Energy and Utilities, Groups, Military and Security

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure. In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. .

Energy and Utilities

Energy and Utilities Military Government Phishing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

An Iran-linked APT group tracked as Mint Sandstorm is behind a string of attacks aimed at US critical infrastructure between late 2021 to mid-2022. The group rapidly weaponized N-day vulnerabilities in popular enterprise applications by using publicly disclosed POCs. ” reads the report published by Microsoft.

Energy and Utilities

Energy and Utilities Military Education Phishing

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. The group also attempted to hack the systems of a US company operating critical infrastructure in the United States. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

UK, US agencies warn of large-scale brute-force attacks carried out by Russian APT

Security Affairs

JULY 1, 2021

US and UK cybersecurity agencies said the Russia-linked APT28 group is behind a series of large-scale brute-force attacks. US and UK cybersecurity agencies published a joint alert about a series of large-scale brute-force conducted by the Russia-linked APT28 group. ” reads the advisory published by the NSA. .

Energy and Utilities

Energy and Utilities Military Cybersecurity Cloud

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

The Last Watchdog

FEBRUARY 3, 2020

Department of Homeland Security issued a bulletin calling out Iran’s “robust cyber program,” and cautioning everyone to be prepared for Iran to “conduct operations in the United States.” And hackers linked to the Russian government were reportedly behind the Triton hack of 2017 , as well, as disclosed by security vendor FireEye.

Energy and Utilities

Energy and Utilities Access Cybersecurity Passwords

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy

Data Privacy Manufacturing Privacy Security

Microsoft Targets Critical Outlook Zero-Day Flaw

eSecurity Planet

MARCH 16, 2023

.” Considering the ease of exploitation, Microsoft also recommends the following mitigations in addition to downloading the latest updates: Add users to the Protected Users Security Group, which prevents the use of NTLM as an authentication mechanism. Consider using it for high value accounts such as Domain Admins when possible.

Energy and Utilities

Energy and Utilities Authentication Ransomware Military

List of data breaches and cyber attacks in March 2020 – 832 million records breached

IT Governance

APRIL 2, 2020

Australia’s Defence Force Recruiting systems were taken offline after security breach (unknown). South African utility provider Eskom is still feeling effects of a cyber security incident (unknown). Wichita State University notifies students and staff of a security incident (1,762). Ransomware. Data breaches.

Data breaches

Data breaches Ransomware Energy and Utilities Phishing

Why Russian APT Fancy Bear hacked the Ukrainian energy firm Burisma?

Security Affairs

JANUARY 14, 2020

Russia-linked cyber-espionage group hacked the Ukrainian energy company Burisma at the center of the impeachment trial of US President Donald Trump. The attack was detailed by California-based cybersecurity firm Area 1 Security in a report. ” reads the report published by Area 1 Security. Pierluigi Paganini.

Energy and Utilities

Energy and Utilities Phishing Military Authentication

Information Management Today

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

FBI chief says China is preparing to attack US critical infrastructure

Webinars

Trending Sources

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Webinars

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

US indicted 4 Russian government employees for attacks on critical infrastructure

UK, US agencies warn of large-scale brute-force attacks carried out by Russian APT

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

Microsoft Targets Critical Outlook Zero-Day Flaw

List of data breaches and cyber attacks in March 2020 – 832 million records breached

Why Russian APT Fancy Bear hacked the Ukrainian energy firm Burisma?

Stay Connected