affairs

APRIL 1, 2023

The group added the South Korean agency to its Tor leak site and announced the release of stolen data by April 1st, 2023 in case the ransom was not paid. Lockbit continues to be one of the most active ransomware gangs, in March the group added 100 new victims to its Tor leak site.

Ransomware

Ransomware Education Privacy Cybersecurity

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The ransomware group claims to have stolen a substantial trove of ‘impressive data’ and is auctioning it for 20 BTC. It is one of the largest libraries in the world.

Libraries

Libraries Ransomware Manufacturing Education

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

Krebs on Security

MAY 14, 2021

The crime gang announced it was closing up shop after its servers were seized and someone drained the cryptocurrency from an account the group uses to pay affiliates. This is interesting because security experts have posited that many of DarkSide’s core members are closely tied to the REvil gang.

Ransomware

Ransomware Education Communications Access

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy

Data Privacy Privacy Insurance Security

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Security Affairs

APRIL 27, 2023

The group is known to be an affiliate of the Clop ransomware RaaS affiliate, it has been linked to GoAnywhere attacks and Raspberry Robin infection. The group used the file-sharing app MegaSync for data exfiltration. The company warns that other financially motivated groups could adopt a similar infection chain.

Ransomware

Ransomware Education Security IT

What Are You Doing for Cyber Security Awareness Month?

IT Governance

OCTOBER 6, 2022

This October is Cyber Security Awareness Month, an event designed to educate people about information security and the steps they can take to stay safe online. Now in its nineteenth year, the campaign provides tools and resources to help people learn more about the cyber security industry and the ways they can get involved.

Security awareness

Security awareness Security Phishing Passwords

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

IT Governance

MARCH 5, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Millions of Pure Incubation Ventures records listed on hacking forum 183,754,481 records apparently belonging to the venture capital and private equity group Pure Incubation Ventures have been listed for sale on a hacking forum. The claim is yet to be verified.

Data Privacy

Data Privacy Privacy Manufacturing Retail

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

Security Affairs

APRIL 10, 2023

Iran-linked APT group MERCURY is behind destructive attacks on hybrid environments masquerading as a ransomware operation. The Microsoft Threat Intelligence team observed a series of destructive attacks on hybrid environments that were carried out by MuddyWater APT group (aka MERCURY ). Both groups used MULLVAD VPN.

Ransomware

Ransomware File names Access Education

How CyBOK Can Help You Develop Your Cyber Security Career

IT Governance

OCTOBER 27, 2022

million more workers are required to meet the global cyber security skills gap. This is a huge employment opportunity, but do you know what knowledge and skills you need to develop your career as a cyber security professional? What is cyber security? What do cyber security professionals need to know?

Security

Security Paper Education Government

North Korea-linked BlueNoroff APT is behind the new RustBucket Mac Malware

Security Affairs

APRIL 25, 2023

North Korea-linked APT group BlueNoroff (aka Lazarus) was spotted targeting Mac users with new RustBucket malware. Researchers from security firm Jamf observed the North Korea-linked BlueNoroff APT group using a new macOS malware, dubbed RustBucket, family in recent attacks. capital used in the stage-one dropper. Jamf concludes.

Education

Education Communications Marketing Cloud

Google fixed the first Chrome zero-day of 2023

Security Affairs

APRIL 14, 2023

Google released an emergency security update to address a zero-day vulnerability in Chrome which is actively exploited in the wild. Google released an emergency security update to address the first Chrome zero-day vulnerability (CVE-2023-2033) in 2023, the company is aware of attacks in the wild exploiting the issue.

Libraries

Libraries Education Cybersecurity Security

The Week in Cyber Security and Data Privacy: 19 – 25 February 2024

IT Governance

FEBRUARY 27, 2024

The breached data includes names, addresses, emails, phone numbers, dates of birth, and financial account and Social Security numbers. The breached data may include names, Social Security numbers and health insurance information. For some victims, the stolen data also included Social Security numbers and health insurance information.

Data Privacy

Data Privacy Manufacturing Privacy Data breaches

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

Security Affairs

MAY 4, 2023

CERT-UA is warning of destructive cyberattacks conducted by the Russia-linked Sandworm APT group against the Ukraine public sector. Russia-linked APT group Sandworm is behind destructive cyberattacks against Ukrainian state networks, the Ukrainian Government Computer Emergency Response Team (CERT-UA) warns.

Archiving

Archiving Education Authentication Ransomware

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

IT Governance

DECEMBER 19, 2023

An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November. Data breached: personal data belonging to 14,690,284 individuals.

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Russia-linked APT28 group is targeting Ukrainian government bodies with fake ‘Windows Update’ guides, Computer Emergency Response Team of Ukraine (CERT-UA) warns.

Systems administration

Systems administration Military Phishing Government

Google fixed the second actively exploited Chrome zero-day of 2023

Security Affairs

APRIL 19, 2023

Google rolled out emergency security patches to address another actively exploited high-severity zero-day flaw in the Chrome browser. The vulnerability is an Integer overflow in the Skia graphics library, the issue was reported by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023.

Libraries

Libraries Education Access Cybersecurity

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

IT Governance

APRIL 22, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Criminal hackers threaten to leak World-Check screening database A criminal group known as GhostR claims to have stolen 5.3 Compromised data includes names, passport numbers, Social Security numbers, online crypto account identifiers and bank account numbers.

Data Privacy

Data Privacy Privacy Manufacturing Security

Building cyber security careers

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). Cyber security focuses on protecting computer systems from unauthorised access or being otherwise damaged. Build your cyber security career.

Security

Security Information Security GDPR Data Privacy

Researchers found the first Linux variant of the RTM locker

Security Affairs

APRIL 27, 2023

The group operates a ransomware-as-a-service (RaaS) and provides its malicious code to a network of affiliates by imposing strict rules. The group aims at flying below the radar, and like other groups, doesn’t target systems in the CIS region. The group threatens to ban every affiliate who does leak samples.

Encryption

Encryption Ransomware Education Access

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

IT Governance

OCTOBER 3, 2022

Compared to August, it was a comparatively quiet month, as we identified 88 publicly disclosed security incidents and 35,566,046 compromised records. Our blog has become the go-to source for monthly data breach statistics, and we’ve been producing this series for over seven years. Cyber attacks. Ransomware. Data breaches.

Data breaches

Data breaches Ransomware Education Phishing

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Money Message ransomware group claims to have hacked IT giant MSI

Webinars

Trending Sources

Cybercrime group exploits Windows zero-day in ransomware attacks

Webinars

Google TAG warns of Russia-linked APT groups targeting Ukraine

Stark Industries Solutions: An Iron Hammer in the Cloud

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

PWNYOURHOME, FINDMYPWN, LATENTIMAGE: 3 iOS Zero-Click exploits used by NSO Group in 2022

China-linked APT41 group spotted using open-source red teaming tool GC2

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

The intricate relationships between the FIN7 group and members of the Conti ransomware gang

Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack

MSI confirms security breach after Money Message ransomware attack

The Weeks in Cyber Security and Data Privacy: 18 – 31 December 2023

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Western Digital took its services offline due to a security breach

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

The Week in Cyber Security and Data Privacy: 27 November – 3 December 2023

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

LockBit leaks data stolen from the South Korean National Tax Service

Rhysida ransomware gang is auctioning data stolen from the British Library

DarkSide Ransomware Gang Quits After Servers, Bitcoin Stash Seized

The Week in Cyber Security and Data Privacy: 29 January – 4 February 2024

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

What Are You Doing for Cyber Security Awareness Month?

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

Iran-linked MERCURY APT behind destructive attacks on hybrid environments

How CyBOK Can Help You Develop Your Cyber Security Career

North Korea-linked BlueNoroff APT is behind the new RustBucket Mac Malware

Google fixed the first Chrome zero-day of 2023

The Week in Cyber Security and Data Privacy: 19 – 25 February 2024

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

The Week in Cyber Security and Data Privacy: 11 – 18 December 2023

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Google fixed the second actively exploited Chrome zero-day of 2023

The Week in Cyber Security and Data Privacy: 15 – 21 April 2024

Building cyber security careers

Researchers found the first Linux variant of the RTM locker

List of Data Breaches and Cyber Attacks in September 2022 – 35.6 Million Records Breached

Stay Connected