Government, Groups and Industry - Information Management Today

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. The government says Urban went by the aliases “ Sosa ” and “ King Bob ,” among others. 9, 2024, U.S. On July 28 and again on Aug.

Passwords

Passwords Phishing Access Encryption

North Korea-linked APT groups target South Korean defense contractors

Security Affairs

APRIL 23, 2024

The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities. The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities to steal defense technology information.

Authentication

Authentication Passwords Cloud Cybersecurity

Conti Ransomware Group Diaries, Part I: Evasion

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. 22, 2020, the U.S. 428 hospitals.”

Ransomware

Ransomware Government Security IT

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Department of the Treasury says the Trickbot group is associated with Russian intelligence services, and that this alliance led to the targeting of many U.S. companies and government entities. In September 2021, the Kremlin issued treason charges against Ilya Sachkov , formerly head of the cybersecurity firm Group-IB.

Ransomware

Ransomware Government Cybersecurity Blockchain

'Bahamut' Threat Group Targets Government & Industry in Middle East

Dark Reading

OCTOBER 7, 2020

Researchers say the cyber espionage group was involved in several attacks against government officials and businesses in the Middle East and South Asia.

Government

China-linked Space Pirates APT targets the Russian aerospace industry

Security Affairs

MAY 19, 2022

A new China-linked cyberespionage group known as ‘Space Pirates’ is targeting enterprises in the Russian aerospace industry. A previously unknown Chinese cyberespionage group, tracked as ‘Space Pirates’, targets enterprises in the Russian aerospace industry with spear-phishing attacks.

Phishing

Phishing Archiving Government Access

Members of Chinese Espionage Group Develop a 'Side Business'

Data Breach Today

AUGUST 12, 2019

FireEye Reports Some Hackers Target Gaming Industry for Financial Gain Some members of a hacking group with ties to China's government that's primarily known for its complex cyberespionage campaigns have developed a side business targeting the global gaming industry for financial gain, the security firm FireEye says.

Government

Government Security IT

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. The APT group targets telecommunication and travel industries in the Middle East to gather intelligence on Iran’s geopolitical interests. Pierluigi Paganini.

Government

Government Cybersecurity Paper Phishing

Chinese actors behind attacks on industrial enterprises and public institutions

Security Affairs

AUGUST 9, 2022

China-linked threat actors targeted dozens of industrial enterprises and public institutions in Afghanistan and Europe. In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. ” concludes the report.

Encryption

Encryption Military Archiving Phishing

Bitter APT group targets China’s nuclear energy sector

Security Affairs

MARCH 28, 2023

Intezer researchers reported that a South Asian espionage group, tracked as Bitter, is targeting the Chinese nuclear energy industry. Intezer researchers uncovered a cyberespionage campaign targeting the Chinese nuclear energy sector, they linked it to the Bitter APT group. Intezer concludes.

Phishing

Phishing Archiving Government IT

What can AI and generative AI do for governments?

IBM Big Data Hub

SEPTEMBER 20, 2023

AI’s value is not limited to advances in industry and consumer products alone. When implemented in a responsible way—where the technology is fully governed, privacy is protected and decision making is transparent and explainable—AI has the power to usher in a new era of government services.

Government

Government Artificial Intelligence Privacy Digital transformation

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Vietnam-linked APT group APT32 , also known as OceanLotus and APT-C-00, carried out cyber espionage campaigns against Chinese entities to gather intelligence on the COVID-19 crisis. Now the Facebook security team has revealed the real identity of APT32 , linking the group to an IT company in Vietnam named CyberOne Group. .

Agriculture

Agriculture IT Retail Manufacturing

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” ” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. ” reads the message published on the leak site.

Military

Military Manufacturing Ransomware Mining

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Security Affairs

DECEMBER 19, 2023

The Federal Bureau of Investigation (FBI) announced the seizure of the Tor leak site of the AlphV/Blackcat ransomware group. The FBI seized the Tor leak site of the AlphV/Blackcat ransomware group and replaced the home page with the announcement of the seizure. the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware IT Access Manufacturing

China-linked APT10 Target Taiwan’s financial trading industry

Security Affairs

FEBRUARY 22, 2022

China-linked APT group APT10 (aka Stone Panda, Bronze Riverside) targets Taiwan’s financial trading sector with a supply chain attack. The campaign was launched by the APT10 group started in November 2021, but it hit a peak between 10 and 13 2022, Taiwanese cybersecurity firm CyCraft reported. Pierluigi Paganini.

Passwords

Passwords Cloud Security Cybersecurity

Key aerospace player Safran Group leaks sensitive data

Security Affairs

MARCH 15, 2023

Top aviation company Safran Group left itself vulnerable to cyberattacks, likely for well over a year, underlining how vulnerable big aviation firms are to threat actors, according to research by Cybernews. According to its own estimates, Safran Group ’s revenue for 2022 was above €19 billion.

Manufacturing

Manufacturing Access Risk IT

China-linked APT groups targets orgs via Pulse Secure VPN devices

Security Affairs

MAY 28, 2021

Researchers from FireEye warn that China-linked APT groups continue to target Pulse Secure VPN devices to compromise networks. Cybersecurity researchers from FireEye warn once again that Chinese APT groups continue to target Pulse Secure VPN devices to penetrate target networks and deliver malicious web shells to steal sensitive information.

Security

Security Passwords Cybersecurity Government

5 key areas for governments to responsibly deploy generative AI

IBM Big Data Hub

JANUARY 15, 2024

In 2024, the ongoing process of digitalization further enhances the efficiency of government programs and the effectiveness of policies, as detailed in a previous white paper. AI plays a pivotal role in unlocking value from data and gaining deeper insights into the extensive information that governments collect to serve their citizens.

Government

Government Artificial Intelligence Digital transformation Privacy

Sophie Sayer on the IT Governance Partner Programme

IT Governance

FEBRUARY 14, 2024

The benefits of partnering with us, and our partner-exclusive event IT Governance launched its partner programme in 2017, which now includes more than 400 organisations. And why should organisations consider partnering with IT Governance? What is it that makes IT Governance special? What else can partners expect from the event?

Government

Government IT Sales Data Privacy

UK: Government launches International Data Transfer Expert Council

DLA Piper Privacy Matters

JANUARY 27, 2022

The government has announced that it is launching the International Data Transfer Expert Council ( ‘the Council ‘). The government has already outlined the first territories which it will prioritise for its data transfer adequacy decisions.

Government

Government Paper Personal data Security

Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group

Security Affairs

DECEMBER 7, 2021

Microsoft seized dozens of malicious domains used by the China-linked APT15 group to target organizations worldwide. APT15 has been active since at least 2010, it conducted cyber espionage campaigns against targets worldwide in several industries, including defense, high tech, energy, government, aerospace, and manufacturing.

Manufacturing

Manufacturing Phishing Government Security

HHS, AHA Warn of Surge in Russian DDoS Attacks on Hospitals

Data Breach Today

JANUARY 30, 2023

Alerts Come as Attack Threats Spike in Recent Days Government authorities and industry groups are warning the healthcare sector of ongoing distributed denial-of-service attacks on hospitals and other medical entities by Russian nuisance hacking group KillNet, whose name comes from a tool used to launch DDoS attacks.

Government

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Security Affairs

DECEMBER 19, 2023

The Federal Bureau of Investigation (FBI) announced the seizure of the Tor leak site of the AlphV/Blackcat ransomware group. The FBI seized the Tor leak site of the AlphV/Blackcat ransomware group and replaced the home page with the announcement of the seizure. the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware IT Access Manufacturing

Previously undetected Earth Longzhi APT group is a subgroup of APT41

Security Affairs

NOVEMBER 15, 2022

Trend Micro reported that the Earth Longzhi group, a previously undocumented subgroup of APT41, targets Ukraine and Asian Countries. The experts attributed the attacks to a new subgroup of the China-linked APT41 group, tracked as Earth Longzhi. The tool developers and campaign operators share the tools with their collaborator groups.”

Archiving

Archiving Passwords Metadata Insurance

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

Weissman's World

FEBRUARY 1, 2023

If you’re a regular reader, then you know that my pieces are typically more universal than they are industry-specific – though I have been known to opine in such particular places as local government and oil and gas.

Retail

Retail Security Government Records Management

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . These malware strains did not present any similarities with malware associated with other APT groups.

Cybersecurity

Cybersecurity Government Education Security

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware

Ransomware Encryption Government Retail

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Data Matters

OCTOBER 21, 2021

On 22 September 2021, the UK Government (the “ Government ”) published its Artificial Intelligence (“ AI ”) strategy. The paper outlines the Government’s plan to make Britain a “global superpower” in the AI arena, and sets out an agenda to build the most “pro-innovation regulatory environment in the world”.

Artificial Intelligence

Artificial Intelligence Government Paper IT

Critical Infrastructure, ICS/SCADA Systems Under Attack by Advanced Threat Groups

eSecurity Planet

APRIL 14, 2022

Critical infrastructure , industrial control (ICS) and supervisory control and data acquisition (SCADA) systems are under increasing threat of cyber attacks, according to a number of recent warnings from government agencies and private security researchers. and European facilities. Trade Cyberthreats. Active endpoint monitoring (e.g.,

Authentication

Authentication Security awareness Cybersecurity Passwords

Misinformation and hacktivist campaigns targeting the Philippines skyrocket

Security Affairs

APRIL 16, 2024

The number of cyberattacks involving hacktivist groups and foreign misinformation campaigns has nearly tripled. One prolific example of this dynamic is the China-linked Mustang Panda group, which Resecurity observed using cyberspace to stage sophisticated information warfare campaigns. The full report is available here.

Government

Government Security Information Security IT

What Is TOGAF? The Open Group Architecture Framework

erwin

JULY 16, 2020

The Open Group Architecture Framework (TOGAF) is a type of enterprise architecture (EA) framework. Where enterprise architecture is concerned, an “enterprise” refers to any organization or groups of organizations working toward a common goal. At the heart of The Open Group’s Framework is the Architecture Development Method (ADM).

e-Delivery

e-Delivery Education Communications Government

Finding the treasure in governement information management

CILIP

DECEMBER 11, 2023

Asked why he chose the Civil Service above other areas of librarianship, David says: “It is just so interesting… it puts you in the centre of constantly changing challenges while offering unparalleled opportunities to move between librarianship, records management, knowledge management, information governance throughout your career.”

Government

Government Libraries Computer and Electronics Information governance

Three APT groups have targeted at least seven COVID-19 vaccine makers

Security Affairs

NOVEMBER 13, 2020

At least the three nation-state actors have targeted seven COVID-19 vaccine makers, they are Strontium, Lazarus Group, and Cerium, Microsoft warns. Microsoft revealed that at least three APT groups have targeted seven companies involved in COVID-19 vaccines research and treatments. ” reads the post published by Microsoft.

Healthcare

Healthcare Phishing Government Passwords

Gimmal Welcomes Industry Veterans Craig Carpenter and Dean Gonsowski to Extend Company’s Leadership in the Expanding Information Governance Software Space

Gimmal

APRIL 13, 2022

HOUSTON, TEXAS —April 13, 2022 — Gimmal , a leading information governance (IG) software platform, today announced that Craig Carpenter and Dean Gonsowski have been named the company’s CEO and CRO, respectively. Gimmal delivers the complete package—an intelligent, end-to-end, purpose-built IG platform. About Gimmal .

Information governance

Information governance Government Marketing Privacy

US DoJ indicts four members of China-linked APT40 cyberespionage group

Security Affairs

JULY 19, 2021

US DoJ indicted four members of the China-linked cyberespionage group known as APT40 for hacking various entities between 2011 and 2018. The APT40 group has been active since at least 2013 and appears to be focused on supporting naval modernization efforts of the Government of Beijing. Pierluigi Paganini.

Government

Government Cybersecurity Security Access

US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

Security Affairs

FEBRUARY 16, 2024

government offers rewards of up to $10 million for information that could lead to the identification or location of ALPHV/Blackcat ransomware gang leaders. This additional reward aims to target affiliated and initial access brokers involved and that facilitated the attacks of the group. critical infrastructure.”

Ransomware

Ransomware Government Manufacturing Access

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Krebs on Security

APRIL 15, 2020

At least three major industry groups are working to counter the latest cyber threats and scams. Nevertheless, these group have continued to target companies on the periphery of the pandemic response, including virus testing labs, N95 mask production facilities, and companies engaged in vaccine research.

Cybersecurity

Cybersecurity Phishing Government Ransomware

Pro-Russia group NoName057(16) targets Ukraine and NATO countries

Security Affairs

JANUARY 13, 2023

A Pro-Russian group named NoName057(16) is targeting organizations in Ukraine and NATO countries with DDoS attacks. A Pro-Russian cybercrime group named NoName057 (16) (aka 05716nnm or Nnm05716) is behind a wave of DDoS attacks against organizations in Ukraine and NATO countries, SentinelOne researchers reported.

Education

Education Government Security IT

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The China-linked group tracked as APT41 exploited vulnerabilities in Citrix, Cisco, and ManageEngine in a campaign on a global scale. The China-linked cyberespionage group tracked as APT41 exploited vulnerabilities in Citrix, Cisco, and Zoho ManageEngine in a campaign on a global scale. Pierluigi Paganini.

Healthcare

Healthcare Education Manufacturing Government

Why is.US Being Used to Phish So Many of Us?

Krebs on Security

SEPTEMBER 1, 2023

government, which is frequently the target of phishing domains ending in.US. That’s according to The Interisle Consulting Group , which gathers phishing data from multiple industry sources and publishes an annual report on the latest trends. government overall, nor to the US public.” is overseen by the U.S.

Phishing

Phishing Government Compliance Communications

Australian government bombarded by cyber attacks

IT Governance

JUNE 22, 2020

Australia has been hit by a series of ongoing, sophisticated cyber attacks targeting “all levels of government”, Prime Minister Scott Morrison has announced. . IT Governance regularly publishes? The post Australian government bombarded by cyber attacks appeared first on IT Governance UK Blog. Who i s responsible?

Government

Government Paper Risk Security

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Security Affairs

FEBRUARY 28, 2024

. “This trend is believed to be a response to the encouragement from ALPHV Blackcat administrators, who urged affiliates to focus their efforts on hospitals following operational actions against the group and its infrastructure in early December 2023.” reads the press release. “To

Ransomware

Ransomware Government Insurance Manufacturing

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

The US government declared that Russia-linked APT group Energetic Bear has breached US government networks and exfiltrated data. The Energetic Bear APT group (aka DragonFly , Crouching Yeti , TEMP.Isotope, Berserk Bear, TeamSpy , Havex , Koala). ” reads the advisory. ” reads the advisory.

Government

Government Passwords Access Cybersecurity

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

North Korea-linked APT groups target South Korean defense contractors

Webinars

Trending Sources

Conti Ransomware Group Diaries, Part I: Evasion

Webinars

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

'Bahamut' Threat Group Targets Government & Industry in Middle East

China-linked Space Pirates APT targets the Russian aerospace industry

Members of Chinese Espionage Group Develop a 'Side Business'

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Chinese actors behind attacks on industrial enterprises and public institutions

Bitter APT group targets China’s nuclear energy sector

What can AI and generative AI do for governments?

Facebook links cyberespionage group APT32 to Vietnamese IT firm

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

China-linked APT10 Target Taiwan’s financial trading industry

Key aerospace player Safran Group leaks sensitive data

China-linked APT groups targets orgs via Pulse Secure VPN devices

5 key areas for governments to responsibly deploy generative AI

Sophie Sayer on the IT Governance Partner Programme

UK: Government launches International Data Transfer Expert Council

Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group

HHS, AHA Warn of Surge in Russian DDoS Attacks on Hospitals

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Previously undetected Earth Longzhi APT group is a subgroup of APT41

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

Purple Lambert, a new malware of CIA-linked Lambert APT group

Raspberry Robin malware used in attacks against Telecom and Governments

PYSA ransomware gang is the most active group in November

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Critical Infrastructure, ICS/SCADA Systems Under Attack by Advanced Threat Groups

Misinformation and hacktivist campaigns targeting the Philippines skyrocket

What Is TOGAF? The Open Group Architecture Framework

Finding the treasure in governement information management

Three APT groups have targeted at least seven COVID-19 vaccine makers

Gimmal Welcomes Industry Veterans Craig Carpenter and Dean Gonsowski to Extend Company’s Leadership in the Expanding Information Governance Software Space

US DoJ indicts four members of China-linked APT40 cyberespionage group

US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Pro-Russia group NoName057(16) targets Ukraine and NATO countries

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Why is.US Being Used to Phish So Many of Us?

Australian government bombarded by cyber attacks

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Stay Connected