Government and Technology - Cyber Security Informer

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based based technology companies.

Hacking

Hacking Accountability Government Social Engineering

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. broadband providers, including Verizon, AT&T, and Lumen Technologies, potentially accessing systems for lawful wiretapping and other data. .” broadband providers.

Government

Government Telecommunications Surveillance Risk

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

SecureWorld News

FEBRUARY 6, 2025

Representatives Josh Gottheimer (D-NJ) and Darin LaHood (R-IL) introduced the bipartisan No DeepSeek on Government Devices Act, seeking to prohibit federal employees from using the AI-powered application DeepSeek on government-issued devices. On February 6, 2025, U.S. Federal Communications Commission (FCC) for security concerns.

Government

Government Artificial Intelligence Data privacy Mobile

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. broadband providers, including Verizon, AT&T, and Lumen Technologies, potentially accessing systems for lawful wiretapping and other data. .” broadband providers.

Government

Government Telecommunications Surveillance Risk

Enhance Innovation and Governance Through the Cloud Development Maturity Model

This model offers a structured approach to modernizing development, aligning technology, developer experience, security, and workflows. By implementing Cloud Development Environments (CDEs), teams can boost efficiency, improve security, and streamline operations through centralized governance.

Government

Cybersecurity Governance: The Road Ahead in an Era of Constant Evolution

SecureWorld News

FEBRUARY 17, 2025

Cybersecurity governance has undergone a dramatic transformation over the past few decades. From its early days, where security was an afterthought to business operations, to the present, where it has become a board-level discussion, governance has had to adapt to an ever-evolving digital landscape.

Government

Government Cybersecurity CISO Risk

AI-Generated Law

Schneier on Security

MAY 15, 2025

A new Regulatory Intelligence Office would use the technology to “regularly suggest updates” to the law and “accelerate the issuance of legislation by up to 70%.” The UAE has promised to spend more than $3 billion to transform into an “ AI-native ” government by 2027. In 2020, the U.S.

Government

Government Artificial Intelligence Technology Accountability

Texas Passes Most Comprehensive AI Governance Bill

SecureWorld News

JULY 2, 2025

Texas is making waves in AI governance. Governor Greg Abbott recently signed House Bill 149 , formally titled the Texas Responsible Artificial Intelligence Governance Act (TRAIGA), on June 22, 2025. States with enacted or pending AI governance laws All 50 states, Puerto Rico, U.S.

Government

Government Artificial Intelligence Risk Surveillance

Russia-linked APT28 targets western logistics entities and technology firms

Security Affairs

MAY 21, 2025

CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing an elevated threat to supply chains Russia-linked cyberespionage group APT28 intensifies its operations against Western logistics and technology companies moving supplies into Ukraine, US CISA warns. ” reads the joint alert.

Technology

Technology Malware Phishing Government

Beware of Pixels & Trackers on U.S. Healthcare Websites

This report offers insights for cybersecurity, compliance, and privacy executives at healthcare organizations, as well as for policymakers and auditors.

Healthcare

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

The Last Watchdog

NOVEMBER 12, 2024

Related: Technology and justice systems The U.S. Avaya Holdings , Check Point Software Technologies , and Mimecast Limited each minimized or obscured the extent of security breaches linked to the SolarWinds Orion hack, impacting investor trust and highlighting the critical importance of clear, truthful communication.

CISO

CISO CSO Risk Government

UK Government May Retreat from iCloud Backdoor Demand After US Pressure & Apple’s ADP Pullback

Penetration Testing

JULY 22, 2025

The post UK Government May Retreat from iCloud Backdoor Demand After US Pressure & Apple’s ADP Pullback appeared first on Daily CyberSecurity.

Government

Government Cybersecurity Surveillance Encryption

Pakistani Firm Shipped Fentanyl Analogs, Scams to US

Krebs on Security

MAY 7, 2025

People who purchased fake certifications were subsequently blackmailed by Axact employees posing as government officials , who would demand additional payments under threats of prosecution or imprisonment for having bought fraudulent unauthorized academic degrees. Mr. Bilwani did not respond to requests for comment.

Scams

Scams Marketing Advertising Technology

CISA’s 11-Month extension ensures continuity of MITRE’s CVE Program

Security Affairs

APRIL 16, 2025

government funding for MITRE s CVE program , a key global cybersecurity resource for cataloging vulnerabilities, is set to expire Wednesday, risking disruption. The CVE program is supported by a network of CVE Numbering Authorities (CNAs), which include major technology companies, research organizations, and government agencies.

Government

Government Risk Cybersecurity Media

Cybersecurity Predictions for 2024

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S.

Cybersecurity

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

Krebs on Security

JANUARY 16, 2025

Merrill said the different purveyors of these SMS phishing tools traditionally have impersonated shipping companies, customs authorities, and even governments with tax refund lures and visa or immigration renewal scams targeting people who may be living abroad or new to a country.

Phishing

Phishing Scams Mobile Authentication

Federal Contractor Cybersecurity Vulnerability Reduction Act Passes in U.S. House

SecureWorld News

MARCH 6, 2025

government. This means that thousands of government contractors will soon be required to implement structured processes for identifying, reporting, and mitigating vulnerabilities, aligning them with U.S. National Institute of Standards and Technology (NIST) guidelines.

Cybersecurity

Cybersecurity Government Marketing Cyber threats

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

Security Affairs

JANUARY 18, 2025

Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned Chinese firm Sichuan Juxinhe Network Technology Co., government IT systems and critical infrastructure. government systems, including the recent targeting of Treasurys information technology (IT) systems, as well as sensitive U.S.

Cybersecurity

Cybersecurity Telecommunications Government Healthcare

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Enterprises must secure AI agents, adopt proactive data governance, and deploy AI-based security platforms. We can expect security teams feeling pressure to adopt new technology quickly.

Risk

Risk Threat Detection Technology Phishing

What are the key Threats to Global National Security?

IT Security Guru

NOVEMBER 1, 2024

As technology advances, so do the methods and motivations of those who seek to disrupt global stability. Cyber attacks can compromise critical infrastructure, financial systems, and sensitive government data. In today’s interconnected world, national security concerns have evolved beyond traditional military threats.

Technology

Technology Cyber Attacks Government Risk

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Russia-linked group Storm-2372 used the device code phishing technique since Aug 2024 to steal login tokens from governments, NGOs, and industries. ” reads the report published by Microsoft Threat Intelligence. “Microsoft assesses with medium confidence that Storm-2372 aligns with Russian interests, victimology, and tradecraft.”

Phishing

Phishing Authentication Telecommunications Government

Report from the Cambridge Cybercrime Conference

Schneier on Security

JULY 14, 2025

’ They should have been investigating all government sponsored activities. Powered by WordPress Hosted by Pressable About Bruce Schneier I am a public-interest technologist , working at the intersection of security, technology, and people. It’s something I noted long ago on this blog and in other places.

Cybercrime

Cybercrime Adware Surveillance Antivirus

U.S. Confirms Chinese Hackers Compromised Telecommunications Networks

SecureWorld News

NOVEMBER 15, 2024

broadband providers, including AT&T, Verizon, and Lumen Technologies. The breach granted these hackers access to sensitive communications and call records, focusing mainly on government officials and politically involved individuals. "We government and private-sector communications systems.

Telecommunications

Telecommunications Government Surveillance Cybersecurity

The Dangers of AI Acceleration: Why a Deregulatory Stance Threatens Humanity

Jane Frankland

MAY 30, 2025

For business leaders, particularly those in tech, understanding the implications of such policies is criticalnot just for protecting their organisations, but for contributing to a future where technology is wielded ethically and responsibly. When technological advancements go unchecked, they can have serious consequences.

Risk

Risk Artificial Intelligence Government Technology

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

The spyware’s deployment relied on Cellebrite’s unlocking process, combining two invasive technologies to compromise the journalists digital privacy comprehensively. Evidence, including the spywares installation during BIA interviews, attributes these surveillance campaigns with high confidence to the BIA and Serbian government.

Spyware

Spyware Surveillance Technology Mobile

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Jane Frankland

JUNE 8, 2025

The modern enterprise C-suite is undergoing a seismic shift—not over profits or market share, but over who leads technology, shapes strategy, and ultimately defines the future of the business. The digital era has brought with it not just new technologies, but new power dynamics. Duplicated technologies inflate costs.

CISO

CISO Digital transformation Technology Risk

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

Security Affairs

DECEMBER 3, 2024

Founded in 1985, ENGlobal Corporation designs automated control systems for commercial and government sectors, reporting $6 million in Q3 revenue and $18.4 The threat actors had access to the company’s information technology systems and encrypted some of its data files. . million year-to-date. ” reads the report filed with SEC.

Ransomware

Ransomware Encryption Technology Cybersecurity

How boards can manage digital governance in the age of AI

BH Consulting

MARCH 26, 2025

If there is one statistic that sums up the increasing pace of technological change, it might well be this. In a presentation titled Digital governance for boards and senior executives: AI, cybersecurity, and privacy , she called on her extensive experience advising boards on these areas. Where should they focus their attention?

Government

Government Artificial Intelligence Risk Digital transformation

Russia warns financial sector organizations of IT service provider LANIT compromise

Security Affairs

FEBRUARY 25, 2025

LANIT Group (Laboratory of New Information Technologies) is one of Russia’s largest IT service and software providers. The group serves various sectors, including finance, government, healthcare, and telecommunications. In May 2024, U.S. designated military-industrial base entities such as Rostec and United Aircraft Corporation.”

Telecommunications

Telecommunications Healthcare Software Technology

How Cryptocurrency Turns to Cash in Russian Banks

Krebs on Security

DECEMBER 11, 2024

An analysis of their technology infrastructure shows that all of these exchanges use Russian email providers, and most are directly hosted in Russia or by Russia-backed ISPs with infrastructure in Europe (e.g. .” A machine-translated version of Flymoney, one of dozens of cryptocurrency exchanges apparently nested at Cryptomus.

Cryptocurrency

Cryptocurrency Banking Cybercrime Advertising

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

The Last Watchdog

JANUARY 7, 2025

These technologies bypass signature-based defenses and mimic legitimate behavior, making detection more challenging. The exercise mirrored the sophisticated techniques observed in the recent attack on French organizations and government agencies, employing AI-generated malware with encryption and evasion tactics.

Threat Detection

Threat Detection Engineering Malware Artificial Intelligence

What’s Different About the Black Hat Conference, and What’s New in 2025?

Lohrman on Security

AUGUST 10, 2025

News Analytics Artificial Intelligence Civic Innovation Cloud & Computing Cybersecurity Lohrmann on Cybersecurity Education Election Technology Emerging Tech Budget & Finance Infrastructure Government Experience GovTech Biz Biz Data Health & Human Services Justice & Public Safety Broadband & Network Policy Smart Cities Transportation (..)

Artificial Intelligence

Artificial Intelligence Education Government Advertising

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

Jane Frankland

JANUARY 19, 2025

For us in cyber, how do we navigate these new digital threats especially when we layer in the rise of AI and deepfake technologies, and the stakes grow even higher? Deepfake Technology Amplifying Risks: The evolution and democratisation of deepfake technology have blurred the line between reality and fabrication.

Cybersecurity

Cybersecurity Scams Technology Risk

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. The US agencies confirmed that Chinese threat actors had compromised the private communications of a “limited number” of government officials following the compromise of multiple U.S.

Mobile

Mobile Telecommunications Data breaches Hacking

U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams

Krebs on Security

MAY 29, 2025

government today imposed economic sanctions on Funnull Technology Inc. , Image: Shutterstock, ArtHead. a Philippines-based company that provides computer infrastructure for hundreds of thousands of websites involved in virtual currency investment scams known as pig butchering.”

Scams

Scams Internet Internet Cybercrime

News alert: NTT unveils AI inference chip enabling real-time 4K processing of ultra-high-def video

The Last Watchdog

APRIL 10, 2025

This low-power technology is designed for edge and power-constrained terminal deployments in which conventional AI inferencing requires the compression of ultra-high-definition video for real-time processing. on the advancement of this LSI in relation to its proprietary Attribute-Based Encryption (ABE) technologies. TOKYO, Apr.

Technology

Technology Wireless Encryption Engineering

MY TAKE: RSAC 2025 – Conversing with vendors hanging out in the Marriott Marquis mezzanine

The Last Watchdog

MAY 1, 2025

Alcavio: AI-powered deception Anand Akela of Alcavio Technologies offered a provocative take: Deception technology is the only way to detect threats that no one has seen before zero days generated on the fly by LLMs. Theyre totally different tech and governance models. You cant govern what you cant see, Mogull said.

Mobile

Mobile Government CISO Technology

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

To mitigate risks, businesses will invest in modern, privacy-enhancing technologies (PETs), such as trusted execution environments (TEEs) and fully homomorphic encryption (FHE). state privacy laws, the EUs governance of ethical AI deployment, and updated regulations in India and Japan. EU AI Act) demand proactive adaptation.

Cybersecurity

Cybersecurity CISO Risk Government

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

The Last Watchdog

MARCH 24, 2025

There are two sides to this: 1) assessing a technology vendors cryptoagility efforts in your RFPs as a part of determining third-party tech supplier risk, 2) assessing a technology vendors capability to help you in your PQC migration as technology functionality you can use.

Encryption

Encryption Financial Services Technology Risk

Quantum Threats and How to Protect Your Data

SecureWorld News

DECEMBER 8, 2024

A primary concern with quantum computing is its ability to break encryption standards essential to online communication, financial transactions, and secure government data. Current efforts to address quantum threats Recognizing these risks, organizations and governments are developing quantum-resistant cryptographic methods.

Encryption

Encryption Firewall Firmware Education

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

How threat actors can use generative artificial intelligence?

Security Affairs

DECEMBER 1, 2024

The increasing sophistication of these technologies has made it harder than ever to distinguish real content from fake. A study by the Massachusetts Institute of Technology (MIT) presented in 2019 revealed that deepfakes generated by AI could deceive humans up to 60% of the time. As the technology evolves, so will its misuse.

Artificial Intelligence

Artificial Intelligence Phishing Cybercrime Media

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Security Affairs

DECEMBER 4, 2024

The government agencies released a guide that advises telecom and critical infrastructure defenders on best practices to strengthen network security against PRC-linked and other cyber threats. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures.

Telecommunications

Telecommunications Government Mobile Cyber threats

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

As we approach 2025, the cybersecurity landscape is evolving rapidly, shaped by technological advancements, regulatory shifts, and emerging threats. By 2027, 75% of employees are expected to acquire or modify technology outside of ITs control, up from 41% in 2022. To keep up, organizations must stay ahead of these developments.

Cybersecurity

Cybersecurity Insurance Cyber Insurance Technology

FBI: Spike in Hacked Police Emails, Fake Subpoenas

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Trending Sources

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Enhance Innovation and Governance Through the Cloud Development Maturity Model

Cybersecurity Governance: The Road Ahead in an Era of Constant Evolution

AI-Generated Law

Texas Passes Most Comprehensive AI Governance Bill

Russia-linked APT28 targets western logistics entities and technology firms

Beware of Pixels & Trackers on U.S. Healthcare Websites

LW ROUNDTABLE: Wrist slap or cultural shift? SEC fines cyber firms for disclosure violations

UK Government May Retreat from iCloud Backdoor Demand After US Pressure & Apple’s ADP Pullback

Pakistani Firm Shipped Fentanyl Analogs, Scams to US

CISA’s 11-Month extension ensures continuity of MITRE’s CVE Program

Cybersecurity Predictions for 2024

Chinese Innovations Spawn Wave of Toll Phishing Via SMS

Federal Contractor Cybersecurity Vulnerability Reduction Act Passes in U.S. House

U.S. Treasury Sanctions Chinese cybersecurity firm and actor over federal agency breach tied to Salt Typhoon

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

What are the key Threats to Global National Security?

Storm-2372 used the device code phishing technique since August 2024

Report from the Cambridge Cybercrime Conference

U.S. Confirms Chinese Hackers Compromised Telecommunications Networks

The Dangers of AI Acceleration: Why a Deregulatory Stance Threatens Humanity

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

The C-Suite Power Shift: Why CIOs, CTOs, and CISOs Must Realign to Survive

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

How boards can manage digital governance in the age of AI

Russia warns financial sector organizations of IT service provider LANIT compromise

How Cryptocurrency Turns to Cash in Russian Banks

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

What’s Different About the Black Hat Conference, and What’s New in 2025?

From Notifications to Deepfakes: How Human Behaviour Is Shifting and What It Means for Cybersecurity

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams

News alert: NTT unveils AI inference chip enabling real-time 4K processing of ultra-high-def video

MY TAKE: RSAC 2025 – Conversing with vendors hanging out in the Marriott Marquis mezzanine

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

SHARED INTEL Q&A: Forrester highlights why companies need to strive for ‘cryptoagility’– today

Quantum Threats and How to Protect Your Data

Feds Charge Five Men in ‘Scattered Spider’ Roundup

How threat actors can use generative artificial intelligence?

Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks

Top Cybersecurity Trends to Watch Out For in 2025

Stay Connected