Government

  • Canada: House of Commons hit by cyberattack from ‘threat actor’

    August 14, 2025

    The House of Commons and Canada’s cybersecurity agency are investigating a significant data breach caused by an unknown “threat actor” targeting employee information. According to an internal email obtained by CBC News, the House of Commons alerted staff on Monday that there was an information breach. It said a malicious actor was able to exploit a ...

  • Cyber attack on Nigeria Customs Service disrupts clearance operations

    August 14, 2025

    A cyber attack on the Information Communication Technology (ICT) platform of the Nigeria Customs Service (NCS) has caused significant disruptions to cargo clearance operations at ports across the country. Licensed Customs agents are already counting their losses to demurrage charges on their consignments as a result of the disruption. Confirming the development, NCS spokesman and Assistant ...

  • Russian government hackers said to be behind US federal court filing system hack

    August 12, 2025

    The Russian government is allegedly behind the data breach affecting the U.S. court filing system known as PACER, according to The New York Times. Citing anonymous sources, the newspaper said Russia “is at least in part responsible” for the cyberattack, without saying what part of the Russian government is behind the hack. The hackers searched for ...

  • Ransomware attacks cripple government services across Dutch Caribbean islands

    August 2, 2025

    Several major government institutions across the Caribbean part of the Kingdom of the Netherlands were hit by cyberattacks last week, including a ransomware attack on Curaçao’s Tax and Customs Administration that temporarily disabled critical services, NOS reports. According to Curaçao’s Minister of Finance, ransomware was used in the attack on the tax authority. After the breach ...

  • Cobalt Strike Beacon delivered via GitHub and social media

    July 30, 2025

    n the latter half of 2024, the Russian IT industry, alongside a number of entities in other countries, experienced a notable cyberattack. The attackers employed a range of malicious techniques to trick security systems and remain undetected. To bypass detection, they delivered information about their payload via profiles on both Russian and international social media platforms, ...

  • Hundreds of organizations breached by SharePoint mass-hacks

    July 23, 2025

    Security researchers say hackers have breached at least 400 organizations by exploiting a zero-day vulnerability in Microsoft SharePoint, signaling a sharp rise in the number of detected compromises since the bug was discovered last week. Eye Security, a Dutch cybersecurity firm that first identified the vulnerability in SharePoint, a popular server software that companies use to ...

  • Hackers are trying to steal passwords and sensitive data from users of Signal clone

    July 17, 2025

    Hackers are targeting a previously reported bug in the Signal clone app TeleMessage in an effort to steal users’ private data, according to security researchers and a U.S. government agency. TeleMessage, which earlier this year was revealed to be used by high-ranking officials in the Trump administration, already experienced at least one data breach in May. ...

  • Behind the Clouds: Attackers Targeting Governments in Southeast Asia Implement Novel Covert C2 Communication

    July 14, 2025

    Since late 2024, Unit 42 researchers have been tracking a cluster of suspicious activity as CL-STA-1020, targeting governmental entities in Southeast Asia. The threat actors behind this cluster of activity have been collecting sensitive information from government agencies, including information about recent tariffs and trade disputes. This campaign is particularly noteworthy due to its novel tradecraft. ...

  • Impostor uses AI to impersonate Rubio and contact foreign and US officials

    July 8, 2025

    The State Department is warning U.S. diplomats of attempts to impersonate Secretary of State Marco Rubio and possibly other officials using technology driven by artificial intelligence, according to two senior officials and a cable sent last week to all embassies and consulates. The warning came after the department discovered that an impostor posing as Rubio had ...

  • Payout offered to Afghans hit by UK data breaches

    July 4, 2025

    Afghan nationals whose personal information was mistakenly exposed by the Ministry of Defence in 2021 will be offered up to £4,000 each in compensation, the government has said. The data breaches affected 277 people, some of whom had worked for the UK government and were in hiding from insurgent Taliban forces at the time. Defence Minister ...

  • French government hit by Chinese hackers exploiting Ivanti security flaws

    July 4, 2025

    In late 2024, Chinese state-sponsored threat actors abused multiple zero-day vulnerabilities in Ivanti Cloud Services Appliance (CSA) devices to access French government agencies, as well as numerous commercial entities such as telcos, finance, and transportation organizations. The news was recently confirmed by the French National Agency for the Security of Information Systems (ANSSI), which noted threat ...

  • U.S. House of Representatives bans WhatsApp from staff devices

    June 24, 2025

    The U.S. House of Representatives’ top official has banned WhatsApp from government-issued devices used by its staff, saying the app poses potential security risks, Reuters reported, citing a memo sent to House staff. “The Office of Cybersecurity has deemed WhatsApp a high risk to users due to the lack of transparency in how it protects user ...

  • US government’s vaccine website defaced with AI-generated content

    June 11, 2025

    A U.S. government website designed to inform the public about vaccines has been defaced and now hosts apparently AI-generated spam. The domain, which belongs to the U.S. Department of Health and Human Services (HHS), appears to have been hosting the same kind of content — mostly gay-themed and LGBTQ+ posts — since at least May 12, ...

  • Italy and Israeli Paragon part ways after spyware affair

    June 9, 2025

    Italy has terminated a contract with Israeli spyware maker Paragon, a parliamentary document showed on Monday, following allegations that the Italian government used its technology to hack critics’ phones. Paragon did not immediately respond to a Reuters request for comment. Meta’s WhatsApp chat service said earlier this year Paragon spyware had targeted scores of users, including ...

  • FBI probes effort to impersonate White House chief of staff Susie Wiles

    May 29, 2025

    One or more unknown people accessed White House chief of staff Susie Wiles’ personal cellphone and used her contacts file to reach out to other top officials and impersonate her, sources told CBS News Thursday. Some of the recipients realized the messages were suspicious because the texts and calls came from an unknown number, sources said, ...

  • Mysterious hacking group Careto was run by the Spanish government

    May 23, 2025

    More than a decade ago, researchers at antivirus company Kaspersky identified suspicious internet traffic of what they thought was a known government-backed group, based on similar targeting and its phishing techniques. Soon, the researchers realized they had found a much more advanced hacking operation that was targeting the Cuban government, among others. Eventually the researchers were ...

  • UK: Legal Aid database hacked, ‘significant amount’ of data and criminal records stolen

    May 19, 2025

    The UK’s Ministry of Justice (MoJ) has revealed that a cyberattack on the Legal Aid system has led to the theft of a “significant amount” of data, including criminal records. The MoJ was alerted to the attack on April 23 when data dating back as far as 2010 was accessed by the attackers. Earlier this month, ...

  • Senior US Officials Impersonated in Malicious Messaging Campaign

    May 15, 2025

    FBI is issuing this announcement to warn and provide mitigation tips to the public about an ongoing malicious text and voice messaging campaign. Since April 2025, malicious actors have impersonated senior US officials to target individuals, many of whom are current or former senior US federal or state government officials and their contacts. If you receive ...

  • Israeli spyware firm NSO to pay Meta $168m. in damages for hijacking WhatsApp servers

    May 7, 2025

    A federal jury in California handed Israel’s NSO Group a $168 million penalty on Tuesday for hijacking the servers of WhatsApp in order to hack users of the Meta-owned chat platform on behalf of foreign spy agencies. The case caps a six-year battle between the American social media giant and the surveillance firm. It has also ...

  • Lampion Is Back With ClickFix Lures

    May 6, 2025

    Unit 42 researchers recently uncovered a highly focused malicious campaign targeting dozens of Portuguese organizations, particularly in the government, finance and transportation sectors. This campaign was orchestrated by the threat actors behind Lampion malware, an infostealer that focuses on sensitive banking information. This malware family has been active since at least 2019. During our investigation, we ...