Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-01-25 14:34:52 |
Hackers auction alleged source code for League of Legends (lien direct) |
Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment. [...] |
Hack
Threat
|
|
★★
|
|
2023-01-25 13:45:11 |
Zacks Investment Research data breach affects 820,000 clients (lien direct) |
Hackers breached Zacks Investment Research (Zacks) company last year and gained access to personal and sensitive information belonging to 820,000 customers. [...] |
Data Breach
|
|
★★
|
|
2023-01-25 13:00:10 |
Malware exploited critical Realtek SDK bug in millions of attacks (lien direct) |
Hackers have leveraged a critical remote code execution vulnerability in Realtek Jungle SDK 134 million attacks trying to infect smart devices in the second half of 2022. [...] |
Malware
Vulnerability
|
|
★★
|
|
2023-01-25 09:53:14 |
New stealthy Python RAT malware targets Windows in attacks (lien direct) |
A new Python-based malware has been spotted in the wild featuring remote access trojan (RAT) capabilities to give its operators control over the breached systems. [...] |
Malware
|
|
★★
|
|
2023-01-24 18:07:45 |
Ransomware access brokers use Google ads to breach your network (lien direct) |
A threat actor tracked as DEV-0569 uses Google Ads in widespread, ongoing advertising campaigns to distribute malware, steal victims' passwords, and ultimately breach networks for ransomware attacks. [...] |
Ransomware
Threat
|
|
★★
|
|
2023-01-24 12:23:16 |
Riot Games receives ransom demand from hackers, refuses to pay (lien direct) |
Riot Games says it will not pay the ransom demanded by the attackers responsible for the security breach the company disclosed last week. [...] |
|
|
★★★
|
|
2023-01-24 09:49:59 |
FBI: North Korean hackers stole $100 million in Harmony crypto hack (lien direct) |
The FBI has concluded its investigation on the $100 million worth of ETH heist that hit Harmony Horizon in June 2022 and validated that the hackers responsible for it are the Lazarus group and APT38. [...] |
Hack
Medical
|
APT 38
|
★★
|
|
2023-01-23 15:18:02 |
Russia\'s largest ISP says 2022 broke all DDoS attack records (lien direct) |
Russia's largest internet service provider Rostelecom says 2022 was a record year for Distributed denial of service attacks (DDoS) targeting organizations in the country. [...] |
|
|
★★
|
|
2023-01-23 09:44:13 |
Microsoft plans to kill malware delivery via Excel XLL add-ins (lien direct) |
Microsoft is working on adding XLL add-in protection for Microsoft 365 customers by including automated blocking of all such files downloaded from the Internet. [...] |
Malware
|
|
★★
|
|
2023-01-22 13:56:45 |
(Déjà vu) FanDuels warns of data breach after customer info stolen in vendor hack (lien direct) |
The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] |
Data Breach
Hack
|
|
★★
|
|
2023-01-22 13:56:45 |
FanDuel discloses data breach caused by recent MailChimp hack (lien direct) |
The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] |
Data Breach
Hack
|
|
★★
|
|
2023-01-21 14:54:41 |
Riot Games hacked, delays game patches after security breach (lien direct) |
Riot Games, the video game developer and publisher behind League of Legends and Valorant, says it will delay game patches after its development environment was compromised. [...] |
|
|
★★★
|
|
2023-01-21 11:15:30 |
(Déjà vu) Hackers now use Microsoft OneNote attachments to spread malware (lien direct) |
Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets. [...] |
Malware
Threat
|
|
★★★★★
|
|
2023-01-21 11:15:30 |
Beware: Hackers now use OneNote attachments to spread malware (lien direct) |
Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets. [...] |
Malware
Threat
|
|
★
|
|
2023-01-20 11:02:16 |
New Boldmove Linux malware used to backdoor Fortinet devices (lien direct) |
Suspected Chinese hackers exploited a recently disclosed FortiOS SSL-VPN vulnerability as a zero-day in December, targeting a European government and an African MSP with a new custom 'BOLDMOVE' Linux and Windows malware. [...] |
Malware
Vulnerability
|
|
★★★
|
|
2023-01-19 18:30:22 |
New \'Hook\' Android malware lets hackers remotely control your phone (lien direct) |
A new Android malware named 'Hook' is being sold by cybercriminals, boasting it can remotely take over mobile devices in real-time using VNC (virtual network computing). [...] |
Malware
|
|
★★★
|
|
2023-01-19 17:19:22 |
T-Mobile hacked to steal data of 37 million accounts in API data breach (lien direct) |
T-Mobile disclosed a new data breach after a threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts through one of its Application Programming Interfaces (APIs). [...] |
Data Breach
Threat
|
|
★
|
|
2023-01-19 14:21:11 |
Ransomware gang steals data from KFC, Taco Bell, and Pizza Hut brand owner (lien direct) |
Yum! Brands, the fast food brand operator of KFC, Pizza Hut, Taco Bell, and The Habit Burger Grill fast-food restaurant chains, has been targeted by a ransomware attack that forced the closure of 300 locations in the United Kingdom. [...] |
Ransomware
|
|
★★★
|
|
2023-01-19 12:55:02 |
Roaming Mantis\' Android malware adds DNS changer to hack WiFi routers (lien direct) |
Starting in September 2022, the 'Roaming Mantis' credential theft and malware distribution campaign was observed using a new version of the Wroba.o/XLoader Android malware that incorporates a function for detecting specific WiFi routers and changing their DNS. [...] |
Malware
Hack
|
|
★★
|
|
2023-01-19 09:47:38 |
PayPal accounts breached in large-scale credential stuffing attack (lien direct) |
PayPal is sending out notices of a data breach to thousands of users who had their accounts accessed by credential stuffing actors, resulting in the compromise of some personal data. [...] |
Data Breach
|
|
★★★
|
|
2023-01-19 09:00:00 |
New \'Blank Image\' attack hides phishing scripts in SVG files (lien direct) |
An unusual phishing technique has been observed in the wild, hiding empty SVG files inside HTML attachments pretending to be DocuSign documents. [...] |
|
|
★★★
|
|
2023-01-18 16:11:30 |
MailChimp discloses new breach after employees got hacked (lien direct) |
Email marketing firm MailChimp suffered another breach after hackers accessed an internal customer support and account administration tool, allowing the threat actors to access the data of 133 customers. [...] |
Threat
|
|
★
|
|
2023-01-18 14:57:51 |
Ukraine links data-wiping attack on news agency to Russian hackers (lien direct) |
The Computer Emergency Response Team of Ukraine (CERT-UA) has linked a destructive malware attack targeting the country's National News Agency of Ukraine (Ukrinform) to Sandworm Russian military hackers. [...] |
Malware
|
|
★★★
|
|
2023-01-17 18:09:38 |
(Déjà vu) Hackers push malware via Google search ads for VLC, 7-Zip, CCleaner (lien direct) |
Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results. [...] |
Malware
|
CCleaner
CCleaner
|
★
|
|
2023-01-17 18:09:38 |
Hackers turn to Google search ads to push info-stealing malware (lien direct) |
Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results. [...] |
Malware
|
|
★★★
|
|
2023-01-17 14:53:40 |
Hackers can use GitHub Codespaces to host and deliver malware (lien direct) |
GitHub Codespaces, a cloud-hosted integrated development environment (IDE), has a port forwarding feature that malicious actors can abuse to host and distribute malware to unaware developers. [...] |
Malware
|
|
★
|
|
2023-01-17 09:50:18 |
Nissan North America data breach caused by vendor-exposed database (lien direct) |
Nissan North America has begun sending data breach notifications informing customers of a breach at a third-party service provider that exposed customer information. [...] |
Data Breach
|
|
★★★★
|
|
2023-01-16 14:08:19 |
Datadog rotates RPM signing key exposed in CircleCI hack (lien direct) |
Cloud security firm Datadog says that one of its RPM GPG signing keys and its passphrase have been exposed during a recent CircleCI security breach. [...] |
Hack
|
|
★★
|
|
2023-01-16 11:41:30 |
Malicious \'Lolip0p\' PyPi packages install info-stealing malware (lien direct) |
A threat actor has uploaded to the PyPI (Python Package Index) repository three malicious packages that carry code to drop info-stealing malware on developers' systems. [...] |
Malware
Threat
|
|
★★★
|
|
2023-01-16 07:15:34 |
Avast releases free BianLian ransomware decryptor (lien direct) |
Security software company Avast has released a free decryptor for the BianLian ransomware strain to help victims of the malware recover locked files without paying the hackers. [...] |
Ransomware
Malware
|
|
★★
|
|
2023-01-14 17:28:34 |
CircleCI\'s hack caused by malware stealing engineer\'s 2FA-backed session (lien direct) |
Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee's 2FA-backed SSO session, allowing access to the company's internal systems. [...] |
Malware
Hack
|
|
★★★★
|
|
2023-01-13 19:17:55 |
The Week in Ransomware - January 13th 2023 - LockBit in the spotlight (lien direct) |
The LockBit ransomware operation has again taken center stage in the ransomware news, as we learned yesterday they were behind the attack on Royal Mail. [...] |
Ransomware
|
|
★★
|
|
2023-01-13 11:47:56 |
NortonLifeLock warns that hackers breached Password Manager accounts (lien direct) |
Gen Digital, formerly Symantec Corporation and NortonLifeLock, is sending data breach notifications to customers, informing them that hackers have successfully breached Norton Password Manager accounts in credential-stuffing attacks. [...] |
Data Breach
|
|
★★★
|
|
2023-01-12 17:24:02 |
RAT malware campaign tries to evade detection using polyglot files (lien direct) |
Operators of the StrRAT and Ratty remote access trojans (RAT) are running a new campaign using polyglot MSI/JAR and CAB/JAR files to evade detection from security tools. [...] |
Malware
|
|
★★★
|
|
2023-01-12 15:41:56 |
Android TV box on Amazon came pre-installed with malware (lien direct) |
A Canadian system administrator discovered that an Android TV box purchased from Amazon was pre-loaded with persistent, sophisticated malware baked into its firmware. [...] |
Malware
|
|
★★★
|
|
2023-01-12 11:31:36 |
Vice Society ransomware claims attack on Australian firefighting service (lien direct) |
Australia's Fire Rescue Victoria has disclosed a data breach caused by a December cyberattack that is now claimed by the Vice Society ransomware gang. [...] |
Ransomware
Data Breach
|
|
★★
|
|
2023-01-11 16:55:47 |
Scattered Spider hackers use old Intel driver to bypass security (lien direct) |
A financially motivated threat actor tracked as Scattered Spider was observed attempting to deploy Intel Ethernet diagnostics drivers in a BYOVD (Bring Your Own Vulnerable Driver) attack to evade detection from EDR (Endpoint Detection and Response) security products. [...] |
Threat
|
|
★★★
|
|
2023-01-11 12:24:19 |
Gootkit malware abuses VLC to infect healthcare orgs with Cobalt Strike (lien direct) |
The Gootkit loader malware operators are running a new SEO poisoning campaign that abuses VLC Media Player to infect Australian healthcare entities with Cobalt Strike beacons. [...] |
Malware
|
|
★★
|
|
2023-01-11 02:00:00 |
New Dark Pink APT group targets govt and military with custom malware (lien direct) |
Attacks targeting government agencies and military bodies in multiple countries in the APAC region have been attributed to what appears to be a new advanced threat actor that leverages custom malware to steal confidential information. [...] |
Malware
Threat
|
|
★★
|
|
2023-01-10 18:05:01 |
Over 1,300 fake AnyDesk sites push Vidar info-stealing malware (lien direct) |
A massive campaign using over 1,300 domains to impersonate the official AnyDesk site is underway, all redirecting to a Dropbox folder recently pushing the Vidar information-stealing malware. [...] |
Malware
|
|
★★★★
|
|
2023-01-10 15:20:13 |
Trojan Puzzle attack trains AI assistants into suggesting malicious code (lien direct) |
Researchers at the universities of California, Virginia, and Microsoft have devised a new poisoning attack that could trick AI-based coding assistants into suggesting dangerous code. [...] |
|
|
★★★★
|
|
2023-01-10 10:30:50 |
(Déjà vu) StrongPity hackers target Android users via trojanized Telegram app (lien direct) |
The StrongPity APT hacking group is distributing a fake Shagle chat app that is a trojanized version of the Telegram for Android app with an added backdoor. [...] |
|
|
★
|
|
2023-01-10 10:30:50 |
Hackers target Android users with fake Shagle video-chat app (lien direct) |
The StrongPity APT hacking group is distributing a fake Shagle chat app that is a trojanized version of the Telegram for Android app with an added backdoor. [...] |
|
|
★★★
|
|
2023-01-09 16:16:26 |
Microsoft: Kubernetes clusters hacked in malware campaign via PostgreSQL (lien direct) |
The Kinsing malware is now actively breaching Kubernetes clusters by leveraging known weaknesses in container images and misconfigured, exposed PostgreSQL containers. [...] |
Malware
|
Uber
|
★★
|
|
2023-01-09 15:13:05 |
Darknet drug markets move to custom Android apps for increased privacy (lien direct) |
Online markets selling drugs and other illegal substances on the dark web have started to use custom Android apps for increased privacy and to evade law enforcement. [...] |
|
|
★★
|
|
2023-01-07 10:12:06 |
Malicious PyPi packages create CloudFlare Tunnels to bypass firewalls (lien direct) |
Six malicious packages on PyPI, the Python Package Index, were found installing information-stealing and RAT (remote access trojan) malware while using Cloudflare Tunnel to bypass firewall restrictions for remote access. [...] |
Malware
|
|
★★
|
|
2023-01-06 13:11:19 |
FCC wants telecom carriers to report data breaches faster (lien direct) |
The U.S. Federal Communications Commission wants to strengthen federal law enforcement and modernize breach notification requirements for telecommunications companies so that they notify customers of security breaches faster. [...] |
|
|
★★
|
|
2023-01-05 17:58:30 |
Rackspace: Customer email data accessed in ransomware attack (lien direct) |
Rackspace revealed on Thursday that attackers behind last month's incident accessed some of its customers' Personal Storage Table (PST) files which can contain a wide range of information, including emails, calendar data, contacts, and tasks. [...] |
Ransomware
|
|
★
|
|
2023-01-05 10:17:25 |
SpyNote Android malware infections surge after source code leak (lien direct) |
The Android malware family tracked as SpyNote (or SpyMax) has had a sudden increase in detections in the final quarter of 2022, which is attributed to a source code leak of one of its latest, known as 'CypherRat.' [...] |
Malware
|
|
★★
|
|
2023-01-05 00:39:59 |
CircleCI warns of security breach - rotate your secrets! (lien direct) |
CircleCI, a software development service has disclosed a security incident and is urging users to rotate their secrets. The CI/CD platform touts having a user base comprising more than one million engineers who rely on the service for "speed and reliability" of their builds. [...] |
|
|
★★
|