Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military 324

Military Cybersecurity Security Government 324

Data Breach Today

APRIL 13, 2023

Jack Teixeira, 21, Accused of Sharing Classified National Defense Info on Discord A member of the Massachusetts Air National Guard has been arrested for leaking highly classified military and intelligence documents.

Military 263

Military 263

Data Breach Today

JUNE 23, 2020

Cisco Talos Researchers Find Hackers Using New Dropper Called IndigoDrop A spear-phishing campaign is using military-themed malicious Microsoft Office documents to infect devices, according to researchers at Cisco Talos.

Military 191

Military Phishing 191

Security Affairs

NOVEMBER 24, 2023

North Korea-linked Konni APT group used Russian-language Microsoft Word documents to deliver malware. FortiGuard Labs researchers observed the North Korea-linked Konni APT group using a weaponized Russian-language Word document in an ongoing phishing campaign. The Word document seems to be in the Russian language.

Encryption 336

Encryption Military Phishing Communications 336

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. Then the payload is inserted into the Document Object Model (DOM) of the Roundcube webpage within a newly created script tag.

Military 354

Military Government Access Risk 354

Security Affairs

AUGUST 5, 2019

Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. ” reads the analysis from ESET. Pierluigi Paganini.

Military 261

Military Archiving Security Government 261

Security Affairs

APRIL 10, 2020

DoppelPaymer hackers leaked online internal confidential documents belonging to some of the largest aerospace companies in the world. The gang behind the DoppelPaymer ransomware has stolen internal confidential documents belonging to some of the largest aerospace companies in the world from the industrial contractor Visser Precision.

Ransomware 328

Ransomware Manufacturing Military Cybersecurity 328

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military 299

Military Government Phishing Libraries 299

Security Affairs

DECEMBER 20, 2022

Ukraine’s CERT-UA revealed the national Delta military intelligence program has been targeted with a malware-based attack. The message urges the recipient to update certificates in the “DELTA” system, it also uses an attached PDF document that imitates legitimate digests of the ISTAR unit of the Zaporizhzhia Police Department.

Military 246

Military Archiving Phishing Government 246

Security Affairs

MAY 13, 2025

Such information will be of interest to foreign intelligence agencies, nation-state actors, and advanced espionage groups, especially during local conflicts and ongoing wars.

Ransomware 282

Ransomware Military Risk Cybersecurity 282

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of data, including secret military data related to weapons production.

Military 246

Military Manufacturing Ransomware Mining 246

Security Affairs

JUNE 18, 2020

Security researchers at ESET recently uncovered a campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations in the military sector and diplomatic missions in Eastern Europe. Pierluigi Paganini. SecurityAffairs – hacking, InvisiMole).

Military 308

Military Communications Libraries Encryption 308

Security Affairs

JUNE 17, 2020

Experts uncovered a new cyber-espionage campaign, dubbed “ Operation In(ter)receptio n,” aimed at aerospace and military organizations in Europe and the Middle East. Attackers used documents related to the job offer as a lure. ” reads the analysis published by the experts. Pierluigi Paganini.

Military 293

Military Archiving Passwords Communications 293

Security Affairs

APRIL 23, 2025

origin, targeting Russian military personnel. It is popular among athletes, travelers, and hunters but also widely used by Russian military personnel in the Special Military Operation zoneand this is what the malware campaign organizers decided to exploit.” ” reads the report published by Doctor Web.

Military 207

Military IT Information Security Security 207

Security Affairs

JUNE 24, 2025

CERT-UA, in collaboration with the Cybersecurity Center of Military Unit A0334, responded to the incident. “Attackers, using Signal, delivered a malicious document titled “Акт.doc” containing a macro. During forensic analysis, the researchers discovered malware linked to the COVENANT framework and the BEARDSHELL backdoor.

Phishing 219

Phishing Encryption Military Communications 219

Security Affairs

JANUARY 22, 2020

US military claims to have disrupted the online propaganda activity of the Islamic State (ISIS) in a hacking operation dating back at least to 2016. The documents have been release under a Freedom of Information Act request. ” reads a post published by the National Security Archive at George Washington University.

Military 233

Military FOIA Archiving Security 233

Security Affairs

AUGUST 22, 2022

The threat actors offer Android-based and PC-based versions of RAT, along with HVNC module and exploit builder to weaponize Microsoft Office and Adobe PDF documents to deliver malicious code. The actors are using decoy documents imitating invoices and notifications from popular online-services. Notably, the domain name ‘escanor[.]live’

Military 246

Military Sales Cybersecurity Access 246

Security Affairs

FEBRUARY 13, 2025

Unmanned Aerial Vehicles (UAVs), commonly known as drones, have become integral to modern military operations, particularly for intelligence, surveillance, and reconnaissance (ISR) missions. “Multiple postings on the Dark Web by actors looking to acquire sensitive military and intellectual property (IP) documents related to drones.

Military 219

Military Manufacturing Cybersecurity Security 219

Security Affairs

MARCH 4, 2024

The Main Intelligence Directorate (GUR) of Ukraine’s Ministry of Defense announced it had breached the Russian Ministry of Defense servers as part of a special operation, and exfiltrated confidential documents. software used by the Russian Ministry of Defense to encrypt and protect its data.

Military 353

Military Data breaches Encryption Government 353

Security Affairs

OCTOBER 5, 2023

NATO is investigating claims that a group called SiegedSec has breached its systems and leaked a cache of unclassified documents online. NATO announced it is investigating claims that a politically motivated threat actor called SiegedSec has breached its systems and leaked unclassified documents online. organizations, especially U.S.

Military 361

Military Security Access IT 361

Security Affairs

MAY 21, 2025

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. Attackers sent emails mimicking government/cloud providers, often in the target language, and used lures like legit documents.

Military 191

Military Phishing Cybersecurity Access 191

Krebs on Security

MAY 22, 2025

The government alleges that the second version of DanaBot — emerging in January 2021 — was provided to co-conspirators for use in targeting military, diplomatic and non-governmental organization computers in several countries, including the United States, Belarus, the United Kingdom, Germany, and Russia.

Government 267

Government Military Communications IT 267

Security Affairs

JUNE 15, 2021

The ransomware gang threatened to leak relevant documentation and data belonging to military agencies. We hereby keep a right to forward all of the relevant documentation and data to military angencies of our choise, includig all personal data of employees.” states the company.

Ransomware 353

Ransomware Military Personal data Cybersecurity 353

Security Affairs

DECEMBER 5, 2024

Additionally, they employ search-order hijacking, deploying TwoDash in c:windowssystem32oci.dll , sideloaded via msdtc.exe , leveraging methods documented in prior penetration testing research. Secret Blizzard uses similar techniques and filenames as Storm-0156, mimicking their operations.

Military 292

Military Access Communications Government 292

Security Affairs

JUNE 12, 2020

Russia-linked Gamaredon APT use a new module for Microsoft Outlook that creates custom emails with malicious documents and sends them to a victim’s contacts. The group targeted government and military organizations in Ukraine. The VBA code builds the email body and attaches the malicious document to the email in both .docx

Military 356

Military Phishing Government IT 356

Krebs on Security

FEBRUARY 26, 2025

The government disclosed the details in a court motion to keep the defendant in custody until he is discharged from the military. government military which country will not hand me over” -“U.S. military personnel defecting to Russia” -“Embassy of Russia Washington, D.C.”

Military 276

Military Government Communications Risk 276

Security Affairs

OCTOBER 19, 2024

Cyber attacks conducted by the APT37 group mainly targeted government, defense, military, and media organizations in South Korea. Google Threat Analysis Group researchers discovered the zero-day vulnerability in late October 2022, it was exploited by APT37 using specially crafted documents.

Military 356

Military Manufacturing Government Authentication 356

Schneier on Security

JANUARY 4, 2021

The NSA has just declassified and released a redacted version of Military Cryptanalytics , Part III, by Lambros D. At this point, the document only has historical interest. Callimahos, October 1977. Parts I and II, by Lambros D. Callimahos and William F. I own them in hardcover. The monograph a while to become public.

Military 144

Military FOIA Libraries IT 144

Security Affairs

MAY 16, 2021

The Operation Transparent Tribe (Operation C-Major, APT36, and Mythic Leopard) was first spotted by Proofpoint Researchers in Feb 2016, in a series of cyber espionage operations against Indian diplomats and military personnel in some embassies in Saudi Arabia and Kazakhstan. ” read the analysis published Cisco Talos.

Military 354

Military IT Phishing Archiving 354

Security Affairs

JULY 31, 2022

The attackers said that the stolen data includes information about the employees of the company involved in military projects, commercial activities, contract agreements and correspondence with other companies. Adrastea said that they have found critical vulnerabilities in the company infrastructure and have stolen 60 GB of confidential data.

Manufacturing 332

Manufacturing Military Archiving Cybersecurity 332

Security Affairs

MARCH 1, 2020

Garda and military intelligence agencies believe the Russian agents were sent by the military intelligence branch of the Russian armed forces, the GRU. The documents also revealed the existence of other spy bases located in secret places identified with codes “TIMPANI”, “GUITAR” and “CLARINET”. Source [link].

Military 363

Military Communications Data collection Access 363

Security Affairs

DECEMBER 13, 2022

The response effort includes multiple public and private agencies including the partners who make up the Cal-CSIC: the Governor’s Office of Emergency Services, Department of Technology, California Military Department and California Highway Patrol.”

Ransomware 356

Ransomware Military Cybersecurity Security 356

Security Affairs

MAY 13, 2024

“The operations have primarily targeted audiences in Lithuania, Latvia, and Poland with anti-North Atlantic Treaty Organization (NATO) narratives, often leveraging website compromises or spoofed email accounts to disseminate fabricated content, including falsified correspondence from military officials” reads the report published by FireEye.

CMS 355

CMS Military Archiving Security 355

Schneier on Security

MARCH 30, 2023

Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet. Lots more at the link.

Military 132

Military Security IT 132

Security Affairs

AUGUST 3, 2020

The attackers were spreading fabricated content, including falsified news articles, quotes, correspondence, and other documents designed to appear as coming from military officials and political figures in the target countries.

Military 350

Military CMS Security Government 350

Security Affairs

NOVEMBER 2, 2024

.” Sophos observed three evolving tactics in China-linked threat actors: A shift from noisy attacks to targeted operations on critical Indo-Pacific infrastructure, including nuclear, military, and government sectors. The first documented attack against a Sophos facility is the one that targeted Cyberoam in 2018.

Government 304

Government Access Military Cloud 304

Data Breach Today

APRIL 14, 2023

military IT specialist, Jack Teixeira, on suspicion of leaking highly classified documents begs the question of why he had access to them in the first place. National Guard Airman Jack Teixeira Charged With Mishandling Intelligence The arrest of a low-level U.S.

Military 264

Military Access IT 264