Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-01-24 19:56:00 |
Fenix24 Releases White Paper Proposing New Cyber Incident Response Paradigm (lien direct) |
Restoration teams must be part of a collaborative, initial response team to address costly downtime. |
|
|
★★★★★
|
|
2023-01-24 18:27:00 |
Armis State of Cyberwarfare and Trends Report: 2022-2023 Highlights Global IT and Security Professionals\' Sentiment on Cyberwarfare (lien direct) |
Respondents indicate organizations are unprepared to handle cyberwarfare, there's no one-size-fits-all response to ransomware, and cybersecurity spending is on the rise. |
|
|
★★★
|
|
2023-01-24 18:21:00 |
Keeper Security Shares Password Best Practices Ahead of Data Privacy Day (lien direct) |
Pas de details / No more details |
|
|
★★★
|
|
2023-01-24 18:05:00 |
The 2022-2023 Cloud Awards Announces Its Finalists (lien direct) |
Pas de details / No more details |
|
|
★★★
|
|
2023-01-24 18:00:00 |
Chat Cybersecurity: AI Promises a Lot, But Can It Deliver? (lien direct) |
Machine learning offers great opportunities, but it still can't replace human experts. |
|
|
★★
|
|
2023-01-24 17:22:40 |
\'DragonSpark\' Malware: East Asian Cyberattackers Create an OSS Frankenstein (lien direct) |
Hackers cleverly cobbled together a suite of open source software - including a novel RAT - and hijacked servers owned by ordinary businesses. |
|
|
★★★
|
|
2023-01-24 15:59:32 |
Microsoft to Block Excel Add-ins to Stop Office Exploits (lien direct) |
The company will block the configuration files, which interact with Web applications - since threat actors increasingly use the capability to install malicious code. |
Threat
|
|
★★★★★
|
|
2023-01-24 15:00:00 |
Security and the Electric Vehicle Charging Infrastructure (lien direct) |
When EVs and smart chargers plug in to critical infrastructure, what can go wrong? Plenty. |
|
|
★★
|
|
2023-01-23 23:29:00 |
Wallarm Aims to Reduce the Harm From Compromised APIs (lien direct) |
API Leak Management software discovers exposed API keys and other secrets, blocks their use, and monitors for abuse, the company says. |
|
|
★★
|
|
2023-01-23 22:00:00 |
Pair of Galaxy App Store Bugs Offer Cyberattackers Mobile Device Access (lien direct) |
Devices running Android 12 and below are at risk of attackers downloading apps that direct users to a malicious domain. |
|
|
★★
|
|
2023-01-23 21:07:00 |
Organizations Likely to Experience Ransomware Threat in the Next 24 Months, According to Info-Tech Research Group (lien direct) |
Security leaders must build resiliency against these complex attacks immediately. |
Ransomware
Threat
Guideline
|
|
★★
|
|
2023-01-23 20:55:00 |
Magnet Forensics Inc. Enters Into Definitive Agreement to be Acquired by Thoma Bravo (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2023-01-23 20:16:00 |
SOCs to Face Greater Challenges From Cybercriminals Targeting Governments and Media in 2023 (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2023-01-23 17:48:00 |
FanDuel Sportsbook Bettors Exposed in Mailchimp Breach (lien direct) |
Amid all the NFL playoff action, FanDuel has sent an email warning to gamblers that their data was exposed in its third-party breach, putting them at risk for phishing attacks. |
|
|
★★
|
|
2023-01-23 17:32:00 |
No One Wants to Be Governed, Everyone Wants to Be Helped (lien direct) |
Here's how a security team can present itself to citizen developers as a valuable resource rather than a bureaucratic roadblock. |
|
|
★★
|
|
2023-01-23 17:05:00 |
TSA No-Fly List Snafu Highlights Risk of Keeping Sensitive Data in Dev Environments (lien direct) |
A Swiss hacker poking around in an unprotected Jenkins development server belonging to CommuteAir accessed the names and birthdates of some 1.5 million people on a TSA no-fly list from 2019. |
|
|
★★★
|
|
2023-01-23 15:00:00 |
Gartner Predicts 10% of Large Enterprises Will Have a Mature and Measurable Zero-Trust Program in Place by 2026 (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2023-01-23 15:00:00 |
Hunting Insider Threats on the Dark Web (lien direct) |
Use threat intelligence to reduce chance of success for malicious insider and Dark Web threats. |
Threat
|
|
★★
|
|
2023-01-23 14:50:00 |
Cybersecurity Worries Around Hybrid Working Drop, but Many IT Leaders Still Concerned Over Cyber-Skills Gap (lien direct) |
S-RM reports show that cybersecurity concerns surrounding hybrid work prevail for 37% of organizations. |
|
|
★★
|
|
2023-01-23 14:23:00 |
Supply Chain Security Global Market Report 2022: Sector to Reach $3.5 Billion by 2027 at an 11% CAGR (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2023-01-20 21:37:22 |
T-Mobile Breached Again, This Time Exposing 37M Customers\' Data (lien direct) |
This time around, weak API security allowed a threat actor to access account information, the mobile phone giant reported. |
Threat
|
|
★
|
|
2023-01-20 21:18:04 |
Ransomware Profits Decline as Victims Dig In, Refuse to Pay (lien direct) |
Two new reports show ransomware revenues for threat actors dropped sharply in 2022 as more victims ignored ransom demands. |
Ransomware
Threat
|
|
★
|
|
2023-01-20 21:10:26 |
Compromised Zendesk Employee Credentials Lead to Breach (lien direct) |
Zendesk has alerted customers to a successful SMS phishing campaign that has exposed "service data," but details remain scarce. |
|
|
★★★
|
|
2023-01-20 21:00:00 |
GPT Emerges as Key AI Tech for Security Vendors (lien direct) |
Orca Security is one of the companies integrating conversational AI technology into its products. |
|
|
★★★
|
|
2023-01-20 16:22:00 |
Critical Manufacturing Sector in the Bull\'s-eye (lien direct) |
Serious security flaws go unpatched, and ransomware attacks increase against manufacturers. |
Ransomware
|
|
★★
|
|
2023-01-20 15:00:00 |
The Evolution of Account Takeover Attacks: Initial Access Brokers for IoT (lien direct) |
Head off account takeover attacks by being proactive about IoT security. Start with designing and building better security protocols into IoT devices, always change weak default configurations, and regularly apply patches to ensure that IoT devices are secure. |
|
|
★★★
|
|
2023-01-20 00:20:00 |
PayPal Breach Exposed PII of Nearly 35K Accounts (lien direct) |
The credential-stuffing attack, likely fueled by password reuse, yielded personal identifiable information that can be used to verify the authenticity of previously stolen data. |
|
|
★★★
|
|
2023-01-19 23:14:00 |
EmojiDeploy Attack Chain Targets Misconfigured Azure Service (lien direct) |
Multiple misconfigurations in a service that underpins many Azure features could have allowed an attacker to remotely compromise a cloud user's system. |
|
|
★★
|
|
2023-01-19 22:00:00 |
Massive Adware Campaign Shuttered (lien direct) |
Mainly Apple iOS in-app ads were targeted, injecting malicious JavaScript code to rack up phony views. |
|
|
★★★★
|
|
2023-01-19 21:30:00 |
Attackers Crafted Custom Malware for Fortinet Zero-Day (lien direct) |
The "BoldMove" backdoor demonstrates a high level of knowledge of FortiOS, according to Mandiant researchers, who said the attacker appears to be based out of China. |
Malware
|
|
★★
|
|
2023-01-19 18:54:00 |
Roaming Mantis Uses DNS Changers to Target Users via Compromised Public Routers (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2023-01-19 18:35:00 |
Shift Identity Left: Preventing Identity-Based Breaches (lien direct) |
Traditional compliance and IAM are insufficient to secure the modern enterprise. We must shift left with modern access controls to avoid costly data breaches. |
|
|
★★★
|
|
2023-01-19 18:00:00 |
(Déjà vu) Name That Toon: Poker Hand (lien direct) |
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. |
|
|
★★
|
|
2023-01-19 16:36:00 |
The Media Industry Is the Most Vulnerable to Cyber Attacks, Report Shows (lien direct) |
The report highlights concerning security stats following two years of extreme tech growth. |
|
|
★★
|
|
2023-01-19 15:37:00 |
SynSaber Releases ICS Vulnerabilities & CVEs Report Covering Second Half of 2022 (lien direct) |
ICS/OT cybersecurity firm finds 35% of CVEs in second half of 2022 unpatchable. |
|
|
★★★★
|
|
2023-01-19 15:30:00 |
SecurityGen Identifies the Cybersecurity Priorities for Mobile Operators in 2023 (lien direct) |
Open architecture, non-standalone roaming, nation-state attacks, ransomware, and the need for more industry collaboration are among the major 5G security challenges that operators must address in the year ahead. |
|
|
★★★★
|
|
2023-01-19 15:15:56 |
KnowBe4 to Offer $10,000 Women in Cybersecurity Scholarship and (ISC) 2 Certification Education Package (lien direct) |
KnowBe4 partners with the Center for Cyber Safety and Education to bolster women
in cybersecurity for the fourth consecutive year. |
|
|
★
|
|
2023-01-19 15:06:29 |
International Council of E-Commerce Consultants Launches Cybersecurity Essentials Professional Certificate Program on edX (lien direct) |
New program enables students and early career professionals to learn critical skills required in today's entry-level cybersecurity field, helping address urgent cyber workforce jobs gap. |
|
|
★★
|
|
2023-01-19 15:00:00 |
Ethically Exploiting Vulnerabilities: A Play-by-Play (lien direct) |
There's a fine line between a hacker and an attacker, but it pays to be proactive. Consider tests by ethical hackers, a red team, or pen testers, and then bolster your company's defenses against malicious attacks. |
|
|
★★★
|
|
2023-01-19 14:44:00 |
New Research From EMA Reveals How Organizations Are Struggling to Develop Secure Software Applications (lien direct) |
Research shows that over 50% of organizations performing software development
struggle with fully integrating security into their software development
lifecycle. |
|
|
★★★
|
|
2023-01-19 14:00:00 |
Cybercriminals Target Telecom Provider Networks (lien direct) |
The growing use of mobile devices for MFA and the proliferation of 5G and VoIP in general could result in more attacks in future, experts say. |
|
|
★★★
|
|
2023-01-19 08:00:00 |
As Social Engineering Tactics Change, So Must Your Security Training (lien direct) |
Craft specific awareness training for high-exposure teams like finance, and reinforce other critical awareness training across the organization. |
|
|
★★★
|
|
2023-01-19 02:00:00 |
Data Security in Multicloud: Limit Access, Increase Visibility (lien direct) |
Ensuring that data can be easily discovered, classified, and secured is a crucial cornerstone of a data security strategy. |
|
|
★★
|
|
2023-01-18 23:37:00 |
How Would the FTC Rule on Noncompetes Affect Data Security? (lien direct) |
Without noncompetes, how do organizations make sure employees aren't taking intellectual property when they go work to work for a competitor? |
|
|
★★★
|
|
2023-01-18 22:04:00 |
Vulnerable Historian Servers Imperil OT Networks (lien direct) |
These specialized database servers, which collect and archive information on device operation, often connect IT and OT networks. |
|
|
★★★
|
|
2023-01-18 19:25:00 |
Founder and Majority Owner of Cryptocurrency Exchange Charged With Processing Over $700 Million of Illicit Funds (lien direct) |
Pas de details / No more details |
|
|
★★
|
|
2023-01-18 19:24:00 |
Sophos Cuts Jobs to Focus on Cybersecurity Services (lien direct) |
Layoffs intended to cut costs, help company shift its focus on cybersecurity services, Sophos says. |
|
|
★★
|
|
2023-01-18 19:21:00 |
ChatGPT Could Create Polymorphic Malware Wave, Researchers Warn (lien direct) |
The powerful AI bot can produce malware without malicious code, making it tough to mitigate. |
Malware
|
ChatGPT
|
★★★
|
|
2023-01-18 18:13:00 |
DoControl Announces SaaS Security Platform Expansion With Shadow Apps Module Launch (lien direct) |
New module introduces shadow SaaS application discovery, monitoring, and remediation to protect businesses from supply chain attacks. |
|
|
★★★
|
|
2023-01-18 18:10:00 |
KnowBe4 2022 Phishing Test Report Confirms Business-Related Emails Trend (lien direct) |
KnowBe4 releases overall 2022 and Q4 2022 global phishing test reports and finds business-related emails continue to be utilized as a phishing strategy and reveal top holiday email phishing subjects. |
Prediction
|
|
★★
|