What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-06-27 13:00:00 | Cyberheistnews Vol 13 # 26 [Eyes Open] La FTC révèle les cinq dernières escroqueries par SMS CyberheistNews Vol 13 #26 [Eyes Open] The FTC Reveals the Latest Top Five Text Message Scams (lien direct) |
CyberheistNews Vol 13 #26 | June 27th, 2023
[Eyes Open] The FTC Reveals the Latest Top Five Text Message Scams
The U.S. Federal Trade Commission (FTC) has published a data spotlight outlining the most common text message scams. Phony bank fraud prevention alerts were the most common type of text scam last year. "Reports about texts impersonating banks are up nearly tenfold since 2019 with median reported individual losses of $3,000 last year," the report says.
These are the top five text scams reported by the FTC:
Copycat bank fraud prevention alerts
Bogus "gifts" that can cost you
Fake package delivery problems
Phony job offers
Not-really-from-Amazon security alerts
"People get a text supposedly from a bank asking them to call a number ASAP about suspicious activity or to reply YES or NO to verify whether a transaction was authorized. If they reply, they\'ll get a call from a phony \'fraud department\' claiming they want to \'help get your money back.\' What they really want to do is make unauthorized transfers.
"What\'s more, they may ask for personal information like Social Security numbers, setting people up for possible identity theft."
Fake gift card offers took second place, followed by phony package delivery problems. "Scammers understand how our shopping habits have changed and have updated their sleazy tactics accordingly," the FTC says. "People may get a text pretending to be from the U.S. Postal Service, FedEx, or UPS claiming there\'s a problem with a delivery.
"The text links to a convincing-looking – but utterly bogus – website that asks for a credit card number to cover a small \'redelivery fee.\'"
Scammers also target job seekers with bogus job offers in an attempt to steal their money and personal information. "With workplaces in transition, some scammers are using texts to perpetrate old-school forms of fraud – for example, fake \'mystery shopper\' jobs or bogus money-making offers for driving around with cars wrapped in ads," the report says.
"Other texts target people who post their resumes on employment websites. They claim to offer jobs and even send job seekers checks, usually with instructions to send some of the money to a different address for materials, training, or the like. By the time the check bounces, the person\'s money – and the phony \'employer\' – are long gone."
Finally, scammers impersonate Amazon and send fake security alerts to trick victims into sending money. "People may get what looks like a message from \'Amazon,\' asking to verify a big-ticket order they didn\'t place," the FTC says. "Concerned |
Ransomware Spam Malware Hack Tool Threat | FedEx APT 28 APT 15 ChatGPT ChatGPT | ★★ |
 |
2023-06-27 11:58:00 | Plus de 6 500 arrêtés depuis le piratage d'Ecrochat de la police française et néerlandaise \\ More than 6,500 arrested since French and Dutch police\\'s EncroChat hack (lien direct) |
Trois ans après une opération policière pour pirater le service de communication crypté d'Ecrochat largement utilisé par des criminels, plus de 6 500 suspects ont été arrêtés, ont annoncé mardi des responsables de l'application des lois.Des représentants des systèmes de justice pénale français et néerlandais ont donné un aperçu des résultats de l'opération d'Ecrochat lors d'une conférence de presse à Lille
Three years after a police operation to hack the EncroChat encrypted communications service widely used by criminals, more than 6,500 suspects have been arrested, law enforcement officials announced on Tuesday. Representatives from the French and Dutch criminal justice systems gave an overview of the results of the EncroChat operation in a press conference in Lille |
Hack Conference | ★★ | |
 |
2023-06-27 06:44:00 | Un dixième d'enfants affirme qu'ils pourraient vous pirater A tenth of kids claim they could hack you (lien direct) |
Pas de details / No more details | Hack | ★★ | |
|
2023-06-26 17:47:00 | Solarwinds dit que SEC Investigation \\ 'progressant vers les charges \\' SolarWinds says SEC investigation \\'progressing to charges\\' (lien direct) |
Solarwinds - la société de technologie du centre d'un hack de décembre 2020 qui a affecté plusieurs agences gouvernementales américaines - a déclaré que ses dirigeants pourraient bientôt faire face à des accusations de la Securities and Exchange Commission des États-Unis (SEC) pour sa réponse à l'incident.Le hack répandu & # 8211;que le gouvernement américain attribué
SolarWinds - the technology firm at the center of a December 2020 hack that affected multiple U.S. government agencies - said its executives may soon face charges from the U.S. Securities and Exchange Commission (SEC) for its response to the incident. The widespread hack – which the U.S. government attributed to the Russian Foreign Intelligence |
Hack | ★★ | |
 |
2023-06-26 15:35:42 | Hacker britannique cassé en Espagne obtient 5 ans sur Twitter Hack et plus UK hacker busted in Spain gets 5 years over Twitter hack and more (lien direct) |
Pas seulement ce tristement célèbre piratage de Twitter, mais aussi l'échange de sim
Not just that infamous Twitter hack, but SIM-swapping, stalking and swatting too... |
Hack | ★★ | |
 |
2023-06-24 20:48:00 | Twitter Hacker condamné à 5 ans de prison pour 120 000 $ d'escroquerie cryptographique Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam (lien direct) |
Un citoyen du Royaume-Uni qui a participé à l'énorme hack de juillet 2020 de Twitter a été condamné à cinq ans de prison aux États-Unis.
Joseph James O \\ 'Connor (alias Plugwalkjoe), 24 ans, a reçu la peine vendredi dans le district sud de New York, un peu plus d'un mois après avoir plaidé coupable aux plans criminels.Il a été arrêté en Espagne en juillet 2021.
La tristement célèbre violation de Twitter a permis au
A U.K. citizen who took part in the massive July 2020 hack of Twitter has been sentenced to five years in prison in the U.S. Joseph James O\'Connor (aka PlugwalkJoe), 24, was awarded the sentence on Friday in the Southern District of New York, a little over a month after he pleaded guilty to the criminal schemes. He was arrested in Spain in July 2021. The infamous Twitter breach allowed the |
Hack | ★★ | |
|
2023-06-24 14:43:00 | Solarwinds \\ 'Head refuse de reculer au milieu d'une action réglementaire américaine potentielle sur le piratage russe SolarWinds\\' Head Refuses to Back Down Amid Potential US Regulatory Action over Russian hack (lien direct) |
|
Hack | ★★ | |
 |
2023-06-24 03:02:13 | American Airlines, Southwest Airlines divulgue les violations de données affectant les pilotes American Airlines, Southwest Airlines disclose data breaches affecting pilots (lien direct) |
American Airlines et Southwest Airlines, deux des plus grandes compagnies aériennes au monde, ont révélé des violations de données vendredi causées par le piratage des informations d'identification pilote, un fournisseur tiers qui gère plusieurs portails de pilotes et de recrutements de pilotes multiples.[...]
American Airlines and Southwest Airlines, two of the largest airlines in the world, disclosed data breaches on Friday caused by the hack of Pilot Credentials, a third-party vendor that manages multiple airlines\' pilot applications and recruitment portals. [...] |
Hack | ★★ | |
 |
2023-06-23 13:30:29 | Que savoir sur le hack Moveit & # 8211;Semaine en sécurité avec Tony Anscombe What to know about the MoveIT hack – Week in security with Tony Anscombe (lien direct) |
> Le gouvernement américain a maintenant annoncé une prime de 10 millions de dollars pour Intel reliant le gang de ransomware CL0P à un gouvernement étranger
>The US government has now announced a bounty of $10 million for intel linking the Cl0p ransomware gang to a foreign government |
Ransomware Hack | ★★ | |
 |
2023-06-23 13:00:00 | Les correctifs de configuration faciles peuvent protéger votre serveur contre l'attaque Easy Configuration Fixes Can Protect Your Server from Attack (lien direct) |
> En mars 2023, des données sur plus de 56 000 personnes & # 8212;y compris les numéros de sécurité sociale et autres informations personnelles & # 8212; & # 160; ont été volés dans la violation de la D.C. Beale Benefit Exchange Authority.Le hack de marché d'assurance maladie en ligne a exposé les détails personnels des membres du Congrès, de leur famille, du personnel et des dizaines de milliers d'autres résidents de la région de Washington.Il apparaît le [& # 8230;]
>In March 2023, data on more than 56,000 people — including Social Security numbers and other personal information — was stolen in the D.C. Health Benefit Exchange Authority breach. The online health insurance marketplace hack exposed the personal details of Congress members, their families, staff and tens of thousands of other Washington-area residents. It appears the […] |
Hack | ★★ | |
 |
2023-06-23 10:58:04 | 2,5 M Genworth Prenders, et 769k travailleurs et bénéficiaires de Californie à la retraite touchés par le piratage 2.5M Genworth Policyholders and 769K Retired California Workers and Beneficiaries Affected by Hack (lien direct) |
> Moveit Hack: des informations personnelles d'environ 769 000 employés de Californie à la retraite et 2,5 millions de gardes financiers de Genworth ont été exposés.
>MOVEit hack: Personal information of about 769,000 retired California employees and 2.5 million Genworth Financial policyholders were exposed. |
Hack | ★★ | |
 |
2023-06-21 19:22:00 | Empêcher les escroqueries d'emplois de nuire à votre organisation Keep Job Scams From Hurting Your Organization (lien direct) |
Des fausses listes d'emplois qui Ding votre réputation aux faux candidats qui piratent votre réseau, les escroqueries sont une menace majeure.
From fake job listings that ding your reputation to fake job applicants who hack your network, job scams are a major threat. |
Hack | ★★ | |
|
2023-06-20 13:00:00 | Cyberheistnews Vol 13 # 25 [empreintes digitales partout] Les informations d'identification volées sont la cause profonde n ° 1 des violations de données CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches (lien direct) |
CyberheistNews Vol 13 #25 | June 20th, 2023
[Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches
Verizon\'s DBIR always has a lot of information to unpack, so I\'ll continue my review by covering how stolen credentials play a role in attacks.
This year\'s Data Breach Investigations Report has nearly 1 million incidents in their data set, making it the most statistically relevant set of report data anywhere.
So, what does the report say about the most common threat actions that are involved in data breaches? Overall, the use of stolen credentials is the overwhelming leader in data breaches, being involved in nearly 45% of breaches – this is more than double the second-place spot of "Other" (which includes a number of types of threat actions) and ransomware, which sits at around 20% of data breaches.
According to Verizon, stolen credentials were the "most popular entry point for breaches." As an example, in Basic Web Application Attacks, the use of stolen credentials was involved in 86% of attacks. The prevalence of credential use should come as no surprise, given the number of attacks that have focused on harvesting online credentials to provide access to both cloud platforms and on-premises networks alike.
And it\'s the social engineering attacks (whether via phish, vish, SMiSh, or web) where these credentials are compromised - something that can be significantly diminished by engaging users in security awareness training to familiarize them with common techniques and examples of attacks, so when they come across an attack set on stealing credentials, the user avoids becoming a victim.
Blog post with links:https://blog.knowbe4.com/stolen-credentials-top-breach-threat
[New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist
Now there\'s a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform!
The new PhishER Blocklist feature lets you use reported messages to prevent future malicious email with the same sender, URL or attachment from reaching other users. Now you can create a unique list of blocklist entries and dramatically improve your Microsoft 365 email filters without ever l |
Ransomware Data Breach Spam Malware Hack Vulnerability Threat Cloud | ChatGPT ChatGPT | ★★ |
|
2023-06-19 13:42:57 | Ransomware Gang prend le crédit pour février Reddit Hack Ransomware Gang Takes Credit for February Reddit Hack (lien direct) |
> Le gang de ransomware Alphv / Blackcat a pris la responsabilité de la cyberattaque de février qui a frappé le site de médias sociaux Reddit.
>The Alphv/BlackCat ransomware gang has taken responsibility for the February cyberattack that hit social media site Reddit. |
Ransomware Hack | ★★ | |
 |
2023-06-16 20:03:49 | Ma prise: les pirates russes mettent la pression sur les agences américaines, Global Corps dans Moveit-Zellis Hack My Take: Russian hackers put the squeeze on U.S agencies, global corps in MOVEit-Zellis hack (lien direct) |
Cela devait arriver.Clop, le gang de ransomwares basé en Russie qui a exécuté le hack de chaîne d'approvisionnement Moveit-Zellis comme des demandes d'extorsion prolongées à plusieurs sociétés et aux agences fédérales américaines.
lié: Supply-Chain Hack Ultimatum
Le gang néfaste de Clop a initialement compromis Moveit, qui & # 8230; (plus…)
It was bound to happen. Clop, the Russia-based ransomware gang that executed the MOVEit-Zellis supply chain hack as extended extortion demands to several companies and U.S. federal agencies. Related: Supply-chain hack ultimatum The nefarious Clop gang initially compromised MOVEit, which … (more…) |
Ransomware Hack | ★★ | |
|
2023-06-16 18:37:00 | La vulnérabilité de Third Moveit augmente les alarmes alors que le Département de l'agriculture américaine dit qu'il peut être affecté Third MOVEit vulnerability raises alarms as US Agriculture Department says it may be impacted (lien direct) |
Une troisième vulnérabilité affectant le populaire outil de transfert de fichiers Moveit provoque une alarme parmi les responsables américains et les chercheurs en cybersécurité après avoir révélé que plusieurs agences gouvernementales ont été affectées par un piratage exploitant le premier bogue.Progress Software, la société derrière Moveit, a déclaré à Recorder Future News qu'une «source indépendante» avait révélé la nouvelle vulnérabilité.Suivi
A third vulnerability affecting the popular MOVEit file transfer tool is causing alarm among U.S. officials and cybersecurity researchers after it was revealed that several government agencies were affected by a hack exploiting the first bug. Progress Software, the company behind MOVEit, told Recorded Future News that an “independent source” disclosed the new vulnerability. Tracked |
Hack Tool Vulnerability | ★★ | |
 |
2023-06-16 16:28:35 | Des millions d'Américains \\ 'Données DMV personnelles exposées dans un hack de mouvement massif Millions of Americans\\' personal DMV data exposed in massive MOVEit hack (lien direct) |
Plus de 6,5 millions de résidents de deux États affectés, un impact peut potentiellement s'élargir.
Over 6.5 million residents of two states affected, impact may potentially widen. |
Hack | ★★ | |
|
2023-06-16 13:00:00 | Comment certaines entreprises sont-elles compromises encore et encore? How Do Some Companies Get Compromised Again and Again? (lien direct) |
> Hack-moi une fois, honte à toi.Hack-moi deux fois, honte à moi.La populaire société de marketing par e-mail, MailChimp, a subi une violation de données l'année dernière après que les cyberattaques ont exploité un outil d'entreprise interne pour accéder aux comptes clients.Les criminels ont pu examiner environ 300 comptes et exfiltrer des données sur 102 clients.Ils aussi [& # 8230;]
>Hack me once, shame on thee. Hack me twice, shame on me. The popular email marketing company, MailChimp, suffered a data breach last year after cyberattackers exploited an internal company tool to gain access to customer accounts. The criminals were able to look at around 300 accounts and exfiltrate data on 102 customers. They also […] |
Data Breach Hack Tool | ★★ | |
 |
2023-06-14 10:00:00 | Menage Hunt: Killnet \\'s DDOS Head Flood Attacks - CC.py Threat Hunt: KillNet\\'s DDoS HEAD Flood Attacks - cc.py (lien direct) |
Résumé de l'exécutif
Killnet est un groupe avancé de menace persistante (APT) basé en Russie qui est actif depuis au moins 2015. Le groupe est connu pour ses attaques très sophistiquées et persistantes contre un éventail diversifié d'industries, y compris les gouvernements publics et locaux, les télécommunicationset défense.
Killnet a été lié à plusieurs attaques de haut niveau, notamment le piratage de 2016 du Comité national démocrate (DNC) lors de l'élection présidentielle américaine.Le groupe a également été impliqué dans les attaques de déni de service distribué (DDOS) contre les aéroports américains et le service à large bande satellite d'Elon Musk \\. .
Les motivations derrière ces attaques varient, mais récemment, ils ont principalement ciblé ceux qui sont les partisans les plus vocaux de l'Ukraine et de son agenda politique.
Le but de cette chasse à la menace est de créer un environnement d'attaque virtuel qui simule les tactiques, techniques et procédures de Killnet \\ (TTPS).Par la suite, les détections et les requêtes de chasse aux menaces seront écrites pour identifier de manière proactive les TTP imités tout en compensant les limites des recherches historiques du CIO traditionnelles.
Les résultats de la chasse aux menaces comprendront des tableaux de bord de haut niveau, du code et des artefacts de réseau générés à partir de la plage d'attaque, qui sera utilisé pour expliquer comment une hypothèse a été formée.Les résultats contiendront également la pseudo et la logique de requête traduite dans un format qui peut être utilisé par des outils tels que Suricata, Snort, Splunk et Zeek.La sortie de la requête sera ensuite utilisée pour confirmer l'hypothèse initiale générée.
Artefacts de réseau
Pour imiter l'attaque, CC.py a été utilisé pour générer des demandes de tête continues contre un serveur Apache, reportez-vous à l'annexe A pour plus de détails.Une fois l'attaque lancée, le trafic logarithmique capturé a été examiné, comme le montre la figure 1 et la figure 2. Lors de l'examen du trafic HTTP Head, il a été découvert que les chiffres entre les gammes de 11-12 sont apparus après "Head /?"régulièrement.Ce modèle servira de base à notre première hypothèse, comme indiqué dans la section suivante.
La figure 3 contient également les journaux Apache générés sur le serveur car le script d'attaque continuait d'essayer d'accéder à différents fichiers dans & lsquo; / var / www / html / & rsquo;annuaire.Le script réitère dans un style de type de force brute, jusqu'à ce que les ressources CPU soient rendues épuisées par le volume de trafic pur.
Figure 1 & ndash; Wireshark - généré dynamiquement 11-12 chiffres
Figure 2 & ndash; Wireshark - Forged Referrer & amp;IPS anonymisé
Figure 3 & ndash;Splunk & ndash;Journaux d'erreur du serveur Apache & ndash;Échec des tentatives d'accès au fichier
Guide de détection
Les expressions régulières compatibles Perl peuvent être utilisées pour tirer parti du contexte dérivé de la capture de paquets lors de l'analyse des menaces, comme le montre la figure 1. Cela nous permet d'écrire des règles de suricata / reniflement qui correspondent aux modèles observés dans les en-têtes.Les détections ont tendance à évoluer plus que les requêtes de chasse et peuvent être appliquées stratégiquement sur une base par capteur.Plus précisément, la règle suivante correspondra à n'importe q |
Hack Tool Threat | ★★ | |
|
2023-06-13 16:09:00 | Deux ressortissants russes accusés pour le cerveau du Mt. Gox Crypto Exchange Hack Two Russian Nationals Charged for Masterminding Mt. Gox Crypto Exchange Hack (lien direct) |
The U.S. Department of Justice (DoJ) has charged two Russian nationals in connection with masterminding the 2014 digital heist of the now-defunct cryptocurrency exchange Mt. Gox.
According to unsealed indictments released last week, Alexey Bilyuchenko, 43, and Aleksandr Verner, 29, have been accused of conspiring to launder approximately 647,000 bitcoins stolen from September 2011 through at
The U.S. Department of Justice (DoJ) has charged two Russian nationals in connection with masterminding the 2014 digital heist of the now-defunct cryptocurrency exchange Mt. Gox. According to unsealed indictments released last week, Alexey Bilyuchenko, 43, and Aleksandr Verner, 29, have been accused of conspiring to launder approximately 647,000 bitcoins stolen from September 2011 through at |
Hack | ★★ | |
 |
2023-06-13 01:31:08 | Les États-Unis facturent à deux hommes avec le Mt. Gox Heist, le plus grand piratage de crypto-monnaie du monde \\ US charges two men with Mt. Gox heist, the world\\'s largest cryptocurrency hack (lien direct) |
Plus de dix ans après le piratage de l'échange de crypto-monnaie GOX, Mt. Gox, maintenant disparu, le ministère américain de la Justice a déclaré qu'il avait identifié et facturé deux hommes qu'il allègue des fonds pour les clients \\ 'et les clés privées de l'échange \\.Deux Russes, Alexey Bilyuchenko, 43 ans, et Aleksandr Verner, 29 ans, sont accusés de complot en vue de blanchir 647 000 bitcoins - dans un braquage de crypto-monnaie qui aurait été environ un demi-milliard de dollars aujourd'hui.Le DOJ allègue dans l'acte d'accusation non scellé qu'à partir de 2011, Bilyuchenko et Verner ont volé d'énormes quantités de crypto-monnaie de MT basée à Tokyo ...
More than ten years after the hack of the now-defunct Mt. Gox cryptocurrency exchange, the US Department of Justice says it has identified and charged two men it alleges stole customers\' funds and the exchange\'s private keys. Two Russians, 43-year-old Alexey Bilyuchenko, and Aleksandr Verner, 29, are charged with conspiring to launder 647,000 Bitcoins - in a cryptocurrency heist which would have been worth approximately half a billion dollars today. The DoJ alleges in the unsealed indictment that starting in 2011, Bilyuchenko and Verner stole huge amounts of cryptocurrency from Tokyo-based Mt... |
Hack | ★★ | |
|
2023-06-12 16:14:57 | Mon point de vue: les entreprises prendront maintenant en vedette les attaquants \\ 'ultimatum dans le hack de chaîne d'approvisionnement Moveit-Zellis? MY TAKE: Will companies now heed attackers\\' ultimatum in the MOVEit-Zellis supply chain hack? (lien direct) |
La communauté de la cybersécurité attend que la prochaine chaussure tombe dans le sillage du hack audacieux Moveit-Zellis orchestré par le tristement célèbre collectif de piratage russe, Clop.
lié: Solarwinds-style d'approvisionnement des attaques sur la montée
Les agents de Clop sont mis en ligne en dernier & # 8230; (plus…)
The cybersecurity community is waiting for the next shoe to drop in the wake of the audacious MOVEit-Zellis hack orchestrated by the infamous Russian hacking collective, Clop. Related: SolarWinds-style supply chain attacks on the rise Clop operatives went live last … (more…) |
Hack | ★★ | |
|
2023-06-12 13:56:00 | Réinitialisation de mot de passe hack exposé dans la plate-forme de commerce électronique de Honda \\, les données des concessionnaires à risque Password Reset Hack Exposed in Honda\\'s E-Commerce Platform, Dealers Data at Risk (lien direct) |
Les vulnérabilités de sécurité découvertes dans la plate-forme de commerce électronique de Honda \\ auraient pu être exploitées pour obtenir un accès sans restriction aux informations sensibles du concessionnaire.
"Les contrôles d'accès brisés / manquants ont permis d'accéder à toutes les données sur la plate-forme, même lorsqu'ils sont connectés en tant que compte de test", a déclaré le chercheur en sécurité Eaton Zveare dans un rapport publié la semaine dernière.
La plate-forme est conçue pour la vente de puissance
Security vulnerabilities discovered in Honda\'s e-commerce platform could have been exploited to gain unrestricted access to sensitive dealer information. "Broken/missing access controls made it possible to access all data on the platform, even when logged in as a test account," security researcher Eaton Zveare said in a report published last week. The platform is designed for the sale of power |
Hack | ★★ | |
 |
2023-06-12 10:00:00 | Deux ressortissants russes chargés dans le cadre de MT Gox Hack Two Russian Nationals Charged in Connection with Mt Gox Hack (lien direct) |
On aurait utilisé des fonds volés pour aider à mettre en place l'échange de crypto
One allegedly used stolen funds to help set up the crypto exchange |
Hack | ★★ | |
 |
2023-06-09 16:37:26 | Le DOJ charge deux ressortissants russes avec le mont Ht. Gox Hack DOJ charges two Russian nationals with historic Mt. Gox hack (lien direct) |
> Alexey Bilyuchenko aurait également conspiré avec un Russe cherchant à être inclus dans un échange contre un journaliste américain emprisonné.
>Alexey Bilyuchenko is also alleged to have conspired with a Russian man seeking to be included in a swap for an imprisoned U.S. journalist. |
Hack | ★★ | |
|
2023-06-09 16:30:00 | Les ressortissants russes accusés de la bitcoin de Gox Mt. Russian nationals accused of Mt. Gox bitcoin heist, shifting stolen funds to BTC-e (lien direct) |
Le ministère de la Justice accuse deux ressortissants russes d'être derrière le piratage de la tête du Mt. Gox, le plus grand échange de crypto-monnaie de 2010 à 2013. Vendredi, le DOJ a descendait les charges déposé en 2019 contre Alexey Bilyuchenko, 43 ans, et Aleksandr Verner, 29Les deux de voler 647 000 Bitcoins à Mt. Gox et de l'utiliser
The Justice Department is accusing two Russian nationals of being behind the headline-grabbing hack of Mt. Gox, the biggest cryptocurrency exchange from 2010 to 2013. On Friday, the DOJ unsealed charges filed in 2019 against 43-year-old Alexey Bilyuchenko and 29-year-old Aleksandr Verner, accusing the two of stealing 647,000 bitcoins from Mt. Gox and using it |
Hack | ★★ | |
|
2023-06-08 01:13:25 | BBC, British Airways, Novia Scotia Among First Big-Name Victims in Global Supply-Chain Hack (lien direct) | > Le piratage de Cl0p Cyber-Extortion Gang \\ du programme de transfert de fichiers Moveit populaire auprès des entreprises pourrait avoir un impact global généralisé.
>The Cl0p cyber-extortion gang\'s hack of the MOVEit file-transfer program popular with enterprises could have widespread global impact. |
Hack | ★★ | |
 |
2023-06-07 14:05:09 | Moveit Hack effectant Aer Lingus, Boots, British Airways et la BBC. MOVEit hack effecting Aer Lingus, Boots, British Airways and the BBC. (lien direct) |
> Notre PDG Brian Honan parle à RT & Eacute;News Six One sur le récent hack Moveit.Regardez ici>
>Our CEO Brian Honan speaks to RTÉ News Six One about the recent MOVEit hack. Watch Here > |
Hack | ★★ | |
|
2023-06-07 13:27:56 | Issu de pirates \\ 'ultimatum \\' sur la violation des données de la paie Hackers Issue \\'Ultimatum\\' Over Payroll Data Breach (lien direct) |
Le gang de ransomware CLOP a publié des sociétés "un ultimatum" ciblées dans un récent hack à grande échelle de données de paie
The Clop ransomware gang issued "an ultimatum" companies targeted in a recent large-scale hack of payroll data |
Ransomware Data Breach Hack | ★★ | |
|
2023-06-06 19:20:00 | Ce nouveau satellite entre en orbite avec une mission: se faire abuser des pirates This new satellite enters orbit with one mission: To get abused by hackers (lien direct) |
Si les pirates s'ennuient ici sur Terre, ils auront bientôt la chance de tester leurs compétences dans l'espace.Le défi est le suivant: lors de la conférence Def Con Security à Las Vegas en août, ils devront pirater à distance le satellite Moonlighter, qui a été lancé avec succès dans l'espace plus tôt cette semaine.Moonlighter est une mini-satellite de 5 kilogrammes -
If hackers get bored here on Earth, they\'ll soon have the chance to test their skills in space. The challenge is this: during the DEF CON security conference in Las Vegas in August, they\'ll have to remotely hack the Moonlighter satellite, which successfully launched into space earlier this week. Moonlighter is a 5-kilogram mini-satellite - |
Hack Conference | ★★★★ | |
|
2023-06-06 13:00:00 | Cyberheistnews Vol 13 # 23 [réveil] Il est temps de se concentrer davantage sur la prévention du phishing de lance CyberheistNews Vol 13 #23 [Wake-Up Call] It\\'s Time to Focus More on Preventing Spear Phishing (lien direct) |
CyberheistNews Vol 13 #23 | June 6th, 2023
[Wake-Up Call] It\'s Time to Focus More on Preventing Spear Phishing
Fighting spear phishing attacks is the single best thing you can do to prevent breaches. Social engineering is involved in 70% to 90% of successful compromises. It is the number one way that all hackers and malware compromise devices and networks. No other initial root cause comes close (unpatched software and firmware is a distant second being involved in about 33% of attacks).
A new, HUGE, very important, fact has been gleaned by Barracuda Networks which should impact the way that EVERYONE does security awareness training. Everyone needs to know about this fact and react accordingly.
This is that fact: "...spear phishing attacks that use personalized messages... make up only 0.1% of all email-based attacks according to Barracuda\'s data but are responsible for 66% of all breaches."
Let that sink in for a moment.
What exactly is spear phishing? Spear phishing is when a social engineering attacker uses personal or confidential information they have learned about a potential victim or organization in order to more readily fool the victim into performing a harmful action. Within that definition, spear phishing can be accomplished in thousands of different ways, ranging from basic attacks to more advanced, longer-range attacks.
[CONTINUED] at KnowBe4 blog:https://blog.knowbe4.com/wake-up-call-its-time-to-focus-more-on-preventing-spear-phishing
[Live Demo] Ridiculously Easy Security Awareness Training and Phishing
Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.
Join us TOMORROW, Wednesday, June 7, @ 2:00 PM (ET), for a live demonstration of how KnowBe4 introduces a new-school approach to security awareness training and simulated phishing.
Get a look at THREE NEW FEATURES and see how easy it is to train and phish your users.
NEW! Executive Reports - Can create, tailor and deliver advanced executive-level reports
NEW! KnowBe4 |
Ransomware Malware Hack Tool Threat | ★★ | |
|
2023-06-03 11:00:00 | Dans d'autres nouvelles: utilisation du gouvernement de logiciels espions, nouveaux outils de sécurité industrielle, Japan Router Hack In Other News: Government Use of Spyware, New Industrial Security Tools, Japan Router Hack (lien direct) |
> News Cybersecurity que vous avez peut-être manqué cette semaine: les logiciels espions utilisés par divers gouvernements, de nouvelles vulnérabilités, des produits de sécurité industrielle et des attaques de routeurs Linux.
>Cybersecurity news that you may have missed this week: the spyware used by various governments, new vulnerabilities, industrial security products, and Linux router attacks. |
Hack Industrial | ★★ | |
|
2023-06-02 09:47:24 | Apple nie aider le gouvernement américain à pirater les iPhones russes Apple Denies Helping US Government Hack Russian iPhones (lien direct) |
> Apple a nié avoir travaillé avec n'importe quel gouvernement pour ajouter des délais à ses produits après que la Russie a accusé la société d'avoir aidé les iPhones de piratage de la NSA.
>Apple has denied working with any government to add backdoors to its products after Russia accused the company of helping the NSA hack iPhones. |
Hack | ★★ | |
|
2023-06-02 09:04:59 | Zero-day in Moveit File Transfer Software exploité pour voler des données aux organisations Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations (lien direct) |
> Une vulnérabilité zéro-jour dans le produit du logiciel de progression \\ Moveit Transfer a été exploitée pour pirater des organisations et voler leurs données.
>A zero-day vulnerability in Progress Software\'s MOVEit Transfer product has been exploited to hack organizations and steal their data. |
Hack Vulnerability | ★★★ | |
|
2023-06-01 20:44:00 | Le nouveau hack zéro clique cible les utilisateurs iOS avec des logiciels malveillants radiculaires furtifs New Zero-Click Hack Targets iOS Users with Stealthy Root-Privilege Malware (lien direct) |
Une menace persistante avancée auparavant inconnue (APT) vise les appareils iOS dans le cadre d'une campagne mobile sophistiquée et de longue date surnommée la triangulation de l'opération qui a commencé en 2019.
"Les cibles sont infectées à l'aide d'exploits de clics zéro via la plate-forme iMessage, et le malware s'exécute avec les privilèges racine, obtenant un contrôle complet sur les données de l'appareil et de l'utilisateur", a déclaré Kaspersky.
Le Russe
A previously unknown advanced persistent threat (APT) is targeting iOS devices as part of a sophisticated and long-running mobile campaign dubbed Operation Triangulation that began in 2019. "The targets are infected using zero-click exploits via the iMessage platform, and the malware runs with root privileges, gaining complete control over the device and user data," Kaspersky said. The Russian |
Malware Hack Threat | ★★ | |
|
2023-05-31 20:36:49 | Dissidents iraniens \\ 'affirmation de piratage présidentiel probablement légitime, disent les experts Iranian dissidents\\' claim of presidential hack likely legitimate, experts say (lien direct) |
L'opération de piratage et de fuite révélée lundi comprend une mine de fichiers liés au président iranien Ebrahim Raisi.
The hack and leak operation revealed Monday includes a trove of files related to Iranian President Ebrahim Raisi. |
Hack | ★★ | |
|
2023-05-31 13:00:00 | Cyberheistnews Vol 13 # 22 [Eye on Fraud] Un examen plus approfondi de la hausse massive de 72% des attaques de phishing financier CyberheistNews Vol 13 #22 [Eye on Fraud] A Closer Look at the Massive 72% Spike in Financial Phishing Attacks (lien direct) |
CyberheistNews Vol 13 #22 | May 31st, 2023
[Eye on Fraud] A Closer Look at the Massive 72% Spike in Financial Phishing Attacks
With attackers knowing financial fraud-based phishing attacks are best suited for the one industry where the money is, this massive spike in attacks should both surprise you and not surprise you at all.
When you want tires, where do you go? Right – to the tire store. Shoes? Yup – shoe store. The most money you can scam from a single attack? That\'s right – the financial services industry, at least according to cybersecurity vendor Armorblox\'s 2023 Email Security Threat Report.
According to the report, the financial services industry as a target has increased by 72% over 2022 and was the single largest target of financial fraud attacks, representing 49% of all such attacks. When breaking down the specific types of financial fraud, it doesn\'t get any better for the financial industry:
51% of invoice fraud attacks targeted the financial services industry
42% were payroll fraud attacks
63% were payment fraud
To make matters worse, nearly one-quarter (22%) of financial fraud attacks successfully bypassed native email security controls, according to Armorblox. That means one in five email-based attacks made it all the way to the Inbox.
The next layer in your defense should be a user that\'s properly educated using security awareness training to easily identify financial fraud and other phishing-based threats, stopping them before they do actual damage.
Blog post with links:https://blog.knowbe4.com/financial-fraud-phishing
[Live Demo] Ridiculously Easy Security Awareness Training and Phishing
Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.
Join us Wednesday, June 7, @ 2:00 PM (ET), for a live demonstration of how KnowBe4 introduces a new-school approach to security awareness training and simulated phishing.
Get a look at THREE NEW FEATURES and see how easy it is to train and phish your users.
|
Ransomware Malware Hack Tool Threat Conference | Uber ChatGPT ChatGPT Guam | ★★ |
|
2023-05-27 12:14:25 | CISA avertit les agences Govt de Barracuda zéro-jour récemment corrigé CISA warns govt agencies of recently patched Barracuda zero-day (lien direct) |
La CISA a mis en garde contre une vulnérabilité zéro-jour récemment exploitée la semaine dernière pour pirater les appareils électroménagers de la Gateway (ESG) de Barracuda.[...]
CISA warned of a recently patched zero-day vulnerability exploited last week to hack into Barracuda Email Security Gateway (ESG) appliances. [...] |
Hack Vulnerability | ★★ | |
|
2023-05-26 10:31:56 | Pare-feu zyxel piraté par Mirai Botnet Zyxel Firewalls Hacked by Mirai Botnet (lien direct) |
> Un botnet Mirai a exploité une vulnérabilité récemment corrigée suivie sous le nom de CVE-2023-28771 pour pirater de nombreux pare-feu zyxel.
>A Mirai botnet has been exploiting a recently patched vulnerability tracked as CVE-2023-28771 to hack many Zyxel firewalls. |
Hack Vulnerability | ★★ | |
 |
2023-05-25 19:31:34 | Faites de votre maison intelligente une maison sécurisée également: sécuriser vos appareils de maison intelligente IoT Make Your Smart Home a Secure Home Too: Securing Your IoT Smart Home Devices (lien direct) |
> 
Ce n'est que une ampoule intelligente.Pourquoi voudrait-on pirater cela?Grande question.Parce que ça arrive au cœur ...
> 
It\'s only a smart lightbulb. Why would anyone want to hack that? Great question. Because it gets to the heart...
|
Hack | ★★ | |
|
2023-05-25 09:56:37 | Vulnérabilité zéro-jour exploitée pour pirater les appareils de passerelle de sécurité par e-mail Barracuda Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Appliances (lien direct) |
> Barracuda Networks avertit les clients du CVE-2023-2868, un jour nul exploité pour pirater certains appareils électroménagers (ESG). .
>Barracuda Networks is warning customers about CVE-2023-2868, a zero-day exploited to hack some Email Security Gateway (ESG) appliances. |
Hack Vulnerability | ★★ | |
|
2023-05-24 10:00:00 | Lorsque la sécurité Internet est une exigence, envisagez de fibre dédiée When internet security is a requirement, look to dedicated fiber (lien direct) |
With increased dangers lurking in digital spaces, the need for cybersecurity is now a commonly known fact for just about all business owners. When it comes to protecting their network, most start with the basic firewall. While added layers are required, there is something even more fundamental that should not be overlooked: the physical connection itself. It is like making sure you have secure and quality doors and windows prior to putting alarms on them. So, what type of internet connection is the most secure? To answer this question, I consulted with Robert Lozanski, a member of AT&T\'s Solution Consultant team whose primary role is to design full networking solutions for businesses. In the following paragraphs, let’s go through the different types of connections and assess the quality - as well as the security level - of each one. Meet the contenders First off, it is important to understand the different types of internet connections. The most common ones are copper, fiber, and wireless networks. Copper: Copper cables are the original internet connections. They transmit data in the form of electrical signals. While this type of connection has been used for years, copper is difficult to maintain, has limited speed options, and degrades with time. As a result, many providers are making a shift away from it. Cellular: A cellular network provides access to the Internet by transmitting data over the air. The network connects to cellular towers rather than cables in the ground. While cellular internet has made huge technological advancements with the rollout of 5G, it still has its limitations. Cellular networks currently have lower speed tiers than many wired options – but this may change in the future. Fiber: Fiber optic internet uses a network of bundled strands of glass called fiber optic cables to deliver internet service through pulses of light. Fiber optics are the newest and most reliable type of internet connections. They also offer the highest speed options. Assessing the security of the connections A common way to assess a network is by measuring it against the CIA triad: Confidentiality, Integrity, and Availability. Among the different internet transport types, some are more secure than others because of the way they fulfill the three CIA requirements. In other words, a secure network will have high levels of confidentiality, integrity, and availability. As of 2023, 5G wireless connections have security layer options and speeds that make them strong contenders in the networking market. However, wired connections are still the primary choice for businesses prioritizing their internet connections due to wired connection’s reliability and bandwidth availability. According to Lozanski, "while a cellular network solution is utilitarian for its mobility and flexibility, wired connections still offer an added layer of security because they will provide faster speeds and performance. A cellular connection can perform like a broadband connection with fluctuations throughout the day, but it won’t offer the same speeds.” Between the two wired connections mentioned, copper and fiber, there is not much competition. With speeds up to 1Tbps, fiber moves at the speed of light and offers availability and reliability that copper wired connections cannot provide. However, the search for the most secure connection does not stop there. Even though fiber optic connections are made of glass and move at the speed of light, the way the connection is delivered may vary, and in turn offer different levels of security. The simplest way to break down this d | Hack Prediction | ★★ | |
 |
2023-05-23 13:45:45 | Rapport sur les cyberattaques 2022: les PME suisses particulièrement menacées Bericht zu Cyberattacken 2022: Schweizer KMU besonders bedroht (lien direct) |
Le rapport demi-année en 2022 du National Center for Cyber Security (NCSC) montre une menace élevée, en particulier pour le Centre national en mai.Le danger de devenir victime d'une infection des ransomwares est resté presque le même, en particulier le groupe russophone attiré par le bit actif et les avantages de vulnérabilités non rémunérées et de configurations incorrectes & # 8211;Le groupe a attiré l'attention des services secrètes occidentaux après le hack Royal Mail UK, qui est désavantageux pour le secteur des ransomwares.
-
rapports spéciaux
/ /
affiche
Der im Mai veröffentlichte Halbjahresbericht 2022 des Nationalen Zentrums für Cybersicherheit (NCSC) zeigt insgesamt eine hohe Bedrohungslage besonders für KMU auf. Die Gefahr Opfer einer Ransomware-Infektion zu werden, ist nahezu gleichgeblieben, besonders die russischsprachige Gruppe Lockbit war aktiv und profitiert von ungepatchten Schwachstellen und fehlerhaften Konfigurationen – spätestens nach dem Royal Mail UK Hack hat die Gruppe die Aufmerksamkeit der westlichen Geheimdienste auf sich gezogen, was sich zukünftig nachteilig auf das Ransomware-Business auswirken dürfte. - Sonderberichte / affiche |
Hack | ★★ | |
|
2023-05-23 13:00:00 | Cyberheistnews Vol 13 # 21 [Double Trouble] 78% des victimes de ransomwares sont confrontées à plusieurs extensions en tendance effrayante CyberheistNews Vol 13 #21 [Double Trouble] 78% of Ransomware Victims Face Multiple Extortions in Scary Trend (lien direct) |
CyberheistNews Vol 13 #21 | May 23rd, 2023
[Double Trouble] 78% of Ransomware Victims Face Multiple Extortions in Scary Trend
New data sheds light on how likely your organization will succumb to a ransomware attack, whether you can recover your data, and what\'s inhibiting a proper security posture.
You have a solid grasp on what your organization\'s cybersecurity stance does and does not include. But is it enough to stop today\'s ransomware attacks? CyberEdge\'s 2023 Cyberthreat Defense Report provides some insight into just how prominent ransomware attacks are and what\'s keeping orgs from stopping them.
According to the report, in 2023:
7% of organizations were victims of a ransomware attack
7% of those paid a ransom
73% were able to recover data
Only 21.6% experienced solely the encryption of data and no other form of extortion
It\'s this last data point that interests me. Nearly 78% of victim organizations experienced one or more additional forms of extortion. CyberEdge mentions threatening to publicly release data, notifying customers or media, and committing a DDoS attack as examples of additional threats mentioned by respondents.
IT decision makers were asked to rate on a scale of 1-5 (5 being the highest) what were the top inhibitors of establishing and maintaining an adequate defense. The top inhibitor (with an average rank of 3.66) was a lack of skilled personnel – we\'ve long known the cybersecurity industry is lacking a proper pool of qualified talent.
In second place, with an average ranking of 3.63, is low security awareness among employees – something only addressed by creating a strong security culture with new-school security awareness training at the center of it all.
Blog post with links:https://blog.knowbe4.com/ransomware-victim-threats
[Free Tool] Who Will Fall Victim to QR Code Phishing Attacks?
Bad actors have a new way to launch phishing attacks to your users: weaponized QR codes. QR code phishing is especially dangerous because there is no URL to check and messages bypass traditional email filters.
With the increased popularity of QR codes, users are more at |
Ransomware Hack Tool Vulnerability Threat Prediction | ChatGPT | ★★ |
|
2023-05-23 03:22:09 | #TripwireBookClub – How to Hack Like a Legend (lien direct) | Celui-ci a pris un peu plus de temps à lire que la plupart des livres que nous passons en revue, mais c'est entièrement sur moi… tout le monde l'a terminé il y a quelque temps.Cette fois-ci, nous regardons comment pirater comme une légende: casser les fenêtres par le flux de spar.La page de presse No Starch indique que le livre est «rempli de trucs intéressants, de conseils ingénieux et de liens vers des ressources utiles pour vous donner un guide pratique et pratique pour pénétrer et contourner les systèmes de sécurité Microsoft».Le contenu du livre est assez intéressant, et il couvre un certain nombre de sujets, notamment AMSI, Microsoft Advanced Threat Analytics, Kerberoasting ...
This one took a bit longer to read than most of the books we review, but that\'s entirely on me… everyone else finished it a while ago. This time around, we\'re looking at How to Hack Like a Legend: Breaking Windows by Sparc Flow. The No Starch Press page says that the book is “packed with interesting tricks, ingenious tips, and links to useful resources to give you a fast-paced, hands-on guide to penetrating and bypassing Microsoft security systems.” The content of the book is quite interesting, and it covers a number of topics including AMSI, Microsoft Advanced Threat Analytics, Kerberoasting... |
Hack Threat | ★★ | |
|
2023-05-23 03:22:09 | #TripwireBookClub & # 8211;Comment pirater comme une légende #TripwireBookClub – How to Hack Like a Legend (lien direct) |
Celui-ci a pris un peu plus de temps à lire que la plupart des livres que nous passons en revue, mais c'est entièrement sur moi… tout le monde l'a terminé il y a quelque temps.Cette fois-ci, nous regardons comment pirater comme une légende: casser les fenêtres par le flux de spar.La page de presse No Starch indique que le livre est «rempli de trucs intéressants, de conseils ingénieux et de liens vers des ressources utiles pour vous donner un guide pratique et pratique pour pénétrer et contourner les systèmes de sécurité Microsoft».Le contenu du livre est assez intéressant, et il couvre un certain nombre de sujets, notamment AMSI, Microsoft Advanced Threat Analytics, Kerberoasting ...
This one took a bit longer to read than most of the books we review, but that\'s entirely on me… everyone else finished it a while ago. This time around, we\'re looking at How to Hack Like a Legend: Breaking Windows by Sparc Flow. The No Starch Press page says that the book is “packed with interesting tricks, ingenious tips, and links to useful resources to give you a fast-paced, hands-on guide to penetrating and bypassing Microsoft security systems.” The content of the book is quite interesting, and it covers a number of topics including AMSI, Microsoft Advanced Threat Analytics, Kerberoasting... |
Hack Threat | ★★ | |
|
2023-05-18 15:34:54 | Apple corrige trois nouveaux jours zéro exploités pour pirater les iPhones, les Mac Apple fixes three new zero-days exploited to hack iPhones, Macs (lien direct) |
Apple a abordé trois nouvelles vulnérabilités zéro-jours exploitées dans les attaques pour pirater les iPhones, les Mac et les iPads.[...]
Apple has addressed three new zero-day vulnerabilities exploited in attacks to hack into iPhones, Macs, and iPads. [...] |
Hack | ★★ | |
|
2023-05-16 13:00:00 | CyberheistNews Vol 13 # 20 [pied dans la porte] Les escroqueries de phishing du Q1 2023 \\ |Infographie CyberheistNews Vol 13 #20 [Foot in the Door] The Q1 2023\\'s Top-Clicked Phishing Scams | INFOGRAPHIC (lien direct) |
CyberheistNews Vol 13 #20 | May 16th, 2023
[Foot in the Door] The Q1 2023\'s Top-Clicked Phishing Scams | INFOGRAPHIC
KnowBe4\'s latest reports on top-clicked phishing email subjects have been released for Q1 2023. We analyze "in the wild" attacks reported via our Phish Alert Button, top subjects globally clicked on in phishing tests, top attack vector types, and holiday email phishing subjects.
IT and Online Services Emails Drive Dangerous Attack Trend
This last quarter\'s results reflect the shift to IT and online service notifications such as laptop refresh or account suspension notifications that can affect your end users\' daily work.
Cybercriminals are constantly increasing the damage they cause to organizations by luring unsuspecting employees into clicking on malicious links or downloading fake attachments that seem realistic. Emails that are disguised as coming from an internal source, such as the IT department, are especially dangerous because they appear to come from a trusted place where an employee would not necessarily question it or be as skeptical.
Building up your organization\'s human firewall by fostering a strong security culture is essential to outsmart bad actors. The report covers the following:
Common "In-The-Wild" Emails for Q1 2023
Top Phishing Email Subjects Globally
Top 5 Attack Vector Types
Top 10 Holiday Phishing Email Subjects in Q1 2023
This post has a full PDF infographic you can download and share with your users:https://blog.knowbe4.com/q1-2023-top-clicked-phishing
[New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist
Now there\'s a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform!
The new PhishER Blocklist feature lets you use reported messages to prevent future malicious email with the same sender, URL or attachment from reaching other users. Now you can create a unique list of blocklist entries and dramatically improve your Microsoft 365 email filters without ever leaving the PhishER console.
Join us TOMORROW, Wednesday, May 17, @ 2:00 PM (ET) for a l |
Ransomware Spam Malware Hack Tool Threat | ★★ | |
|
2023-05-12 09:22:58 | Australian Enterprise Software Maker Technologyone reprend le trading après le piratage Australian Enterprise Software Maker TechnologyOne Resumes Trading Following Hack (lien direct) |
Le fabricant de logiciels d'entreprise australienne a déclaré que son système interne Microsoft 365 avait été compromis dans une cyberattaque.
Australian enterprise software maker TechnologyOne said its internal Microsoft 365 system was compromised in a cyberattack. |
Hack | ★★ | |
|
2023-05-11 17:59:43 | Ex-ingénieur de l'ubiquiti derrière le vol de données «à couper le souffle» obtient une peine de prison de 6 ans Ex-Ubiquiti engineer behind “breathtaking” data theft gets 6-year prison term (lien direct) |
L'ingénieur a tenté de prétendre que le piratage était un «exercice de sécurité non autorisé».
Engineer tried to claim that the hack was an “unsanctioned security drill.” |
Hack | ★★ |
To see everything:
Our RSS (filtrered)
