Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-04 09:30:00 |
World\'s Most Expensive Observatory Floored by Cyber-Attack (lien direct) |
ALMA suspends astronomical observations |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 17:00:00 |
Cyber Threat Landscape Shaped by Ukraine Conflict, ENISA Report Reveals (lien direct) |
The EU cybersecurity agency released its 10th annual threat landscape report on November 3, 2022 |
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 17:00:00 |
TikTok Confirms Chinese Staff Can Access UK and EU User Data (lien direct) |
The news comes from the social media giant's head of privacy in Europe, Elaine Fox |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 16:00:00 |
RomCom Weaponized KeePass and SolarWinds Instances to Target Ukraine, Maybe UK (lien direct) |
The discovery comes from the BlackBerry Research & Intelligence Team |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 15:00:00 |
Zurich and Mondelez Reach NotPetya Settlement, but Cyber-Risk May Increase (lien direct) |
The parties have mutually resolved the matter, but details of the settlement were not provided |
|
NotPetya
NotPetya
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 12:00:00 |
Bot Warning for Retailers Ahead of Busy Shopping Season (lien direct) |
Automated threats accounted for 62% of attacks last year |
|
|
★★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 10:15:00 |
UK Security Agency to Scan the Country for Bugs (lien direct) |
NCSC wants to determine "the vulnerability of the UK" |
Vulnerability
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-03 09:30:00 |
Threat Actor "OPERA1ER" Steals Millions from Banks and Telcos (lien direct) |
More than 30 organizations compromised by off-the-shelf tools |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-02 17:00:00 |
US Hacker Group Indicted For Million-Dollar RICO Conspiracy (lien direct) |
The group banded together to engage in a sophisticated cybercrime and tax fraud scheme |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-02 16:00:00 |
Android Apps With a Million Downloads Led Users to Phishing Sites (lien direct) |
Chrome tabs remained open in the background, even while the smartphone was locked |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-02 15:00:00 |
Dropbox Suffers Breach, 130 GitHub Repositories Compromised (lien direct) |
Dropbox believes the actors behind the attack are the same that targeted GitHub users in September |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-02 11:00:00 |
Mobile Phishing Attacks on Government Staff Soar (lien direct) |
Lookout report finds over-reliance on unmanaged devices |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-02 09:30:00 |
OpenSSL Security Advisory Downgraded to High Severity (lien direct) |
Experts still recommend patching affected systems |
Patching
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-02 09:02:00 |
A Third of Security Leaders Considering Quitting Their Current Role (lien direct) |
Of those thinking of leaving their current organization, a third would do so within the next six months, according to the research |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-01 17:00:00 |
Osaka Hospital Halts Services After Ransomware Attack (lien direct) |
Emergency operations are continuing, but the hospital system failed and cannot be accessed |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-01 16:00:00 |
CISA Publishes Multi-Factor Authentication Guidelines to Tackle Phishing (lien direct) |
The guidelines describe methods threat actors use to steal MFA credentials and how to defend against them |
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-01 15:00:00 |
LockBit Dominates Ransomware Campaigns in 2022: Deep Instinct (lien direct) |
The figures come from the 2022 Interim Cyber Threat Report by Deep Instinct |
Ransomware
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-01 10:30:00 |
NCSC Issued 34 Million Cyber Alerts in Past Year (lien direct) |
UK security agency helps organizations with early warning service |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-01 10:00:00 |
FTC Takes Enforcement Action Against EdTech Giant Chegg (lien direct) |
Regulator's order requires firm to improve data security practices |
|
|
★★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-11-01 09:30:00 |
Fraudulent Instruction Losses Spike in 2022 (lien direct) |
Insurer says claimants have risen in nearly every sector |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-31 17:00:00 |
CISA, FBI, MS-ISAC Publish Guidelines For Federal Agencies on DDoS Attacks (lien direct) |
The guidance is for network defenders and leaders to understand and respond to DDoS attacks |
Guideline
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-31 16:00:00 |
Data Breach of Missile Maker MBDA May Have Been Real: CloudSEK (lien direct) |
The researchers were able to obtain the ZIP file containing the samples for the data breach |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-31 13:00:00 |
Hackers Target Australian Defense Communications Platform With Ransomware (lien direct) |
The firm is one of the defense department's external providers employed to run one of its websites |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-31 10:30:00 |
Europe\'s Biggest Copper Producer Hit by Cyber-Attack (lien direct) |
Aurubis forced to take IT systems offline |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-31 10:00:00 |
Most Online Shoppers Would Leave Retailer Following Breach (lien direct) |
Akamai study finds low levels of trust among consumers |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-31 09:30:00 |
Russia Suspected in Truss Phone Hacking Scandal (lien direct) |
One year's worth of messages reportedly downloaded from former PM's device |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-28 17:00:00 |
CISA Unveils Cybersecurity Goals For Critical Infrastructure Sectors (lien direct) |
The document is the result of a July 2021 security memorandum signed by President Biden |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-28 16:00:00 |
Cranefly Hackers Use Stealthy Techniques to Deliver and Control Malware (lien direct) |
These attackers reportedly spent at least 18 months on victim networks |
Malware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-28 15:00:00 |
Raspberry Robin Worm Actors Linked to Clop, LockBit Ransomware Groups (lien direct) |
Microsoft said the worm had alternate infection methods beyond its original USB drive spread |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-28 09:30:00 |
Cloud and Hybrid Working Security Concerns Surge (lien direct) |
IEEE report predicts biggest risks for 2023 |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-28 09:00:00 |
Twilio Reveals Further Security Breach (lien direct) |
June vishing attack led to compromise of customer data |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-28 08:30:00 |
Santander: Radical Action Needed to Tackle APP Fraud (lien direct) |
Banking giant wants more industry collaboration |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-27 17:00:00 |
Kiss-a-Dog Cryptojacking Campaign Targets Docker and Kubernetes (lien direct) |
The threat actors also utilized user and kernel mode rootkits to hide the activity |
Threat
|
Uber
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-27 16:00:00 |
iOS Bluetooth Bug Allowed Apps to Eavesdrop on User Conversations (lien direct) |
It affected all Apple devices, including Macs, iPhone, iPad, Apple Watch, and Apple TV |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-27 15:00:00 |
LinkedIn Unveils New Security Features to Tackle Fraud (lien direct) |
The social media company made the announcement in a blog post on Tuesday |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-27 09:30:00 |
White House Launches Chemical Sector Security Sprint (lien direct) |
Bid to improve critical national infrastructure continues |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-27 09:00:00 |
GitHub Bug Exposed Repositories to Hijacking (lien direct) |
Checkmarx warns over 10,000 popular packages could be vulnerable |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-27 08:30:00 |
Medibank Backtracks: All Customer Data Was Exposed to Hackers (lien direct) |
Insurer's incident response processes under fire |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 17:00:00 |
Vice Society Ransomware Campaigns Continue to Impact US Education Sector (lien direct) |
In several cases, the group did not deploy ransomware and performed extortion using stolen data |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 16:00:00 |
Typosquat Campaign Targeting Android, Windows Users Now Counts 600+ Domains (lien direct) |
The list of suspicious domains grew to more than 600, with 9 of these created in the last week |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 15:00:00 |
Hive Ransomware Group Leaks Data Stolen in Tata Power Cyber-Attack (lien direct) |
The leak reportedly affected several of Tata's 12 million customers and included various PII |
Ransomware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 13:45:00 |
London\'s New Cyber Resilience Centre Set to Fight Cybercrime in the Capital (lien direct) |
This is the latest of a network of nine cybersecurity centers spread across England and Wales to supper SMEs against cybercrime |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 12:02:00 |
Supply Chain Attacks or Vulnerabilities Experienced by 80% of Orgs, BlackBerry Finds (lien direct) |
The report highlighted the enormous business costs of supply chain software attacks |
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 09:45:00 |
Ransomware Threat Shifts from US to EMEA and APAC (lien direct) |
SonicWall figures show overall attacks trending down |
Threat
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 09:15:00 |
See Tickets Discloses Major Card Data Breach (lien direct) |
Unspecified number of customers impacted over 2.5 years |
Data Breach
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-26 08:45:00 |
ICO Warns of "Immature" Biometric Tech (lien direct) |
UK privacy regulator says vulnerable people may be at risk |
|
|
★★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 17:00:00 |
Data Breaches Rise By 70% Globally in Q3 2022 (lien direct) |
Russia had the most breaches overall and France had the highest breach density |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 16:00:00 |
(Déjà vu) Apple Fixes Actively Exploited iOS and iPadOS Zero-Day Vulnerability (lien direct) |
The out-of-bounds write issue in the kernel could be exploited to execute arbitrary code |
Vulnerability
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 15:00:00 |
POS Malware Used to Steal Details of Over 167,000 Credit Cards (lien direct) |
The operators could make over $3m if they decide to sell the card dumps on underground forums |
Malware
|
|
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-10-25 09:45:00 |
Ukraine Warns of Cuba Ransomware Campaign (lien direct) |
Financially motivated affiliate appears to be to blame |
Ransomware
|
|
|