IT, Military and Security - Information Management Today

Apparent GE Hack Raises National Security Concerns

Data Breach Today

NOVEMBER 28, 2023

Prominent Threat Actor Advertises Access to GE's Military Projects General Electric says it is aware of claims made by "a bad actor" about gaining unauthorized access to its sensitive data and taking "appropriate measures to help protect the integrity of our systems" after a hacker known as IntelBroker advertised access to its networks and data.

Military

Military Security Access IT

A phishing campaign targets Ukrainian military entities with drone manual lures

Security Affairs

SEPTEMBER 25, 2023

A phishing campaign targets Ukrainian military entities using drone manuals as lures to deliver the post-exploitation toolkit Merlin. The campaign, codenamed STARK#VORTEX by Securonix, targets Ukrainian military entities and CERT-UA attributed it to a threat actor tracked as UAC-0154. ” reads the analysis published by Securonix.

Military

Military Phishing Communications IT

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Security Affairs

DECEMBER 12, 2023

The Ukrainian government’s military intelligence service announced the hack of the Russian Federal Taxation Service (FNS). The military intelligence service said that the hack was the result of a successful special operation on the territory of Russia. At the same time, the Russian IT company Office.ed-it.ru,

Military

Military Government Communications IT

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware

Security Affairs

AUGUST 31, 2023

Russia-linked threat actors have been targeting Android devices of the Ukrainian military with a new malware dubbed Infamous Chisel. The GCHQ’s National Cyber Security Centre (NCSC) and agencies in the United States, Australia, Canada, and New Zealand have published an analysis of the Android malware.

Military

Military Authentication Access Government

Russia Says It's Seen 'Unprecedented' Level of Cyberattacks

Data Breach Today

MARCH 18, 2022

Also: Anonymous Continues Its Cyberwar Against the Russian Government As the Ukrainian military resists Russian advances toward its major population centers, its IT security teams are contending with record cyber incidents - although the same is true of their eastern neighbors, with Russia reporting "unprecedented" cyberattacks on its networks.

IT

IT Military Government Security

Someone is sending mysterious smartwatches to the US Military personnel

Security Affairs

JUNE 24, 2023

Army’s Criminal Investigation Division warns that US military personnel have reported receiving unsolicited smartwatches in the mail. Army’s Criminal Investigation Division reported that service members across the military received smartwatches unsolicited in the mail. ” reads the alert.

Military

Military Passwords Access Security

China Hacked Japan’s Military Networks

Schneier on Security

AUGUST 14, 2023

The Washington Post has the story : The hackers had deep, persistent access and appeared to be after anything they could get their hands on—plans, capabilities, assessments of military shortcomings, according to three former senior U.S. officials, who were among a dozen current and former U.S.

Military

Military Access Security IT

Snatch group claims to have hacked military provider HENSOLDT France

Security Affairs

OCTOBER 31, 2022

The Snatch ransomware group claims to have hacked HENSOLDT France, a company specializing in military and defense electronics. HENSOLDT is a company specializing in military and defense electronics. The post Snatch group claims to have hacked military provider HENSOLDT France appeared first on Security Affairs.

Military

Military Computer and Electronics Ransomware Communications

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

Security Affairs

FEBRUARY 19, 2024

The nation-state actors are known to carry out cyber-espionage against targeting government, military, and national infrastructure entities in Europe and Central Asia since at least December 2020. “TAG70 has demonstrated a high level of sophistication in its attack methods. . ESET researchers also detailed the same attack chain.

Military

Military Government Access Risk

N. Korean Kimsuky APT targets S. Korea-US military exercises

Security Affairs

AUGUST 20, 2023

South Korea military exercise. The military drill, the Ulchi Freedom Guardian summer exercises , will start on Monday, August 21, 2023 , and will last 11 days. The military exercises aim at improving the ability of the two armies to respond to North Korea’s evolving nuclear and missile threats. .

Military

Military Phishing Government Security

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

Krebs on Security

FEBRUARY 10, 2020

as members of the PLA’s 54 th Research Institute, a component of the Chinese military. Attorney General Bill Barr said at a press conference today that the Justice Department doesn’t normally charge members of another country’s military with crimes (this is only the second time the agency has indicted Chinese military hackers).

Military

Military Phishing Government Sales

UAC-0142 APT targets Ukraine’s Delta military intelligence program

Security Affairs

DECEMBER 20, 2022

Ukraine’s CERT-UA revealed the national Delta military intelligence program has been targeted with a malware-based attack. ” states the Ukrainian military. . ” states the Ukrainian military. SecurityAffairs – hacking, Delta military intelligence). Pierluigi Paganini.

Military

Military Archiving Phishing Government

NSA: OT Security Guidance in Wake of SolarWinds Attack

Data Breach Today

MAY 1, 2021

Agency Warns Attackers Could Use IT Exploits to Pivot to OT Systems The NSA is offering operational technology security guidance for the Defense Department as well as third-party military contractors and firms in the wake of the attack that targeted SolarWinds in 2020.

Military

Military Security IT

Russia Hacked Surveillance Cameras to Target Sites in Kyiv

Data Breach Today

JANUARY 3, 2024

Hackers Used the Cameras to Spy on Ukraine's Air Defenses, Critical Infrastructure The Russian military hacked into surveillance cameras to spy on Ukrainian air defenses and Kyiv's critical infrastructure during the missile and drone strikes on the capital city Tuesday.

Military

Military Security IT

Anonymous targets the Russian Military and State Television and Radio propaganda

Security Affairs

APRIL 5, 2022

Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details of the Russian military stationed in Bucha where the Russian military carried out a massacre of civilians that are accused of having raped and shot local women and children.

Military

Military Cybersecurity Security Government

Report Suggests CISA Should Dominate Federal Cybersecurity

Data Breach Today

OCTOBER 24, 2023

Federal Civilian Agencies 'Are Likely to Resist This Dramatic Change,' Report Says A study of federal government cybersecurity suggests the Department of Homeland Security could play a more prominent role in securing civilian networks, in a report that touts a "more centralized defensive strategy."

Cybersecurity

Cybersecurity Military Government Security

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

Security Affairs

AUGUST 21, 2023

military procurement system. military procurement system and was spotted targeting Taiwan-based organizations The choice of the new targets in the latest campaign suggests a strategic interest of the People’s Republic of China according to the 2023 ODNI threat assessment. military server used for contract proposals and submissions.

Military

Military Manufacturing Government Access

NSA Offers OT Security Guidance in Wake of SolarWinds Attack

Data Breach Today

MAY 3, 2021

Agency Warns Attackers Could Use IT Exploits to Pivot to OT Systems The NSA is offering operational technology security guidance for the Defense Department as well as third-party military contractors and others in the wake of the SolarWinds supply chain attack.

Military

Military Security IT

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

Security Affairs

JUNE 14, 2023

The IT giant pointed out that Cadet Blizzard is distinct from other known APT groups operating under the control of the Russian military intelligence GRU, such as Forest Blizzard ( STRONTIUM ) and Seashell Blizzard (IRIDIUM). Unlike other Russia-linked APT group, CadetBlizzard operations are extremely disruptive.

Military

Military Government IT Security

DOJ: Company Sold Gear With Security Flaws to US Military

Data Breach Today

NOVEMBER 8, 2019

military and other agencies for a decade and passing the gear off as American made. Prosecutors Allege Firm Sold Chinese Surveillance Tech That Contained Vulnerabilities Federal prosecutors have charged a Long Island company, along with seven of its employees, with selling vulnerability-laden Chinese technology to the U.S.

Military

Military Security IT

Russian Sandworm APT Adds New Wiper to Its Arsenal

Data Breach Today

JANUARY 31, 2023

Military Intelligence-Linked Group Attacked Ukrainian Energy Sector Firm, Says Eset Security researchers say they found the Russian intelligence-linked Sandworm threat actor deploying a novel disk wiper against an energy sector company located in Ukraine.

Military

Military IT Security

The US Military Buys Commercial Location Data

Schneier on Security

NOVEMBER 19, 2020

Vice has a long article about how the US military buys commercial location data worldwide. military is buying the granular movement data of people around the world, harvested from innocuous-seeming apps, Motherboard has learned. This isn’t new, this isn’t just data of non-US citizens, and this isn’t the US military.

Military

Military Sales Government Privacy

Military Cryptanalytics, Part III

Schneier on Security

JANUARY 4, 2021

The NSA has just declassified and released a redacted version of Military Cryptanalytics , Part III, by Lambros D. Callimahos, October 1977. Parts I and II, by Lambros D. Callimahos and William F. I own them in hardcover. Like Parts I and II, Part III is primarily concerned with pre-computer ciphers. The monograph a while to become public.

Military

Military FOIA Libraries IT

Work from Everywhere, Securely

Data Breach Today

SEPTEMBER 23, 2021

CyberEdBoard Executive Member, Charmaine Valmonte, guest speaks at ISMG Virtual Cybersecurity Summit Asia: Financial Services Volmonte is VP, IT security and IT infrastructure, Aboitiz Group of Companies. military and the private sector. She has more than 30 years of experience in the U.S.

Security

Security Financial Services Military Risk

UK printing company Doxzoo exposed US and UK military docs

Security Affairs

MARCH 20, 2020

UK printing company Doxzoo exposed hundreds of gigabytes of information, including documents related to the US and British military. Security experts at vpnMentor discovered 343GB worth of files belonging to the printing company Doxzoo that were exposed on an AWS server. ” reads the post published by vpnMentor.

Military

Military Archiving Cybersecurity Security

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

Security Affairs

JANUARY 26, 2023

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware group claims to have breached the company infrastructure and to have stolen 2TB of data, including secret military data related to weapons production.

Military

Military Manufacturing Ransomware Mining

NATO Warns it Will Consider a Military Response to Cyber-Attacks via Information Security Magazine

IG Guru

JUNE 25, 2021

The post NATO Warns it Will Consider a Military Response to Cyber-Attacks via Information Security Magazine appeared first on IG GURU. Check out the article here.

Military

Military Information Security IT Security

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

Chinese threat actors, tracked as Tropic Trooper and KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines. Chinese APT group Tropic Trooper, aka KeyBoy, has been targeting air-gapped military networks in Taiwan and the Philippines, Trend Micro researchers reported. ” continues the report.

Military

Military Government IT Security

More Military Cryptanalytics, Part III

Schneier on Security

AUGUST 31, 2021

Callimahos’s Military Cryptanalytics, Part III. Late last year, the NSA declassified and released a redacted version of Lambros D. We just got most of the index. It’s hard to believe that there are any real secrets left in this 44-year-old volume.

Military

Military FOIA IT

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. A new round of the weekly SecurityAffairs newsletter arrived!

Military

Military Security Ransomware Insurance

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

Security Affairs

FEBRUARY 24, 2023

This year, 750 cyber specialists have participated in the military cyberwarfare exercise. The Defence Cyber Marvel 2 (DCM2) is the largest training exercise organised by the Army Cyber Association to allow personnel from across the Armed Forces to build their skills within the cyber and electromagnetic domain.

Military

Military Education Government IT

From Cybercrime Saul Goodman to the Russian GRU

Krebs on Security

FEBRUARY 7, 2024

A review of this user’s hacker identities shows that during his time on the forums he served as an officer in the special forces of the GRU , the foreign military intelligence agency of the Russian Federation. In almost any database leak, the first accounts listed are usually the administrators and early core members. ” Mr.

Military

Military IT Communications Risk

Maze ransomware operators stole data from US military contractor Westech

Security Affairs

JUNE 6, 2020

Hackers have stolen confidential documents from the US military contractor Westech, which provides critical support for US Minuteman III nuclear deterrent. Security experts fear that hackers could attempt to sell stolen data about the nuclear deterrent on to a foreign state. The LGM-30 Minuteman is a U.S. Pierluigi Paganini.

Military

Military Ransomware Encryption Risk

A new piece of Ryuk Stealer targets government, military and finance sectors

Security Affairs

JANUARY 26, 2020

A new piece of the Ryuk malware has been improved to steal confidential files related to the military, government, financial statements, and banking. Targeted keywords in the new variant of the Ryuk stealer confirm that attackers are looking for confidential information in military, banking, finance and law enforcement.

Military

Military Government Ransomware Privacy

The British government aims at improving its offensive cyber capability

Security Affairs

OCTOBER 13, 2020

“[offensive cyber capability could] degrade, disrupt and even destroy critical capabilities and infrastructure of those who would do us harm, ranging from strategic to tactical targets” both in isolation or alongside traditional military force.” ” Sanders confirmed. . ” Sanders confirmed. Pierluigi Paganini.

Government

Government Military IT Security

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

In August 2020, security experts from FireEye uncovered a disinformation campaign aimed at discrediting NATO by spreading fake news content on compromised news websites. According to FireEye, the campaign tracked as GhostWriter, has been ongoing since at least March 2017 and is aligned with Russian security interests.

Military

Military Phishing CMS Government

Ukraine: Military defense agencies and banks hit by cyberattacks

Security Affairs

FEBRUARY 15, 2022

PRIVATBANK WAF is watching you)” The Ukrainian Center for Strategic Communications and Information Security also published a post on Facebook explaining that clients of the Privatbank were not able to perform payments, however threat actors did not steal funds from their bank accounts. Pierluigi Paganini.

Military

Military Communications Information Security Access

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 10, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Military Data breaches Ransomware

Chinese APT CactusPete targets military and financial orgs in Eastern Europe

Security Affairs

AUGUST 14, 2020

China-linked threat actor tracked as CactusPete was employing an updated backdoor in recent attacks targeting military and financial organizations in Eastern Europe. If we recall that CactusPete targets military, diplomatic and infrastructure organizations, the information could be very sensitive indeed,” Kaspersky continues.

Military

Military Phishing Access IT

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Security Affairs

APRIL 22, 2024

National Security Agency and Microsoft addressed it with the release of Microsoft October 2022 Patch Tuesday security updates. The group operates out of military unity 26165 of the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS). ” reads the report published by Microsoft.

Military

Military File names Education Phishing

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Security Affairs

APRIL 28, 2021

China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years. The Naikon APT group mainly focuses on high-profile orgs, including government entities and military orgs. Follow me on Twitter: @securityaffairs and Facebook.

Military

Military Passwords Government Security

Chinese Military Wants to Develop Custom OS

Schneier on Security

JUNE 6, 2019

Since these leaks have revealed that the US can hack into almost anything, the Chinese government's plan is to adopt a "security by obscurity" approach and run a custom operating system that will make it harder for foreign threat actors -- mainly the US -- to spy on Chinese military operations. Or it could be something completely new.

Military

Military Government Security IT

GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion

The Last Watchdog

OCTOBER 10, 2023

Accessing video-based intelligence at the right time and place is a very effective method for gaining information about the constantly changing military landscape. Accessing video-based intelligence at the right time and place is a very effective method for gaining information about the constantly changing military landscape.

Metadata

Metadata Military Encryption Communications

Boeing confirmed its services division suffered a cyberattack

Security Affairs

NOVEMBER 2, 2023

Boeing, the 60 billion Company, together with its subsidiaries, designs, develops, manufactures, sells, services, and supports commercial jetliners, military aircraft, satellites, missile defense, human space flight, and launch systems and services worldwide.” In 2022, Boeing recorded $66.61

IT

IT Ransomware Manufacturing Military

Apparent GE Hack Raises National Security Concerns

A phishing campaign targets Ukrainian military entities with drone manual lures

Webinars

Trending Sources

Ukrainian military intelligence service hacked the Russian Federal Taxation Service

Webinars

Russia-linked hackers target Ukrainian military with Infamous Chisel Android malware

Russia Says It's Seen 'Unprecedented' Level of Cyberattacks

Someone is sending mysterious smartwatches to the US Military personnel

China Hacked Japan’s Military Networks

Snatch group claims to have hacked military provider HENSOLDT France

Russia-linked APT TAG-70 targets European government and military mail servers exploiting Roundcube XSS

N. Korean Kimsuky APT targets S. Korea-US military exercises

U.S. Charges 4 Chinese Military Officers in 2017 Equifax Hack

UAC-0142 APT targets Ukraine’s Delta military intelligence program

NSA: OT Security Guidance in Wake of SolarWinds Attack

Russia Hacked Surveillance Cameras to Target Sites in Kyiv

Anonymous targets the Russian Military and State Television and Radio propaganda

Report Suggests CISA Should Dominate Federal Cybersecurity

New HiatusRAT campaign targets Taiwan and U.S. military procurement system

NSA Offers OT Security Guidance in Wake of SolarWinds Attack

Microsoft links Cadet Blizzard APT to Russia’s military intelligence GRU

DOJ: Company Sold Gear With Security Flaws to US Military

Russian Sandworm APT Adds New Wiper to Its Arsenal

The US Military Buys Commercial Location Data

Military Cryptanalytics, Part III

Work from Everywhere, Securely

UK printing company Doxzoo exposed US and UK military docs

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

NATO Warns it Will Consider a Military Response to Cyber-Attacks via Information Security Magazine

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

More Military Cryptanalytics, Part III

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

UK won the Military Cyberwarfare exercise Defence Cyber Marvel 2 (DCM2)

From Cybercrime Saul Goodman to the Russian GRU

Maze ransomware operators stole data from US military contractor Westech

A new piece of Ryuk Stealer targets government, military and finance sectors

The British government aims at improving its offensive cyber capability

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Ukraine: Military defense agencies and banks hit by cyberattacks

Security Affairs newsletter Round 462 by Pierluigi Paganini – INTERNATIONAL EDITION

Chinese APT CactusPete targets military and financial orgs in Eastern Europe

Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Chinese Military Wants to Develop Custom OS

GUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasion

Boeing confirmed its services division suffered a cyberattack

Stay Connected