2012 and Government - Cyber Security Informer

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Experts say Kislitsin’s prosecution could soon put the Kazakhstan government in a sticky diplomatic position, as the Kremlin is already signaling that it intends to block his extradition to the United States. Burkov was arrested in 2015 by Israeli authorities, and the Russian government fought Burkov’s extradition to the U.S.

Cybersecurity

Cybersecurity Cybercrime Hacking Government

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Krebs on Security

SEPTEMBER 17, 2020

The government alleges the men used malware-laced phishing emails and “supply chain” attacks to steal data from companies and their customers. One of the alleged hackers was first profiled here in 2012 as the owner of a Chinese antivirus firm. Image: FBI.

Antivirus

Antivirus Hacking Government Software

How China Uses Stolen US Personnel Data

Schneier on Security

DECEMBER 24, 2020

However, the shake-up between 2010 and 2012 gave Beijing an impetus not only to go after bigger, riskier targets, but also to put together the infrastructure needed to process the purloined information. In 2012, senior U.S. government looked for, and what it didn’t, while considering applicants for sensitive positions.

Hacking

Hacking Government

Booter Boss Busted By Bacon Pizza Buy

Krebs on Security

FEBRUARY 4, 2020

Investigators say Bukoski’s booter service was among the longest running services targeted by the FBI, operating since at least 2012. The government’s sentencing memorandum says Bukoski’s replies demanding to know the reasons for the suspensions were instrumental in discovering his real name.

Internet

Internet Internet Government Accountability

Horde Webmail Software is affected by a dangerous bug since 2012

Security Affairs

FEBRUARY 23, 2022

This webmail solution is widely adopted by universities and government agencies. The bug affects all the versions since the commit that took place on 30 Nov 2012. The post Horde Webmail Software is affected by a dangerous bug since 2012 appeared first on Security Affairs. ” reads a report published by Sonarsource.

Software

Software Accountability Hacking Government

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

But not long after KrebsOnSecurity reported in April that Shefel/Rescator also was behind the theft of Social Security and tax information from a majority of South Carolina residents in 2012, Mr. Shefel began contacting this author with the pretense of setting the record straight on his alleged criminal hacking activities.

Advertising

Advertising Retail Cryptocurrency Cybercrime

North Korea-linked APT37 exploited IE zero-day in a recent attack

Security Affairs

OCTOBER 19, 2024

APT37 has been active since at least 2012 , it made the headlines in early February 2028, when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. The report published by AhnLab includes details on the attack and indicators of compromise (IoCs).

Internet

Internet Internet Engineering Malware

China-linked APT Mustang Panda upgrades tools in its arsenal

Security Affairs

APRIL 17, 2025

Mustang Panda has been active since at least 2012, targeting American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. In the 2022 campaigns, threat actors used European Union reports on the conflict in Ukraine and Ukrainian government reports as lures.

Encryption

Encryption Government Malware Hacking

US indicted 4 Russian government employees for attacks on critical infrastructure

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their involvement in attacks on entities in critical infrastructure. has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. Pierluigi Paganini.

Government

Government Energy and Utilities Hacking Malware

Chinese Supply-Chain Attack on Computer Systems

Schneier on Security

FEBRUARY 13, 2021

The US government has known about it for almost as long, and has tried to keep the attack secret: China’s exploitation of products made by Supermicro, as the U.S. The US government has known about it for almost as long, and has tried to keep the attack secret: China’s exploitation of products made by Supermicro, as the U.S.

Surveillance

Surveillance Government Manufacturing Internet

How Internet Savvy are Your Leaders?

Krebs on Security

DECEMBER 10, 2018

Davis , a former Democratic state representative from Kansas handed $85 (PDF) to Web Listings in 2012. The fundraising committee for Republican Dick Black ‘s 2012 campaign for the Virginia Senate also paid Web Listings Inc. $85. Image: Better Business Bureau. three years in a row ( 2016 , 2017 and 2018).

Internet

Internet Internet Scams Engineering

GovPayNow.com Leaks 14M+ Records

Krebs on Security

SEPTEMBER 17, 2018

Government Payment Service Inc. — a company used by thousands of U.S. Indianapolis-based GovPayNet , doing business online as GovPayNow.com , serves approximately 2,300 government agencies in 35 states. GovPayNow.com displays an online receipt when citizens use it to settle state and local government fees and fines via the site.

Mobile

Mobile Government Identity Theft Telecommunications

Faulty DoD Cybersecurity Leaves U.S. At Risk of Missile Attacks

Adam Levin

DECEMBER 18, 2018

The BMDS isn’t the only military defense system to receive a failing grade in security; a report issued by the Government Accountability Office earlier this year found that nearly all of U.S. weapons systems developed between 2012 and 2017 are vulnerable to cyberattacks, despite regular warnings from government watchdogs. .

Risk

Risk Cybersecurity Surveillance Government

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Krebs on Security

JUNE 10, 2022

The government alleged that between December 2010 and September 2014, the defendants engaged in a conspiracy to identify or pay to identify blocks of Internet Protocol (IP) addresses that were registered to others but which were otherwise inactive. .'” Adconion was acquired in June 2014 by Amobee , a Redwood City, Calif.

Government

Government Marketing Internet Internet

Researchers Uncover Hacking Operations Targeting Government Entities in South Korea

The Hacker News

JUNE 2, 2021

A North Korean threat actor active since 2012 has been behind a new espionage campaign targeting high-profile government officials associated with its southern counterpart to install an Android and Windows backdoor for collecting sensitive information.

Government

Government Hacking Cybersecurity

RedTorch Formed from Ashes of Norse Corp.

Krebs on Security

MARCH 22, 2021

Flushed with venture capital funding in 2012, Norse’s founders started hiring dozens of talented cybersecurity professionals. Extensive government work experience from working with federal governments.” By 2014 it was throwing lavish parties at top Internet security conferences.

Surveillance

Surveillance Computers and Electronics Internet Internet

Serial Swatter and Stalker Mir Islam Arrested for Allegedly Dumping Body in River

Krebs on Security

DECEMBER 23, 2018

On June 25, 2012, Islam and nearly two-dozen others were caught up in an FBI dragnet dubbed Operation Card Shop. The government accused Islam of being a founding member of carders[dot]org — a credit card fraud forum — trafficking in stolen credit card information, and possessing information for more than 50,000 credit cards.

Internet

Internet Internet Government Accountability

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

companies and government entities. A New Jersey grand jury indicted Kovalev in 2012 after an investigation by the U.S. The 2012 indictment against Kovalev relates to cybercrimes he allegedly perpetrated prior to the creation of Trickbot. .” government’s first swipe at the Trickbot group. This is not the U.S.

Hacking

Hacking Cybercrime Ransomware Government

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Krebs on Security

SEPTEMBER 26, 2024

The government also indicted and sanctioned a top Russian cybercriminal known as Taleon , whose cryptocurrency exchange Cryptex has evolved into one of Russia’s most active money laundering networks. Joker’s sold cards stolen in a steady drip of breaches at U.S. This batch of some five million cards put up for sale Sept.

Cryptocurrency

Cryptocurrency Cybercrime Government Retail

Dark Caracal: Global Espionage Malware from Lebanon

Schneier on Security

JANUARY 22, 2018

From the Lookout announcement: Dark Caracal has operated a series of multi-platform campaigns starting from at least January 2012, according to our research. It primarily targets mobile devices compromised by fake secure messaging clients like Signal and WhatsApp. The campaigns span across 21+ countries and thousands of victims.

Malware

Malware Spyware Manufacturing Mobile

Marcus “MalwareTech” Hutchins Pleads Guilty to Writing, Selling Banking Malware

Krebs on Security

APRIL 19, 2019

George Washington University Professor Orin Kerr ‘s 2017 dissection of the government’s charges is worth a read for a deep dive on this sticky legal issue. “Attachment A” beginning on page 15 outlines the government’s case against Hutchins and an alleged co-conspirator. The plea agreement is here (PDF).

Banking

Banking Malware Government Advertising

Aoquin Dragon from China hacking Australian Government Servers

CyberSecurity Insiders

JUNE 13, 2022

Cybersecurity researchers from Sentinel Labs have discovered the digital activities of Aoquin Dragon group and have confirmed that the primary focus of the APT was to conduct espionage on government operations happening across Cambodia, Hong Kong, Singapore, Vietnam, and the Anthony Albanese-led nation.

Government

Government Hacking Cyber Attacks Cybersecurity

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

Security Affairs

FEBRUARY 14, 2020

According to the media, these are the largest penalties imposed by the Kremlin on Western IT firms under internet use laws since 2012. Roskomnadzor is attempting to oblige the IT giants, including Facebook, Twitter, and Google to move data related to Russian citizens to servers in Russia allowing the Government to monitor them.,

Telecommunications

Telecommunications Advertising Government Media

Kimsuky APT continues to target South Korean government using AppleSeed backdoor

Malwarebytes

JUNE 1, 2021

The Kimsuky APT—also known as Thallium, Black Banshee, and Velvet Chollima—is a North Korean threat actor that has been active since 2012. The group conducts cyber espionage operations to target government entities mainly in South Korea. This blog post was authored by Hossein Jazi. Victimology. Command and Control infrastructure.

Government

Government Phishing Encryption Media

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

According to cyber intelligence firm Flashpoint , MrMurza has been active in the Russian underground since at least September 2012. 2012, from an Internet address in Magnitogorsk, RU. MrMurza also told the admin that his account number at the now-defunct virtual currency Liberty Reserve was U1018928.

Malware

Malware Accountability Passwords Cybercrime

China sets SIM based tracking devices in UK Government cars

CyberSecurity Insiders

JANUARY 10, 2023

NOTE- Every developed country like the United States, the UK, China, Russia, and Iran has launched its own set of surveillance campaigns from 2012 and each has a different aim of spying on its populace n politicians, bureaucrats, and businesspersons of international fame.

Government

Government Surveillance Cybersecurity

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

It's also why the United States has blocked the cybersecurity company Kaspersky from selling its Russian-made antivirus products to US government agencies. Last year, Le Monde reported that the Chinese government bugged the computer network of the headquarters of the African Union in Addis Ababa.

Surveillance

Surveillance Wireless Government Internet

The Internet is Held Together With Spit & Baling Wire

Krebs on Security

NOVEMBER 26, 2021

And virtually all IRRs have disallowed its use since at least 2012, said Adam Korab , a network engineer and security researcher based in Houston. “LEVEL 3 is the last IRR operator which allows the use of this method, although they have discouraged its use since at least 2012,” Korab told KrebsOnSecurity.

Internet

Internet Internet Authentication Telecommunications

Actions Target Russian Govt. Botnet, Hydra Dark Market

Krebs on Security

APRIL 7, 2022

Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in the United States and Ukraine. Separately, law enforcement agencies in the U.S. energy facilities. energy facilities.

Marketing

Marketing Energy and Utilities Malware Ransomware

AI and Trust

Schneier on Security

DECEMBER 4, 2023

And four, that it is the role of government to create trust in society. I wrote about this in 2012 in a book called Liars and Outliers. In today’s society we regularly trust—or not—governments, corporations, brands, organizations, groups. With governments. They will not be trustworthy.

Government

Government Surveillance Artificial Intelligence Marketing

Attorney General William Barr on Encryption Policy

Schneier on Security

JULY 24, 2019

I think this is a major change in government position. There's no longer a difference between consumer tech and government tech -- it's all the same tech. Moreover, in 2012 every CALEA-enabled switch sold to the Defense Department had security vulnerabilities. (I That telecommunications company was GTEwhich became Verizon.

Encryption

Encryption Telecommunications Risk Government

Tracking the Cost of Quantum Factoring

Google Security

MAY 23, 2025

National Institute of Standards and Technology (NIST) and others in government, industry, and academia to develop and transition to post-quantum cryptography (PQC), which is expected to be resistant to quantum computing attacks. Google has long worked with the U.S.

Encryption

Encryption Technology Authentication Engineering

Attorney General Barr and Encryption

Schneier on Security

AUGUST 14, 2019

I think this is a major change in government position. There's no longer a difference between consumer tech and government tech -- it's all the same tech. Moreover, in 2012 every CALEA-enabled switch sold to the Defense Department had security vulnerabilities. (I That telecommunications company was GTE -- which became Verizon.

Encryption

Encryption Telecommunications Risk Government

Feds Charge Three in Mass Seizure of Attack-for-hire Services

Krebs on Security

DECEMBER 20, 2018

” Another important distinction between this week’s coordinated action and past booter site takedowns was that the government actually tested each service it dismantled to validate claims about attack firepower and to learn more about how each service conducted assaults. ” DOWN THEM ALL.

DNS

DNS Computers and Electronics Government DDOS

British Court rejects the US’s request to extradite Julian Assange

Security Affairs

JANUARY 4, 2021

A British court has rejected the request of the US government to extradite Wikileaks founder Julian Assange to the country. government will likely appeal the decision. ” The case against Julian Assange is the most dangerous threat to US press freedom in decades. Of course, the U.S.

Government

Government Risk Hacking Passwords

GovPayNow Leak of 14M+ Records Dates Back to 2012

Dark Reading

SEPTEMBER 18, 2018

Thousands of US state and local governments use the service to process online payments for everything from traffic tickets to court fines.

Government

Canada Charges Its “Most Prolific Cybercriminal”

Krebs on Security

DECEMBER 8, 2021

A 31-year-old Canadian man has been arrested and charged with fraud in connection with numerous ransomware attacks against businesses, government agencies and private citizens throughout Canada and the United States. A 2012 sales thread on Darkode for Rev Locker.

Cybercrime

Cybercrime Ransomware Accountability Advertising

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Security Affairs

APRIL 14, 2020

PaloAlto Networks experts warn of malicious Coronavirus themed phishing campaigns targeting government and medical organizations. Recently organizations in healthcare, research, and government facilities have been hit by Coronavirus-themed attacks that deployed multiple malware families, including ransomware and information stealers (i.e.

Healthcare

Healthcare Ransomware Phishing Government

Aquatic Panda found stealing industrial intelligence and military secrets

CyberSecurity Insiders

DECEMBER 29, 2021

However, they could not weed out the objective of Aquatic Panda in finding ways to gain access to intellectual property related to telecom, government and few technology companies. Note- Found in 2012, Aquatic Panda is found relying heavily on cobalt strike, the remote access exploiting tool.

Cyber Risk

Cyber Risk Government Education Technology

Chinese hackers launch Linux variant of PingPull malware

CSO Magazine

APRIL 27, 2023

Alloy Taurus, a Chinese APT , has been active since 2012. The group is known to target telecommunication companies but in recent years has also been observed targeting financial and government institutions. Along with the new variant, another backdoor called Sword2033 was also identified by the researchers.

Malware

Malware Telecommunications Government

A SOC Tried To Detect Threats in the Cloud … Your Won’t Believe What Happened Next

Anton on Security

MAY 27, 2021

In this post, I wanted to quickly touch on this very topic and refresh some past analysis of this (and perhaps reminisce on how sad things were in 2012 ). Cloud providers haven’t necessarily simplified this journey for customers, even though, compared to 2012 , decent logs actually exist today in many cases.

Cloud Migration

Cloud Migration Architecture Technology Government

Mitsubishi Electric discloses data breach, media blame China-linked APT

Security Affairs

JANUARY 20, 2020

Mitsubishi Electric had also already notified members of the Japanese government and Ministry of Defense. This morning, at a press conference, Yoshii Kan, a secretary-general of Japan, said that the company had reported the intrusion. ” reported the Asahi Shimbun. ” reported Kyodo News.

Data breaches

Data breaches Media Computers and Electronics Cyber Attacks

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

Security Affairs

MARCH 13, 2025

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. Kaspersky first documented the operations of the group in 2016.

Spyware

Spyware Surveillance Encryption Malware

How Did Authorities Identify the Alleged Lockbit Boss?

Krebs on Security

MAY 13, 2024

The government alleges Khoroshev created, sold and used the LockBit ransomware strain to personally extort more than $100 million from hundreds of victim organizations, and that LockBit as a group extorted roughly half a billion dollars over four years. That’s what the government believes. Dmitry Yuryevich Khoroshev.

Cybercrime

Cybercrime Ransomware Accountability Government

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

Trending Sources

How China Uses Stolen US Personnel Data

Booter Boss Busted By Bacon Pizza Buy

Horde Webmail Software is affected by a dangerous bug since 2012

An Interview With the Target & Home Depot Hacker

North Korea-linked APT37 exploited IE zero-day in a recent attack

China-linked APT Mustang Panda upgrades tools in its arsenal

US indicted 4 Russian government employees for attacks on critical infrastructure

Chinese Supply-Chain Attack on Computer Systems

How Internet Savvy are Your Leaders?

GovPayNow.com Leaks 14M+ Records

Faulty DoD Cybersecurity Leaves U.S. At Risk of Missile Attacks

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Researchers Uncover Hacking Operations Targeting Government Entities in South Korea

RedTorch Formed from Ashes of Norse Corp.

Serial Swatter and Stalker Mir Islam Arrested for Allegedly Dumping Body in River

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

Dark Caracal: Global Espionage Malware from Lebanon

Marcus “MalwareTech” Hutchins Pleads Guilty to Writing, Selling Banking Malware

Aoquin Dragon from China hacking Australian Government Servers

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

Kimsuky APT continues to target South Korean government using AppleSeed backdoor

Giving a Face to the Malware Proxy Service ‘Faceless’

China sets SIM based tracking devices in UK Government cars

On Chinese "Spy Trains"

The Internet is Held Together With Spit & Baling Wire

Actions Target Russian Govt. Botnet, Hydra Dark Market

AI and Trust

Attorney General William Barr on Encryption Policy

Tracking the Cost of Quantum Factoring

Attorney General Barr and Encryption

Feds Charge Three in Mass Seizure of Attack-for-hire Services

British Court rejects the US’s request to extradite Julian Assange

GovPayNow Leak of 14M+ Records Dates Back to 2012

Canada Charges Its “Most Prolific Cybercriminal”

Crooks target Healthcare facilities involved in Coronavirus containment with Ransomware

Aquatic Panda found stealing industrial intelligence and military secrets

Chinese hackers launch Linux variant of PingPull malware

A SOC Tried To Detect Threats in the Cloud … Your Won’t Believe What Happened Next

Mitsubishi Electric discloses data breach, media blame China-linked APT

North Korea-linked APT group ScarCruft spotted using new Android spyware KoSpy

How Did Authorities Identify the Alleged Lockbit Boss?

Stay Connected