Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-01-03 23:06:01 |
Major cybersecurity concerns this year examined (lien direct) |
Critical sectors will continue to face cybersecurity threats, ransomware attacks and foreign spyware will persist, and the cybersecurity workforce shortage will remain this year, reports The Hill. |
Ransomware
|
|
★★
|
|
2023-01-03 23:02:07 |
Ransomware attack disrupts Texas city (lien direct) |
Ransomware attack disrupts Texas city Texas' Tomball City had most of its networks compromised by a ransomware attack on Dec. 20, resulting in damages estimated to be more than $50,000, according to Community Impact. |
Ransomware
|
|
★★
|
|
2023-01-03 23:01:09 |
New York county cyberattack under investigation (lien direct) |
Patch reports that New York's Rockland County had its County Clerk's Office's record management servers disconnected following a malware attack against database software administrator Cott Systems around Christmas. |
Malware
|
|
★★
|
|
2023-01-03 23:00:22 |
Vice Society claims leak of stolen Xavier University data (lien direct) |
Louisiana-based Xavier University had data stolen from its students and employees allegedly leaked by the Vice Society ransomware gang following university officials' refusal to pay the demanded ransom, reports Government Technology. |
Ransomware
|
|
★★
|
|
2023-01-03 22:59:46 |
US hit with deluge of ransomware attacks in 2022 (lien direct) |
More than 200 larger government, educational, and healthcare entities across the U.S. have been compromised by ransomware attacks last year, BleepingComputer reports. |
Ransomware
|
|
★★
|
|
2023-01-03 22:54:37 |
BlackCat leaks data stolen from financial services firm (lien direct) |
The ALPHV ransomware gang, also known as BlackCat, copied a victims site and used it to publish all the stolen files after its demands for payment were not met, BleepingComputer reports. |
Ransomware
|
|
★★
|
|
2023-01-03 22:47:30 |
Ransomware attack disrupts major Canadian copper mine (lien direct) |
Major Canadian copper mine Copper Mountain Mining Corporation had its corporate and mine IT systems compromised by a ransomware attack on Dec. 27, prompting mill shutdowns and the use of manual processes, reports The Record, a news site by cybersecurity firm Recorded Future. |
Ransomware
|
|
★★★
|
|
2023-01-03 22:44:35 |
Play ransomware gang behind Rackspace attack (lien direct) |
Play ransomware gang behind Rackspace attack Texas Public Radio reports that the Play ransomware gang has been noted by Rackspace to be the perpetrators of an attack against its Hosted Exchange platform in early December. |
Ransomware
|
|
★★
|
|
2023-01-03 22:37:00 |
Expert: Uninsurable cyberattacks imminent (lien direct) |
Zurich Insurance Group CEO Mario Greco said in an interview with the Financial Times that cybersecurity risks could soon become uninsurable, taking the place of climate change, pandemics, and other natural disasters, as the costs of cyberattacks are expected to significantly increase, TechSpot reports. |
|
|
★★
|
|
2023-01-03 22:33:52 |
Port of Lisbon cyberattack claimed by LockBit (lien direct) |
The LockBit ransomware gang has admitted launching an attack against the website of Portugal's Port of Lisbon, from which it claimed having stolen the port's audits, financial reports, contracts, budgets, ship logs, and other cargo and crew information, according to The Record, a news site by cybersecurity firm Recorded Future. |
Ransomware
|
|
★★
|
|
2023-01-03 22:10:14 |
Shared responsibility in ransomware protection emphasized (lien direct) |
Organizations should have a shared responsibility in ensuring ransomware protection with their software providers, according to SiliconAngle. "It is a shared responsibility between the cloud provider, in this case AWS and the user. |
Ransomware
|
|
★★
|
|
2023-01-03 22:07:21 |
Massive API theft confirmed by crypto trading platform 3Commas (lien direct) |
BleepingComputer reports that cryptocurrency trading platform 3Commas has been impacted by a massive API key leak, with an anonymous Twitter user exposing 10% of the 100,000 API keys it claims to have stolen from the platform. |
|
|
★★
|
|
2023-01-03 21:56:44 |
Cyberattack disclosed by Jakks Pacific following ransomware gangs\' leaks (lien direct) |
Major U.S. toy manufacturer Jakks Pacific has disclosed being impacted by a ransomware attack after having its stolen data exposed by the Hive and BlackCat ransomware operations, reports The Record, a news site by cybersecurity firm Recorded Future. |
Ransomware
|
|
★★
|
|
2023-01-03 19:39:05 |
Scripps Health, Avalon Healthcare reach settlements after data breaches (lien direct) |
Avalon Healthcare settled with state regulators after its 2019 email hack due to failing to timely report, while Scripps Health will pay $3.5 million after its 2021 data theft tied to ransomware. |
Hack
|
|
★★
|
|
2023-01-03 16:13:06 |
Security robots market set to more than quadruple by 2030 (lien direct) |
Lack of qualified security workers will drive market growth as researchers cite concerns over potential privacy and human rights abuses. |
|
|
★★
|
|
2023-01-03 15:52:02 |
Office Space, Lockbit, 380 volts in Manilla, PyTorch, & Non-Binary RAM - SWN #264 (lien direct) |
Pas de details / No more details |
|
|
★
|
|
2023-01-03 15:25:59 |
NJ hospital CentraState diverting patients after cyberattack, IT shutdown (lien direct) |
This healthcare cybersecurity roundup includes a LockBit ransomware attack against a Canadian hospital and is led by an ongoing outage at New Jersey's CentraState Medical Center. |
Ransomware
Medical
|
|
★
|
|
2023-01-03 10:58:53 |
2023 threat predictions: Beware \'economic uncertainty\' for the cybersecurity community (lien direct) |
With 2023 in mind, the phrase “economic uncertainty” was often invoked in predictions from market leaders, and may be the mantra for security professionals decision making. |
Threat
Guideline
|
|
★★★
|
|
2022-12-29 12:41:05 |
Ohio court: Non-physical software damage in ransomware attack not covered under insurance (lien direct) |
The Supreme Court of Ohio ruled that a ransomware attack against a business should not be covered by insurance because the attack did not physically or directly cause harm to the tangible components of the software programs encrypted in the incident. |
Ransomware
|
|
★★
|
|
2022-12-29 12:29:03 |
Mango Markets hacker arrested (lien direct) |
The U.S. |
|
|
★★
|
|
2022-12-29 11:56:34 |
Malware increasingly spread through Google Ads exploits (lien direct) |
More threat actors have been distributing malware through fraudulent websites of widely used software products that are being promoted by exploiting the Google Ads platform, according to BleepingComputer. |
Malware
Threat
|
|
★★
|
|
2022-12-29 11:51:00 |
Intrado ransomware attack claimed by Royal ransomware gang (lien direct) |
BleepingComputer reports that telecommunications firm Intrado was claimed to have been attacked by the Royal ransomware gang. |
Ransomware
|
|
★★
|
|
2022-12-27 15:06:21 |
North Korean hacking outfit impersonates venture capital firms (lien direct) |
The group - tracked as “BlueNoroff” by Kaspersky and “HiddenCobra” by others - registered at least 70 web domains over the last year mimicking the websites of real venture capital firms in Japan and other financial institutions to use in a newly uncovered spearphishing and malware-delivery campaign. |
|
|
★★★
|
|
2022-12-27 13:41:22 |
Nearly $3M stolen in cyberattack against cryptomining pool BTC.com (lien direct) |
Major cryptocurrency mining firm BIT Mining and cryptomining pool subsidiary BTC.com had nearly $3 million in assets stolen as a result of a cyberattack on Dec. 3, reports SiliconAngle. |
|
|
★★★
|
|
2022-12-27 13:35:58 |
(Déjà vu) RisePro info-stealer distributed through PrivateLoader PPI service (lien direct) |
New information-stealing malware RisePro is being distributed using the PrivateLoader pay-per-install malware downloader service |
Malware
|
|
★
|
|
2022-12-27 13:34:53 |
Security system bypass techniques added to GuLoader malware downloader (lien direct) |
Advanced malware downloader GuLoader, also known as CloudEyE, was discovered by CrowdStrike researchers to be leveraging new techniques for bypassing security software. |
Malware
|
|
★★★
|
|
2022-12-27 13:06:19 |
DDoS attacks continue to cripple organizations: here\'s how to stay prepared (lien direct) |
Consider these four tips for mitigating DDoS attacks. |
|
|
★★
|
|
2022-12-27 06:03:08 |
Cyber Insurance: The MSSP\'s Biggest Salesman? - Joseph Edward Brunsman - CFH #2 (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2022-12-23 16:45:11 |
Cybercriminals using search engine ads to direct users to sites with malware, FBI warns (lien direct) |
The FBI issued a public service announcement warning that cybercriminals are impersonating brands via search engine advertisements to direct users to malicious sites. |
|
|
★★★
|
|
2022-12-23 13:02:01 |
Data breach hits sports betting firm BetMGM (lien direct) |
Data breach hits sports betting firm BetMGM New Jersey-based sports betting operator BetMGM has been impacted by a data breach that resulted in the theft of its customers' personal information, BleepingComputer reports. |
Data Breach
|
|
★★★
|
|
2022-12-23 12:58:25 |
FIN7 hacking group elevates status in cybercrime space (lien direct) |
Significant activity during the past year has made the FIN7 hacking group, also known as Carbanak, a prominent force in the cybercrime landscape, with the operation having compromised more than 8,147 victims around the world, most of which were in the U.S., according to The Hacker News. |
|
|
★★
|
|
2022-12-23 12:56:06 |
Royal ransomware tied to Conti gang (lien direct) |
Former Conti Team One threat actors have been operating Royal ransomware, which has been used in a slew of cyberattacks between September and December, SecurityWeek reports. |
Ransomware
Threat
|
|
★★
|
|
2022-12-23 12:55:11 |
New custom ransomware variant leveraged by Vice Society operation (lien direct) |
BleepingComputer reports that the Vice Society ransomware operation has shifted to the new PolyVice ransomware strain, which includes a robust hybrid encryption scheme combining the asymmetric NTRUEncrypt and symmetric ChaCha20-Poly1305-based encryption algorithms. |
Ransomware
|
|
★★
|
|
2022-12-23 12:41:01 |
After ransomware hits Colombian energy firm, Moody\'s says low patch rate suggests inadequacies in cyber practices (lien direct) |
A ransomware attack at top Colombian energy company Empresas Publicas de Medellin (EPM) may damage its credit quality, setting an alarm clock for the critical infrastructure industry to develop efficient mitigation practices and vulnerability management programs, Moody's said. |
Ransomware
Vulnerability
|
|
★★
|
|
2022-12-23 12:18:10 |
Suspected ransomware attack hits Guardian newspaper (lien direct) |
British news organization The Guardian has been impacted by a suspected ransomware attack on December 20, disrupting some business services but not its online site and applications, reports The Record, a news site by cybersecurity firm Recorded Future. |
Ransomware
|
|
★★
|
|
2022-12-22 16:35:50 |
Three ways companies can meet the evolving requirements of the insurance carriers (lien direct) |
Cyber insurance has gotten expensive, but there are steps companies can take to lighten the load. |
|
|
★★
|
|
2022-12-21 19:59:49 |
Godfather uses \'web fakes\' to serve-up a \'banking trojan that\'s impossible to refuse\' (lien direct) |
Group-IB researchers say Godfather uses “web fakes” to lure victims and then drain their accounts; a link to Russian-speaking threat actors hinted. |
Threat
|
|
★★
|
|
2022-12-21 18:21:25 |
(Déjà vu) Ransomware groups use new exploit to bypass ProxyNotShell mitigations for Microsoft Exchange (lien direct) |
Threat actors affiliated with the Play ransomware strain are leveraging a never-before-seen exploit method that bypasses Microsoft's ProxyNotShell URL rewrite mitigation to gain remote code execution through Outlook Web Access (OWA). |
Ransomware
|
|
★
|
|
2022-12-21 17:53:39 |
Morley reaches $4.3M settlement after hacking incident leads to data theft for 694K (lien direct) |
A settlement has been reached in the lawsuit filed against Morley in the wake of a 2021 hacking and data exfiltration incident. |
|
|
★★
|
|
2022-12-21 17:13:15 |
Consumer cyber defenses lagging (lien direct) |
U.S. consumers continue to lag in identifying and defending against cybersecurity threats even though the average prevalence of connected devices per household has risen by 25% between 2020 and 2022, according to TechRepublic. |
|
|
★★★
|
|
2022-12-21 17:09:03 |
KmsdBot potentially a DDoS-for-hire service (lien direct) |
Akamai researchers hypothesized that the KmsdBot botnet, which has been used to target security firms, luxury brands, and game modifiers for "Red Dead Redemption 2" and "Grand Theft Auto V," may have been a DDoS-for-hire service, with most of its victims scattered across North America, Europe, and Asia, reports The Hacker News. |
|
|
★★
|
|
2022-12-21 17:04:56 |
Fake payload deployed by Raspberry Robin in new attacks (lien direct) |
New Raspberry Robin malware attacks against government systems and telecommunication service providers involved the delivery of a fake payload aimed at bypassing detection and confusing researchers, according to BleepingComputer. |
Malware
|
|
★★
|
|
2022-12-21 17:03:42 |
More cybercriminals leveraging RisePro info-stealing malware (lien direct) |
More than 2,000 logs have been noted by the cybercrime market Russian Market to have been stolen using the new RisePro information stealer, indicating its rising popularity among threat actors, SecurityWeek reports. |
Malware
Threat
|
|
★★
|
|
2022-12-21 16:59:43 |
XLL files in Excel increasingly used for malicious activity (lien direct) |
Significantly more advanced persistent threat groups and malware families have adopted XLL files in Excel to serve as an initial vector following the adoption of the technique by the Dridex and Formbook commodity malware families last year, reports The Register. |
Malware
Threat
|
|
★★
|
|
2022-12-21 11:35:31 |
Royal overtakes LockBit as top ransomware in November as attacks increase 41% (lien direct) |
November's sharp increase in reported incidents is backed by uncommon contributions, according to a new report by NCC Group. |
Ransomware
|
|
★★
|
|
2022-12-20 20:24:13 |
Clop ransomware group targeting provider-patient trust by infecting medical images (lien direct) |
Hold Security has observed the Clop ransomware group interacting with providers as if they were patients in order to send them medical images infected with malware. |
Ransomware
Medical
|
|
★★★
|
|
2022-12-20 17:55:56 |
Automated threats leading cause of security incidents for online retailers (lien direct) |
Sixty-two percent of cybersecurity incidents against online retailers stemmed from automated threats including account takeover, web scraping, API exploitation, credit card fraud, Grinch bots, and distributed denial-of-service attacks making automated attacks against retailers more than two times higher than other industries, reports VentureBeat. |
|
|
★★
|
|
2022-12-20 17:54:44 |
DraftKings breach impacts almost 68K customers (lien direct) |
Nearly 68,000 DraftKings customers had their personal data compromised after a credential stuffing attack against the sports betting platform last month, according to BleepingComputer. |
|
|
★★★
|
|
2022-12-20 17:53:48 |
Stolen Events DC files exposed by BlackCat ransomware gang (lien direct) |
District of Columbia convention and sports authority Events D.C. had files stolen from a cyberattack first reported two months ago leaked by the BlackCat ransomware gang, also known as ALPHV, last week, reports StateScoop. |
Ransomware
|
|
★★★
|
|
2022-12-20 17:50:57 |
Novel Rust-based Agenda ransomware variant discovered (lien direct) |
Ransomware-as-a-service operation Qilin has developed a novel Rust-based variant of the Agenda ransomware strain, which was originally based in the Go programming language and was used to compromise the healthcare and education sectors in Indonesia, Thailand, Saudi Arabia, and South Africa, The Hacker News reports. |
Ransomware
|
|
★★★
|