2007, Accountability, Authentication and Information Security

2007

Accountability

Authentication

Information Security

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Security Affairs

DECEMBER 5, 2023

Microsoft warns that the Russia-linked APT28 group is actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts. The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass. ” reads trhe announcement published by DKWOC.

Accountability

Accountability Government Phishing Authentication

NATO and the EU formally condemned Russia-linked APT28 cyber espionage

Security Affairs

MAY 5, 2024

. “The Federal Government’s national attribution procedure regarding this campaign has concluded that, for a relatively long period, the cyber actor APT28 used a critical vulnerability in Microsoft Outlook that remained unidentified at the time to compromise numerous email accounts.”

Government

Government Accountability Cyber Attacks Telecommunications

Join 29,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Trending Sources

Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities

Security Affairs

FEBRUARY 26, 2024

i-SOON is a prominent contractor for various agencies of the Chinese government, including Ministry of Public Security, Ministry of State Security, and the People’s Liberation Army. The APT41 group, aka Winnti , Axiom, Barium , Blackfly, HOODOO) is a China-linked cyberespionage group that has been active since at least 2007.

Hacking

Hacking Government Spyware Marketing

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

Security Affairs

DECEMBER 7, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , BlueDelta, and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The vulnerability is a Microsoft Outlook spoofing vulnerability that can lead to an authentication bypass.

Government

Government Telecommunications Accountability Phishing

The Delicate Balance of Security Versus Usability

CyberSecurity Insiders

APRIL 20, 2021

As a security evangelist, you understand the necessity of adhering to a set of security requirements, but as a normal staff member, you can understand the frustration of your non-security coworkers. Is there ever such a thing as being a “normal” staff member after you have crossed into the elite world of information security?

Healthcare

Healthcare Wireless Information Security Security Awareness

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Security Affairs

APRIL 19, 2023

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election. .” through 12.4 through 15.6

Malware

Malware Firmware Government Education

Winnti APT group uses skip-2.0 malware to control Microsoft SQL Servers

Security Affairs

OCTOBER 21, 2019

Security experts at ESET have discovered a new malware, dubbed skip-2.0, The Winnti group was first spotted by Kaspersky in 2013, according to the researchers the gang has been active since 2007. are related to authentication and event logging.” The skip-2.0 by its authors and part of the Winnti Group’s arsenal.”

Malware

Malware Passwords Advertising DNS

The Life and Death of Passwords: Improving Security With Passwords and People

Duo's Security Blog

MARCH 28, 2023

Humans are not the weakest link in information security. They’re the least invested in for security. Back in 2007, I believe, the Aurora attack saw Google employees targeted by a nation state. Jayson: One: Use a password manager and multi-factor authentication whenever you can, especially that.

Passwords

Passwords Social Engineering Phishing Technology

Identity-based Cryptography

Thales Cloud Protection & Licensing

SEPTEMBER 26, 2019

IBC is mostly suitable to be deployed in an enterprise environment due to its light-weight key management, built-in key recovery and accountability. 8,9]) combines signature and encryption in a secure way, providing efficient joint authentication and encryption. ASIACRYPT 2007. This is an inherent “key escrow” issue.

Encryption

Encryption Government Authentication Accountability

Cyber Security Informer

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

NATO and the EU formally condemned Russia-linked APT28 cyber espionage

Webinars

Trending Sources

Hacking firm I-Soon data leak revealed Chinese gov hacking capabilities

Webinars

Russia-linked APT8 exploited Outlook zero-day to target European NATO members

The Delicate Balance of Security Versus Usability

US and UK agencies warn of Russia-linked APT28 exploiting Cisco router flaws

Winnti APT group uses skip-2.0 malware to control Microsoft SQL Servers

The Life and Death of Passwords: Improving Security With Passwords and People

Identity-based Cryptography

Stay Connected