Government


  • Australian PM says nation under serious state-run ‘cyber attack’ – Microsoft, Citrix, Telerik UI bugs ‘exploited’

    June 19, 2020

    Australian Prime Minister Scott Morrison has called a snap press conference to reveal that the nation is under cyber-attack by a state-based actor, but the nation’s infosec advice agency says that while the attacker has gained access to some systems it has not conducted “any disruptive or destructive activities within victim environments.” Morrison said the attack ...

  • Russia says Germany has not provided any evidence of Bundestag hack

    June 12, 2020

    Russian officials said this week that German authorities have failed to produce the evidence that Russian military hackers breached the German Parliament in 2015. The statement is in relation to an arrest warrant that Germany filed at the end of May, when they charged a Russian hacker named Dmitriy Sergeyevich Badin. German prosecutors said Badin was a ...

  • City of Knoxville shuts down network after ransomware attack

    June 11, 2020

    The City of Knoxville, Tennessee, was forced to shut down its entire computer network following a ransomware attack that took place overnight and targeted the city’s offices. Knoxville has a population of over 180,000, it’s Tennessee’s third-largest city after Nashville and Memphis, and it’s also part of the Knoxville Metropolitan Statistical Area, with a reported population of almost 870,000 in 2015. Read ...

  • Slovak police seize wiretapping devices connected to government network

    June 10, 2020

    Slovak authorities have arrested four suspects on Tuesday as part of an investigation into a series of suspicious devices found connected to the government’s official IT network. According to local news site Aktuality, the equipment is believed to have been used for wiretapping purposes and would have allowed threat actors to intercept both internet and telephony ...

  • UK govt publishes contracts granting Amazon, Microsoft, Google and AI firms access to COVID-19 health data

    June 5, 2020

    UK government has published the contracts it holds with private tech firms and the NHS for the creation of a COVID-19 data store, just days after campaigners fired legal shots over a lack of transparency. Available on the openDemocracy website, the contracts describe how the arrangements between the NHS and Amazon, Microsoft, Google, and AI firms Faculty and Palantir ...

  • UK: Terror suspects could face indefinite curbs under new legislation

    May 20, 2020

    Court orders restricting the movements of suspected terrorists could be renewed indefinitely under new legislation unveiled by the government. The bill would lower the standard of proof to impose the orders, known as TPims, and remove the current two-year limit that applies to them. Suspects would also have to register all electronic devices at their home address. Read ...

  • Tropic Trooper’s Back: USBferry Attack Targets Air-gapped Environments

    May 12, 2020

    Tropic Trooper, a threat actor group that targets government, military, healthcare, transportation, and high-tech industries in Taiwan, the Philippines, and Hong Kong, has been active since 2011. The group was reportedly using spear-phishing emails with weaponized attachments to exploit known vulnerabilities. Primarily motivated by information theft and espionage, the group has also been seen adopting different strategies such ...

  • UK ministers were warned last year of risks of coronavirus pandemic

    April 24, 2020

    Ministers were warned last year the UK must have a robust plan to deal with a pandemic virus and its potentially catastrophic social and economic consequences in a confidential Cabinet Office briefing leaked to the Guardian. The detailed document warned that even a mild pandemic could cost tens of thousands of lives, and set out the ...

  • APT32 Targeting Wuhan Government and Chinese Ministry of Emergency Management

    April 22, 2020

    From at least January to April 2020, suspected Vietnamese actors APT32 carried out intrusion campaigns against Chinese targets that Mandiant Threat Intelligence believes was designed to collect intelligence on the COVID-19 crisis. Spear phishing messages were sent by the actor to China’s Ministry of Emergency Management as well as the government of Wuhan province, where COVID-19 ...

  • State-backed phishing targets U.S. Government employees with fast food lures

    April 22, 2020

    More than a dozen state-backed hacking groups are actively targeting U.S. Government employees and healthcare organizations in phishing campaigns that use lures designed to take advantage of the fears surrounding the COVID-19 pandemic. “TAG has specifically identified over a dozen government-backed attacker groups using COVID-19 themes as lure for phishing and malware attempts—trying to get their targets to ...

  • PoetRAT Trojan targets energy sector using coronavirus lures

    April 17, 2020

    Government and energy sectors are being targeted in a new campaign that weaponizes the coronavirus outbreak. On Thursday, Cisco Talos researchers Warren Mercer, Paul Rascagneres and Vitor Ventura published an analysis of a new campaign that deploys PoetRAT, a previously-undiscovered Remote Access Trojan (RAT) striking both the Azerbaijan government and utility companies. According to the team, the malware attacks supervisory control ...

  • DarkHotel hackers use VPN zero-day to breach Chinese government agencies

    April 6, 2020

    Foreign state-sponsored hackers have launched a massive hacking operation aimed at Chinese government agencies and their employees. Attacks began last month, in March, and are believed to be related to the current coronavirus (COVID-19) outbreak. Chinese security-firm Qihoo 360, which detected the intrusions, said the hackers used a zero-day vulnerability in Sangfor SSL VPN servers, used to provide ...

  • US Cybersecurity and Infrastructure Security Agency (CISA): Guidance On The Essential Critical Infrastructure Workforce

    March 28, 2020

    As the Nation comes together to slow the spread of COVID-19, on March 16th the President issued updated Coronavirus Guidance for America that highlighted the importance of the critical infrastructure workforce. The Cybersecurity and Infrastructure Security Agency (CISA) executes the Secretary of Homeland Security’s authorities to secure critical infrastructure. Consistent with these authorities, CISA has developed, in ...

  • UK Data Centers Plead for Critical Status for Contractors as Coronavirus Takes Hold

    March 27, 2020

    The data center industry has been lobbying the British government to give formal clearance to contractors maintaining the digital infrastructure that is keeping the economy running as the lockdown steadily intensifies in defense against the coronavirus. Britain’s liberal response to the crisis, instead of banning all but a few key workers from going to work, permitted ...

  • UK Department for Business, Energy and Industrial Strategy is looking for organisations who can support in the supply of ventilators and ventilator components

    March 20, 2020

    The Department for Business, Energy and Industrial Strategy (BEIS) is looking for organisations who can support in the supply of ventilators and ventilator components across the United Kingdom as part of the Government’s response to COVID-19. These questions aim to identify the suitability and readiness of organisations to be involved in the initiative. There are three ...

  • Trump declares national emergency over coronavirus

    March 13, 2020

    President Donald Trump announced plans to partner with pharmaceutical and retail companies to set up drive-thru test sites for coronavirus in an effort to catch up to a nationwide demand and deliver on the administration’s promise for wider access to testing. He met with company executives Friday to discuss expanding access to testing through drive-through testing. “The ...

  • US government agencies have shadow IT infrastructure problem, cybersecurity risks, says GAO

    March 5, 2020

    Federal agencies are facing increasing cybersecurity risks due to a bevy of IT facilities aren’t being tracked as full-fledged data centers, according to a General Accountability Office report. As noted previously, federal agencies have been consolidating and closing data centers over the years, but a narrower definition of what facilities should fall under an optimization program means that ...

  • US government authorities fail to train employees on ransomware detection, prevention

    February 27, 2020

    The majority of state and local government agencies are failing to prepare their employees to spot cyberattacks or teach them how to handle ransomware incidents in the workplace, new research suggests. On Thursday, IBM Security released the results of a new study, conducted on its behalf by The Harris Poll, containing responses from close to 700 US ...

  • PM launches biggest review of UK’s foreign, defence and security policy ‘since Cold War’

    February 26, 2020

    Boris Johnson is launching what he claims is the biggest review of foreign, defence and security policy since the end of the Cold War. In a break from previous military-led reviews, the exercise will have an increased focus on foreign policy and the UK’s place in the world. Downing Street signalled no plans to reduce defence spending, ...

  • Singapore to spend $719m beefing up government’s cyber, data security systems

    February 18, 2020

    The Singapore government will look to invest SG$1 billion to beef up its cyber and data security systems, which it says is critical as its agencies increasingly adopt technologies such as artificial intelligence (AI), cloud, and Internet of Things (IoT). To be spent over the next three years, the funds will go toward readying the ...