Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-12-08 09:30:00 |
Cyber-criminals Scammed Each Other Out of Millions in 2022 (lien direct) |
Sophos report reveals thriving "sub-economy" on underground sites |
|
|
★★
|
|
2022-12-07 18:00:00 |
Microsoft Warns Cryptocurrency Firms Against Complex Cyber-Attacks (lien direct) |
Attacks included fraud, vulnerability exploitation, fake applications and info stealer deployments |
Vulnerability
|
|
★★
|
|
2022-12-07 17:00:00 |
NZ Privacy Commissioner Investigates Mercury IT Ransomware Attack (lien direct) |
The watchdog also confirmed it plans on opening a compliance investigation into the incident |
Ransomware
|
|
★★★
|
|
2022-12-07 16:00:00 |
Security Risks Found in Millions of XIoT Devices (lien direct) |
Phosphorus published a report encapsulating five years of security research and device testing. |
Conference
|
APT 35
|
★★★
|
|
2022-12-07 14:05:00 |
FFT and Ransomware Represent Over Half of Cyber Insurance Claims in 2022 (lien direct) |
While average ransomware claims are much higher, the report warned that vectors like BEC could deliver "death by a thousand cuts" |
Ransomware
|
|
★★★
|
|
2022-12-07 11:15:00 |
UK Government Department Using Unsupported Applications, Reveals Watchdog (lien direct) |
Almost a third (30%) of applications used by Defra are unsupported, a report from the National Audit Office has revealed |
|
|
★★★
|
|
2022-12-07 10:45:00 |
ICO Fines Rogue Nuisance Callers £500,000 (lien direct) |
Some companies forced victims to share card details |
|
|
★★
|
|
2022-12-07 10:10:00 |
Russia\'s VTB Bank Suffers its Biggest Ever DDoS (lien direct) |
Ukraine suspected of attack on state-owned lender |
General Information
|
|
★★
|
|
2022-12-07 09:40:00 |
Supply Chain Web Skimming Attacks Hit Dozens of Sites (lien direct) |
Malicious e-commerce campaign ongoing since December 2021 |
|
|
★★
|
|
2022-12-06 18:06:00 |
China-Based Hackers Target Amnesty International Canada (lien direct) |
Results suggest the attack was executed using tools and techniques associated with Chinese APTs. |
|
|
★★
|
|
2022-12-06 17:00:00 |
Swiss Government Wants to Implement Mandatory Duty to Report Cyber-Attacks (lien direct) |
The move would shed light on hackers and sound the alarm more widely on cyber-threats in the country. |
|
|
★★
|
|
2022-12-06 16:00:00 |
Threat Actors Use Malicious File Systems to Scale Crypto-Mining Operations (lien direct) |
The hackers used PRoot to increase the scope of their operations to several Linux distributions |
Threat
|
|
★★
|
|
2022-12-06 10:30:00 |
Gen Z Internet Users "Normalize" Cybercrime - Report (lien direct) |
EU-funded study finds concerning levels of risky behavior |
|
|
★★
|
|
2022-12-06 10:00:00 |
Russian Hackers Use Western Networks to Attack Ukraine (lien direct) |
Lupovis used decoys to find out more about threat actors |
Threat
|
|
★★
|
|
2022-12-06 09:30:00 |
Prolific Chinese Hackers Stole US COVID funds (lien direct) |
Secret Service says discovery may be the tip of the iceberg |
|
|
★★
|
|
2022-12-05 17:00:00 |
\'Team Mysterious Bangladesh\' Hackers Target Indian Education Entity (lien direct) |
The hackers allegedly stole PII, including names, Aadhar numbers and IFSC codes |
|
|
★★
|
|
2022-12-05 16:35:00 |
Cyber Extortion Growing Exponentially in Africa, Middle East and China, Finds Orange (lien direct) |
Businesses are getting better at preventing cyber incidents, Orange Cybedefense's head of Security Research Center said |
|
|
★★★
|
|
2022-12-05 16:07:00 |
Google Releases Chrome Emergency Fix
For Ninth Zero-Day This Year (lien direct) |
The flaw relates to a type confusion bug in the V8 JavaScript engine |
|
|
★★★
|
|
2022-12-05 15:00:00 |
Manufacturers Struggle to Manage Cyber-Threats from New Tech Deployments (lien direct) |
42% of UK manufacturers have been a victim of cybercrime in the past 12 months, according to new research |
Studies
|
|
★★★
|
|
2022-12-05 10:45:00 |
Digital Giant ABB to Pay $315m in Bribery Case (lien direct) |
Firm pleads guilty in major South Africa conspiracy |
Guideline
|
|
★★
|
|
2022-12-05 10:10:00 |
Microsoft: Beware Russian Winter Cyber-Offensive (lien direct) |
Ukraine's allies may be in the firing line for destructive attacks |
|
|
★★★
|
|
2022-12-05 09:40:00 |
French Hospital Halts Operations After Cyber-Attack (lien direct) |
André-Mignot hospital shuts down computer systems |
|
|
★★★
|
|
2022-12-02 18:00:00 |
Google Increases Android Security With Memory-Safe Programming Languages (lien direct) |
The number of memory safety vulnerabilities in Android dropped from 223 in 2019 to 85 in 2022 |
|
|
★★
|
|
2022-12-02 17:00:00 |
\'Black Proxies\' Enable Threat Actors to Conduct Malicious Activity (lien direct) |
First used as botnets, their lucrative nature turned them into independent criminal enterprises |
Threat
|
|
★★
|
|
2022-12-02 16:00:00 |
Hackers Use Archive Files and HTML Smuggling to Bypass Detection Tools (lien direct) |
HP's latest report suggests 44% of malware was delivered via archive files in Q3 2022 |
Malware
|
|
★★★
|
|
2022-12-02 14:30:00 |
Industry Coalition Urges Congress to Hold off on SBOMs Requirements for Defense Contractors (lien direct) |
The coalition outlined the need to refine SBOM requirements before making it an obligation for defense contractors |
|
|
★★
|
|
2022-12-02 10:45:00 |
NATO Launches Massive Cyber-Defense Exercise (lien direct) |
Annual Cyber Coalition effort helps nations develop and share best practice |
|
|
★★★★
|
|
2022-12-02 10:15:00 |
Cuba Ransomware Actors Pocket $60m (lien direct) |
Number of US victims has doubled over the past year |
Ransomware
|
|
★★★
|
|
2022-12-02 09:40:00 |
Trojan Steals Facebook Details from Over 300K Victims (lien direct) |
"Schoolyard Bully" has been active since 2018 |
|
|
★★★
|
|
2022-12-01 18:00:00 |
Hackers Target Colombia\'s Healthcare System With Ransomware (lien direct) |
The attack disrupted IT operations, websites and scheduling of medical appointments |
Ransomware
|
|
★★★
|
|
2022-12-01 17:00:00 |
Spyware Vendor Variston Exploited N-Days in Chrome, Firefox, Windows (lien direct) |
The claims come from Google's Threat Analysis Group, which published an advisory about the threat |
Threat
|
|
★★★
|
|
2022-12-01 16:07:00 |
(Déjà vu) WhatsApp Files on Dark Web Show Millions of Records For Sale (lien direct) |
The list went on sale for four days and is now being distributed for free among dark web users |
|
|
★★★
|
|
2022-12-01 11:00:00 |
UK Extends NIS Regulations to IT Managed Service Providers (lien direct) |
The UK strengthens its regulations on Network and Information Systems (NIS) to better prevent software supply chain attacks |
|
|
★★
|
|
2022-12-01 10:00:00 |
Researchers Accidentally Crash Cryptomining Botnet (lien direct) |
Akamai reveals how a simple syntax error stopped it sending commands |
|
|
★★★
|
|
2022-11-30 18:30:00 |
Majority of US Defense Contractors Not Meeting Basic Cybersecurity Requirements (lien direct) |
87% of DoD contractors are failing to meet the basic level of compliance ahead of CMMC coming into force next year |
|
|
★★★
|
|
2022-11-30 18:00:00 |
Australian Parliament Passes Privacy Penalty Bill (lien direct) |
The higher penalties and extended powers will become effective after the bill receives royal assent |
|
|
★★
|
|
2022-11-30 17:00:00 |
China-Based Hackers Target Southeast Asia With USB-Based Malware (lien direct) |
UNC4191 operations have affected several entities in Southeast Asia but also in the US, Europe and Asia Pacific Japan |
Malware
|
|
★★★
|
|
2022-11-30 16:00:00 |
Zero-Day Flaw Discovered in Quarkus Java Framework (lien direct) |
The flaw has a CVSS v3 base score rating of 9.8 and can be found in the Dev UI Config Editor |
|
|
★★★
|
|
2022-11-30 12:00:00 |
Businesses Increasing Cyber Spend Without Clear Strategy, Fastly Finds (lien direct) |
As businesses aim to spend more on cybersecurity, Fastly warns that many do so without a clear strategy |
|
|
★★
|
|
2022-11-30 10:30:00 |
Let\'s Encrypt Issues Three Billionth Certificate (lien direct) |
Free certificate authority serves over 300 million websites |
|
|
★★★
|
|
2022-11-30 10:00:00 |
Most Small Biz IaaS Users Seeing Surge in Attacks (lien direct) |
A further 67% were hit by ransomware in past year |
Ransomware
|
|
★★
|
|
2022-11-30 09:30:00 |
New "Icefall" Bugs Include Critical DoS Flaw (lien direct) |
Millions of OT devices may be affected |
|
|
★★
|
|
2022-11-29 18:12:00 |
Oracle Fusion Middleware Vulnerability Actively Exploited in the Wild: CISA (lien direct) |
The bug allows unauthenticated attackers with network access to compromise Oracle Access Manager |
Vulnerability
|
|
★★★★
|
|
2022-11-29 17:00:00 |
PII May Have Been Stolen in Virginia County Ransomware Attack (lien direct) |
A W-2 form was reportedly published on a dark web forum with stolen, sensitive data |
Ransomware
|
|
★★★
|
|
2022-11-29 16:00:00 |
US Census Bureau Head Fends Off Critics of \'Differential Privacy\' Tool (lien direct) |
Santos defended differential privacy against prominent researchers |
Tool
|
|
★★
|
|
2022-11-29 10:45:00 |
Police Shutter 13,000 Sites in Piracy Crackdown (lien direct) |
Fourteen detained as part of Europol operation |
Legislation
|
|
★★★★
|
|
2022-11-29 10:30:00 |
Ireland\'s DPC Fines Meta €265m Following Large-Scale Data Leak (lien direct) |
The fine followed an inquiry into data processing by Meta in response to a major data breach |
Legislation
|
|
★★★
|
|
2022-11-29 09:30:00 |
Web App and API Attacks Surge 257% in Financial Services (lien direct) |
Data and credentials at risk in the vertical |
|
|
★★★
|
|
2022-11-28 18:00:00 |
Elon Musk Unveils End-to-End Encrypted DMs For Twitter 2.0 (lien direct) |
The E2EE feature was first spotted by mobile researcher Jane Manchun Wong earlier this month |
|
|
★★★
|
|
2022-11-28 17:00:00 |
Phishing Campaign Impersonating UAE Ministry of Human Resources Grows (lien direct) |
New cluster of phishing domains registered using similar naming schemes discovered |
|
|
★★★★★
|