Industry, Military, Security and Tools - Information Management Today

RSAC Fireside Chat: Dispersive adapts WWII radio-signal masking tool to obfuscating network traffic

The Last Watchdog

MAY 28, 2024

military scattered radio-signals and added noise to radio transmissions — to prevent the jamming of torpedo controls. Decades later, the telecom industry figured out how to spread WiFi, GPS, BlueTooth and 5G signals over a wide bandwidth and then also added pseudo-random codes — to prevent tampering.

Military

Military Encryption Communications Cloud

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military

Military Government IT Security

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Military

Military Security Ransomware Insurance

APT ‘Aquatic Panda’ Targets Universities with Log4Shell Exploit Tools

Threatpost

DECEMBER 30, 2021

Researchers from CrowdStrike disrupted an attempt by the threat group to steal industrial intelligence and military secrets from an academic institution.

Military

Military Security

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. The attack aims at making the device unusable. ” the researchers concluded.

Military

Military Encryption Passwords IT

MY TAKE: Cyber attacks on industrial controls, operational technology have only just begun

The Last Watchdog

OCTOBER 8, 2018

In today’s geopolitical terrain, nation-state backed cyber criminals are widening their targets and starting to zero in on their adversaries’ business and industrial sectors, using more and more sophisticated weaponry to do so. And the risks are multiplying as more digital devices become connected in insufficiently secured environments.

Military

Military Healthcare Phishing Security

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

The Last Watchdog

SEPTEMBER 21, 2023

Each participating organization is committed to developing cyber skills and programs to train the workforce across a wide range of industries, including manufacturing. The program will offer 22 additional training pathways that prepare learners for 16 cybersecurity work roles and 17 industry certifications. manufacturing.

Cybersecurity

Cybersecurity Manufacturing Military Artificial Intelligence

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Security Affairs

JUNE 26, 2022

Experts speculate a cyber attack may have turned off the industrial safety controls at the natural gas facility. ICS malware like TRITON , which experts associated with Russia-linked APT group XENOTIME , has offensive capabilities to shut down industrial safety controls and cause extensive damages to industrial facilities.

Military

Military Cloud Government Security

Cellebrite ‘s forensics tool affected by arbitrary code execution issue

Security Affairs

APRIL 22, 2021

Cellebrite mobile forensics tool Ufed contains multiple flaws that allow arbitrary code execution on the device, SIGNAL creator warns. Cellebrite develops forensics tools for law enforcement and intelligence agencies that allow automating physically extracting and indexing data from mobile devices. ” concludes the expert.

Military

Military Encryption Security Risk

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

Over the past 20 months, the group targeted at least 30 organizations within 14 nations that are probably of strategic intelligence significance to the Russian government and its military. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS).

Military

Military Government Phishing Authentication

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

Security Affairs

NOVEMBER 5, 2023

North Korea-linked Lazarus APT group were spotted using new KandyKorn macOS malware in attacks against blockchain engineers, reported Elastic Security Labs. It utilizes reflective loading, a direct-memory form of execution that may bypass detections,” notes Elastic Security, which identified and analyzed the threat.”

Blockchain

Blockchain Archiving Military Encryption

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs

FEBRUARY 28, 2024

The Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters (EdgeRouters) to evade detection in cyber operations worldwide. ” concludes the report.

Energy and Utilities

Energy and Utilities Military Government Phishing

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Security Affairs

APRIL 23, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Cybersecurity

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

Krebs on Security

JANUARY 13, 2020

is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. National Security Agency (NSA) stating that NSA’s Director of Cybersecurity Anne Neuberger is slated to host a call on Jan.

Military

Military Cybersecurity Encryption Authentication

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Security Affairs

OCTOBER 22, 2023

During a meeting of security chiefs of the Five Eyes alliance held in California, McCallum told BBC that the Chinese cyber espionage reached an epic scale. The BBC reported the case of an acquisition of a sensitive UK tech company involved in UK military supply chains. ” reported BBC.

Military

Military Government Access Cybersecurity

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

JULY 30, 2018

A chance meeting – in an elevator, no less – led to Kim veering over to the cybersecurity industry. DataLocker honed its patented approach to manufacturing encrypted portable drives and landed some key military and government clients early on; the company has continued branching out ever since. LW: Makes sense. and are TAA compliant.

Encryption

Encryption Military Passwords Authentication

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Security Affairs

JANUARY 31, 2024

Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. x and Ivanti Policy Secure. is a command injection vulnerability in web components of Ivanti Connect Secure (9.x, x) and Ivanti Policy Secure. The flaw CVE-2023-46805 (CVSS score 8.2)

Authentication

Authentication Military Communications Security

NEW TECH: Circadence deploys ‘gamification’ training to shrink cybersecurity skills gap

The Last Watchdog

APRIL 22, 2019

It’s clear that closing the cybersecurity skills gap has to happen in order to make our internet-centric world as private and secure as it ought to be. I had the chance at RSA 2019 to visit again with Circadence security evangelist Keenan Skelly. And this puts security personnel on a path to achieve higher-level certifications.

Cybersecurity

Cybersecurity Artificial Intelligence Military Security

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs

APRIL 19, 2023

Mint Sandstorm also used custom tools in selected targets, notably organizations in the energy and transportation sectors. In the last stage of the attack, the subgroup deploys a custom malware variant, such as Drokbk or Soldier instead of using publicly available tools and simple scripts. ” concludes Microsoft.

Energy and Utilities

Energy and Utilities Military Education Phishing

Security Affairs newsletter Round 244

Security Affairs

DECEMBER 15, 2019

The best news of the week with Security Affairs. SEC Xtractor – Experts released an open-source hardware analysis tool. New ‘PyXie Python RAT targets multiple industries. City of Pensacola hit by a cyberattack few days after military base shooting. A new round of the weekly newsletter arrived! Pierluigi Paganini.

Security

Security Ransomware Military Sales

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

Security Affairs

JUNE 11, 2022

The activity of the Lyceum APT group was first documented earlier in August 2019 by researchers at ICS security firm Dragos which tracked it as Hexane. Dragos reported that Hexane was focused on organizations in the oil and gas industry and telecommunication providers. ” reads the analysis published ZScaler. Pierluigi Paganini.

IT

IT Military Communications Phishing

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The sanctioned entities conducted operations to steal funds to support the military strategy of the regime. Cyber security and intelligence experts believe that attacks aimed at the cryptocurrency industry will continue to increase next year. ” reads the announcement. trillion won ($1.2 ” continues the announcement.

Government

Government Military Financial Services IT

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild. . — Microsoft Security Intelligence (@MsftSecIntel) March 12, 2021.

Authentication

Authentication Military Ransomware Manufacturing

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

Security Affairs

FEBRUARY 23, 2022

National Security Agency (NSA) Equation Group. The Bvp47 backdoor was first discovered in 2013 while conducting a forensic investigation into a security breach suffered by a Chinese government organization. .” Pangu Lab researchers discovered the Bvp47 backdoor within the data leaked by The Shadow Brokers. Pierluigi Paganini.

Encryption

Encryption Military Archiving Government

SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide

Security Affairs

JULY 1, 2022

” The SessionManager backdoor was employed in attacks against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East. The post SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide appeared first on Security Affairs.

Military

Military Passwords Access Government

ForAllSecure Raises $21 Million to Secure the World’s Software

ForAllSecure

MARCH 21, 2022

Strong demand for application security that supports DevSecOps initiatives drives investment from Koch Disruptive Technologies and New Enterprise Associates. Other application security approaches just don’t work like attackers, and cannot be truly automated because humans need to double check the results.

Security

Security Cybersecurity Military Marketing

A Guide To Automated Continuous Security Testing

ForAllSecure

JULY 13, 2021

These forces are driving organizations to go beyond merely identifying common security errors or protecting against common attack techniques. Continuous testing enables security teams to keep pace with development and operations teams in modern development, and to deliver deep integration and automation of security tooling.

Security

Security Marketing Military IoT

BIS Issues Long-Awaited Notice on Controls on Foundational Technologies, Adds New Entities to Entity List

Data Matters

AUGUST 28, 2020

Department of Commerce, Bureau of Industry and Security (BIS) published an advance notice of proposed rulemaking (ANPRM) soliciting comments to identify foundational technologies essential to U.S. national security by October 26, 2020 (the Foundational Technologies ANPRM). national security.

Military

Military Manufacturing Compliance Marketing

Russia-linked Nobelium APT group uses custom backdoor to target Windows domains

Security Affairs

SEPTEMBER 28, 2021

. “Once NOBELIUM obtains credentials and successfully compromises a server, the actor relies on that access to maintain persistence and deepen its infiltration using sophisticated malware and tools. Use a hardware security module (HSM) as described in securing AD FS servers to prevent the exfiltration of secrets by FoggyWeb.

Encryption

Encryption Military Government Access

Engineering Secure Systems

Thales Cloud Protection & Licensing

APRIL 24, 2019

Ensuring that systems behave only how a designer intends is a central aspect of security. A security-enforcing system will take the context of available information measured against policy to determine whether an operation should be permitted or denied. MBSE and security engineering. Model-Based Systems Engineering.

Security

Security Military Communications Risk

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

eSecurity Planet

MARCH 3, 2023

The initiatives that stand out the most — critical infrastructure security standards, a national data privacy and security law, and liability for security failures — will likely take time and the support of Congress to implement. is the creation of mandatory requirements for critical infrastructure security.

Cybersecurity

Cybersecurity Government Manufacturing Personal data

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy

Data Privacy Manufacturing Privacy Security

Secure Software Leads To New Possibilities

ForAllSecure

AUGUST 10, 2021

Secure software creates new possibilities. Although software as an industry is over 50 years old, it still produces an unusually high rate of failure. Rather, the process that surrounds these programmers is what needs to improve, namely the tools and processes that they use in developing secure software. Software Failure.

Security

Security Military Ransomware Cloud

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

Security Affairs

FEBRUARY 10, 2022

Enjoy” How has spyware changed the rules of cyber security in recent years? What will cyber security look like now that those tools are all over the internet? It is essential to increase the level of security of critical infrastructure like power grids, power plants and hospitals. Pierluigi Paganini.

Ransomware

Ransomware Government Military Security

MY TAKE: How advanced automation of threat intel sharing has quickened incident response

The Last Watchdog

SEPTEMBER 6, 2019

Related: Ground zero for cybersecurity research Having covered the cybersecurity industry for the past 15 years, it’s clear to me that there are two primary reasons. based security vendor in the thick of helping companies make more of their threat feeds. So why hasn’t it made more of an impact stopping network breaches?

Big data

Big data Analytics Libraries Digital transformation

Hacking the Tax Code

Schneier on Security

FEBRUARY 10, 2023

One of the things in it was a typo that accidentally categorized military death benefits as earned income. Before the code is finished, we can employ some sort of secure development processes, with automatic bug-finding tools and maybe source code audits. That’s a bug, but not a vulnerability. That same 2017 U.S.

Military

Military Artificial Intelligence Marketing Government

Kaspersky links GreyEnergy and Zebrocy activities

Security Affairs

JANUARY 24, 2019

Security experts from Kaspersky Lab’s Industrial Control Systems Cyber Emergency Response Team (ICS CERT) linked the GreyEnergy malware with and the Zebrocy backdoor. Security researchers from Kaspersky Lab’s ICS CERT have discovered a link between GreyEnergy malware with and the Zebrocy tool. Pierluigi Paganini.

Military

Military Phishing Government Security

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

The Last Watchdog

NOVEMBER 9, 2020

IoT devices help remotely control our household appliances, power plants, smart buildings, factories, airports, shipyards, trucks, trains and military. The challenge of the moment is that many companies already have their hands full trying to improve their security posture as they migrate their legacy, on premises, IT systems to the cloud.

IoT

IoT Passwords Artificial Intelligence Risk

Kevin Mitnick, Hacker Turned Cybersecurity Leader, Dies at 59

eSecurity Planet

JULY 20, 2023

He is truly a luminary in the development of the cybersecurity industry, but mostly, Kevin was just a wonderful human being and he will be dearly missed.” military systems and launch nuclear missiles through mere whistling. Some support for claims of overzealous prosecution can be found in court records.

Cybersecurity

Cybersecurity Education Military Government

Israeli surveillance firm QuaDream emerges from the dark

Security Affairs

FEBRUARY 6, 2022

QuaDream was founded in 2016 by Ilan Dabelstein, a former Israeli military official, and by two former NSO employees, Guy Geva and Nimrod Reznik. “QuaDream, the sources said, is a smaller and lower profile Israeli firm that also develops smartphone hacking tools intended for government clients.” ” concludes Reuters.

Government

Government Military IT Security

In a Few Days, Credit Freezes Will Be Fee-Free

Krebs on Security

SEPTEMBER 10, 2018

A credit freeze — also known as a “security freeze” — restricts access to your credit file, making it far more difficult for identity thieves to open new accounts in your name. Access to some of these credit lookup services is supposed to be secured behind a login page, but often isn’t.

Access

Access Military Retail Security

UK/US investigation revealed that Russian Turla APT masqueraded as Iranian hackers

Security Affairs

OCTOBER 21, 2019

Experts involved in the investigation believe that the Turla group hijacked the tools of notorious Iran-linked APT group Oilrig since at least 2014. The two-year investigation was conducted by the UK’s National Cyber Security Centre in collaboration with the US’ National Security Agency. ” reported the FT. .

Government

Government Military Security IT

Watch out! Malware Analysis Sandboxes could expose sensitive data of your organization

Security Affairs

AUGUST 19, 2019

In one case, the experts discovered that a company that provides a popular deployment tool for Windows admins was submitting all received purchase orders into the sandbox. CENTCOM requisition form for use of military aircraft. 200 benign files were invoices and purchase orders. ” concludes the company. Pierluigi Paganini.

Military

Military Insurance Education Phishing

RSAC Fireside Chat: Dispersive adapts WWII radio-signal masking tool to obfuscating network traffic

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Trending Sources

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

APT ‘Aquatic Panda’ Targets Universities with Log4Shell Exploit Tools

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

MY TAKE: Cyber attacks on industrial controls, operational technology have only just begun

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

Russia-linked actors may be behind an explosion at a liquefied natural gas plant in Texas

Cellebrite ‘s forensics tool affected by arbitrary code execution issue

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

NEW TECH: Circadence deploys ‘gamification’ training to shrink cybersecurity skills gap

Iran-linked Mint Sandstorm APT targeted US critical infrastructure

Security Affairs newsletter Round 244

Iran-linked Lyceum APT adds a new.NET DNS Backdoor to its arsenal

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor

SessionManager Backdoor employed in attacks on Microsoft IIS servers worldwide

ForAllSecure Raises $21 Million to Secure the World’s Software

A Guide To Automated Continuous Security Testing

BIS Issues Long-Awaited Notice on Controls on Foundational Technologies, Adds New Entities to Entity List

Russia-linked Nobelium APT group uses custom backdoor to target Windows domains

Engineering Secure Systems

Biden Cybersecurity Strategy: Big Ambitions, Big Obstacles

The Week in Cyber Security and Data Privacy: 5 – 11 February 2024

Secure Software Leads To New Possibilities

Spyware, ransomware and Nation-state hacking: Q&A from a recent interview

MY TAKE: How advanced automation of threat intel sharing has quickened incident response

Hacking the Tax Code

Kaspersky links GreyEnergy and Zebrocy activities

MY TAKE: Why companies and consumers must collaborate to stop the plundering of IoT systems

Kevin Mitnick, Hacker Turned Cybersecurity Leader, Dies at 59

Israeli surveillance firm QuaDream emerges from the dark

In a Few Days, Credit Freezes Will Be Fee-Free

UK/US investigation revealed that Russian Turla APT masqueraded as Iranian hackers

Watch out! Malware Analysis Sandboxes could expose sensitive data of your organization

Stay Connected