Technology, Telecommunications and VPN - Cyber Security Informer

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA).

Telecommunications

Telecommunications Authentication Data collection Passwords

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Security Affairs

JANUARY 31, 2024

Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. “Rust payloads detected by Volexity team turn out to be pretty interesting Sliver downloaders as they were executed on Ivanti Connect Secure VPN after the exploitation of CVE-2024-21887 and CVE-2023-46805.

VPN

VPN Malware Authentication Small Business

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. Through forensic analysis of the memory sample, Volexity was able to recreate two proof-of-concept exploits that allowed full unauthenticated command execution on the ICS VPN appliance.

VPN

VPN Authentication Small Business Telecommunications

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

The War in Technology: A Digital Iron Curtain Goes Up

SecureWorld News

MARCH 10, 2022

We know that war has impacts on telecommunications, but what we've seen in Ukraine is on a different level.". WaPost : Depriving rivals of American-made technology also threatens the future global prospects of an industry that has driven U.S. Despite many VPNs being illegal in Russia, that is apparently happening.

Technology

Technology Internet Internet Telecommunications

Lapsus$ Ransomware Group is hiring, it announced recruitment of insiders

Security Affairs

MARCH 11, 2022

Lapsus$ Ransomware gang is looking for insiders willing to sell remote access to major technology corporations and ISPs. Thursday, March 10, Lapsus$ ransomware gang announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM.

Ransomware

Ransomware Telecommunications Technology VPN

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

But one increasingly brazen group of crooks is taking your standard phishing attack to the next level, marketing a voice phishing service that uses a combination of one-on-one phone calls and custom phishing sites to steal VPN credentials from employees. The employee phishing page bofaticket[.]com. Image: urlscan.io. ” SPEAR VISHING.

Phishing

Phishing VPN Social Engineering Media

The Russian Government blocked ProtonMail and ProtonVPN

Security Affairs

FEBRUARY 2, 2020

The p opular ProtonMail end-to-end encrypted email service and ProtonVPN VPN service have been blocked by the Russian government this week. This week the Russian government has blocked the ProtonMail end-to-end encrypted email service and ProtonVPN VPN service. ” states Proton Technologies.

Government

Government VPN Telecommunications Advertising

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Energy and Utilities

Energy and Utilities Telecommunications Technology VPN

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

On Thursday, March 10, Lapsus$ ransomware gang announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T.

Hacking

Hacking Telecommunications InfoSec Cybercrime

Lapsus$ extortion gang claims to have stolen sensitive data from Okta

Security Affairs

MARCH 22, 2022

On Thursday, March 10, the group announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T.

Telecommunications

Telecommunications Data breaches VPN Hacking

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Security Affairs

MARCH 23, 2022

virtual private network (VPN), remote desktop protocol (RDP), virtual desktop infrastructure (VDI) including Citrix, or Identity providers (including Azure Active Directory, Okta)). Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T. ” continues the analysis.

Accountability

Accountability VPN Social Engineering Hacking

Nobelium continues to target organizations worldwide with custom malware

Security Affairs

DECEMBER 6, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. The Nobelium cyberspies is using a new custom downloader tracked by the researchers as CEELOADER.

Malware

Malware VPN Telecommunications Accountability

Lapsus$: The New Name in Ransomware Gangs

Security Boulevard

MARCH 15, 2022

Other targets include Brazil’s Ministry of Health (MoH) and Brazilian telecommunications operator Claro. Since they appear to be succeeding, Lapsus$ announced that they are looking to recruit insiders employed at telecommunications, software and gaming companies, among other technology businesses.

Ransomware

Ransomware Telecommunications Firmware Media

Lapsus$ extortion gang leaked the source code for some Microsoft projects

Security Affairs

MARCH 22, 2022

On Thursday, March 10, the group announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T.

Cybercrime

Cybercrime Telecommunications VPN Hacking

Russia’s watchdog Roskomnadzor threatens to fine Twitter and Facebook

Security Affairs

FEBRUARY 2, 2020

Russia’s telecommunications watchdog Roskomnadzor has instituted administrative proceedings against Facebook and Twitter after they refused to store data of Russian users on servers located in the country. This week the Russian government has blocked the ProtonMail end-to-end encrypted email service and ProtonVPN VPN service.

Telecommunications

Telecommunications VPN Advertising Government

What is a Managed Security Service Provider? MSSPs Explained

eSecurity Planet

AUGUST 22, 2023

History of MSSPs As internet service providers (ISPs) and telecommunications companies (telecoms) began offering commercial access to the internet in the late 1990s, they began to also offer firewall appliances and associated managed services. Outsourcing U.S. companies may trust U.S.

Telecommunications

Telecommunications Firewall Penetration Testing Cybersecurity

New spear phishing campaign targets Russian dissidents

Malwarebytes

MARCH 29, 2022

The spear phishing emails are warning people that use websites, social networks, instant messengers and VPN services that have been banned by the Russian Government and that criminal charges will be laid. Ministry of Digital Development, Telecommunications and Mass Media of the Russian Federation). Figure 1: Phishing template.

Phishing

Phishing Education Telecommunications Technology

Advanced threat predictions for 2023

SecureList

NOVEMBER 14, 2022

From a different angle, reporting from The Intercept revealed mobile surveillance capabilities available to Iran for the purposes of domestic investigations that leverage direct access to (and cooperation of) local telecommunication companies. APT targeting turns toward satellite technologies, producers and operators.

Firmware

Firmware Surveillance Mobile Telecommunications

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

As a leading VC, BVP offers budding companies plenty to consider, with a set of roadmaps and tools for today’s technologies and market complexities. Notable cybersecurity exits for the company include AVG Technologies, Cognitive Security, OpenDNS, and Carbon Black. Also read : Addressing Remote Desktop Attacks and Security.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Group-IB Hi-Tech Crime Trends 2020/2021 report

Security Affairs

NOVEMBER 25, 2020

Group-IB’s report Hi-Tech Crime Trends 2020/2021 examines various aspects of cybercrime industry operations and predicts changes to the threat landscape for various sectors, namely the financial industry, telecommunications, retail, manufacturing, and the energy sector. downloaders), and new types of botnets (brute-force botnets). million.

Banking

Banking Ransomware Phishing Marketing

Becoming an MSSP: Tools, Services & Tips for Managed Security Services

eSecurity Planet

FEBRUARY 9, 2022

According to Jay McBain, an analyst at Forrester Research, spending on IT and telecommunications will be worth about $7 trillion by 2030. 54% of ESG respondents stated that the primary drivers behind technology spending were strengthening of cybersecurity and improving resiliency against attacks. Competition is fierce.

Backups

Backups Firewall DDOS Antivirus

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

AES encryption can be commonly found in communication protocols, virtual private network (VPN) encryption, full-disk encryption, and Wi-Fi transmission protocols. Department of Justice (DOJ) has proclaimed the need for “responsible encryption” that can be unlocked by technology companies under a court order.

Encryption

Encryption Passwords IoT Firewall

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

webmail.finance.gov.lb), which allowed them to decrypt the intercepted email and VPN credentials and view them in plain text. adpvpn.adpolice.gov.ae: VPN service for the Abu Dhabi Police. mail.cyta.com.cy: Cyta telecommunications and Internet provider, Cyprus. mail.asp.gov.al: email for Albanian State Police. Image: APNIC.

DNS

DNS Internet Internet Government

APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign

SecureList

MARCH 30, 2021

The actor leveraged vulnerabilities in Pulse Connect Secure in order to hijack VPN sessions, or took advantage of system credentials that were stolen in previous operations. Log of the hijacking VPN session from DESKTOP-A41UVJV. Uses vulnerabilities in Pulse Connect Secure to hijack a VPN session. Technique Name. Initial Access.

Malware

Malware Encryption VPN Technology

APT trends report Q1 2021

SecureList

APRIL 27, 2021

The attackers used vulnerabilities in an SSL-VPN product to deploy a multi-layered loader we dubbed Ecipekac (aka DESLoader, SigLoader and HEAVYHAND). The victims we observed were all high-profile Tunisian organizations, such as telecommunications or aviation companies. We attribute this activity to APT10 with high confidence.

Malware

Malware Spyware Government Social Engineering

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

According to the same article, another such attack took place in the late 1990s when the American military attacked a Serbian telecommunications network. Obviously, one cannot totally rule out the possibility of political pressure being applied to weaponize products, technologies, and services of some minor market players.

DDOS

DDOS Ransomware Government Energy and Utilities

Ransomware by the numbers: Reassessing the threat’s global impact

SecureList

APRIL 23, 2021

Citrix ADC/NetScaler or Pulse Secure VPN) or weak RDP credentials to breach the network. WastedLocker also appeared in 2020 and made global headlines when it knocked most popular services by Garmin, the well-known fitness and GPS technology company, offline for three days as it held the company’s data for a $10 million ransom.

Ransomware

Ransomware Mobile Malware Encryption

Cyber Security Informer

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Webinars

Trending Sources

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Webinars

The War in Technology: A Digital Iron Curtain Goes Up

Lapsus$ Ransomware Group is hiring, it announced recruitment of insiders

Voice Phishers Targeting Corporate VPNs

The Russian Government blocked ProtonMail and ProtonVPN

FBI chief says China is preparing to attack US critical infrastructure

Lapsus$ gang claims to have hacked Microsoft source code repositories

Lapsus$ extortion gang claims to have stolen sensitive data from Okta

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Nobelium continues to target organizations worldwide with custom malware

Lapsus$: The New Name in Ransomware Gangs

Lapsus$ extortion gang leaked the source code for some Microsoft projects

Russia’s watchdog Roskomnadzor threatens to fine Twitter and Facebook

What is a Managed Security Service Provider? MSSPs Explained

New spear phishing campaign targets Russian dissidents

Advanced threat predictions for 2023

Top VC Firms in Cybersecurity of 2022

Group-IB Hi-Tech Crime Trends 2020/2021 report

Becoming an MSSP: Tools, Services & Tips for Managed Security Services

What Is Encryption? Definition, How it Works, & Examples

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign

APT trends report Q1 2021

Reassessing cyberwarfare. Lessons learned in 2022

Ransomware by the numbers: Reassessing the threat’s global impact

Stay Connected