Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-07-22 15:22:47 |
Intezer Documents Powerful \'Lightning Framework\' Linux Malware (lien direct) |
Security researchers at Intezer are documenting the discovery of a powerful piece of Linux malware that can stay undetected and has the ability to install rootkits.
|
Malware
|
|
|
|
2022-07-21 13:31:37 |
USCYBERCOM Releases IoCs for Malware Targeting Ukraine (lien direct) |
The United States Cyber Command (USCYBERCOM) this week released indicators of compromise (IoCs) associated with malware families identified in recent attacks targeting Ukraine.
|
Malware
|
|
|
|
2022-07-21 12:40:22 |
Exploitation of Recent Chrome Zero-Day Linked to Israeli Spyware Company (lien direct) |
An actively exploited Chrome zero-day that Google patched on July 4 has been linked to an Israeli spyware company and used in targeted attacks aimed at entities in the Middle East.
|
|
|
|
|
2022-07-20 15:03:45 |
Google, EU Warn of Malicious Russian Cyber Activity (lien direct) |
Russia-linked Turla threat actor spotted using Android malware for first time
Google and the European Union have issued separate warnings this week over Russian cyberattacks and misinformation campaigns.
|
Malware
Threat
|
|
|
|
2022-07-20 08:37:31 |
Belgium Says Chinese APTs Targeted Interior, Defense Ministries (lien direct) |
Belgium on Monday accused Chinese state-sponsored hackers of launching cyberattacks against its interior and defense ministries.
Belgium noted in a statement that it has detected cyber intrusions from hacking groups tracked as APT27, APT30, APT31, and Gallium.
|
|
APT 30
APT 27
APT 31
|
|
|
2022-07-19 15:28:29 |
New \'CloudMensis\' macOS Spyware Used in Targeted Attacks (lien direct) |
Researchers at cybersecurity company ESET have analyzed a previously undocumented macOS malware that appears to have been used in targeted attacks to steal valuable information from compromised systems.
|
Malware
|
|
★★★★
|
|
2022-07-19 15:03:53 |
Now Live: Cyber Solutions Summit and Expo (lien direct) |
|
|
|
|
|
2022-07-19 13:20:21 |
Ongoing \'Roaming Mantis\' Smishing Campaign Hits Over 70,000 Users in France (lien direct) |
A Chinese threat actor named Roaming Mantis has been targeting Android users in France with the MoqHao malware in a new smishing campaign, security researchers with Sekoia warn.
|
Malware
Threat
|
|
|
|
2022-07-18 14:52:01 |
New Deanonymization Attack Works on Major Browsers, Websites (lien direct) |
Researchers with the New Jersey Institute of Technology have devised a new targeted deanonymization attack that relies on a cache side-channel and which they say is efficient on multiple architectures, operating systems, and browser versions, and works on major websites.
|
|
|
|
|
2022-07-18 12:47:42 |
Researchers Say Thai Pro-Democracy Activists Hit by Spyware (lien direct) |
Cybersecurity researchers reported details Monday of cases where Thai activists involved in the country's pro-democracy protests had their cell phones or other devices infected and attacked with government-sponsored spyware.
|
|
|
|
|
2022-07-18 12:10:24 |
PLC and HMI Password Cracking Tools Deliver Malware (lien direct) |
Tools advertised as being capable of cracking passwords for HMIs, PLCs and other industrial products have been found to exploit a zero-day vulnerability, and threat actors are using these tools to deliver malware.
|
Malware
Threat
|
|
|
|
2022-07-15 14:19:42 |
Supply Chain Attack Technique Spoofs GitHub Commit Metadata (lien direct) |
Security researchers at Checkmarx are warning of a new supply chain attack technique that relies on spoofed commit metadata to add legitimacy to malicious GitHub repositories.
|
|
|
|
|
2022-07-15 11:06:20 |
Software Vendors Start Patching Retbleed CPU Vulnerabilities (lien direct) |
Vendors have started rolling out software updates to address the recently disclosed Retbleed speculative execution attack targeting Intel and AMD processors.
|
Patching
|
|
|
|
2022-07-15 01:26:53 |
Log4j Software Flaw \'Endemic,\' New Cyber Safety Panel Says (lien direct) |
A computer vulnerability discovered last year in a ubiquitous piece of software is an “endemic” problem that will pose security risks for potentially a decade or more, according to a new cybersecurity panel created by President Joe Biden.
|
Vulnerability
|
|
|
|
2022-07-14 11:30:00 |
Bishop Fox Lands $75 Million Series B Funding (lien direct) |
Arizona-based Bishop Fox raised a massive funding round as venture capital investors continue to bet big on the continuous attack surface management category
|
|
|
|
|
2022-07-13 23:52:50 |
CIA Coder Convicted of Massive Leak of US Hacking Tools (lien direct) |
A former CIA programmer was found guilty in New York federal court Wednesday of the 2017 leak of the US spy agency's most valuable hacking tools to WikiLeaks, two years after his initial prosecution ended in mistrial.
|
|
|
|
|
2022-07-13 19:05:27 |
Retbleed: New Speculative Execution Attack Targets Intel, AMD Processors (lien direct) |
Researchers at Swiss university ETH Zurich have devised a new speculative execution attack that can lead to information leaks and works against both Intel and AMD processors.
|
Guideline
|
|
|
|
2022-07-12 14:11:56 |
Can \'Lockdown Mode\' Solve Apple\'s Mercenary Spyware Problem? (lien direct) |
News Analysis: Cybersecurity experts toss bouquets at Apple for removing attack surface from its flagship platforms and call on competing OS makers to match Cupertino's attempts to neutralize the mercenary spyware business.
|
|
|
|
|
2022-07-12 10:42:41 |
UK Warns Lawyers Not to Advise Ransomware Payments (lien direct) |
The NCSC and the ICO have warned UK lawyers not to advise clients to pay a ransom to cybercriminals
In a letter addressed to UK lawyers dated July 7, 2022, the UK's National Cyber Security Center (NCSC) and the Information Commissioner's Office (ICO), have reiterated – with teeth – the official stance on not paying a ransom.
|
Ransomware
|
|
|
|
2022-07-11 13:04:53 |
Associated Eye Care Discloses Impact From 2020 Netgain Ransomware Attack (lien direct) |
Montana-based Associated Eye Care Partners (AEC) has started informing patients that their personal data might have been compromised during an old ransomware attack targeting Netgain.
|
Ransomware
|
|
|
|
2022-07-11 12:07:04 |
\'Raspberry Robin\' Windows Worm Abuses QNAP Devices (lien direct) |
A recently discovered Windows worm is abusing compromised QNAP network-attached storage (NAS) devices as stagers to spread to new systems, according to Cybereason.
Dubbed Raspberry Robin, the malware was initially spotted in September 2021, spreading mainly via removable devices, such as USB drives.
|
Malware
|
|
|
|
2022-07-08 10:06:12 |
Cyber Insurance Firm Coalition Raises $250 Million at $5 Billion Valuation (lien direct) |
San Francisco-based cyber insurance company Coalition has raised $250 million in a Series F funding round, at a valuation of $5 billion.
|
|
|
|
|
2022-07-07 14:21:31 |
OpenSSL Patches Remote Code Execution Vulnerability (lien direct) |
OpenSSL has issued an urgent advisory to warn of a memory corruption vulnerability that exposes servers to remote code execution attacks.
The vulnerability, tracked as CVE-2022-2274, was introduced in OpenSSL 3.0.4 and could potentially allow malicious hackers to launch remote code attacks on unpatched SSL/TLS server side devices.
|
Vulnerability
|
|
|
|
2022-07-07 12:34:33 |
US: North Korean Hackers Targeting Healthcare Sector With Maui Ransomware (lien direct) |
US government agencies this week issued a joint advisory to warn of North Korean threat actors using the Maui ransomware in attacks targeting the healthcare and public health sector.
|
Ransomware
Threat
|
|
|
|
2022-07-07 10:01:47 |
Marriott Confirms Small-Scale Data Breach (lien direct) |
International hotel chain Marriott has confirmed that an unknown threat actor has accessed data on a computer at one of its hotels.
|
Data Breach
Threat
|
|
|
|
2022-07-07 09:47:33 |
Hackers Using \'Brute Ratel C4\' Red-Teaming Tool to Evade Detection (lien direct) |
The Brute Ratel C4 (BRc4) red-teaming and adversarial attack simulation tool has been used by nation-state attackers to evade detection, according to security researchers at Palo Alto Networks.
|
Tool
|
|
|
|
2022-07-06 18:15:34 |
Apple Adds \'Lockdown Mode\' to Thwart .Gov Mercenary Spyware (lien direct) |
Faced with a surge in state-sponsored mercenary spyware attacks targeting its flagship iOS platform, Apple plans to add a new 'Lockdown Mode' that significantly reduces attack surface and adds technical roadblocks to limit sophisticated software exploits.
|
|
|
|
|
2022-07-06 17:35:35 |
Researchers Flag \'Significant Escalation\' in Software Supply Chain Attacks (lien direct) |
Security researchers at ReversingLabs are warning of a “significant escalation in software supply chain attacks” after discovering more than two dozen malicious NPM packages siphoning user data from mobile and desktop applications.
|
|
|
|
|
2022-07-06 15:51:48 |
Is an Infrastructure War on the Horizon? (lien direct) |
On February 24, Russia launched its full-scale assault on Ukraine. The invader's weapons included tanks, heavy artillery… and software. On April 8, attackers armed with Industroyer2, a species of malware designed to incapacitate power stations and plunge whole cities into darkness, managed to briefly penetrate Ukrainian defenses, putting two million homes at risk.
|
Malware
|
|
|
|
2022-07-06 15:32:35 |
DoD Launches \'Hack US\' Bounties for Major Flaws in Publicly Exposed Assets (lien direct) |
The United States Department of Defense (DoD) has launched a one-week bug bounty program to reward researchers who find high- and critical-severity vulnerabilities in publicly accessible assets owned by the DoD.
|
|
|
|
|
2022-07-06 10:48:56 |
Alleged Chinese Police Database Hack Leaks Data of 1 Billion (lien direct) |
Hackers claim to have obtained a trove of data on 1 billion Chinese from a Shanghai police database in a leak that, if confirmed, could be one of the largest data breaches in history.
|
Hack
|
|
|
|
2022-07-05 18:23:58 |
Data Breach at PFC USA Impacts Patients of 650 Healthcare Providers (lien direct) |
Just ahead of the 4th of July weekend, accounts receivable management firm Professional Finance Company (PFC USA) started sending out data breach notification letters to patients of over 650 healthcare providers across the country.
|
Data Breach
|
|
|
|
2022-07-05 16:36:56 |
UK Military Investigates Hacks on Army Social Media Accounts (lien direct) |
British military authorities are trying to find out who hacked the army's social media accounts over the weekend, flooding them with cryptocurrency videos and posts related to collectible electronic art.
|
Hack
|
|
|
|
2022-07-02 11:14:34 |
Dutch Uni Gets Cyber Ransom Money Back... With Interest (lien direct) |
A Dutch university that fell victim to a massive ransomware attack has partly received back its stolen money... which in the meantime more than doubled in value, a news report said on Saturday.
|
Ransomware
|
|
|
|
2022-06-30 18:31:42 |
Oak9 Lands $8 Million in New Venture Investment (lien direct) |
Chicago-based Infrastructure-as-Code (IaC) startup oak9 has attracted new interest from venture capitalists with Cisco Investments and Morgan Stanley's Next Level Fund joining a new $8 million funding round.
|
|
|
|
|
2022-06-30 17:27:16 |
North Korea Lazarus Hackers Blamed for $100 Million Horizon Bridge Heist (lien direct) |
The infamous North Korean Lazarus hacking group is the prime suspect in the $100 million hack of Harmony's Horizon Bridge, according to new data and research from blockchain analytics firm Elliptic.
|
Hack
|
APT 38
|
|
|
2022-06-30 15:10:56 |
Token Raises $13 Million for Its Biometric Authentication Ring (lien direct) |
Wearable authentication solutions provider Token this week announced that it has raised $13 million in Series B funding. To date, the company has raised $22.9 million.
Led by Grand Oaks Capital, the investment round will allow Token to accelerate product development and to increase demand for its technology.
|
|
|
|
|
2022-06-30 13:37:05 |
Google Workspace Now Warns Admins of Sensitive Changes (lien direct) |
Google this week announced that new warnings added in the Google Workspace Alert Center will keep administrators notified of critical and sensitive configuration changes.
|
|
|
|
|
2022-06-30 12:31:52 |
SOHO Routers in North America and Europe Targeted With \'ZuoRAT\' Malware (lien direct) |
A remote access trojan (RAT) targeting small office/home office (SOHO) devices has remained undetected for nearly two years, according to security researchers with Black Lotus Labs, the threat intelligence arm of Lumen Technologies.
|
Malware
Threat
|
|
|
|
2022-06-30 11:53:50 |
Feature: Securing the Metaverse and Web3 (lien direct) |
Type:
Story
Image:
Link:
Building SecurityInto the Metaverse and Web3
Securing the Metaverse and Web3
|
|
|
★★★★★
|
|
2022-06-30 11:42:17 |
Brocade Vulnerabilities Could Impact Storage Solutions of Several Major Companies (lien direct) |
Broadcom revealed recently that some of the software provided by its storage networking subsidiary Brocade is affected by several vulnerabilities, and it seems possible that the flaws could impact the products of several major companies.
|
|
|
★★★
|
|
2022-06-30 11:11:22 |
Vulnerability in Amazon Photos Android App Exposed User Information (lien direct) |
Cybersecurity firm Checkmarx has published details on a high-severity vulnerability in the Amazon Photos Android application that could have allowed malicious apps to steal an Amazon access token.
|
Vulnerability
|
|
|
|
2022-06-30 10:33:18 |
RSAC22 and Infosecurity Europe, Three Weeks, Two Events (lien direct) |
In the last couple of years, events were taken online, moved to virtual forums and conducted using social platforms via video set-up. Events became simpler to attend, but the individual component of the experience was missing – we all wanted to mix with our peers and see the eyes of a vendor as they pitch their latest message for automation, intelligence, analytics, or response solutions for cybersecurity.
|
|
|
|
|
2022-06-30 10:20:36 |
Canadian NetWalker Ransomware Affiliate Pleads Guilty in US (lien direct) |
A Canadian national has pleaded guilty in a United States court to charges related to his role in a cybercrime operation involving the NetWalker ransomware.
Sebastien Vachon-Desjardins, 34, is a former Canadian government employee. He was previously sentenced to seven years in prison in Canada for ransomware attacks.
|
Ransomware
Guideline
|
|
★★★★
|
|
2022-06-30 10:18:53 |
Cyberattack Hits Norway, Pro-Russian Hacker Group Fingered (lien direct) |
A cyberattack temporarily knocked out public and private websites in Norway in the past 24 hours, Norwegian authorities said Wednesday.
|
|
|
|
|
2022-06-29 13:57:09 |
Azure Service Fabric Vulnerability Can Lead to Cluster Takeover (lien direct) |
Microsoft has patched a vulnerability that could allow an attacker with access to an Azure Linux container to escalate privileges and take over the entire cluster.
|
Vulnerability
|
|
|
|
2022-06-29 13:31:52 |
Securing the Metaverse and Web3 (lien direct) |
|
|
|
|
|
2022-06-29 13:26:03 |
Firefox 102 Patches 19 Vulnerabilities, Improves Privacy (lien direct) |
Mozilla this week announced the availability of Firefox 102 in the stable channel with patches for 19 vulnerabilities, including four high-severity bugs.
|
|
|
|
|
2022-06-29 11:51:07 |
CISA Calls for Expedited Adoption of Modern Authentication Ahead of Deadline (lien direct) |
The US Cybersecurity and Infrastructure Security Agency (CISA) is urging federal agencies and private organizations to switch to Modern Auth in Exchange Online before October 1, 2022.
|
|
|
|
|
2022-06-29 11:01:02 |
MITRE Publishes 2022 List of 25 Most Dangerous Vulnerabilities (lien direct) |
The US Cybersecurity and Infrastructure Security Agency (CISA) and the nonprofit organization MITRE have published the 2022 list of the 25 most dangerous vulnerabilities.
|
|
|
|