Education and Groups - Information Management Today

APT36 Running Espionage Ops Against India's Education Sector

Data Breach Today

APRIL 14, 2023

Pakistan-Linked APT Group Using Spear-Phishing to Plant Info Stealer Malware A suspected Pakistan espionage threat actor that relies on phishing emails is expanding to the education sector after years of focusing on the Indian military and government.

Education

Education Military Phishing Government

Chinese APT Group Uses New Tradecraft to Live Off the Land

Data Breach Today

JUNE 26, 2023

Group Targeting Transportation, Construction, Government Agencies, CrowdStrike Says A Chinese state hacker is using novel tradecraft to gain initial access to victim systems, according to CrowdStrike.

Manufacturing

Manufacturing Education Communications Government

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

The Colorado Department of Higher Education (CDHE) finally disclosed a data breach impacting students, past students, and teachers after the June attack. In June a ransomware attack hit the Colorado Department of Higher Education (CDHE), now the organization disclosed a data breach.

Education

Education Data breaches Ransomware Access

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Communications

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. In recent years, multiple threat actors, including the group TA569 , have been observed using the software as a Remote Access Trojan (RAT).

Education

Education Government Business Services Archiving

Iran-Linked Agrius APT Group Targets Israeli Education, Tech Sectors

Dark Reading

NOVEMBER 7, 2023

The attackers also use custom wipers to cover their tracks and bypass EDR.

Education

Google TAG warns of Russia-linked APT groups targeting Ukraine

Security Affairs

APRIL 20, 2023

Russia-linked threat actors launched large-volume phishing campaigns against hundreds of users in Ukraine to gather intelligence and aimed at spreading disinformation, states Google’s Threat Analysis Group (TAG). The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017.

Phishing

Phishing Military Ransomware Education

Cybercrime group exploits Windows zero-day in ransomware attacks

Security Affairs

APRIL 11, 2023

The experts pointed out that while the majority of zero-days they have discovered in the past were used by APT groups, this zero-day was exploited by a sophisticated cybercrime group. This group is known to have used similar CLFS driver exploits in the past that were likely developed by the same author.

Ransomware

Ransomware Education Cybersecurity Security

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

The ransomware group added the company to the list of victims on its Tor leak site, it claims to have stolen the source code from the company, including a framework to develop bios, and private keys. MSI is headquartered in Taipei, Taiwan.

Ransomware

Ransomware IT Manufacturing Education

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) warns of a North Korea-linked cyberespionage group tracked as ARCHIPELAGO. Google experts are tracking ARCHIPELAGO since 2012 and have observed the group targeting individuals with expertise in North Korea policy issues. ” reads the analysis published by Google TAG.

Phishing

Phishing Passwords Military Education

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Security Affairs

APRIL 26, 2023

Pro-Russia hacking group Zarya caused a cybersecurity incident at a Canadian gas pipeline, the critical infrastructure sector is on alert. A Canadian gas pipeline suffered a cyber security incident, Canada’s top cyber official and Pro-Russia hacking group Zarya claimed the attack could have caused an explosion. intelligence documents.

Cybersecurity

Cybersecurity Education Authentication Security

China-linked APT41 group spotted using open-source red teaming tool GC2

Security Affairs

APRIL 17, 2023

China-linked APT41 group used the open-source red teaming tool GC2 in an attack against a Taiwanese media organization. Google Threat Analysis Group (TAG) team reported that the China-linked APT41 group used the open-source red teaming tool Google Command and Control ( GC2 ) in an attack against an unnamed Taiwanese media organization.

Phishing

Phishing Cloud Government Education

Chinese-Linked APT Spying On Organizations for 10 Years

Data Breach Today

JUNE 12, 2022

Attacker Use DLL hijacking, DNS tunneling to Evade Post-Compromise Detection A recently identified Chinese hacking group dubbed "Aoqin Dragon" has been found to have targeted government, education and telecommunication organizations in Southeast Asia and Australia since 2013 as part of an ongoing cyberespionage campaign, according to research from (..)

Education

Education Government

RIM Education Coffee Chat with SAA Committee on Education- May 12, 1pm EST

The Schedule

MAY 5, 2022

SAA’s Records Management Section is hosting a coffee chat May 12th from 1-2pm ET to discuss records and information management education. I began working on this topic several years ago when I was chair of the RMS, and we submitted a proposal to SAA Education for a new certificate program.

Education

Education Records Management Archiving

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Security Affairs

JUNE 26, 2023

China-linked APT group VANGUARD PANDA, aka Volt Typhoon, was spotted observing a novel tradecraft to gain initial access to target networks. CrowdStrike researchers observed the China-linked APT group VANGUARD PANDA, aka Volt Typhoon , using a novel tradecraft to gain initial access to target networks. ” concludes the report.

Cleanup

Cleanup Libraries Access Manufacturing

Pro-Russia group NoName057(16) targets Ukraine and NATO countries

Security Affairs

JANUARY 13, 2023

A Pro-Russian group named NoName057(16) is targeting organizations in Ukraine and NATO countries with DDoS attacks. A Pro-Russian cybercrime group named NoName057 (16) (aka 05716nnm or Nnm05716) is behind a wave of DDoS attacks against organizations in Ukraine and NATO countries, SentinelOne researchers reported.

Education

Education Government Security IT

North Korea-linked TA406 cyberespionage group activity in 2021

Security Affairs

NOVEMBER 19, 2021

North Korea-linked TA406 APT group has intensified its attacks in 2021, particularly credential harvesting campaigns. A report published by Proofpoint revealed that the North Korea-linked TA406 APT group ( Kimsuky , Thallium , and Konni , Black Banshee, Velvet Chollima) has intensified its operations in 2021. ” reads the report.

Government

Government Education Phishing IT

'Educated Manticore' Targets Israeli Victims in Improved Phishing Attacks

Dark Reading

APRIL 25, 2023

The Iranian threat actor displays activity similar to that of other advanced persistent threat groups.

Education

Education Phishing

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The China-linked group tracked as APT41 exploited vulnerabilities in Citrix, Cisco, and ManageEngine in a campaign on a global scale. The China-linked cyberespionage group tracked as APT41 exploited vulnerabilities in Citrix, Cisco, and Zoho ManageEngine in a campaign on a global scale. Pierluigi Paganini.

Healthcare

Healthcare Education Manufacturing Government

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

Russia-linked APT28 group used a previously unknown tool, dubbed GooseEgg, to exploit Windows Print Spooler service flaw. Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028.

Military

Military File names Education Phishing

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Security Affairs

JANUARY 26, 2023

The UK agency reported ongoing spear-phishing campaigns carried out by Russia-based group SEABORGIUM and Iran-based group TA453 to gather intelligence on the victims. The group also targets former intelligence officials, experts in Russian affairs, and Russian citizens abroad. ” reads the alert published by the UK Agency.

Phishing

Phishing Education Authentication Passwords

What Is TOGAF? The Open Group Architecture Framework

erwin

JULY 16, 2020

The Open Group Architecture Framework (TOGAF) is a type of enterprise architecture (EA) framework. Where enterprise architecture is concerned, an “enterprise” refers to any organization or groups of organizations working toward a common goal. At the heart of The Open Group’s Framework is the Architecture Development Method (ADM).

e-Delivery

e-Delivery Education Communications Government

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware

Ransomware Encryption Government Retail

Role of Library and Knowledge Specialists in Moving Education and Training Online

CILIP

JULY 30, 2020

Role of Library and Knowledge Specialists in Moving Education and Training Online. This is a statement by the Information Literacy Group, a special interest group of the CILIP, the library and information association. You can find further information on the Information Literacy Group website. Published: 31 July 2020.

Libraries

Libraries Education

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Security Affairs

APRIL 24, 2023

Truebot has been active since 2017 and some researchers linked it to the Russian Silence Group , while a recent investigation linked it to threat actor TA505 (aka Evil Corp). It is interesting to note that the domain was also hosting malware a variant of the TrueBot malware.

Cybersecurity

Cybersecurity Ransomware Education Authentication

Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack

Security Affairs

APRIL 20, 2023

North Korea-linked APT group Lazarus employed new Linux malware in attacks that are part of Operation Dream Job. North Korea-linked APT group Lazarus is behind a new campaign tracked as Operation DreamJob (aka DeathNote or NukeSped ) that employed Linux malware.

Archiving

Archiving Education Phishing Cybersecurity

Ransomware Groups Turn to Intermittent Encryption to Speed Attack Times

eSecurity Planet

SEPTEMBER 22, 2022

To accelerate the ransomware encryption process and make it harder to detect, cybercriminal groups have begun using a new technique: intermittent encryption. Sentinel Labs reported the new trend earlier this month, as ransomware groups have adopted the latest technology. Some are written on Go and can be customized.

Encryption

Encryption Ransomware Cybersecurity Education

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

Cisa added the flaw to the KEV catalog after Microsoft reported that the Russia-linked APT28 group (aka “ Forest Blizzard ”, “ Fancybear ” or “ Strontium ” used a previously unknown tool, dubbed GooseEgg, to exploit the Windows Print Spooler flaw CVE-2022-38028.

IT

IT Education Cybersecurity Risk

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . These malware strains did not present any similarities with malware associated with other APT groups.

Cybersecurity

Cybersecurity Government Education Security

Shiny Hunters group is selling data from 11 companies on the Dark Web

Security Affairs

MAY 10, 2020

Shiny Hunters hacking group is offering for sale on a dark web marketplace databases containing over 73.2 A hacking group named Shiny Hunters is attempting to sell on a dark web hacking marketplace databases containing more than 73.2 million user records from over 11 companies. million user records from 11 different companies.

Passwords

Passwords Data breaches Cybersecurity Sales

Exclusive interview with the Powerful Greek Army (PGA) hacker group

Security Affairs

FEBRUARY 3, 2022

Our old Twitter account, which was suspended, had pretty much many attacks on government agencies, corporations, educational institutions, ministries, and many, many other things around the world (which we still do, just on a smaller scale). We are a really mixed group. How were you born and approximately how many you are?

Education

Education Ransomware Government Access

The future of RIM education

The Schedule

DECEMBER 14, 2020

We had a great conversation with folks last week about what has worked for them and what they need in the field of records and information management education. One suggestion was to have a Toastmasters sort of group that could get together to workshop training/workshops you plan to present to constituents.

Education

Education Sales Paper Archiving

CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks

Security Affairs

FEBRUARY 17, 2024

The issue was listed by CISA as known to be used in ransomware campaigns, but the agency did not reveal which ransomware groups are actively exploiting the issue. In January, researchers from cybersecurity firm Truesec reported that the Akira ransomware group exploited the vulnerability in attacks targeting Cisco Cisco ASA and FTD appliances.

Ransomware

Ransomware Cybersecurity Education Passwords

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

e-DAT Practice Group Partner to Attend Upcoming ABA Program and Master’s Conference in Europe on E-Discovery and Data Privacy

eDiscovery Law

JULY 17, 2023

Daniel Miller, a partner of the K&L Gates e-Discovery Analysis & Technology (“e-DAT”) Group and the firm’s Pittsburgh office, will attend this week’s ABA Cross-Border Institute in Paris. The ABA Cross-Border Institute in Paris will provide education and practical guidance […]

e-Discovery

e-Discovery Data Privacy Education Privacy

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

Security Affairs

NOVEMBER 7, 2023

Iran-linked Agonizing Serpens group has been targeting Israeli organizations with destructive cyber attacks since January. Based on our telemetry, the most targeted organizations belong to the education and technology sectors.” ” concludes the report that also includes indicators of compromise (IoCs).

Education

Education Ransomware Access Security

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The FBI and CISA warn of attacks carried out by the Rhysida ransomware group against organizations across multiple industry sectors. The report is part of the ongoing #StopRansomware effort that disseminates advisories about tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with ransomware groups.

Ransomware

Ransomware Manufacturing Education Passwords

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

The libraries and K&IM skillset of the future

CILIP

MARCH 4, 2024

The forum was a unique opportunity for both groups to hear from each other on the skills that librarians and information managers will need in the future, and the opportunity it brings to libraries to take the lead in policy and education around AI. The day was made possible with sponsorship from CB Resourcing and WF Education.

Libraries

Libraries Education Archiving Government

6 Ways to Protect Your Organization Against LAPSUS$

Dark Reading

DECEMBER 29, 2022

Businesses need to educate employees the type of social engineering attacks used by hacking group DEV-0537 (LAPSUS$) and strengthen their security posture.

Education

Education Security

News alert: Reken raises $10M from Greycroft to protect against generative AI-enabled fraud

The Last Watchdog

JANUARY 31, 2024

Founded by Wesley Chan (former Google product leader who founded Google Analytics and Google Voice) and Pegah Ebrahimi (former COO and CIO of Morgan Stanley Tech Banking and COO of Cisco Collaboration), the firm has backed well-known, high-impact startups including Canva, Flexport, Guild Education, Xilis, and Manifold Bio.

Artificial Intelligence

Artificial Intelligence Education Cybersecurity Analytics

Information Literacy Group and CILIP join forces to launch Media and Information Literacy Alliance

CILIP

JULY 14, 2021

The Information Literacy Group and CILIP have announced a joint initiative to launch a new cross-sector Media and Information Literacy Alliance ( [link] ), with the aim of ?helping Welcoming the announcement, Chair of the Information Literacy Group Dr Jane Secker said, ??Media Launch of Media and Information Literacy Alliance.

Education

Education Government IT

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Security Affairs

SEPTEMBER 9, 2019

The China-linked APT group Thrip is continuing to target entities in Southeast Asia even after its activity was uncovered by Symantec. Experts at Symantec first exposed the activity of the Chinese-linked APT Thrip in 2018, now the security firm confirms that cyber espionage group has continued to carry out attacks in South East Asia.

Military

Military Communications Government Education

News alert: Harter Secrest & Emery announces designation as NetDiligence-authorized Breach Coac

The Last Watchdog

FEBRUARY 15, 2024

Paul Greene , CIPP/US, CIPP/E, CIPM, FIP, Harter Secrest & Emery’s Privacy and Data Security practice group helps clients respond to data security incidents of all kinds. NetDiligence-authorized Breach Coach ® firms are selected based on their experience, competency, thought leadership, and industry engagement. Greene Led by partner F.

Data breaches

Data breaches Financial Services Big data Retail

APT36 Running Espionage Ops Against India's Education Sector

Chinese APT Group Uses New Tradecraft to Live Off the Land

Webinars

Trending Sources

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Webinars

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Iran-Linked Agrius APT Group Targets Israeli Education, Tech Sectors

Google TAG warns of Russia-linked APT groups targeting Ukraine

Cybercrime group exploits Windows zero-day in ransomware attacks

Money Message ransomware group claims to have hacked IT giant MSI

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

China-linked APT41 group spotted using open-source red teaming tool GC2

Chinese-Linked APT Spying On Organizations for 10 Years

RIM Education Coffee Chat with SAA Committee on Education- May 12, 1pm EST

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Pro-Russia group NoName057(16) targets Ukraine and NATO countries

North Korea-linked TA406 cyberespionage group activity in 2021

'Educated Manticore' Targets Israeli Victims in Improved Phishing Attacks

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

What Is TOGAF? The Open Group Architecture Framework

PYSA ransomware gang is the most active group in November

Role of Library and Knowledge Specialists in Moving Education and Training Online

Russian cybercrime group likely behind ongoing exploitation of PaperCut flaws

Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack

Ransomware Groups Turn to Intermittent Encryption to Speed Attack Times

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Purple Lambert, a new malware of CIA-linked Lambert APT group

Shiny Hunters group is selling data from 11 companies on the Dark Web

Exclusive interview with the Powerful Greek Army (PGA) hacker group

The future of RIM education

CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

e-DAT Practice Group Partner to Attend Upcoming ABA Program and Master’s Conference in Europe on E-Discovery and Data Privacy

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

FBI and CISA warn of attacks by Rhysida ransomware gang

FBI chief says China is preparing to attack US critical infrastructure

The libraries and K&IM skillset of the future

6 Ways to Protect Your Organization Against LAPSUS$

News alert: Reken raises $10M from Greycroft to protect against generative AI-enabled fraud

Information Literacy Group and CILIP join forces to launch Media and Information Literacy Alliance

Symantec uncovered the link between China-Linked Thrip and Billbug groups

News alert: Harter Secrest & Emery announces designation as NetDiligence-authorized Breach Coac

Stay Connected