Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-12-23 10:06:30 |
Massive Twitter data leak investigated by EU privacy watchdog (lien direct) |
The Irish Data Protection Commission (DPC) has launched an inquiry regarding a massive Twitter data leak following last month's news reports that non-public information belonging to over 5.4 million Twitter user records has been leaked on a hacking forum. [...] |
|
|
★★
|
|
2022-12-22 17:25:27 |
Leading sports betting firm BetMGM discloses data breach (lien direct) |
Leading sports betting company BetMGM disclosed a data breach after a threat actor stole personal information belonging to an undisclosed number of customers. [...] |
Threat
Data Breach
Guideline
|
|
★★★★
|
|
2022-12-22 16:12:09 |
Lastpass: Hackers stole customer vault data in cloud storage breach (lien direct) |
LastPass revealed today that attackers stole customer vault data after breaching its cloud storage earlier this year using information stolen during an August 2022 incident. [...] |
|
LastPass
|
★
|
|
2022-12-22 14:32:57 |
Comcast Xfinity accounts hacked in widespread 2FA bypass attacks (lien direct) |
Comcast Xfinity customers report their accounts being hacked in widespread attacks that bypass two-factor authentication. These compromised accounts are then used to reset passwords for other services, such as the Coinbase and Gemini crypto exchanges. [...] |
|
|
★★
|
|
2022-12-22 08:00:00 |
FIN7 hackers create auto-attack platform to breach Exchange servers (lien direct) |
The notorious FIN7 hacking group uses an auto-attack system that exploits Microsoft Exchange and SQL injection vulnerabilities to breach corporate networks, steal data, and select targets for ransomware attacks based on financial size. [...] |
Ransomware
|
|
★★★
|
|
2022-12-21 17:44:16 |
Samsung and Google fix Microsoft Intune Android 13 enrollment issue (lien direct) |
Microsoft has confirmed today that Samsung and Google have fixed an Intune enrollment issue affecting Galaxy S22 smartphones running Android 13. [...] |
|
|
★★★
|
|
2022-12-21 16:47:58 |
Corsair keyboard bug makes it type on its own, no malware involved (lien direct) |
Corsair has confirmed that a bug in the firmware of K100 keyboards, and not malware, is behind previously entered text being auto-typed into applications days later. [...] |
Malware
|
|
★★★
|
|
2022-12-21 16:10:36 |
Zerobot malware now spreads by exploiting Apache vulnerabilities (lien direct) |
The Zerobot botnet has been upgraded to infect new devices by exploiting security vulnerabilities affecting Internet-exposed and unpatched Apache servers. [...] |
Malware
|
|
★★★
|
|
2022-12-21 13:29:02 |
Russians hacked JFK airport\'s taxi dispatch system for profit (lien direct) |
Two U.S. citizens were arrested for allegedly conspiring with Russian hackers to hack the John F. Kennedy International Airport (JFK) taxi dispatch system to move specific taxis to the front of the queue in exchange for a $10 fee. [...] |
Hack
|
|
★★
|
|
2022-12-21 03:00:00 |
GodFather Android malware targets 400 banks, crypto exchanges (lien direct) |
An Android banking malware named 'Godfather' has been targeting users in 16 countries, attempting to steal account credentials for over 400 online banking sites and cryptocurrency exchanges. [...] |
Malware
|
|
★★★
|
|
2022-12-20 17:33:13 |
Ransomware gang uses new Microsoft Exchange exploit to breach servers (lien direct) |
Play ransomware threat actors are using a new exploit chain that bypasses ProxyNotShell URL rewrite mitigations to gain remote code execution (RCE) on vulnerable servers through Outlook Web Access (OWA). [...] |
Threat
Ransomware
|
|
★★
|
|
2022-12-20 16:11:00 |
VirusTotal cheat sheet makes it easy to search for specific results (lien direct) |
VirusTotal has published a cheat sheet to help researchers create queries leading to more specific results from the malware intelligence platform. [...] |
Malware
Guideline
|
|
★★★
|
|
2022-12-20 13:42:20 |
Hackers bombard PyPi platform with information-stealing malware (lien direct) |
The PyPi python package repository is being bombarded by a wave of information-stealing malware hiding inside malicious packages uploaded to the platform to steal software developers' data. [...] |
Malware
|
|
★
|
|
2022-12-20 10:15:59 |
Raspberry Robin worm drops fake malware to confuse researchers (lien direct) |
The Raspberry Robin malware is now trying its hand at some trickery by dropping a fake payload to confuse researchers and evade detection when it detects it's being run within sandboxes and debugging tools. [...] |
Malware
|
|
★★★★★
|
|
2022-12-19 16:40:52 |
Play ransomware claims attack on German hotel chain H-Hotels (lien direct) |
The Play ransomware gang has claimed responsibility for a cyber attack on H-Hotels (h-hotels.com) that has resulted in communication outages for the company. [...] |
Ransomware
|
|
★★★
|
|
2022-12-19 14:37:18 |
(Déjà vu) Microsoft finds macOS bug that lets malware bypass security checks (lien direct) |
Apple has fixed a vulnerability that could be leveraged to deploy malware on vulnerable macOS devices via untrusted applications capable of bypassing Gatekeeper application execution restrictions. [...] |
Malware
Vulnerability
|
|
★★
|
|
2022-12-19 14:37:18 |
Microsoft: Achilles macOS bug lets hackers bypass Gatekeeper (lien direct) |
Apple has fixed a vulnerability that could be leveraged to deploy malware on vulnerable macOS devices via untrusted applications capable of bypassing Gatekeeper application execution restrictions. [...] |
Malware
Vulnerability
|
|
★★
|
|
2022-12-19 12:57:36 |
DraftKings warns data of 67K people was exposed in account hacks (lien direct) |
Sports betting company DraftKings revealed last week that more than 67,000 customers had their personal information exposed following a credential attack in November. [...] |
|
|
★★★
|
|
2022-12-19 12:39:27 |
Ukraine\'s DELTA military system users targeted by info-stealing malware (lien direct) |
A compromised Ukrainian Ministry of Defense email account was found sending phishing emails and instant messages to users of the 'DELTA' situational awareness program to infect systems with information-stealing malware. [...] |
Malware
|
|
★★★
|
|
2022-12-18 11:07:14 |
Restaurant CRM platform \'SevenRooms\' confirms breach after data for sale (lien direct) |
SevenRooms, a restaurant CRM software and guest manRestaurant customer management platform SevenRooms has confirmed it suffered a data breach after a threat actor began selling stolen data on a hacking forum.agement service provider, has admitted it has suffered a data breach, result of a security incident on one of its vendors. [...] |
Threat
Data Breach
|
|
★★★
|
|
2022-12-17 11:08:16 |
Glupteba malware is back in action after Google disruption (lien direct) |
The Glupteba malware botnet has sprung back into action, infecting devices worldwide after its operation was disrupted by Google almost a year ago. [...] |
Malware
|
|
★★★
|
|
2022-12-16 13:47:12 |
Colombian energy supplier EPM hit by BlackCat ransomware attack (lien direct) |
Colombian energy company Empresas Públicas de Medellín (EPM) suffered a BlackCat/ALPHV ransomware attack on Monday, disrupting the company's operations and taking down online services. [...] |
Ransomware
|
|
★★★
|
|
2022-12-16 10:23:17 |
Microsoft warns of new Minecraft DDoS malware infecting Windows, Linux (lien direct) |
A new cross-platform malware botnet named 'MCCrash' is infecting Windows, Linux, and IoT devices to conduct distributed denial of service attacks on Minecraft servers. [...] |
Malware
|
|
★★
|
|
2022-12-15 16:10:28 |
Hackers leak personal info allegedly stolen from 5.7M Gemini users (lien direct) |
Gemini crypto exchange announced this week that customers were targeted in phishing campaigns after a threat actor collected their personal information from a third-party vendor. [...] |
Threat
|
|
★★★
|
|
2022-12-15 12:38:44 |
Phishing attack uses Facebook posts to evade email security (lien direct) |
A new phishing campaign uses Facebook posts as part of its attack chain to trick users into giving away their account credentials and personally identifiable information (PII). [...] |
|
|
★★★★
|
|
2022-12-15 12:24:00 |
Ukrainian govt networks breached via trojanized Windows 10 installers (lien direct) |
Ukrainian government entities were hacked in targeted attacks after their networks were first compromised via trojanized ISO files posing as legitimate Windows 10 installers. [...] |
|
|
★★★
|
|
2022-12-15 10:29:26 |
Social Blade confirms breach after hacker posts stolen user data (lien direct) |
Social media analytics platform Social Blade has confirmed they suffered a data breach after its database was breached and put up for sale on a hacking forum. [...] |
Data Breach
|
|
★★
|
|
2022-12-15 08:00:00 |
LEGO BrickLink bugs let hackers hijack accounts, breach servers (lien direct) |
Security analysts have discovered two API security vulnerabilities in BrickLink.com, LEGO Group's official second-hand and vintage marketplace for LEGO bricks. [...] |
|
|
★★
|
|
2022-12-15 02:36:18 |
Hackers target Japanese politicians with new MirrorStealer malware (lien direct) |
A hacking group tracked as MirrorFace has been targeting Japanese politicians for weeks before the House of Councilors election in July 2022, using a previously undocumented credentials stealer named 'MirrorStealer.' [...] |
Malware
|
|
★
|
|
2022-12-14 14:13:11 |
Attackers use SVG files to smuggle QBot malware onto Windows systems (lien direct) |
QBot malware phishing campaigns have adopted a new distribution method using SVG files to perform HTML smuggling that locally creates a malicious installer for Windows. [...] |
Malware
|
|
★★
|
|
2022-12-14 13:24:00 |
Microsoft patches Windows zero-day used to drop ransomware (lien direct) |
Microsoft has fixed a security vulnerability used by threat actors to circumvent the Windows SmartScreen security feature and deliver Magniber ransomware and Qbot malware payloads. [...] |
Threat
Ransomware
Malware
Vulnerability
|
|
★★
|
|
2022-12-14 08:51:00 |
Microsoft fixes Windows Server issue causing freezes, restarts (lien direct) |
Microsoft has addressed an LSASS memory leak issue on some domain controllers that led to freezes and restarts after installing Windows Server updates released during last month's Patch Tuesday. [...] |
|
|
★★
|
|
2022-12-13 16:24:20 |
LockBit claims attack on California\'s Department of Finance (lien direct) |
The Department of Finance in California has been the target of a cyberattack now claimed by the LockBit ransomware gang. [...] |
Ransomware
|
|
★★★
|
|
2022-12-13 15:48:43 |
(Déjà vu) Apple security update fixes new iOS zero-day used to hack iPhones (lien direct) |
In security updates released today, Apple has fixed the tenth zero-day vulnerability since the start of the year, with this latest one actively used in attacks against iPhones. [...] |
Hack
Vulnerability
|
|
★★
|
|
2022-12-13 12:27:43 |
New GoTrim botnet brute forces WordPress site admin accounts (lien direct) |
A new Go-based botnet malware named 'GoTrim' is scanning the web for self-hosted WordPress websites and attempting to brute force the administrator's password and take control of the site. [...] |
Malware
|
|
★★
|
|
2022-12-12 18:34:25 |
Play ransomware claims attack on Belgium city of Antwerp (lien direct) |
The Play ransomware operation has claimed responsibility for a recent cyberattack on the Belgium city of Antwerp. [...] |
Ransomware
|
|
★
|
|
2022-12-12 16:26:33 |
New Python malware backdoors VMware ESXi servers for remote access (lien direct) |
A previously undocumented Python backdoor targeting VMware ESXi servers has been spotted, enabling hackers to execute commands remotely on a compromised system. [...] |
Malware
|
|
★★★
|
|
2022-12-12 14:27:52 |
Twitter confirms recent user data leak is from 2021 breach (lien direct) |
Twitter confirmed today that the recent leak of millions of members' profiles, including private phone numbers and email addresses, resulted from the same data breach the company disclosed in August 2022. [...] |
Data Breach
|
|
★★★
|
|
2022-12-12 13:30:18 |
Uber suffers new data breach after attack on vendor, info leaked online (lien direct) |
Uber has suffered a new data breach after a threat actor leaked employee email addresses, corporate reports, and IT asset information stolen from a third-party vendor in a cybersecurity incident. [...] |
Threat
Data Breach
|
Uber
Uber
|
★
|
|
2022-12-11 11:22:33 |
(Déjà vu) Clop ransomware uses TrueBot malware for access to networks (lien direct) |
Security researchers have noticed a spike in devices infected with the TrueBot malware downloader created by a Russian-speaking hacking group known as Silence. [...] |
Ransomware
Malware
|
|
★★
|
|
2022-12-11 11:22:33 |
Clop ransomware partners with TrueBot malware for access to networks (lien direct) |
Security researchers have noticed a spike in devices infected with the TrueBot malware downloader created by a Russian-speaking hacking group known as Silence. [...] |
Ransomware
Malware
|
|
★
|
|
2022-12-10 10:06:12 |
Air-gapped PCs vulnerable to data theft via power supply radiation (lien direct) |
A new attack method named COVID-bit uses electromagnetic waves to transmit data from air-gapped systems isolated from the internet over a distance of at least two meters (6.5 ft), where its captured by a receiver. [...] |
|
|
★★
|
|
2022-12-09 14:51:48 |
Rackspace warns of phishing risks following ransomware attack (lien direct) |
Cloud computing provider Rackspace warned customers on Thursday of increased risks of phishing attacks following a ransomware attack affecting its hosted Microsoft Exchange environment. [...] |
Ransomware
|
|
★★
|
|
2022-12-09 12:00:03 |
Antivirus and EDR solutions tricked into acting as data wipers (lien direct) |
A security researcher has found a way to exploit the data deletion capabilities of widely used endpoint detection and response (EDR) and antivirus (AV) software from Microsoft, SentinelOne, TrendMicro, Avast, and AVG to turn them into data wipers. [...] |
|
|
★★★★
|
|
2022-12-09 09:00:00 |
Holiday 2022 deal: 20% off Zero2Automated malware analysis training (lien direct) |
Zero2Automated, the creators of the popular malware analysis and reverse-engineering course, is having a Christmas special where you can get 20% off all courses on their site, with additional goodies thrown in. [...] |
Malware
|
|
★★★
|
|
2022-12-08 16:19:09 |
Hacked corporate email accounts used to send MSP remote access tool (lien direct) |
MuddyWater hackers, a group associated with Iran's Ministry of Intelligence and Security (MOIS), used compromised corporate email accounts to deliver phishing messages to their targets. [...] |
Tool
|
|
★★★
|
|
2022-12-08 15:27:11 |
CommonSpirit Health ransomware attack exposed data of 623,000 patients (lien direct) |
CommonSpirit Health has confirmed that threat actors accessed the personal data for 623,774 patients during an October ransomware attack. [...] |
Threat
Ransomware
|
|
★★★
|
|
2022-12-08 13:03:34 |
Tor Browser 12.0 brings Apple Silicon support, Android enhancements (lien direct) |
The Tor Project team has announced the release of Tor Browser 12.0, a major version release introducing support for Apple Silicon chips and several enhancements for the Android version. [...] |
|
|
★★★
|
|
2022-12-08 12:00:00 |
Google: How Android\'s Private Compute Core protects your data (lien direct) |
Google has disclosed more technical details about how Private Compute Core (PCC) on Android works and keeps sensitive user data processed locally on protected devices. [...] |
|
|
★★★
|
|
2022-12-08 05:00:00 |
New \'Zombinder\' platform binds Android malware with legitimate apps (lien direct) |
A darknet platform dubbed 'Zombinder' allows threat actors to bind malware to legitimate Android apps, causing victims to infect themselves while still having the full functionality of the original app to evade suspicion. [...] |
Threat
Malware
|
|
★★★
|