Friday, March 5, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

France warns of cyberattacks against service providers and engineering offices

October 8, 2019
in Internet Security
France warns of cyberattacks against service providers and engineering offices
585
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Image: Getty Images/iStockphoto

France’s cyber-security agency has published an alert about cyber-espionage campaigns targeting the infrastructure of service providers and engineering firms.

“Attackers are compromising these enterprise networks in order to access data and eventually the networks of their clients,” the National Cybersecurity Agency of France, known locally as ANSSI (Agence Nationale de la Sécurité des Systèmes d’Information), said in a technical report published on Monday.

You might also like

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

With its acquisition of Auth0, Okta goes all in on CIAM

Singapore Airlines frequent flyer members hit in third-party data security breach

Samuel Hassine, the head of ANSSI’s Cyber Threat Intelligence division, said the agency compiled the report with information from recent ANSSI investigations following incident response activities.

“At this point, analysis suggests two waves of attacks separated in time and without technical evidence of a link between them,” ANSSI officials said. “The first wave uses mainly the PlugX malware. The second wave relies on legitimate tools and credentials theft.”

ANSSI officials didn’t name victims or attribute the attacks to any particular hacker group or foreign nation; however, the PlugX backdoor trojan mentioned in the report is a common utility that has been often used by Chinese-backed hacker groups in many intrusions over the past decade.

A trend

The ANSSI report fits a trend that has been observed over the past year, during which multiple news stories, technical reports, and security alerts from cyber-security agencies have blamed (and even indicted) Chinese hackers for multiple attacks on cloud service providers and the European industry.

This includes coordinated Chinese attacks on a wide range of cloud providers across the world (Operation Cloudhopper), such as Visma, HPE, and IBM; on France’s Airbus; French engineering and technology consultancy and supplier Expleo; British engine-maker Rolls-Royce; a years-long campaign targeting most of Germany’s biggest companies, such as ThyssenKrupp, BASF, Siemens, Henkel, Teamviewer, Valve, and Bayer.

Second report

In addition to the report on the attacks targeting service providers and engineering firms, ANSSI also published a second report.

This second report details a large-scale phishing and credentials gathering campaign that primarily targeted government bodies.

“The range of supposed targets is wide, including country officials and think tanks,” ANSSI officials said. “Five possibly targeted diplomatic entities belong to member countries of the United Nations Security Council (China, France, Belgium, Peru, South Africa).”

ANSSI said their report describes the same activities that have been previously documented over the summer and the past year by cyber-security firms like Anomali, Cisco Talos, ESTsecurity, and Palo Alto Networks.

These attacks, which were still ongoing, were linked to a threat actor known as Kimsuky (Group123), linked to the North Korean government.

ANSSI and its open approach to cyber-security

ANSSI said these two reports are just the beginning, and they plan to publish more in the future, on a dedicated page they’ve set up on the agency’s website. The reports, the agency hopes, will provide the technical details so French and foreign companies can set up defensive measures in place to prevent or block future attacks.

The French cyber-security agency is following a trend that’s been popularized by US and UK cyber-security agencies, which in the past year have begun sharing more information with the private sector about ongoing cyber-espionage operations, calling out foreign countries, and releasing internal tools to the general public (such as the NSA’s Ghidra malware analysis framework).

On this last front, ANSSI has been the most prolific of all agencies. In the past year, the agency open-sourced CLIP OS, a security-hardened Linux-based operating system used internally by the French government; Tchap, an end-to-end encrypted instant messaging client; and, more recently, OpenCTI, a platform for processing and sharing cyber threat intelligence information.

Credit: Zdnet

Previous Post

vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities

Next Post

How to Detect an Ad Blocker

Related Posts

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines
Internet Security

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

March 5, 2021
With its acquisition of Auth0, Okta goes all in on CIAM
Internet Security

With its acquisition of Auth0, Okta goes all in on CIAM

March 5, 2021
Singapore Airlines frequent flyer members hit in third-party data security breach
Internet Security

Singapore Airlines frequent flyer members hit in third-party data security breach

March 5, 2021
Ransomware as a service is the new big problem for business
Internet Security

Ransomware as a service is the new big problem for business

March 5, 2021
Microsoft: We’re cracking down on Excel macro malware
Internet Security

Microsoft: We’re cracking down on Excel macro malware

March 4, 2021
Next Post
How to Change the WordPress Admin Login Logo

How to Detect an Ad Blocker

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines
Internet Security

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

March 5, 2021
Convergence of AI, 5G and Augmented Reality Poses New Security Risks 
Artificial Intelligence

Convergence of AI, 5G and Augmented Reality Poses New Security Risks 

March 5, 2021
2021 Gartner Magic Quadrant for Data Science and Machine Learning Platforms
Machine Learning

2021 Gartner Magic Quadrant for Data Science and Machine Learning Platforms

March 5, 2021
With its acquisition of Auth0, Okta goes all in on CIAM
Internet Security

With its acquisition of Auth0, Okta goes all in on CIAM

March 5, 2021
Survey Finds Many Companies Do Little or No Management of Cloud Spending  
Artificial Intelligence

Survey Finds Many Companies Do Little or No Management of Cloud Spending  

March 5, 2021
UVA doctors give us a glimpse into the future of artificial intelligence
Machine Learning

UVA doctors give us a glimpse into the future of artificial intelligence

March 5, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines March 5, 2021
  • Convergence of AI, 5G and Augmented Reality Poses New Security Risks  March 5, 2021
  • 2021 Gartner Magic Quadrant for Data Science and Machine Learning Platforms March 5, 2021
  • With its acquisition of Auth0, Okta goes all in on CIAM March 5, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates