2010, Hacking, Information Security and Technology

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

Security Affairs

OCTOBER 22, 2023

“If you’re working today at the cutting edge of technology then geopolitics is interested in you, even if you’re not interested in geopolitics.” ” Commercial businesses in the technology sector of any size, especially small companies and start-ups and researchers, are more exposed to Chinese espionage. .

Telecommunications

Telecommunications Technology Government Firmware

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Security Affairs

SEPTEMBER 26, 2023

BORN Ontario hired cybersecurity experts to mitigate the threat, secure its infrastructure, and investigate the scope of the incident. The organization confirmed that it was the victim of the massive hacking campaign targeting Progress MOVEit transfer systems that was conducted by the Clop ransomware group.

Data breaches

Data breaches Healthcare Ransomware Hacking

CIA elite hacking unit was not able to protect its tools and cyber weapons

Security Affairs

JUNE 17, 2020

A CIA elite hacking unit that developed cyber-weapons failed in protecting its operations, states an internal report on the Vault 7 data leak. In March, Joshua Schulte , a former CIA software engineer that was accused of stealing the agency’s hacking tools and leaking them to WikiLeaks, was convicted of only minor charges.

Hacking

Hacking Engineering Data breaches Advertising

NATO Chief calls for a new strategic to address new challenges

Security Affairs

OCTOBER 9, 2020

NATO Chief calls for a new strategic to mitigate the risks related to the threats to the rising technologies, new forms of terrorism, and the role of China. “My thought is that the existing Strategic Concept, which we agreed in 2010, has served NATO well. SecurityAffairs – hacking, K-Electric). ” Stoltenberg added.

Artificial Intelligence

Artificial Intelligence Technology Advertising Marketing

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Security Affairs

AUGUST 1, 2019

One year later, in June 2010, the expert discovered that Cisco had not addressed the vulnerabilities exposing its customers to the risk of a hack, then he reported his findings to the FBI. million fine for selling flawed surveillance technology to the US Gov appeared first on Security Affairs. Pierluigi Paganini.

Surveillance

Surveillance Technology Government Software

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Security Affairs

SEPTEMBER 27, 2023

US and Japanese authorities warn that a China-linked APT BlackTech planted backdoor in Cisco router firmware to hack the businesses in both countries. BlackTech is a Chinese APT group that has been active since at least 2010 and that known for conducting cyber espionage campaigns in Asia aimed at entities in Hong Kong, Japan, and Taiwan.

Firmware

Firmware Telecommunications System Administration Malware

Payment solutions giant Edenred announces malware infection

Security Affairs

NOVEMBER 22, 2019

The Group is independent since June 2010 following the split with Accor. announces that on November 21, 2019 it was subject to a malware infection on its information technology systems. SecurityAffairs – malware, hacking). Edenred is a French company specialized in prepaid corporate services. “ Edenred S.A.

Malware

Malware Mobile Advertising Government

APT41 actors charged for attacks on more than 100 victims globally

Security Affairs

SEPTEMBER 17, 2020

US Department of Justice announced indictments against 5 Chinese nationals alleged members of a state-sponsored hacking group known as APT41. 35, with 25, carried out cyber attacks on high-technology and similar organizations and video game companies. 37, they were operating for a Chinese company named Chengdu 404 Network Technology.

Identity Theft

Identity Theft Advertising Government Technology

Russia-linked Energetic Bear APT behind San Francisco airport attacks

Security Affairs

APRIL 15, 2020

Security researchers from ESET revealed that the infamous Russian hacker group known as Energetic Bear is behind the hack of two San Francisco International Airport (SFO) websites. The Energetic Bear APT group has been active since at least 2010 most of the victims of the group are organizations in the energy and industrial sectors.

Data breaches

Data breaches Passwords Telecommunications Advertising

The Hacker Mind Podcast: Hacking Teslas

ForAllSecure

JUNE 8, 2022

As with most advances in automotive, this technology started at the higher end models. Welcome to The Hacker Mind, an original podcast from for all secure. It's about challenging our expectations about the people who hack for a living. So the car would start. In the early days, there were not too many of these key fobs.

Hacking

Hacking Manufacturing Encryption Wireless

Experts linked ransomware attacks to China-linked APT27

Security Affairs

JANUARY 4, 2021

The APT group has been active since 2010, targeted organizations worldwide, including U.S. Analyzing the attacks revealed malware samples linked to DRBControl , a campaign described earlier this year in a report from Trend Micro and attributed to APT27 and Winnti, both groups active since at least 2010 and associate with Chinese hackers.

Ransomware

Ransomware Malware Financial Services Encryption

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Security Affairs

APRIL 28, 2021

The Naikon APT group is a China-linked cyber espionage group that has been active at least since 2010 and that remained under the radar since 2015 while targeting entities in Asia-Pacific (APAC) region. . If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, APT).

Backups

Backups Malware Mobile Passwords

Cyber Security Roundup for April 2021

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. How not to disclosure a Hack. UK fashion retailer FatFace angered customers in its handling of a customer data theft hack. conduct employee phishing tests.

Energy and Utilities

Energy and Utilities Ransomware Banking Hacking

Naikon APT is flying under the radar since 2015

Security Affairs

MAY 7, 2020

The Naikon APT group is a China-linked cyber espionage group that has been active at least since 2010 and that remained under the radar over the past five years while targeting entities in Asia-Pacific (APAC) region. SecurityAffairs – Naikon, hacking). ” reads a report published by CheckPoint. ” continues the report.

Government

Government Advertising Technology Hacking

Iron Tiger APT is behind a supply chain attack that employed messaging app MiMi

Security Affairs

AUGUST 15, 2022

The Iron Tiger APT (aka Panda Emissary , APT27 , Bronze Union , Lucky Mouse , and TG-3390) is active at least since 2010 and targeted organizations in APAC, but since 2013 it is attacking high-technology targets in the US. SecurityAffairs – hacking, Iron Tiger). ” concludes the analysis. Pierluigi Paganini.

Malware

Malware Hacking Technology Information Security

Maryland Department of Labor discloses a data breach

Security Affairs

JULY 9, 2019

” Threat actors accessed to files stored in the Literacy Works Information System that are dated back 2009, 2010, and 2014. . ” Threat actors accessed to files stored in the Literacy Works Information System that are dated back 2009, 2010, and 2014. ” continues the Department. . . Pierluigi Paganini.

Data breaches

Data breaches Insurance Advertising Technology

Key aerospace player Safran Group leaks sensitive data

Security Affairs

MARCH 15, 2023

The Safran Group is also involved in developing cutting-edge technologies beyond aviation, such as modules currently in use in the James Webb Telescope, the world’s largest optical telescope in space. The unidentified hackers allegedly attempted to map the company’s computer system between 2009 and 2010.

Manufacturing

Manufacturing Media Accountability Risk

The Hacker Mind Podcast: Hacking Communities

ForAllSecure

JULY 14, 2021

It's about challenging our expectations about the people who hack for a living. At that time back in 2010. Daniel: I spoke to some folks to do a lot of maritime cybersecurity and industrial control, a kind of technology security in the maritime industry, both for the arts as well as commercial stuff.

Hacking

Hacking InfoSec Media Technology

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

ForAllSecure

SEPTEMBER 10, 2021

Learn how even someone mid career in security can play on their own, and even fill in gaps on their own learning, all year round. Vamosi: Welcome to the hacker mind, and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. And they attack the problem differently.

Hacking

Hacking Education InfoSec Engineering

China-linked cyberspies Turbine PANDA targeted aerospace firms for years

Security Affairs

OCTOBER 18, 2019

Security researchers at Crowdstrike conducted long-running cyber-espionage operations aimed at various aerospace firms. According to the experts the cyber espionage operations begun in January 2010, after the state-owned enterprise Commercial Aircraft Corporation of China (COMAC) selected U. Office of Personnel Management (OPM) breach.

Engineering

Engineering Manufacturing Malware Advertising

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Security Affairs

FEBRUARY 15, 2020

Garbelini , Sudipta Chattopadhyay, and Chundong Wang from the Singapore University of Technology and Design. The protocol Bluetooth Low Energy (BLE) was released in 2010 and it is designed to implement a new generation of services for mobile applications. SecurityAffairs – SweynTooth, hacking). Pierluigi Paganini.

IoT

IoT Firmware Advertising Hacking

Life at ForAllSecure: Robert Vamosi, Director of Product Marketing

ForAllSecure

MAY 10, 2023

I also got my CISSP certification, because I wanted to show people that even though I started as a journalist, I actually understand information security. From there, I moved around to other companies as a Product Marketing Manager, always trying to stay as close to cutting edge technology as possible. I like startups.

Marketing

Marketing Engineering IoT Technology

Law enforcement agencies can extract data from thousands of cars’ infotainment systems

Security Affairs

DECEMBER 4, 2022

Modern vehicles come with sophisticated infotainment systems that are connected online and that could represent an entry point for attackers, as demonstrated by many security experts over the years. Law enforcement and intelligence worldwide are buying technologies that exploit weaknesses in vehicle systems. ” Forbes reports.

Surveillance

Surveillance Technology Mobile Hacking

Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw

Security Affairs

NOVEMBER 8, 2021

Experts warn of an ongoing hacking campaign that already compromised at least nine organizations worldwide from critical sectors by exploiting CVE-2021-40539. During that window, the actor successfully compromised at least nine global entities across the technology, defense, healthcare, energy and education industries.”

Healthcare

Healthcare Password Management Financial Services Surveillance

Fact check: Quantum computing may transform cybersecurity eventually – but not yet

SC Magazine

JUNE 23, 2021

Quantum computing has made great progress in certain areas of technology, including chip development. The hype cycles that come with emerging technologies can be perilous waters for early adopters and buyers. CEO Brian Krzanich delivers a keynote address at CES 2018 in Las Vegas, Nevada. Photo by Ethan Miller/Getty Images).

Encryption

Encryption Cybersecurity Technology Marketing

Is the recent accident at Iran Natanz nuclear plant a cyber attack?

Security Affairs

APRIL 11, 2021

.” Reports claim that the attack was launched by Israel-linked hackers, the same state is suspected to have had a main role in the Stuxnet attack that hit the same nuclear plant back in 2010. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, Iran).

Cyber Attacks

Cyber Attacks Energy and Utilities Media Hacking

The evolutions of APT28 attacks

Security Affairs

DECEMBER 4, 2019

The delivery phase, at such time, was implementing a quite sophisticated dropper technology by exploiting vulnerabilities to “save and run” the payload in the desired place. The most used tracked vulnerabilities are mainly focused on: “Windows”, “Adobe Flash” and “Oracle” Technologies. SecurityAffairs – ATP28, hacking).

Computers and Electronics

Computers and Electronics Penetration Testing Technology Malware

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

The Last Watchdog

FEBRUARY 25, 2019

Curcio walked me through how identity management technologies evolved over the past two decades. Not long afterwards, in about the 2010 time frame, IAM vendors first arrived on the scene, including Optimal IdM, Centrify, Okta and CyberArk, followed by many others. Efforts to balance security and productivity sometimes backfired.

Government

Government Authentication Technology Data breaches

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

With the launch the first stable release of BackTrack 4 in January 2010, the project got its own domain ( backtrack-linux.org ) and moved off remote-exploit. As this was not a “Long-Term Support” (LTS) release, upstream would only support it until April 2010 - one year & six months. With technology, trends change.

InfoSec

InfoSec Penetration Testing Architecture Software

The role of a secret Dutch mole in the US-Israeli Stuxnet attack on Iran

Security Affairs

SEPTEMBER 2, 2019

Stuxnet is a malicious computer worm developed to target SCADA systems that was first uncovered in 2010, but researchers believe its development begun at least 2005. In 2000, cyberspies from AIVD hacked the email system of a key Iranian defense organization to obtain more information about Iran’s nuclear program.

Malware

Malware Engineering Advertising Hacking

Remote sex toys might spice up your love life – but crooks could also get a kick out of them?

Security Affairs

FEBRUARY 14, 2022

Remote-control sex toys have been around since 2010. Most of the Lovense front-end website for controlling a remote device is built on cheap and rather old technology, dating back to around 2016. However, the company dismissed concerns that this outdated technology could prove vulnerable to cyber attacks. Lack of obfuscation.

Wireless

Wireless Manufacturing Firewall Technology

EP 49: LoL

ForAllSecure

JUNE 21, 2022

Vamosi: Welcome to the hacker mind and original podcast from for all secure. It's about challenging our expectations about the people who hack for a living. But it's not what you think because typically in Microsoft office hacking scenarios, it comes down to macros. And that's what makes this hack. I'm Robert Vamosi.

Ransomware

Ransomware Marketing Software Antivirus

Cyber Security Informer

MI5 chief warns of Chinese cyber espionage reached an unprecedented scale

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Trending Sources

CIA elite hacking unit was not able to protect its tools and cyber weapons

NATO Chief calls for a new strategic to address new challenges

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

China-linked APT BlackTech was spotted hiding in Cisco router firmware

Payment solutions giant Edenred announces malware infection

APT41 actors charged for attacks on more than 100 victims globally

Russia-linked Energetic Bear APT behind San Francisco airport attacks

The Hacker Mind Podcast: Hacking Teslas

Experts linked ransomware attacks to China-linked APT27

Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs

Cyber Security Roundup for April 2021

Naikon APT is flying under the radar since 2015

Iron Tiger APT is behind a supply chain attack that employed messaging app MiMi

Maryland Department of Labor discloses a data breach

Key aerospace player Safran Group leaks sensitive data

The Hacker Mind Podcast: Hacking Communities

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

China-linked cyberspies Turbine PANDA targeted aerospace firms for years

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Life at ForAllSecure: Robert Vamosi, Director of Product Marketing

Law enforcement agencies can extract data from thousands of cars’ infotainment systems

Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw

Fact check: Quantum computing may transform cybersecurity eventually – but not yet

Is the recent accident at Iran Natanz nuclear plant a cyber attack?

The evolutions of APT28 attacks

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

Happy 10th anniversary & Kali's story.so far

The role of a secret Dutch mole in the US-Israeli Stuxnet attack on Iran

Remote sex toys might spice up your love life – but crooks could also get a kick out of them?

EP 49: LoL

Stay Connected