Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-09-20 12:13:10 |
(Déjà vu) 2K game support hacked to email RedLine info-stealing malware (lien direct) |
Hackers have compromised the support system of American video game publisher 2K and now are sending support tickets to gamers containing the RedLine password-stealing malware. [...] |
Malware
|
|
|
|
2022-09-20 12:13:10 |
Game dev 2K\'s support site hacked to push malware via fake tickets (lien direct) |
Hackers have compromised the support system of American video game publisher 2K and now are sending support tickets to gamers containing the RedLine password-stealing malware. [...] |
Malware
|
|
|
|
2022-09-20 10:06:03 |
Top 8 takeaways from the VMWare Cybersecurity Threat Report (lien direct) |
VMware has recently released the 2022 edition of its annual Global Incident Response Threat Report. It is critically important for IT professionals to understand these trends and what they could mean for your organization's cyber security efforts. Let's break down VMware's 8 key findings and offer meaningful insights into each. [...] |
Threat
|
|
|
|
2022-09-20 06:30:15 |
MFA Fatigue: Hackers\' new favorite tactic in high-profile breaches (lien direct) |
Hackers are more frequently using social engineering attacks to gain access to corporate credentials and breach large networks. One component of these attacks that is becoming more popular with the rise of multi-factor authentication is a technique called MFA Fatigue. [...] |
|
|
|
|
2022-09-19 17:50:19 |
American Airlines discloses data breach after employee email compromise (lien direct) |
American Airlines has notified customers of a recent data breach after attackers compromised an undisclosed number of employee email accounts and gained access to sensitive personal information. [...] |
Data Breach
|
|
|
|
2022-09-19 14:50:01 |
Russian Sandworm hackers pose as Ukrainian telcos to drop malware (lien direct) |
The Russian state-sponsored hacking group known as Sandworm has been observed masquerading as telecommunication providers to target Ukrainian entities with malware. [...] |
Malware
|
|
|
|
2022-09-19 14:26:20 |
Uber links breach to Lapsus$ group, blames contractor for hack (lien direct) |
Uber believes the hacker behind last week's breach is affiliated with the Lapsus$ extortion group, known for breaching other high-profile tech companies such as Microsoft, Cisco, Nvidia, Samsung, and Okta. [...] |
Hack
|
Uber
Uber
|
|
|
2022-09-19 12:07:36 |
VMware, Microsoft warn of widespread Chromeloader malware attacks (lien direct) |
The operators of the Chromeloader adware are evolving their attack methods and gradually transforming the low-risk tool into a dangerous malware loader, seen dropping ransomware in some cases. [...] |
Ransomware
Malware
Tool
|
|
|
|
2022-09-19 10:13:55 |
Revolut hack exposes data of 50,000 users, fuels new phishing wave (lien direct) |
Revolut is sending out notices of a data breach to a small percentage of impacted users, informing them of a security incident where an unauthorized third party accessed internal data. [...] |
Data Breach
Hack
|
|
|
|
2022-09-18 16:23:07 |
GTA 6 source code and videos leaked after Rockstar Games hack (lien direct) |
Grand Theft Auto 6 gameplay videos and source code have been leaked after a hacker allegedly breached Rockstar Game's Slack server and Confluence wiki. [...] |
Hack
|
|
|
|
2022-09-17 11:17:23 |
Emotet botnet now pushes Quantum and BlackCat ransomware (lien direct) |
While monitoring the Emotet botnet's current activity, security researchers found that the malware is now being used by the Quantum and BlackCat ransomware gang to deploy their payloads. [...] |
Ransomware
Malware
|
|
|
|
2022-09-17 10:12:14 |
New York ambulance service discloses data breach after ransomware attack (lien direct) |
Empress EMS (Emergency Medical Services), a New York-based emergency response and ambulance service provider, has disclosed a data breach that exposed customer information. [...] |
Ransomware
Data Breach
|
|
|
|
2022-09-16 15:30:30 |
LastPass says hackers had internal access for four days (lien direct) |
LastPass says the attacker behind the August security breach had internal access to the company's systems for four days until they were detected and evicted. [...] |
|
LastPass
|
|
|
2022-09-16 11:53:37 |
Hacker sells stolen Starbucks data of 219,000 Singapore customers (lien direct) |
The Singapore division of Starbucks, the popular American coffeehouse chain, has admitted that it suffered a data breach incident impacting over 219,000 of its customers. [...] |
Data Breach
|
|
|
|
2022-09-15 15:10:55 |
Hive ransomware claims cyberattack on Bell Canada subsidiary (lien direct) |
The Hive ransomware gang claimed responsibility for an attack that hit the systems of Bell Canada subsidiary Bell Technical Solutions (BTS). [...] |
Ransomware
|
|
|
|
2022-09-15 14:28:13 |
Akamai stopped new record-breaking DDoS attack in Europe (lien direct) |
A new distributed denial-of-service (DDoS) attack that took place on Monday, September 12, has broken the previous record that Akamai recorded recently in July. [...] |
|
|
|
|
2022-09-15 13:35:15 |
New malware bundle self-spreads through YouTube gaming videos (lien direct) |
A new malware bundle uses victims' YouTube channels to upload malicious video tutorials advertising fake cheats and cracks for popular video games to spread the malicious package further. [...] |
Malware
|
|
|
|
2022-09-15 10:38:02 |
Russian hackers use new info stealer malware against Ukrainian orgs (lien direct) |
Russian hackers have been targeting Ukrainian entities with previously unseen info-stealing malware during a new espionage campaign that is still active. [...] |
Malware
|
|
|
|
2022-09-15 06:00:00 |
Webworm hackers modify old malware in new attacks to evade attribution (lien direct) |
Chinese cyberespionage hackers of the 'Webworm' group are undergoing experimentation, using modified decade-old RATs (remote access trojans) in the wild. [...] |
Malware
|
|
|
|
2022-09-14 10:06:03 |
Securing your IoT devices against cyber attacks in 5 steps (lien direct) |
How is IoT being used in the enterprise, and how can it be secured? We will demonstrate important security best practices and how a secure password policy is paramount to the security of devices. [...] |
|
|
|
|
2022-09-14 08:07:28 |
Chinese hackers create Linux version of the SideWalk Windows malware (lien direct) |
State-backed Chinese hackers have developed a Linux variant for the SideWalk backdoor used against Windows systems belonging to targets in the academic sector. [...] |
Malware
|
|
|
|
2022-09-13 11:21:48 |
Hackers breach software vendor for Magento supply-chain attacks (lien direct) |
Hackers have injected malware in multiple extensions from FishPig, a vendor of Magento-WordPress integrations that count over 200,000 downloads. [...] |
Malware
|
|
|
|
2022-09-13 06:00:00 |
Cyberspies drop new infostealer malware on govt networks in Asia (lien direct) |
Security researchers have identified new cyber-espionage activity focusing on government entities in Asia, as well as state-owned aerospace and defense firms, telecom companies, and IT organizations. [...] |
Malware
|
|
|
|
2022-09-12 16:28:35 |
U-Haul discloses data breach exposing customer driver licenses (lien direct) |
Moving and storage giant U-Haul International (U-Haul) disclosed a data breach after a customer contract search tool was hacked to access customers' names and driver's license information. [...] |
Data Breach
Tool
|
|
|
|
2022-09-12 14:20:48 |
Apple fixes eighth zero-day used to hack iPhones and Macs this year (lien direct) |
Apple has released security updates to address the eighth zero-day vulnerability used in attacks against iPhones and Macs since the start of the year. [...] |
Hack
Vulnerability
|
|
|
|
2022-09-12 12:00:00 |
Lorenz ransomware breaches corporate network via phone systems (lien direct) |
The Lorenz ransomware gang now uses a critical vulnerability in Mitel MiVoice VOIP appliances to breach enterprises using their phone systems for initial access to their corporate networks. [...] |
Ransomware
Vulnerability
|
|
|
|
2022-09-09 10:00:00 |
Lampion malware returns in phishing attacks abusing WeTransfer (lien direct) |
The Lampion malware is being distributed in greater volumes lately, with threat actors abusing WeTransfer as part of their phishing campaigns. [...] |
Malware
Threat
|
|
|
|
2022-09-08 16:51:52 |
Bumblebee malware adds post-exploitation tool for stealthy infections (lien direct) |
A new version of the Bumblebee malware loader has been spotted in the wild, featuring a new infection chain that uses the PowerSploit framework for stealthy reflective injection of a DLL payload into memory. [...] |
Malware
Tool
|
|
|
|
2022-09-08 15:28:21 |
GIFShell attack creates reverse shell using Microsoft Teams GIFs (lien direct) |
A new attack technique called 'GIFShell' allows threat actors to abuse Microsoft Teams for novel phishing attacks and covertly executing commands to steal data using ... GIFs. [...] |
Threat
|
|
|
|
2022-09-07 11:47:25 |
Ukraine dismantles more bot farms spreading Russian disinformation (lien direct) |
The Cyber Department of the Ukrainian Security Service (SSU) dismantled two more bot farms that spread Russian disinformation on social networks and messaging platforms via thousands of fake accounts. [...] |
|
|
|
|
2022-09-07 10:40:53 |
200,000 North Face accounts hacked in credential stuffing attack (lien direct) |
Outdoor apparel brand 'The North Face' was targeted in a large-scale credential stuffing attack that has resulted in the hacking of 194,905 accounts on the thenorthface.com website. [...] |
|
|
|
|
2022-09-07 10:18:39 |
New Iranian hacking group APT42 deploys custom Android spyware (lien direct) |
A new Iranian state-sponsored hacking group known as APT42 has been discovered using a custom Android malware to spy on targets of interest. [...] |
Malware
|
APT 42
|
|
|
2022-09-07 07:00:00 |
Google says former Conti ransomware members now attack Ukraine (lien direct) |
Google says some former Conti cybercrime gang members, now part of a threat group tracked as UAC-0098, are targeting Ukrainian organizations and European non-governmental organizations (NGOs). [...] |
Ransomware
Threat
|
|
|
|
2022-09-06 16:40:11 |
Moobot botnet is coming for your unpatched D-Link router (lien direct) |
The Mirai malware botnet variant known as 'MooBot' has re-emerged in a new attack wave that started early last month, targeting vulnerable D-Link routers with a mix of old and new exploits. [...] |
Malware
|
|
|
|
2022-09-06 15:53:09 |
Minecraft is hackers\' favorite game title for hiding malware (lien direct) |
Security researchers have discovered that Minecraft is the most heavily abused game title by cybercriminals, who use it to lure unsuspecting players into installing malware. [...] |
Malware
|
|
|
|
2022-09-06 11:34:48 |
New Linux malware evades detection using multi-stage deployment (lien direct) |
A new stealthy Linux malware known as Shikitega has been discovered infecting computers and IoT devices with additional payloads. [...] |
Malware
|
|
|
|
2022-09-06 07:41:11 |
Second largest U.S. school district LAUSD hit by ransomware (lien direct) |
Los Angeles Unified (LAUSD), the second largest school district in the U.S., disclosed that a ransomware attack hit its Information Technology (IT) systems over the weekend. [...] |
Ransomware
|
|
|
|
2022-09-05 09:52:03 |
(Déjà vu) TikTok denies security breach after hackers leak user data, source code (lien direct) |
TikTok denies recent claims it was breached, and source code and user data were stolen, telling BleepingComputer that data posted to a hacking forum is "completely unrelated" to the company. [...] |
|
|
|
|
2022-09-05 09:52:03 |
TikTok denies hack following leak of user data, source code (lien direct) |
TikTok denies recent claims it was breached, and source code and user data were stolen, telling BleepingComputer that data posted to a hacking forum is "completely unrelated" to the company. [...] |
Hack
|
|
|
|
2022-09-04 10:07:14 |
SharkBot malware sneaks back on Google Play to steal your logins (lien direct) |
A new and upgraded version of the SharkBot malware has returned to Google's Play Store, targeting banking logins of Android users through apps that have tens of thousands of installations. [...] |
Malware
|
|
|
|
2022-09-03 16:39:41 |
IRS data leak exposes personal info of 120,000 taxpayers (lien direct) |
The Internal Revenue Service has accidentally leaked confidential information for approximately 120,000 taxpayers who filed a form 990-T as part of their tax returns. [...] |
|
|
|
|
2022-09-03 10:12:14 |
Malware dev open-sources CodeRAT after being exposed (lien direct) |
The source code of a remote access trojan (RAT) dubbed 'CodeRAT' has been leaked on GitHub after malware analysts confronted the developer about attacks that used the tool. [...] |
Malware
|
|
|
|
2022-09-02 16:05:55 |
BlackCat ransomware claims attack on Italian energy agency (lien direct) |
The BlackCat/ALPHV ransomware gang claimed responsibility for an attack that hit the systems of Italy's energy agency Gestore dei Servizi Energetici SpA (GSE) over the weekend. [...] |
Ransomware
|
|
|
|
2022-09-02 14:47:17 |
Dev backdoors own malware to steal data from other hackers (lien direct) |
Cybercriminals using Prynt Stealer to collect data from victims are being swindled by the malware developer, who also receives a copy of the info over Telegram messaging service. [...] |
Malware
|
|
|
|
2022-09-02 13:23:29 |
Samsung discloses data breach after July hack (lien direct) |
Electronics giant Samsung has confirmed a new data breach today after some of its U.S. systems were hacked to steal customer data. [...] |
Data Breach
Hack
|
|
|
|
2022-09-02 12:25:17 |
Hive ransomware hits Damart clothing store with $2 million ransom (lien direct) |
Damart, a French clothing company with over 130 stores across the world, is being extorted for $2 million after a cyberattack from the Hive ransomware gang. [...] |
Ransomware
|
|
|
|
2022-09-02 09:12:27 |
San Francisco 49ers: Blackbyte ransomware gang stole info of 20K people (lien direct) |
NFL's San Francisco 49ers are mailing notification letters confirming a data breach affecting more than 20,000 individuals following a ransomware attack that hit its network earlier this year. [...] |
Ransomware
|
|
|
|
2022-09-01 09:00:00 |
Thousands lured with blue badges in Instagram phishing attack (lien direct) |
A new Instagram phishing campaign is underway, attempting to scam users of the popular social media platform by luring them with a blue-badge offer. [...] |
|
|
★★★★★
|
|
2022-09-01 07:14:28 |
Neopets says hackers had access to its systems for 18 months (lien direct) |
Neopets has released details about the recently disclosed data breach incident that exposed personal information of more than 69 million members. [...] |
Data Breach
|
|
|
|
2022-08-31 13:01:07 |
Ragnar Locker ransomware claims attack on Portugal\'s flag airline (lien direct) |
The Ragnar Locker ransomware gang has claimed an attack on the flag carrier of Portugal, TAP Air Portugal, disclosed by the airline last Friday. [...] |
Ransomware
|
|
|