Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 08:45:00 |
ICO Warns of "Immature" Biometric Tech (lien direct) |
UK privacy regulator says vulnerable people may be at risk |
|
|
★★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 17:00:00 |
Data Breaches Rise By 70% Globally in Q3 2022 (lien direct) |
Russia had the most breaches overall and France had the highest breach density |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 16:00:00 |
(Déjà vu) Apple Fixes Actively Exploited iOS and iPadOS Zero-Day Vulnerability (lien direct) |
The out-of-bounds write issue in the kernel could be exploited to execute arbitrary code |
Vulnerability
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 15:00:00 |
POS Malware Used to Steal Details of Over 167,000 Credit Cards (lien direct) |
The operators could make over $3m if they decide to sell the card dumps on underground forums |
Malware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 09:45:00 |
Ukraine Warns of Cuba Ransomware Campaign (lien direct) |
Financially motivated affiliate appears to be to blame |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 09:10:00 |
Iranian Atomic Energy Agency Admits Email Hack (lien direct) |
Suspected hacktivists inside country share sensitive info |
Hack
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 08:30:00 |
US Charges Two Chinese Agents in Huawei Obstruction Case (lien direct) |
Indictments form one of three cases involving Chinese spies |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 17:00:00 |
(Déjà vu) CISA Warns Against Ransomware Group Daixin Team Targeting Health Organizations (lien direct) |
Daixin Team is actively targeting US businesses, mainly in the healthcare sector |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 16:00:00 |
Multiple RCE Vulnerabilities Discovered in Veeam Backup & Replication App (lien direct) |
The Veeamp malware was used by the Monti and Yanluowang ransomware groups in these attacks |
Ransomware
Malware
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 15:00:00 |
DHL Replaces LinkedIn As Most Imitated Brand in Phishing Attempts (lien direct) |
It is due partly to a major phishing attack DHL warned about before the quarter started |
|
|
★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 14:50:00 |
UK Cyber Security Council Creates Chartered Qualification for Industry Pros (lien direct) |
The UK Cyber Security Council has announced a pilot program designed to create the country's first chartered cyber professionals |
|
|
★★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 09:30:00 |
Clicker Malware Garners Estimated 20 Million Downloads (lien direct) |
Google forced to remove over a dozen malicious apps |
Malware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 09:00:00 |
UK Construction Biz Fined £4.4m for Serious Security Failings (lien direct) |
Interserve slammed by regulator after employee data breach |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-24 08:30:00 |
European Police Warn of Metaverse Cyber-Threats (lien direct) |
Cops also identify opportunities to enhance law enforcement |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 17:00:00 |
New Phishing Campaign Targets Saudi Government Service Portal (lien direct) |
The campaigns are set up to provide fake services to the citizens and steal their credentials |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 16:00:00 |
Google Unveils Open Source Project to Improve Software Supply Chain Security (lien direct) |
GUAC aims to bring together many different sources of software security metadata |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 15:00:00 |
Thousands of Publicly Exposed API Tokens Could Threaten Software Integrity (lien direct) |
JFrog scanned over eight million artifacts in the most common open-source software registries |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 13:10:00 |
NCSC CEO Calls for International Standards on IoT Security (lien direct) |
Lindy Cameron argues that smart cities are becoming an attractive target for threat actors, including nation states |
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 11:00:00 |
Lesson Learned: How SolarWinds Strengthened its Security Post-Incident (lien direct) |
Tim Brown, CISO and VP of security at SolarWinds shared his experiences remediating a major cyber-attack during Mandiant's mWISE event on October 18, 2022 |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 09:40:00 |
Cyber-Enabled Crimes Are Biggest Police Concerns (lien direct) |
Interpol study warns that many threats are expected to increase |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 09:00:00 |
OldGremlin Ransomware Ups Ante Against Russian Targets (lien direct) |
Ransom demands soar to $17m, according to new report |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-21 08:30:00 |
Cops Arrest Suspected Multimillion-Dollar Fraud Mastermind (lien direct) |
Spanish police apprehend suspect in Tenerife |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 17:00:00 |
Ransomware is Being Used As a Precursor to Physical War: Ivanti (lien direct) |
The data also shows ransomware groups continuing to grow in volume and sophistication |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 16:30:00 |
Cybersecurity Workforce Gap Grows by 26% in 2022 (lien direct) |
What are the factors behind this stark rise, and how can the skills gap be closed? |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 16:00:00 |
FBI Warns Students Against Loan Forgiveness Scammers (lien direct) |
Scammers are attempting to solicit PII, financial information or payment from potential victims |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 15:00:00 |
Singapore Creates Counter Ransomware Task Force to Tackle Threats (lien direct) |
It will focus on protecting suppliers to critical information infrastructure operators |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 09:30:00 |
Brazilian Police Arrest Lapsus$ Suspect (lien direct) |
Noose tightens around notorious cybercrime group |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 09:00:00 |
NCSC Updates Early Warning Threat Intelligence (lien direct) |
UK security agency makes it easier to assess credibility of alerts |
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-20 08:30:00 |
Microsoft Misconfiguration Exposes Customer Data (lien direct) |
Researchers claim thousands of global customers were impacted |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-19 16:00:00 |
NSA Cybersecurity Director\'s Six Takeaways From the War in Ukraine (lien direct) |
Rob Joyce was invited to speak during the Mandiant Worldwide Information Security Exchange (mWISE) event on October 18, 2022 |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-19 15:00:00 |
Moola Market Reveals $9m Crypto Exploit (lien direct) |
Most of the funds were later returned following negotiations with the hacker |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-19 10:00:00 |
Digital Natives Are Undermining Corporate Security - Report (lien direct) |
EY finds younger workers are prone to engage in risky behavior |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-19 09:30:00 |
#CyberMonth: ENISA Celebrates 10 Years of European Cybersecurity Month with New, Proactive Slogan (lien direct) |
For this year's edition, ENISA introduced a new slogan for the event, #Choose2BeSafeOnline |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-19 09:00:00 |
Deadbolt Ransomware Extorts Vendors and Customers (lien direct) |
New report provides in-depth look at novel NAS-based threat |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-19 08:30:00 |
Software Supply Chain Attacks Soar 742% in Three Years (lien direct) |
Sonatype reveals scale of threats to open source ecosystem |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-18 17:00:00 |
Zoom Patches High-Severity Flaw in macOS Client (lien direct) |
The flaw could allow an attacker to connect to clients and control the Zoom Apps running in it |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-18 16:00:00 |
HelpSystems Patch Falls Short, RCE Vulnerability in Cobalt Strike Remains (lien direct) |
Certain components in Java Swing will interpret text as HTML content if it starts with |
Vulnerability
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-18 15:00:00 |
Spyder Loader Malware Deployed Against Hong Kong Organizations (lien direct) |
The attackers reportedly remained active on some networks for more than a year |
Malware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-18 10:45:00 |
European Police Catch Suspected Car Hackers (lien direct) |
Gang exploited keyless entry systems to steal vehicles |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-18 10:30:00 |
Wine Merchant Among Aussie Firms Breached, Exposing Millions (lien direct) |
Vinomofo the latest to suffer a serious security incident |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-18 09:25:00 |
Pro-Russia Hackers DDoS Bulgarian Government (lien direct) |
Killnet reportedly claims responsibility once again |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-17 17:00:00 |
\'Prestige\' Ransomware Group Targets Organizations in Ukraine and Poland (lien direct) |
The campaign had several features differentiating it from other ransomware tracked by Microsoft |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-17 16:00:00 |
Amazon Customers Receive Smishing Warning After Receiving Fake Texts (lien direct) |
Which? said it has reported the fake URLs to the National Cyber Security Centre |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-17 15:00:00 |
Ransom Cartel Linked to Russia-Based REvil Ransomware Group (lien direct) |
The collection became increasingly clear through the tools used by both threat actors |
Ransomware
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-17 09:30:00 |
Spanish Police Bust Region\'s "Biggest Narco Bank" (lien direct) |
Underground organization said to have laundered €300m annually |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-17 09:00:00 |
Hackney Council Ransomware Attack Cost £12m+ (lien direct) |
Local government's travails highlight devastating impact of breaches |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-17 08:30:00 |
Global Cops Arrest Dozens Linked to Financial Crime Gang (lien direct) |
Black Axe syndicate responsible for multimillion-dollar losses |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-14 17:00:00 |
(Déjà vu) Mirai Botnet Targeted Wynncraft Minecraft Server, Cloudflare Reports (lien direct) |
The multi-vector, 2.5Tbps attack consisted of UDP and TCP floods |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-14 16:00:00 |
Shein Holding Company Fined $1.9m For Not Disclosing Data Breach (lien direct) |
The data breach saw Zoetop allegedly trying to keep the real impact of the leak quiet |
Data Breach
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-14 15:00:00 |
Education Sector Experienced 44% Increase in Cyber-Attacks Over Last Year (lien direct) |
An average of 2297 attacks against organizations were recorded every week |
|
|
|