Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-11-21 18:00:00 |
Google Wins Legal Battle Against Glupteba Botnet (lien direct) |
The tech giant said the court's ruling against the botnet operators set a crucial legal precedent |
|
|
|
|
2022-11-21 17:00:00 |
Thousands of Algolia API Keys Could Expose Users\' Data (lien direct) |
The majority were from shopping, education, lifestyle, business and medical firms |
|
|
|
|
2022-11-21 16:00:00 |
Luna Moth Phishing Extortion Campaign Targets Businesses in Multiple Sectors (lien direct) |
It leverages extortion without encryption and has cost victims hundreds of thousands of dollars |
Threat
|
|
★★
|
|
2022-11-21 11:00:00 |
Private Equity Exposed by Cyber-Hygiene Shortcomings (lien direct) |
Fifth of portfolio companies feature "zero tolerance findings" |
|
|
|
|
2022-11-21 10:00:00 |
New AXLocker Ransomware Steals Victims\' Discord Tokens (lien direct) |
Researchers also discover two additional new variants |
Ransomware
|
|
|
|
2022-11-21 09:30:00 |
Ten Charged in $11m Healthcare BEC Plots (lien direct) |
Several of the men diverted funds intended for hospitals |
|
|
|
|
2022-11-18 16:30:00 |
CISA, NSA, ODNI Publish Software Supply Chain Guidelines For Customers (lien direct) |
The come after the August release of guidance for developers and the October one for suppliers |
|
|
|
|
2022-11-18 15:45:00 |
Shoppers Warned Stay Alert this Black Friday as Hackers Renew Efforts (lien direct) |
Cyber-criminals are exploiting the busy period during both purchase and delivery stages |
|
|
|
|
2022-11-18 15:00:00 |
Instagram Credential Phishing Attacks Bypass Microsoft Email Security (lien direct) |
The attack bypassed both SPF and DMARC email authentication checks |
|
|
|
|
2022-11-18 14:15:00 |
Emerging Threat Actor DEV-0569 Expands Its Toolkit to Deliver Royal Ransomware (lien direct) |
As well as malvertising and phishing links, the new threat actor is now also using contact forms to deliver its payloads, found Microsoft |
Ransomware
Threat
|
|
|
|
2022-11-18 10:30:00 |
Netflix Phishing Emails Surge 78% (lien direct) |
Social engineers are using Unicode techniques to bypass filters |
|
|
|
|
2022-11-18 10:00:00 |
Russian Duo Indicted Over E-Book Piracy (lien direct) |
St Petersburg couple were arrested in Argentina |
|
|
|
|
2022-11-18 09:30:00 |
Hive Ransomware Has Made $100m to Date (lien direct) |
CISA notice warns of 1300 victims and counting |
Ransomware
|
|
|
|
2022-11-17 18:00:00 |
Zeus Botnet Suspected Leader Arrested in Geneva (lien direct) |
Vyacheslav Igorevich Penchukov was arrested in Geneva on October 23, 2022, and is now pending extradition to the US |
|
|
|
|
2022-11-17 17:00:00 |
Security Budget Cuts and Recession Spark Worries Among IT Admins (lien direct) |
The report suggests 44% agree their firm will cut security spending in the next year |
|
|
|
|
2022-11-17 16:00:00 |
Hundreds of Amazon RDS Snapshots Discovered Leaking Users\' Data (lien direct) |
The discovery was made by security researchers at Mitiga |
|
|
|
|
2022-11-17 14:30:00 |
More Than Half of Black Friday Spam Emails Are Scams (lien direct) |
New research analyzes email scam techniques in the build-up to this year's Black Friday |
Spam
|
|
|
|
2022-11-17 13:00:00 |
Cybersecurity Industry Must Maintain Public Faith in Technology, Says NCSC Founder (lien direct) |
The NCSC's founding CEO, Ciaran Martin, explains why the cyber industry is now a public good |
|
|
|
|
2022-11-17 10:45:00 |
PCI Council Launches Flexible Mobile Payments Standard (lien direct) |
Announcement recognizes growing volume of smartphone payments |
|
|
|
|
2022-11-17 10:10:00 |
US: Iranian Hackers Breached Government with Log4Shell (lien direct) |
Threat actors installed crypto-miner and achieved persistence |
Threat
|
|
|
|
2022-11-17 09:30:00 |
Chinese Spy Gets 20 Years for Aviation Espionage Plot (lien direct) |
US authorities land a rare win in fight against state-backed info-theft |
|
|
|
|
2022-11-16 18:00:00 |
Android Privacy Sandbox Beta to Roll Out By Early 2023 (lien direct) |
The project aims to bring new and more private advertising solutions to mobile |
|
|
|
|
2022-11-16 17:00:00 |
Majority of Companies Reduce Cybersecurity Staff Over Holidays (lien direct) |
Cybereason's latest report is based on a survey of more than 1200 cybersecurity professionals |
|
|
|
|
2022-11-16 16:00:00 |
Botnets, Trojans, DDoS From Ukraine and Russia Have Increased Since Invasion (lien direct) |
The news comes from a report by Top10VPN and is based on data by the Shadowserver Foundation |
|
|
|
|
2022-11-16 12:00:00 |
State-Backed APT Group Activity Continuing Apace (lien direct) |
The report outlines recent APT group activity from Russia, China, Iran and North Korea |
|
|
|
|
2022-11-16 10:45:00 |
Euro Authorities Warn World Cup Fans Over Qatari Apps (lien direct) |
Security and privacy concerns mount for those attending matches |
|
|
|
|
2022-11-16 10:10:00 |
Most Neurodiverse Women in Tech Feel Unsupported: Study (lien direct) |
Report suggests high demand for talent from security sector employers |
|
|
|
|
2022-11-16 09:30:00 |
LockBit Remains Most Prolific Ransomware in Q3 (lien direct) |
Phobos is a close second, according to Trellix |
Ransomware
|
|
|
|
2022-11-15 18:00:00 |
Billbug Targets Government Agencies in Multiple Asian Countries (lien direct) |
According to Symantec, the targeting of a certificate authority was notable |
|
|
|
|
2022-11-15 17:00:00 |
Remote Code Execution Discovered in Spotify\'s Backstage (lien direct) |
Spotify ranked the vulnerability as critical, with a CVSS score of 9.8 |
Vulnerability
|
|
|
|
2022-11-15 16:00:00 |
Lazarus Backdoor DTrack Evolves to Target Europe and Latin America (lien direct) |
DTrack has not changed substantially, but Lazarus made some “interesting” modifications |
|
APT 38
|
★★★★★
|
|
2022-11-15 10:10:00 |
Police Celebrate Arrest of 59 Suspected Scammers (lien direct) |
Month-long European operation focused on online fraudsters |
|
|
|
|
2022-11-15 09:30:00 |
Google to Pay $392m in Landmark Privacy Case (lien direct) |
Multi-state settlement is largest in US history |
|
|
|
|
2022-11-14 18:00:00 |
GitHub Now Supports Private Vulnerability Reporting For Public Repositories (lien direct) |
The feature needs to be manually enabled by repository maintainers |
Vulnerability
|
|
★★
|
|
2022-11-14 17:00:00 |
NSA Guide Helps Firms Protect Against Memory Safety Vulnerabilities (lien direct) |
The document describes situations where cyber actors steal sensitive information and other negative impacts |
|
|
★★★
|
|
2022-11-14 10:45:00 |
Mass Email Extortion Campaign Claims Server Hack (lien direct) |
Threat actors claim they'll destroy victims' reputation if they don't pay |
Hack
Threat
|
|
|
|
2022-11-14 10:10:00 |
UK Shoppers Lost £15m+ to Scammers Last Winter (lien direct) |
Cyber experts urge consumers to improve online safety |
|
|
|
|
2022-11-14 09:30:00 |
Ukrainian CERT Discloses New Data-Wiping Campaign (lien direct) |
Somnia malware hijacks Telegram and VPN accounts |
Malware
|
|
|
|
2022-11-11 18:00:00 |
CISA Releases SSVC Guide to Help Companies Prioritize Vulnerabilities (lien direct) |
Remediation efforts are prioritized based on exploitation status, safety impact and prevalence criteria |
|
|
|
|
2022-11-11 17:00:00 |
Man Arrested in Ontario For Alleged LockBit Ransomware Involvement (lien direct) |
Mikhail Vasiliev was apprehended in Canada and is in custody awaiting extradition to the US |
Ransomware
|
|
|
|
2022-11-11 16:00:00 |
Twitter C-Level Resignations Continue As Blue Program Creates New Cyber-Risks (lien direct) |
They left quoting concerns about the rollout of new features without an FTC consent decree |
|
|
|
|
2022-11-11 14:00:00 |
#IRISSCON: Social Engineering Testers Warned Not to Cross Ethical and Legal Boundaries (lien direct) |
Sharon Conheady discusses the ethical and legal dilemmas often faced by social engineering testers |
|
|
|
|
2022-11-11 12:00:00 |
CISA Says Midterm Voting Uncompromised By Cyber-attacks (lien direct) |
Election workers will continue to work in the days ahead to certify the election results |
|
|
|
|
2022-11-11 11:05:00 |
Ukrainian Cyber Cops Bust $200m Fraud Ring (lien direct) |
Two-year pan-European operation ends in arrests |
|
|
|
|
2022-11-11 11:00:00 |
Only 30% of Cyber-Insurance Holders Say Ransomware is Covered (lien direct) |
Insurers are cutting back on coverage as claims surge |
Ransomware
|
|
|
|
2022-11-11 10:30:00 |
Qatar World Cup Firms Urged to Upgrade Cyber-Threat Model (lien direct) |
Digital Shadows warns of elevated risk from scammers and threat actors |
Threat
|
|
|
|
2022-11-10 17:00:00 |
(Déjà vu) New Lenovo Notebook Models Affected By UEFI Firmware Vulnerabilities (lien direct) |
The flaws affect various Lenovo Yoga, IdeaPad and ThinkBook devices |
|
|
★★★★★
|
|
2022-11-10 16:40:00 |
#IRISSCON: Police Officer Urges More Reporting and Engagement to Tackle Cybercrime (lien direct) |
Ireland's National Cyber Crime Bureau outlines cybercrime trends being observed in law enforcement |
|
|
|
|
2022-11-10 16:00:00 |
Majority of Security Managers Lack Threat Intelligence Skills (lien direct) |
The report suggests threat intelligence is a crucial source for vulnerability detection |
Vulnerability
Threat
|
|
★★★★
|
|
2022-11-10 15:45:00 |
The \'Great Resignation\' Caused Insider Threats to Peak in Q3 2022, Kroll Finds (lien direct) |
Kroll's Q3 2022 Threat Landscape report showed an unprecedented increase in insider threats |
Threat
|
|
★★★★★
|