Security Affairs

MARCH 31, 2024

ESET researchers reported that a Windows version of DinodasRAT was used in attacks against government entities in Guyana. The campaign seems active since at least early 2022 and focuses primarily on government organizations. The backdoor gathers information about the infected machine and sends it to the C2 server.

Libraries 135

Libraries Encryption Communications Government 135

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. exe, and rundll32.exe.

Government 52

Government Communications Ransomware Manufacturing 52

IT Governance

NOVEMBER 6, 2023

Library branches remain open, Wi-Fi is still available and materials can still be borrowed. Records breached: According to the library’s 4 November update , there is “no evidence that the personal information of our staff or customers has been compromised”. However, public computers and printing services are unavailable.

Data Privacy 97

Data Privacy Privacy Libraries Security 97

Security Affairs

MARCH 19, 2020

CERT France is warning of a new wave of attacks using Pysa ransomware (Mespinoza) that is targeting local governments. CERT France cyber-security agency is warning about a new wave of ransomware attack that is targeting the networks of local government authorities. ” continues the alert. Pierluigi Paganini.

Ransomware 107

Ransomware Government Encryption Passwords 107

Security Affairs

SEPTEMBER 6, 2023

Microsoft revealed that the Chinese group Storm-0558 stole a signing key used to breach government email accounts from a Windows crash dump. Storm-0558 threat actors focus on government agencies in Western Europe and were observed conducting cyberespionage, data theft, and credential access attacks.

Authentication 109

Authentication Libraries Access Government 109

Security Affairs

APRIL 21, 2024

Threat actors target government entities in the Middle East with a new backdoor dubbed CR4T as part of an operation tracked as DuneQuixote. The malware is developed in C/C++ without utilizing the Standard Template Library (STL), and certain segments are coded in pure Assembler.” ” reads the analysis published by Kaspersky.

Libraries 98

Libraries Communications IT Government 98

Security Affairs

DECEMBER 12, 2021

Quebec shut down nearly 4,000 of its sites in response to the discovery of the Log4Shell flaw in the Apache Log4j Java-based logging library. Quebec shut down nearly 4,000 of its sites as a preventative measure after the disclosure of a PoC exploit for the Log4Shell flaw ( CVE-2021-44228 ) in the Apache Log4j Java-based logging library.

Libraries 111

Libraries Digital transformation Education Government 111

Security Affairs

JANUARY 23, 2022

CVE Number CVE Title Required Action Due Date CVE-2021-32648 October CMS Improper Authentication 2/1/2022 CVE-2021-21315 System Information Library for node.js The post US CISA added 17 flaws to its Known Exploited Vulnerabilities Catalog appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

CMS 95

CMS IT Authentication Libraries 95

The Security Ledger

DECEMBER 29, 2021

In this episode of the podcast (#233) Mark Stanislav, a Vice President at the firm Gemini, joins Paul to talk about what went wrong with disclosure of Log4Shell, the critical, remote code execution flaw in the Log4j open source library. As always, you can check our full conversation in our latest Security Ledger podcast at Blubrry.

Libraries 98

Libraries Agriculture Risk Authentication 98

Everteam

OCTOBER 22, 2019

The search to ensure the privacy and protection of digital and physical information is an ongoing one. While physical information security has been practiced for centuries, most people view digital information security as a new concern. Library of Congress, Online Privacy Law.

Archiving 40

Archiving IT Privacy GDPR 40

Security Affairs

MARCH 16, 2023

Multiple threat actors exploited a critical flaw in Progress Telerik to breach an unnamed US federal agency, said the US government. Exploitation of this vulnerability allowed malicious actors to successfully execute remote code on a federal civilian executive branch (FCEB) agency’s Microsoft Internet Information Services (IIS) web server.”

Libraries 83

Libraries Government Ransomware Cybersecurity 83

Security Affairs

MARCH 15, 2023

Russia-linked APT29 group abused the legitimate information exchange systems used by European countries to target government entities. The HTLM files are hosted on a legitimate online library website that was likely compromised by the threat actors sometime between the end of January 2023 and the beginning of February 2023.

Metadata 88

Metadata Government Libraries Phishing 88

Security Affairs

FEBRUARY 18, 2024

Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders U.S.

Security 98

Security Ransomware Data breaches Libraries 98

Security Affairs

JUNE 26, 2023

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Cleanup 80

Cleanup Libraries Access Manufacturing 80

Security Affairs

OCTOBER 1, 2023

Patch your TeamCity instance to avoid server hack Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Artificial Intelligence 102

Artificial Intelligence Security Ransomware Data breaches 102

Security Affairs

DECEMBER 20, 2021

federal government commission associated with international rights. federal government commission associated with international rights. ” According to security firm Avast who discovered the attack, the backdoor was likely used as the initial vector in a multi-stage attack to penetrate the government network.

Government 99

Government Libraries Access Security 99

The Texas Record

MAY 12, 2021

It is a great way to protect and secure government data. Disposition within your offices saves money, protects records, and makes access to records easier for employees of government offices and the public. Information Security. TSLAC has rules and guidelines for local governments and state agencies to use. .”

Privacy 84

Privacy Data breaches Records Management Government 84

Security Affairs

APRIL 26, 2023

In recent years, the researchers observed the group expanding its operations to include financial institutions and government entities. This domain has been hosted on eight other IPs throughout its history, none of these IPs were directly affiliated with the South African government. ” reads the analysis published by Unit 42.

Communications 95

Communications Military Government Libraries 95

Security Affairs

MAY 10, 2023

The US government announced to have disrupted the peer-to-peer (P2P) network of computers compromised by the Snake malware. The malware has been designed and used by Center 16 of Russia’s Federal Security Service (FSB) in cyber espionage operations on sensitive targets. ” reads the press release published by DoJ.

Government 84

Government Libraries Cybersecurity Security 84

Security Affairs

DECEMBER 14, 2021

US CISA ordered federal agencies to address the critical Log4Shell vulnerability in the Log4j library by December 24th, 2021. US CISA ordered federal agencies to address the critical Log4Shell vulnerability in the Log4j library by December 24th, 2021. beta9 to 2.14.1. ” reads the announcement published by CISA. and above.

Libraries 98

Libraries Cybersecurity Security Risk 98

Security Affairs

JANUARY 15, 2023

Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4 Most internet-exposed Cacti servers exposed to hacking French CNIL fined Tiktok $5.4

Security 89

Security Ransomware Libraries Phishing 89

Security Affairs

JANUARY 17, 2022

Recently, the Chinese security firm Rising detected a Linux variant of the SFile ransomware that uses the RSA+AES algorithm mode. “The SFile ransomware uses the Mbed TLS library, RSA-2048 and AES-256 algorithms for file encryption. The ransomware was involved in targeted attacks against corporate and government networks.

Ransomware 140

Ransomware Encryption Libraries Communications 140

Security Affairs

SEPTEMBER 13, 2022

A cyber espionage group targets governments and state-owned organizations in multiple Asian countries since early 2021. Threat actors are targeting government and state-owned organizations in multiple Asian countries as parts of a cyber espionage campaign that remained under the radar since early 2021.

Government 87

Government Access Libraries Education 87

Security Affairs

NOVEMBER 16, 2022

. “CISA obtained four malicious files for analysis during an on-site incident response engagement at a Federal Civilian Executive Branch (FCEB) organization compromised by Iranian government sponsored advanced persistent threat (APT) actors.” ” reads the Malware Analysis Report (AR22-320A) published by CISA.

Mining 117

Mining Government Cybersecurity Libraries 117

Security Affairs

JANUARY 13, 2020

The cyber-espionage group tracked as APT40 (aka TEMP.Periscope , TEMP.Jumper , and Leviathan ), apparently linked to the Chinese government, is focused on targeting countries important to the country’s Belt and Road Initiative (i.e. Hainan Xiandun even appears to operate from the Hainan University Library!”

Libraries 83

Libraries Information Security Military Government 83

Security Affairs

OCTOBER 6, 2020

The CISA agency is warning of a surge in Emotet attacks targeting multiple state and local governments in the US since August. The Cybersecurity and Infrastructure Security Agency (CISA) issued an alert to warn of a surge of Emotet attacks that have targeted multiple state and local governments in the U.S. since August.

Government 135

Government Libraries Cybersecurity Phishing 135

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It is one of the largest libraries in the world. ” reads the announcement.

Libraries 116

Libraries Ransomware Manufacturing Education 116

Security Affairs

OCTOBER 18, 2022

Symantec pointed out that the attacks against government organizations in Hong Kong remained undetected for a year in some cases. Like the sample analyzed by Cyberreason, the Spyder Loader sample analyzed by Symantec uses the CryptoPP C++ library. ” reads the analysis published by Symantec. ” continues the report.

File names 110

File names Encryption Manufacturing Libraries 110

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

File names 130

File names Financial Services Manufacturing Libraries 130

IT Governance

NOVEMBER 8, 2018

Hello and welcome to a the IT Governance podcast for Friday, 9 November. Customers’ names, postal addresses, phone numbers, email addresses, dates of birth, account numbers, balances, transaction histories, payee account information and statement histories were all compromised. Here are this week’s stories. Versions 2.5.12

Libraries 68

Libraries Data breaches Access Government 68

IT Governance

NOVEMBER 15, 2019

ISO 27001 says that you must document your information security risk assessment process. An information security risk assessment is a formal, top management-driven process and sits at the core of an ISO 27001 information security management system (ISMS). Clause 6.1.2 Identify risks. Analyse risks.

Risk 63

Risk Information Security Libraries Compliance 63

Security Affairs

JULY 14, 2021

LuminousMoth: Kaspersky uncovered an ongoing and large-scale APT campaign that targeted government entities in Southeast Asia, including Myanmar and the Philippines. “The archive contains two malicious DLL libraries as well as two legitimate executables that sideload the DLL files.

Archiving 98

Archiving File names Government Libraries 98

Security Affairs

JULY 20, 2023

government. These commands include instructing the malware to upload log files, photos stored on the device, and acquire device location using the Baidu Location library.” The APT41 group, aka Winnti , Axiom, Barium , Blackfly, HOODOO) is a China-linked cyberespionage group that has been active since at least 2007.

File names 83

File names Libraries Cybersecurity IT 83

Security Affairs

AUGUST 9, 2022

PdfParser, a standalone PHP library, provides various tools to extract data from a PDF file. ExifTool is a platform-independent Perl library plus a command-line application for reading, writing, and editing meta information in a wide variety of files. Example: peframe file_name. Pdf-parser. Example: python2.7 pdf-parser.py

Libraries 103

Libraries Metadata Education Security 103

Security Affairs

MAY 8, 2022

Russia-linked APT29 targets diplomatic and government organizations Synology and QNAP warn of critical Netatalk flaws in some of their products Hackers stole +80M from DeFi platforms Rari Capital and Fei Protocol Apr 24 – Apr 30 Ukraine – Russia the silent cyber conflict.

Security 84

Security IoT Ransomware Libraries 84

Security Affairs

OCTOBER 25, 2020

Emotet is a modular malware, its operators could develop new Dynamic Link Libraries to update its capabilities. Recently, the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert to warn of a surge of Emotet attacks that have targeted multiple state and local governments in the U.S. since August.

Ransomware 124

Ransomware Libraries Cybersecurity Government 124

Security Affairs

MAY 25, 2023

Then the library is executed via the Windows IIS web server process. ” This week, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. The msvcr100.dll

Libraries 85

Libraries Security Cybersecurity Government 85