Education, Examples, Groups and Security - Information Management Today

China-linked APT41 group spotted using open-source red teaming tool GC2

Security Affairs

APRIL 17, 2023

China-linked APT41 group used the open-source red teaming tool GC2 in an attack against a Taiwanese media organization. Google Threat Analysis Group (TAG) team reported that the China-linked APT41 group used the open-source red teaming tool Google Command and Control ( GC2 ) in an attack against an unnamed Taiwanese media organization.

Phishing

Phishing Cloud Government Education

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The FBI and CISA warn of attacks carried out by the Rhysida ransomware group against organizations across multiple industry sectors. The report is part of the ongoing #StopRansomware effort that disseminates advisories about tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with ransomware groups.

Ransomware

Ransomware Manufacturing Education Passwords

Exclusive interview with the Powerful Greek Army (PGA) hacker group

Security Affairs

FEBRUARY 3, 2022

Our old Twitter account, which was suspended, had pretty much many attacks on government agencies, corporations, educational institutions, ministries, and many, many other things around the world (which we still do, just on a smaller scale). We are a really mixed group. How were you born and approximately how many you are?

Education

Education Ransomware Government Access

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

What Are You Doing for Cyber Security Awareness Month?

IT Governance

OCTOBER 6, 2022

This October is Cyber Security Awareness Month, an event designed to educate people about information security and the steps they can take to stay safe online. Now in its nineteenth year, the campaign provides tools and resources to help people learn more about the cyber security industry and the ways they can get involved.

Security awareness

Security awareness Security Phishing Passwords

National Student Clearinghouse data breach impacted approximately 900 US schools

Security Affairs

SEPTEMBER 24, 2023

educational nonprofit organization National Student Clearinghouse disclosed a data breach that impacted approximately 900 US schools. The security breach resulted from a cyber attack exploiting a vulnerability in the MOVEit managed file transfer (MFT).-

Data breaches

Data breaches Education Ransomware Cybersecurity

Another example of email misuse

IT Governance

AUGUST 31, 2018

Another week, another example of an email using the Cc (carbon copy) field instead of the Bcc (blind carbon copy) field. The email was sent to a group of supporters regarding ticket allocations for an away football match. . By educating your staff, you can reduce the risk of your organisation suffering an avoidable data breach. .

Data breaches

Data breaches Education Risk Communications

BlueCharlie changes attack infrastructure in response to reports on its activity

Security Affairs

AUGUST 6, 2023

Russia-linked APT group BlueCharlie was observed changing its infrastructure in response to recent reports on its activity. The APT group has been active since at least 2017, its campaigns involve persistent phishing and credential theft campaigns leading to intrusions and data theft. Some examples are cloudrootstorage[.]com,

IT

IT Phishing Authentication Education

GUEST ESSAY: Too many SMBs continue to pay ransomware crooks — exacerbating the problem

The Last Watchdog

FEBRUARY 20, 2023

Attack that drew public scrutiny included: •Ultimate Kronos Group got sued after a ransomware attack disrupted its Kronos Private Cloud payment systems , relied upon by huge corporations such as Tesla, MGM Resorts and hospitals That ransomware attack shut down payroll and human resources systems. •The

Ransomware

Ransomware Cleanup Education Manufacturing

Information Governance – 3 Common Pitfalls and How to Avoid Them

AIIM

SEPTEMBER 7, 2021

Your IG program should help your organization understand the value of the information you have and put processes and procedures in place to not only store this information securely but also provide access when and where required. Case studies and examples of peers in other organizations can be powerful techniques.

Information governance

Information governance Government Communications Education

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

Krebs on Security

MARCH 31, 2022

“Recent news reports have revealed an enormous threat to Americans’ safety and national security,” Wyden said in a statement provided to KrebsOnSecurity. Ron Wyden (D-Ore.), who said he was moved to action after reading this week’s coverage. All of the access Bug is currently offering was allegedly stolen from non-U.S.

Government

Government Sales Education Access

The Sheriffs are in Town: Recent Developments in Initial Coin Offerings (ICO) Enforcement and Investor Education

Data Matters

SEPTEMBER 11, 2018

In the months following director William Hinman’s noteworthy speech on whether and when a digital asset is subject to securities laws, U.S. regulators have continued their stern warnings regarding the importance of compliance with the securities laws. securities laws. Convertible Equity Securities.

Education

Education Blockchain Sales Mining

Ransomware realities in 2023: one employee mistake can cost a company millions

Security Affairs

OCTOBER 17, 2023

With 85% of campaigns targeting victims with phishing emails containing malicious links, another form of a social engineering attack, education and cyber vigiliance remain a high priority. Why should employers educate employees about cyber security? or.con rather than.com, for example.

Ransomware

Ransomware Phishing Passwords Education

Researchers Quietly Cracked Zeppelin Ransomware Keys

Krebs on Security

NOVEMBER 17, 2022

There are multiple examples of ransomware groups doing just that after security researchers crowed about finding vulnerabilities in their ransomware code. This is not an idle concern. “The minute you announce you’ve got a decryptor for some ransomware, they change up the code,” James said.

Ransomware

Ransomware Encryption Manufacturing Phishing

2022 Cyber Security Review of the Year

IT Governance

DECEMBER 20, 2022

Although there have still been a few surprises, with the death of Queen Elizabeth II and blazing heatwaves across the UK to name but two, it was a familiar year in the cyber security landscape. Google , Clearview AI , and Meta all receives hefty penalties in 2022, demonstrating the continued important of effective information security.

Security

Security Data breaches Ransomware Military

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Security Affairs

MAY 7, 2021

Hancitor became another commodity malware which partnered with ransomware gangs to help them gain initial access to target networks – the increasing trend outlined by Group-IB researchers in the recent Ransomware Uncovered 2020/2021 report. In addition, the group leveraged some custom tools for network reconnaissance. exe: Figure 3.

Ransomware

Ransomware Education Manufacturing Healthcare

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

UK and US agencies are warning of Russia-linked APT28 group exploiting vulnerabilities in Cisco networking equipment. The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide.

Military

Military Access Cybersecurity Education

New Lobshot hVNC malware spreads via Google ads

Security Affairs

MAY 1, 2023

Researchers from Elastic Security Labs spotted a new remote access trojan dubbed LOBSHOT was being distributed through Google Ads. While investigating the malware distribution, the researchers noticed the use of an infrastructure known to belong to cybercrime group TA505. ” reads the report published by Elastic Security Labs.

Retail

Retail Access Education Security

Group-IB helped to arrest phone scammers profiting off the backs of the Russian elderly

Security Affairs

FEBRUARY 15, 2019

Moscow police department operatives, with the participation of Group-IB experts, took down a group of phone scammers who for several years have been extorting money from the elderly. The money was used to purchase real estate, cars, collectors’ coins, jewellery and securities.

Insurance

Insurance Education Phishing Communications

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs

APRIL 2, 2023

The documents demonstrate that it also developed hacking tools for the Russia-linked APT group Sandworm. The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST).

Energy and Utilities

Energy and Utilities Education Ransomware IT

We Infiltrated a Counterfeit Check Ring! Now What?

Krebs on Security

JUNE 30, 2021

One fraud-fighting group is intercepting hundreds to thousands of these per day. For the past year, BWare has maintained contact with an insider from the criminal group that’s been sending daily lists of would-be victims who are to receive counterfeit checks printed using the real bank account information of legitimate companies.

Insurance

Insurance Education IT Government

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

Security Affairs

APRIL 7, 2023

The Microsoft DCU secured a court order in the U.S. Threat actors, including ransomware groups and nation-state actors, use Cobalt Strike after obtaining initial access to a target network. . ” Example of an attack flow by threat actor DEV-0243.

Ransomware

Ransomware Cloud Education Phishing

‘Mother of All Breaches’: 26 BILLION Records Leaked

IT Governance

JANUARY 24, 2024

Expert insight from Leon Teale into the implications of this historic data breach The security researcher Bob Diachenko and investigators from Cybernews have discovered an open instance with more than 26 billion data records, mostly compiled from previous breaches – although it likely also includes new data.

Passwords

Passwords Data breaches Encryption Risk

Catches of the Month: Phishing Scams for September 2023

IT Governance

SEPTEMBER 15, 2023

Microsoft did not set out Storm-0324’s aim in this campaign, but the group is known to have worked with numerous malware groups to distribute malicious payloads including the Trickbot malware, Gootkit and Dridex banking Trojans, and Sage and GandCrab ransomware. The group responsible for the attacks is not known.

Phishing

Phishing Mining Education Passwords

Sophie Sayer on the IT Governance Partner Programme

IT Governance

FEBRUARY 14, 2024

Tell us a bit about what you do for IT Governance I’ve been head of channel since December 2019, though have worked for the Group since October 2009. In more recent months, we launched the channel partner programme in Europe and America, with training and security testing proving especially popular.

Government

Government IT Sales Data Privacy

Global Data Breaches and Cyber Attacks in April 2024 – 5,336,840,757 Records Breached

IT Governance

MAY 2, 2024

IT Governance’s research found the following for April 2024: 652 publicly disclosed security incidents. 1 Example: Le Slip Français – initially logged as unknown, although we knew that the threat actor claimed to have more than 1.5 iSharingSoft has fixed the issue, blaming it on a vulnerability in the app’s groups feature.

Data breaches

Data breaches Sales Computer and Electronics Access

HTML Smuggling Techniques on the Rise: Microsoft

eSecurity Planet

NOVEMBER 16, 2021

HTML smuggling is an evasive technique that uses legitimate HTML5 or JavaScript features to make its way past firewalls and other security technologies. For example, disabling JavaScript could mitigate HTML smuggling created using JavaScript Blobs,” the researchers wrote. This is a major headache for security product vendors.

Ransomware

Ransomware Education Phishing Passwords

Iranian hackers access unsecured HMI at Israeli Water Facility

Security Affairs

DECEMBER 4, 2020

A group of Iranian hackers gained access to a un unprotected ICS at an Israeli Water Facility and posted a video as proof of the hack. Researchers from industrial cybersecurity firm OTORIO revealed that a group of Iranian hackers gained access to a un unprotected ICS at the Israeli Water Facility. ” concludes the post.

Access

Access Agriculture Authentication Education

ENISA and CERT-EU warns Chinese APTs targeting EU organizations

Security Affairs

FEBRUARY 19, 2023

The joint report focus on cyber activities conducted by multiple Chinese Advanced Persistent Threat (APT) groups, including APT27 , APT30 , APT31 , Ke3chang , GALLIUM and Mustang Panda. Secure your cloud environments before moving critical assets there. A secure email gateway can further enhance the protection of the recipients.

Cybersecurity

Cybersecurity Government Access Education

What Is Cross-Site Scripting (XSS)? Types, Risks & Prevention

eSecurity Planet

FEBRUARY 26, 2024

They’re particularly dangerous because it’s difficult for security or development teams to see an XSS vulnerability, and it’s also hard to see the effects of an attack until the ensuing breach is well underway. XSS attacks have multiple security and business risks, including credential theft and damaged company reputation.

Risk

Risk Financial Services Security Libraries

Catches of the Month: Phishing Scams for February 2023

IT Governance

FEBRUARY 7, 2023

In an advisory statement , the NCSC (National Cyber Security Centre) shared details about the campaign, which appears to have been sponsored by the fraudsters’ national governments. However, cyber security experts are warning that another group – scammers – could also embrace the technology.

Phishing

Phishing Government Education Personal data

Data security: Why a proactive stance is best

IBM Big Data Hub

JULY 7, 2023

But with a proactive approach to data security, organizations can fight back against the seemingly endless waves of threats. IBM Security X-Force found the most common threat on organizations is extortion, which comprised more than a quarter (27%) of all cybersecurity threats in 2022. Where do data breaches originate?

Security

Security Data breaches Data Privacy Compliance

What is Cyber Extortion and How Can It Be Prevented?

IT Governance

NOVEMBER 24, 2022

Organisations that suffer security incidents are sometimes said to be victims of “cyber extortion”, but it’s often unclear what exactly that phrase means. For example, if a criminal hacker stole payment card data, they could make bogus payments on victims’ cards for goods or services. Examples of cyber extortion.

IT

IT Ransomware Encryption Phishing

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

The new DePriMon downloader was used by the Lambert APT group, aka Longhorn, to deploy malware. According to a report published by Symantec in 2017, Longhorn is a North American hacking group that has been active since at least 2011. We believe DePriMon is the first example of malware using this technique ever publicly described.”

Communications

Communications Encryption Education Authentication

Ransomware attackers donate stolen money to charity

IT Governance

OCTOBER 20, 2020

A criminal hacking group that extorted millions of dollars in a series of cyber attacks is now donating money to charity. The move has dumbfounded the cyber security community, with the BBC describing it as a “strange and troubling development, both morally and legally”. Today we sended [sic] the first donations.”. Robin Hood hackers’.

Ransomware

Ransomware Education Government Access

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

The group targeted the organization with phishing attacks aimed at spreading at least three new sophisticated malware strains. FireEye’s Mandiant unit observed two distinct waves of attacks carried out by the cybercrime group in December 2020. orgs with 3 malware appeared first on Security Affairs. Pierluigi Paganini.

Manufacturing

Manufacturing Phishing Military Retail

Sky.com servers exposed via misconfiguration

Security Affairs

OCTOBER 9, 2021

This is presumably intended to help security researchers vetted by the search engine’s staff to secure the exposed devices and files indexed on the service. To see if any of your online accounts were exposed in previous security breaches, use our personal data leak checker with a library of 15+ billion breached records.

IoT

IoT Access Ransomware Education

ToxicEye RAT exploits Telegram communications to steal data from victims

Security Affairs

APRIL 24, 2021

Telegram is a legitimate service and enterprise AV engines and security solutions trust its traffic. A Telegram bot account is a special remote account with which users can interact by Telegram chat or by adding them to Telegram groups, or by sending requests directly from the input field by typing the bot’s Telegram username and a query.”

Communications

Communications File names Encryption Education

GUEST ESSAY: 5 anti-phishing training tools that can reduce employees’ susceptibility to scams

The Last Watchdog

NOVEMBER 27, 2018

The vast majority of cyber attacks against organizations pivot off the weakest security link: employees. PhishMe’s online forum provides a series of scenarios, landing pages, attachments and educational pages. This is a platform for security awareness training and simulated phishing tests focusing on the problem of social-engineering.

Phishing

Phishing Education Ransomware Security awareness

Catches of the Month: Phishing Scams for May 2023

IT Governance

MAY 10, 2023

Another ChatGPT threat vector emerges Since the emergence of ChatGPT last year, IT Governance has covered the cyber security implications it’s having in comprehensive detail. Research from the cyber security firm Check Point discovered 13,295 newly registered domains imitating OpenAI and ChatGPT. Can you spot a scam?

Phishing

Phishing Honeypots Education Information Security

Six Charged in Mass Takedown of DDoS-for-Hire Sites

Krebs on Security

DECEMBER 14, 2022

Purveyors of stressers and booters claim they are not responsible for how customers use their services, and that they aren’t breaking the law because — like most security tools — stresser services can be used for good or bad purposes. astrostress[.]com. blackstresser[.]net. brrsecurity[.]org. cyberstress[.]us. defconpro[.]net.

Computer and Electronics

Computer and Electronics Education IT Risk

Ten Ways AI Will Change Democracy

Schneier on Security

NOVEMBER 13, 2023

So, here’s my list: AI as educator. It could help the group reach a decision. AI can give this capability to every decision-making group. And as AIs become more capable at using tools , they can automatically conduct polls and focus groups to test out political ideas. Which means it’s going to be a wild ride.

Artificial Intelligence

Artificial Intelligence Government Risk Education

ASEAN releases Joint Guide to ASEAN Model Contractual Clauses and EU Standard Contractual Clauses and AI Governance Guide

Data Protection Report

FEBRUARY 27, 2024

For example, certain jurisdictions (such as Singapore) may suggest, or even require, modifications to the ASEAN MCCs to ensure compliance with local regulations. [5] Safety and security – Deployers should conduct security testing, such as vulnerability assessment and penetration testing.

Government

Government Personal data Compliance Risk

The effects of phishing awareness training wear off over time

IT Governance

OCTOBER 13, 2020

The findings, which were presented at the USENIX SOUPS security conference in August, were the result of a year-long investigation into the effectiveness of staff awareness training. The researchers studied hundreds of employees , splitting them into groups and providing them with phishing awareness training at various intervals.

Phishing

Phishing Education Privacy Government

Bad News: AI and 5G Are Expected to Worsen Cybersecurity Risks

Security Affairs

NOVEMBER 10, 2019

It also concluded that the top three cybersecurity reasons that respondents use AI now are for network intrusion detection and prevention, fraud detection and secure user authentication. AI could also assist sectors that cybercriminals frequently target, such as the education industry. SecurityAffairs – secure email gateways, malware).

Cybersecurity

Cybersecurity Risk Artificial Intelligence Education

China-linked APT41 group spotted using open-source red teaming tool GC2

FBI and CISA warn of attacks by Rhysida ransomware gang

Webinars

Trending Sources

Exclusive interview with the Powerful Greek Army (PGA) hacker group

Webinars

What Are You Doing for Cyber Security Awareness Month?

National Student Clearinghouse data breach impacted approximately 900 US schools

Another example of email misuse

BlueCharlie changes attack infrastructure in response to reports on its activity

GUEST ESSAY: Too many SMBs continue to pay ransomware crooks — exacerbating the problem

Information Governance – 3 Common Pitfalls and How to Avoid Them

Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill

The Sheriffs are in Town: Recent Developments in Initial Coin Offerings (ICO) Enforcement and Investor Education

Ransomware realities in 2023: one employee mistake can cost a company millions

Researchers Quietly Cracked Zeppelin Ransomware Keys

2022 Cyber Security Review of the Year

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

New Lobshot hVNC malware spreads via Google ads

Group-IB helped to arrest phone scammers profiting off the backs of the Russian elderly

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

We Infiltrated a Counterfeit Check Ring! Now What?

Microsoft aims at stopping cybercriminals from using cracked copies of Cobalt Strike

‘Mother of All Breaches’: 26 BILLION Records Leaked

Catches of the Month: Phishing Scams for September 2023

Sophie Sayer on the IT Governance Partner Programme

Global Data Breaches and Cyber Attacks in April 2024 – 5,336,840,757 Records Breached

HTML Smuggling Techniques on the Rise: Microsoft

Iranian hackers access unsecured HMI at Israeli Water Facility

ENISA and CERT-EU warns Chinese APTs targeting EU organizations

What Is Cross-Site Scripting (XSS)? Types, Risks & Prevention

Catches of the Month: Phishing Scams for February 2023

Data security: Why a proactive stance is best

What is Cyber Extortion and How Can It Be Prevented?

DePriMon downloader uses a never seen installation technique

Ransomware attackers donate stolen money to charity

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Sky.com servers exposed via misconfiguration

ToxicEye RAT exploits Telegram communications to steal data from victims

GUEST ESSAY: 5 anti-phishing training tools that can reduce employees’ susceptibility to scams

Catches of the Month: Phishing Scams for May 2023

Six Charged in Mass Takedown of DDoS-for-Hire Sites

Ten Ways AI Will Change Democracy

ASEAN releases Joint Guide to ASEAN Model Contractual Clauses and EU Standard Contractual Clauses and AI Governance Guide

The effects of phishing awareness training wear off over time

Bad News: AI and 5G Are Expected to Worsen Cybersecurity Risks

Stay Connected