April 1, 2024 at 06:39PM US House of Representatives staff are temporarily barred from using Microsoft’s Copilot chatbot and AI tools due to data security concerns. The decision aligns with previous restrictions on similar AI tools. The House is awaiting a government-specific version of Copilot with enhanced security features, addressing fears of data leaks to … Read more
March 28, 2024 at 11:12AM A cyberespionage campaign, dubbed Operation FlightNight, targeted government entities and energy organizations in India using phishing emails masquerading as Indian Air Force invitation letters. The malware exfiltrated data from victim machines, including financial documents and employee information. The attackers modified an open-source information stealer and utilized Slack channels for communication … Read more
March 26, 2024 at 12:48PM Airbus Defence and Space acquires Germany-based cybersecurity firm Infodas to strengthen its cybersecurity portfolio. Infodas provides Secure Domain Transition (SDoT) security gateway appliances and other IT solutions, serving companies and government organizations. The deal’s financial terms have not been disclosed, and it is expected to be finalized by the end … Read more
March 19, 2024 at 05:10PM Chinese cyberspies, known as Earth Krahang, have targeted at least 70 organizations, predominantly government entities, and over 116 victims globally. They utilize phishing emails, brute-force attacks for credential theft, and custom backdoors to compromise servers and infringe on government infrastructure. The group also has connections to other state-backed gangs and … Read more
March 18, 2024 at 04:53PM Summary: A sophisticated hacking campaign by the Chinese APT group Earth Krahang has targeted 70 organizations in 45 countries since early 2022, primarily focusing on government entities. The attackers exploit vulnerabilities and use spear-phishing to deploy custom backdoors for cyber espionage, abusing breached government infrastructure to target other governments and … Read more
January 17, 2024 at 10:07AM A recent CloudSEK XVigil report reveals a 95% surge in cyberattacks on government agencies in 2022. The public sector faces greater cybersecurity challenges due to limited resources and widespread personal data. A whole-of-state (WoS) cybersecurity strategy is proposed for collaborative defense, supported by the State and Local Cybersecurity Grant Program. … Read more
January 11, 2024 at 10:41AM Chinese state-sponsored hackers are targeting government entities in the US, UK, and Australia by exploiting old vulnerabilities in Cisco routers, reports SecurityScorecard. The actors likely compromised one-third of observed vulnerable devices and may operate a much larger botnet than previously believed, as indicated by connections to government sites. The attacks … Read more