What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-03-09 21:47:10 | IceFire Ransomware Portends a Broader Shift From Windows to Linux (lien direct) | IceFire has changed up its OS target in recent cyberattacks, emblematic of ransomware actors increasingly targeting Linux enterprise networks, despite the extra work involved. | Ransomware | ★★ | |
|
2023-03-09 21:22:47 | AT&T Vendor Breach Exposes Data on 9M Wireless Accounts (lien direct) | AT&T is notifying customers of a Customer Proprietary Network Information compromise, exposing years-old upgrade details. | ★★ | ||
|
2023-03-09 21:01:00 | US Lawmakers Face Cyberattacks, Potential Physical Harm After DC Health Link Breach (lien direct) | The threat actor who posted the data for sale has claimed credit for multiple other breaches, including one at grocery platform Weee! that exposed data on more than 1.1 million customers. | Threat | ★★ | |
|
2023-03-09 20:41:03 | Medusa Gang Video Shows Minneapolis School District\'s Ransomed Data (lien direct) | Much like a hostage's proof-of-life video, the ransomware gang offers the film as verification that it has the goods, and asks $1 million for the data. | Ransomware | ★★ | |
|
2023-03-09 19:00:00 | 5 Reasons You Should Care About Unmanaged Assets (lien direct) | Unmanaged devices pose a significant challenge and risk for many organizations. Here are the five reasons you should care about unmanaged devices and assets. | ★★ | ||
|
2023-03-09 18:41:00 | Inside Threat: Developers Leaked 10M Credentials, Passwords in 2022 (lien direct) | More than five out of every 1,000 commits to GitHub included a software secret, half again the rate in 2021, putting applications and businesses at risk. | ★★★★ | ||
|
2023-03-09 18:00:00 | How to Jump-Start Your Cybersecurity Career (lien direct) | With more than 700,000 cybersecurity jobs available, now is a good time to consider a career change. | General Information | ★★★ | |
|
2023-03-09 16:56:00 | Iranian APT Targets Female Activists With Mahsa Amini Protest Lures (lien direct) | A top Iranian, state-sponsored threat is a spear-phishing campaign that uses a fake Twitter persona to target women interested in Iranian political affairs and human rights. | Threat | ★★ | |
|
2023-03-09 15:11:33 | Critical RCE Bug Opens Fortinet\'s Secure Web Gateway to Takeover (lien direct) | Users should patch an unauthenticated remote code execution bug impacting FortiOS and FortiProxy administrative interfaces ASAP, Fortinet says. | ★★★ | ||
|
2023-03-09 15:00:00 | 5 Critical Components of Effective ICS/OT Security (lien direct) | These agile controls and processes can help critical infrastructure organizations build an ICS security program tailored to their own risk profile. | Industrial | ★★★ | |
|
2023-03-08 22:45:00 | \'Skinny\' Cyber Insurance Policies Create Compliance Path (lien direct) | It's getting hard to buy cyber insurance, but not having it is not always an option. Low-coverage plans could bridge the gap. | ★★ | ||
|
2023-03-08 22:24:00 | Edgeless Systems Raises $5M to Advance Confidential Computing (lien direct) | Confidential computing will revolutionize cloud security in the decade to come and has become a top C-level priority for industry leaders such as Google, Intel and Microsoft. Edgeless Systems is leading these advancements to ensure all data is always encrypted. | Guideline Cloud | ★★ | |
|
2023-03-08 22:14:00 | Emotet Resurfaces Yet Again After 3-Month Hiatus (lien direct) | More than two years after a major takedown by law enforcement, the threat group is once again proving just how impervious it is against disruption attempts. | Threat | ★★★ | |
|
2023-03-08 21:08:00 | TSA Issues Urgent Directive to Make Aviation More Cyber Resilient (lien direct) | Will stricter cybersecurity requirements make flying safer? The TSA says yes, and sees it as a time-sensitive imperative. | ★★ | ||
|
2023-03-08 20:14:00 | 40% of Global ICS Systems Attacked With Malware in 2022 (lien direct) | Led by growth in Russia, more than 40% of global ICS systems faced malicious activity in the second half of 2022. | Malware | ★★ | |
|
2023-03-08 17:31:00 | Russian Influence Duo Targets Politicians, CEOs for Embarrassing Video Calls (lien direct) | A state-backed threat actor impersonates political figures, tricking a prime minister, a former US president, and several European mayors and MPs into video calls later used in an anti-Ukraine influence campaign. | Threat | ★★★ | |
|
2023-03-08 16:50:40 | AI-Powered \'BlackMamba\' Keylogging Attack Evades Modern EDR Security (lien direct) | Researchers warn that polymorphic malware created with ChatGPT and other LLMs will force a reinvention of security automation. | Malware | ChatGPT ChatGPT | ★★ |
|
2023-03-08 15:30:00 | Lacework Launches Secured by Women Initiative (lien direct) | For International Women's Month, new ongoing initiative is aimed at celebrating women and bringing visibility to those making cybersecurity history. | ★★ | ||
|
2023-03-08 15:10:00 | Surge in Cloud Adoption Means a Greater Data Attack Surface for Healthcare and Financial Services (lien direct) | Organizations in both industries are falling short when addressing new challenges to protect data in the cloud, finds Blancco report. | Cloud | ★★ | |
|
2023-03-08 15:00:00 | Rising Public Cloud Adoption Is Accelerating Shadow Data Risks (lien direct) | Using a risk-based approach to deal with policy violations and continuous compliance monitoring will help avoid data exposures and fines. | Cloud | ★★ | |
|
2023-03-08 01:00:00 | Tech Giants Go Cloud-Native Shopping (lien direct) | Cisco's acquisition of cloud-native firewall provider Valtix and HPE's deal to buy SSE provider Axis Security fill gaps in their existing portfolios. | ★★ | ||
|
2023-03-07 21:48:00 | Akamai Technologies Releases New Service and Tools to Stop Advanced Threats and Drive Zero Trust Adoption (lien direct) | Pas de details / No more details | ★★ | ||
|
2023-03-07 20:40:24 | Hiatus Campaign Infects DrayTek Gear for Cyber Espionage, Proxy Control (lien direct) | Two novel malware binaries, including "HiatusRAT," offer unique capabilities that point to the need for better security for companies' router infrastructure. | Malware | ★★ | |
|
2023-03-07 20:18:00 | Acer Confirms Data Offered Up for Sale Was Stolen (lien direct) | An Acer statement confirms that a document server for repair techs was compromised, but says customer data doesn't appear to be part of the leak. | ★★ | ||
|
2023-03-07 19:50:00 | Hacker Cracks Toyota Customer Search Tool (lien direct) | Flaw in Toyota's C360 customer relationship management tool exposed personal data of unknown number of customers in Mexico, a disclosure says. | Tool | ★★★★ | |
|
2023-03-07 18:37:00 | Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears (lien direct) | More than 4% of employees have put sensitive corporate data into the large language model, raising concerns that its popularity may result in massive leaks of proprietary information. | ChatGPT | ★★★★ | |
|
2023-03-07 18:00:00 | Scams Security Pros Almost Fell For (lien direct) | By working together as an industry, we can develop the technologies needed to account for human error. | ★★★ | ||
|
2023-03-07 17:54:00 | (Déjà vu) 99% of Cybersecurity Leaders Are Stressed About Email Security (lien direct) | Pas de details / No more details | ★★★ | ||
|
2023-03-07 17:38:00 | Palo Alto Survey Reveals 90% of Organizations Cannot Resolve Cyberthreats Within an Hour (lien direct) | Third annual report identifies top security gaps and challenges for organizations operating in the cloud. | Studies | ★★★★ | |
|
2023-03-07 16:07:22 | Remcos RAT Spyware Scurries Into Machines via Cloud Servers (lien direct) | Attackers use phishing emails that appear to come from reputable organizations, dropping the payload using public cloud servers and an old Windows UAC bypass technique. | Cloud | ★★★ | |
|
2023-03-07 16:00:00 | Delinea Adds New features for its Privilege Manager and DevOps Secrets Vault (lien direct) | Pas de details / No more details | ★★ | ||
|
2023-03-07 15:46:00 | Key Proposals in Biden\'s Cybersecurity Strategy Face Congressional Challenges (lien direct) | The strategy document does nothing to change things on the ground in the near term; legislation, regulation, and follow-up executive action are all going to be key to moving forward the administration's agenda. | ★★★ | ||
|
2023-03-07 15:00:00 | Ransomware\'s Favorite Target: Critical Infrastructure and Its Industrial Control Systems (lien direct) | The health, manufacturing, and energy sectors are the most vulnerable to ransomware. | Industrial | ★★★ | |
|
2023-03-07 14:57:00 | Optiv Launches Full Suite of Operational Technology Services (lien direct) | Pas de details / No more details | General Information | ★★★ | |
|
2023-03-07 14:40:00 | Cyber Security Works to Rebrand As Securin Inc. (lien direct) | Securin Inc. will provide tech-enabled security solutions, vulnerability intelligence and deep domain expertise. | General Information | ★★★ | |
|
2023-03-07 00:46:00 | Machine Learning Improves Prediction of Exploited Vulnerabilities (lien direct) | The third iteration of the Exploit Prediction Scoring System (EPSS) performs 82% better than previous versions, giving companies a better tool for evaluating vulnerabilities and prioritizing patching. | Tool | ★★★★ | |
|
2023-03-06 21:30:00 | Shein Shopping App Glitch Copies Android Clipboard Contents (lien direct) | The Android app unnecessarily accessed clipboard device contents, which often includes passwords and other sensitive data. | ★ | ||
|
2023-03-06 19:25:00 | Police Raid Rounds Up Core Members of DoppelPaymer Ransomware Gang (lien direct) | This is the latest in a line of law-enforcement actions busting up the ransomware scene. | Ransomware | ★ | |
|
2023-03-06 18:40:00 | NIST\'s Quantum-Proof Algorithm Has a Bug, Analysts Say (lien direct) | A team has found that the Crystals-Kyber encryption algorithm is open to side-channel attacks, under certain implementations. | ★★ | ||
|
2023-03-06 18:10:00 | SANS Institute Partners With Google to Launch Cloud Diversity Academy (lien direct) | Pas de details / No more details | Cloud | ★★★ | |
|
2023-03-06 15:00:00 | Name That Edge Toon: Domino Effect (lien direct) | Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. | ★★ | ||
|
2023-03-06 15:00:00 | The Role of Verifiable Credentials In Preventing Account Compromise (lien direct) | As digital identity verification challenges grow, organizations need to adopt a more advanced and forward-focused approach to preventing hacks. | ★★★ | ||
|
2023-03-04 00:20:00 | Rapid7 Brings Threat Intel Data to USF Cybersecurity Lab (lien direct) | The Rapid7 Cyber Threat Intelligence Laboratory at the University of South Florida will provide data on real-world threats for faculty and students to use in their research. | Threat | ★★★ | |
|
2023-03-03 21:02:03 | EV Charging Infrastructure Offers an Electric Cyberattack Opportunity (lien direct) | Attackers have already targeted electric vehicle (EV) charging stations, and experts are calling for cybersecurity standards to protect this necessary component of the electrified future. | ★★★ | ||
|
2023-03-03 20:30:46 | Indigo Books Refuses LockBit Ransomware Demand (lien direct) | Canada's largest bookseller rejected the pressure of the ransomware gang's countdown timer, despite data threats. | Ransomware | ★★ | |
|
2023-03-03 19:21:04 | Polish Politician\'s Phone Patrolled by Pegasus (lien direct) | A mayor backing Polish opposition elections in parliament has been targeted by special services with Pegasus spyware. | ★★★ | ||
|
2023-03-03 18:00:00 | 3 Ways Security Teams Can Use IP Data Context (lien direct) | Innocently or not, residential proxy networks can obscure the actual geolocation of an access point. Here's why that's not great and what you can do about it. | ★★★ | ||
|
2023-03-03 17:17:00 | Chick-fil-A Customers Have a Bone to Pick After Account Takeovers (lien direct) | A two-month-long automated credential-stuffing campaign exposed personal information of Chick-fil-A customers, including birthdays, phone numbers, and membership details. | ★★ | ||
|
2023-03-03 15:00:00 | It\'s Time to Assess the Potential Dangers of an Increasingly Connected World (lien direct) | With critical infrastructures ever more dependent on the cloud connectivity, the world needs a more stable infrastructure to avoid a crippling cyberattack. | Cloud | ★★★ | |
|
2023-03-03 02:44:00 | IBM Contributes Supply Chain Security Tools to OWASP (lien direct) | License Scanner and SBOM Utility will boost the capabilities of OWASP's CycloneDX Software Bill of Materials standard. | ★★★ |
To see everything:
Our RSS (filtrered)
