Government, Manufacturing and Tools - Information Management Today

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

Krebs on Security

FEBRUARY 20, 2024

Instead of listing data stolen from ransomware victims who didn’t pay, LockBit’s victim shaming website now offers free recovery tools, as well as news about arrests and criminal charges involving LockBit affiliates. The DOJ today unsealed indictments against two Russian men alleged to be active members of LockBit.

Ransomware

Ransomware Encryption Insurance Manufacturing

Police in Europe Arrest 31 for Hacking and Stealing Autos

Data Breach Today

OCTOBER 18, 2022

Keyless Auto Theft Mounting Threat for Car Owners A European ring of auto thieves used software branded as a diagnostic tool to make fobless thefts of cars made by two French manufacturers. It looks like the thieves found a vulnerability in the electronic control unit governing the authorization of new key fobs.

Manufacturing

Manufacturing Government IT

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

A stealthy APT group tracked as Gelsemium was observed targeting a Southeast Asian government between 2022 and 2023. Palo Alto Unit42 researchers an APT group tracked as Gelsemium targeting a Southeast Asian government. OwlProxy is a unique and custom tool used by the group. ” concludes Palo Alto Networks.

Government

Government Manufacturing Education Access

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Huawei Accuses US Government of Hack Attacks

Data Breach Today

SEPTEMBER 4, 2019

White House 'Using Every Tool At Its Disposal' to Disrupt Business, Firm Claims The battle between Huawei Technologies and the White House continues to intensify, with the Chinese manufacturing giant accusing the U.S. of "using every tool at its disposal" to disrupt its business, including cyberattacks and employee intimidation.

Government

Government Manufacturing IT

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

made electronics on behalf of the Russian government and military. The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. manufacturers on behalf of Russian end-users, including defense contractors and other Russian government agencies.

Computer and Electronics

Computer and Electronics Military Manufacturing Government

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

EU Parliament and Council of the EU Reach Agreement on Data Governance Act

Hunton Privacy

DECEMBER 6, 2021

On November 30, 2021, the European Commission issued a press release indicating that the European Parliament and the Council of the EU ( i.e. , representatives of EU Member States) reached political agreement on the proposed EU Data Governance Act. Background. Other Initiatives. Read the European Commission Press Release.

Government

Government Agriculture Manufacturing Personal data

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

Security Affairs

MARCH 16, 2021

Microsoft released an Exchange On-premises Mitigation Tool (EOMT) tool to small businesses for the fix of ProxyLogon vulnerabilities. Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). ” reads the post published by Microsoft.

Military

Military Manufacturing Access Security

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

The Last Watchdog

SEPTEMBER 21, 2023

21, 2023 — MxD, the Digital Manufacturing and Cybersecurity Institute, today hosted a roundtable discussion with the White House Office of the National Cyber Director. Each participating organization is committed to developing cyber skills and programs to train the workforce across a wide range of industries, including manufacturing.

Cybersecurity

Cybersecurity Manufacturing Military Artificial Intelligence

AI governance: What it is, why you need it, and why it’s essential for your AI initiatives

Collibra

JUNE 21, 2023

Businesses everywhere are seeking ways to leverage LLMs as fast as governments are talking about ways to regulate them. What you need is a governance model for AI. You need AI governance. So what is AI governance? Why you need AI governance The time is coming when every business that uses AI will need AI governance.

Government

Government IT Risk Privacy

FBI and CISA warn of attacks by Rhysida ransomware gang

Security Affairs

NOVEMBER 15, 2023

The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. The group relies on living off-the-land techniques such as native (built into the operating system) network administration tools to perform malicious operations.

Ransomware

Ransomware Manufacturing Education Passwords

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Security Affairs

MAY 22, 2020

ZLab researchers spotted a new malicious espionage activity targeting Italian companies operating worldwide in the manufacturing sector. This actor was first spotted by PaloAlto’s UNIT42 in 2018 during wide scale operations against technology, retail, manufacturing, and local government industries in the US, Europe and Asia.

Manufacturing

Manufacturing e-Delivery IT Security

Raspberry Robin malware used in attacks against Telecom and Governments

Security Affairs

DECEMBER 24, 2022

The Raspberry Robin worm attacks aimed at telecommunications and government office systems across Latin America, Australia, and Europe. Researchers from Trend Micro have uncovered a Raspberry Robin worm campaign targeting telecommunications and government office systems across Latin America, Australia, and Europe. Pierluigi Paganini.

Government

Government Communications Ransomware Manufacturing

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. GRC tools are also useful for preventing and addressing vulnerabilities that will inevitably impact your systems, resources, and stakeholders. RSA Archer.

Compliance

Compliance Risk Government Retail

US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

Security Affairs

FEBRUARY 16, 2024

government offers rewards of up to $10 million for information that could lead to the identification or location of ALPHV/Blackcat ransomware gang leaders. The FBI developed a decryption tool that could allow over 500 victims to recover their systems for free. the fashion giant Moncler , the Swissport , NCR , and Western Digital.

Ransomware

Ransomware Government Manufacturing Access

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Security Affairs

FEBRUARY 28, 2024

” Government experts believe that the increase in targeted attacks against the healthcare sector is the response of the group to law enforcement actions against the Blackcat group in early December 2023. The FBI developed a decryption tool that could allow over 500 victims to recover their systems for free.

Ransomware

Ransomware Government Insurance Manufacturing

Metrics that matter: Data and tools Planet Collibra leaders use to understand climate change and create impact

Collibra

APRIL 20, 2023

Earth Day organizer, Earthday.org , says, “The theme is focused on engaging governments, institutions, businesses, and the more than 1 billion citizens who participate annually in Earth Day to do their part — everyone accounted for, everyone accountable.” Thankfully, this is where data shines! What IS climate change?

Government

Government Agriculture Manufacturing Analytics

3.5m IP cameras exposed, with US in the lead

Security Affairs

DECEMBER 14, 2022

After looking at 28 of the most popular manufacturers, our research team found 3.5 What is more, the overwhelming majority of internet-facing cameras are manufactured by Chinese companies. Most of the public-facing cameras we discovered are manufactured by the Chinese company Hikvision: the Cybernews research team found over 3.37

Passwords

Passwords Manufacturing Authentication Government

The IoT Cybersecurity Act of 2020: Implications for Devices

eSecurity Planet

JANUARY 22, 2021

As more information about IoT device vulnerabilities is published, the pressure on industry and government authorities to enhance security standards might be reaching a tipping point. government, standards will not apply to the IoT market at-large. government, standards will not apply to the IoT market at-large.

IoT

IoT Cybersecurity Manufacturing Government

The proposed EU Cyber Resilience Act: what it is and how it may impact the supply chain

Data Protection Report

OCTOBER 17, 2022

The CRA introduces common cybersecurity rules for manufacturers, developers and distributors of products with digital elements, covering both hardware and software. Manufacturers of products must also comply with various requirements relating to the handling of vulnerabilities which are set out in section 2 of Annex I of the CRA.

Manufacturing

Manufacturing IT Cybersecurity Marketing

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

CISA published an advisory on China-linked groups targeting government agencies by exploiting flaws in Microsoft Exchange, Citrix, Pulse, and F5 systems. Chinese state-sponsored hackers have probed US government networks looking for vulnerable networking devices that could be compromised with exploits for recently disclosed vulnerabilities.

Government

Government Energy and Utilities Healthcare Access

Security Affairs newsletter Round 377

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% of its users due to the exposure of salted password hashes Twitter confirms zero-day used to access data of 5.4

Security

Security Manufacturing Passwords Ransomware

Holy Ghost ransomware operation is linked to North Korea

Security Affairs

JULY 15, 2022

The list of victims includes manufacturing organizations, banks, schools, and event and meeting planning companies. The researchers noticed that H0lyGh0st ransomware used custom tools created by the PLUTONIUM APT. The first possibility is that the North Korean government sponsors this activity.”

Ransomware

Ransomware Encryption Government Manufacturing

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. ” reads the joint report. ” concludes the report.

Energy and Utilities

Energy and Utilities Military Government Phishing

China-linked Flax Typhoon APT targets Taiwan

Security Affairs

AUGUST 25, 2023

The group relies on tools built into the operating system, along with some legitimate software. Microsoft has not observed The group has been active since mid-2021, it focuses on government agencies and education, critical manufacturing, and information technology organizations in Taiwan. ” continues the report.

Manufacturing

Manufacturing Education Access Government

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. GRC tools are also useful for preventing and addressing vulnerabilities that will inevitably impact your systems, resources, and stakeholders. RSA Archer.

Compliance

Compliance Risk Government Retail

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. LockBit had a bespoke data exfiltration tool, known as Stealbit, which was used by affiliates to steal victim data. ” reads the press release published by the U.S.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

New TA2101 threat actor poses as government agencies to distribute malware

Security Affairs

NOVEMBER 15, 2019

A new threat actor tracked as TA2101 is conducting malware campaigns using email to impersonate government agencies in the United States, Germany, and Italy. Once the user opened the attachment and enabled the macros, the malicious code will install the Cobalt Strike pentesting tool or the Maze Ransomware on the victim’s computer.

Government

Government Ransomware Manufacturing Phishing

China-linked Budworm APT returns to target a US entity

Security Affairs

OCTOBER 13, 2022

The Budworm cyber espionage group (aka APT27 , Bronze Union , Emissary Panda , Lucky Mouse , TG-3390 , and Red Phoenix) is behind a series attacks conducted over the past six months against a number of high-profile targets, including the government of a Middle Eastern country, a multinational electronics manufacturer, and a U.S.

File names

File names Financial Services Manufacturing Libraries

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 Known records breached Zenlayer Source New Telecoms USA Yes 384,658,212 ASA Electronics Source New Engineering USA Yes 2.7 Known records breached Zenlayer Source New Telecoms USA Yes 384,658,212 ASA Electronics Source New Engineering USA Yes 2.7

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Security Affairs

JUNE 1, 2021

Just recently, the group has published a stolen data allegedly belonging to the Mexican Government which still remains available for sale today, and possibly becoming the first cybercriminal group that has touched a major state in Latin America on such a level. Mexican Government data is published for sale. Pierluigi Paganini.

Sales

Sales Ransomware Government GDPR

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

& international partners, we published a joint advisory on LockBit Ransomware: [link] The advisory includes the common tools, exploitations, & TTPs used by LockBit affiliates. 16% of the State, Local, Tribal, and Tribunal (SLTT) government ransomware incidents reported to the MS-ISAC is 2022 were LockBit attacks.

Ransomware

Ransomware Cybersecurity Agriculture Education

Deployable architecture on IBM Cloud: Simplifying system deployment

IBM Big Data Hub

APRIL 22, 2024

There are several key characteristics of a deployable architecture, which include: Automation : Deployable architecture often relies on automation tools and processes to manage deployment process. This can involve using tools like continuous integration or continuous deployment (CI/CD) pipelines, configuration management tools and others.

Cloud

Cloud Financial Services Compliance Systems administration

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

Security Affairs

FEBRUARY 27, 2024

The Company has retained leading security experts, is working with law enforcement and notified customers, clients and certain government agencies.” The FBI developed a decryption tool that could allow over 500 victims to recover their systems for free. ” reads the Reuters. healthcare organizations.

Ransomware

Ransomware Government Insurance Manufacturing

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB JP Original Corp Source New Manufacturing USA Yes 1.2 TB KSA Architecture Source New Construction and real estate USA Yes 1.5

Data Privacy

Data Privacy Manufacturing Privacy Security

China-linked APT Volt Typhoon linked to KV-Botnet

Security Affairs

DECEMBER 13, 2023

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and stay under the radar.

Communications

Communications Manufacturing Education Government

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The group also relies on customized versions of open-source tools for C2 communications and to stay under the radar.

Energy and Utilities

Energy and Utilities Communications Military Manufacturing

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Security Affairs

MAY 11, 2021

The Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) are warning of an ongoing Avaddon ransomware campaign targeting organizations worldwide in multiple industries, including government, finance, energy, manufacturing, and healthcare.

Ransomware

Ransomware Manufacturing Phishing Encryption

Catches of the Month: Phishing Scams for October 2023

IT Governance

OCTOBER 13, 2023

EvilProxy phishing campaign targets Microsoft 365 accounts via indeed.com A phishing campaign identified by Menlo Security has been targeting senior executives in various industries – most notably banking and financial services, property management and real estate, and manufacturing – since July. Can you spot a phishing scam?

Phishing

Phishing Financial Services Manufacturing Personal data

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

“LockBit had a bespoke data exfiltration tool, known as Stealbit, which was used by affiliates to steal victim data. The LockBit ransomware operation operated under a Ransomware-as-a-Service (RaaS) model, recruiting affiliates to carry out ransomware attacks through the utilization of LockBit ransomware tools and infrastructure.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

eSecurity Planet

MARCH 3, 2023

The first is to rebalance responsibility for cybersecurity away from individuals, small businesses and local governments, and towards “the owners and operators of the systems that hold our data and make our society function, as well as of the technology providers that build and service these systems.”

Cybersecurity

Cybersecurity Government Manufacturing Personal data

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

Police in Europe Arrest 31 for Hacking and Stealing Autos

Webinars

Trending Sources

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Webinars

Huawei Accuses US Government of Hack Attacks

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Raspberry Robin malware used in attacks against Telecom and Governments

EU Parliament and Council of the EU Reach Agreement on Data Governance Act

Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

AI governance: What it is, why you need it, and why it’s essential for your AI initiatives

FBI and CISA warn of attacks by Rhysida ransomware gang

Cyber-Criminal espionage Operation insists on Italian Manufacturing

Raspberry Robin malware used in attacks against Telecom and Governments

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Top GRC Tools & Software for 2021

US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

Metrics that matter: Data and tools Planet Collibra leaders use to understand climate change and create impact

3.5m IP cameras exposed, with US in the lead

The IoT Cybersecurity Act of 2020: Implications for Devices

The proposed EU Cyber Resilience Act: what it is and how it may impact the supply chain

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs newsletter Round 377

Holy Ghost ransomware operation is linked to North Korea

Operation Cronos: law enforcement disrupted the LockBit operation

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

China-linked Flax Typhoon APT targets Taiwan

Top 10 Governance, Risk and Compliance (GRC) Vendors

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

China-linked APT Volt Typhoon remained undetected for years in US infrastructure

New TA2101 threat actor poses as government agencies to distribute malware

China-linked Budworm APT returns to target a US entity

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

Prometheus and Grief – two new emerging ransomware gangs targeting enterprises. Mexican Government data is published for sale.

Cybersecurity agencies published a joint LockBit ransomware advisory

Deployable architecture on IBM Cloud: Simplifying system deployment

US pharmacy outage caused by Blackcat ransomware attack on Optum Solutions

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

China-linked APT Volt Typhoon linked to KV-Botnet

FBI chief says China is preparing to attack US critical infrastructure

FBI and Australia ACSC agencies warn of ongoing Avaddon ransomware attacks

Catches of the Month: Phishing Scams for October 2023

More details about Operation Cronos that disrupted Lockbit operation

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

Stay Connected