June 25, 2024 at 09:44AM Indonesia’s national data center was hacked by a group demanding an $8 million ransom, disrupting over 200 government agencies’ services. Although some services have been restored, efforts continue, and investigations are underway to regain access to the data. The government has made it clear that they will not pay the … Read more
May 9, 2024 at 11:48AM Russian APT28 orchestrates a malware campaign targeting Polish government institutions. The attack involves tricking victims into downloading malicious files via redirection to legitimate sites. APT28’s use of legitimate services aims to avoid detection by security software. The group has also expanded its activities to target iOS devices. NATO countries recently … Read more
April 4, 2024 at 02:29PM The US Department of State is investigating a cyber incident in which a criminal known as IntelBroker claimed to have stolen and leaked classified information from national security agencies. The leaked data includes confidential communications, contact info for government and military officials, and personal details of around 100,000 victims. The … Read more
April 1, 2024 at 06:39PM US House of Representatives staff are temporarily barred from using Microsoft’s Copilot chatbot and AI tools due to data security concerns. The decision aligns with previous restrictions on similar AI tools. The House is awaiting a government-specific version of Copilot with enhanced security features, addressing fears of data leaks to … Read more
March 28, 2024 at 11:12AM A cyberespionage campaign, dubbed Operation FlightNight, targeted government entities and energy organizations in India using phishing emails masquerading as Indian Air Force invitation letters. The malware exfiltrated data from victim machines, including financial documents and employee information. The attackers modified an open-source information stealer and utilized Slack channels for communication … Read more
March 26, 2024 at 12:48PM Airbus Defence and Space acquires Germany-based cybersecurity firm Infodas to strengthen its cybersecurity portfolio. Infodas provides Secure Domain Transition (SDoT) security gateway appliances and other IT solutions, serving companies and government organizations. The deal’s financial terms have not been disclosed, and it is expected to be finalized by the end … Read more
March 19, 2024 at 05:10PM Chinese cyberspies, known as Earth Krahang, have targeted at least 70 organizations, predominantly government entities, and over 116 victims globally. They utilize phishing emails, brute-force attacks for credential theft, and custom backdoors to compromise servers and infringe on government infrastructure. The group also has connections to other state-backed gangs and … Read more
March 18, 2024 at 04:53PM Summary: A sophisticated hacking campaign by the Chinese APT group Earth Krahang has targeted 70 organizations in 45 countries since early 2022, primarily focusing on government entities. The attackers exploit vulnerabilities and use spear-phishing to deploy custom backdoors for cyber espionage, abusing breached government infrastructure to target other governments and … Read more
January 17, 2024 at 10:07AM A recent CloudSEK XVigil report reveals a 95% surge in cyberattacks on government agencies in 2022. The public sector faces greater cybersecurity challenges due to limited resources and widespread personal data. A whole-of-state (WoS) cybersecurity strategy is proposed for collaborative defense, supported by the State and Local Cybersecurity Grant Program. … Read more
January 11, 2024 at 10:41AM Chinese state-sponsored hackers are targeting government entities in the US, UK, and Australia by exploiting old vulnerabilities in Cisco routers, reports SecurityScorecard. The actors likely compromised one-third of observed vulnerable devices and may operate a much larger botnet than previously believed, as indicated by connections to government sites. The attacks … Read more