Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-02-17 18:00:00 |
Cloud Infrastructure Used By WIP26 For Espionage Attacks on Telcos (lien direct) |
The threat actor initiated infection chains by targeting employees through WhatsApp messages |
Threat
|
|
★★
|
|
2023-02-17 17:00:00 |
EU Cybersecurity Agency Warns Against Chinese APTs (lien direct) |
The document directly mentions APT27, APT30, APT31, Ke3chang, Gallium and Mustang Panda |
|
APT 30
APT 27
APT 15
APT 25
APT 31
|
★★
|
|
2023-02-17 16:10:00 |
Google Report Reveals Russia\'s Elaborate Cyber Strategy in Ukraine (lien direct) |
One year after the invasion of Ukraine, Google and Mandiant analyzed the cyber strategy of Russia-backed threat actors |
Threat
|
|
★★
|
|
2023-02-17 16:00:00 |
Armenia and Azerbaijan Hackers Use OxtaRAT to Monitor Conflict (lien direct) |
The newest version of OxtaRAT is a polyglot file combining a compiled AutoIT script and an image |
|
|
★★
|
|
2023-02-17 11:00:00 |
UK NCSC Launches Recommendations on Supply Chain Mapping (lien direct) |
The UK National Cybersecurity Centre's new guidance breaks down the essentials of a good supply chain mapping (SCM) list |
|
|
★★
|
|
2023-02-17 10:30:00 |
Firm Fined £200K For "Exploitative" Call Campaign (lien direct) |
It's OK Ltd made over 1.7 million nuisance calls |
|
|
★★
|
|
2023-02-17 10:00:00 |
Data Leak Hits Thousands of NHS Workers (lien direct) |
Email snafu affects staff at Liverpool University Hospital Foundation Trust |
|
|
★★★
|
|
2023-02-17 09:30:00 |
Hackers Fake Emsisoft Certificate to Hide Attack (lien direct) |
Attempt to trick network defenders into allow-listing remote access app |
|
|
★★★
|
|
2023-02-16 18:00:00 |
BEC Groups Target Firms With Multilingual Impersonation Attacks (lien direct) |
Combined, the two groups have launched BEC campaigns in at least 13 different languages |
|
|
★★★
|
|
2023-02-16 17:00:00 |
City of Oakland Declares State of Emergency After Ransomware Attack (lien direct) |
Core functions are intact, but the city has taken certain non-emergency systems offline |
Ransomware
|
|
★★
|
|
2023-02-16 16:00:00 |
Hackers Leverage PayPal to Send Malicious Invoices (lien direct) |
The phishing email warned users that there had been fraud on the account |
|
|
★★
|
|
2023-02-16 13:00:00 |
Quarter of Crypto Tokens Linked to Pump-and-Dump (lien direct) |
Scammers made an estimated $30m in profits in 2022 |
|
|
★★
|
|
2023-02-16 10:00:00 |
Experts Warn of Surge in Multipurpose Malware (lien direct) |
The average malware variant now utilizes 11 TTPs |
Malware
|
|
★★
|
|
2023-02-16 09:30:00 |
UK Policing Riddled with Chinese CCTV Cameras (lien direct) |
Security and ethical concerns raised by surveillance commissioner |
|
|
★★
|
|
2023-02-15 18:00:00 |
Google Launches Privacy Sandbox Beta on Android 13 Devices (lien direct) |
It is an initiative designed to limit user data sharing in digital advertising |
|
|
★★
|
|
2023-02-15 16:51:00 |
LockBit and Royal Mail Ransomware Negotiation Leaked (lien direct) |
It shows the threat actor trying to convince Royal Mail to pay the ransom using various techniques |
Threat
Ransomware
|
|
★★
|
|
2023-02-15 16:00:00 |
Crypto-Stealing Campaign Deploys MortalKombat Ransomware (lien direct) |
The attacks mainly targeted victims in the US but also in the UK, Turkey, and the Philippines |
Ransomware
|
|
★★
|
|
2023-02-15 12:00:00 |
Threat Analysis: VMware ESXi Attacks Soared in 2022 (lien direct) |
Recorded Future analyzed how threat actors have been exploiting VMware ESXi vulnerabilities over the past three years |
Threat
|
|
★★
|
|
2023-02-15 10:30:00 |
Microsoft Patches Three Zero-Day Bugs This Month (lien direct) |
February Patch Tuesday contains updates for over 70 CVEs |
|
|
★★
|
|
2023-02-15 10:00:00 |
SAS App and Website Hit as Attacks Target Swedish Firms (lien direct) |
Valentine's Day outages hit airline and media companies |
|
|
★★
|
|
2023-02-15 09:30:00 |
SideWinder APT Attacks Regional Targets in New Campaign (lien direct) |
Indian threat group conducts hundreds of operations in a short time-span |
Threat
|
APT-C-17
|
★★
|
|
2023-02-14 18:00:00 |
Lokibot, AgentTesla Grow in January 2023\'s Most Wanted Malware List (lien direct) |
The infostealer Vidar has returned to the top 10 after an increase in 'brandjacking' attacks |
Malware
|
|
★★
|
|
2023-02-14 17:00:00 |
Chinese Hackers Infiltrate South American Diplomatic Networks (lien direct) |
The group previously targeted government agencies and think tanks in Asia and Europe |
|
|
★★
|
|
2023-02-14 16:00:00 |
Hackers Breach Pepsi Bottling Ventures\' Network (lien direct) |
Experts say the delay in notifying customers left data potentially open to compromise |
|
|
★
|
|
2023-02-14 10:30:00 |
Spanish Police Bust €5m Phishing Gang (lien direct) |
Group laundered funds via 100 bank accounts |
|
|
★★
|
|
2023-02-14 10:00:00 |
(Déjà vu) Cloudflare Stops Largest HTTP DDoS Attack on Record (lien direct) |
Attack reached 71 million requests-per-second |
|
|
★★
|
|
2023-02-14 09:30:00 |
Resurrected Crypto-mixer Launders $100m in North Korean Funds (lien direct) |
Sanctioned mixer Blender is actually Sinbad, says Elliptic |
|
|
★★
|
|
2023-02-13 18:00:00 |
Cybersecurity Experts Warn Against Valentine\'s Day Romance Scams (lien direct) |
Victim losses associated with online romance scams nationwide totaled approximately $5.9bn in 2021 |
|
|
★★
|
|
2023-02-13 17:00:00 |
Group-IB Blocks Attack By Chinese Tonto Team Hackers (lien direct) |
The threat actors used phishing to deliver malicious files created with the Royal Road Weaponizer |
Threat
|
|
★★
|
|
2023-02-13 16:00:00 |
Majority of Firms Make Cybersecurity Decisions Without Attacker Insight (lien direct) |
Cybersecurity experts believe senior leadership teams underestimate cyber-threats |
Guideline
|
|
★★
|
|
2023-02-13 10:40:00 |
Researchers Uncover 700+ Malicious Open Source Packages (lien direct) |
Latest npm and PyPI finds should be kept out of build environments |
|
|
★★
|
|
2023-02-13 10:00:00 |
MoneyGram Fraud Victims Get $115m in Compensation (lien direct) |
Money transfer firm failed to crack down on scam agents |
|
|
★★
|
|
2023-02-13 09:30:00 |
Namecheap Customers Flooded with Phishing Emails (lien direct) |
Domain registrar blames upstream provider |
|
|
★★★
|
|
2023-02-10 18:00:00 |
Reddit Hit By Phishing Attack, Source Code Stolen (lien direct) |
Reddit said there was “no indication” of a breach of the company's primary production systems |
|
|
★★★
|
|
2023-02-10 17:00:00 |
US Warns Critical Sectors Against North Korean Ransomware Attacks (lien direct) |
The latest iteration of the document is now analyzing activity by the Maui and H0lyGh0st groups |
Ransomware
|
|
★★
|
|
2023-02-10 16:00:00 |
Malicious Npm Package Uses Typosquatting, Downloads Malware (lien direct) |
Reversing Labs said aabquerys was able to download second- and third-stage malware payloads |
Malware
|
|
★★★
|
|
2023-02-10 10:30:00 |
Fifth of ICS Bugs Have No Patch Available (lien direct) |
Some industrial systems have been exposed for three years |
Industrial
|
|
★★★
|
|
2023-02-10 10:00:00 |
Refund and Invoice Scams Surge in Q4 (lien direct) |
Avast also warns of increase in tech support fraud |
|
|
★★
|
|
2023-02-10 09:30:00 |
New Threat Group Reviews Screenshots Before Striking (lien direct) |
Threat actor has been dubbed TA866 by Proofpoint |
Threat
|
|
★★★
|
|
2023-02-09 16:15:00 |
#SOOCon23: Open Source Tools can Automate SBOM Requirements (lien direct) |
Open source enterprise software users presented tools to automate SBOMs during the State of Open Con 23 conference in London |
|
|
★★
|
|
2023-02-09 15:30:00 |
US and UK Sanction Seven Russian Cyber-Criminals (lien direct) |
The seven Russian nationals are members of the notorious Trickbot malware gang |
Malware
|
|
★★
|
|
2023-02-09 13:00:00 |
Dark Web Market Revenues Sink 50% in 2022 (lien direct) |
Closure of Hydra has major impact on underground sales |
|
|
★★★★
|
|
2023-02-09 10:15:00 |
Trio Arrested in COVID PPE Fraud Probe (lien direct) |
UK company set up to illegally profit from trade in protective equipment |
|
|
★★★
|
|
2023-02-09 09:30:00 |
New Info-Stealer Discovered as Russia Prepares Fresh Offensive (lien direct) |
Ukraine braced for more critical infrastructure attacks |
|
|
★★★
|
|
2023-02-08 16:30:00 |
UK Politician\'s Email Hacked by Suspected Russian Threat Actors (lien direct) |
The SNP MP revealed details of the incident, in which he clicked on a malicious file purportedly about the military situation in Ukraine |
Threat
|
|
★★★
|
|
2023-02-08 14:00:00 |
#SOOCon23: UK Government Urges Industry Input on Software Security Policy (lien direct) |
A UK government official asks the cyber industry, including the open software community, to help shape software security policies |
|
|
★★
|
|
2023-02-08 11:00:00 |
BEC Attacks Surge 81% in 2022 (lien direct) |
Open rates for emails hit 28% |
|
|
★★★
|
|
2023-02-08 10:30:00 |
#SOOCon23: Global Cooperation Needed to Enhance Open Source Software Security (lien direct) |
A panel of policy experts discuss how to improve global cooperation around open source software security |
|
|
★★
|
|
2023-02-08 10:00:00 |
CISA Releases Recovery Tool for VMware Ransomware Victims (lien direct) |
Legacy bug in ESXi servers is being targeted by threat actors |
Threat
Ransomware
Tool
|
|
★★★
|
|
2023-02-08 09:30:00 |
Regulator Halts AI Chatbot Over GDPR Concerns (lien direct) |
Replika accused of posing risk to children |
Legislation
|
|
★★★
|