Education, Information Security, Libraries and Security

New Android malicious library Goldoson found in 60 apps +100M downloads

Security Affairs

APRIL 15, 2023

The Goldoson library was discovered by researchers from McAfee’s Mobile Research Team, it collects lists of applications installed on a device, and a history of Wi-Fi and Bluetooth devices information, including nearby GPS locations. It is important to highlight that the library was not developed by the authors of the apps.

Libraries

Libraries Data collection Education Security

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Security Affairs

APRIL 9, 2023

The development team behind the vm2 JavaScript sandbox library addressed a critical Remote Code Execution vulnerability. servers, it has approximately four million weekly downloads and its library is part of 722 packages. servers, it has approximately four million weekly downloads and its library is part of 722 packages.

Libraries

Libraries File names Education Cybersecurity

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. Pierluigi Paganini.

Education

Education Ransomware Encryption Government

The first iPhone Rapid Security Response update released by Apple fails to install

Security Affairs

MAY 2, 2023

Apple has released its first Rapid Security Response update, but many iPhone users reported problems during the installation of the iOS Security Response. On June 2022, Apple announced that the Rapid Security Response feature would be available starting with iOS 16.4.1, ” “iOS Security Response 16.4.1 (a)

Security

Security Libraries Education Cybersecurity

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Security Affairs

DECEMBER 12, 2021

Quebec shut down nearly 4,000 of its sites in response to the discovery of the Log4Shell flaw in the Apache Log4j Java-based logging library. Quebec shut down nearly 4,000 of its sites as a preventative measure after the disclosure of a PoC exploit for the Log4Shell flaw ( CVE-2021-44228 ) in the Apache Log4j Java-based logging library.

Libraries

Libraries Digital transformation Education Government

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 22, 2023

US Cybersecurity and Infrastructure Security Agency (CISA) added MinIO, PaperCut, and Chrome vulnerabilities to its Known Exploited Vulnerabilities catalog. The vulnerability is an Integer overflow in the Skia graphics library, the issue was reported by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023.

IT

IT Libraries Cybersecurity Education

Avast released a free decryptor for the Windows version of the Akira ransomware

Security Affairs

JULY 1, 2023

This Linux version is 64-bit and also uses the Boost library, it uses the Crypto++ library instead of Windows CryptoAPI. ” The decryptor also supports the option to back up encrypted files, which is recommended by the security firm. The authors used Microsoft Linker version 14.35.

Ransomware

Ransomware Encryption Libraries Education

Google fixed the second actively exploited Chrome zero-day of 2023

Security Affairs

APRIL 19, 2023

Google rolled out emergency security patches to address another actively exploited high-severity zero-day flaw in the Chrome browser. The vulnerability is an Integer overflow in the Skia graphics library, the issue was reported by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023.

Libraries

Libraries Education Access Cybersecurity

Meet The Team Behind Mayhem: Come See Us At These Upcoming June 2023 Events

ForAllSecure

JUNE 7, 2023

We have 4 upcoming events planned for June 2023: Mayhem Unleashed Webinar: Discover our Next Generation Security Testing Solution DevSecOps Roundtable CyberSecurity Summit Hartford ForAllSecure APFT (Adversary, Penetration, and FuzzTesting) Training Read on to learn more about June’s events. We hope to see you there! The challenge?

Libraries

Libraries Sales Cybersecurity Education

Google fixed the first Chrome zero-day of 2023

Security Affairs

APRIL 14, 2023

Google released an emergency security update to address a zero-day vulnerability in Chrome which is actively exploited in the wild. Google released an emergency security update to address the first Chrome zero-day vulnerability (CVE-2023-2033) in 2023, the company is aware of attacks in the wild exploiting the issue.

Libraries

Libraries Education Cybersecurity Security

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Security Affairs

JUNE 26, 2023

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Cleanup

Cleanup Libraries Access Manufacturing

Researcher published PoC exploit for Ghostscript zero-day

Security Affairs

SEPTEMBER 7, 2021

Security researcher Nguyen The Duc published on GitHub the proof-of-concept exploit code for a Ghostscript zero-day vulnerability. The library is widely used by many servers that leverage it for image conversion and is used as part of the file upload processing application, such as ImageMagick. Airbnb, Dropbox, and Yandex).

Libraries

Libraries Education Security IT

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It is one of the largest libraries in the world. ” reads the announcement.

Libraries

Libraries Ransomware Manufacturing Education

Malicious file analysis – Example 01

Security Affairs

AUGUST 9, 2022

Cyber Security Specialist Zoziel Pinto Freire shows an example of malicious file analysis presented during his lecture on BSides-Vitória 2022. From a security point of view files of the types DOC, DOCX, XLS, XLSX, and XLSM, have a common issue, they can contain macros which are embedded scripts that are executed inside the file.

Libraries

Libraries Metadata Education Security

Sky.com servers exposed via misconfiguration

Security Affairs

OCTOBER 9, 2021

This is presumably intended to help security researchers vetted by the search engine’s staff to secure the exposed devices and files indexed on the service. After we reported the issue to Sky on October 8, a company representative informed CyberNews that Sky has “taken action to address the issue.” Who had access? Disclosure.

IoT

IoT Access Ransomware Education

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

It uses a statically linked OpenSSL (OpenSSL 0.9.8e) library to interact with the domain over HTTPS via HTTP POST request” The researchers noticed that the command handler implemented in the PingPull malware is similar to the ones supported by both the China Chopper web shell and the PingPull Windows PE variant. .”

Communications

Communications Military Government Libraries

Cyber espionage campaign targets Asian countries since 2021

Security Affairs

SEPTEMBER 13, 2022

The attackers used Dynamic-link library (DLL) side-loading to deliver the malicious code. The attackers target old and outdated versions of security solutions, graphics software, and web browsers that lack of mitigations for DLL side-loading attacks. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Government

Government Access Libraries Education

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs. CERT-FR’s alert states that the Pysa ransomware code is based on public Python libraries. Follow me on Twitter: @securityaffairs and Facebook.

Ransomware

Ransomware Encryption Government Retail

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? Paul Roberts: This Security Ledgers Spotlight podcast is sponsored by ForAllSecure. Listen here: [link]. Transcript.

Security

Security Artificial Intelligence Computer and Electronics Libraries

e-Records 2019: Early Bird discount expires soon!

The Texas Record

OCTOBER 16, 2019

Better Together in a Digital World: Security and Retention. On November 15, the Texas State Library and Archives Commission and the Texas Department of Information Resources will bring together speakers to share case studies and presentations to help Texas governments achieve the benefits of digital transformation and overcome its challenges.

Digital transformation

Digital transformation Records Management Paper Archiving

Nodersok malware delivery campaign relies on advanced techniques

Security Affairs

SEPTEMBER 28, 2019

About 3% of the infected systems belong to organizations in different sectors, including education, professional services, healthcare, finance, and retail. One of the second-stage instances of PowerShell downloads the legitimate node.exe tool, while another drops WinDivert packet capture library components. Pierluigi Paganini.

e-Delivery

e-Delivery Retail Libraries Education

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? Paul Roberts: This Security Ledgers Spotlight podcast is sponsored by ForAllSecure. Listen here: [link]. Transcript.

Security

Security Artificial Intelligence Computer and Electronics Libraries

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? Paul Roberts: This Security Ledgers Spotlight podcast is sponsored by ForAllSecure. Listen here: [link]. Transcript.

Security

Security Artificial Intelligence Computer and Electronics Libraries

House Passes Two Cybersecurity Bills

Hunton Privacy

MAY 1, 2012

3523), which is aimed at facilitating the exchange of cyber threat intelligence information between the government and certain private entities. In addition, the House approved the Federal Information Security Amendments Act of 2012 (H.R. Federal Information Security Amendments Act.

Cybersecurity

Cybersecurity Information Security Libraries Sales

Scholar Calling on Writers for New Book: Impacts of the Cloud on Records Management and Archives

IG Guru

FEBRUARY 10, 2020

Barragan (San Jose State University) Introduction “The Library of Babel” is a short story conceiving of a universe in the form of a nearly infinite library containing all possible books. Impacts of the Cloud on Records Management and ArchivesA book edited by Salvador P.

Records Management

Records Management Archiving Cloud Libraries

Preservica drives global expansion with $10m funding from Mobeus

Preservica

OCTOBER 2, 2018

During 2018 the company reported its fastest growth in revenues underpinned by a continued focus on excellence in Information Security (ISO 27001), quality (ISO 9001), GDPR compliance, and the highest levels of SaaS cloud-hosting as an AWS Advanced Technology Government & Education Competency partner. Media inquiries.

Digital preservation

Digital preservation Archiving Compliance Libraries

Former OpenText CEO John Shackleton joins Preservica as Chairman of the Board

Preservica

JULY 24, 2019

Legacy enterprise content management and archiving vendors are failing to address this, which means Preservica has already attracted an impressive customer base of enterprise, government, education and cultural organizations. About Preservica.

Digital preservation

Digital preservation ECM Archiving CMS

China-linked APT41 group targets telecommunications companies with new backdoor

Security Affairs

OCTOBER 31, 2019

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. The spyware uses the “ libpcap library to listen to all traffic and parses network protocols starting with Ethernet and IP layers. Pierluigi Paganini.

Libraries

Libraries Education Risk Security

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

ransomfeed #security #infosec #energychina pic.twitter.com/deRRximVPd — Ransomfeed (@ransomfeed) November 25, 2023 The China Energy Engineering Corporation (CEEC) is a state-owned company in China that operates in the energy and infrastructure sectors. Energy China [link] TL;DR That's huuuge!

Ransomware

Ransomware Manufacturing Education Libraries

The Hacker Mind Podcast: Hacking Charity

ForAllSecure

JULY 28, 2021

And now, kids were streaming into their office and getting food education, medical care, my work in Uganda had immediate life changing results right away, Vamosi: You might not think of hackers as charitable people as individuals who might be working to make the world a better place. Then again, if any of this comes as a surprise to you.

Computer and Electronics

Computer and Electronics Communications Education IT

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The group also claimed the hack of the British Library and China Energy Engineering Corporation. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The Rhysida ransomware group has been active since May 2023.

Ransomware

Ransomware Manufacturing Education Libraries

Researchers released a free decryption tool for the Rhysida Ransomware

Security Affairs

FEBRUARY 12, 2024

Cybersecurity researchers from Kookmin University and the Korea Internet and Security Agency (KISA) discovered an implementation vulnerability in the source code of the Rhysida ransomware. Rhysida ransomware employed a secure random number generator to generate the encryption key and subsequently encrypt the data.

Ransomware

Ransomware Encryption Paper Manufacturing

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

Recently, the Rhysida ransomware gang added the British Library and China Energy Engineering Corporation to the list of victims on its Tor leak site. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Manufacturing Education Libraries

The Evolution of Aggah: From Roma225 to the RG Campaign

Security Affairs

AUGUST 6, 2019

Few months ago we started observing a cyber operation aiming to attack private companies in various business sectors, from automotive to luxury, education, and media/marketing. Figure 7: Static information about payload described in table 2. Security Affairs – Roma225, hacking). Introduction. The Hagga Pastes.

Libraries

Libraries IT Education Security

Establishing Records Management at Brandeis—The First Eighteen Months

Brandeis Records Manager

MAY 27, 2015

We made early acquaintances with Legal and Information Security leaders. in higher education (substitute your vertical market) were invaluable not only in getting up to speed with the industry, but also in empathizing with various university functions and their professionals. It’s about points of view. Services and Stakeholders.

Records Management

Records Management Communications Paper Mining

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

The former collects environment information from the victim machine and sends it to DropBox, the latter runs code to evade detection by security products. ” If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Experts also discovered some occasional victims in Central Asia and Thailand.

Military

Military Government Phishing Libraries

The Russia-linked APT29 is behind recent attacks targeting NATO and EU

Security Affairs

APRIL 13, 2023

recommend organizations in the area of interest of the APT group to improve the security of IT Security systems. The HTLM files are hosted on a legitimate online library website that was likely compromised by the threat actors sometime between the end of January 2023 and the beginning of February 2023.

Libraries

Libraries Military Education Phishing

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 26, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. million patients in the U.S.

Security

Security Ransomware Data breaches Libraries

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, has founded securepairs.org , a group of infosec experts who are volunteering their free time to fight for the digital right to repair in local legislation. As Stuart Brand said back in 1984 “information wants to be free.” It’s not.

Manufacturing

Manufacturing Agriculture IT Access

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, has founded securepairs.org , a group of infosec experts who are volunteering their free time to fight for the digital right to repair in local legislation. As Stuart Brand said back in 1984 “information wants to be free.” It’s not.

Manufacturing

Manufacturing Agriculture IT Access

New Android malicious library Goldoson found in 60 apps +100M downloads

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Webinars

Trending Sources

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Webinars

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

The first iPhone Rapid Security Response update released by Apple fails to install

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

Avast released a free decryptor for the Windows version of the Akira ransomware

Google fixed the second actively exploited Chrome zero-day of 2023

Meet The Team Behind Mayhem: Come See Us At These Upcoming June 2023 Events

Google fixed the first Chrome zero-day of 2023

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Researcher published PoC exploit for Ghostscript zero-day

Rhysida ransomware gang is auctioning data stolen from the British Library

Malicious file analysis – Example 01

Sky.com servers exposed via misconfiguration

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Cyber espionage campaign targets Asian countries since 2021

PYSA ransomware gang is the most active group in November

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

e-Records 2019: Early Bird discount expires soon!

Nodersok malware delivery campaign relies on advanced techniques

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

House Passes Two Cybersecurity Bills

Scholar Calling on Writers for New Book: Impacts of the Cloud on Records Management and Archives

Preservica drives global expansion with $10m funding from Mobeus

Former OpenText CEO John Shackleton joins Preservica as Chairman of the Board

China-linked APT41 group targets telecommunications companies with new backdoor

Rhysida ransomware gang claimed China Energy hack

The Hacker Mind Podcast: Hacking Charity

Rhysida ransomware group hacked Abdali Hospital in Jordan

Researchers released a free decryption tool for the Rhysida Ransomware

Rhysida ransomware group hacked King Edward VII’s Hospital in London

The Evolution of Aggah: From Roma225 to the RG Campaign

Establishing Records Management at Brandeis—The First Eighteen Months

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

The Russia-linked APT29 is behind recent attacks targeting NATO and EU

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected