Security Affairs

OCTOBER 25, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers.

Telecommunications 129

Telecommunications Technology Hacking Malware 129

Security Affairs

FEBRUARY 2, 2020

pic.twitter.com/mcRyEBUmQH — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020. Security experts from cyber-security firm Prevailion reported that TA505 has compromised more than 1,000 organizations. pic.twitter.com/1qnx3NmwiB — Microsoft Security Intelligence (@MsftSecIntel) January 30, 2020.

Malware 104

Malware Security Intelligence Banking Phishing 104

Security Affairs

DECEMBER 1, 2020

Learn how the group tried to stay under the radar using threats perceived to be less alarming: [link] — Microsoft Security Intelligence (@MsftSecIntel) November 30, 2020. The hackers targeted organizations across multiple industries and have also hit foreign governments, dissidents, and journalists. ” Microsoft said.

Cryptocurrency 137

Cryptocurrency Antivirus Manufacturing Government 137

Security Affairs

JUNE 3, 2022

Threat actors were observed abusing OneDrive, for this reason, the IT giant has suspended more than 20 malicious OneDrive applications created by POLONIUM actors, notified affected organizations, and deployed a series of security intelligence updates that will quarantine malicious tools developed by the attackers.

Security Intelligence 108

Security Intelligence Hacking Antivirus Authentication 108

Security Affairs

OCTOBER 6, 2020

Microsoft 365 Defender customers can also refer to these detections: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 5, 2020. MSTIC has observed activity by the nation-state actor MERCURY using the CVE-2020-1472 exploit (ZeroLogon) in active campaigns over the last 2 weeks. We strongly recommend patching.

Authentication 137

Authentication Advertising Architecture Cyber Attacks 137

Cisco Security

AUGUST 30, 2021

Using this list as a backdrop the following best practices are presented as a call to action to help organizations take a proactive approach at addressing API security risk. Your team many find the resources and community support on Cisco DevNet as a great way to connect, secure, and automate APIs. Maps to API1-API10. Maps to API10.

Software 145

Software Authentication Risk Encryption 145

Security Affairs

MARCH 12, 2021

Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). — Microsoft Security Intelligence (@MsftSecIntel) March 12, 2021. Microsoft protects against this threat known as Ransom:Win32/DoejoCrypt.A, and also as DearCry. Pierluigi Paganini.

Cyber Attacks 143

Cyber Attacks Cybercrime Authentication Hacking 143

Security Affairs

NOVEMBER 17, 2021

Over the past year, Microsoft Threat Intelligence Center (MSTIC) has observed an evolution of the tools, techniques, and procedures employed by Iranian nation-state actors. Learn more from this blog summarizing these trends, as presented at #CyberWarCon : [link] — Microsoft Security Intelligence (@MsftSecIntel) November 16, 2021.

VPN 135

VPN Accountability Social Engineering Media 135

Security Affairs

AUGUST 28, 2023

The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices. The bot targets private gaming servers, cloud hosting providers, and certain government and educational sites.

IoT 98

IoT DDOS Architecture Internet 98

Security Affairs

AUGUST 7, 2023

In June, the Finnish government expelled nine diplomats from the Russian embassy in Helsinki and accused them of cyber espionage for Moscow. Vladimir Putin issued multiple warnings that Russia would respond in kind if Nato set up military infrastructure in Finland after they joined the alliance.

Ransomware 98

Ransomware Government Cyber threats Security Intelligence 98

Security Affairs

APRIL 29, 2021

In April 2017, Symantec security experts who analyzed the alleged CIA hacking tools included in the Vault 7 dump that were involved in attacks aimed at least 40 governments and private organizations across 16 countries. According to the firm, the US cyber spies are targeting various industry sectors and government agencies.

Malware 126

Malware Hacking Government Telecommunications 126

Security Affairs

OCTOBER 29, 2020

.” Microsoft Threat Intelligence Information Center (MSTIC) has uncovered activity by the threat actor PHOSPHOROUS, which has been masquerading as conference organizers and sending spoofed invitations by email to high-profile individuals. Data was exfiltrated to the de-ma[.]online online domain, and the g20saudi.000webhostapp[.]com,

Hacking 85

Hacking Security Intelligence Advertising Accountability 85

Security Affairs

NOVEMBER 11, 2022

Get TTPs and protection info: [link] — Microsoft Security Intelligence (@MsftSecIntel) October 14, 2022. Microsoft has identified a new ransomware strain "Prestige" in limited targeted attacks in Ukraine and Poland. Several notable features differentiate this ransomware from other campaigns and payloads tracked by MSTIC.

Ransomware 98

Ransomware Telecommunications DNS Hacking 98

Security Affairs

OCTOBER 12, 2020

link] — Microsoft Security Intelligence (@MsftSecIntel) October 12, 2020. This action will result in protection for a wide range of organizations, including financial services institutions, government, healthcare, and other verticals from malware and human-operated campaigns delivered via the Trickbot infrastructure.”

Malware 98

Malware Banking Advertising Financial Services 98

Lenny Zeltser

MAY 3, 2019

government. I formulated the advice above mostly based on the tactics used against 2016 and 2018 election campaigns in the United States, as publicly described by the news media, cybersecurity companies, and the U.S.

Cybersecurity 111

Cybersecurity Social Engineering Authentication Software 111

Security Affairs

NOVEMBER 11, 2019

The Australian agency also warns of Emotet campaigns that in the last months hit the country posing a significant threat for both organizations and government offices. Read our latest blog w/ assist from @GossiTheDog & @MalwareTechBlog [link] — Microsoft Security Intelligence (@MsftSecIntel) November 7, 2019.

Small Business 93

Small Business Malware Cryptocurrency Advertising 93

Centraleyes

JULY 8, 2024

ISACA (Information Systems Audit and Control Association) ISACA is a global association that provides resources, certifications, and networking opportunities for IT governance, risk management, and cybersecurity professionals.

Cybersecurity 59

Cybersecurity Data breaches Data privacy Technology 59

Spinone

DECEMBER 26, 2018

Cyber threat management , being an advanced discipline, craves analytical attention and a commander’s strategic skills of information security executives to confront and overcome the multi-dimensional cyber threats.

Security Awareness 40

Security Awareness Risk Cyber threats Cyber Risk 40

Security Affairs

OCTOBER 31, 2020

Recently, the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert to warn of a surge of Emotet attacks that have targeted multiple state and local governments in the U.S. Researchers from Microsoft Security Intelligence are also warning of the ongoing Halloween-themed Emotet campaign. since August.

Banking 113

Banking Malware Security Intelligence Advertising 113