What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-03-27 18:05:00 | Le cabinet d'avocats a condamné à une amende de 200 000 $ sur \\ 'Mauvaise sécurité des données \\' qui a conduit à une attaque de ransomware [Law firm fined $200,000 over \\'poor data security\\' that led to ransomware attack] (lien direct) |
Le procureur général de New York \\ a consacré une amende de 200 000 $ à un cabinet d'avocats représentant des hôpitaux dont les fichiers sensibles ont été accessibles dans une attaque de ransomware en 2021.Le procureur général Laetitia James a accusé la firme basée à New York, Heidell, Pittoni, Murphy & Bach (HPMB), d'avoir une «mauvaise sécurité des données», entraînant la fuite de quelque 114 000 personnes,
New York\'s attorney general has levied a $200,000 fine on a law firm representing hospitals whose sensitive files were accessed in a 2021 ransomware attack. Attorney General Laetitia James accused the New York City-based firm, Heidell, Pittoni, Murphy & Bach (HPMB), of having “poor data security,” resulting in the leak of some 114,000 people\'s information, |
Ransomware | ★★ | |
|
2023-03-27 16:00:00 | L'administration Biden limite l'utilisation commerciale des logiciels espions commerciaux dans le gouvernement fédéral [Biden administration limits commercial spyware use in federal government] (lien direct) |
Le président Joe Biden a signé lundi un décret exécutif qui interdit aux agences fédérales d'utiliser des logiciels espions commerciaux qui pourraient présenter des risques de sécurité aux États-Unis ou ont déjà été utilisés par les acteurs étrangers.Le décret, qui est en développement depuis des mois, cherche à aborder un nombre croissant de [incidents d'abus de logiciels espions à l'étranger] (https://therecord.media/mexican-army-spyware) comme
President Joe Biden signed an executive order Monday that bans federal agencies from using commercial spyware that could pose security risks to the U.S. or already has been misused by foreign actors. The executive order, which has been in development for months, seeks to address a growing number of [incidents of spyware abuse abroad](https://therecord.media/mexican-army-spyware) as |
★★★ | ||
|
2023-03-27 12:30:00 | Les militaires américains ont besoin de 7e branche juste pour le cyber, les dirigeants actuels et anciens disent [US military needs 7th branch just for cyber, current and former leaders say] (lien direct) |
Une association nationale des dirigeants actuels et anciens de la sécurité numérique militaire appelle le Congrès à établir un cyber-service distinct, faisant valoir que l'absence d'un «risque inutile» pour la sécurité nationale des États-Unis.Dans un mémorandum du 26 mars, l'Association militaire cyber-professionnelle [a exhorté les législateurs à établir une cyber-force américaine] (https://public.milcyber.org/legislation) dans cette
A national association of current and former military digital security leaders is calling on Congress to establish a separate cyber service, arguing that the lack of one creates an “unnecessary risk” to U.S. national security. In a March 26 memorandum, the Military Cyber Professional Association [urged lawmakers to establish a U.S. Cyber Force](https://public.milcyber.org/legislation) in this |
Guideline | ★★★ | |
|
2023-03-24 18:50:00 | Doj dit \\ 'millions de citoyens américains victimes de violation par l'administrateur de BreachForums [DOJ says \\'millions\\' of US citizens victimized by BreachForums administrator] (lien direct) |
Le ministère de la Justice accuse l'administrateur de la plate-forme cybercriminale populaire BreachForums de faciliter l'accès aux informations personnelles sensibles de millions de citoyens américains.Dans les documents judiciaires [publiés] (https://storage.courtlistener.com/recap/gov.uscourts.vaed.535542/gov.uscourts.vaed.535542.2.0.pdf) Vendredi, le gouvernement expose son affaire contre Conor Fitzpatrick, un homme de 20 ans [arrêté la semaine dernière] (https://therecord.media/breachforums-arrest-new-administrator) à Peekskill, New York pour avoir prétendument opéré comme administrateur de BreachForums Pompompurin.
The Justice Department is accusing the administrator of popular cybercriminal platform BreachForums of facilitating access to the sensitive personal information of millions of U.S. citizens. In court documents [published](https://storage.courtlistener.com/recap/gov.uscourts.vaed.535542/gov.uscourts.vaed.535542.2.0.pdf) Friday, the government lays out its case against Conor Fitzpatrick, a 20-year-old [arrested last week](https://therecord.media/breachforums-arrest-new-administrator) in Peekskill, New York for allegedly operating as BreachForums administrator pompompurin. |
★★★ | ||
|
2023-03-24 17:45:00 | UK National Crime Agency révèle qu'il a géré de faux sites DDOS-pour-location pour collecter les utilisateurs \\ 'Data [UK National Crime Agency reveals it ran fake DDoS-for-hire sites to collect users\\' data] (lien direct) |
L'Agence nationale de criminalité de la Grande-Bretagne (NCA) a révélé vendredi qu'elle avait créé un certain nombre de faux sites DDOS pour l'embauche pour infiltrer le criminel en ligne sous terre.Il a déclaré que les utilisateurs qui s'étaient inscrits aux sites n'avaient pas accès aux outils de cybercriminalité mais avaient plutôt rassemblé leurs données par les enquêteurs.Les attaques DDOS (déni de service distribué) sont parmi les
Britain\'s National Crime Agency (NCA) revealed on Friday that it had set up a number of fake DDoS-for-hire sites to infiltrate the online criminal underground. It said that users who registered for the sites were not given access to cybercrime tools but instead had their data collated by investigators. DDoS (distributed denial-of-service) attacks are among |
★★ | ||
|
2023-03-24 12:10:00 | Fonds britannique de protection des pensions, dernière victime de Goanywhere Hack [UK Pension Protection Fund latest victim of GoAnywhere hack] (lien direct) |
Le Fonds de protection contre les pensions du Royaume-Uni, l'un des plus grands propriétaires d'actifs de Grande-Bretagne, Gestion & Pound; 39 milliards, a confirmé qu'il avait été affecté par le piratage du service de transfert de fichiers populaire Goanywhere.Un grand nombre d'organisations ont confirmé ces derniers jours que les pirates avaient accédé à leurs données en relation avec l'incident, y compris [la ville de Toronto
The U.K. Pension Protection Fund, one of Britain\'s largest asset owners, managing £39 billion, has confirmed it has been affected by the hack of popular file transfer service GoAnywhere. A large number of organizations have confirmed in recent days that hackers had accessed their data in connection to the incident, including [the City of Toronto |
Hack | ★★★ | |
|
2023-03-24 11:50:00 | Hôpital britannique enquêtant sur l'impact de \\ 'contenu \\' Cyber Incident [British hospital investigating impact of \\'contained\\' cyber incident] (lien direct) |
Le Walsall Healthcare NHS Trust, qui gère l'hôpital de Walsall Manor, a déclaré qu'il avait été touché par un cyber-incident «contenu».Le personnel informatique de la fiducie a commencé à répondre à l'incident il y a deux semaines le 10 mars, bien qu'il n'ait été divulgué que jeudi par le local [Express et Star] (https://www.expressandstar.com/news/local-hubs/walsall/ 2023/03/23 / Investigations-sous-chemin après-cyber-attaque-sur-walsall-hospital-trust /).Dans une déclaration à
The Walsall Healthcare NHS Trust, which runs Walsall Manor Hospital, said that it has been impacted by a “contained” cyber incident. IT staff for the Trust began responding to the incident two weeks ago on March 10, although it was only disclosed on Thursday by the local [Express and Star](https://www.expressandstar.com/news/local-hubs/walsall/2023/03/23/investigations-under-way-after-cyber-attack-on-walsall-hospital-trust/) newspaper. In a statement to |
★★★ | ||
|
2023-03-24 11:00:00 | Comment le Pentagone a appris à aimer la divulgation de la vulnérabilité [How the Pentagon learned to love vulnerability disclosure] (lien direct) |
À l'intérieur de la [Cyber Stratégie nationale] (https://www.whitehouse.gov/wp-content/uploads/2023/03/national-cybersecurity-strategy-2023.pdf) publié le mois dernier par l'administration BidenUn appel à une «divulgation de vulnérabilité coordonnée» dans «tous les types de technologies et secteurs» pour aider à collecter et partager des informations sur les défauts des logiciels, du matériel et des systèmes à l'échelle nationale.L'appel a marqué la dernière étape de l'évolution d'une pratique qui a acquis une acceptation précoce
Inside the [national cyber strategy](https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf) released last month by the Biden administration was a call for “coordinated vulnerability disclosure” across “all technology types and sectors” to help collect and share information about flaws in software, hardware and systems nationwide. The appeal marked the latest step in the evolution of a practice that gained early acceptance |
Vulnerability | ★★ | |
|
2023-03-23 20:43:00 | Tennessee City a frappé d'attaque par ransomware [Tennessee city hit with ransomware attack] (lien direct) |
Oak Ridge, Tennessee, a déclaré que les responsables de la ville travaillent avec des experts en application de la loi et en cybersécurité pour faire face à une attaque de ransomware affectant ses systèmes technologiques.La ville de 31 000 résidents est située dans la partie orientale de l'État et est surtout connue pour être le site de production du projet Manhattan & # 8211;l'effort de plusieurs gouvernements
Oak Ridge, Tennessee said city officials are working with law enforcement and cybersecurity experts to deal with a ransomware attack affecting its technology systems. The 31,000-resident city is located in the eastern part of the state and is best known for being the production site of the Manhattan Project – the effort by several governments |
Ransomware | ★★ | |
|
2023-03-23 19:10:00 | La ville de Toronto et Virgin confirment que les pirates ont accédé aux données via des systèmes de transfert de fichiers [City of Toronto and Virgin confirm hackers accessed data through file transfer systems] (lien direct) |
La ville de Toronto et le conglomérat multinational britannique Virgin ont confirmé que les pirates avaient pu accéder aux données grâce à une vulnérabilité dans un service de transfert de fichiers populaire qui a affecté des dizaines d'organisations ces dernières semaines.Des responsables de Toronto ont déclaré jeudi au dossier qu'ils enquêtaient sur des fichiers accessibles par des cybercriminels qui ont piraté
The City of Toronto and British multinational conglomerate Virgin confirmed that hackers were able to access data through a vulnerability in a popular file transfer service that has affected dozens of organizations in recent weeks. Toronto officials told The Record on Thursday that they are investigating files that were accessed by cybercriminals who hacked into |
Vulnerability | ★★★ | |
|
2023-03-23 17:50:00 | Les sénateurs appellent le poste de cybersécurité approuvé par le Congrès au ministère de l'Énergie [Senators call for Congress-approved cybersecurity position at Department of Energy] (lien direct) |
Plusieurs sénateurs des deux parties ont appelé à l'élévation du poste de directeur de la cybersécurité au ministère de l'Énergie lors d'une audience jeudi.Le Congrès a [passé des années] (https://www.risch.senate.gov/public/index.cfm/2021/3/risch-king-urge-energy-department-don-t-downgrade-cbersesecurity) Critiquant le blancChambre et secrétaire à l'énergie Jennifer Granholm pour avoir effectivement abaissé le poste de cybersécurité à partir d'un rôle de niveau assistant-secrétaire qui nécessiterait une confirmation du Sénat
Several senators from both parties called for the elevation of the cybersecurity director position at the Department of Energy during a hearing on Thursday. Congress has [spent years](https://www.risch.senate.gov/public/index.cfm/2021/3/risch-king-urge-energy-department-don-t-downgrade-cybersecurity) criticizing the White House and Secretary of Energy Jennifer Granholm for effectively downgrading the cybersecurity position from an assistant-secretary level role that would require Senate confirmation to |
General Information Legislation | ★★ | |
|
2023-03-23 16:45:00 | Les législateurs américains disent au PDG de Tiktok que l'application \\ 'devrait être interdite \\' [US lawmakers tell TikTok CEO the app \\'should be banned\\'] (lien direct) |
Le PDG de Tiktok \\ a tenté jeudi de dissiper les inquiétudes que l'application vidéo abrégée pose un risque de cybersécurité et de sécurité nationale lors de son premier témoignage auprès d'un comité de la Chambre des États-Unis.Les législateurs bipartisans du comité de l'énergie et du commerce de la Chambre ont pressé Shou Chew, qui a pris la tête de Tiktok en 2021, sur les liens de l'application
TikTok\'s chief executive attempted on Thursday to dispel concerns that the short-form video app poses a cybersecurity and national security risk in his first time testifying to a U.S. House committee. Bipartisan lawmakers on the House Energy and Commerce Committee pressed Shou Chew, who took the helm of TikTok in 2021, about the app\'s ties |
General Information | ★★ | |
|
2023-03-23 13:55:00 | France Greenlights AI Tools for Olympics Malgré les préoccupations de la surveillance dystopique \\ ' [France greenlights AI tools for Olympics despite \\'dystopian surveillance state\\' concerns] (lien direct) |
L'Assemblée nationale française a adopté jeudi une loi permettant au gouvernement d'utiliser de nouvelles technologies d'intelligence artificielle (IA) pour surveiller le public en utilisant la surveillance vidéo pendant les Jeux Olympiques de Paris l'été prochain.Les Jeux de Paris devraient être une expérience dans l'utilisation des technologies de la surveillance vidéo AI, bien que le système en temps réel
The French National Assembly passed on Thursday a law allowing the government to use novel artificial intelligence (AI) technologies to monitor the public using video surveillance during the Olympic Games in Paris next summer. The Paris Games are set to be an experiment in the use of video surveillance AI technologies, although the real-time system |
Legislation | ★★★★ | |
|
2023-03-23 12:44:00 | Les incidents liés à l'Iran ont incité le cyber commandement à envoyer \\ 'Hunt Forward \\' Team en Albanie [Iran-linked incidents spurred Cyber Command to send \\'hunt forward\\' team to Albania] (lien direct) |
L'armée américaine a envoyé une équipe de cyber-opérateurs en Albanie l'année dernière pour aider à y défendre les réseaux gouvernementaux après une paire d'attaques numériques qui ont été imputées à l'Iran.La Cyber National Mission Force (CNMF) a déployé une équipe de deux douzaines de personnel sur une opération «Hunt Forward» [après le deuxième piratage] (https://therecord.media/Abanian-pm-says-iranian-hackers-hit-country-With-un autre cyberattaque), qui a eu lieu
The U.S. military sent a team of cyber operators to Albania last year to help defend government networks there after a pair of digital attacks that were blamed on Iran. The Cyber National Mission Force (CNMF) deployed a team of two dozen personnel on a “hunt forward” operation [following the second hack](https://therecord.media/albanian-pm-says-iranian-hackers-hit-country-with-another-cyberattack), which took place |
General Information | ★★★ | |
|
2023-03-22 21:32:00 | Group nord-coréen APT \\ 'Kimsuky \\' ciblant des experts avec une nouvelle campagne de spectre [North Korean APT group \\'Kimsuky\\' targeting experts with new spearphishing campaign] (lien direct) |
Cette semaine, les agences gouvernementales allemandes et sud-coréennes ont mis en garde cette semaine d'une nouvelle [campagne de sport] (https://www.verfassungsschutz.de/shareddocs/publikationen/en/prevention/2023-03-20-joint-cyber-security-Advisory-korean.html) d'un groupe nord-coréen notoire ciblant des experts sur la péninsule.La campagne a accès aux victimes \\ 'Google Comptes via deux méthodes d'attaque - l'infection des téléphones Android via une application malveillante sur Google Play et l'utilisation d'un
German and South Korean government agencies this week warned about a new [spearphishing campaign](https://www.verfassungsschutz.de/SharedDocs/publikationen/EN/prevention/2023-03-20-joint-cyber-security-advisory-korean.html) from a notorious North Korean group targeting experts on the peninsula. The campaign gains access to victims\' Google accounts through two attack methods - the infection of Android phones through a malicious app on Google Play and the use of a |
General Information | ★★ | |
|
2023-03-22 20:10:00 | Microsoft enquêtant sur les rapports de \\ 'acropalypse \\' Image-Crop Vulnérabilité dans Windows [Microsoft investigating reports of \\'aCropalypse\\' image-crop vulnerability in Windows] (lien direct) |
Microsoft examine les rapports sur la question de savoir si une vulnérabilité permettant à quelqu'un de récupérer les parties recadrées ou expurgées de la capture d'écran de Google Pixel affecte également les outils de Windows.Vendredi, les chercheurs en cybersécurité Simon Aarons et David Buchanan [ont rendu compte sur une vulnérabilité] (https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html) dans l'outil d'évacuation d'écran Inbuilt de Pixel \\ de Pixel \\., Marquage, qui a permis à quiconque de récupérer partiellement l'original
Microsoft is examining reports of whether a vulnerability allowing someone to recover the cropped or redacted parts of Google Pixel screenshots also affects tools within Windows. On Friday, cybersecurity researchers Simon Aarons and David Buchanan [reported on a vulnerability](https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html) in the Pixel\'s inbuilt screenshot editing tool, Markup, that allowed anyone to partially recover the original |
Vulnerability Vulnerability | ★★★ | |
|
2023-03-22 19:30:00 | CISA ajoute Inglis, Langevin, Katko et plus au comité consultatif [CISA adds Inglis, Langevin, Katko and more to Advisory Committee] (lien direct) |
La Cybersecurity and Infrastructure Security Agency (CISA) a ajouté 13 nouveaux membres à son comité consultatif de cybersécurité, y compris d'anciens représentants comme John Katko et Jim Langevin ainsi que l'ancien directeur national des États-Unis Chris Inglis.Le Royal Hansen de Google et l'ancien PDG du National Cyber Security Center Royaume-Uni, Ciaran Martin, ont également été ajoutés au comité, qui
The Cybersecurity and Infrastructure Security Agency (CISA) added 13 new members to its Cybersecurity Advisory Committee, including former representatives like John Katko and Jim Langevin as well as former U.S. National Cyber Director Chris Inglis. Google\'s Royal Hansen and former U.K. National Cyber Security Centre CEO Ciaran Martin were also added to the committee, which |
★★★ | ||
|
2023-03-22 13:00:00 | LIGNAGE POUR POUR LES DISSIONS DE CHAMPS SUR LA LOI DE LA SURVEILLANCE DE L'ARTICLE 702 [Lineup set for House talks on Section 702 surveillance law] (lien direct) |
Le groupe de travail du Comité du renseignement de la Chambre \\ sur le renouvellement de la loi sur la surveillance sans mandat connue sous le nom de l'article 702 comprendra deux membres qui ont siégé au panel lors du dernier combat de réautorisation controversé qui s'est produit pendant l'administration Trump.Le meilleur démocrate du comité, Jim Himes du Connecticut, a nommé mercredi ses choix pour rejoindre trois
The House Intelligence Committee\'s working group on the renewal of the warrantless surveillance law known as Section 702 will include two members who served on the panel during the last contentious reauthorization fight that occurred during the Trump administration. The committee\'s top Democrat, Jim Himes of Connecticut, named his choices Wednesday to join three already |
General Information | ★★ | |
|
2023-03-22 12:30:00 | Le Royaume-Uni émet une stratégie pour protéger les services de santé nationaux contre les cyberattaques [UK issues strategy to protect National Health Service from cyberattacks] (lien direct) |
Le gouvernement britannique a publié mercredi sa nouvelle stratégie de cybersécurité pour le National Health Service, visant à rendre le secteur de la santé du pays \\ «durcie considérablement à la cyberattaque, au plus tard en 2030».La stratégie vient dans le sillage de la [Wannacry] (https://www.theguardian.com/technology/2017/jun/16/wannacry-ransomware-attack-linked-north-korea-lazarus-group) Ransomware Attack en 2017, parallèlement à une attaque criminelle contre le fournisseur de logiciels [Advanced] (https://www.bbc.co.uk/news/technology-62725363) l'année dernière,
The British government published on Wednesday its new cybersecurity strategy for the National Health Service, aiming to make the country\'s healthcare sector “significantly hardened to cyber attack, no later than 2030.” The strategy comes in the wake of the [WannaCry](https://www.theguardian.com/technology/2017/jun/16/wannacry-ransomware-attack-linked-north-korea-lazarus-group) ransomware attack in 2017, alongside a criminal attack on the software supplier [Advanced](https://www.bbc.co.uk/news/technology-62725363) last year, |
Ransomware General Information | Wannacry APT 38 | ★★ |
|
2023-03-21 14:25:00 | BreachForums indique qu'il ferme après l'accès soupçonné des forces de l'ordre au backend [BreachForums says it is closing after suspected law enforcement access to backend] (lien direct) |
Dans une abrupte abrupte, le nouvel administrateur de la plate-forme cybercriminale populaire BreachForums a déclaré qu'ils prévoyaient de fermer le site après que son précédent administrateur a été [prétendument arrêté] (https://therecord.media/breachForums-arrest-new-ADINISTRATEUR) La semaine dernière.Un pirate selon le nom de compte «Baphomet» a initialement déclaré qu'ils travaillaient sur un plan d'urgence pour le forum après l'arrestation (https://www.blomberg.com/news/articles/2023-03-17/dark-web-breachforums-opérated-chargé-with-computer-crime) de Conor de 21 ans
In an abrupt about-face, the new administrator of popular cybercriminal platform BreachForums said they plan to shut down the site after its previous administrator was [allegedly arrested](https://therecord.media/breachforums-arrest-new-administrator) last week. A hacker going by the account name “Baphomet” initially said they were working through an emergency plan for the forum after the [arrest](https://www.bloomberg.com/news/articles/2023-03-17/dark-web-breachforums-operator-charged-with-computer-crime) of 21-year-old Conor |
★★★ | ||
|
2023-03-21 12:35:00 | Ransomware \\ 'Probablement \\' pour cibler les systèmes de transport OT, avertit UE Cyber Agency [Ransomware \\'likely\\' to target transportation OT systems, warns EU cyber agency] (lien direct) |
Les attaques de ransomwares sont devenues la cybernatre la plus importante face au secteur des transports de l'Union européenne, selon une nouvelle analyse publiée mardi.Le [rapport de 50 pages] (https://www.enisa.europa.eu/publications/enisa-transport-thereat-paysage) de l'Agence de l'Union européenne pour la cybersécurité (EISA) est la première analyse que l'agence a effectuée dans laMenaces auxquelles sont confrontés les secteurs de l'aviation, de la maritime, des chemins de fer et des routes.Il prévient que
Ransomware attacks have become the most significant cyberthreat facing the transport sector in the European Union, according to new analysis published Tuesday. The [50-page report](https://www.enisa.europa.eu/publications/enisa-transport-threat-landscape) from the European Union Agency for Cybersecurity (ENISA) is the first analysis the agency has conducted into the threats facing the aviation, maritime, railway and road sectors. It warns that |
Ransomware | ★★ | |
|
2023-03-20 19:58:00 | After BreachForums arrest, new site administrator says the platform will live on (lien direct) |
Un nouvel administrateur s'est intensifié pour reprendre BreachForums - une plate-forme cybercriminale populaire dont le propriétaire présumé a été arrêté la semaine dernière par le FBI.Un pirate selon le nom du compte «Baphomet» a déclaré qu'il travaillait sur un plan d'urgence pour le forum après l'arrestation de Conor Brian Fitzpatrick, 21 ans, à son domicile
A new administrator has stepped up to take over BreachForums - a popular cybercriminal platform whose alleged owner was arrested last week by the FBI. A hacker going by the account name “Baphomet” said he was working through an emergency plan for the forum after the arrest of 21-year-old Conor Brian Fitzpatrick at his home |
★★★ | ||
|
2023-03-20 18:45:00 | Millions in Punjab still without mobile internet as shutdown extended to fourth day (lien direct) |
|
★★★ | ||
|
2023-03-20 13:29:00 | NBA alerts fans after hack of third-party service provider (lien direct) |
The National Basketball Association (NBA) said it is contacting fans after an unnamed service provider was hacked. An NBA spokesperson did not respond to questions about what service provider was hacked and when, but told The Record that the league is now trying to help those affected. “We were recently made aware that an unauthorized |
Hack | ★★ | |
|
2023-03-19 17:15:00 | Pro-Russia hackers are increasingly targeting hospitals, researchers warns (lien direct) |
Cybersecurity researchers said this week that they have observed the pro-Russia hacking group known as Killnet increasingly launch distributed denial of service (DDoS) attacks targeting healthcare organizations since November. Killnet was established following Russia's invasion of Ukraine in February 2022, and spent most of the last year launching DDoS attacks against [governments and companies](https://therecord.media/ddos-denmark-us-russia-killnet) around |
★★★ | ||
|
2023-03-17 04:00:00 | Samsung\'s Exynos chips cited for potentially hackable flaws (lien direct) |
Important Samsung-made chips inside several popular Android devices have serious vulnerabilities that could allow attackers to “silently and remotely” compromise them, researchers said Thursday. Google's Project Zero team said Thursday that the Exynos modems used in multiple series of Samsung, Pixel and Vivo phones could be attacked “with no user interaction,” with methods that “require |
Vulnerability | ★★★ | |
|
2023-03-16 20:56:00 | Kaspersky releases decryptor for ransomware based on Conti source code (lien direct) |
Cybersecurity firm Kaspersky on Thursday released a decryptor that could help victims who had their data locked down by a version of the Conti ransomware. Kaspersky said the tool can be used on a malware strain that infected dozens of “companies and state institutions” throughout December 2022. Kaspersky did not name the strain, but experts |
Ransomware Malware Tool | ★★ | |
|
2023-03-16 18:33:00 | SEC proposes new cyber incident reporting rules for financial orgs (lien direct) |
The Securities and Exchange Commission (SEC) proposed new cybersecurity rules for a range of financial organizations that would force them to report incidents within 48 hours of detection and implement certain security policies. The new rules would also make it mandatory for some financial institutions to annually test and review the effectiveness of their cybersecurity |
★★ | ||
|
2023-03-16 16:50:00 | Russia-aligned \'Winter Vivern\' hackers spotted targeting Ukraine, Europe, India (lien direct) |
A new espionage campaign by a hacking group with suspected ties to Moscow targeted government agencies and telecom operators in Ukraine, India and Europe, researchers said Thursday. The group, known as Winter Vivern, is “highly creative” and operates with limited resources, carefully selecting targets for attacks, according to [an analysis](https://www.sentinelone.com/labs/winter-vivern-uncovering-a-wave-of-global-espionage/) by cybersecurity company SentinelOne. The |
★★★ | ||
|
2023-03-16 16:00:00 | As major elections loom, Meta unveils its internal Online Operations Kill Chain (lien direct) |
Next year will feature some of the most geopolitically significant elections of our times. Voters will be heading to the ballot boxes in not only the United Kingdom, United States and European Union, but also India, Turkey and Taiwan. Anticipating an even greater need for “investigative teams across industry, civil society, and government” to collaborate |
★★★★ | ||
|
2023-03-16 15:30:00 | Senators call on CISA to examine cybersecurity risks of Chinese consumer drones (lien direct) |
A bipartisan group of senators is asking the Cybersecurity and Infrastructure Security Agency (CISA) to examine consumer drones made by a company with “deep ties” to the Chinese Communist Party, warning that they could be used to spy on U.S. critical infrastructure. Several companies are in the process of expanding the use of consumer drones |
★★ | ||
|
2023-03-16 12:45:00 | Healthcare software firm ILS announces data breach affecting more than 4 million people (lien direct) |
The sensitive healthcare data of more than four million people was accessed by hackers who broke into the network of Independent Living Systems (ILS), a healthcare software company based in Miami. The company has provided third-party administrative services to health plans, providers, hospitals, and pharmaceutical and medical device companies for nearly two decades. ILS began |
Data Breach Medical | ★★ | |
|
2023-03-15 17:53:00 | \'Prolific\' crypto money laundering platform ChipMixer shuttered by Germany, US (lien direct) |
European and U.S. authorities have taken down a cryptocurrency mixing platform that facilitated rampant money laundering, and they arrested an alleged operator of the service. On Wednesday, [Europol announced](https://www.europol.europa.eu/media-press/newsroom/news/one-of-darkwebs-largest-cryptocurrency-laundromats-washed-out) that German and U.S. agencies seized four servers belonging to ChipMixer as well as approximately $46.5 million in Bitcoin. The U.S. Department of Justice also announced |
Legislation | ★★★★ | |
|
2023-03-15 13:37:00 | Scammers used compromised police accounts in extortion scheme, prosecutors say (lien direct) |
Two men broke into a federal law enforcement database and a Bangladeshi police officer's email account to conduct extortion schemes, U.S. law enforcement officials say. A federal court in New York [unsealed an indictment](https://www.justice.gov/usao-edny/pr/two-men-charged-breaching-federal-law-enforcement-database-and-posing-police-officers) Tuesday against 19-year-old Sagar Steven Singh and 25-year-old Nicholas Ceraolo, who are accused of illegally collecting personal information about specific people |
Threat | ★★★ | |
|
2023-03-15 12:17:00 | Ransomware gang exploited a zero-day in Microsoft security feature, Google says (lien direct) |
Financially motivated hackers are using a previously undocumented bug in Microsoft's SmartScreen security feature to spread the Magniber ransomware, according to a new report. The cybercriminals have been able to exploit the zero-day vulnerability in SmartScreen since December, researchers from Google's Threat Analysis Group (TAG) said. The Google team [reported](https://blog.google/threat-analysis-group/magniber-ransomware-actors-used-a-variant-of-microsoft-smartscreen-bypass/) its findings about the bug |
Ransomware Vulnerability Threat Threat | ★★ | |
|
2023-03-14 22:00:00 | Kremlin-backed hackers blamed in recent phishing attempts on EU agencies (lien direct) |
A Russian state-backed hacker group known as Nobelium is behind recent attempted cyberattacks on diplomatic entities and government agencies in the European Union, cybersecurity researchers say. In a campaign identified in early March, the hackers sent phishing emails with content related to diplomatic relations between Poland and the U.S., according to a report by cybersecurity |
Hack | APT 29 | ★★★ |
|
2023-03-14 20:36:00 | Hackers used Fortra zero-day to steal sales data from cloud management giant Rubrik (lien direct) |
Cloud data management giant Rubrik confirmed that hackers attacked the company using a vulnerability in a popular file transfer tool. The Clop ransomware group – which has been the primary force behind the [exploitation of a vulnerability](https://therecord.media/forta-goanywhere-mft-file-transfer-zero-day) affecting Fortra's GoAnywhere Managed File Transfer product – added Rubrik to its list of victims on Tuesday. A |
Ransomware Vulnerability Cloud | ★★ | |
|
2023-03-14 18:20:00 | New threat group hacked EU healthcare agency and embassies, researchers say (lien direct) |
A new hacking group is targeting European countries and organizations in an espionage campaign that began in June 2022, according to new research. Cisco's Talos cybersecurity team calls the new group “YoroTrooper” and said it has already successfully compromised accounts connected to a “critical” European Union healthcare agency and the World Intellectual Property Organization (WIPO). |
Threat | ★★★ | |
|
2023-03-14 18:10:00 | UK\'s largest state boarding school announces \'sophisticated cyberattack\' (lien direct) |
Wymondham College, the largest state boarding school in the United Kingdom, announced on Tuesday that it had been hit by a “sophisticated cyberattack”. The school, which has just over 1,200 students aged 11 to 18, did not explain the nature of the attack. Wymondham is the latest educational establishment in the country to face disruption |
★★★ | ||
|
2023-03-14 15:34:00 | CISA unveils ransomware warning pilot for critical infrastructure (lien direct) |
The Cybersecurity and Infrastructure Security Agency (CISA) on Monday unveiled an effort that will collect data about commonly exploited vulnerabilities in ransomware attacks and alert critical infrastructure operators of the risks. [The Ransomware Vulnerability Warning Pilot](https://www.cisa.gov/stopransomware/Ransomware-Vulnerability-Warning-Pilot) launched Jan. 30 and was mandated under the sweeping cyber incident reporting [legislation](https://therecord.media/biden-signs-cyber-incident-reporting-bill-into-law) President Joe Biden signed into law |
Ransomware Vulnerability | ★★★ | |
|
2023-03-14 14:11:00 | Hackers target South Asian government entities with KamiKakaBot malware (lien direct) |
Suspected government-backed hackers are attacking military and government organizations in South Asia with malware called KamiKakaBot that is designed to steal sensitive information. Researchers from Amsterdam-based cybersecurity firm EclecticIQ [attributed](https://blog.eclecticiq.com/dark-pink-apt-group-strikes-government-entities-in-south-asian-countries#A1) the attacks to the advanced persistent threat (APT) group Dark Pink. The group's previous victims include military, government, religious and non-profit organizations in Cambodia, Indonesia, |
Malware Threat | ★★ | |
|
2023-03-14 12:34:00 | Amazon-owned Ring denies \'ransomware event\' following darknet listing (lien direct) |
The smart doorbell and security camera company Ring has denied that it suffered a ransomware attack after the company was listed on a prominent ransomware gang's extortion site. The ALPHV ransomware group, also known as BlackCat, added the listing for Ring to its site late on Monday evening, adding: “There's always an option to let |
Ransomware | ★★★ | |
|
2023-03-14 12:01:00 | Medical device giant says cyberattack leaked sensitive data of 1 million people (lien direct) |
Medical device maker Zoll said a cyberattack in January exposed the sensitive information of more than 1 million people. In documents [provided](https://apps.web.maine.gov/online/aeviewer/ME/40/ab192c35-667d-4bc9-ad18-fa710bd10b15.shtml) to Maine's Attorney General, Zoll said the incident started on January 28 when they “detected unusual activity” on their internal network. The company added that information was accessed on February 2. Zoll said |
Medical | ★★★ | |
|
2023-03-13 23:02:00 | Analysts tracking $197 million theft from DeFi lender Euler Finance (lien direct) |
Hackers reportedly stole $197 million in cryptocurrency from the decentralized finance (DeFi) platform Euler Finance in the latest flash loan attack to target the industry. Euler Labs did not respond to requests for comment but [confirmed](https://twitter.com/eulerfinance/status/1635218198042918918) the attack on Monday morning. It released a second statement in the afternoon saying law enforcement has been contacted |
Threat | ★★★ | |
|
2023-03-13 18:25:00 | Death registry system in Hawaii had data breach, health department says (lien direct) |
Hawaii's Department of Health says it is sending out breach notification letters after a cyberattack in January gave hackers limited access to the state's death registry. Officials [warned Friday](https://health.hawaii.gov/news/newsroom/department-of-health-to-send-notifications-regarding-unauthorized-access-to-electronic-death-registry-system/) that although death certificates were not accessed, people who recently had a death in the family should “remain vigilant about any remaining unsettled matters such as |
Threat | ★★★ | |
|
2023-03-13 13:01:00 | UK launches new agency to tackle state-sponsored threats to business (lien direct) |
The British government has announced a new body to help businesses and organizations to defend themselves against national security threats, including Chinese attempts at intellectual property theft. The National Protective Security Authority (NPSA) which is part of MI5 - the U.K.'s domestic intelligence service - will offer advice to businesses on “state-sponsored attempts at stealing |
Legislation | ★★★ | |
|
2023-03-13 12:10:00 | Hospital in Brussels latest victim in spate of European healthcare cyberattacks (lien direct) |
A university hospital in Brussels has become the latest institution targeted in a spate of cyberattacks against European hospitals. Ambulances were diverted from the Centre Hospitalier Universitaire (CHU) Saint-Pierre this weekend following the attack in the early hours of Friday morning. Details about the attack and the perpetrators have not yet been disclosed. CHU Saint-Pierre's |
★★★ | ||
|
2023-03-13 10:43:00 | Estonian official says parliamentary elections were targeted by cyberattacks (lien direct) |
Estonia's parliamentary elections this month were unsuccessfully targeted by cyberattacks, one of the country's leading cybersecurity officials told The Record. The elections marked the first time that the majority of Estonians cast ballots using the country's [internet voting system](https://www.youtube.com/watch?v=uz9CUK0Ii6Q). While officials in countries like the United Kingdom have domestically warned that such systems introduce risks |
Threat Guideline | ★★★ | |
|
2023-03-10 12:00:00 | Ransomware tracker: the latest figures [March 2023] (lien direct) |
* Note: this Ransomware Tracker is updated on the 10th day of each month to stay current * Unlike past years, cybercriminals didn't take a break over the winter holidays. The number of victims posted on ransomware extortion sites rose more than 20% in December to 241 organizations - the highest monthly count since April, |
Ransomware | ★★ | |
|
2023-03-09 20:15:00 | Canadian military: Ransomware attack on contractor didn\'t touch defense systems (lien direct) |
Canada's defense department confirmed Thursday that its systems were not affected by a ransomware attack on engineering giant Black & McDonald. Black & McDonald did not respond to repeated requests for comment, but a spokesperson for Canada's Department of National Defence told The Record that it was aware of a ransomware attack on the company. |
Ransomware | ★★★ |
To see everything:
Our RSS (filtrered)
