What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-06-13 22:15:35 | Nouveaux campagnes de compromis de phishing et de courrier électronique d'entreprise augmenter en complexité, contourner le MFA New phishing and business email compromise campaigns increase in complexity, bypass MFA (lien direct) |
> Lisez les détails techniques sur une nouvelle attaque de phishing AITM combinée à une campagne BEC comme révélé par Microsoft, et apprendre à atténuer cette menace.
>Read the technical details about a new AiTM phishing attack combined with a BEC campaign as revealed by Microsoft, and learn how to mitigate this threat. |
★★ | ||
|
2023-06-13 14:18:37 | Menaces et défense du DDOS: comment certaines hypothèses peuvent conduire à une attaque DDoS threats and defense: How certain assumptions can lead to an attack (lien direct) |
> Les hypothèses d'une entreprise ne devraient pas faire sur ses défenses DDOS et les mesures qu'elle devrait prendre maintenant pour réduire sa probabilité d'attaque.
>The assumptions a business shouldn\'t make about its DDoS defenses and the steps it should take now to reduce its likelihood of attack. |
Threat General Information Guideline | ★★ | |
|
2023-06-09 21:34:44 | BBC, British Airways, Boots a frappé des pirates \\ 'ultimatum après avoir subi une attaque de chaîne d'approvisionnement Moveit BBC, British Airways, Boots hit with hackers\\' ultimatum after suffering MOVEit supply-chain attack (lien direct) |
Obtenez les détails de l'ultimatum du groupe Ransomware Clop \\ aux entreprises qu'ils ont récemment frappés avec une attaque de chaîne d'approvisionnement.Apprenez également les meilleures pratiques d'atténuation de la cybersécurité pour toute organisation.
Get the details about the ransomware group Clop\'s ultimatum to companies they recently hit with a supply-chain attack. Also, learn cybersecurity mitigation best practices for any organization. |
Ransomware | ★★ | |
|
2023-06-07 18:57:41 | La nouvelle menace zéro-clic cible les iPhones et les iPad New zero-click threat targets iPhones and iPads (lien direct) |
> Un récent rapport de Kaspersky a révélé une méthode d'attaque zéro-clic qui ne nécessite aucune action des victimes pour infecter les appareils iOS.
>A recent report from Kaspersky revealed a zero-click attack method that requires no action from victims to infect iOS devices. |
Threat | ★★★★ | |
|
2023-06-06 21:40:59 | Verizon 2023 DBIR: les attaques DDOS dominent et préalable à la croissance du BEC Verizon 2023 DBIR: DDoS attacks dominate and pretexting lead to BEC growth (lien direct) |
>In Verizon\'s just-released 2023 Data Breach Investigations Report, money is king, and denial of service and social engineering still hold sway.
>In Verizon\'s just-released 2023 Data Breach Investigations Report, money is king, and denial of service and social engineering still hold sway. |
Data Breach | ★★ | |
|
2023-06-02 15:48:16 | Développer de précieuses compétences en cybersécurité au cours d'une vie pour seulement 70 $ Develop valuable cyber security skills over a lifetime for only $70 (lien direct) |
> Non seulement vous avez accès à plus de 90 cours, mais aussi au mentorat de carrière, à l'évaluation des compétences, à une formation sur de vrais projets de cybersécurité, et bien plus encore.
>Not only do you get access to over 90 courses, but also career mentoring, skills evaluation, training on real cyber security projects, and much more. |
★★ | ||
|
2023-05-30 21:13:41 | Windows 11: appliquer les réinitialisations du mot de passe pour les utilisateurs du groupe local Windows 11: Enforcing password resets for local group users (lien direct) |
> Les administrateurs peuvent forcer les utilisateurs à réinitialiser leurs mots de passe respectifs lors de leur prochaine connexion Windows 11 en apportant quelques modifications simples sur un écran de configuration difficile à trouver.
>Admins can force users to reset their respective passwords during their next Windows 11 login by making a few simple changes on a difficult-to-find configuration screen. |
★★ | ||
|
2023-05-22 22:22:11 | L'attaque parrainée par l'État chinois utilise un implant de routeur personnalisé pour cibler les gouvernements européens Chinese state-sponsored attack uses custom router implant to target European governments (lien direct) |
> Apprenez les détails techniques sur cette cyberattaque, ainsi que sur les conseils de recherche sur les points de contrôle \\ sur la façon de détecter et de se protéger contre cette menace de sécurité.
>Learn technical details about this cyberattack, as well as Check Point Research\'s tips on how to detect and protect against this security threat. |
★★ | ||
|
2023-05-19 18:10:05 | Comment les attaques de compromis par courrier électronique d'entreprise émulent les services Web légitimes pour attirer les clics How business email compromise attacks emulate legitimate web services to lure clicks (lien direct) |
> Les nouvelles cyberattaques BEC utilisent le phishing avec un lien Dropbox légitime comme leurre pour les logiciels malveillants et les informations d'identification.
>New BEC cyberattacks use phishing with a legitimate Dropbox link as a lure for malware and credentials theft. |
Malware | ★★ | |
|
2023-05-12 20:41:26 | Comment les cyberstalkers peuvent accéder à votre iPhone à l'aide de l'application Windows Phone Link How cyberstalkers could access your iPhone using the Windows Phone Link app (lien direct) |
> Une personne qui gagne un accès physique à un iPhone ou un téléphone Android pourrait utiliser l'application de liaison téléphonique pour espionner les messages texte, les appels téléphoniques et les notifications de l'utilisateur, dit certificatif
>Someone who gains physical access to an iPhone or Android phone could use the Phone Link app to spy on the user\'s text messages, phone calls and notifications, says Certo. |
★★ | ||
|
2023-05-09 21:50:48 | ID Apple: 3 choses à retenir lors de la modification de ce mot de passe Apple ID: 3 things to remember when changing this password (lien direct) |
> La modification d'un mot de passe Apple ID n'est généralement pas aussi simple que de simplement entrer un mot de passe de remplacement.Préparez-vous plus efficacement au processus en se souvenant de trois faits clés.
>Changing an Apple ID password typically isn\'t as simple as just entering a replacement password. Prepare more effectively for the process by remembering three key facts. |
★★ | ||
|
2023-05-05 13:59:40 | Journée du mot de passe du monde RIP RIP World Password Day (lien direct) |
> Google, Apple, Microsoft et d'autres géants de la technologie, ainsi que la FIDO Alliance, les gestionnaires de mots de passe et les fournisseurs de gestion de l'identité sont tous passés à Passkeys, grâce à FIDO2.
>Google, Apple, Microsoft and other tech giants, as well as the FIDO Alliance, password managers and identity management vendors are all moving to passkeys, thanks to FIDO2. |
★★ | ||
|
2023-05-04 14:37:34 | Enquête: État de cybersécurité au Royaume-Uni Survey: State of cybersecurity in the UK (lien direct) |
> Le gouvernement du Royaume-Uni a publié son enquête annuelle sur les violations de la cybersécurité.Les principales menaces de cybersécurité, les risques de la chaîne d'approvisionnement, les réponses des incidents et plus sont couvertes.
>The U.K. government has released its annual Cyber Security Breaches Survey. Top cybersecurity threats, supply chain risks, incident responses and more are covered. |
★★ | ||
|
2023-04-28 16:36:57 | L'acteur de menace APT28 cible les routeurs Cisco avec une vieille vulnérabilité Threat actor APT28 targets Cisco routers with an old vulnerability (lien direct) |
> Les États-Unis, l'Europe et l'Ukraine seraient des cibles dans cette menace malveillante.Apprenez à protéger les routeurs Cisco affectés.
>The U.S., Europe and Ukraine are reportedly targets in this malware threat. Learn how to protect affected Cisco routers. |
Malware Vulnerability Threat | APT 28 APT 28 | ★★ |
|
2023-04-26 22:37:26 | IBM lance Qradar Security Suite pour une détection et une réponse à la menace accélérée IBM launches QRadar Security Suite for accelerated threat detection and response (lien direct) |
> IBM a déclaré que la nouvelle plate-forme de cybersécurité est une interface unifiée qui rationalise la réponse des analystes tout au long du cycle de vie d'attaque et comprend des capacités d'IA et d'automatisation montrées pour accélérer le triage d'alerte de 55%.
>IBM said the new cybersecurity platform is a unified interface that streamlines analyst response across the full attack lifecycle and includes AI and automation capabilities shown to speed alert triage by 55%. |
Threat | ★★ | |
|
2023-04-22 00:37:40 | Google se déplace pour garder les vulnérabilités de cybersécurité du secteur public en laisse en laisse Google moves to keep public sector cybersecurity vulnerabilities leashed (lien direct) |
> Google Cloud et le Center for Internet Security, Inc., ont lancé la Google Cloud Alliance cette semaine dans le but de faire progresser la sécurité numérique dans le secteur public.Le Center for Internet Security, fondé en 2000 pour lutter contre les cyber-menaces croissantes et établir un ensemble de protocoles et de normes de cybersécurité comme les contrôles de sécurité critiques et ...
>Google Cloud and The Center for Internet Security, Inc., launched the Google Cloud Alliance this week with the goal of advancing digital security in the public sector. The Center for Internet Security, founded in 2000 to address growing cyber threats and establish a set of cybersecurity protocols and standards like CIS Critical Security Controls and ... |
Cloud | ★★ | |
|
2023-04-20 16:14:48 | Les logiciels malveillants prolifèrent, mais les défenses sont plus fortes: mandiant Malware is proliferating, but defenses are stronger: Mandiant (lien direct) |
> À mesure que les temps de résidence baissent et que les notifications d'attaque par des tiers augmentent, les organisations s'améliorent en défense pendant que les attaquants évoluent et que les logiciels malveillants prolifèrent.
>As dwell times drop, and notifications of attack by third parties increase, organizations are getting better at defense while attackers evolve and malware proliferates. |
Malware | ★★ | |
|
2023-04-17 14:47:02 | Les logiciels malveillants de récolte d'identification apparaissent sur Deep Web Credential harvesting malware appears on deep web (lien direct) |
> La nouvelle récolte d'identification axée sur le cloud disponible sur le service de messagerie cryptée Telegram fait partie d'une tendance de grattoirs Python, ce qui facilite l'appât plusieurs crochets de phishing.
>New cloud-focused credential harvester available on encrypted messaging service Telegram is part of a trend of Python scrapers making it easier to bait multiple phishing hooks. |
Malware Prediction | ★★ | |
|
2023-04-14 20:21:27 | Android 14 maintenant en bêta publique pour les téléphones Google Android 14 now in public beta for Google phones (lien direct) |
> Le nouveau système d'exploitation devrait être en version bêta pendant plusieurs mois;Certains utilisateurs de pixels peuvent expérimenter avec Android 14 maintenant.
>The new operating system is expected to be in beta for several months; some Pixel users can experiment with Android 14 now. |
★★ | ||
|
2023-04-14 11:55:01 | Pour les méfaits cybercrimins, il est sombre de la toile For cybercriminal mischief, it\\'s dark web vs deep web (lien direct) |
> Un nouveau rapport de la société de renseignement CyberThered Cybersixgill voit des acteurs de menace grouper aux bazars numériques pour collaborer, acheter et vendre des logiciels malveillants et des informations d'identification.
>A new report from cyberthreat intelligence company Cybersixgill sees threat actors swarming to digital bazaars to collaborate, buy and sell malware and credentials. |
Malware Threat | ★★ | |
|
2023-04-06 21:06:49 | Les attaques du DDOS augmentent alors que les groupes pro-russes attaquent la Finlande, Israël DDoS attacks rise as pro-Russia groups attack Finland, Israel (lien direct) |
> Deux groupes associés à la Russie ont frappé Israël et la Finlande avec des attaques du DDOS, cette semaine.Les experts en cybersécurité disent que les actions représentent une augmentation marquée des exploits et un signe avant-coureur de cyberattaques à venir.
>Two Russia-associated groups hit Israel and Finland with DDoS attacks, this week. Cybersecurity experts say the actions represent a marked increase in exploits and a harbinger of cyberattacks to come. |
★★★ | ||
|
2023-03-29 13:58:39 | Nexus Android Malware cible 450 applications financières [Nexus Android malware targets 450 financial applications] (lien direct) | Apprenez à protéger votre organisation et vos utilisateurs de ce cheval de Troie bancaire Android.
Learn how to protect your organization and users from this Android banking trojan. |
Malware | ★ | |
|
2023-03-28 16:13:21 | Comment prévenir les bombes à fourche sur vos serveurs de développement Linux [How to prevent fork bombs on your Linux development servers] (lien direct) | > Apprenez à protéger votre serveur Linux de l'attaque du déni de service de la bombe de fourche avec ce tutoriel vidéo de Jack Wallen.
>Learn how to protect your Linux server from the fork bomb denial-of-service attack with this video tutorial by Jack Wallen. |
Threat General Information Guideline | ★★★ | |
|
2023-03-14 20:25:29 | Attack campaign on edge appliance: undetected since 2021 and resists firmware update (lien direct) | >A possible Chinese attack campaign on compromised unpatched SonicWall SMA edge devices stayed undetected since 2021 and could persist even through firmware updates. | ★★★ | ||
|
2023-03-13 20:44:03 | New Hiatus malware campaign targets routers (lien direct) | >A new malware dubbed HiatusRAT infects routers to spy on its targets, mostly in Europe and in the U.S. Learn which router models are primarily targeted and how to protect from this security threat. | Malware | ★★ | |
|
2023-03-07 16:51:12 | CrowdStrike: Attackers focusing on cloud exploits, data theft (lien direct) | >CrowdStrike's new threat report sees a big increase in data theft activity, as attackers move away from ransomware and other malware attacks, as defense gets better, and the value of data increases. | Ransomware Malware Threat Cloud | ★★ | |
|
2023-03-06 18:41:13 | This 18-course ethical hacking bundle is under $50 (lien direct) | >Ethical hacking is a great skill to learn with new cyber threats on the rise. Learn how to fight back with this ethical hacking course bundle. | ★★ | ||
|
2023-03-04 15:18:08 | LastPass releases new security incident disclosure and recommendations (lien direct) | >LastPass attacks began with a hacked employee's home computer. The investigation now reveals the password manager company's data vault was compromised. | LastPass LastPass | ★★★ | |
|
2023-02-28 19:59:32 | Windows 11 update brings Bing Chat into the taskbar (lien direct) | >Microsoft's latest Windows 11 allows enterprises to control some of these new features, which also include Notepad, iPhone and Android news. | ★★ | ||
|
2023-02-27 19:29:03 | Microsoft Defender 365: Automation to fight automated attacks (lien direct) | >Microsoft Defender 365 will fight attackers using their own tactics by locking down compromised systems automatically-including Linux servers. | ★★ | ||
|
2023-02-27 10:48:36 | How to use and customize Quick Settings on your Android phone (lien direct) | The Quick Settings feature provides a fast way to access key settings on your phone. | ★★ | ||
|
2023-02-23 20:16:30 | Report: Stress will drive a quarter of cyber defenders out the door (lien direct) | >There are too few cybersecurity experts to fill jobs, but a new study sees the crunch increasing through 2025 as cybersecurity experts head for the hills. | ★★★ | ||
|
2023-02-17 19:07:44 | Mobile device management: Problems and solutions (lien direct) | >Explore the MDM market with the CEO of Kolide to learn its challenges and the possible solutions for enterprises and end users. | ★★ | ||
|
2023-02-16 20:20:34 | Security warning: Beep malware can evade detection (lien direct) | >Find out how Beep malware can evade your security system, what it can do and how to protect your business. | Malware | ★★★ | |
|
2023-02-16 18:07:49 | Cryptocurrency users in the US hit by ransomware and Clipper malware (lien direct) | >Learn how to protect your business and staff from the MortalKombat ransomware and Laplas Clipper malware. | Ransomware Malware | ★★ | |
|
2023-02-10 18:36:31 | This beginner-friendly ethical hacker training is 97% off (lien direct) | >The How to Hack from Beginner to Ethical Hacking Certification will teach you how to protect your systems and earn the trust of top clients. | Hack | ★★ | |
|
2023-02-10 17:25:21 | How to view and control Wi-Fi data usage on Android (lien direct) | Learn how to figure out which apps gobble up Wi-Fi data on your Android devices. | ★★ | ||
|
2023-02-10 15:19:23 | New virtual data fabric to support DoD cyber testing (lien direct) | >As cybersecurity threats increase in complexity and volume, the Department of Defense is turning to new technologies for help. | ★★★ | ||
|
2023-02-09 16:29:04 | If your business needs cybersecurity, you should become the expert (lien direct) | >One of the web's biggest cybersecurity training resources, The Complete 2023 Cyber Security Developer & IT Skills Bundle, is now just $79. | ★ | ||
|
2023-02-06 16:41:07 | TrickGate crypter discovered after 6 years of infections (lien direct) | >New research from Check Point Research exposes a crypter that stayed undetected for six years and is responsible for several major malware infections around the globe. | Malware | ★★★ | |
|
2023-02-02 15:35:41 | Prilex POS malware evolves to block contactless transactions (lien direct) | >A new version of the Prilex POS malware has found a novel way to steal your credit card information. | Malware | ★★ | |
|
2023-02-01 21:59:55 | The headache of changing passwords (lien direct) | >Change Your Password Day - an annual reminder of just how bad passwords really are. | ★★★ | ||
|
2023-02-01 20:32:11 | New cybersecurity BEC attack mimics vendors (lien direct) | >A new business email attack threat actor is using a stealth tactic to avoid giveaways of typical social engineering attacks. Learn the best defense for protecting your company. | Threat | ★★ | |
|
2023-02-01 20:03:54 | OneNote documents spread malware in several countries (lien direct) | >A new phishing campaign abuses OneNote documents to infect computers with the infamous AsyncRAT malware, targeting users in the U.K., Canada and the U.S. | Malware | ★★★ | |
|
2023-01-25 16:27:19 | Learn cutting-edge ethical hacking techniques for just $39.99 (lien direct) | >The 2023 Masters in Cyber Security Certification Bundle includes full online training prep for key cybersecurity exams. | ★★ | ||
|
2023-01-24 20:40:02 | Recent rise in SEO poisoning attacks compromise brand reputations (lien direct) | >A new research report from SentinelOne exposes a SEO poisoning attack campaign that hijacks brand names in paid search ads. | ★★ | ||
|
2023-01-18 19:46:05 | Rise of cloud-delivered malware poses key security challenges (lien direct) | >The volume of cloud-based malware tripled in 2022 over the prior year, says Netskope, with 30% of the malicious downloads coming from Microsoft OneDrive. | Malware | ★ | |
|
2023-01-17 22:09:59 | SimSpace CEO brings dogfight mentality to terra firma for IT cybersecurity training (lien direct) | >William “Hutch” Hutchison, founder and CEO of SimSpace, speaks with Karl Greenberg about the virtues of cyber ranges in training IT teams, and SimSpace's own specialty: Digital-twin based ranges that the firm provides to NATO governments worldwide, including security teams in Ukraine. | ★★ | ||
|
2023-01-13 15:55:20 | How to move from an iPhone to an Android phone (lien direct) | A Google app called Switch To Android tries to ease the jump from iOS. | ★ | ||
|
2023-01-05 20:50:54 | How to configure an SMTP server in a self-hosted instance Passbolt (lien direct) | >With the self-hosted Passbolt password manager, you must configure an SMTP server to use the collaboration features. Learn how to do it. | ★ |
To see everything:
