Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:40:00 |
Coinbase Crypto Exchange Ensnared in \'Oktapus\'-Related Smishing Attack (lien direct) |
Some employees' personal data was leaked, but the company responded swiftly to a socially engineered incident that gained access to legitimate employee login credentials. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:35:00 |
Third-Party Providers Create Identity and Access Control Challenges for Fintech Apps (lien direct) |
Fintech has drastically shifted the financial services industry toward digital technologies and, in so doing, has introduced a variety of new risks. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:08:30 |
Israel\'s Top Tech University Targeted by DarkBit Ransomware (lien direct) |
An Israeli university is being blackmailed by hackers. However, they aren't just after money but are looking to send a political message - and maybe something more. |
Ransomware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 15:00:00 |
Insider Threats Don\'t Mean Insiders Are Threatening (lien direct) |
By implementing tools that enable internal users to do their jobs efficiently and securely, companies reduce insider threat risk by building insider trust. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 15:00:00 |
Modern Software: What\'s Really Inside? (lien direct) |
Open source has changed the software game from build or buy to assemble with care. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 14:01:00 |
Despite Breach, LastPass Demonstrates the Power of Password Management (lien direct) |
What's scarier than keeping all of your passwords in one place and having that place raided by hackers? Maybe reusing insecure passwords. |
|
LastPass
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 14:00:03 |
Researchers Create an AI Cyber Defender That Reacts to Attackers (lien direct) |
The system based on deep reinforcement learning can adapt to defenders' tactics and stop 95% of simulated attacks, according to its developers. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 14:00:00 |
Majority of Ransomware Attacks Last Year Exploited Old Bugs (lien direct) |
New research shows that 57 vulnerabilities that threat actors are currently using in ransomware attacks enable everything from initial access to data theft. |
Ransomware
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 23:05:00 |
Is OWASP at Risk of Irrelevance? (lien direct) |
A growing group of OWASP members and board leaders are calling for the AppSec group to make big changes to stay apace with modern development. |
Guideline
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 21:49:00 |
Check Point Boosts AppSec Focus With CNAPP Enhancements (lien direct) |
Established network security players like Check Point are responding to the shift to cloud-native applications, which have exposed more vulnerabilities in open source software supply chains. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 21:34:51 |
Novel Spy Group Targets Telecoms in \'Precision-Targeted\' Cyberattacks (lien direct) |
The primary victims so far have been employees of telcos in the Middle East, who were hit with custom backdoors via the cloud, in a likely precursor to a broader attack. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 21:00:00 |
Google Translate Helps BEC Groups Scam Companies in Any Language (lien direct) |
BEC gangs Midnight Hedgehog and Mandarin Capybara show how online marketing and translation tools are making it easy for these threat groups to scale internationally. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 19:00:40 |
Inglis Retires as National Cyber Director Ahead of Biden\'s Cybersecurity EO (lien direct) |
The long-time NSA and cyber specialist says he's exiting the public sector. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 18:20:00 |
Not Stoked: Burton Snowboards\' Online Orders Disrupted After Cyberattack (lien direct) |
The snow sports specialist is investigating to see what caused the operations-disrupting "cyber incident." |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 17:35:00 |
Massive GoAnywhere RCE Exploit: Everything You Need to Know (lien direct) |
Weeks after an exploit was first announced in a popular cloud-based file transfer service, could some organizations still be vulnerable? The answer is yes. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 15:00:00 |
AppSec Threats Deserve Their Own Incident Response Plan (lien direct) |
With a rearranging of priorities and good incident response plans, organizations can be ready to face the future of software attacks. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 22:34:00 |
ESXi Ransomware Update Outfoxes CISA Recovery Script (lien direct) |
New ESXiArgs-ransomware attacks include a workaround for CISA's decryptor, researchers find. |
Ransomware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 22:10:00 |
Atlassian: Leaked Data Stolen via Third-Party App (lien direct) |
SiegedSec threat group leaked data that Atlassian says was taken from app used to coordinate in-office resources. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 21:10:00 |
SASE Market to Exceed Over $60B Between 2022 and 2027, According to Dell\'Oro Group (lien direct) |
Pas de details / No more details |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 21:00:00 |
MVP Vibe Fest Bridges Gap Between Athletics and Cybersecurity (lien direct) |
Top athletes compete both on and off the track in a mix of track and field events and cyber games. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 19:34:32 |
Cybersecurity Jobs Remain Secure Despite Recession Fears (lien direct) |
Only 10% of corporate executives expect to lay off members of cybersecurity teams in 2023, much lower than other areas, as companies protect hard-to-find skill sets. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 16:41:00 |
SideWinder APT Spotted Stealing Crypto (lien direct) |
The nation-state threat group has been attacking a wider range of victims and regions than previously thought. |
Threat
|
APT-C-17
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 15:35:00 |
Window Snyder\'s Start-up Launches Security Platform for IoT Device Makers (lien direct) |
Thistle's technology will give device makers a way to easily integrate features for secure updates, memory management, and communications into their products, Snyder says. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 15:00:00 |
Simplify to Survive: How Organizations Can Navigate Cyber-Risk (lien direct) |
Simplification can result in efficiencies, reduced overhead, and the ability to respond to cyber threats more quickly. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 08:00:00 |
Encrypted Traffic, Once Thought Safe, Now Responsible For Most Cyberthreats (lien direct) |
It's a classic attacker move: Use security protections against those who deploy them. But organizations can still defuse and prevent these encrypted attacks. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 02:00:00 |
Descope Handles Authentication So Developers Don\'t Have To (lien direct) |
Developers don't have to build authentication and user management from scratch, and can devote their energies to the core functions of the application, instead. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 01:00:00 |
Oligo Security Takes Aim at Open Source Vulnerabilities (lien direct) |
The startup's software helps organizations secure their containers in the cloud by teasing out which packages are running and which are vulnerable. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 22:50:00 |
ChatGPT Subs In as Security Analyst, Hallucinates Only Occasionally (lien direct) |
Incident response triage and software vulnerability discovery are two areas where the large language model has demonstrated success, although false positives are common. |
Vulnerability
|
ChatGPT
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:47:00 |
(Déjà vu) Brivo Reveals Top Security Trends for 2023: Convenience Is King in Securing the Hybrid Workplaces of the Future (lien direct) |
Factoring user experience and convenience into how employees and tenants access buildings is top concern for security professionals says benchmark industry survey. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:45:00 |
Call for Speakers Now Open for the RH-ISAC Cyber Intelligence Summit (lien direct) |
Retail & Hospitality ISAC invites industry leaders, experts, and innovators to submit proposals for presentations and panel discussions. |
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:18:00 |
GAO Calls for Improved Data Privacy Protections (lien direct) |
US federal watchdog agency outlines key measures for better protecting sensitive data under the federal government's control. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:00:00 |
2023 Is the Year of Risk: 5 Ways to Prepare (lien direct) |
2022 saw a record number of cyberattacks. In response, regulators are prescribing how companies should manage their risks. How do you prepare? |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 19:55:00 |
3 Ways CISOs Can Lead Effectively and Avoid Burnout (lien direct) |
Information security is a high-stakes field with sky-high expectations. Here's how CISOs can offset the pressures and stay healthy. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 19:00:00 |
What Purple Teams Wish Companies Knew (lien direct) |
Here are some of the easily avoidable mistakes most companies made last year, gleaned from hundreds of cybersecurity engagements by red and blue teams. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 18:00:00 |
Build Cyber Resiliency With These Security Threat-Mitigation Considerations (lien direct) |
CISOs need to define their risk tolerance, identify specific critical data, and make changes based on strategic business goals. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 17:05:00 |
IGEL Unveils COSMOS, the Unified End User Computing Platform for Secure, Managed Access to Any Cloud Workspace (lien direct) |
Pas de details / No more details |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 16:40:00 |
Report Reveals Record-Breaking Year for Cyber Threats (lien direct) |
Pas de details / No more details |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 16:21:00 |
5th State of CCPA, CPRA, and GDPR Compliance Report Shows More Than 90% of Companies Are Not Compliant (lien direct) |
As CPRA went into effect on January 1, latest CYTRIO research says 91% of companies still uncompliant with GDPR; 92% not compliant with CCPA and CPRA. |
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 16:00:00 |
1898 & Co Launches New Cybersecurity Service for Critical Infrastructure (lien direct) |
Pas de details / No more details |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 15:30:09 |
NIST\'s New Crypto Standard a Step Forward in IoT Security (lien direct) |
The National Institute of Standards and Technology has settled on a standard for encrypting Internet of Things (IoT) communications, but many devices remain vulnerable and unpatched. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 15:00:00 |
How Security Teams Can Protect Employees Beyond Corporate Walls (lien direct) |
De-shaming security mistakes and taking the blame and punishment out of incident reporting can strengthen security efforts both inside and outside of the workplace. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 14:00:00 |
Russian Cybercriminal Faces Decades in Prison for Hacking and Trading Operation (lien direct) |
Vladislav Klyushin and co-conspirators used SEC filings stolen from the networks of Tesla, Roku, and other publicly traded companies to earn nearly $100 million in illegal trades. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 08:00:00 |
Infrastructure Risks Increase As IT and OT Converge (lien direct) |
Explosive growth of devices associated with the Internet of Things and operational technologies gives attackers a larger pool of targets. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 01:00:00 |
Expel Tackles Cloud Threats With MDR for Kubernetes (lien direct) |
The new managed detection and response platform simplifies cloud security for Kubernetes applications. |
|
Uber
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-14 22:47:00 |
OT Network Security Myths Busted in a Pair of Hacks (lien direct) |
How newly exposed security weaknesses in industrial wireless, cloud-based interfaces, and nested PLCs serve as a wake-up call for hardening the physical process control layer of the OT network. |
Industrial
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-14 22:20:00 |
9 New Microsoft Bugs to Patch Now (lien direct) |
78 new CVEs patched in this month's batch - nearly half of which are remotely executable and three of which attackers already are exploiting. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-14 19:50:00 |
Oakland City Services Struggle to Recover From Ransomware Attack (lien direct) |
Fire emergency, 911 services functioning, along with Oakland financial systems, city says. |
Ransomware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-14 19:08:00 |
Configuration Issues in SaltStack IT Tool Put Enterprises at Risk (lien direct) |
Researchers flag common misconfiguration errors and a template injection technique that could let an attacker take over the IT management network and connected systems. |
Tool
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-14 18:59:00 |
Hospitals Sued for Using Meta\'s Ad-Tracking Code, Violating HIPAA (lien direct) |
Lawsuits say hospitals using Meta Pixel code violated patient privacy - sharing conditions, medications, and more with Facebook. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-14 18:00:00 |
Why SecDataOps Is the Future of Your Security Program (lien direct) |
The goal: Ensure that data is always finely curated and accessible, and that security decisions get made with high-fidelity data. |
|
|
★★
|