Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-11-23 18:45:00 |
Panaseer Launches Guidance on Security Controls Ahead of EU\'s New Legislation (lien direct) |
The cybersecurity monitoring firm offers 18 recommendations on security controls to help organizations anticipate tougher cybersecurity regulations |
|
|
★★★
|
|
2022-11-23 18:00:00 |
CISA Updates Guidelines to Increase Resilience of Infrastructure Planning (lien direct) |
They expand the framework's scope by adding new resources and tools to support SLTT partners |
|
|
★★★
|
|
2022-11-23 17:00:00 |
Meta Removes Pro-US Accounts in Middle East and Central Asia (lien direct) |
The operation relied on many internet services, including Telegram, Twitter, YouTube and others |
|
|
★★★
|
|
2022-11-23 16:00:00 |
Qakbot Infections Linked to Black Basta Ransomware Campaign (lien direct) |
Threat actors obtained admin access in two hours and then deployed ransomware in under 12 hours |
Threat
Ransomware
|
|
|
|
2022-11-23 10:30:00 |
Yanluowang Ransomware\'s Russian Links Laid Bare (lien direct) |
Another dump of chat records provides insight into threat group |
Threat
|
|
★★★★
|
|
2022-11-23 10:00:00 |
UK Privacy Tsar Defends Controversial Enforcement Strategy (lien direct) |
Information commissioner wants to avoid "money-go-round" of government fines |
|
|
★★★
|
|
2022-11-23 09:30:00 |
Dozens of Russian Groups Steal 50 Million User Passwords (lien direct) |
Info-stealing malware infected nearly one million devices in 2022 |
Malware
|
|
★★★
|
|
2022-11-22 18:00:00 |
Ducktail Hacker Group Evolves, Targets Facebook Business Accounts (lien direct) |
Activity observed since early September featured new avenues to spear-phish targets |
|
|
★★★
|
|
2022-11-22 17:00:00 |
US Takes Down Domains Used in \'Pig Butchering\' Cryptocurrency Scheme (lien direct) |
The US Attorney's Office for the Eastern District of Virginia made the announcement on Monday |
|
|
★★★
|
|
2022-11-22 16:00:00 |
Firms Spend $1197 Per Employee Yearly to Address Cyber-Attacks (lien direct) |
The data excludes compliance fines, ransomware costs and losses from non-operational processes |
Ransomware
|
|
★★★★
|
|
2022-11-22 10:45:00 |
Estonian Duo Arrested for Masterminding $575m Ponzi Scheme (lien direct) |
US authorities unseal 18-count indictment |
|
|
|
|
2022-11-22 10:00:00 |
Experts Warn Threat Actors May Abuse Red Team Tool Nighthawk (lien direct) |
C2 framework could be the next Cobalt Strike, says Proofpoint |
Threat
Tool
|
|
|
|
2022-11-22 09:30:00 |
Credential Stuffers Steal $300K from DraftKings Customers (lien direct) |
Complaints about poor customer service flood Twitter |
|
|
★★★
|
|
2022-11-21 18:00:00 |
Google Wins Legal Battle Against Glupteba Botnet (lien direct) |
The tech giant said the court's ruling against the botnet operators set a crucial legal precedent |
|
|
|
|
2022-11-21 17:00:00 |
Thousands of Algolia API Keys Could Expose Users\' Data (lien direct) |
The majority were from shopping, education, lifestyle, business and medical firms |
|
|
|
|
2022-11-21 16:00:00 |
Luna Moth Phishing Extortion Campaign Targets Businesses in Multiple Sectors (lien direct) |
It leverages extortion without encryption and has cost victims hundreds of thousands of dollars |
Threat
|
|
★★
|
|
2022-11-21 11:00:00 |
Private Equity Exposed by Cyber-Hygiene Shortcomings (lien direct) |
Fifth of portfolio companies feature "zero tolerance findings" |
|
|
|
|
2022-11-21 10:00:00 |
New AXLocker Ransomware Steals Victims\' Discord Tokens (lien direct) |
Researchers also discover two additional new variants |
Ransomware
|
|
|
|
2022-11-21 09:30:00 |
Ten Charged in $11m Healthcare BEC Plots (lien direct) |
Several of the men diverted funds intended for hospitals |
|
|
|
|
2022-11-18 16:30:00 |
CISA, NSA, ODNI Publish Software Supply Chain Guidelines For Customers (lien direct) |
The come after the August release of guidance for developers and the October one for suppliers |
|
|
|
|
2022-11-18 15:45:00 |
Shoppers Warned Stay Alert this Black Friday as Hackers Renew Efforts (lien direct) |
Cyber-criminals are exploiting the busy period during both purchase and delivery stages |
|
|
|
|
2022-11-18 15:00:00 |
Instagram Credential Phishing Attacks Bypass Microsoft Email Security (lien direct) |
The attack bypassed both SPF and DMARC email authentication checks |
|
|
|
|
2022-11-18 14:15:00 |
Emerging Threat Actor DEV-0569 Expands Its Toolkit to Deliver Royal Ransomware (lien direct) |
As well as malvertising and phishing links, the new threat actor is now also using contact forms to deliver its payloads, found Microsoft |
Threat
Ransomware
|
|
|
|
2022-11-18 10:30:00 |
Netflix Phishing Emails Surge 78% (lien direct) |
Social engineers are using Unicode techniques to bypass filters |
|
|
|
|
2022-11-18 10:00:00 |
Russian Duo Indicted Over E-Book Piracy (lien direct) |
St Petersburg couple were arrested in Argentina |
|
|
|
|
2022-11-18 09:30:00 |
Hive Ransomware Has Made $100m to Date (lien direct) |
CISA notice warns of 1300 victims and counting |
Ransomware
|
|
|
|
2022-11-17 18:00:00 |
Zeus Botnet Suspected Leader Arrested in Geneva (lien direct) |
Vyacheslav Igorevich Penchukov was arrested in Geneva on October 23, 2022, and is now pending extradition to the US |
|
|
|
|
2022-11-17 17:00:00 |
Security Budget Cuts and Recession Spark Worries Among IT Admins (lien direct) |
The report suggests 44% agree their firm will cut security spending in the next year |
|
|
|
|
2022-11-17 16:00:00 |
Hundreds of Amazon RDS Snapshots Discovered Leaking Users\' Data (lien direct) |
The discovery was made by security researchers at Mitiga |
|
|
|
|
2022-11-17 14:30:00 |
More Than Half of Black Friday Spam Emails Are Scams (lien direct) |
New research analyzes email scam techniques in the build-up to this year's Black Friday |
Spam
|
|
|
|
2022-11-17 13:00:00 |
Cybersecurity Industry Must Maintain Public Faith in Technology, Says NCSC Founder (lien direct) |
The NCSC's founding CEO, Ciaran Martin, explains why the cyber industry is now a public good |
|
|
|
|
2022-11-17 10:45:00 |
PCI Council Launches Flexible Mobile Payments Standard (lien direct) |
Announcement recognizes growing volume of smartphone payments |
|
|
|
|
2022-11-17 10:10:00 |
US: Iranian Hackers Breached Government with Log4Shell (lien direct) |
Threat actors installed crypto-miner and achieved persistence |
Threat
|
|
|
|
2022-11-17 09:30:00 |
Chinese Spy Gets 20 Years for Aviation Espionage Plot (lien direct) |
US authorities land a rare win in fight against state-backed info-theft |
|
|
|
|
2022-11-16 18:00:00 |
Android Privacy Sandbox Beta to Roll Out By Early 2023 (lien direct) |
The project aims to bring new and more private advertising solutions to mobile |
|
|
|
|
2022-11-16 17:00:00 |
Majority of Companies Reduce Cybersecurity Staff Over Holidays (lien direct) |
Cybereason's latest report is based on a survey of more than 1200 cybersecurity professionals |
|
|
|
|
2022-11-16 16:00:00 |
Botnets, Trojans, DDoS From Ukraine and Russia Have Increased Since Invasion (lien direct) |
The news comes from a report by Top10VPN and is based on data by the Shadowserver Foundation |
|
|
|
|
2022-11-16 12:00:00 |
State-Backed APT Group Activity Continuing Apace (lien direct) |
The report outlines recent APT group activity from Russia, China, Iran and North Korea |
|
|
|
|
2022-11-16 10:45:00 |
Euro Authorities Warn World Cup Fans Over Qatari Apps (lien direct) |
Security and privacy concerns mount for those attending matches |
|
|
|
|
2022-11-16 10:10:00 |
Most Neurodiverse Women in Tech Feel Unsupported: Study (lien direct) |
Report suggests high demand for talent from security sector employers |
|
|
|
|
2022-11-16 09:30:00 |
LockBit Remains Most Prolific Ransomware in Q3 (lien direct) |
Phobos is a close second, according to Trellix |
Ransomware
|
|
|
|
2022-11-15 18:00:00 |
Billbug Targets Government Agencies in Multiple Asian Countries (lien direct) |
According to Symantec, the targeting of a certificate authority was notable |
|
|
|
|
2022-11-15 17:00:00 |
Remote Code Execution Discovered in Spotify\'s Backstage (lien direct) |
Spotify ranked the vulnerability as critical, with a CVSS score of 9.8 |
Vulnerability
|
|
|
|
2022-11-15 16:00:00 |
Lazarus Backdoor DTrack Evolves to Target Europe and Latin America (lien direct) |
DTrack has not changed substantially, but Lazarus made some “interesting” modifications |
|
APT 38
|
★★★★★
|
|
2022-11-15 10:10:00 |
Police Celebrate Arrest of 59 Suspected Scammers (lien direct) |
Month-long European operation focused on online fraudsters |
|
|
|
|
2022-11-15 09:30:00 |
Google to Pay $392m in Landmark Privacy Case (lien direct) |
Multi-state settlement is largest in US history |
|
|
|
|
2022-11-14 18:00:00 |
GitHub Now Supports Private Vulnerability Reporting For Public Repositories (lien direct) |
The feature needs to be manually enabled by repository maintainers |
Vulnerability
|
|
★★
|
|
2022-11-14 17:00:00 |
NSA Guide Helps Firms Protect Against Memory Safety Vulnerabilities (lien direct) |
The document describes situations where cyber actors steal sensitive information and other negative impacts |
|
|
★★★
|
|
2022-11-14 10:45:00 |
Mass Email Extortion Campaign Claims Server Hack (lien direct) |
Threat actors claim they'll destroy victims' reputation if they don't pay |
Threat
Hack
|
|
|
|
2022-11-14 10:10:00 |
UK Shoppers Lost £15m+ to Scammers Last Winter (lien direct) |
Cyber experts urge consumers to improve online safety |
|
|
|