Education, Government and Military - Information Management Today

APT36 Running Espionage Ops Against India's Education Sector

Data Breach Today

APRIL 14, 2023

Pakistan-Linked APT Group Using Spear-Phishing to Plant Info Stealer Malware A suspected Pakistan espionage threat actor that relies on phishing emails is expanding to the education sector after years of focusing on the Indian military and government.

Education

Education Military Phishing Government

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

Security Affairs

FEBRUARY 24, 2023

This year, 750 cyber specialists have participated in the military cyberwarfare exercise. We must innovate to stay ahead of those that would wish us harm and Defence Cyber Marvel 2 is the next evolution of our pioneering collective education.” ” reads the press release published by the UK Ministry of Defence. .

Military

Military Education Government IT

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Microsoft has observed APT28 using GooseEgg in post-compromise activities against various targets, including government, non-governmental, education, and transportation sector organizations in Ukraine, Western Europe, and North America. This tool modifies a JavaScript constraints file and executes it with SYSTEM-level permissions.

Military

Military File names Education Phishing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

The Last Watchdog

MAY 30, 2022

Meanwhile, 200,000 well-trained and technically skilled military service members are discharged each year. Yet, there’s still work to be done to make this path more accessible and known among the veteran and transitioning military community. Many government and non-profit organizations like VetJobs and VetsinTech are doing just this.

Cybersecurity

Cybersecurity Military Education Government

Another Massive Russian Hack of US Government Networks

Schneier on Security

DECEMBER 15, 2020

The press is reporting a massive hack of US government networks by sophisticated Russian hackers. Officials said a hunt was on to determine if other parts of the government had been affected by what looked to be one of the most sophisticated, and perhaps among the largest, attacks on federal systems in the past five years.

Government

Government Military Education IT

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. Educate your employees on threats and risks such as phishing and malware.

Cybersecurity

Cybersecurity Military Passwords Education

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

The Last Watchdog

SEPTEMBER 21, 2023

The program also commits to providing free training for transitioning military, first responders, veterans, military spouses, women, underrepresented minorities, and government personnel. The program will offer 22 additional training pathways that prepare learners for 16 cybersecurity work roles and 17 industry certifications.

Cybersecurity

Cybersecurity Manufacturing Military Artificial Intelligence

Wings for This Man: Celebrating the Tuskegee Airmen

Unwritten Record

FEBRUARY 6, 2024

The country needed to quickly increase the number of soldiers in the military while also increasing the production of wartime goods and manufacturing. To do this, the United States Government employed several strategies to garner the support of the American people. The First Motion Picture Unit, part of the U.S.

Military

Military Government Manufacturing Education

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

Security Affairs

APRIL 30, 2023

CERT-UA warns of a spear-phishing campaign conducted by APT28 group targeting Ukrainian government bodies with fake ‘Windows Update’ guides. Russia-linked APT28 group is targeting Ukrainian government bodies with fake ‘Windows Update’ guides, Computer Emergency Response Team of Ukraine (CERT-UA) warns.

Systems administration

Systems administration Military Phishing Government

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Proofpoint researchers recently reported that a Russian hacking group, tracked as Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats.

IT

IT Military Phishing Passwords

Catches of the Month: Phishing Scams for March 2022

IT Governance

MARCH 8, 2022

The Ukrainian government and its military were targeted by DDoS (distributed denial-of-service) attacks, while a pro-Ukrainian group attacked the Belarusian railway system with ransomware after discovering that it was being used by Russia to transport tanks and weapons. Get started.

Phishing

Phishing Military Access Education

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

In Q1 2023, threat actors linked to Russia’s military intelligence service focused their phishing campaigns on Ukraine, with the country accounting for over 60% of observed Russian targeting. The group targeted multiple sectors, including government, defense, energy, transportation/logistics, education, and humanitarian organizations.

Phishing

Phishing Military Ransomware Education

Government By Numbers: Some Interesting Insights

John Battelle's Searchblog

OCTOBER 28, 2011

Examples include identity (from driver’s licenses and SSNs to Visa, MasterCard, Amex, and Facebook), delivery of important information and items (from the Post Office to Telcos, Internet, and FedEx and UPS), and protection (outsourcing both prisons and military jobs to private companies). Very interesting.

Government

Government Education Military Financial Services

Introducing Films of State, a Conference on Government Films

Unwritten Record

MARCH 11, 2021

Today I am thrilled to tell you about something we’ve been working on: Films of State, a three day online conference focused on government films and NARA’s holdings, scheduled for April 7-9, 2021. The National Archives and Records Administration is the archival repository of the United States government. Government and the People.

Government

Government Archiving Military Libraries

Ministry of Defence academy hit by state-sponsored hackers

Security Affairs

MARCH 22, 2021

The Defence Academy of the United Kingdom provides higher education for personnel in the British Armed Forces, Civil Service, other government departments and service personnel from other nations.

Education

Education Military Government IT

International Holocaust Remembrance Day

Unwritten Record

JANUARY 24, 2023

The purpose of International Holocaust Remembrance Day is to serve as a date for the official commemoration of the victims of the Nazi regime and to promote Holocaust education. We here at the Unwritten Record wanted to share past blogs about the Holocaust in an effort to help promote education on the topic.

Military

Military Education Archiving Libraries

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

JULY 30, 2018

DataLocker honed its patented approach to manufacturing encrypted portable drives and landed some key military and government clients early on; the company has continued branching out ever since. DataLocker actually got traction, early on, selling to the military. LW: Makes sense. and are TAA compliant.

Encryption

Encryption Military Passwords Authentication

Kevin Mitnick, Hacker Turned Cybersecurity Leader, Dies at 59

eSecurity Planet

JULY 20, 2023

military systems and launch nuclear missiles through mere whistling. Mitnik claimed that the government was less worried about the accuracy of the charges and more worried about making an example of Mitnik to discourage other hackers. government to track down offenders or impose punishments. Mitnick’s Legacy The U.S.

Cybersecurity

Cybersecurity Education Military Government

MY TAKE: Michigan’s cybersecurity readiness initiatives provide roadmap others should follow

The Last Watchdog

NOVEMBER 26, 2018

Merit is an acronym for the Michigan Educational Research Information Triad. Other hubs followed at military bases, other state universities and even a high school and a non-profit community arts and tech center. military unit, MEDC and TARDEC this summer hosted the second annual Commercial CyberTruck Challenge.

Cybersecurity

Cybersecurity Military Education Government

Biden AI Order Enables Agencies to Address Key Risks

Hunton Privacy

OCTOBER 31, 2023

Notably, the Order requires private companies to share with the federal government the results of “red-team” safety tests for foundation models that pose certain risks, directs the development of new AI standards to guide government agencies’ acquisition and use of AI, creates a new National AI Research Resource to foster U.S.

Risk

Risk Artificial Intelligence Privacy Military

China Issues Draft Data Security Law

Hunton Privacy

JULY 7, 2020

The Draft includes seven sections and 55 articles in total, covering data security and industrial development, the data security regulatory system, data security protection obligations and government data security and access. The Central Military Commission will develop the measures regulating military Data Activities.

Security

Security Military Government Risk

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

In recent years, the researchers observed the group expanding its operations to include financial institutions and government entities. This domain has been hosted on eight other IPs throughout its history, none of these IPs were directly affiliated with the South African government. Experts added that the IP 196.216.136[.]139

Communications

Communications Military Government Libraries

UK Foreign Office targeted by ‘serious’ cyber attack

IT Governance

FEBRUARY 10, 2022

When governments are targeted by cyber attacks, the blame almost immediately falls on nation states. Russia and China have both recently been linked to cyber espionage and sabotage aimed at government agencies – with Russia accused last month of a widespread attack on the Ukrainian government website.

Military

Military Government Paper Security

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. government institutions, and about 250 Ukrainian victims. ” reads the joint advisory. ” continues the advisory.

Military

Military Access Cybersecurity Education

What Role Government?

John Battelle's Searchblog

NOVEMBER 4, 2011

( image ) As I begin to dig into the work of my next book, I’ve found myself thinking about politics and government far more than I anticipated. For initial thoughts and stats, see Government By Numbers: Some Interesting Insights ). There, our identity is not managed by the government. Some do ask for our SSN, of course.

Government

Government Education Military Communications

US Agencies and FireEye were hacked with a supply chain attack on SolarWinds Software

Security Affairs

DECEMBER 14, 2020

The cyber espionage group has tampered with updates released by IT company SolarWinds, which provides its products to government agencies, military, and intelligence offices, two people familiar with the matter told the Reuters agency. . Threat actors carried out a highly-sophisticated supply chain attack.

Military

Military Cybersecurity Communications Government

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Security Affairs

SEPTEMBER 9, 2019

The group has continued launching attacks against entities in Southeast Asia, including military, satellite communications, media and educational organizations. The Thrip group has been active since 2013, but this is the first time Symantec publicly shared details of its activities. ” concludes the report. “Its

Military

Military Communications Government Education

Is the federal government ready for robotic process automation?

CGI

JULY 19, 2018

Is the federal government ready for robotic process automation? Don’t think of the shambling, clanking humanoid automatons from 1950s sci-fi, or even the sleek bomb-disposal robots used today by the military and police departments. harini.kottees…. Thu, 07/19/2018 - 04:38.

Government

Government Digital transformation Military Education

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

Mint Sandstorm targets both private and public organizations, including political dissidents, journalists, activists, the Defense Industrial Base (DIB), and employees from multiple government agencies, including individuals protesting oppressive regimes in the Middle East. ” reads the report published by Microsoft.

Energy and Utilities

Energy and Utilities Military Education Phishing

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere.

Phishing

Phishing Passwords Military Education

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Hunton Privacy

JUNE 22, 2020

The law also allows operators to use covered information to comply with applicable law or for legitimate research purposes (in certain circumstances), and to disclose covered information to a State or local educational agency for PreK-12 school purposes, as permitted by State or federal law.

Data breaches

Data breaches Privacy Education Data Privacy

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs

MAY 5, 2021

The groups targeted organizations in the business services, financial, health, retail/consumer, aero-military, engineering and manufacturing, government, education, transportation, and utilities industries.

Manufacturing

Manufacturing Phishing Military Retail

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Google sued by New Mexico attorney general for collecting student data through its Education Platform. ObliqueRAT, a new malware employed in attacks on government targets in Southeast Asia. Twitter, Facebook, and Instagram blocked in Turkey as Idlib military crisis escalates. The best news of the week with Security Affairs.

Security

Security Ransomware Military Data breaches

CyberheistNews Vol 13 #14 [Eyes on the Prize] How Crafty Cons Attempted a 36 Million Vendor Email Heist

KnowBe4

APRIL 4, 2023

Human Rights Groups Olga Lautman reported on a very sophisticated social engineering tactic that completely falsifies Non-Government Organizations (NGOs). The NGO Watchlist identifies suspicious NGOs and investigates their funders and links to government influence. or UK government authority."

Phishing

Phishing Security awareness Cybersecurity Education

Russia-linked STRONTIUM APT targets IoT devices to hack corporate networks

Security Affairs

AUGUST 6, 2019

The STRONTIUM APT group (aka APT28 , Fancy Bear , Pawn Storm , Sofacy Group , and Sednit ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

IoT

IoT Military Access Education

List of data breaches and cyber attacks in February 2022 – 5.1 million records breached

IT Governance

MARCH 1, 2022

First, Russia targeted banks and government departments, then Ukraine hit back, attacking the Moscow stock exchange. If you find yourself facing a cyber security disaster, IT Governance is here to help. million records breached appeared first on IT Governance UK Blog.

Data breaches

Data breaches Ransomware Government Blockchain

Go for Broke: The 442nd Infantry Regiment

Unwritten Record

MAY 2, 2023

In Hawaii–where many of the members of the 442nd would later originate from–the military imposed martial law, including curfews and blackouts, as concentration camps were not practical with the large population of people of Japanese ancestry. They also help inform the public about government photographic resources that are available.

Archiving

Archiving Military Education Government

GCHQ implements World War II cipher machines in encryption app CyberChef

Security Affairs

MARCH 18, 2019

UK intelligence agency GCHQ, as part of the celebration of its centenary , has released emulators for World War II cipher machines that can be executed in the encryption app CyberChef released for educational purposes. We even tested them against the real thing!

Encryption

Encryption Military Education Communications

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda , Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing.

Military

Military Government Phishing Libraries

We Can Do It!: World War II Posters at the Still Picture Branch

Unwritten Record

SEPTEMBER 22, 2020

The Still Picture Branch at the National Archives and Records Administration houses a multitude of posters used during World War II by the United States Government. The messages range from the promotion of Victory Gardens to recruitment for the various branches of the military. 44-PF: World War II Foreign Posters, 1942 – 1945.

Archiving

Archiving IT Military Government

APT36 Running Espionage Ops Against India's Education Sector

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

Webinars

Trending Sources

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Webinars

GUEST ESSAY: A Memorial Day call to upskill more veterans for in-demand cybersecurity roles

Another Massive Russian Hack of US Government Networks

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

Wings for This Man: Celebrating the Tuskegee Airmen

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Russia-linked APT28 uses fake Windows Update instructions to target Ukraine govt bodies

FBI chief says China is preparing to attack US critical infrastructure

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Catches of the Month: Phishing Scams for March 2022

Google TAG warns of Russia-linked APT groups targeting Ukraine

Government By Numbers: Some Interesting Insights

Introducing Films of State, a Conference on Government Films

Ministry of Defence academy hit by state-sponsored hackers

International Holocaust Remembrance Day

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

Kevin Mitnick, Hacker Turned Cybersecurity Leader, Dies at 59

MY TAKE: Michigan’s cybersecurity readiness initiatives provide roadmap others should follow

Biden AI Order Enables Agencies to Address Key Risks

China Issues Draft Data Security Law

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

UK Foreign Office targeted by ‘serious’ cyber attack

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

What Role Government?

US Agencies and FireEye were hacked with a supply chain attack on SolarWinds Software

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Is the federal government ready for robotic process automation?

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware

Security Affairs newsletter Round 253

CyberheistNews Vol 13 #14 [Eyes on the Prize] How Crafty Cons Attempted a 36 Million Vendor Email Heist

Russia-linked STRONTIUM APT targets IoT devices to hack corporate networks

List of data breaches and cyber attacks in February 2022 – 5.1 million records breached

Go for Broke: The 442nd Infantry Regiment

GCHQ implements World War II cipher machines in encryption app CyberChef

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

We Can Do It!: World War II Posters at the Still Picture Branch

Stay Connected