Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-28 18:27:23 |
CISA red-teamed a \'large critical infrastructure organization\' and didn\'t get caught (lien direct) |
CISA is reporting what it learned when its hackers were invited to break into a critical infrastructure organization's network. |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-28 13:50:41 |
LastPass says attacker hacked employee\'s home computer to access corporate vault (lien direct) |
Password management service LastPass now says a well-publicized 2022 incident stemmed from an intrusion on one engineer's home computer |
|
LastPass
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-27 20:46:33 |
Minneapolis Public Schools still investigating what caused \'encryption event\' (lien direct) |
Thousands of students in Minneapolis returned to school on Monday after a ransomware attack crippled the school's systems all of last week |
Ransomware
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-27 20:04:31 |
More trouble from an APT with Colombia and Ecuador on its mind (lien direct) |
The advanced persistent threat (APT) group known as Blind Eagle or APT-C-36 continues to phish with official-looking PDFs, researchers say |
Threat
|
APT-C-36
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-27 19:01:20 |
Tech manufacturers are leaving the door open for Chinese hacking, Easterly warns (lien direct) |
The head of the Cybersecurity and Infrastructure Security Agency warned Monday of potentially dire consequences if technology manufacturers fail to bolster the security of their products, in a blistering speech about the dangers posed in cyberspace by China. Technology providers have “normalized the deviant behavior of operating at the bleeding edge of the accident boundary,” [… |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-27 15:24:27 |
DISH says \'system issue\' affecting internal servers, phone systems (lien direct) |
Satellite broadcast giant DISH said a “systems issue” with its corporate network was affecting several services after customers noticed that the company website and multiple subsidiaries were experiencing problems. In addition to trouble accessing DISH websites and customer service channels, some customers said they could not log into certain channels using their DISH login information. [… |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-27 12:42:51 |
Danish hospitals hit by cyberattack from \'Anonymous Sudan\' (lien direct) |
The websites of nine hospitals in Denmark went offline on Sunday evening following distributed-denial-of-service (DDoS) attacks from a group calling itself Anonymous Sudan. Copenhagen's health authority said on Twitter that although the websites for the hospitals were down, medical care at the facilities was unaffected by the attacks. It later added the sites were back [… |
Medical
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-27 00:53:30 |
\'Limited number\' of News Corp employees sent breach notification letters after January cyberattack (lien direct) |
Employees of News Corp are being sent breach notification letters this week following a January 2022 breach that the company believes the Chinese government was behind. On Wednesday, News Corp submitted documents to Massachusetts confirming the breach. A News Corp spokesperson would not tell The Record how many people were sent letters but at least [… |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-25 00:42:12 |
DNA Diagnostics Center to pay $400,000 fine for 2021 data breach (lien direct) |
One of the largest commercial DNA testing companies in the world agreed to pay a $400,000 fine to Ohio and Pennsylvania after a 2021 data breach compromised the information of more than 2 million people. The announcement from DNA Diagnostics Center (DDC) comes after a lawsuit filed by the two states’ attorneys general accused the [… |
Data Breach
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-24 21:41:36 |
Smuggler provided sensitive US tech to Russian, N. Korean governments, prosecutors say (lien direct) |
Ilya Balakaev worked on behalf of the FSB intelligence agency to bring U.S. counterintelligence tech into Russia, according to an indictment |
General Information
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-24 20:37:32 |
Treasury Department hits Russian disinformation operators with sanctions (lien direct) |
The Treasury Department announced a swath of sanctions on Russian companies and individuals on Friday, including a handful of entities connected to cybersecurity and disinformation operations with links to Russia's intelligence services. The move by the Office of Foreign Assets Control especially targets Russia's mining and minerals sector, but also goes after a range of [… |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-24 17:24:24 |
Oakland says 311, business license systems still down, but National Guard is helping (lien direct) |
IT experts from the California National Guard and other state agencies are helping Oakland deal with a crippling ransomware attack |
Ransomware
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-24 16:16:13 |
Ohio\'s largest oil producer says \'no impact\' seen after cyberattack (lien direct) |
Encino Energy, which is based in Houston and has a large operation in Ohio, said a recent cyberattack was remediated after it was discovered |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 21:57:12 |
Russian accused of developing password-cracking tool extradited to US (lien direct) |
A 28-year-old Russian malware developer was extradited to the U.S. where he could face up to 47 years in federal prison for allegedly creating and selling a malicious password-cracking tool. Dariy Pankov, also known as “dpxaker,” developed what the Department of Justice called “powerful” password-cracking program that he marketed and sold to other cybercriminals for a [… |
Malware
Tool
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 21:30:23 |
Popular IBM file transfer tool vulnerable to cyberattacks, CISA says (lien direct) |
A vulnerability in the IBM Aspera Faspex file transfer tool is actively being exploited by malicious hackers, CISA says |
Tool
Vulnerability
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 20:46:30 |
Google bug bounty program paid a record $12 million last year (lien direct) |
Cybersecurity researchers from 68 countries reported more than 2,900 vulnerabilities to Google's bug bounty program in 2023 |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 19:31:29 |
Mozilla: Nearly 80% of Google Play Store apps have discrepancies in privacy reporting (lien direct) |
What apps actually do with user data often differs from what companies tell Google Play Store about their policies, a Mozilla study says |
Studies
|
|
★★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 19:02:13 |
Hackers use ChatGPT phishing websites to infect users with malware (lien direct) |
Cyble says cybercriminals are setting up phishing websites that mimic the branding of ChatGPT, an AI tool that has exploded in popularity |
Malware
Tool
|
ChatGPT
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 18:00:41 |
UK military intelligence team wins Western Europe\'s \'largest cyber warfare exercise\' held in Estonia (lien direct) |
A team from British military intelligence placed first at a cyber warfare exercise described as “Western Europe's largest” hosted at the CR14 cyber range in Estonia, the Ministry of Defence (MoD) announced this week. The exercise, titled Defence Cyber Marvel 2 (DCM2), was organized by the British Army and featured 34 teams from 11 countries, [… |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 15:18:46 |
Russians accused of using DeFi platform for $340 million Ponzi scheme (lien direct) |
Four Russian nationals were indicted for allegedly creating Forsage - a decentralized finance (DeFi) platform - as a Ponzi scheme |
|
|
★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 14:38:49 |
Food producer Dole confirms ransomware attack (lien direct) |
Dole confirmed the incident following a report that an attack had forced some of the company's production plants to close |
Ransomware
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-23 13:00:00 |
Russian covert influence operations have become \'low-quality,\' says Meta (lien direct) |
Russian operatives are creating many “low-quality" social media accounts, "in the hope that at least a few might survive,” Meta says |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-22 22:42:55 |
Shipping companies, medical laboratories in Asia targeted in espionage campaign (lien direct) |
Several shipping companies and medical laboratories in an Asian country have been targeted in an ongoing espionage campaign, Symantec says |
Medical
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-22 21:25:30 |
House Democrats want briefing on domestic terrorism at energy facilities, including malware (lien direct) |
Democrats in the House asked CISA and DHS for a briefing about domestic terrorists, including cyberattacks against energy infrastructure |
Malware
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-22 20:06:07 |
New Stealc malware-as-a-service targets web browsers, crypto wallets, email clients (lien direct) |
Sekoia.io says the Stealc malware-as-a-service has is a popular tool for stealing data from many types of software, including crypto wallets |
Tool
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-22 19:33:35 |
Venture capital financing of cyber companies slid to $18.5 billion in 2022 (lien direct) |
VC investments in cybersecurity startups began to dip in the second half of 2022, but private equity firms spent billions buying companies |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-22 14:50:12 |
Dutch intelligence: Many cyberattacks by Russia are not yet public knowledge (lien direct) |
Two Dutch intelligence agencies cited the volume of Russian cyber operations as one reason many are not yet publicly known |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-22 13:22:19 |
Russia blames hackers as commercial radio stations broadcast fake air strike warnings (lien direct) |
Fake air raid and missile strike warnings blared from Russian radio stations. Officials blamed the incident on a hack of satellite tech |
Hack
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 21:14:11 |
Mideast governments accused of using fake dating profiles in arrests of LGBT people (lien direct) |
Human Rights Watch says authorities in Egypt, Iraq, Jordan, Lebanon and Tunisia used dating apps as lures to find and detain LGBT people |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 20:45:42 |
Ukraine\'s largest charity wants to raise $1.3 million for \'cyber offensive\' (lien direct) |
Ukraine’s largest charitable foundation, Come Back Alive, has launched a fundraising campaign to support the country’s cyber offensive against Russia. The campaign aims to raise $1.3 million to purchase technology and equipment that will help Ukraine's cyber forces conduct digital operations that could impede Russia’s advances on the real battlefield. The commander of the cyber […] |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 19:19:19 |
LockBit gang takes credit for attack on water utility in Portugal (lien direct) |
The LockBit ransomware group has taken credit for a cyberattack on Águas e Energia do Porto - the water utility for the city of Porto |
Ransomware
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 18:13:45 |
Civil liberties groups call for EU-wide ban on spyware (lien direct) |
An association of civil liberties and human rights organizations across Europe has called for a European parliamentary inquiry to recommend that spyware is banned throughout the EU. The European Digital Rights (EDRi) association on Tuesday called for the European Parliament committee investigating spyware to amend its recommendations around the technology, focusing on an outright end [… |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 18:04:19 |
Ukrainian hackers claim disruption of Russian TV websites during Putin speech (lien direct) |
The Ukrainian hacktivist group IT Army said it caused blackouts of TV websites during a speech by Russian President Vladimir Putin |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 17:37:42 |
Coinbase explains how \'0ktapus\' hacker accessed corporate directory (lien direct) |
Coinbase said a cybercriminal with the 0ktapus hacking group called an employee in an effort to get past security measures |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-21 13:16:28 |
Irish TV broadcaster says attempted hack will affect programming (lien direct) |
Virgin Media Television, the Irish broadcaster, said on Monday that an attempted hack was going to impact its programming in coming days. The nature of the attack has not been specified, although a spokesperson told The Record it was not a ransomware attack. In a statement the company described identifying “an unauthorized attempt to access [… |
Ransomware
Hack
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-20 16:30:15 |
Chinese security researchers claim to have identified \'Against The West\' hackers (lien direct) |
China's Pangu Lab purportedly singled out six people for hacking on behalf of Against the West, which is actually a pro-Western group |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-20 13:28:35 |
CIA seeing \'a lot of effort\' from Russia to close down US intelligence visibility (lien direct) |
The head of the Central Intelligence Agency told the Munich Security Conference on Saturday that Russia was putting a lot of work into disrupting the agency's intelligence collection efforts - but without significant success. CIA Director William Burns, speaking alongside Michael Turner, the chair of the House Intelligence Committee, said the United States “providing usable [… |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-19 19:45:22 |
Moldova, facing cyberattacks as part of alleged Russian coup plan, asks for Western support (lien direct) |
Maia Sandu, the pro-European president of Moldova who last week warned of an active Russian plot to overthrow her country's government, told the Munich Security Conference on Saturday that she needed a range of support from other European nations to defend the integrity of her state. Her calls for support come at a moment of [… |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 21:03:38 |
Semiconductor industry giant says ransomware attack on supplier will cost it $250 million (lien direct) |
Applied Materials said that a ransomware attack on part of its supply chain would cost it $250 million in the next quarter |
Ransomware
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 19:59:46 |
Civilian hackers could become military targets, Red Cross warns (lien direct) |
Civilians taking to cyberspace to participate in hostilities between Russia and Ukraine could be lawfully exposed to military actions in response, a senior official from the International Committee of the Red Cross (ICRC) warned on Friday. Mauro Vignati, the ICRC's advisor on the digital technologies of warfare, told the Munich Cyber Security Conference that the [… |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 19:03:15 |
Belgium institutes nationwide vulnerability disclosure policy (lien direct) |
Belgium becomes the fourth European country to officially give researchers a way to legally report bugs to organizations and the government |
Vulnerability
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 18:40:39 |
DeFi platform Platypus says nearly $9 million in crypto stolen in flash loan attack (lien direct) |
Decentralized finance (DeFi) platform Platypus said Thursday night that about $8.5 million in cryptocurrency was stolen by a hacker that the company is now in communication with. Platypus wrote on Twitter that the hacker used a flash loan attack - a maneuver involving a fast, uncollateralized loan that artificially raises the price of a digital [… |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 17:38:53 |
German airports hit by DDoS attack, \'Anonymous Russia\' claims responsibility (lien direct) |
It's been a difficult week for German airlines. A day after a major IT failure at Lufthansa left thousands of passengers stranded, the websites of seven airports were hit by a suspected cyberattack. Among the airports affected by a “large-scale DDoS [distributed denial-of-service] attack” on Thursday were Dusseldorf, Nuremberg, Erfurt-Weimar and Dortmund, according to Ralph [… |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 17:05:51 |
NATO official: Alliance needs to consider \'a more structural cooperation\' with Microsoft, Google (lien direct) |
“The work that companies like Microsoft and Google have been doing in Ukraine is really unique,” says David van Weel, NATO's assistant secretary general for emerging security challenges, and the alliance should consider how they can cooperate during future conflicts. Microsoft and Google's cloud services have been involved in hosting Ukrainian government IT infrastructure in […] |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 17:01:27 |
Multiple Chinese APTs are attacking European targets, EU cyber agency warns (lien direct) |
The EU's cybersecurity agency says several Chinese military hacking groups are targeting European businesses and other organizations |
|
|
★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 13:53:23 |
When Russia\'s conventional war stops, cyberattacks will continue, warns Estonia\'s PM (lien direct) |
Prime Minister Kaja Kallas warned at the Munich Security Conference that allies should expect constant Russian pressure in cyberspace |
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-17 13:14:19 |
Expect more sanctions and hacking operations on ransomware groups, top Justice official says (lien direct) |
Deputy Attorney General Lisa Monaco said the feds will continue to use sanctions and hacking operations as tools against ransomware groups |
Ransomware
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-16 21:54:11 |
Hackers target Chinese language speakers with FatalRAT malware (lien direct) |
Chinese-speaking users are being targeted with FatalRAT malware, spread via fake websites of popular apps, new research has found. First discovered in August 2021, FatalRat malware can capture keystrokes, change a victim's screen resolution, download and execute files, and steal or delete data stored in browsers. So far, the researchers from cybersecurity company ESET have [… |
Malware
|
|
★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-16 20:35:07 |
Espionage malware targeted telecoms in Middle East using Microsoft, Google, Dropbox tools (lien direct) |
An espionage campaign targeting telecommunications providers across the Middle East hid its activities through a range of popular tools from Microsoft, Google and Dropbox, according to a report released Thursday. Researchers at cybersecurity company SentinelOne named the campaign “WIP26” - work in progress - because they were unable to attribute it to any actor or [… |
Malware
|
|
★★★★
|
![RecordedFuture.webp](./Ressources/img/RecordedFuture.webp) |
2023-02-16 19:53:42 |
Cyber companies\' aid to Ukraine is vital, report says, but the efforts also have limitations (lien direct) |
The Aspen Institute suggests ways that Western companies' cybersecurity aid to Ukraine could start to move away from the "ad hoc" phase. |
|
|
★★
|