Government, Groups, Industry and Security - Information Management Today

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. The government says Urban went by the aliases “ Sosa ” and “ King Bob ,” among others. 9, 2024, U.S. On July 28 and again on Aug.

Passwords

Passwords Phishing Access Encryption

North Korea-linked APT groups target South Korean defense contractors

Security Affairs

APRIL 23, 2024

The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities. The National Police Agency in South Korea warns that North Korea-linked threat actors are targeting defense industry entities to steal defense technology information.

Authentication

Authentication Passwords Cloud Cybersecurity

Conti Ransomware Group Diaries, Part I: Evasion

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. ” GAP #1. 22, 2020, the U.S. 22, 2020, the U.S.

Ransomware

Ransomware Government Security IT

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Department of the Treasury says the Trickbot group is associated with Russian intelligence services, and that this alliance led to the targeting of many U.S. companies and government entities. Also charged with treason was Ruslan Stoyanov , then a senior employee at Russian security firm Kaspersky Lab [the Forbes.ru

Ransomware

Ransomware Government Cybersecurity Blockchain

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

Weissman's World

FEBRUARY 1, 2023

If you’re a regular reader, then you know that my pieces are typically more universal than they are industry-specific – though I have been known to opine in such particular places as local government and oil and gas.

Retail

Retail Security Government Records Management

China-linked Space Pirates APT targets the Russian aerospace industry

Security Affairs

MAY 19, 2022

A new China-linked cyberespionage group known as ‘Space Pirates’ is targeting enterprises in the Russian aerospace industry. A previously unknown Chinese cyberespionage group, tracked as ‘Space Pirates’, targets enterprises in the Russian aerospace industry with spear-phishing attacks.

Phishing

Phishing Archiving Government Access

China-linked APT groups targets orgs via Pulse Secure VPN devices

Security Affairs

MAY 28, 2021

Researchers from FireEye warn that China-linked APT groups continue to target Pulse Secure VPN devices to compromise networks. FireEye monitored the activities of two threat clusters, tracked as UNC2630 and UNC2717 , that compromised organizations operate in verticals and industries. and Europe.”

Security

Security Passwords Cybersecurity Government

Security Affairs newsletter Round 468 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

APRIL 21, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Automotive Industry Chinese Organized Crime’s Latest U.S. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Security MDM Ransomware

Members of Chinese Espionage Group Develop a 'Side Business'

Data Breach Today

AUGUST 12, 2019

FireEye Reports Some Hackers Target Gaming Industry for Financial Gain Some members of a hacking group with ties to China's government that's primarily known for its complex cyberespionage campaigns have developed a side business targeting the global gaming industry for financial gain, the security firm FireEye says.

Government

Government Security IT

Facebook links cyberespionage group APT32 to Vietnamese IT firm

Security Affairs

DECEMBER 11, 2020

Vietnam-linked APT group APT32 , also known as OceanLotus and APT-C-00, carried out cyber espionage campaigns against Chinese entities to gather intelligence on the COVID-19 crisis. Now the Facebook security team has revealed the real identity of APT32 , linking the group to an IT company in Vietnam named CyberOne Group. .

Agriculture

Agriculture IT Retail Manufacturing

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” ” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. ” reads the message published on the leak site.

Military

Military Manufacturing Ransomware Mining

Chinese actors behind attacks on industrial enterprises and public institutions

Security Affairs

AUGUST 9, 2022

China-linked threat actors targeted dozens of industrial enterprises and public institutions in Afghanistan and Europe. In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. ” concludes the report.

Encryption

Encryption Military Archiving Phishing

Bitter APT group targets China’s nuclear energy sector

Security Affairs

MARCH 28, 2023

Intezer researchers reported that a South Asian espionage group, tracked as Bitter, is targeting the Chinese nuclear energy industry. Intezer researchers uncovered a cyberespionage campaign targeting the Chinese nuclear energy sector, they linked it to the Bitter APT group.

Phishing

Phishing Archiving Government IT

China-linked APT10 Target Taiwan’s financial trading industry

Security Affairs

FEBRUARY 22, 2022

China-linked APT group APT10 (aka Stone Panda, Bronze Riverside) targets Taiwan’s financial trading sector with a supply chain attack. The campaign was launched by the APT10 group started in November 2021, but it hit a peak between 10 and 13 2022, Taiwanese cybersecurity firm CyCraft reported.

Passwords

Passwords Cloud Security Cybersecurity

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Security Affairs

MAY 21, 2020

The Chafer APT group has distributed data stealer malware since at least mid-2014, it was focused on surveillance operations and the tracking of individuals. The APT group targets telecommunication and travel industries in the Middle East to gather intelligence on Iran’s geopolitical interests. Pierluigi Paganini.

Government

Government Cybersecurity Paper Phishing

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Analyzing the Email Security Landscape and exploring Emerging Threats and Trends. VIPRE Security Group’s latest report, “Email Security in 2024: An Expert Insight into Email Threats,” delves into the cutting-edge tactics and technologies embraced by cybercriminals this year. million as malicious.

Security

Security Phishing Communications Financial Services

Key aerospace player Safran Group leaks sensitive data

Security Affairs

MARCH 15, 2023

Top aviation company Safran Group left itself vulnerable to cyberattacks, likely for well over a year, underlining how vulnerable big aviation firms are to threat actors, according to research by Cybernews. According to its own estimates, Safran Group ’s revenue for 2022 was above €19 billion.

Manufacturing

Manufacturing Access Risk IT

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Security Affairs

DECEMBER 19, 2023

The Federal Bureau of Investigation (FBI) announced the seizure of the Tor leak site of the AlphV/Blackcat ransomware group. The FBI seized the Tor leak site of the AlphV/Blackcat ransomware group and replaced the home page with the announcement of the seizure. the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware IT Access Manufacturing

Sophie Sayer on the IT Governance Partner Programme

IT Governance

FEBRUARY 14, 2024

The benefits of partnering with us, and our partner-exclusive event IT Governance launched its partner programme in 2017, which now includes more than 400 organisations. And why should organisations consider partnering with IT Governance? What is it that makes IT Governance special? What else can partners expect from the event?

Government

Government IT Sales Data Privacy

Misinformation and hacktivist campaigns targeting the Philippines skyrocket

Security Affairs

APRIL 16, 2024

The number of cyberattacks involving hacktivist groups and foreign misinformation campaigns has nearly tripled. One prolific example of this dynamic is the China-linked Mustang Panda group, which Resecurity observed using cyberspace to stage sophisticated information warfare campaigns. The full report is available here.

Government

Government Security Information Security IT

Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group

Security Affairs

DECEMBER 7, 2021

Microsoft seized dozens of malicious domains used by the China-linked APT15 group to target organizations worldwide. APT15 has been active since at least 2010, it conducted cyber espionage campaigns against targets worldwide in several industries, including defense, high tech, energy, government, aerospace, and manufacturing.

Manufacturing

Manufacturing Phishing Government Security

News alert: Simbian launches with $10M to build autonomous, GenAI-powered security platform

The Last Watchdog

APRIL 11, 2024

. – April 11, 2024 – Simbian today emerged from stealth mode with oversubscribed $10M seed funding to deliver on fully autonomous security. Simbian is committed to making security fully autonomous by delegating all tactical tasks to its trusted AI platform, allowing users to focus on strategic security goals. billion by 2028.

Security

Security Risk Marketing Cloud

Previously undetected Earth Longzhi APT group is a subgroup of APT41

Security Affairs

NOVEMBER 15, 2022

Trend Micro reported that the Earth Longzhi group, a previously undocumented subgroup of APT41, targets Ukraine and Asian Countries. Early this year, Trend Micro investigated a security breach suffered by a company in Taiwan. The new APT group used spear-phishing emails as an attack vector to deliver Earth Longhzhi’s malware.

Archiving

Archiving Passwords Metadata Insurance

UK: Government launches International Data Transfer Expert Council

DLA Piper Privacy Matters

JANUARY 27, 2022

The government has announced that it is launching the International Data Transfer Expert Council ( ‘the Council ‘). The government has already outlined the first territories which it will prioritise for its data transfer adequacy decisions.

Government

Government Paper Personal data Security

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

Experts from Kaspersky explained that in February 2019, multiple antivirus companies received a collection of malware samples, some of them cannot be associated with the activity of known APT groups. . These malware strains did not present any similarities with malware associated with other APT groups.

Cybersecurity

Cybersecurity Government Education Security

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware

Ransomware Encryption Government Retail

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 31, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Artificial Intelligence Ransomware Cybersecurity

Critical Infrastructure, ICS/SCADA Systems Under Attack by Advanced Threat Groups

eSecurity Planet

APRIL 14, 2022

Critical infrastructure , industrial control (ICS) and supervisory control and data acquisition (SCADA) systems are under increasing threat of cyber attacks, according to a number of recent warnings from government agencies and private security researchers. and European facilities. Trade Cyberthreats.

Authentication

Authentication Security awareness Cybersecurity Passwords

5 key areas for governments to responsibly deploy generative AI

IBM Big Data Hub

JANUARY 15, 2024

In 2024, the ongoing process of digitalization further enhances the efficiency of government programs and the effectiveness of policies, as detailed in a previous white paper. AI plays a pivotal role in unlocking value from data and gaining deeper insights into the extensive information that governments collect to serve their citizens.

Government

Government Artificial Intelligence Digital transformation Privacy

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military

Military Security Ransomware Insurance

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Security Affairs

DECEMBER 19, 2023

The Federal Bureau of Investigation (FBI) announced the seizure of the Tor leak site of the AlphV/Blackcat ransomware group. The FBI seized the Tor leak site of the AlphV/Blackcat ransomware group and replaced the home page with the announcement of the seizure. the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware IT Access Manufacturing

Market Leading Cybersecurity and National Security Lawyers David Lashway and John Woods Join Sidley in Washington, D.C.

Data Matters

MAY 4, 2022

Mr. Lashway and Mr. Woods join Sidley from Baker McKenzie where they started and led the global cybersecurity practice group for over 10 years. He has significant experience in addressing election security and misinformation related issues, and was deeply involved in the investigations into the 2016 and 2020 elections targeting various U.S.

Cybersecurity

Cybersecurity Marketing Security Privacy

US DoJ indicts four members of China-linked APT40 cyberespionage group

Security Affairs

JULY 19, 2021

US DoJ indicted four members of the China-linked cyberespionage group known as APT40 for hacking various entities between 2011 and 2018. The APT40 group has been active since at least 2013 and appears to be focused on supporting naval modernization efforts of the Government of Beijing. ” states DoJ.

Government

Government Cybersecurity Security Access

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Krebs on Security

APRIL 15, 2020

The Coronavirus has prompted thousands of information security professionals to volunteer their skills in upstart collaborative efforts aimed at frustrating cybercriminals who are seeking to exploit the crisis for financial gain. At least three major industry groups are working to counter the latest cyber threats and scams.

Cybersecurity

Cybersecurity Phishing Government Ransomware

Pro-Russia group NoName057(16) targets Ukraine and NATO countries

Security Affairs

JANUARY 13, 2023

A Pro-Russian group named NoName057(16) is targeting organizations in Ukraine and NATO countries with DDoS attacks. A Pro-Russian cybercrime group named NoName057 (16) (aka 05716nnm or Nnm05716) is behind a wave of DDoS attacks against organizations in Ukraine and NATO countries, SentinelOne researchers reported.

Education

Education Government Security IT

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

Data Matters

OCTOBER 21, 2021

On 22 September 2021, the UK Government (the “ Government ”) published its Artificial Intelligence (“ AI ”) strategy. The paper outlines the Government’s plan to make Britain a “global superpower” in the AI arena, and sets out an agenda to build the most “pro-innovation regulatory environment in the world”.

Artificial Intelligence

Artificial Intelligence Government Paper IT

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement. ” continues the announcement.

Government

Government Military Financial Services IT

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

The espionage group is exploiting four newly-discovered flaws in Microsoft Exchange Server email software, and has seeded hundreds of thousands of victim organizations worldwide with tools that give the attackers total, remote control over affected systems. ” Reached for comment, Microsoft said it is working closely with the U.S.

Cleanup

Cleanup Cybersecurity Government Cloud

Three APT groups have targeted at least seven COVID-19 vaccine makers

Security Affairs

NOVEMBER 13, 2020

At least the three nation-state actors have targeted seven COVID-19 vaccine makers, they are Strontium, Lazarus Group, and Cerium, Microsoft warns. Microsoft revealed that at least three APT groups have targeted seven companies involved in COVID-19 vaccines research and treatments. ” reads the post published by Microsoft.

Healthcare

Healthcare Phishing Government Passwords

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

The US government declared that Russia-linked APT group Energetic Bear has breached US government networks and exfiltrated data. The Energetic Bear APT group (aka DragonFly , Crouching Yeti , TEMP.Isotope, Berserk Bear, TeamSpy , Havex , Koala). ” reads the advisory. ” reads the advisory.

Government

Government Passwords Access Cybersecurity

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. ” continues the DoJ.

Energy and Utilities

Energy and Utilities Government Cybersecurity Military

Finding the treasure in governement information management

CILIP

DECEMBER 11, 2023

Asked why he chose the Civil Service above other areas of librarianship, David says: “It is just so interesting… it puts you in the centre of constantly changing challenges while offering unparalleled opportunities to move between librarianship, records management, knowledge management, information governance throughout your career.”

Government

Government Libraries Computer and Electronics Information governance

Chinese APT FunnyDream targets a South East Asian government

Security Affairs

NOVEMBER 17, 2020

Security experts at BitDefender have uncovered a new China-linked cyber espionage group, tracked as FunnyDream that has already infected more than 200 systems across Southeast Asia over the past two years. Most of the victims were in Vietnam, the group focuses on foreign government organizations of countries in Southeast Asia. .

Government

Government File names Communications Access

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

North Korea-linked APT groups target South Korean defense contractors

Webinars

Trending Sources

Conti Ransomware Group Diaries, Part I: Evasion

Webinars

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Retailers Take Note: Use Infogov to Reduce Fraud, Boost Security, Ensure Accuracy

China-linked Space Pirates APT targets the Russian aerospace industry

China-linked APT groups targets orgs via Pulse Secure VPN devices

Security Affairs newsletter Round 468 by Pierluigi Paganini – INTERNATIONAL EDITION

Members of Chinese Espionage Group Develop a 'Side Business'

Facebook links cyberespionage group APT32 to Vietnamese IT firm

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Chinese actors behind attacks on industrial enterprises and public institutions

Bitter APT group targets China’s nuclear energy sector

China-linked APT10 Target Taiwan’s financial trading industry

Iran-linked Chafer APT group targets governments in Kuwait and Saudi Arabia

Unmasking 2024’s Email Security Landscape

Key aerospace player Safran Group leaks sensitive data

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Sophie Sayer on the IT Governance Partner Programme

Misinformation and hacktivist campaigns targeting the Philippines skyrocket

Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group

News alert: Simbian launches with $10M to build autonomous, GenAI-powered security platform

Previously undetected Earth Longzhi APT group is a subgroup of APT41

UK: Government launches International Data Transfer Expert Council

Purple Lambert, a new malware of CIA-linked Lambert APT group

Raspberry Robin malware used in attacks against Telecom and Governments

PYSA ransomware gang is the most active group in November

Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

Critical Infrastructure, ICS/SCADA Systems Under Attack by Advanced Threat Groups

5 key areas for governments to responsibly deploy generative AI

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

FBI claims to have dismantled AlphV/Blackcat ransomware operation, but the group denies it

Market Leading Cybersecurity and National Security Lawyers David Lashway and John Woods Join Sidley in Washington, D.C.

US DoJ indicts four members of China-linked APT40 cyberespionage group

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

Pro-Russia group NoName057(16) targets Ukraine and NATO countries

National AI Strategy: The UK Government Publishes Its Artificial Intelligence Strategy for the Next Decade

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Three APT groups have targeted at least seven COVID-19 vaccine makers

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

US indicted 4 Russian government employees for attacks on critical infrastructure

Finding the treasure in governement information management

Chinese APT FunnyDream targets a South East Asian government

Stay Connected