Tag: government
-
APT Attacks Target Indian Government Using SHEETCREEP, FIREPOWER, and MAILCREEP – Part 2
Tags: access, ai, api, apt, attack, backdoor, backup, cloud, control, credentials, data, dns, email, exploit, github, google, government, group, india, infection, infrastructure, Internet, linux, malicious, malware, microsoft, monitoring, network, phishing, powershell, programming, service, tactics, threat, tool, update, windowsThis is Part 2 of our two-part technical analysis on the Gopher Strike and Sheet Attack campaigns. For details on the Gopher Strike campaign, go to Part 1.IntroductionIn September 2025, Zscaler ThreatLabz uncovered three additional backdoors, SHEETCREEP, FIREPOWER, and MAILCREEP, used to power the Sheet Attack campaign. In Part 2 of this series, ThreatLabz will…
-
PeckBirdy Framework Tied to China-Aligned Cyber Campaigns
PeckBirdy command-and-control framework targeting gambling, government sectors in Asia since 2023 has been linked to China-aligned APTs First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/peckbirdy-framework-tied-china/
-
China-linked group accused of spying on phones of UK prime ministers’ aides for years
Reports say Salt Typhoon attackers accessed handsets of senior govt folk First seen on theregister.com Jump to article: www.theregister.com/2026/01/27/chinalinked_hackers_accused_of_yearslong/
-
France to replace US videoconferencing wares with unfortunately named sovereign alternative
French govt says state-run service ‘Visio’ will be more secure. Now where have we heard that name before? First seen on theregister.com Jump to article: www.theregister.com/2026/01/27/france_videoconferencing_visio/
-
China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023
Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple environments.The flexible framework has been put to use against Chinese gambling industries and malicious activities targeting Asian government entities and private organizations, according to Trend Micro First seen on…
-
APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL – Part 1
Tags: access, adobe, ai, antivirus, api, apt, attack, authentication, backdoor, backup, cloud, control, data, data-breach, detection, email, endpoint, github, google, government, group, india, infection, infrastructure, injection, Internet, malicious, malware, microsoft, network, phishing, service, spear-phishing, threat, tool, update, windowsIntroductionIn September 2025, Zscaler ThreatLabz identified two campaigns, tracked as Gopher Strike and Sheet Attack, by a threat actor that operates in Pakistan and primarily targets entities in the Indian government. In both campaigns, ThreatLabz identified previously undocumented tools, techniques, and procedures (TTPs). While these campaigns share some similarities with the Pakistan-linked Advanced Persistent Threat (APT) group, APT36, we…
-
Saudi satirist hacked with Pegasus spyware wins damages in court battle
The London High Court awarded the London-based satirist and human rights activist Ghanem Al-Masarir more than £3 million, after finding the Saudi government hacked his phone and was likely behind a physical attack targeting him in London. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/26/saudi-satirist-hacked-with-pegasus-spyware-wins-damages-in-court-battle/
-
Federal agencies abruptly pull out of RSAC after organizer hires Easterly
The decision fits a pattern of government withdrawal from the cybersecurity community under the Trump administration. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-nsa-fbi-rsac-conference-jen-easterly/810482/
-
Microsoft handed over BitLocker keys to law enforcement, raising enterprise data control concerns
Tags: access, authentication, backup, breach, business, china, cloud, control, corporate, credentials, data, endpoint, governance, government, group, india, infrastructure, law, mfa, microsoft, risk, service, technologyWhere most enterprises go wrong: Enterprises using BitLocker should treat the recovery keys as highly sensitive, and avoid default cloud backup unless there is a clear business requirement and the associated risks are well understood and mitigated.The safest configuration is to redirect those keys to on-premises Active Directory or a controlled enterprise key vault. Even…
-
Microsoft handed over BitLocker keys to law enforcement, raising enterprise data control concerns
Tags: access, authentication, backup, breach, business, china, cloud, control, corporate, credentials, data, endpoint, governance, government, group, india, infrastructure, law, mfa, microsoft, risk, service, technologyWhere most enterprises go wrong: Enterprises using BitLocker should treat the recovery keys as highly sensitive, and avoid default cloud backup unless there is a clear business requirement and the associated risks are well understood and mitigated.The safest configuration is to redirect those keys to on-premises Active Directory or a controlled enterprise key vault. Even…
-
Industry, government, nonprofits weigh voluntary rules for commercial hacking tools
The weekend discussion about the next step of the Pall Mall Process revealed some of the topics rules-writers will have to weigh. First seen on cyberscoop.com Jump to article: cyberscoop.com/industry-government-nonprofits-weigh-voluntary-rules-for-commercial-hacking-tools/
-
UK digital ID goes in-house, government swears it isn’t an ID card
Minister dodges cost questions while promising smartphone-free access and ‘robust’ verification First seen on theregister.com Jump to article: www.theregister.com/2026/01/26/digital_id_costs/
-
CISO’s predictions for 2026
Tags: access, ai, attack, authentication, automation, breach, business, ciso, cloud, control, credentials, cryptography, cyber, cyberattack, cybersecurity, data, data-breach, encryption, endpoint, extortion, finance, governance, government, healthcare, identity, infrastructure, malicious, mobile, mssp, network, password, penetration-testing, ransomware, risk, router, saas, soc, strategy, supply-chain, technology, threat, tool, vulnerability, warfareAI agents to reshape the threat landscape: But those same AI technologies are also changing the threat landscape. Toal points to a recent Anthropic report that documented the first large-scale AI-enabled cyberattack as an early warning sign. “I guarantee attackers will be more focused on using AI agents for what they want than a lot…
-
5 Reasons Why Organizations Don’t Achieve FedRAMP ATO
When a cloud services provider wants to work with the federal government, they have to pass a rigorous audit to make sure they’re capable of properly securing the controlled information they would handle in the process. Achieving that Authority to Operate is done through the Federal Risk and Authorization Management Program and is the biggest……
-
5 Reasons Why Organizations Don’t Achieve FedRAMP ATO
When a cloud services provider wants to work with the federal government, they have to pass a rigorous audit to make sure they’re capable of properly securing the controlled information they would handle in the process. Achieving that Authority to Operate is done through the Federal Risk and Authorization Management Program and is the biggest……
-
Cybersecurity’s New Business Case: Fraud
Government security leaders are struggling. Cyber investments are lagging. Resources are being cut. The problem is getting worse. Let’s explore solutions. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/cybersecuritys-new-business-case-fraud/
-
ICE Asks Companies About ‘Ad Tech and Big Data’ Tools It Could Use in Investigations
A new federal filing from ICE demonstrates how commercial tools are increasingly being considered by the government for law enforcement and surveillance. First seen on wired.com Jump to article: www.wired.com/story/ice-asks-companies-about-ad-tech-and-big-data-tools/
-
Researchers say Russian government hackers were behind attempted Poland power outage
Security researchers have attributed the attempted use of destructive “wiper” malware across Poland’s energy infrastructure in late December to a Russian-backed hacking group known for causing power outages in neighboring Ukraine. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/23/researchers-say-russian-government-hackers-were-behind-attempted-poland-power-outage/
-
Risky Chinese Electric Buses Spark Aussie Gov’t Review
Deployed across Australia and Europe, China’s electric buses are vulnerable to cybercriminals and sport a virtual kill switch the Chinese state could activate. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/chinese-electric-buses-aussie-govt
-
Ireland plans law allowing law enforcement to use spyware
The Irish government plans to draft legislation that would make it legal for law enforcement to use spyware, Minister of Justice Jim O’Callaghan said. First seen on therecord.media Jump to article: therecord.media/ireland-plans-law-enforcement-spyware
-
JPMorgan CEO urges slowdown of AI roll-out to ‘save society’
The rapid proliferation of artificial intelligence will prompt ‘civil unrest’ if governments and companies fail to protect workers from its displacing effects, says JPMorgan boss First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366637505/JPMorgan-CEO-urges-slowdown-of-AI-roll-out-to-save-society
-
Researchers find Jordan government used Cellebrite phone-cracking tech against activists
The incidents occurred amid Gaza protests and suggest human rights violations, Citizen Lab said. First seen on cyberscoop.com Jump to article: cyberscoop.com/researchers-find-jordan-government-used-cellebrite-phone-cracking-tech-against-activists/
-
Ireland proposes new law allowing police to use spyware
The Irish government announced that it wants to pass a law that would grant police more surveillance powers, such as using spyware to fight serious crime, while aiming to protect the privacy rights of its citizens. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/22/ireland-proposes-new-law-allowing-police-to-use-spyware/
-
UK government begins trials of digital driving licence
Tags: governmentThe digital version of the physical driving licence will be made available through an app-based digital wallet, with testing underway before wider roll-out later this year First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366637088/UK-government-begins-trials-of-digital-driving-licence
-
KI als Zensurwerkzeug: Russland will noch härter gegen VPN-Anbieter durchgreifen
Die russische Regierung investiert mehr als zwei Milliarden Rubel in den Kampf gegen VPN-Anbieter. KI soll künftig bei der Blockade helfen. First seen on golem.de Jump to article: www.golem.de/news/investition-in-zensurapparat-russland-will-mit-ki-jagd-auf-vpn-traffic-machen-2601-204455.html
-
Investition in KI-Tools: Russland will noch härter gegen VPN-Anbieter durchgreifen
Die russische Regierung investiert mehr als zwei Milliarden Rubel in den Kampf gegen VPN-Anbieter. KI soll künftig bei der Blockade helfen. First seen on golem.de Jump to article: www.golem.de/news/investition-in-zensurapparat-russland-will-mit-ki-jagd-auf-vpn-traffic-machen-2601-204455.html
-
Investition in Zensurapparat: Russland will mit KI Jagd auf VPN-Traffic machen
Die russische Regierung investiert mehr als zwei Milliarden Rubel in den Kampf gegen VPN-Anbieter. KI soll künftig bei der Blockade helfen. First seen on golem.de Jump to article: www.golem.de/news/investition-in-zensurapparat-russland-will-mit-ki-jagd-auf-vpn-traffic-machen-2601-204455.html
-
UK authorities warn of pro-Russia groups targeting critical infrastructure, local government
The alert comes just over a month after a joint advisory from CISA, the FBI and Western allies citing hacktivist activity against OT providers.; First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/uk-warn-pro-russia-critical-infrastructure/809992/
-
UK says it will consider banning social media for children
British ministers will visit Australia to “learn first-hand from their approach,” the government’s Monday announcement said, alluding to the country’s controversial ban on social media use for children under age 16. First seen on therecord.media Jump to article: therecord.media/uk-says-it-will-consider-social-media-ban-kids

