Government


  • Chinese APT suspected of supply chain attack on Mongolian government agencies

    December 10, 2020

    A Chinese state-sponsored hacking group, also known as an APT, is suspected of having breached a Mongolian software company and compromised a chat app used by hundreds of Mongolian government agencies. The attack is believed to have taken place earlier this year, in June, according to a report published today by Slovak security firm ESET. The hackers ...

  • Norway: Russian APT28 state hackers likely behind Parliament attack

    December 9, 2020

    Russian-backed hacking group APT28 has likely brute-forced multiple Norwegian Parliament (Stortinget) email accounts on August 24, 2020, according to the Norwegian Police Security Service (PST, short for Politiets Sikkerhetstjeneste). Attackers gained access to a limited number of Stortinget email accounts of representatives and employees as disclosed by Stortinget director Marianne Andreassen. A statement published on the parliament’s ...

  • Personal data of 16 million Brazilian COVID-19 patients exposed online

    November 26, 2020

    The personal and health information of more than 16 million Brazilian COVID-19 patients has been leaked online after a hospital employee uploaded a spreadsheet with usernames, passwords, and access keys to sensitive government systems on GitHub this month. Among the systems that had credentials exposed were E-SUS-VE and Sivep-Gripe, two government databases used to store data ...

  • Three arrested as INTERPOL, Group-IB and the Nigeria Police Force disrupt prolific cybercrime group

    November 25, 2020

    Three suspects have been arrested in Lagos following a joint INTERPOL, Group-IB and Nigeria Police Force cybercrime investigation. The Nigerian nationals are believed to be members of a wider organized crime group responsible for distributing malware, carrying out phishing campaigns and extensive Business Email Compromise scams. The suspects are alleged to have developed phishing links, domains, ...

  • FBI: Hackers stole source code from US government agencies and private companies

    November 7, 2020

    The Federal Bureau of Investigation has sent out a security alert warning that threat actors are abusing misconfigured SonarQube applications to access and steal source code repositories from US government agencies and private businesses. Intrusions have taken place since at least April 2020, the FBI said in an alert sent out last month and made public ...

  • Abandoned Hunter Biden’s laptop contained phone numbers for the Clintons, Secret Service officers and most of the Obama cabinet

    November 1, 2020

    The son of the man expected by many to be America’s next President abandoned a laptop containing a treasure trove of top-secret material, including his father’s private emails and mobile phone numbers, The Mail on Sunday can reveal. In an astonishing lapse, Hunter Biden chose to protect his MacBook Pro computer – crammed with what an ...

  • Russian state hackers stole data from US government networks

    October 22, 2020

    DHS Cybersecurity and Infrastructure Security Agency (CISA) and the FBI today warned that a Russian state-sponsored APT threat group known as Energetic Bear has hacked and stolen data from US government networks during the last two months. Energetic Bear (also tracked as Berserk Bear, TeamSpy, Dragonfly, Havex, Crouching Yeti, and Koala), a hacking group active since ...

  • EU sanctions Russian hackers over 2015 German parliament attack

    October 22, 2020

    The Council of the European Union today announced sanctions imposed on Russian military intelligence officers part of the 85th Main Centre for Special Services (GTsSS) for their involvement in a 2015 hack of the German Federal Parliament (Deutscher Bundestag). EU’s sanctions include both travel bans and asset freezes and also block EU organizations and individuals from ...

  • Norway says Russian hackers were behind August Parliament attack

    October 13, 2020

    Norway’s Minister of Foreign Affairs Ine Eriksen Søreide today said that Russia is behind the August 2020 cyber-attack on the Norwegian Parliament (Stortinget). “On 24 August, the Storting announced a data breach in their e-mail systems,” Søreide said in a press release published earlier today after a briefing that also included Minister of Defense Frank Bakke-Jensen. The ...

  • London Hackney Council hit by ‘serious cyber attack’

    October 13, 2020

    Due to enormous amount of interest and following numerous requests from Cyber Security Review readers, Hackney Council says it has been hit by a “serious cyber attack”, which is affecting many of its services and IT systems. The council says it is working with the UK’s National Cyber Security Centre (NCSC) and the Ministry of Housing ...

  • Norway says Russian hackers were behind August Parliament attack

    October 13, 2020

    Norway’s Minister of Foreign Affairs Ine Eriksen Søreide today said that Russia is behind the August 2020 cyber-attack on the Norwegian Parliament (Stortinget). “On 24 August, the Storting announced a data breach in their e-mail systems,” Søreide said in a press release published earlier today after a briefing that also included Minister of Defense Frank Bakke-Jensen. The ...

  • Hacker groups chain VPN and Windows bugs to attack US government networks

    October 12, 2020

    Hackers have gained access to government networks by combining VPN and Windows bugs, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) said in a joint security alert published on Friday. Attacks have targeted federal and state, local, tribal, and territorial (SLTT) government networks. Attacks against non-government networks have also been ...

  • What we know about the militia members charged in kidnapping plot against Michigan governor

    October 10, 2020

    State and federal officials have charged 13 men with various offenses related to an alleged coup plotted against Michigan Gov. Gretchen Whitmer, a scheme that involved months of planning and even rehearsals to kidnap the governor from her vacation home. Of the suspects, seven are facing charges on the state level, while the other six are ...

  • CISA: Emotet increasing attacks on US state, local governments

    October 6, 2020

    Emotet attacks have targeted multiple state and local governments in the U.S. as part of potentially targeted campaigns that have been ramping up since August, the Cybersecurity and Infrastructure Security Agency (CISA) said in an alert published today. Emotet, a common banking Trojan when it was first spotted in 2014, in recent years has evolved into ...

  • Covid: Donald Trump and Melania test positive

    October 2, 2020

    US President Donald Trump has said he and First Lady Melania Trump have tested positive for coronavirus and are now self-isolating. Mr Trump, aged 74 and therefore in a high-risk group, wrote on Twitter: “We will get through this together.” It comes after Hope Hicks, one of his closest aides, tested positive. Mr Trump’s announcement comes just over ...

  • Australian government to pour AU$800m in digital business push

    September 29, 2020

    The Australian government has announced it will expand its digital identity system, touting that the move will allow more businesses to securely access government services online as part of its newly announced AU$800 million Digital Business Package. The opt-in service allows users to verify their identity once before gaining access to over 70 government services, rather ...

  • CISA says a hacker breached a federal agency

    September 24, 2020

    A hacker has gained access and exfiltrated data from a federal agency, the Cybersecurity and Infrastructure Security Agency (CISA) said on Thursday. The name of the hacked federal agency, the date of the intrusion, or any details about the intruder, such as an industry codename or state affiliation, were not disclosed. CISA officials revealed the hack after ...

  • Government software provider Tyler Technologies hit by ransomware

    September 23, 2020

    Leading government technology services provider Tyler Technologies has suffered a ransomware attack that has disrupted its operations. Tyler Technologies is one of the largest U.S. software development and technology services companies dedicated to the public sector. With a forecasted $1.2 billion in revenue for 2020 and 5,500 employees, Tyler Technologies provides technical services for local governments in ...

  • CISA warns of notable increase in LokiBot malware

    September 22, 2020

    The US government’s cyber-security agency has issued a security advisory today warning federal agencies and the private sector about “a notable increase in the use of LokiBot malware by malicious cyber actors since July 2020.” The Cybersecurity and Infrastructure Security Agency (CISA) said that its in-house security platform (the EINSTEIN Intrusion Detection System) has detected persistent ...

  • Russian hackers use fake NATO training docs to breach govt networks

    September 22, 2020

    A Russian hacker group known by names, APT28, Fancy Bear, Sofacy, Sednit, and STRONTIUM, is behind a targeted attack campaign aimed at government bodies. The group delivered a hard-to-detect strand of Zebrocy Delphi malware under the pretense of providing NATO training materials. Researchers further inspected the files containing the payload and discovered these impersonated JPG files showing ...