Government and Hacking - Cyber Security Informer

NSO Group Spies on People on Behalf of Governments

Schneier on Security

NOVEMBER 27, 2024

Legal documents released in ongoing US litigation between NSO Group and WhatsApp have revealed for the first time that the Israeli cyberweapons maker and not its government customers is the party that “installs and extracts” information from mobile phones targeted by the company’s hacking software.

Government

Government Spyware Mobile Hacking

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Krebs on Security

NOVEMBER 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based based technology companies.

Hacking

Hacking Accountability Government Social Engineering

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Krebs on Security

FEBRUARY 26, 2025

government officials searched online for non-extradition countries and for an answer to the question “can hacking be treason?” The government disclosed the details in a court motion to keep the defendant in custody until he is discharged from the military. ” prosecutors in the case said Wednesday.

Hacking

Hacking Government Identity Theft Accountability

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Security Affairs

NOVEMBER 21, 2024

Mexico’s president announced the government is investigating an alleged ransomware hack that targeted the administration’s legal affairs office. Today they are going to send me a report on the supposed hacking.” Ransomhub claimed to have stolen 313 gigabytes of data from the Mexican government office.

Government

Government Hacking Ransomware Insurance

FireEye Hacked

Schneier on Security

DECEMBER 9, 2020

FireEye was hacked by — they believe — “a nation with top-tier offensive capabilities”: During our investigation to date, we have found that the attacker targeted and accessed certain Red Team assessment tools that we use to test our customers’ security. government builds purpose-made digital weapons.

Hacking

Hacking Government Cyber threats Malware

DOGE as a National Cyberattack

Schneier on Security

FEBRUARY 13, 2025

In the span of just weeks, the US government has experienced what may be the most consequential security breach in its history—not through a sophisticated cyberattack or an act of foreign espionage, but through official orders by a billionaire with a poorly defined government role. trillion in annual federal payments.

Government

Government Artificial Intelligence Banking Software

When AIs Start Hacking

Schneier on Security

APRIL 26, 2021

Hacking is as old as humanity. To date, hacking has exclusively been a human activity. After hacking humanity, AI systems will then hack other AI systems, and humans will be little more than collateral damage. Most of these hacks don’t even require major research breakthroughs in AI. Not for long.

Hacking

Hacking Artificial Intelligence Government Engineering

Poland probes Pegasus spyware abuse under the PiS government

Security Affairs

DECEMBER 3, 2024

Poland probes Pegasus spyware abuse under the PiS government; ex-security chief Piotr Pogonowski arrested to testify before parliament. Poland’s government has been investigating the alleged misuse of Pegasus spyware by the previous administration and arrested the former head of Poland’s internal security service Piotr Pogonowski.

Spyware

Spyware Government Surveillance Hacking

Another SolarWinds Orion Hack

Schneier on Security

FEBRUARY 4, 2021

Department of Agriculture, was among the affected organizations, raising fears that data on thousands of government employees may have been compromised. […]. In other words, the same sloppy and corrupt practices that allowed this massive cybersecurity hack made Bravo a billionaire.

Hacking

Hacking Software Banking Risk

China Surveillance Company Hacked

Schneier on Security

FEBRUARY 27, 2024

I-Soon sells hacking and espionage services to Chinese national and local government. And they seem to primarily be hacking regionally. Last week, someone posted something like 570 files, images and chat logs from a Chinese company called I-Soon. Lots of details in the news articles.

Surveillance

Surveillance Hacking Government

Latest on the SVR’s SolarWinds Hack

Schneier on Security

JANUARY 5, 2021

The New York Times has an in-depth article on the latest information about the SolarWinds hack (not a great name, since it’s much more far-reaching than that). There is also no indication yet that any human intelligence alerted the United States to the hacking. Its chief executive, Kevin B.

Hacking

Hacking System Administration Software Surveillance

Chinese threat actors used two advanced exploit chains to hack Ivanti CSA

Security Affairs

JANUARY 23, 2025

The US governments cybersecurity and law enforcement revealed that Chinese threat actors used at least two sophisticated exploit chains to compromise Ivanti Cloud Service Appliances (CSA). is end-of-life and no longer receives security updates, for this reason, these instances are exposed to hack.

Hacking

Hacking Government Cybersecurity Information Security

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. A cyberattack tied to the Chinese government penetrated the networks of a swath of U.S. broadband providers is still ongoing, government experts are assessing its scope.

Government

Government Telecommunications Surveillance Risk

Three Top Russian Cybercrime Forums Hacked

Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. A note posted by a Verified forum administrator concerning the hack of its registrar in January. The forum was hacked through the domain registrar.

Cybercrime

Cybercrime Hacking Passwords Accountability

Journalists and Civil Society Members Using WhatsApp Targeted by Paragon Spyware

Schneier on Security

FEBRUARY 3, 2025

Like other spyware makers, Paragon’s hacking software is used by government clients and WhatsApp said it had not been able to identify the clients who ordered the alleged attacks. ” It is not clear who was behind the attack.

Spyware

Spyware Government Hacking Software

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

Krebs on Security

MARCH 5, 2021

In each incident, the intruders have left behind a “web shell,” an easy-to-use, password-protected hacking tool that can be accessed over the Internet from any browser. The web shell gives the attackers administrative access to the victim’s computer servers.

Hacking

Hacking Software Government Internet

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. The US government’s Consumer Financial Protection Bureau (CFPB) advises employees to avoid using cellphones for work after China-linked APT group Salt Typhoon hackers breached major telecom providers.

Hacking

Hacking Internet Internet Government

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Security Affairs

NOVEMBER 14, 2024

government officials. telecoms, compromising networks to steal call records and access private communications, mainly of government and political figures. A cyberattack tied to the Chinese government penetrated the networks of a swath of U.S. broadband providers is still ongoing, government experts are assessing its scope.

Government

Government Telecommunications Surveillance Risk

Perfectl Malware

Schneier on Security

OCTOBER 14, 2024

Something this complex and impressive implies that a government is behind this. North Korea is the government we know that hacks cryptocurrency in order to fund its operations. Aqua Security researchers have also observed the malware serving as a backdoor to install other families of malware.

Malware

Malware Cryptocurrency Internet Internet

UK Electoral Commission Hacked

Schneier on Security

AUGUST 16, 2023

The UK Electoral Commission discovered last year that it was hacked the year before. That’s fourteen months between the hack and the discovery. It doesn’t know who was behind the hack. We worked with external security experts and the National Cyber Security Centre to investigate and secure our systems.

Hacking

Hacking Government

Ô! China Hacks Canada too, Says CCCS

Security Boulevard

NOVEMBER 1, 2024

China Hacks Canada too, Says CCCS appeared first on Security Boulevard. Plus brillants exploits: Canadian Centre for Cyber Security fingers Chinese state sponsored hackers. The post Ô!

Hacking

Hacking Social Engineering Cyber Attacks Data privacy

China Possibly Hacking US “Lawful Access” Backdoor

Schneier on Security

OCTOBER 8, 2024

The Wall Street Journal is reporting that Chinese hackers (Salt Typhoon) penetrated the networks of US broadband providers, and might have accessed the backdoors that the federal government uses to execute court-authorized wiretap requests. Those backdoors have been mandated by law—CALEA—since 1994. It’s a weird story.

Hacking

Hacking Government

NationalPublicData.com Hack Exposes a Nation’s Data

Krebs on Security

AUGUST 15, 2024

We’ll also take a closer look at the data broker that got hacked — a background check company founded by an actor and retired sheriff’s deputy from Florida. ANALYSIS Data brokers like National Public Data typically get their information by scouring federal, state and local government records.

Hacking

Hacking Data breaches Identity Theft Accountability

US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack

Schneier on Security

APRIL 9, 2024

US Cyber Safety Review Board released a report on the summer 2023 hack of Microsoft Exchange by China. It was a serious attack by the Chinese government that accessed the emails of senior U.S. government officials. From the executive summary: The Board finds that this intrusion was preventable and should never have occurred.

Hacking

Hacking Government Accountability Technology

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Krebs on Security

FEBRUARY 28, 2025

Intrinsec said its analysis showed Prospero frequently hosts malware operations such as SocGholish and GootLoader , which are spread primarily via fake browser updates on hacked websites and often lay the groundwork for more serious cyber intrusions — including ransomware. A fake browser update page pushing mobile malware.

Malware

Malware Antivirus Software DDOS

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Krebs on Security

MARCH 14, 2023

men have been charged with hacking into a U.S. Both are alleged to be part of a larger criminal organization that specializes in using fake emergency data requests from compromised police and government email accounts to publicly threaten and extort their victims. .” federal government portal without authorization.

Hacking

Hacking Government Media Accountability

Silk Typhoon Hackers Indicted

Schneier on Security

MARCH 11, 2025

. […] According to prosecutors, the group as a whole has targeted US state and federal agencies, foreign ministries of countries across Asia, Chinese dissidents, US-based media outlets that have criticized the Chinese government, and most recently the US Treasury, which was breached between September and December of last year.

Government

Government Media Hacking

US Citizen Hacked by Spyware

Schneier on Security

MARCH 21, 2023

The New York Times is reporting that a US citizen’s phone was hacked by the Predator spyware. The simultaneous tapping of the target’s phone by the national intelligence service and the way she was hacked indicate that the spy service and whoever implanted the spyware, known as Predator, were working hand in hand.

Spyware

Spyware Hacking Government Technology

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Krebs on Security

AUGUST 29, 2023

government today announced a coordinated crackdown against QakBot , a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. government has used court orders to remotely disinfect systems compromised with malware. Today’s operation is not the first time the U.S.

Hacking

Hacking Malware Ransomware Government

Hacking the Tax Code

Schneier on Security

FEBRUARY 10, 2023

It consists of government laws, rulings from the tax authorities, judicial decisions, and legal opinions. That’s not hacking the tax code. It’s hacking the processes that create them: the legislative process that creates tax law. A hack subverts the intent of a system. ML will result in lots of hacks like this.

Hacking

Hacking Artificial Intelligence Government Software

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

Krebs on Security

DECEMBER 16, 2020

FireEye said hacked networks were seen communicating with a malicious domain name — avsvmcloud[.]com 13, cyber incident response firm FireEye published a detailed writeup on the malware infrastructure used in the SolarWinds compromise, presenting evidence that the Orion software was first compromised back in March 2020.

Hacking

Hacking Malware Software Cybercrime

U.S. Offered $10M for Hacker Just Arrested by Russia

Krebs on Security

DECEMBER 4, 2024

government indicted Matveev as a top ransomware purveyor a year later, offering $10 million for information leading to his arrest. Last week, the Russian government reportedly arrested Matveev and charged him with creating malware used to extort companies. government’s “Wanted” poster for him.

Cybercrime

Cybercrime Ransomware Cryptocurrency Government

Deloitte denied its systems were hacked by Brain Cipher ransomware group

Security Affairs

DECEMBER 9, 2024

On June 20, 2024, the group targeted an Indonesian data center causing the disruption of around 210 critical government services, including customs and immigration. Deloitte discovered the hack in March 2017, and according to The Guardian, the attackers may have had access to the company systems since October or November 2016.

Hacking

Hacking Ransomware Accountability Architecture

Schneider Electric Confirms Ransom Hack — Hellcat Demands French Bread as ‘Joke’

Security Boulevard

NOVEMBER 6, 2024

The post Schneider Electric Confirms Ransom Hack — Hellcat Demands French Bread as ‘Joke’ appeared first on Security Boulevard. That’s a lot of pain: $125,000 ransom seems small—but why do the scrotes want it paid in baguettes?

Hacking

Hacking Cryptocurrency Data privacy Risk

Hacked Cellebrite and MSAB Software Released

Schneier on Security

JANUARY 16, 2023

Cellebrite is an cyberweapons arms manufacturer that sells smartphone forensic software to governments around the world. MSAB is a Swedish company that does the same thing. Someone has released software and documentation from both companies.

Software

Software Hacking Manufacturing Government

Zero-day broker Operation Zero offers up to $4 million for Telegram exploits

Security Affairs

MARCH 21, 2025

The company exclusively sells exploits to the Russian government and local firms. In September 2024, Ukraines National Coordination Centre for Cybersecurity (NCCC) banned the Telegram messaging app on government agencies, military, and critical infrastructure, due to national security concerns. continues the announcement.

Government

Government Surveillance Mobile Hacking

Hackers stole millions of dollars from Uganda Central Bank

Security Affairs

NOVEMBER 30, 2024

Financially-motivated threat actors hacked Uganda ‘s central bank system, government officials confirmed this week. A senior government official at the finance ministry confirmed that attackers compromised some central bank accounts.

Banking

Banking Government Accountability Hacking

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

Security Affairs

OCTOBER 22, 2024

VMware addressed a remote code execution flaw, demonstrated in a Chinese hacking contest, for the second time in two months. During the 2024 Matrix Cup hacking contest in China, zbl & srs of team TZL demonstrated the vulnerability. ” Chinese law requires researchers to disclose zero-day vulnerabilities to the government. .”

Hacking

Hacking Government Software Information Security

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Krebs on Security

NOVEMBER 21, 2024

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. police as part of an FBI investigation into the MGM hack. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft

Identity Theft Phishing Cryptocurrency Accountability

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

The Gunnebo Group is a Swedish multinational company that provides physical security to a variety of customers globally, including banks, government agencies, airports, casinos, jewelry stores, tax agencies and even nuclear power plants. The company has operations in 25 countries, more than 4,000 employees, and billions in revenue annually.

Hacking

Hacking Ransomware Banking Accountability

Texas is the first state to ban DeepSeek on government devices

Security Affairs

FEBRUARY 2, 2025

Texas bans DeepSeek and RedNote on government devices to block Chinese data-harvesting AI, citing security risks. Texas and other states banned TikTok on government devices. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,DeepSeek)

Government

Government Artificial Intelligence Media Data collection

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. has charged the Chinese national Guan Tianfeng (aka gbigmao and gxiaomao) for hacking thousands of Sophos firewall devices worldwide in 2020. and its employee Guan Tianfeng for hacking U.S. reads the report published by Sophos.

Firewall

Firewall Hacking Malware Passwords

Alleged Co-Founder of Garantex Arrested in India

Krebs on Security

MARCH 11, 2025

government in 2022 for facilitating tens of billions of dollars in money laundering by transnational criminal and cybercriminal organizations. Treasury Office of Foreign Assets Control in April 2022 for receiving hundreds of millions in criminal proceeds, including funds used to facilitate hacking, ransomware, terrorism and drug trafficking.

Ransomware

Ransomware Cryptocurrency Marketing Government

Salt Typhoon’s Reach Continues to Grow

Schneier on Security

DECEMBER 30, 2024

The US government has identified a ninth telecom that was successfully hacked by Salt Typhoon.

Government

Government Hacking

NSO Group Spies on People on Behalf of Governments

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Trending Sources

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

FireEye Hacked

DOGE as a National Cyberattack

When AIs Start Hacking

Poland probes Pegasus spyware abuse under the PiS government

Another SolarWinds Orion Hack

China Surveillance Company Hacked

Latest on the SVR’s SolarWinds Hack

Chinese threat actors used two advanced exploit chains to hack Ivanti CSA

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Three Top Russian Cybercrime Forums Hacked

Journalists and Civil Society Members Using WhatsApp Targeted by Paragon Spyware

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

China-linked threat actors compromised multiple telecos and spied on a limited number of U.S. government officials

Perfectl Malware

UK Electoral Commission Hacked

Ô! China Hacks Canada too, Says CCCS

China Possibly Hacking US “Lawful Access” Backdoor

NationalPublicData.com Hack Exposes a Nation’s Data

US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Silk Typhoon Hackers Indicted

US Citizen Hacked by Spyware

U.S. Hacks QakBot, Quietly Removes Botnet Infections

Hacking the Tax Code

Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’

U.S. Offered $10M for Hacker Just Arrested by Russia

Deloitte denied its systems were hacked by Brain Cipher ransomware group

Schneider Electric Confirms Ransom Hack — Hellcat Demands French Bread as ‘Joke’

Hacked Cellebrite and MSAB Software Released

Zero-day broker Operation Zero offers up to $4 million for Telegram exploits

Hackers stole millions of dollars from Uganda Central Bank

VMware failed to fully address vCenter Server RCE flaw CVE-2024-38812

Feds Charge Five Men in ‘Scattered Spider’ Roundup

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Texas is the first state to ban DeepSeek on government devices

Chinese national charged for hacking thousands of Sophos firewalls

Alleged Co-Founder of Garantex Arrested in India

Salt Typhoon’s Reach Continues to Grow

Stay Connected