Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-02-16 15:32:09 |
Scandinavian Airlines says cyberattack caused passenger data leak (lien direct) |
Scandinavian Airlines (SAS) has posted a notice warning passengers that a recent multi-hour outage of its website and mobile app was caused by a cyberattack that also exposed customer data. [...] |
|
|
★★
|
|
2023-02-16 12:41:16 |
(Déjà vu) Atlassian data leak caused by stolen employee credentials (lien direct) |
Atlassian has confirmed that a breach at a third-party vendor caused a recent leak of company data and that their network and customer information is secure. [...] |
|
|
★★★★
|
|
2023-02-16 12:41:16 |
Atlassian says recent data leak stems from third-party vendor hack (lien direct) |
Atlassian has confirmed that a breach at a third-party vendor caused a recent leak of company data and that their network and customer information is secure. [...] |
Hack
|
|
★★★
|
|
2023-02-16 11:38:40 |
Hackers backdoor Microsoft IIS servers with new Frebniis malware (lien direct) |
Hackers are deploying a new malware named 'Frebniss' on Microsoft's Internet Information Services (IIS) that stealthily executes commands sent via web requests. [...] |
Malware
|
|
★★
|
|
2023-02-15 13:11:25 |
Hyundai, Kia patch bug allowing car thefts with a USB cable (lien direct) |
Automakers Hyundai and KIA are rolling out an emergency software update on several of their car models impacted by an easy hack that makes it possible to steal them. [...] |
Hack
|
|
★★★★
|
|
2023-02-15 12:01:28 |
Emsisoft says hackers are spoofing its certs to breach networks (lien direct) |
A hacker is using fake code-signing certificates impersonating cybersecurity firm Emsisoft to target customers using its security products, hoping to bypass their defenses. [...] |
|
|
★★
|
|
2023-02-15 10:47:25 |
City of Oakland declares state of emergency after ransomware attack (lien direct) |
Oakland has declared a local state of emergency because of the impact of a ransomware attack that forced the City to take all its IT systems offline on February 8th. [...] |
Ransomware
|
|
★★
|
|
2023-02-15 10:06:12 |
My Password Manager was Hacked! How to Prevent a Catastrophe (lien direct) |
A recent password manager breach sent a shockwave through the security community. No service is perfect, and that goes for password managers, so what can you do to protect yourself? [...] |
|
|
★★
|
|
2023-02-14 17:37:57 |
RedEyes hackers use new malware to steal data from Windows, phones (lien direct) |
The APT37 threat group (aka 'RedEyes' or 'ScarCruft') has been spotted using a new evasive malware named 'M2RAT' along with steganography to attack specific individuals for intelligence collection. [...] |
Malware
Threat
Cloud
|
APT 37
|
★★
|
|
2023-02-14 12:25:11 |
NPM packages posing as speed testers install crypto miners instead (lien direct) |
A new set of 16 malicious NPM packages are pretending to be internet speed testers but are, in reality, coinminers that hijack the compromised computer's resources to mine cryptocurrency for the threat actors. [...] |
Threat
|
|
★★
|
|
2023-02-14 11:26:54 |
Healthcare giant CHS reports first data breach in GoAnywhere hacks (lien direct) |
Community Health Systems (CHS) says it was impacted by a recent wave of attacks targeting a zero-day vulnerability in Fortra's GoAnywhere MFT secure file transfer platform. [...] |
Data Breach
Vulnerability
|
|
★★
|
|
2023-02-14 09:44:19 |
New stealthy \'Beep\' malware focuses heavily on evading detection (lien direct) |
A new stealthy malware named 'Beep' was discovered last week, featuring many features to evade analysis and detection by security software. [...] |
Malware
|
|
★★
|
|
2023-02-14 01:34:11 |
Eurostar forces \'password resets\' - then fails and locks users out (lien direct) |
Eurostar is emailing its users this week, forcing them to reset their account passwords in a bid to "upgrade" security. But when users visit the password reset link, they are met with "technical problems," thereby making it impossible to reset their password or access their account. [...] |
|
|
★★
|
|
2023-02-13 14:50:00 |
Cloudflare blocks record-breaking 71 million RPS DDoS attack (lien direct) |
This weekend, Cloudflare blocked what it describes as the largest volumetric distributed denial-of-service (DDoS) attack to date. [...] |
|
|
★
|
|
2023-02-13 14:18:37 |
Apple fixes new WebKit zero-day exploited to hack iPhones, Macs (lien direct) |
Apple has released emergency security updates to address a new zero-day vulnerability used in attacks to hack iPhones, iPads, and Macs. [...] |
Hack
Vulnerability
|
|
★★
|
|
2023-02-13 05:33:19 |
Pepsi Bottling Ventures suffers data breach after malware attack (lien direct) |
Pepsi Bottling Ventures LLC suffered a data breach caused by a network intrusion that resulted in the installation of information-stealing malware and the extraction of data from its IT systems. [...] |
Data Breach
Malware
|
|
★★
|
|
2023-02-13 00:06:25 |
Ransomware hits Technion university to protest tech layoffs and Israel (lien direct) |
A new ransomware group going by the name 'DarkBit' has hit Technion - Israel Institute of Technology, one of Israel's leading research universities. The ransom note posted by DarkBit is littered with messaging protesting tech layoffs and promoting anti-Israel rhetoric, as well as the group demanding a $1.7 million payment. [...] |
Ransomware
Guideline
|
|
★★
|
|
2023-02-12 10:12:24 |
Devs targeted by W4SP Stealer malware in malicious PyPi packages (lien direct) |
Five malicious packages were found on the Python Package Index (PyPI), stealing passwords, Discord authentication cookies, and cryptocurrency wallets from unsuspecting developers. [...] |
Malware
|
|
★★
|
|
2023-02-10 17:04:52 |
City of Oakland systems offline after ransomware attack (lien direct) |
The City of Oakland was hit by a ransomware attack on Wednesday night that forced it to take all systems offline until the network is secured and affected services are brought back online. [...] |
Ransomware
|
|
★★
|
|
2023-02-10 15:30:15 |
A10 Networks confirms data breach after Play ransomware attack (lien direct) |
The California-based networking hardware manufacturer 'A10 Networks' has confirmed to BleepingComputer that the Play ransomware gang briefly gained access to its IT infrastructure and compromised data. [...] |
Ransomware
Data Breach
|
|
★★
|
|
2023-02-10 12:36:22 |
California medical group data breach impacts 3.3 million patients (lien direct) |
Multiple medical groups in the Heritage Provider Network in California have suffered a ransomware attack, exposing sensitive patient information to cybercriminals. [...] |
Ransomware
Data Breach
Medical
|
Heritage
Heritage
|
★★★
|
|
2023-02-09 17:04:42 |
Hackers breach Reddit to steal source code and internal data (lien direct) |
Reddit suffered a cyberattack Sunday evening, allowing hackers to access internal business systems and steal internal documents and source code. [...] |
|
|
★★
|
|
2023-02-09 16:34:47 |
Hackers use fake crypto job offers to push info-stealing malware (lien direct) |
A campaign operated by Russian threat actors uses fake job offers to target Eastern Europeans working in the cryptocurrency industry, aiming to infect them with a modified version of the Stealerium malware named 'Enigma.' [...] |
Malware
Threat
|
|
★★
|
|
2023-02-09 12:39:25 |
Hacker develops new \'Screenshotter\' malware to find high-value targets (lien direct) |
A new threat actor tracked as TA886 targets organizations in the United States and Germany with new custom malware to perform surveillance and data theft on infected systems. [...] |
Malware
Threat
|
|
★★
|
|
2023-02-09 10:21:02 |
U.S. and U.K. sanction TrickBot and Conti ransomware operation members (lien direct) |
The United States and the United Kingdom have sanctioned seven Russian individuals for their involvement in the TrickBot cybercrime group, whose malware was used to support attacks by the Conti and Ryuk ransomware operation. [...] |
Ransomware
Malware
|
|
★
|
|
2023-02-08 16:21:24 |
Weee! grocery service confirms data breach, 1.1 million affected (lien direct) |
The Weee! Asian and Hispanic food delivery service suffered a data breach exposing the personal information of 1.1 million customers. [...] |
Data Breach
|
|
★★★
|
|
2023-02-08 13:09:54 |
(Déjà vu) Malicious Dota 2 game mods infected players with malware (lien direct) |
Security researchers have discovered four malicious Dota 2 game mods that were used by a threat actor to backdoor the players' systems. [...] |
Malware
Threat
|
|
★★★
|
|
2023-02-08 13:09:54 |
Malicious Dota 2 game modes infected players with malware (lien direct) |
Security researchers have discovered four malicious Dota 2 game modes that were used by a threat actor to backdoor the players' systems. [...] |
Malware
Threat
|
|
★★★
|
|
2023-02-08 13:00:00 |
Android 14 to block malware from abusing sensitive permissions (lien direct) |
Google has announced the release of the first developer preview for Android 14, the next major version of the world's most popular mobile operating system, which comes with security and privacy enhancements, among other things. [...] |
Malware
|
|
★★★★
|
|
2023-02-08 10:57:19 |
Money Lover for Android & iOS leaked email addresses, transactions (lien direct) |
A flaw in the Money Lover financial app for Android, iOS, and Windows allowed any logged-in member to see the email addresses and live transaction metadata for other users' shared wallets. [...] |
|
|
★★★
|
|
2023-02-08 10:04:08 |
Lessons Learned on Ransomware Prevention from the Rackspace Attack (lien direct) |
The ransomware attack on Rackspace has taught us the importance of good cybersecurity habits. Let's see what we can learn from the attack and how organizations can protect themselves. [...] |
Ransomware
|
|
★★★
|
|
2023-02-08 09:59:22 |
Drug distributor AmerisourceBergen confirms security breach (lien direct) |
Pharmaceutical distributor AmerisourceBergen confirmed that hackers compromised the IT system of one of its subsidiaries after threat actors began leaking allegedly stolen data. [...] |
Threat
|
|
★★
|
|
2023-02-08 06:00:00 |
Russian hackers using new Graphiron information stealer in Ukraine (lien direct) |
The Russian hacking group known as 'Nodaria' (UAC-0056) is using a new information-stealing malware called 'Graphiron' to steal data from Ukrainian organizations. [...] |
Malware
|
|
★★
|
|
2023-02-07 17:21:02 |
New QakNote attacks push QBot malware via Microsoft OneNote files (lien direct) |
A new QBot malware campaign dubbed "QakNote" has been observed in the wild since last week, using malicious Microsoft OneNote' .one' attachments to infect systems with the banking trojan. [...] |
Malware
|
|
★★★
|
|
2023-02-07 06:00:00 |
Clop ransomware flaw allowed Linux victims to recover files for months (lien direct) |
The Clop ransomware gang is now also using a malware variant that explicitly targets Linux servers, but a flaw in the encryption scheme has allowed victims to quietly recover their files for free for months. [...] |
Ransomware
Malware
|
|
★★★
|
|
2023-02-05 12:17:34 |
Dashlane password manager open-sourced its Android and iOS apps (lien direct) |
Dashlane announced it had made the source code for its Android and iOS apps available on GitHub under the Creative Commons Attribution-NonCommercial 4.0 license. [...] |
|
|
★★
|
|
2023-02-05 10:15:32 |
Linux version of Royal Ransomware targets VMware ESXi servers (lien direct) |
Royal Ransomware is the latest ransomware operation to add support for encrypting Linux devices to its most recent malware variants, specifically targeting VMware ESXi virtual machines. [...] |
Ransomware
Malware
|
|
★★
|
|
2023-02-04 11:23:17 |
NY attorney general forces spyware vendor to alert victims (lien direct) |
The New York attorney general's office has announced a $410,000 fine against a stalkerware developer who used 16 companies to promote surveillance tools illegally. [...] |
|
|
★★
|
|
2023-02-03 18:24:05 |
TruthFinder, Instant Checkmate confirm data breach affecting 20M customers (lien direct) |
PeopleConnect, the owners of the TruthFinder and Instant Checkmate background check services, confirmed they suffered a data breach after hackers leaked a 2019 backup database containing the info of millions of customers. [...] |
Data Breach
|
|
★★★
|
|
2023-02-03 14:20:48 |
Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide (lien direct) |
Admins, hosting providers, and the French Computer Emergency Response Team (CERT-FR) warn that attackers actively target VMware ESXi servers unpatched against a two-year-old remote code execution vulnerability to deploy ransomware. [...] |
Ransomware
Vulnerability
|
|
★★★
|
|
2023-02-03 11:39:05 |
GoAnywhere MFT zero-day vulnerability lets hackers breach servers (lien direct) |
The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed administrator consoles. [...] |
Vulnerability
|
|
★★★
|
|
2023-02-02 19:04:42 |
Google ads push \'virtualized\' malware made for antivirus evasion (lien direct) |
An ongoing Google ads malvertising campaign is spreading malware installers that leverage KoiVM virtualization technology to evade detection when installing the Formbook data stealer. [...] |
Malware
|
|
★★
|
|
2023-02-02 15:23:18 |
Hackers weaponize Microsoft Visual Studio add-ins to push malware (lien direct) |
Security researchers warn that hackers may start using Microsoft Visual Studio Tools for Office (VSTO) more often as method to achieve persistence and execute code on a target machine via malicious Office add-ins. [...] |
Malware
|
|
★★★★★
|
|
2023-02-02 12:56:58 |
North Korean hackers stole research data in two-month-long breach (lien direct) |
A new cyber espionage campaign dubbed 'No Pineapple!' has been attributed to the North Korean Lazarus hacking group, allowing the threat actors to stealthily steal 100GB of data from the victim without causing any destruction. [...] |
Threat
|
APT 38
|
★★
|
|
2023-02-02 12:07:55 |
Cisco fixes bug allowing malware persistence between reboots (lien direct) |
Cisco has released security updates this week to address a high-severity vulnerability in the Cisco IOx application hosting environment that can be exploited in command injection attacks. [...] |
Malware
Vulnerability
|
|
★★★
|
|
2023-02-02 09:13:26 |
Ransomware attack on ION Group impacts derivatives trading market (lien direct) |
The LockBit ransomware gang has claimed responsibility for the cyberattack on ION Group, a UK-based software company whose products are used by financial institutions, banks, and corporations for trading, investment management, and market analytics. [...] |
Ransomware
|
|
★★
|
|
2023-02-01 18:56:02 |
New HeadCrab malware infects 1,200 Redis servers to mine Monero (lien direct) |
New stealthy malware designed to hunt down vulnerable Redis servers online has infected over a thousand of them since September 2021 to build a botnet that mines for Monero cryptocurrency. [...] |
Malware
|
|
★★★
|
|
2023-02-01 17:30:45 |
Over 1,800 Android phishing forms for sale on cybercrime market (lien direct) |
A threat actor named InTheBox is promoting on Russian cybercrime forums an inventory of 1,894 web injects (overlays of phishing windows) for stealing credentials and sensitive data from banking, cryptocurrency exchange, and e-commerce apps [...] |
Threat
|
|
★★
|
|
2023-02-01 15:43:12 |
Google Fi data breach let hackers carry out SIM swap attacks (lien direct) |
Google Fi, Google's U.S.-only telecommunications and mobile internet service, has informed customers that personal data was exposed by a data breach at one of its primary network providers, with some customers warned that it allowed SIM swapping attacks. [...] |
Data Breach
|
|
★★
|
|
2023-02-01 13:38:40 |
Arnold Clark customer data stolen in attack claimed by Play ransomware (lien direct) |
Arnold Clark, self-described as Europe's largest independent car retailer, is notifying some customers that their personal information has been stolen in a December 23 cyberattack claimed by the Play ransomware group. [...] |
Ransomware
|
|
★★★
|