Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-11 17:00:00 |
Multiple Danish Banks Disrupted By DDoS Cyber-Attack (lien direct) |
The attack also affected IT financial industry solutions developer Bankdata |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-11 16:00:00 |
Sensitive Files From San Francisco Transit Police Allegedly Leaked (lien direct) |
The leaked files include some 120,000 files, with specific allegations of child abuse |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-11 11:50:00 |
Customer and Employee Data the Top Prize for Hackers – Imperva (lien direct) |
Customer and employee data accounts for almost half all stolen data while credit cards and password see a decline |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-11 11:30:00 |
Applications Five Years or Older Likely to have Security Flaws (lien direct) |
Veracode's 2023 State of Software Security Report is focused on flaw introduction |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-11 11:00:00 |
Over 100 CVEs Addressed in First Patch Tuesday of 2023 (lien direct) |
Microsoft's January Patch Tuesday resolved over 100 CVEs, including an actively exploited zero day |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-10 18:00:00 |
US Supreme Court Allows WhatsApp to Sue NSO Group (lien direct) |
WhatsApp can now sue for damages ensued by the installation of the Pegasus spyware |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-10 17:00:00 |
(Déjà vu) Researchers Find Security Flaw in JsonWebToken Library Used By 20,000+ Projects (lien direct) |
An attacker could perform RCE on a server verifying a maliciously crafted JWT request |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-10 16:00:00 |
GitHub Adds Features to Automate Vulnerability Code Scanning (lien direct) |
Called “default setup,” the novel capability simplifies starting code scanning on repositories |
Vulnerability
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-10 11:30:00 |
UK Charities Offered Free Cyber Essentials Support (lien direct) |
The NCSC's new Funded Cyber Essentials Programme will support SMEs as well as charities |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-10 10:42:00 |
Ukraine: Russian Cyber-Attacks Should Be Considered War Crimes (lien direct) |
A Ukrainian official revealed that evidence of Russian cyber-attacks are being gathered to support potential war crime prosecutions |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-09 18:00:00 |
Freejacking Campaign By PurpleUrchin Bypasses Captchas (lien direct) |
The threat actors also deployed more aggressive techniques for mining CPU resources |
Threat
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-09 17:00:00 |
ChatGPT Used to Develop New Malicious Tools (lien direct) |
These include infostealers, multi-layer encryption tools and dark web marketplace scripts |
|
ChatGPT
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-09 16:00:00 |
Dark Web Actors Fight For Drug Trafficking and Illegal Pharmacy Supremacy (lien direct) |
Following the takedown of the Hydra Marketplace in 2022, 10 darknet markets rose to fill the void |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-09 10:30:00 |
Global Cyber-Attack Volume Surges 38% in 2022 (lien direct) |
Last year was also worst on record for UK businesses |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-09 10:00:00 |
Threat Actors Spread RAT Via Pokemon NFT Card Site (lien direct) |
Phishing page lures unsuspecting users into installing remote access malware |
Malware
Threat
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-09 09:30:00 |
FCC Wants to Accelerate Breach Reporting for Telcos (lien direct) |
Proposals designed to strengthen consumer protections |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 18:00:00 |
WhatsApp Unveils Proxy Support to Tackle Internet Censorship (lien direct) |
The Meta-owned firm also compiled a guide designed to help users set up their own proxy servers |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 17:00:00 |
Blind Eagle Hacking Group Targets South America With New Tools (lien direct) |
Security experts from Check Point Research unveiled the findings in a new advisory |
|
APT-C-36
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 16:00:00 |
US Family Planning Non-Profit MFHS Confirms Ransomware Attack (lien direct) |
The non-profit said its systems were compromised between August 2021 and April 2022 |
Ransomware
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 11:45:00 |
UK Schools Hit by Mass Leak of Confidential Data (lien direct) |
Confidential data including child passport scans and staff pay scales have been leaked following cyber-attacks in 2022 |
|
|
★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 10:45:00 |
Personal Storage Table Files Accessed in Rackspace Attack (lien direct) |
Incident struck in early December 2022 |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 10:00:00 |
Security Industry Hits Back with MegaCortex Decryptor (lien direct) |
Another ransomware variant bites the dust |
Ransomware
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-06 09:30:00 |
Ransomware Disruption at The Guardian to Last at Least a Month (lien direct) |
Famed newspaper was hit at the end of December |
Ransomware
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-05 18:00:00 |
Hackers Leverage Compromised Fortinet Devices to Distribute Ransomware (lien direct) |
The findings come from eSentire's Threat Response Unit |
Ransomware
Threat
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-05 17:00:00 |
Five Guys Discloses Data Breach Affecting Employee PII (lien direct) |
The September incident exposed names, social security numbers and driver's license numbers |
Data Breach
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-05 16:00:00 |
Over 200 Million Twitter Users\' Details Leaked on Hacker Forum (lien direct) |
The leaked data included names, usernames, email addresses, follower counts and creation dates |
|
|
★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-05 10:30:00 |
Cops Catch Serial Child Abuser After Tech Breakthrough (lien direct) |
UK's National Crime Agency ends 13-year hunt for man |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-05 10:00:00 |
Meta to Appeal €390m GDPR Fine (lien direct) |
Social media giant says legal basis for data processing was sound |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-05 09:30:00 |
Rail Tech Giant Wabtec Discloses Global Data Breach (lien direct) |
Incident thought to stem from 2022 ransomware attack |
Ransomware
Data Breach
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-04 16:00:00 |
US Regulators Warn Banks About Cryptocurrency Security Risks (lien direct) |
The joint statement highlighted the risk of fraud and cyber-attacks related to crypto-assets |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-04 14:15:00 |
New Phishing Campaign Impersonates Flipper Zero to Target Cyber Professionals (lien direct) |
The threat actor is using an angler phishing technique to leverage the shortage of the popular hacking tool |
Tool
Threat
|
|
★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-04 10:30:00 |
General Electric Insider Handed Two Years for IP Theft (lien direct) |
New York man sent aviation trade secrets to China |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-04 10:00:00 |
Malicious PyTorch Package Downloaded Thousands of Times (lien direct) |
Developer warns of another open source supply chain attack |
|
|
★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-04 09:30:00 |
NHS is Most Scammed UK Government "Brand" (lien direct) |
Millions of suspicious emails were reported in 2022 |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-03 16:10:00 |
Researchers Discover New Linux Malware Targeting WordPress Sites (lien direct) |
The Trojan exploits known vulnerabilities in outdated WordPress plugins and themes |
Malware
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-03 10:30:00 |
LockBit Hands Ransomware Decryptor to Kids\' Hospital (lien direct) |
Group apologizes to Toronto-based SickKids |
Ransomware
|
|
★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-03 10:00:00 |
Ukrainian Cops Bust Major Vishing Call Center (lien direct) |
An estimated 18,000 victims were scammed |
|
|
★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2023-01-03 09:30:00 |
No Major Spike in Reported Ransomware in 2022 (lien direct) |
Number of government, education and healthcare incidents remains steady |
Ransomware
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-30 10:00:00 |
(Déjà vu) Cybersecurity Leaders Outline Future Trends Ahead of Infosecurity Europe 2023 (lien direct) |
2023 will see continued geopolitical tensions, stronger regulation and an AI-shaped revolution, predicts Infosecurity Europe's security community |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-29 11:00:00 |
Geopolitical Tensions Expected to Further Impact Cybersecurity in 2023 (lien direct) |
The global political landscape will continue to have an impact on cybersecurity as nation-state backed cyber-attacks continue |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-23 17:00:00 |
TikTok\'s Parent Company Admits Using the Platform\'s Data to Track Journalists (lien direct) |
In a series of emails seen by several media, ByteDance admitted that some of its former employees used TikTok's data to track two journalists |
|
|
★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-23 16:00:00 |
President Biden Signs Quantum Cybersecurity Preparedness Act into Law (lien direct) |
The law sets out requirements for federal agencies to migrate to quantum-secure cryptography |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-23 11:20:00 |
ICO Slams Editors for Comments on Journalism Code (lien direct) |
UK's privacy regulator says new rules for hacks still being worked out |
|
|
★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-23 10:00:00 |
LastPass: Customer Vault Data Was Taken (lien direct) |
Most data was encrypted in cloud storage |
|
LastPass
|
★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-23 09:30:00 |
Zerobot Botnet Devs Add New Functionality (lien direct) |
Latest iteration exploits Apache vulnerabilities |
|
|
★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-22 17:00:00 |
FBI: Cyber-Criminals Are Purchasing Search Engine Ad Services to Launch Attacks (lien direct) |
The FBI warns that cyber-criminals are impersonating brands through purchasing ad services in order to lure users to malicious websites |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-22 16:00:00 |
France Fines Microsoft $64m for Imposing Ad Cookies to its Bing Users (lien direct) |
In its largest fine of 2022, France's privacy watchdog has fined US tech giant €60m for foisting advertising cookies on users |
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-22 10:30:00 |
FCC Proposes Massive $300m Fine for Robocall Firm (lien direct) |
Auto-warranty campaign made billions of calls |
Legislation
|
|
★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-22 10:00:00 |
UK Government: Sharing Some Passwords is Illegal (lien direct) |
Intellectual Property Office says it breaks copyright law |
|
|
★★★★
|
![InfoSecurityMag.webp](./Ressources/img/InfoSecurityMag.webp) |
2022-12-22 09:30:00 |
Ransomware Attack Hits The Guardian Newspaper (lien direct) |
Staff told to work from home after compromise |
Ransomware
|
|
★★★★
|