Document, IT and Military - Information Management Today

A phishing campaign targets Ukrainian military entities with drone manual lures

Security Affairs

SEPTEMBER 25, 2023

A phishing campaign targets Ukrainian military entities using drone manuals as lures to deliver the post-exploitation toolkit Merlin. Securonix researchers recently uncovered a phishing campaign using a Pilot-in-Command (PIC) Drone manual document as a lure to deliver a toolkit dubbed Merlin. ” concludes the report.

Military

Military Phishing Communications IT

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Security Affairs

DECEMBER 12, 2023

The Ukrainian government’s military intelligence service announced the hack of the Russian Federal Taxation Service (FNS). The military intelligence service said that the hack was the result of a successful special operation on the territory of Russia. At the same time, the Russian IT company Office.ed-it.ru,

Military

Military Government Communications IT

Russian Cyberwarfare Documents Leaked

Schneier on Security

MARCH 30, 2023

Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet. Lots more at the link.

Military

Military Security IT

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. Then the payload is inserted into the Document Object Model (DOM) of the Roundcube webpage within a newly created script tag.

Military

Military Government Access Risk

UAC-0142 APT targets Ukraine’s Delta military intelligence program

Security Affairs

DECEMBER 20, 2022

Ukraine’s CERT-UA revealed the national Delta military intelligence program has been targeted with a malware-based attack. The message urges the recipient to update certificates in the “DELTA” system, it also uses an attached PDF document that imitates legitimate digests of the ISTAR unit of the Zaporizhzhia Police Department.

Military

Military Archiving Phishing Government

BlackCat Adds Indian Missile Fuel Maker to Its Victims List

Data Breach Today

FEBRUARY 2, 2023

Ransomware-as-a-Service Group Purports to Sell Indian Military Data on Dark Web The BlackCat ransomware-as-a-service group says it's selling 2 terabytes worth of military data including classified documents culled from Indian explosives and propellant manufacturer Solar Industries.

Military

Military IT Manufacturing Ransomware

North Korea-linked Konni APT uses Russian-language weaponized documents

Security Affairs

NOVEMBER 24, 2023

North Korea-linked Konni APT group used Russian-language Microsoft Word documents to deliver malware. FortiGuard Labs researchers observed the North Korea-linked Konni APT group using a weaponized Russian-language Word document in an ongoing phishing campaign. The Word document seems to be in the Russian language.

Encryption

Encryption Military Phishing Communications

Classified NATO documents sold on darkweb after they were stolen from Portugal

Security Affairs

SEPTEMBER 9, 2022

Threat actors claimed to have stolen classified NATO documents from the Armed Forces General Staff agency of Portugal (EMGFA). The Armed Forces General Staff (Portuguese: Estado-Maior-General das Forças Armadas), or EMGFA, is the supreme military body of Portugal. embassy in Lisbon, which warned the Portuguese authorities.

Military

Military Sales Data breaches Cybersecurity

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of data, including secret military data related to weapons production.

Military

Military Manufacturing Ransomware Mining

Military Cryptanalytics, Part III

Schneier on Security

JANUARY 4, 2021

The NSA has just declassified and released a redacted version of Military Cryptanalytics , Part III, by Lambros D. At this point, the document only has historical interest. Callimahos, October 1977. Parts I and II, by Lambros D. Callimahos and William F. I own them in hardcover. The monograph a while to become public.

Military

Military FOIA Libraries IT

UK printing company Doxzoo exposed US and UK military docs

Security Affairs

MARCH 20, 2020

UK printing company Doxzoo exposed hundreds of gigabytes of information, including documents related to the US and British military. “There are potentially over 100,000 users affected by this data leak, with implications not only for copyright violations, but also American and British military data exposure.”

Military

Military Archiving Cybersecurity Security

Feds Describe Intelligence Leak Probe as Criminal Matter

Data Breach Today

APRIL 14, 2023

military IT specialist, Jack Teixeira, on suspicion of leaking highly classified documents begs the question of why he had access to them in the first place. National Guard Airman Jack Teixeira Charged With Mishandling Intelligence The arrest of a low-level U.S.

Military

Military Access IT

Anonymous targets the Russian Military and State Television and Radio propaganda

Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military

Military Cybersecurity Security Government

Ukraine’s GUR hacked the Russian Ministry of Defense

Security Affairs

MARCH 4, 2024

The Main Intelligence Directorate (GUR) of Ukraine’s Ministry of Defense announced it had breached the Russian Ministry of Defense servers as part of a special operation, and exfiltrated confidential documents. software used by the Russian Ministry of Defense to encrypt and protect its data.

Military

Military Encryption Data breaches Government

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. Threat actors first compromised the Westech’s network, then stole the documents before encrypting them. The LGM-30 Minuteman is a U.S. Pierluigi Paganini.

Military

Military Ransomware Encryption Risk

Researchers found alleged sensitive documents of NATO and Turkey

Security Affairs

OCTOBER 12, 2020

Security experts from Cyble found alleged sensitive documents of NATO and Turkey, is it a case of cyber hacktivism or cyber espionage? The post Researchers found alleged sensitive documents of NATO and Turkey appeared first on Security Affairs. ” reads the post published by Cyble. ” reads the post published by Cyble.

Military

Military Manufacturing Phishing Government

A new piece of Ryuk Stealer targets government, military and finance sectors

Security Affairs

JANUARY 26, 2020

A new piece of the Ryuk malware has been improved to steal confidential files related to the military, government, financial statements, and banking. Once the document has passed the checks, it will be uploaded to an FTP site, experts pointed out that the code of the Ryuk stealer includes two FTP sites.

Military

Military Government Ransomware Privacy

NATO is investigating a new cyber attack claimed by the SiegedSec group

Security Affairs

OCTOBER 5, 2023

NATO is investigating claims that a group called SiegedSec has breached its systems and leaked a cache of unclassified documents online. NATO announced it is investigating claims that a politically motivated threat actor called SiegedSec has breached its systems and leaked unclassified documents online. organizations, especially U.S.

Military

Military Security Access IT

Machete cyber-espionage group targets Latin America military

Security Affairs

AUGUST 5, 2019

Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. ” reads the analysis from ESET.

Military

Military Archiving Security Government

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

The activity of the Lyceum APT group was first documented earlier in August 2019 by researchers at ICS security firm Dragos which tracked it as Hexane. The attack chain observed by the researchers starts with spear-phishing messages using weaponized Word document disguised as a news report related to military affairs in Iran.

IT

IT Military Communications Phishing

Military documents about MQ-9 Reaper drone leaked on dark web

The Security Ledger

JULY 12, 2018

Hackers have put up for sale on the dark web sensitive military documents, some associated with the U.S. military’s MQ-9 Reaper drone aircraft, one of its most lethal and technologically advanced drones, security research firm Recorded Future recently discovered. Read the whole entry. » Read the whole entry. »

Military

Military Sales Ransomware Security

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

Security Affairs

APRIL 10, 2020

DoppelPaymer hackers leaked online internal confidential documents belonging to some of the largest aerospace companies in the world. The gang behind the DoppelPaymer ransomware has stolen internal confidential documents belonging to some of the largest aerospace companies in the world from the industrial contractor Visser Precision.

Ransomware

Ransomware Manufacturing Military Cybersecurity

Pakistan-linked Transparent Tribe APT expands its arsenal

Security Affairs

MAY 16, 2021

The Operation Transparent Tribe (Operation C-Major, APT36, and Mythic Leopard) was first spotted by Proofpoint Researchers in Feb 2016, in a series of cyber espionage operations against Indian diplomats and military personnel in some embassies in Saudi Arabia and Kazakhstan. ” read the analysis published Cisco Talos. Pierluigi Paganini.

IT

IT Military Phishing Archiving

Celebrate Nurses Week with the Military Nurse

Unwritten Record

MAY 11, 2021

The nurse has a long history of serving the United States military. World War II presented a need for nurses and the military and American Red Cross initiated an intense recruitment and training program, resulting in nearly 74,00 women serving as nurses. Florence A. This resulted in a greater need for trauma and critical care nurses.

Military

Military IT Government

Indian-linked Patchwork APT infected its own system revealing its ops

Security Affairs

JANUARY 10, 2022

The APT group has been active since at least 2015, previous operations targeted military and political individuals across the world, it shows a specific interest in organizations in Pakistan. Malwarebytes researchers reported that that payload is stored within the RTF document as an OLE object. Pierluigi Paganini.

IT

IT Military Phishing Government

Donot Team cyberespionage group updates its Windows malware framework

Security Affairs

AUGUST 21, 2022

The Donot Team has been active since 2016, it focuses on government and military organizations, ministries of foreign affairs, and embassies in India, Pakistan, Sri Lanka, Bangladesh, and other South Asian countries. In the latest attacks, the group sent messages using RTF documents that trick users into enabling macros.

IT

IT Phishing Military Encryption

Capturing Paper Documents - Best Practices and Common Questions

AIIM

OCTOBER 22, 2019

Also known as “capture,” this capability is characterized by the ability to scan paper documents to store and use them in digital form instead of paper. First developed over 30 years ago, capture systems have evolved from simple solutions for basic scanning into sophisticated and expensive systems for enterprise-wide document automation.

Paper

Paper Computer and Electronics Access Archiving

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. The attack chain begins with the deployment of a TCP downloader that fetches the next stage payload.

Military

Military Communications Libraries Encryption

Operation In(ter)reception targets Military and Aerospace employees in Europe and the Middle East

Security Affairs

JUNE 17, 2020

Experts uncovered a new cyber-espionage campaign, dubbed “ Operation In(ter)receptio n,” aimed at aerospace and military organizations in Europe and the Middle East. Attackers used documents related to the job offer as a lure. ” reads the analysis published by the experts.

Military

Military Archiving Passwords Communications

OP Glowing Symphony – How US military claims to have disrupted ISIS ‘s propaganda

Security Affairs

JANUARY 22, 2020

US military claims to have disrupted the online propaganda activity of the Islamic State (ISIS) in a hacking operation dating back at least to 2016. The documents have been release under a Freedom of Information Act request. ” reads a post published by the National Security Archive at George Washington University.

Military

Military FOIA Archiving Security

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

Security Affairs

FEBRUARY 15, 2024

“A January 2024 court-authorized operation has neutralized a network of hundreds of small office/home office (SOHO) routers that GRU Military Unit 26165 , also known as APT28, Sofacy Group , Forest Blizzard , Pawn Storm , Fancy Bear , and Sednit , used to conceal and otherwise enable a variety of crimes.”

Military

Military Government Access Cybersecurity

The Wright Military Flyer Soars on Celluloid: Uncovering the Story of Our Oldest Government Film

Unwritten Record

SEPTEMBER 1, 2022

The oldest known government-produced film in our holdings is First Army Aeroplane Flight, Fort Myer, Virginia , which captured daring test flights of the Wright Military Flyer. government film was almost a whole year older than documented! At that time, the U.S. But how could we know for sure?

Military

Military Government Agriculture Archiving

Threat actors hacked Taiwan-based Chunghwa Telecom

Security Affairs

MARCH 4, 2024

Threat actors stole sensitive information from the company, including military and government documents, revealed Taiwan’s Defense Ministry. Threat actors claim they have stolen 1.7 TeraBytes of data” that included government contracts. ” reported AFP agency.

Military

Military Sales Government Information Security

North Korea-linked Lazarus APT targets the IT supply chain

Security Affairs

OCTOBER 27, 2021

The use of the BlindingCan RAT was first documented by the U.S. The BlindingCan was employed in attacks on US and foreign companies operating in the military defense and aerospace sectors. This is the first IT supply chain attack conducted by Lazarus that was documented by Kaspersky researchers.

IT

IT Systems administration Military Cybersecurity

Lockbit ransomware gang hacked California Department of Finance

Security Affairs

DECEMBER 13, 2022

The response effort includes multiple public and private agencies including the partners who make up the Cal-CSIC: the Governor’s Office of Emergency Services, Department of Technology, California Military Department and California Highway Patrol.” ” reads the statement. Pierluigi Paganini.

Ransomware

Ransomware Military Cybersecurity Security

Accused ‘Raccoon’ Malware Developer Fled Ukraine After Russian Invasion

Krebs on Security

OCTOBER 31, 2022

KrebsOnSecurity has learned that the defendant was busted in March 2022, after fleeing mandatory military service in Ukraine in the weeks following the Russian invasion. 18 fleeing mandatory military service in Ukraine. Ukrainian national Mark Sokolovsky, seen here in a Porsche Cayenne on Mar.

Military

Military Passwords Data collection Ransomware

Connecticut Tightens its Data Breach Notification Laws

Data Protection Report

OCTOBER 3, 2021

The newly amended statute also provides a limited exemption from public disclosure of any documents, materials and information that a person provides in response to a demand during the course of an investigation of the data breach by the Connecticut government. Public Disclosure Exemption. Additional Considerations for Businesses.

Data breaches

Data breaches IT Insurance Passwords

France agency ANSSI warns of Russia-linked APT28 attacks on French entities

Security Affairs

OCTOBER 27, 2023

The document provides details about the tactics, techniques and procedures (TTP) associated with threar actors since the second half of 2021. The document also includes a series of recommendations to protect against this type of attack. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Military

Military Phishing Government Security

Russia-linked APT Gamaredon update TTPs in recent attacks against Ukraine

Security Affairs

JUNE 15, 2023

The Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive Bear, UAC-0010, and Trident Ursa) continues to carry out attacks against entities in Ukraine, including security services, military, and government organizations. The attack chain commences with spear-phishing emails with malicious attachments (.docx,rar,sfx

Military

Military File names Archiving Phishing

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

Unfortunately for us, Doug freaked out after deciding he’d been tricked — backing up his important documents, changing his passwords, and then reinstalling macOS on his computer. The North Korean regime is known to use stolen cryptocurrencies to fund its military and other state projects.

Phishing

Phishing Blockchain Military Passwords

Threat actor claims to have hacked European manufacturer of missiles MBDA

Security Affairs

JULY 31, 2022

The attackers said that the stolen data includes information about the employees of the company involved in military projects, commercial activities, contract agreements and correspondence with other companies. Adrastea said that they have found critical vulnerabilities in the company infrastructure and have stolen 60 GB of confidential data.

Manufacturing

Manufacturing Military Archiving Cybersecurity

Anonymous and Ukraine IT Army continue to target Russian entities

Security Affairs

MAY 6, 2022

The leaked files documented these allegations , they were quickly removed from Mega. The Anonymous collective and the volunteer group Ukraine IT Army continues to launch cyber attacks on Russian entities. The Anonymous collective continues its cyber war on Russian businesses and government organizations. Anonymous leaked a 20.4

IT

IT Archiving Military Government

Catches of the Month: Phishing Scams for March 2022

IT Governance

MARCH 8, 2022

The Ukrainian government and its military were targeted by DDoS (distributed denial-of-service) attacks, while a pro-Ukrainian group attacked the Belarusian railway system with ransomware after discovering that it was being used by Russia to transport tanks and weapons. Tesco warns customers of voucher scam.

Phishing

Phishing Military Access Education

REvil ransomware gang hit US nuclear weapons contractor Sol Oriens

Security Affairs

JUNE 15, 2021

The ransomware gang threatened to leak relevant documentation and data belonging to military agencies. We hereby keep a right to forward all of the relevant documentation and data to military angencies of our choise, includig all personal data of employees.” states the company. states the company.

Ransomware

Ransomware Military Personal data Cybersecurity

A phishing campaign targets Ukrainian military entities with drone manual lures

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Webinars

Trending Sources

Russian Cyberwarfare Documents Leaked

Webinars

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

UAC-0142 APT targets Ukraine’s Delta military intelligence program

BlackCat Adds Indian Missile Fuel Maker to Its Victims List

North Korea-linked Konni APT uses Russian-language weaponized documents

Classified NATO documents sold on darkweb after they were stolen from Portugal

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Military Cryptanalytics, Part III

UK printing company Doxzoo exposed US and UK military docs

Feds Describe Intelligence Leak Probe as Criminal Matter

Anonymous targets the Russian Military and State Television and Radio propaganda

Ukraine’s GUR hacked the Russian Ministry of Defense

Maze ransomware operators stole data from US military contractor Westech

Researchers found alleged sensitive documents of NATO and Turkey

A new piece of Ryuk Stealer targets government, military and finance sectors

NATO is investigating a new cyber attack claimed by the SiegedSec group

Machete cyber-espionage group targets Latin America military

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Military documents about MQ-9 Reaper drone leaked on dark web

DoppelPaymer crew leaked internal confidential documents belonging to aerospace companies

Pakistan-linked Transparent Tribe APT expands its arsenal

Celebrate Nurses Week with the Military Nurse

Indian-linked Patchwork APT infected its own system revealing its ops

Donot Team cyberespionage group updates its Windows malware framework

Capturing Paper Documents - Best Practices and Common Questions

InvisiMole group targets military sector and diplomatic missions in Eastern Europe

Operation In(ter)reception targets Military and Aerospace employees in Europe and the Middle East

OP Glowing Symphony – How US military claims to have disrupted ISIS ‘s propaganda

US Gov dismantled the Moobot botnet controlled by Russia-linked APT28

The Wright Military Flyer Soars on Celluloid: Uncovering the Story of Our Oldest Government Film

Threat actors hacked Taiwan-based Chunghwa Telecom

North Korea-linked Lazarus APT targets the IT supply chain

Lockbit ransomware gang hacked California Department of Finance

Accused ‘Raccoon’ Malware Developer Fled Ukraine After Russian Invasion

Connecticut Tightens its Data Breach Notification Laws

France agency ANSSI warns of Russia-linked APT28 attacks on French entities

Russia-linked APT Gamaredon update TTPs in recent attacks against Ukraine

Calendar Meeting Links Used to Spread Mac Malware

Threat actor claims to have hacked European manufacturer of missiles MBDA

Anonymous and Ukraine IT Army continue to target Russian entities

Catches of the Month: Phishing Scams for March 2022

REvil ransomware gang hit US nuclear weapons contractor Sol Oriens

Stay Connected