Government, IT, Military and Passwords - Information Management Today

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

Defense contractor Belcan leaks admin password with a list of flaws

Security Affairs

AUGUST 22, 2023

US Government and defense contractor Belcan left its super admin credentials open to the public, Cybernews research team reveals. Belcan is a government, defense, and aerospace contractor offering global design, software, manufacturing, supply chain, information technology, and digital engineering solutions.

Passwords

Passwords Military Manufacturing Analytics

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 4, 2023

Proofpoint researchers recently reported that a Russian hacking group, tracked as Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats.

IT

IT Military Phishing Passwords

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Security Affairs

AUGUST 5, 2020

ZDNet reported in exclusive that a list of passwords for 900+ enterprise VPN servers has been shared on a Russian-speaking hacker forum. ZDNet has reported in exclusive that a list of plaintext usernames and passwords for 900 Pulse Secure VPN enterprise servers, along with IP addresses, has been shared on a Russian-speaking hacker forum.

Passwords

Passwords Security Ransomware Military

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Passwords Government Security

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

These Russian cyber actors are government organizations and include other parties who take their orders from the Russian military or intelligence organizations – while not technically under government control. As the United States and other nations condemn Russia’s actions, the odds of Russian cyber actors targeting the U.S.,

Cybersecurity

Cybersecurity Military Passwords Education

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Ransomware

Ransomware Government Military Access

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report.

Energy and Utilities

Energy and Utilities Military Government Phishing

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Security Affairs

OCTOBER 25, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. ” states Microsoft. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

IT

IT Cloud Military Phishing

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The Government experts pointed out that in some cases the group did not deployed any backdoor in the compromised systems. ” reads trhe announcement published by DKWOC.

Military

Military Government Phishing Access

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

JULY 30, 2018

DataLocker honed its patented approach to manufacturing encrypted portable drives and landed some key military and government clients early on; the company has continued branching out ever since. All the user needs is a strong password to access to the data. All the user needs is a strong password to access to the data.

Encryption

Encryption Military Passwords Authentication

Connecticut Tightens its Data Breach Notification Laws

Data Protection Report

OCTOBER 3, 2021

credit or debit card number, or any financial account number in combination with any required security code, access code or password that would permit access to such financial account. 60-Day Notification Window. Additional Considerations for Businesses. 1] [link]. [2] 2] C.R.S. §

Data breaches

Data breaches IT Insurance Passwords

Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 24, 2024

surfaces in the threat landscape Pokemon Company resets some users’ passwords Ukraine cyber police arrested crooks selling 100 million compromised accounts New AcidPour wiper targets Linux x86 devices. Is it a Russia’s weapon? Players hacked during the matches of Apex Legends Global Series.

Security

Security Passwords Military Marketing

Russian APT group Winter Vivern targets email portals of NATO and diplomats

Security Affairs

MARCH 31, 2023

A Russian hacking group, tracked Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats. The CVE-2022-27926 flaw affects Zimbra Collaboration versions 9.0.0,

Military

Military Phishing Passwords Government

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

Collectively in control over millions of spam-spewing zombies, those botmasters also continuously harvested passwords and other data from infected machines. As we’ll see in a moment, Salomon is now behind bars, in part because he helped to rob dozens of small businesses in the United States using some of those same harvested passwords.

Computer and Electronics

Computer and Electronics Passwords Sales Government

China-linked APT Curious Gorge targeted Russian govt agencies

Security Affairs

MAY 3, 2022

China-linked Curious Gorge APT is targeting Russian government agencies, Google Threat Analysis Group (TAG) warns. Google Threat Analysis Group (TAG) reported that an APT group linked to China’s People’s Liberation Army Strategic Support Force (PLA SSF), tracked as Curious Gorge , is targeting Russian government agencies.

Manufacturing

Manufacturing Phishing Passwords Military

Security Affairs newsletter Round 399 by Pierluigi Paganini

Security Affairs

DECEMBER 25, 2022

Expert found Backdoor credentials in ZyXEL LTE3301 M209 Raspberry Robin malware used in attacks against Telecom and Governments TikTok parent company ByteDance revealed the use of TikTok data to track journalists BetMGM discloses security breach impacting 1.5 Follow me on Twitter: @securityaffairs and Facebook and Mastodon.

Security

Security Military Ransomware Encryption

Iran-linked DEV-0343 APT target US and Israeli defense technology firms

Security Affairs

OCTOBER 11, 2021

DEV-0343: Iran-linked threat actors are targeting US and Israeli defense technology companies leveraging password spraying attacks. Threat actors are launching extensive password spraying attacks aimed at the target organizations, the malicious campaign was first spotted in July 2021. ” reads the post published by Microsoft.

Passwords

Passwords Authentication Military Analytics

$10M Is Yours If You Can Get This Guy to Leave Russia

Krebs on Security

MAY 4, 2023

government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check , one of the cybercrime underground’s most trusted services for checking the validity of stolen credit card data. This and other “nordia@” emails shared a password: “ anna59.”

Marketing

Marketing Passwords Government Military

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement. However, the group’s activities are characterized by intrusiveness and audacity. ” concludes the announcement.

Military

Military Metadata Government Passwords

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Security Affairs

MARCH 5, 2022

Anonymous announced to have hacked more than 2,500 websites linked to the Russian and Belarusian governments, state-owned media outlets spreading disinformation, Russian private organizations, banks, hospitals, airports. JUST IN: #Anonymous leaks database of the Russian Government website [ [link] ]. ” reported Avionews.

Passwords

Passwords Government Military Authentication

Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers

Security Affairs

JULY 20, 2022

MiCODUS is used today by 420,000 customers in multiple industries, including government, military, law enforcement agencies, and Fortune 1000 companies. CVE-2022-2141 (CVSS score: 9.8) – Improper authentication allows a user to send some SMS commands to the GPS tracker without a password.

Passwords

Passwords Manufacturing Military Authentication

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

Security Affairs

OCTOBER 1, 2023

million newborns and pregnancy care patients Xenomorph malware is back after months of hiatus and expands the list of targets Smishing Triad Stretches Its Tentacles into the United Arab Emirates Crooks stole $200 million worth of assets from Mixin Network A phishing campaign targets Ukrainian military entities with drone manual lures Alert!

Artificial Intelligence

Artificial Intelligence Security Ransomware Data breaches

UK, US agencies warn of large-scale brute-force attacks carried out by Russian APT

Security Affairs

JULY 1, 2021

US and UK cybersecurity agencies said today that a Russian military cyber unit has been behind a series of brute-force attacks that have targeted the cloud IT resources of government and private sector companies across the world. ” reads the advisory published by the NSA. . ” reads the advisory published by the NSA.

Energy and Utilities

Energy and Utilities Military Cybersecurity Cloud

5 Signs a Cyberattack Is Under Way and 5 Things You Need to Do Before It Happens

Adam Levin

FEBRUARY 10, 2020

drone attack that killed Iranian military commander Qassem Suleimani. Immediately following Iran’s counterstrike against American military posts in Iraq, a tweet circulated claiming that more than 20 American soldiers had been killed. Cyberwar could be a life disrupter as well as a business killer. We’re all connected.

IT

IT Passwords Phishing Military

XDSpy APT remained undetected since at least 2011

Security Affairs

OCTOBER 2, 2020

The APT group, recently discovered by ESET, targeted government and private companies in Belarus, Moldova, Russia, Serbia, and Ukraine, including militaries and Ministries of Foreign Affairs. Experts also noticed that hackers also used NirSoft utilities to recover passwords from web browsers and email clients.

Military

Military Phishing Passwords Government

Hacker who helped the ISIS will remain in US prison

Security Affairs

OCTOBER 9, 2020

government and military personnel will remain in a federal prison. Ardit Ferizi , aka Th3Dir3ctorY, is the hacker that supported the ISIS organization by handing over data for 1,351 US government and military personnel. Leaked data included names, e-mail addresses, passwords, locations and phone numbers of 1,351 U.S.

Military

Military Government Retail Risk

Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict

Security Affairs

MARCH 13, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. March 9 – Multiple Russian government websites hacked in a supply chain attack. Google TAG observed Russian, Belarusian, and Chinese threat actors targeting Ukraine and European government and military orgs.

Blockchain

Blockchain Phishing Military Passwords

SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide

Security Affairs

JULY 1, 2022

” The SessionManager backdoor was employed in attacks against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East. The report also includes Indicators of Compromise (IoCs) for this threat. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Passwords Access Government

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere. The experts pointed out that ARCHIPELAGO focuses on building a rapport with targets.

Phishing

Phishing Passwords Military Education

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

A British court has rejected the request of the US government to extradite Wikileaks founder Julian Assange to the country. government will likely appeal the decision. He published thousands of classified diplomatic and military documents on WikiLeaks in 2010. link] — Freedom of the Press (@FreedomofPress) January 4, 2021.

Military

Military Government Risk Passwords

Security Affairs newsletter Round 399 by Pierluigi Paganini

Security Affairs

DECEMBER 25, 2022

Expert found Backdoor credentials in ZyXEL LTE3301 M209 Raspberry Robin malware used in attacks against Telecom and Governments TikTok parent company ByteDance revealed the use of TikTok data to track journalists BetMGM discloses security breach impacting 1.5 Follow me on Twitter: @securityaffairs and Facebook and Mastodon.

Security

Security Military Ransomware Encryption

Russia-linked APT28 has been scanning vulnerable email servers in the last year

Security Affairs

MARCH 20, 2020

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The cyberespionage group continues to target members of defense companies, embassies, governments, and the military.

Phishing

Phishing Military Government Passwords

Russian Sandworm APT impersonates Ukrainian telcos to deliver malware

Security Affairs

SEPTEMBER 21, 2022

The APT hacking group is believed to have been behind numerous attacks this year, including an attack on Ukrainian energy infrastructure and the deployment of a persistent botnet called “ Cyclops Blink ” dismantled by the US government in April. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Phishing Passwords Ransomware

Security Vulnerabilities in US Weapons Systems

Schneier on Security

OCTOBER 10, 2018

The US Government Accounting Office just published a new report: " Weapons Systems Cyber Security: DOD Just Beginning to Grapple with Scale of Vulnerabilities " (summary here ). From the summary: Automation and connectivity are fundamental enablers of DOD's modern military capabilities. But that's probably a mistake in the long run.

Security

Security Military Passwords Cybersecurity

Transparent Tribe APT hit 1000+ victims in 27 countries in the last 12 months

Security Affairs

AUGUST 23, 2020

The Transparent Tribe cyber-espionage group continues to improve its arsenal while targets Military and Government entities. The Transparent Tribe APT group is carrying out an ongoing cyberespionage campaign aimed at military and diplomatic targets worldwide. ” reads the analysis published by Kaspersky.

Military

Military Phishing Passwords Communications

Citrix Hack Exposes Customer Data

Adam Levin

MARCH 12, 2019

While not confirmed, the FBI has advised that the hackers likely used a tactic known as password spraying, a technique that exploits weak passwords. The details and scope of the damage caused by the attack are still unclear, but the activity has been tracked back to Iridium, a hacking group linked to the Iranian government.

Military

Military Passwords Cybersecurity Government

The Platinum APT group adds the Titanium backdoor to its arsenal

Security Affairs

NOVEMBER 9, 2019

According to Microsoft, the Platinum has been active since at least 2009, it was responsible for spear phishing attacks on ISPs, government organizations, intelligence agencies, and defense institutes. The APT group was discovered by Microsoft in 2016, it targeted organizations in South and Southeast. ” continues the analys i s.

IT

IT Archiving Encryption Passwords

Chinese actors behind attacks on industrial enterprises and public institutions

Security Affairs

AUGUST 9, 2022

In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. The attackers breached dozens of enterprises and in some cases compromised their IT infrastructure, taking over systems used to manage security solutions.

Encryption

Encryption Military Archiving Phishing

Qbot uses a new email collector module in the latest campaign

Security Affairs

AUGUST 31, 2020

Most of the infections were observed in organizations in the US and Europe, the most targeted industries were in the government, military, and manufacturing sectors. . Password Grabber Module – a large module that downloads Mimikatz and tries to harvest passwords. ” reads the analysis published by CheckPoint.

Passwords

Passwords Military Manufacturing Encryption

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. The attack aims at making the device unusable. Pierluigi Paganini.

Military

Military Encryption Passwords IT

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

The Last Watchdog

FEBRUARY 3, 2020

Touhill “Adversaries should remember that our military doctrine identifies cyber as one of our combined arms capabilities,” says Greg Touhill, president of AppGate Federal Group , a Florida-based supplier of software perimeter security systems. And it might not be Iran directly retaliating alone. and Saudi cyber operations.

Energy and Utilities

Energy and Utilities Access Cybersecurity Passwords

Hacker breaches key Russian ministry in blink of an eye

Security Affairs

MARCH 16, 2022

However, evidence suggests that the rogue superstate’s cyber capabilities are as weak as its military stance in Ukraine, especially when met with resistance. Original post at [link]. Spielerkid89, who wished to remain anonymous, did not intend to harm the organization and left its systems intact. A simple mistake with colossal effect.

Authentication

Authentication Access Systems administration Military

List of data breaches and cyber attacks in February 2022 – 5.1 million records breached

IT Governance

MARCH 1, 2022

First, Russia targeted banks and government departments, then Ukraine hit back, attacking the Moscow stock exchange. You can find out more about the cyber security implications of the Ukraine by registering for our special presentation hosted by IT Governance’s founder and executive chairman, Alan Calder.

Data breaches

Data breaches Ransomware Government Blockchain

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Defense contractor Belcan leaks admin password with a list of flaws

Trending Sources

CISA adds Zimbra bug exploited in attacks against NATO countries to its Known Exploited Vulnerabilities catalog

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Russia-linked Nobelium APT targets orgs in the global IT supply chain

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

Connecticut Tightens its Data Breach Notification Laws

Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION

Russian APT group Winter Vivern targets email portals of NATO and diplomats

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

China-linked APT Curious Gorge targeted Russian govt agencies

Security Affairs newsletter Round 399 by Pierluigi Paganini

Iran-linked DEV-0343 APT target US and Israeli defense technology firms

$10M Is Yours If You Can Get This Guy to Leave Russia

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Anonymous #OpRussia Thousands of sites hacked, data leaks and more

Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

UK, US agencies warn of large-scale brute-force attacks carried out by Russian APT

5 Signs a Cyberattack Is Under Way and 5 Things You Need to Do Before It Happens

XDSpy APT remained undetected since at least 2011

Hacker who helped the ISIS will remain in US prison

Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict

SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide

Analyzing attacks conducted by North Korea-linked ARCHIPELAGO APT group

British Court rejects the US’s request to extradite Julian Assange

Security Affairs newsletter Round 399 by Pierluigi Paganini

Russia-linked APT28 has been scanning vulnerable email servers in the last year

Russian Sandworm APT impersonates Ukrainian telcos to deliver malware

Security Vulnerabilities in US Weapons Systems

Transparent Tribe APT hit 1000+ victims in 27 countries in the last 12 months

Citrix Hack Exposes Customer Data

The Platinum APT group adds the Titanium backdoor to its arsenal

Chinese actors behind attacks on industrial enterprises and public institutions

Qbot uses a new email collector module in the latest campaign

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

MY TAKE: Iran’s cyber retaliation for Soleimani assassination continues to ramp up

Hacker breaches key Russian ministry in blink of an eye

List of data breaches and cyber attacks in February 2022 – 5.1 million records breached

Stay Connected