Tag: government

Russian Hackers Hit SOHO Routers in Cyberespionage Campaign

Apr 7, 2026 10:54 PM

Tags: cloud, cyberespionage, dns, government, hacker, intelligence, microsoft, military, router, russia, spy

Hijacking DNS Settings Helps Russian Hackers Decrypt TLS Traffic, Microsoft Warns. Hackers tied to Russia’s GRU military intelligence agency are compromising SOHO routers to hijack their DNS settings and spy on the cloud activities of high-value government, IT, telecommunications and energy organizations, Microsoft warns. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/russian-hackers-hit-soho-routers-in-cyberespionage-campaign-a-31354
Russian Hackers Hit SOHO Routers in Cyberespionage Campaign

Apr 7, 2026 10:54 PM

Tags: cloud, cyberespionage, dns, government, hacker, intelligence, microsoft, military, router, russia, spy

Hijacking DNS Settings Helps Russian Hackers Decrypt TLS Traffic, Microsoft Warns. Hackers tied to Russia’s GRU military intelligence agency are compromising SOHO routers to hijack their DNS settings and spy on the cloud activities of high-value government, IT, telecommunications and energy organizations, Microsoft warns. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/russian-hackers-hit-soho-routers-in-cyberespionage-campaign-a-31354
Iran-Linked Hackers Are Sabotaging US Energy and Water Infrastructure

Apr 7, 2026 10:54 PM

Tags: attack, government, hacker, infrastructure, iran

As Trump threatens Iranian infrastructure, the US government warns that Iran has carried out its own digital attacks against US critical infrastructure. First seen on wired.com Jump to article: www.wired.com/story/iran-linked-hackers-are-sabotaging-us-energy-and-water-infrastructure/
5 practical steps to strengthen attack resilience with attack surface management

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, container, control, credentials, cvss, cyber, cybersecurity, data, data-breach, detection, dns, email, endpoint, exploit, framework, government, identity, iot, malicious, monitoring, msp, network, nist, phishing, ransomware, resilience, risk, service, social-engineering, software, threat, tool, update, vpn, vulnerability, vulnerability-management, windows

What can attackers actually reach right now? By continuously identifying and prioritizing exposure across your environment, ASM transforms raw visibility into measurable cyber resilience.Below are five practical steps security teams can take to strengthen attack resilience using attack surface management principles. Effective attack surface management starts with complete visibility. Security gaps often appear because teams…
5 practical steps to strengthen attack resilience with attack surface management

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, container, control, credentials, cvss, cyber, cybersecurity, data, data-breach, detection, dns, email, endpoint, exploit, framework, government, identity, iot, malicious, monitoring, msp, network, nist, phishing, ransomware, resilience, risk, service, social-engineering, software, threat, tool, update, vpn, vulnerability, vulnerability-management, windows

What can attackers actually reach right now? By continuously identifying and prioritizing exposure across your environment, ASM transforms raw visibility into measurable cyber resilience.Below are five practical steps security teams can take to strengthen attack resilience using attack surface management principles. Effective attack surface management starts with complete visibility. Security gaps often appear because teams…
5 practical steps to strengthen attack resilience with attack surface management

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, container, control, credentials, cvss, cyber, cybersecurity, data, data-breach, detection, dns, email, endpoint, exploit, framework, government, identity, iot, malicious, monitoring, msp, network, nist, phishing, ransomware, resilience, risk, service, social-engineering, software, threat, tool, update, vpn, vulnerability, vulnerability-management, windows

What can attackers actually reach right now? By continuously identifying and prioritizing exposure across your environment, ASM transforms raw visibility into measurable cyber resilience.Below are five practical steps security teams can take to strengthen attack resilience using attack surface management principles. Effective attack surface management starts with complete visibility. Security gaps often appear because teams…
Iranian hackers launching disruptive attacks at U.S. energy, water targets, feds warn

Apr 7, 2026 8:52 PM

Tags: attack, control, cyberattack, government, hacker, infrastructure, iran

Iranian government hackers are launching disruptive cyberattacks on American energy and water infrastructure, U.S. government agencies “urgently” warned Tuesday. The hackers are taking aim at devices and systems that control industrial processes, and have harmed victims in the last month following the onset of U.S.-Israel strikes against Iran, according to the joint alert from the…
Iranian hackers launching disruptive attacks at U.S. energy, water targets, feds warn

Apr 7, 2026 8:52 PM

Tags: attack, control, cyberattack, government, hacker, infrastructure, iran

Iranian government hackers are launching disruptive cyberattacks on American energy and water infrastructure, U.S. government agencies “urgently” warned Tuesday. The hackers are taking aim at devices and systems that control industrial processes, and have harmed victims in the last month following the onset of U.S.-Israel strikes against Iran, according to the joint alert from the…
Iranian hackers launching disruptive attacks at U.S. energy, water targets, feds warn

Apr 7, 2026 8:52 PM

Tags: attack, control, cyberattack, government, hacker, infrastructure, iran

Iranian government hackers are launching disruptive cyberattacks on American energy and water infrastructure, U.S. government agencies “urgently” warned Tuesday. The hackers are taking aim at devices and systems that control industrial processes, and have harmed victims in the last month following the onset of U.S.-Israel strikes against Iran, according to the joint alert from the…
Russian government hackers broke into thousands of home routers to steal passwords

Apr 7, 2026 7:51 PM

Tags: authentication, espionage, government, hacker, password, router, russia

Fancy Bear, also known as APT28, has taken over thousands of residential home routers to steal passwords and authentication tokens in a wide-ranging espionage operation. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/07/russian-government-hackers-broke-into-thousands-of-home-routers-to-steal-passwords/
Trump administration plans to cut cybersecurity agency’s budget by $700 million

Apr 7, 2026 4:53 PM

Tags: cisa, cybersecurity, election, government

The budget proposal would force CISA to operate with a significantly lower budget than previous years, citing the government’s claims that the election misinformation programs were used to “target the President.” First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/07/cisa-budget-cuts-700-million-cybersecurity-agency-trump/
Cyberattack on telecom giant Rostelecom disrupts internet services across Russia

Apr 7, 2026 3:52 PM

Tags: attack, banking, cyberattack, government, Internet, network, russia, service

A “large-scale” distributed denial-of-service (DDoS) attack targeted the network of Russian state-run telecom giant Rostelecom on Monday evening, temporarily disrupting online banking, government platforms and other digital services across dozens of cities. First seen on therecord.media Jump to article: therecord.media/rostelecom-cyberattack-disrupts-russian-internet-access
The rise of proactive cyber: Why defense is no longer enough

Apr 7, 2026 12:51 PM

Tags: attack, breach, ciso, control, country, cyber, cybersecurity, defense, framework, google, government, hacking, infrastructure, intelligence, korea, law, microsoft, network, north-korea, risk, threat, tool

What ‘proactive cyber’ means: Despite the more aggressive language, this shift toward private-sector involvement doesn’t envision vigilante-style payback by aggrieved organizations. It instead embraces a more systematic effort to interfere with adversaries earlier in the attack chain using authorities and capabilities that already exist.”To be clear, this is not hacking back,” Joyce said. “This is…
The Attack Helix: Praetorian Guard’s AI Architecture for Offensive Security

Apr 6, 2026 11:51 PM

Tags: ai, attack, breach, chatgpt, finance, government, openai

The Kill Chain models how an attack succeeds. The Attack Helix models how the offensive baseline improves. Tipping Points One person. Two AI subscriptions. Ten government agencies. 150 gigabytes of sovereign data. In December 2025, a single unidentified operator used Anthropic’s Claude and OpenAI’s ChatGPT to breach ten Mexican government agencies and a financial institution….…
Border Patrol Agents Sold Challenge Coins With ‘Charlotte’s Web’ Characters in Riot Gear

Apr 6, 2026 8:52 PM

Tags: government

Nonprofits run out of US Border Patrol stations are also selling other “operation”-themed coins that include a phrase popularized by the Proud Boys, potentially in violation of government rules. First seen on wired.com Jump to article: www.wired.com/story/us-border-patrol-challenge-coins-nonprofits/
Missile Alert Phishing Exploits IranIsrael Conflict for Microsoft Logins

Apr 6, 2026 7:52 PM

Tags: email, exploit, government, iran, login, microsoft, phishing, qr, scam

New Phishing scam uses fake missile alerts and the ongoing conflict involving Iran to target users with QR codes and fake government emails to steal Microsoft passwords. First seen on hackread.com Jump to article: hackread.com/missile-alert-phishing-iran-us-israel-microsoft-logins/
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 91

Apr 5, 2026 5:50 PM

Tags: attack, government, injection, international, macOS, malware, supply-chain, threat

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Infiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka Converging Interests: Analysis of Threat Clusters Targeting a Southeast Asian Government RoadK1ll: A WebSocket Based Pivoting Implant axios Compromised: npm Supply Chain Attack via Dependency Injection…
Irankrieg: USA schränken private Satellitenbilder ein

Apr 5, 2026 1:51 PM

Tags: governance, government, usa

Planet Labs und andere Anbieter schränken auf Druck der US-Regierung den Zugang zu Satelliten-Aufnahmen aus der Golfregion ein. First seen on golem.de Jump to article: www.golem.de/news/irankrieg-usa-schraenken-private-satellitenbilder-ein-2604-207255.html
The Hack That Exposed Syria’s Sweeping Security Failures

Apr 5, 2026 11:50 AM

Tags: breach, data-breach, government

When Syrian government accounts were hijacked in March, the breach looked chaotic. But it revealed something more troubling: a state struggling with the most basic layer of cybersecurity. First seen on wired.com Jump to article: www.wired.com/story/inside-the-hack-that-exposed-syrias-security-failures/
CISA gives agencies two weeks to patch video conferencing bug exploited by Chinese hackers

Apr 3, 2026 10:52 PM

Tags: china, cisa, exploit, government, hacker, software, update, vulnerability

A bug in a popular line of video conferencing software is being exploited by hackers, prompting the U.S. government to order all agencies to patch the vulnerability within two weeks. First seen on therecord.media Jump to article: therecord.media/trueconf-cyberattack-cisa-hackers
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Apr 3, 2026 8:51 PM

Tags: china, government, phishing, threat

A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of minimal targeting in the region.The campaign has been attributed to TA416, a cluster of activity that overlaps with DarkPeony, RedDelta, Red Lich, SmugX, UNC6384, and Vertigo Panda.”This TA416 activity included multiple First seen on…
Blocking children from social media is a badly executed good idea

Apr 3, 2026 7:51 PM

Tags: government

Governments are each inventing their own flavor of an age based ban for social media. Is the cure worse than the disease? First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/blocking-children-from-social-media-is-a-badly-executed-good-idea/
Government agencies see cyber threats as major barrier to tech improvements

Apr 3, 2026 5:51 PM

Tags: ai, cyber, defense, government, threat, tool

Federal leaders also see opportunities to accelerate cyber defense with AI, but most agencies are still only testing AI tools, ;a new survey found. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cybersecurity-modernization-ai-ey-survey/816590/
When Your Own Eyes Turn Against You: How Compromised Security Cameras and IoT/OT Devices Become Tools for Your Attackers

Apr 3, 2026 1:51 AM

Tags: access, advisory, attack, botnet, cctv, china, cloud, control, corporate, credentials, cyber, cyberattack, cybersecurity, dark-web, data, data-breach, defense, detection, endpoint, espionage, exploit, finance, firmware, flaw, government, group, hacking, healthcare, infrastructure, intelligence, international, Internet, iot, iran, law, linux, malware, network, office, privacy, ransomware, resilience, risk, russia, service, supply-chain, technology, threat, tool, ukraine, unauthorized, update, vpn, vulnerability, warfare, windows, zero-day, zero-trust

TL;DR Security cameras, IoT, and OT devices that are meant to protect us, are easily compromised and turned against defenders, enabling nation-state reconnaissance (Iranian hacks on Hikvision/Dahua cameras during strikes, Russian webcam abuse in Ukraine), espionage via exposed live feeds, ransomware pivots (Akira group bypassing EDR), massive botnets (Mirai/Eleven11bot), and physical disruption. Structural weaknesses like…
FedRAMP Ready, Class A Certification, and Breaking Into the Federal Market

Apr 2, 2026 6:51 PM

Tags: cloud, fedramp, government, saas, tool, update

The updates and expansion of FedRAMP make a few things clear, the most significant of which is that government agencies are counting on cloud tools to help them do their work. But they also want certainty. The FedRAMP Ready designation was meant to bridge the gap between agencies seeking audited platforms and SaaS providers seeking”¦…
RSAC 2026: AI Dominates, But Community Remains Key to Security

Apr 2, 2026 6:51 PM

Tags: ai, automation, conference, cybersecurity, government, intelligence

As AI took center stage at this year’s conference, experts debated automation, oversight and the evolving role of human intelligence in cybersecurity, despite the US government’s notable absence. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/rsac-2026-ai-dominates-community
Possible US Government iPhone Hacking Tool Leaked

Apr 2, 2026 2:51 PM

Tags: data-breach, defense, exploit, google, government, group, hacking, iphone, malware, tool, vulnerability

Wired writes (alternate source): Security researchers at Google on Tuesday released a report describing what they’re calling “Coruna,” a highly sophisticated iPhone hacking toolkit that includes five complete hacking techniques capable of bypassing all the defenses of an iPhone to silently install malware on a device when it visits a website containing the exploitation code.…
Fake CERT-UA Site Spreads Go-Based RAT in Phishing Campaign

Apr 2, 2026 1:52 PM

Tags: cyber, email, finance, government, hacker, malicious, password, phishing, rat, software, tool, ukraine

Hackers have launched a targeted phishing campaign by cloning Ukraine’s official CERT-UA website and distributing malicious software disguised as a security tool, according to a new alert from the national cyber response team. Targets included government agencies, financial institutions, educational bodies, medical centers, and IT companies. The emails urged recipients to download a password-protected archive…
TrueConf zero-day vulnerability exploited to target government networks

Apr 2, 2026 11:51 AM

Tags: china, exploit, government, malware, network, vulnerability, zero-day

Suspected China-nexus attackers have leveraged a zero-day vulnerability (CVE-2026-3502) in the TrueConf client application to distribute malware within government networks in … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/02/trueconf-zero-day-vulnerability-cyber-espionage/
TA416 Broadens Europe Spy Campaign With Web Bugs and Malware

Apr 2, 2026 9:51 AM

Tags: china, cyber, espionage, government, malware, spy, threat

China-aligned threat actor TA416 has resumed large-scale espionage against European governments. It is now expanding to Middle Eastern diplomatic targets, combining web bug reconnaissance with constantly evolving malware delivery chains that culminate in a customized PlugX backdoor. From mid-2025, TA416 restarted regular targeting of European government and diplomatic entities after a two”‘year lull, with a…