Exercises and Groups - Information Management Today

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

North Korea-linked APT group Kimsuky carried out a spear-phishing campaign against US contractors involved in a joint U.S.-South South Korea military exercise. The military drill, the Ulchi Freedom Guardian summer exercises , will start on Monday, August 21, 2023 , and will last 11 days. ” reported Reuters agency.

Military

Military Phishing Government Security

Ransomware Groups are Targeting VMs

eSecurity Planet

JUNE 30, 2021

More recently, Yelisey Boguslavskiy, a security researcher with cybersecurity firm Advanced Intel, earlier this month found that the high-profile ransomware group REvil is using a Linux encryptor that leverages VMware ESXi VMs and also can work on network-attached storage (NAS) systems. “The motivation behind the tactic is stealth. .”

Ransomware

Ransomware Cybersecurity Digital transformation Cloud

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Security Affairs

JANUARY 26, 2023

The UK agency reported ongoing spear-phishing campaigns carried out by Russia-based group SEABORGIUM and Iran-based group TA453 to gather intelligence on the victims. The group also targets former intelligence officials, experts in Russian affairs, and Russian citizens abroad. ” reads the alert published by the UK Agency.

Phishing

Phishing Education Authentication Passwords

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

Krebs on Security

JULY 19, 2021

This story isn’t about what organizations do in response to cybercriminals holding their data for hostage , which has become something of a best practice among most of the top ransomware crime groups today. That’s why tabletop exercises are incredibly important.

Ransomware

Ransomware Encryption Insurance Cybersecurity

How to Package and Price Embedded Analytics

Just by embedding analytics, application owners can charge 24% more for their product. How much value could you add? This framework explains how application enhancements can extend your product offerings. Brought to you by Logi Analytics.

Analytics

Why have I joined the LinkedIn Data Protection Reform Group?

Data Protector

OCTOBER 13, 2020

Complexity also frustrates individuals who try to exercise information rights, only to learn that obscure exceptions to the rules actually result in them having fewer rights than they realised. Complexity provides consulting organisations with a stream of work, but it hinders smaller organisations that can’t access tailored compliance advice.

GDPR

GDPR Privacy Compliance Access

The Business (and Success) of Ransomware Explained as a Simple Funnel

KnowBe4

JUNE 1, 2022

The rise of Ransomware-as-a-Service has given rise to a number of more successful groups who have their “business” down to a simple exercise of playing the numbers.

Ransomware

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

Carrefour France and Carrefour Banque are both affiliates of the French retail group, the Carrefour Group. The group has diversified its activities into the banking and insurance, travel agency and e-commerce sectors. The CNIL carried out online inspections on the carrefour.fr and carrefour-banque.fr

GDPR

GDPR Personal data Data collection Marketing

NATO Group Catfished Soldiers to Prove a Point About Privacy

WIRED Threat Level

FEBRUARY 18, 2019

With $60 and a few fake Facebook accounts, researchers were able to identify service members in a military exercise, track their movement, and even persuade them to disobey orders.

Military

Military Privacy Security

North Korea-linked Konni APT uses Russian-language weaponized documents

Security Affairs

NOVEMBER 24, 2023

North Korea-linked Konni APT group used Russian-language Microsoft Word documents to deliver malware. FortiGuard Labs researchers observed the North Korea-linked Konni APT group using a weaponized Russian-language Word document in an ongoing phishing campaign. ” concludes the report.

Encryption

Encryption Military Phishing Communications

CardX released a data leak notification impacting their customers in Thailand

Security Affairs

SEPTEMBER 17, 2023

CardX recommends that customers keep track of transactions involving their accounts and exercise caution to avoid any potential fraud. CardX is a company in the SCB X Group in Thailand. However, customers are advised to be cautious of fraudsters who may contact them through phone calls, SMS, or fraudulent emails.

Cybersecurity

Cybersecurity Access Security IT

Glut of Fake LinkedIn Profiles Pits HR Against the Bots

Krebs on Security

OCTOBER 5, 2022

The fabricated LinkedIn identities — which pair AI-generated profile photos with text lifted from legitimate accounts — are creating major headaches for corporate HR departments and for those managing invite-only LinkedIn groups. ” The opening slide for a plea by Taylor’s group to LinkedIn.

Artificial Intelligence

Artificial Intelligence Authentication IT Communications

News Alert: Lumu announces launch of new threat hunting service to come at Black Hat USA 2023

The Last Watchdog

AUGUST 1, 2023

To highlight ransomware precursors and how the attacks evade common cyber defenses, Lumu has also released an update to its 2023 Ransomware Flashcard.

Metadata

Metadata Ransomware Cybersecurity Security

Attacking Soldiers on Social Media

Schneier on Security

FEBRUARY 26, 2019

A research group at NATO's Strategic Communications Center of Excellence catfished soldiers involved in an European military exercise -- we don't know what country they were from -- to demonstrate the power of the attack technique. Those pages then promoted the closed groups the researchers had created.

Military

Military Communications IT

FBI and CISA published a new advisory on AvosLocker ransomware

Security Affairs

OCTOBER 13, 2023

The AvosLocker ransomware-as-a-service emerged in the threat landscape in September 2021, since January the group expanded its targets by implementing support for encrypting Linux systems, specifically VMware ESXi servers.

Ransomware

Ransomware Systems administration Cybersecurity Encryption

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

Researchers from Palo Alto Networks Unit 42 recently observed the China-linked Alloy Taurus group (aka GALLIUM , Softcell ) targeting Linux systems with a new variant of PingPull backdoor. In recent years, the researchers observed the group expanding its operations to include financial institutions and government entities.

Communications

Communications Military Government Libraries

ForAllSecure Hosts CMU Open Source Software Hackathon

ForAllSecure

MAY 4, 2022

However, a core group of students remained. The group included several walk-ins who had heard about the event from friends and decided to join in. He then introduced a CMake example before giving the students exercises using open source fuzz testing tools such as AFL and libfuzzer. The event kicked off with pizza and drinks.

IT

IT Security

100,000 ChatGPT Accounts Hacked in Malware Attack

IT Governance

JUNE 22, 2023

The cyber intelligence firm Group-IB discovered the compromised data within the logs of info-stealing malware traded on various underground websites. Indeed, over a quarter of all the stolen information found by Group-IB came last month, with threat actors posting 26,800 new pieces of data in May 2023. How was this possible?

Passwords

Passwords Data breaches Risk Government

NSL Podcast Series: Part 3 Betting on a Breach – How to Prepare for the Inevitable

Hunton Privacy

FEBRUARY 25, 2020

In the final part of our Never Stop Learning podcast series, Lisa Sotto , partner and chair of Hunton Andrews Kurth’s Privacy and Cybersecurity practice, and Eric Friedberg, Co-President of Stroz Friedberg, LLC, and Aon’s Cyber Solutions Group, discuss practical solutions in preparing for a cyber incident. Listen to Part 3 of the podcast.

Insurance

Insurance Data breaches Cybersecurity Privacy

CISA analyzed stealthy malware found on compromised Pulse Secure devices

Security Affairs

JULY 22, 2021

Do not add users to the local administrators group unless required. Exercise caution when opening e-mail attachments even if the attachment is expected and the sender appears to be known. Exercise caution when using removable media (e.g., Enforce a strong password policy and implement regular password changes.

e-Discovery

e-Discovery Security Passwords Access

Reuters: Russia-linked APT behind Brexit leak website

Security Affairs

MAY 28, 2022

Google’s Threat Analysis Group (TAG) chief Shane Huntley told Reuters was set up by a Russia-linked APT dubbed “ Cold River “ At this time it is unclear how the website has obtained the sensitive emails, Reuters pointed out that most of the messages mainly appear to have been exchanged using ProtonMail accounts.

Cybersecurity

Cybersecurity Authentication Security IT

Pro-Russian hacktivists target Italy government websites

Security Affairs

MAY 14, 2022

Pro-Russian hacker group Killnet targeted the websites of several Italian institutions, including the senate and the National Institute of Health. Our Legion conducts military cyber exercises in your countries in order to improve their skills. The impact was limited, the websites were unreachable for a short period of time.

Government

Government Military Cybersecurity Data breaches

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

The Last Watchdog

AUGUST 2, 2018

The National Cyber Security Alliance is a non-profit group, underwritten by the top tech companies and biggest banks, that has been out there since 2001 promoting best practices and supplying programs to engrain this mindset in our society. They built a very robust group of committed cybersecurity professionals in their own businesses.

Cybersecurity

Cybersecurity Security Cleanup Education

European Commission Publishes Results of Surveys on One Year of GDPR Application

Hunton Privacy

JUNE 25, 2019

GDPR Multistakeholder Expert Group Report. The European Commission also published the Contribution from the Multistakeholder Expert to the Stock-Taking Exercise of June 2019 on One Year of GDPR Application (the “Report”). Access the full report with the results of the Eurobarometer.

GDPR

GDPR Personal data Privacy Risk

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs

APRIL 2, 2023

The documents demonstrate that it also developed hacking tools for the Russia-linked APT group Sandworm. The Sandworm group (aka BlackEnergy , UAC-0082 , Iron Viking , Voodoo Bear , and TeleBots ) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for Special Technologies (GTsST).

Energy and Utilities

Energy and Utilities Education Ransomware IT

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

Security

Security Ransomware Data breaches Cybersecurity

UK: Lloyd -v- Google: a good day for claimant lawyers; a bad day for Google and organisations defending privacy group litigation

DLA Piper Privacy Matters

OCTOBER 3, 2019

The High Court ought to have exercised its discretion to allow this representative action to proceed. 2) allows the court, exercising its discretion, to direct that a person may not act as a representative. At first instance, Warby J exercised this discretion. Judicial discretion.

Privacy

Privacy GDPR Data breaches Personal data

US Govt agencies detail North Korea-linked HIDDEN COBRA malware

Security Affairs

FEBRUARY 14, 2020

The government experts released new and updated Malware Analysis Reports (MARs) related to new malware families involved in new attacks carried out by North Korea-linked HIDDEN COBRA group. Do not add users to the local administrators group unless required. Exercise caution when using removable media (e.g.,

Passwords

Passwords Access Phishing Authentication

European Commission publishes much anticipated finalised Standard Contractual Clauses

Data Protection Report

JUNE 4, 2021

This means that organisations will need to embark on a mass repapering exercise to ensure that all vendor contracts and intra-group agreements contain the new SCCs if personal data is transferred. We will be analysing the new SCCs over the coming days so watch out for further updates from us.

Personal data

Personal data GDPR

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Security Affairs

FEBRUARY 4, 2022

The Russia-linked Gamaredon APT group attempted to compromise an unnamed Western government entity in Ukraine. Palo Alto Network experts mapped out three large clusters of the infrastructure used by the nation-state APT group used to support different phishing and malware campaigns. reads the announcement published by the SSU.

Government

Government Military Phishing Information Security

Can Training Work Remotely?

Adam Shostack

APRIL 13, 2021

I see two sets of advantages: the exercises and time budgets. On the exercises, people can spend the time they need. This can also be a curse, and so our exercises have a time range per exercise so people can see when to ask for help.) It’s literally harder to see the advantages to being distributed.

IT

ForAllSecure Hosts ASU Open Source Software Hackathon

ForAllSecure

MAY 18, 2022

Over the next several weeks, the combined groups of ASU students contributed over 300 GitHub Open Source Software integrations for our Mayhem Heroes program. were on hand to answer questions and help the students complete the exercises. Open source software is mission critical, but its security is severely under-tested.

IT

IT Security

Security Affairs newsletter Round 408 by Pierluigi Paganini

Security Affairs

FEBRUARY 26, 2023

If you want to also receive for free the newsletter with the international press subscribe here.

Security

Security Military Ransomware Insurance

UK Supreme Court Grants Google Permission to Appeal Class Action Claim in Lloyd vs Google LLC

Data Matters

JULY 16, 2020

The class action brought against Google by Richard Lloyd, the former editor of consumer protection rights group “Which?”, Whether the High Court judge was correct to exercise his discretion in ruling that the claim should not be permitted to proceed under CPR 19.6 relates to the alleged tracking of personal data by Google of 4.4

Personal data

Personal data GDPR Privacy Data Privacy

US govt agencies share details of the China-linked espionage malware Taidoor

Security Affairs

AUGUST 4, 2020

Do not add users to the local administrators group unless required. Exercise caution when opening e-mail attachments even if the attachment is expected and the sender appears to be known. Exercise caution when using removable media (e.g., Enforce a strong password policy and implement regular password changes.

Healthcare

Healthcare Passwords Government Systems administration

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

In June the group started a reconnaissance and targeting activity aimed at a U.S. “We recommend defense contractors exercise caution and monitor their networking devices for the presence of HiatusRAT. We suspect the HiatusRAT cluster serves as another example of tradecraft that could be applied against the U.S.

Military

Military Manufacturing Government Access

Data Protection: Where’s the Brexit Privacy Dividend?

Data Protector

AUGUST 17, 2020

It isn't easy to explain the concept that the exercise of a particular information right depends on the precise legal basis the organisation relies upon to process personal data. I’ve never met anyone outside the privacy community who thought that privacy statements should include such details in the first place.

Privacy

Privacy GDPR Personal data Computer and Electronics

Avoiding, Managing And Responding To Cyber Incidents

Data Protection Report

NOVEMBER 2, 2023

Risk management framework for outsourced data: Where a firm outsources the processing of data, including to an intra-group company, there must be in place an appropriate risk management framework that allows the firm to identify and mitigate the risks inherent in that outsourcing.

GDPR

GDPR Risk Cybersecurity Compliance

Lazarus APT continues to target cryptocurrency businesses with Mac malware

Security Affairs

MARCH 28, 2019

North Korea-linked Lazarus group made the headlines again, it has been leveraging PowerShell to target both Windows and macOS machines. The North Korea-linked Lazarus APT group made has been leveraging PowerShell to target both Windows and macOS machines in a new wave of attacks. ” Kaspersky says. .

Communications

Communications Ransomware IT Security

Police are warning crooks are using cleaners to compromise businesses

Security Affairs

FEBRUARY 3, 2020

Exploitation of staff is a key area” “ Organised crime groups are planting ‘sleepers’ in cleaning companies that a procurement team may look at bidding for. Cleaners could allow attackers to bypass physical measures and once inside the target organizations they could hack internal systems and move laterally.

Security awareness

Security awareness Access Privacy Security

MY TAKE: ‘Bashe’ attack theorizes a $200 billion ransomware raid using NSA-class cyber weapons

The Last Watchdog

JANUARY 31, 2019

The exercise was commissioned by Lloyd’s of London, the Cambridge Centre for Risk Studies and the Nanyang Technological University in Singapore, among others.

Ransomware

Ransomware Government Risk Access

CISA’s advisory warns of notable increase in LokiBot malware

Security Affairs

SEPTEMBER 22, 2020

Do not add users to the local administrators’ group unless required. Exercise caution when opening email attachments, even if the attachment is expected and the sender appears to be known. Exercise caution when using removable media (e.g., Enforce a strong password policy. See Choosing and Protecting Passwords.

Passwords

Passwords Authentication Cybersecurity Access

What are Breach and Attack Simulations?

IBM Big Data Hub

FEBRUARY 16, 2024

Like a red team exercise, breach and attack simulations use the real-world attack tactics, techniques, and procedures (TTPs) employed by hackers to proactively identify and mitigate security vulnerabilities before they can be exploited by actual threat actors.

Cybersecurity

Cybersecurity Cloud Security IoT

Ransomware realities in 2023: one employee mistake can cost a company millions

Security Affairs

OCTOBER 17, 2023

With that in mind, Cybernews has created a free tool that monitors ransomware groups’ extortion sites and delivers consolidated feeds of their claims worldwide. Regularly conduct cybersecurity training and simulated phishing exercises to raise awareness and reinforce good security habits.

Ransomware

Ransomware Phishing Passwords Education

N. Korean Kimsuky APT targets S. Korea-US military exercises

Ransomware Groups are Targeting VMs

Webinars

Trending Sources

UK NCSC warns of spear-phishing attacks from Russia-linked and Iran-linked groups

Webinars

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

How to Package and Price Embedded Analytics

Why have I joined the LinkedIn Data Protection Reform Group?

The Business (and Success) of Ransomware Explained as a Simple Funnel

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

NATO Group Catfished Soldiers to Prove a Point About Privacy

North Korea-linked Konni APT uses Russian-language weaponized documents

CardX released a data leak notification impacting their customers in Thailand

Glut of Fake LinkedIn Profiles Pits HR Against the Bots

News Alert: Lumu announces launch of new threat hunting service to come at Black Hat USA 2023

Attacking Soldiers on Social Media

FBI and CISA published a new advisory on AvosLocker ransomware

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

ForAllSecure Hosts CMU Open Source Software Hackathon

100,000 ChatGPT Accounts Hacked in Malware Attack

NSL Podcast Series: Part 3 Betting on a Breach – How to Prepare for the Inevitable

CISA analyzed stealthy malware found on compromised Pulse Secure devices

Reuters: Russia-linked APT behind Brexit leak website

Pro-Russian hacktivists target Italy government websites

National Cybersecurity Alliance advocates ‘shared responsibility’ for securing the Internet

European Commission Publishes Results of Surveys on One Year of GDPR Application

Leaked documents from Russian firm NTC Vulkan show Sandworm cyberwarfare arsenal

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

UK: Lloyd -v- Google: a good day for claimant lawyers; a bad day for Google and organisations defending privacy group litigation

US Govt agencies detail North Korea-linked HIDDEN COBRA malware

European Commission publishes much anticipated finalised Standard Contractual Clauses

Russia-linked Gamaredon APT targeted a western government entity in Ukraine

Can Training Work Remotely?

ForAllSecure Hosts ASU Open Source Software Hackathon

Security Affairs newsletter Round 408 by Pierluigi Paganini

UK Supreme Court Grants Google Permission to Appeal Class Action Claim in Lloyd vs Google LLC

US govt agencies share details of the China-linked espionage malware Taidoor

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Data Protection: Where’s the Brexit Privacy Dividend?

Avoiding, Managing And Responding To Cyber Incidents

Lazarus APT continues to target cryptocurrency businesses with Mac malware

Police are warning crooks are using cleaners to compromise businesses

MY TAKE: ‘Bashe’ attack theorizes a $200 billion ransomware raid using NSA-class cyber weapons

CISA’s advisory warns of notable increase in LokiBot malware

What are Breach and Attack Simulations?

Ransomware realities in 2023: one employee mistake can cost a company millions

Stay Connected