Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-03-08 17:31:00 |
Russian Influence Duo Targets Politicians, CEOs for Embarrassing Video Calls (lien direct) |
A state-backed threat actor impersonates political figures, tricking a prime minister, a former US president, and several European mayors and MPs into video calls later used in an anti-Ukraine influence campaign. |
Threat
|
|
★★★
|
|
2023-03-04 00:20:00 |
Rapid7 Brings Threat Intel Data to USF Cybersecurity Lab (lien direct) |
The Rapid7 Cyber Threat Intelligence Laboratory at the University of South Florida will provide data on real-world threats for faculty and students to use in their research. |
Threat
|
|
★★★
|
|
2023-03-02 18:24:00 |
What GoDaddy\'s Years-Long Breach Means for Millions of Clients (lien direct) |
The same "sophisticated" threat actor has pummeled the domain host on an ongoing basis since 2020, making off with customer logins, source code, and more. Here's what to do. |
Threat
|
|
★★★
|
|
2023-03-01 22:50:00 |
(Déjà vu) DoControl\'s 2023 SaaS Security Threat Landscape Report Finds Enterprises and Mid-Market Organizations Have Exposed Public SaaS Assets (lien direct) |
Volume of SaaS assets and events magnifies risks associated with manual management and remediation. |
Threat
Cloud
|
|
★
|
|
2023-02-24 20:50:00 |
Canadian Telecom Firm Telus Reportedly Investigating Breach (lien direct) |
A threat actor has leaked data - purportedly, samples of Telus employee payroll data and source code - on a hacker site. |
Threat
|
|
★★★
|
|
2023-02-23 19:54:00 |
Hydrochasma Threat Group Bombards Targets with Slew of Commodity Malware, Tools (lien direct) |
A previously unidentified threat group uses open source malware and phishing to conduct cyber-espionage on shipping and medical labs associated with COVID-19 treatments and vaccines. |
Threat
Malware
Medical
|
|
★★★
|
|
2023-02-23 19:30:07 |
Unanswered Questions Cloud the Recent Targeting of an Asian Research Org (lien direct) |
A novel threat group, utilizing new malware, is out in the wild. But the who, what, where, and why are yet to be determined, and there's evidence of a false-flag operation. |
Threat
|
|
★★★
|
|
2023-02-21 23:20:00 |
Malwarebytes Expands Platform With New Application Block Capabilities (lien direct) |
Latest threat prevention module helps resource-strapped security teams block unsafe, untrusted or vulnerable applications. |
Threat
|
|
★★★
|
|
2023-02-21 18:45:13 |
Cyberthreats, Regulations Mount for Financial Industry (lien direct) |
Nation-state adversaries, new reporting regulations, and a fast-paced threat landscape mean that financial services and technology firms need to bolster their security posture. |
Threat
|
|
★★
|
|
2023-02-21 15:00:00 |
Insider Threats Don\'t Mean Insiders Are Threatening (lien direct) |
By implementing tools that enable internal users to do their jobs efficiently and securely, companies reduce insider threat risk by building insider trust. |
Threat
|
|
★★
|
|
2023-02-20 14:00:00 |
Majority of Ransomware Attacks Last Year Exploited Old Bugs (lien direct) |
New research shows that 57 vulnerabilities that threat actors are currently using in ransomware attacks enable everything from initial access to data theft. |
Threat
Ransomware
|
|
★★★
|
|
2023-02-17 21:00:00 |
Google Translate Helps BEC Groups Scam Companies in Any Language (lien direct) |
BEC gangs Midnight Hedgehog and Mandarin Capybara show how online marketing and translation tools are making it easy for these threat groups to scale internationally. |
Threat
|
|
★★★
|
|
2023-02-16 22:10:00 |
Atlassian: Leaked Data Stolen via Third-Party App (lien direct) |
SiegedSec threat group leaked data that Atlassian says was taken from app used to coordinate in-office resources. |
Threat
|
|
★★★
|
|
2023-02-16 16:41:00 |
SideWinder APT Spotted Stealing Crypto (lien direct) |
The nation-state threat group has been attacking a wider range of victims and regions than previously thought. |
Threat
|
APT-C-17
|
★★
|
|
2023-02-14 15:27:00 |
ThreatConnect Closes 2022 with Accelerated Growth in Threat Intelligence Operations (TI Ops) (lien direct) |
Pas de details / No more details |
Threat
|
|
★★
|
|
2023-02-13 21:30:00 |
Accenture Acquires Morphus, Brazil-Based Cybersecurity Company (lien direct) |
Morphus's deep cybersecurity research expertise, cyber defense and threat intelligence services widen Accenture's cybersecurity footprint in Latin America. |
Threat
|
|
★★
|
|
2023-02-10 02:00:00 |
Google Cloud Connects Chronicle to Health ISAC Feed (lien direct) |
Members of the Health-ISAC can ingest threat indicators directly into Chronicle to investigate whether the threat is present in their environment. |
Threat
|
|
★★★
|
|
2023-02-09 21:00:00 |
Avast Threat Report: Consumers Plagued With Refund Fraud, Tech Support Scams, and Adware (lien direct) |
Avast researchers also discovered and reported two zero-day vulnerabilities, and observed the spread of information-stealing malware, remote access trojans, and botnets. |
Threat
|
|
★★
|
|
2023-02-09 20:45:08 |
7 Critical Cloud Threats Facing the Enterprise in 2023 (lien direct) |
From shadow data to misconfigurations, and overpermissioning to multicloud sprawl, Dark Reading's cloud security slideshow helps security pros understand the threat horizon. |
Threat
|
|
★★★★
|
|
2023-02-09 18:52:00 |
Phishing Surges Ahead, as ChatGPT & AI Loom (lien direct) |
AI and phishing-as-a-service (PaaS) kits are making it easier for threat actors to create malicious email campaigns, which continue to target high-volume applications using popular brand names. |
Threat
|
ChatGPT
|
★★★
|
|
2023-02-09 16:47:31 |
Twitter Implements API Paywall; But Will That Solve Its Enormous Bot Crisis? (lien direct) |
Restricting the Twitter API will have implications across Twitter, the broader Internet, and society, experts say. Is there a cybersecurity silver lining, or will threat actors pay to play? |
Threat
|
|
★★
|
|
2023-02-07 19:18:00 |
New Banking Trojan Targeting 100M Pix Payment Platform Accounts (lien direct) |
New malware demonstrates how threat actors are pivoting toward payment platform attacks, researchers say. |
Threat
Malware
|
|
★★★
|
|
2023-02-06 15:00:00 |
How Cybercriminals Are Operationalizing Money Laundering and What to Do About It (lien direct) |
It's time to share threat intelligence, prioritize digital literacy and cyber hygiene, and use digital risk-protection services to stem the rising money laundering tide. |
Threat
|
|
★★
|
|
2023-02-02 09:00:00 |
Lazarus Group Rises Again, to Gather Intelligence on Energy, Healthcare Firms (lien direct) |
An OpSec slip from the North Korean threat group helps researchers attribute what was first suspected as a ransomware attack to nation-state espionage. |
Threat
Ransomware
|
APT 38
|
★★
|
|
2023-02-01 20:58:00 |
Greater Incident Complexity, Shift in How Threat Actors Use Stolen Data, Will Drive the Cyber Threat Landscape in 2023, Says Beazley Report (lien direct) |
Noting 13% year-over-year growth in fraudulent instruction as a cause of loss, report predicts organizations must get smarter about educating employees to spot fraudulent tactics. |
Threat
|
|
★★★
|
|
2023-02-01 05:00:00 |
Checkmarx Launches Threat Intelligence for Open Source Packages (lien direct) |
The new API incorporates threat intelligence research and employs machine learning to identify threats in the supply chain. |
Threat
|
|
★★
|
|
2023-01-31 20:00:41 |
Phishers Trick Microsoft Into Granting Them \'Verified\' Cloud Partner Status (lien direct) |
Everyone on Twitter wants a blue check mark. But Microsoft Azure's blue badges are even more valuable to a threat actor stealing your data via malicious OAuth apps. |
Threat
|
|
★★
|
|
2023-01-30 20:28:00 |
The Threat from Within: 71% of Business Leaders Surveyed Think Next Cybersecurity Breach Will Come from the Inside (lien direct) |
Pas de details / No more details |
Threat
|
|
★★
|
|
2023-01-25 16:22:00 |
ThreatConnect Extends Threat Intelligence Platform to Enable Threat Intelligence Operations (TI Ops) (lien direct) |
Pas de details / No more details |
Threat
|
|
★★
|
|
2023-01-25 15:38:00 |
BlackBerry\'s Inaugural Quarterly Threat Intelligence Report Reveals Threat Actors Launch One Malicious Threat Every Minute (lien direct) |
Report identifies 1.75m cyberattacks were stopped by BlackBerry in the last 90 days. |
Threat
|
|
★★
|
|
2023-01-25 00:34:00 |
Skyhawk Security Launches Multicloud Runtime Threat Detection and Response Platform (lien direct) |
Skyhawk Synthesis extends cloud security misconfiguration detection across multiple clouds, the company says - throwing cloud security posture management in for free. |
Threat
|
|
★★
|
|
2023-01-24 15:59:32 |
Microsoft to Block Excel Add-ins to Stop Office Exploits (lien direct) |
The company will block the configuration files, which interact with Web applications - since threat actors increasingly use the capability to install malicious code. |
Threat
|
|
★★★★★
|
|
2023-01-23 21:07:00 |
Organizations Likely to Experience Ransomware Threat in the Next 24 Months, According to Info-Tech Research Group (lien direct) |
Security leaders must build resiliency against these complex attacks immediately. |
Threat
Ransomware
Guideline
|
|
★★
|
|
2023-01-23 15:00:00 |
Hunting Insider Threats on the Dark Web (lien direct) |
Use threat intelligence to reduce chance of success for malicious insider and Dark Web threats. |
Threat
|
|
★★
|
|
2023-01-20 21:37:22 |
T-Mobile Breached Again, This Time Exposing 37M Customers\' Data (lien direct) |
This time around, weak API security allowed a threat actor to access account information, the mobile phone giant reported. |
Threat
|
|
★
|
|
2023-01-20 21:18:04 |
Ransomware Profits Decline as Victims Dig In, Refuse to Pay (lien direct) |
Two new reports show ransomware revenues for threat actors dropped sharply in 2022 as more victims ignored ransom demands. |
Threat
Ransomware
|
|
★
|
|
2023-01-18 17:10:00 |
ICS Confronted by Attackers Armed With New Motives, Tactics, and Malware (lien direct) |
Threat actors are diversifying across all aspects to attack critical infrastructure, muddying the threat landscape, and forcing industrial organizations to rethink their security. |
Threat
Malware
Industrial
|
|
★★
|
|
2023-01-18 15:15:00 |
Perception Point Launches Advanced Threat Protection and Rapid Remediation for Zendesk Customers (lien direct) |
The integration provides crucial protection for businesses' most vulnerable departments - help desks and customer support teams - preventing the most advanced threats sent by online users. |
Threat
|
|
★★
|
|
2023-01-18 15:00:00 |
Cybersecurity and the Myth of Quiet Quitting (lien direct) |
People are working harder than ever, but they're not happy about it - and the insider threat is all too real. |
Threat
|
|
★★
|
|
2023-01-17 22:08:00 |
Initial Access Broker Market Booms, Posing Growing Threat to Enterprises (lien direct) |
A rapid increase in the number of operators in the space - the "locksmiths" of the cyber underground - has made it substantially cheaper for cybercriminals to buy access to target networks. |
Threat
|
|
★★★
|
|
2023-01-13 18:03:04 |
CircleCI, LastPass, Okta, and Slack: Cyberattackers Pivot to Target Core Enterprise Tools (lien direct) |
High-profile software provider compromises in the past few months show that threat actors are actively targeting the services underpinning corporate infrastructure. Here's what to do about it. |
Threat
|
LastPass
|
★★★★
|
|
2023-01-13 15:00:00 |
Fast-Track Secure Development Using Lite Threat Modeling (lien direct) |
Establish clear and consistent processes and standards to scale lite threat modeling's streamlined approach across your organization. |
Threat
|
|
★★
|
|
2023-01-10 15:30:00 |
Vade Releases Advanced Threat Intel & Investigation Capabilities (lien direct) |
New Add-On Empowers SOCs and MSPs to Automate & Orchestrate Incident Response for Microsoft 365. |
Threat
|
|
★★★
|
|
2023-01-10 15:04:00 |
Netskope Threat Research: Malware-Delivering Cloud Apps Nearly Tripled in 2022 (lien direct) |
401 distinct cloud apps shown to deliver malware; Microsoft OneDrive delivered 30% of all cloud malware downloads. |
Threat
Malware
|
|
★★★
|
|
2023-01-06 19:02:34 |
CISOs Are Focused on These 3 Trends. Are You? (lien direct) |
The macro issues shaping the threat landscape can help security pros reset their priorities and reformulate strategy. |
Threat
|
|
★★
|
|
2023-01-06 18:46:00 |
PurpleUrchin Gang Embraces DevOps In Massive Cloud Malware Campaign (lien direct) |
The Automated Libra group is deploying all components of its campaign in an automated manner via containers, stealing free trial resources for cryptomining, but the threat could get larger. |
Threat
Malware
|
|
★★★
|
|
2023-01-05 18:02:00 |
Bluebottle Continues Bank Heist Assault With Signed Malware (lien direct) |
The financially motivated threat group, also known as OPERA1ER, demonstrated an evolution in tactics in its compromise of three Francophone financial institutions in Africa, likely adding to its $11 million to-date haul. |
Threat
Malware
|
|
★★★
|
|
2023-01-05 16:09:51 |
Threat Actors Evade Detection Through Geofencing & Fingerprinting (lien direct) |
Security teams may be missing targeted attacks and advanced exploits if attackers are using evasive techniques to avoid detection. Defenders need to up their game. |
Threat
|
|
★★★★
|
|
2022-12-27 15:00:00 |
The Threat of Predictive Policing to Data Privacy and Personal Liberty (lien direct) |
Inaccurate information from data brokers can damage careers and reputations. It's time for US privacy laws to change how law enforcement and legal agencies obtain and act on data. |
Threat
|
|
★★
|
|
2022-12-22 21:23:00 |
New Brand of Security Threats Surface in the Cloud (lien direct) |
Tech Insight report co-produced by Black Hat, Dark Reading, and Omdia examines how cloud security is evolving in a rapid race to beat threat actors to the (cloud) breach. |
Threat
|
|
★★★
|