Data, Information Security and Security - Information Management Today

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

The researchers from Google TAG are warning of Russia-linked threat actors targeting Ukraine with phishing campaigns. Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG).

Phishing

Phishing Military Ransomware Education

Multiple APT groups exploited WinRAR flaw CVE-2023-38831

Security Affairs

OCTOBER 18, 2023

Google TAG reported that both Russia and China-linked threat actors are weaponizing the a high-severity vulnerability in WinRAR. Google’s Threat Analysis Group (TAG) reported that in recent weeks multiple nation-state actors were spotted exploiting the vulnerability CVE-2023-38831 in WinRAR. ” reported Google TAG.

Archiving

Archiving Security IT Data breaches

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military

Military Security Ransomware Insurance

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs

DECEMBER 28, 2023

Leaksmas: On Christmas Eve, multiple threat actors released substantial data leaks, Resecurity experts reported. On Christmas Eve, Resecurity protecting Fortune 100 and government agencies globally, observed multiple actors on the Dark Web releasing substantial data leaks. Instead, they marked the holiday season in their unique way.

Data breaches

Data breaches Personal data Government IT

Security Affairs newsletter Round 455 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 21, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Patch it now! million cryptojacking scheme arrested in Ukraine Cybercrime Cryptojacker arrested in Ukraine over EUR 1.8

Security

Security e-Discovery Artificial Intelligence Ransomware

Security Affairs newsletter Round 428 by Pierluigi Paganini – International edition

Security Affairs

JULY 15, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Data breaches Government Analytics

Zimbra zero-day exploited to steal government emails by four groups

Security Affairs

NOVEMBER 16, 2023

Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day ( CVE-2023-37580 ) to steal emails from governments. Google TAG researcher Clément Lecigne discovered the zero-day in June while investigating targeted attacks against Zimbra’s email server. ” reads the advisory published by Google TAG.

Government

Government Authentication Phishing IT

Mar 27 – Apr 02 Ukraine – Russia the silent cyber conflict

Security Affairs

APRIL 3, 2022

This post provides a timeline of the events related to the Russian invasion of Ukraine from the cyber security perspective. Apr 02 – Anonymous leaked 15 GB of data allegedly stolen from the Russian Orthodox Church. Mar 31 – Google TAG details cyber activity with regard to the invasion of Ukraine.

Personal data

Personal data Phishing Security IT

Mar 13- Mar 19 Ukraine – Russia the silent cyber conflict

Security Affairs

MARCH 20, 2022

This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. Google’s TAG team revealed that China-linked APT groups are targeting Ukraine ’s government for intelligence purposes. March 18 – Russia-linked Cyclops Blink botnet targeting ASUS routers.

Cloud

Cloud Government Risk Information Security

Security Affairs newsletter Round 359 by Pierluigi Paganini

Security Affairs

APRIL 3, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 359 by Pierluigi Paganini appeared first on Security Affairs. And how to prevent it? Pierluigi Paganini.

Security

Security Authentication Ransomware Cloud

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Cybersecurity

Security Affairs newsletter Round 357 by Pierluigi Paganini

Security Affairs

MARCH 13, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 357 by Pierluigi Paganini appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

Security

Security Data breaches Ransomware Manufacturing

Reuters: Russia-linked APT behind Brexit leak website

Security Affairs

MAY 28, 2022

Russia-linked threat actors are behind a new website that published leaked emails from leading proponents of Britain’s exit from the EU, the Reuters reported. According to Reuters, at least victims of the leak confirmed the authenticity of the messages and revealed they were targeted by Russia-linked hackers. Pierluigi Paganini.

Cybersecurity

Cybersecurity Authentication Security IT

Security Affairs newsletter Round 334

Security Affairs

OCTOBER 3, 2021

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 334 appeared first on Security Affairs. If you want to also receive for free the international press subscribe here.

Security

Security Data breaches Information Security Risk

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Security Affairs

JUNE 6, 2022

USA) has identified an increase in activity within hacktivist groups, they’re leveraging current geopolitical tensions between the Ukraine and Russia to perform cyber-attacks. The actors are positioning themselves as an elite cyber offensive group targeting NATO infrastructure and performing cyberespionage to steal sensitive data.

Government

Government Cybersecurity IoT Security

Zeppelin ransomware gang is back after a temporary pause

Security Affairs

MAY 24, 2021

Unlike other ransomware, Zeppelin operators do not steal data from the victims and don’t run a leak site. Unlike other variants of the Vega ransomware, the Zeppelin ransomware doesn’t infect users in Russia or other ex-USSR countries like Ukraine, Belorussia, and Kazakhstan. ” reported BleepingComputer. Pierluigi Paganini.

Ransomware

Ransomware Encryption Sales Security

Poulight Stealer, a new Comprehensive Stealer from Russia

Security Affairs

MAY 7, 2020

Poulight was first spotted by MalwareBytes researchers in middle March and indicators of compromise have been already shared among the security community. The first information tag “ prog.params ” is immediately retrieved in the instruction “ HandlerParams.Start() ” seen in Figure 4. Technical Analysis.

Data structuring

Data structuring IT Marketing Security

Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

Security Affairs

JANUARY 18, 2024

Google warns that the Russia-linked threat actor COLDRIVER expands its targeting and is developing a custom malware. In the past, the group’s activity involved persistent phishing and credential theft campaigns leading to intrusions and data theft. ” reads TAG’s analysis. ” concludes the report.

Phishing

Phishing Encryption Military Archiving

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily podcast delivers the day's cyber security news into a concise format. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Transcript.

Cloud

Cloud Energy and Utilities Security Access

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily podcast delivers the day's cyber security news into a concise format. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Transcript.

Cloud

Cloud Energy and Utilities Security Access

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily podcast delivers the day's cyber security news into a concise format. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Dave Bittner: [00:00:03] A contractor for Russia's FSB security agency was apparently breached. Transcript.

Cloud

Cloud Energy and Utilities Security Access

Russia-linked APT29 group exploited WinRAR 0day in attacks against embassies

Security Affairs

NOVEMBER 20, 2023

Russia-linked cyberespionage group APT29 has been observed leveraging the CVE-2023-38831 vulnerability in WinRAR in recent attacks. The Russia-linked APT group was observed using a specially crafted ZIP archive that runs a script in the background to show a PDF lure while downloading PowerShell code to fetch and execute a payload.

Sales

Sales Archiving Communications Phishing

Information Management Today

Google TAG warns of Russia-linked APT groups targeting Ukraine

Multiple APT groups exploited WinRAR flaw CVE-2023-38831

Trending Sources

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs newsletter Round 455 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 428 by Pierluigi Paganini – International edition

Zimbra zero-day exploited to steal government emails by four groups

Mar 27 – Apr 02 Ukraine – Russia the silent cyber conflict

Mar 13- Mar 19 Ukraine – Russia the silent cyber conflict

Security Affairs newsletter Round 359 by Pierluigi Paganini

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 357 by Pierluigi Paganini

Reuters: Russia-linked APT behind Brexit leak website

Security Affairs newsletter Round 334

Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies

Zeppelin ransomware gang is back after a temporary pause

Poulight Stealer, a new Comprehensive Stealer from Russia

Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

Russia-linked APT29 group exploited WinRAR 0day in attacks against embassies

Stay Connected