Security Affairs

MARCH 31, 2023

A Russian hacking group, tracked Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats. The CVE-2022-27926 flaw affects Zimbra Collaboration versions 9.0.0,

Military 87

Military Phishing Passwords Government 87

Security Affairs

DECEMBER 30, 2021

Researcher Sylvain Pelissier has discovered that the DataVault encryption software made by ENC Security and used by multiple vendors is affected by a couple of key derivation function issues. An attacker can exploit the flaws to obtain user passwords. ” reads the security advisory published by ENC.

Encryption 116

Encryption Passwords Military Security 116

Security Affairs

NOVEMBER 5, 2021

This ‘line of work’ is coordinated by the FSB’s 18th Center (Information Security Center) based in Moscow.” The group targeted government and military organizations in Ukraine. In December 2019, the APT group targeted several Ukrainian diplomats, government and military officials, and law enforcement.

Military 121

Military Metadata Government Passwords 121

Security Affairs

JULY 31, 2022

The attackers said that the stolen data includes information about the employees of the company involved in military projects, commercial activities, contract agreements and correspondence with other companies. “Hello! ” reads the adv published by the group on a popular hacker forum.

Manufacturing 116

Manufacturing Military Archiving Cybersecurity 116

Security Affairs

APRIL 4, 2023

Proofpoint researchers recently reported that a Russian hacking group, tracked as Winter Vivern (aka TA473), has been actively exploiting vulnerabilities ( CVE-2022-27926 ) in unpatched Zimbra instances to gain access to the emails of NATO officials, governments, military personnel, and diplomats. reads the post published by Proofpoint.

IT 91

IT Military Phishing Passwords 91

Security Affairs

DECEMBER 5, 2023

The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). The group was involved also in the string of attacks that targeted 2016 Presidential election. ” reads trhe announcement published by DKWOC.

Military 105

Military Government Phishing Access 105

Security Affairs

FEBRUARY 28, 2024

“As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” and foreign governments and military, security, and corporate organizations. Change any default usernames and passwords.

Energy and Utilities 97

Energy and Utilities Military Government Phishing 97

Security Affairs

MARCH 24, 2024

surfaces in the threat landscape Pokemon Company resets some users’ passwords Ukraine cyber police arrested crooks selling 100 million compromised accounts New AcidPour wiper targets Linux x86 devices. Is it a Russia’s weapon? Players hacked during the matches of Apex Legends Global Series.

Security 99

Security Passwords Military Marketing 99

Security Affairs

OCTOBER 11, 2021

DEV-0343: Iran-linked threat actors are targeting US and Israeli defense technology companies leveraging password spraying attacks. Threat actors are launching extensive password spraying attacks aimed at the target organizations, the malicious campaign was first spotted in July 2021. ” reads the post published by Microsoft.

Passwords 88

Passwords Authentication Military Analytics 88

Security Affairs

DECEMBER 25, 2022

Expert found Backdoor credentials in ZyXEL LTE3301 M209 Raspberry Robin malware used in attacks against Telecom and Governments TikTok parent company ByteDance revealed the use of TikTok data to track journalists BetMGM discloses security breach impacting 1.5

Security 92

Security Military Ransomware Encryption 92

Security Affairs

JULY 20, 2022

MiCODUS is used today by 420,000 customers in multiple industries, including government, military, law enforcement agencies, and Fortune 1000 companies. CVE-2022-2141 (CVSS score: 9.8) – Improper authentication allows a user to send some SMS commands to the GPS tracker without a password.

Passwords 99

Passwords Manufacturing Military Authentication 99

Security Affairs

MAY 3, 2022

“ Curious Gorge, a group TAG attributes to China’s PLA SSF, has remained active against government, military, logistics and manufacturing organizations in Ukraine, Russia and Central Asia. ” wrote Google TAG Security Engineer Billy Leonard.

Manufacturing 111

Manufacturing Phishing Passwords Military 111

Security Affairs

JANUARY 9, 2023

Threat actors created fake login pages for each organization and sent spear-phishing messages to nuclear scientists in an attempt to trick them into providing their passwords. The researchers uncovered a phishing campaign conducted by the COLDRIVER (aka Calisto ) APT against a NATO Centre of Excellence and Eastern European militaries.

Military 78

Military Phishing Cybersecurity Passwords 78

Security Affairs

NOVEMBER 4, 2022

The threat actors set up websites cloning the official download websites for SolarWinds Network Performance Monitor (NPM), KeePass password manager, and PDF Reader Pro. The attacks were spotted while analyzing network artifacts associated with RomComRAT infections resulting from attacks targeting Ukrainian military institutions.

Passwords 106

Passwords Military Ransomware Archiving 106

Hunton Privacy

AUGUST 2, 2021

The safe harbor also applies in cases where the cybersecurity program conforms to applicable state or federal security laws and regulations ( e.g. , the security requirements of the Health Insurance Portability and Accountability Act and the Gramm-Leach Bliley Act).

Cybersecurity 87

Cybersecurity Insurance Military Data Privacy 87

Security Affairs

APRIL 6, 2023

Google’s Threat Analysis Group (TAG) is warning of the North Korea-linked ARCHIPELAGO group that is targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea, the US and elsewhere. The experts pointed out that ARCHIPELAGO focuses on building a rapport with targets.

Phishing 81

Phishing Passwords Military Education 81

Security Affairs

APRIL 15, 2024

The Blackjack group is believed to be affiliated with Ukrainian intelligence services that carried out other attacks against Russian targets, including an internet provider and a military infrastructure. The site also hosts password dumps allegedly stolen from the Russian company. Access to 112 Emergency Service.

IoT 124

IoT Access Communications Military 124

Security Affairs

MARCH 16, 2022

However, evidence suggests that the rogue superstate’s cyber capabilities are as weak as its military stance in Ukraine, especially when met with resistance. Information security company SecurityScorecard has developed a machine-learning model that estimates the relative likelihood of a company falling victim to a ransomware attack.

Authentication 129

Authentication Access Systems administration Military 129

Security Affairs

DECEMBER 25, 2022

Expert found Backdoor credentials in ZyXEL LTE3301 M209 Raspberry Robin malware used in attacks against Telecom and Governments TikTok parent company ByteDance revealed the use of TikTok data to track journalists BetMGM discloses security breach impacting 1.5

Security 52

Security Military Ransomware Encryption 52

Security Affairs

JULY 1, 2022

” The SessionManager backdoor was employed in attacks against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East. The report also includes Indicators of Compromise (IoCs) for this threat. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Military 95

Military Passwords Access Government 95

Security Affairs

MARCH 5, 2022

.” Anonymous also attempted to support military operations on the field by hacking into IP cameras that were used to monitor the movements of Ukrainians. We made sure to lock the Russians out of their own little spying devices by changing their default passwords and knocking their stuff offline.

Passwords 144

Passwords Government Military Authentication 144

Security Affairs

SEPTEMBER 21, 2022

The messages are written in Ukrainian and the topics used in the attacks relate to military operations, reports, etc. which translates as “Odesa Regional Military Administration”, along with “File is downloaded automatically” in English. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Military 83

Military Phishing Passwords Ransomware 83

Hunton Privacy

JUNE 14, 2018

Notice to the Attorney General is required even if the covered entity maintains its own procedures for security breaches as part of an information security policy or pursuant to state or federal law.

Data breaches 65

Data breaches Security Passwords Military 65

Security Affairs

MARCH 13, 2022

Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Google TAG observed Russian, Belarusian, and Chinese threat actors targeting Ukraine and European government and military orgs. March 10 – Crooks target Ukraine’s IT Army with a tainted DDoS tool.

Blockchain 86

Blockchain Phishing Military Passwords 86

Security Affairs

DECEMBER 21, 2021

Ivan Yermakov worked for the Russian Military Unit 26165 and was indicted by the US DoJ in October 2018, along six other defendants working for the Russian Main Intelligence Directorate ( GRU ), for hacking, wire fraud, identity theft, and money laundering. .” based filing agents.

Military 107

Military Passwords Access Security 107

Security Affairs

OCTOBER 25, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers.

IT 109

IT Cloud Military Phishing 109

Security Affairs

MARCH 20, 2020

According to security researchers from Trend Micro, the Russia-linked APT28 cyberespionage group has been scanning vulnerable email servers for more than a year. The cyberespionage group continues to target members of defense companies, embassies, governments, and the military. ” reads the report published by Trend Micro.

Phishing 136

Phishing Military Government Passwords 136

Security Affairs

OCTOBER 1, 2023

million newborns and pregnancy care patients Xenomorph malware is back after months of hiatus and expands the list of targets Smishing Triad Stretches Its Tentacles into the United Arab Emirates Crooks stole $200 million worth of assets from Mixin Network A phishing campaign targets Ukrainian military entities with drone manual lures Alert!

Artificial Intelligence 101

Artificial Intelligence Security Ransomware Data breaches 101

Security Affairs

AUGUST 31, 2020

Most of the infections were observed in organizations in the US and Europe, the most targeted industries were in the government, military, and manufacturing sectors. . Password Grabber Module – a large module that downloads Mimikatz and tries to harvest passwords. ” reads the analysis published by CheckPoint.

Passwords 106

Passwords Military Manufacturing Encryption 106

Security Affairs

AUGUST 6, 2023

It’s Testing U.S.

Security 78

Security Military Phishing Sales 78

Security Affairs

JANUARY 4, 2021

Wikileaks founder is currently facing extradition to the United States for his role in one of the largest compromises of classified information in the history of the United States. He published thousands of classified diplomatic and military documents on WikiLeaks in 2010.

Military 131

Military Government Risk Passwords 131

Security Affairs

MAY 2, 2021

Every week the best security articles from Security Affairs free for you in your email box. Every week the best security articles from Security Affairs free for you in your email box.

Security 57

Security Mining Ransomware Military 57

Security Affairs

AUGUST 9, 2022

In January 2022, researchers at Kaspersky ICS CERT uncovered a series of targeted attacks on military industrial enterprises and public institutions in Afghanistan and East Europe. The attackers breached dozens of enterprises and in some cases compromised their IT infrastructure, taking over systems used to manage security solutions.

Encryption 98

Encryption Military Archiving Phishing 98

eSecurity Planet

MARCH 7, 2023

For example, some methods meet national security and federal standards, while others are focused on private companies. NIST Developed by NIST, an agency of the United States Department of Commerce, NIST Special Publication 800-115 , Technical Guide to Information Security Testing and Assessment is the most specific from start to finish.

Passwords 98

Passwords IoT Encryption Access 98

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. The attack aims at making the device unusable.

Military 101

Military Encryption Passwords IT 101

Security Affairs

JUNE 25, 2020

Maze ransomware operators are very active in this period, recently they have stolen data from US military contractor Westech and the ST Engineering group , and they have released credit card data stolen from the Bank of Costa Rica (BCR) threatening to leak other lots every week.

Ransomware 101

Ransomware Computer and Electronics Military Sales 101

Security Affairs

AUGUST 18, 2021

APT37 has been active since at least 2012, it mainly targeted government, defense, military, and media organizations in South Korea. Harvest cookies and a password database for supported browsers. The watering hole attacks on the Daily NK was conducted from March 2021 until early June 2021. ” reads the post published by Volexity.

Metadata 110

Metadata Military Archiving Cybersecurity 110