Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-01-31 16:00:00 |
Financial Services Targeted in 28% of UK Cyber-Attacks Last Year (lien direct) |
API attacks, bad bots and DDoS attacks were the industry's main security challenges |
|
|
★★★
|
|
2023-01-31 10:30:00 |
Killnet Attackers DDoS US and Dutch Hospitals (lien direct) |
Retaliatory Russian attacks latest response to geopolitical moves |
|
|
★★★
|
|
2023-01-31 10:00:00 |
Two US Doctors Convicted of $30m Medicare Fraud (lien direct) |
Claims submitted for medical equipment not needed by patients |
Medical
|
|
★★
|
|
2023-01-31 09:30:00 |
QNAP: Patch Critical Remote Code Injection Bug (lien direct) |
Vulnerability affects QTS and QuTS Hero firmware |
Vulnerability
|
|
★
|
|
2023-01-30 18:00:00 |
JD Sports Confirms Breach Affected 10 Million Customers (lien direct) |
The cyber-attack hit the company between November 2018 and October 2020 |
Data Breach
|
|
★★★
|
|
2023-01-30 17:00:00 |
Hackers Use TrickGate Software to Deploy Emotet, REvil, Other Malware (lien direct) |
Threat actors used TrickGate to conduct between 40 and 650 attacks per week in the last two years |
Malware
Threat
|
|
★★
|
|
2023-01-30 16:00:00 |
Devs on Dark Web Forums Paid Up to $20,000 For Illicit Activities (lien direct) |
The data comes from 155 dark web forums analyzed between January 2020 and June 2022 |
|
|
★★
|
|
2023-01-30 10:40:00 |
Fake Money Apps Garner Millions of Android Downloads (lien direct) |
Over 20 million users install apps from Google Play |
|
|
★★
|
|
2023-01-30 10:15:00 |
New Yorker Gets Four Years for $9m COVID Fraud Scheme (lien direct) |
Woman recruited multiple co-conspirators to help her |
|
|
★★
|
|
2023-01-30 09:30:00 |
Five Data Wipers Attack Ukrainian News Agency (lien direct) |
Russia's Sandworm group suspected of destructive attack |
|
|
★★★
|
|
2023-01-27 18:00:00 |
Multiple Vulnerabilities Found In Healthcare Software OpenEMR (lien direct) |
Two of these vulnerabilities combined could lead to unauthenticated remote code execution |
Vulnerability
Guideline
|
|
★★★
|
|
2023-01-27 17:00:00 |
Black Basta Deploys PlugX Malware in USB Devices With New Technique (lien direct) |
The variant is “wormable” and can infect USB devices to hide itself from the Windows OS |
Malware
|
|
★★★
|
|
2023-01-27 16:00:00 |
New \'Pig Butchering\' Scam in West Africa Impersonates US Financial Advisors (lien direct) |
DomainTools said most of these attacks exploited professional network services such as LinkedIn |
Threat
|
|
★★★
|
|
2023-01-27 10:40:00 |
Security is Key to Business Transformation, Say IT Chiefs (lien direct) |
Two-fifths see it as a critical innovation driver |
|
|
★★
|
|
2023-01-27 10:15:00 |
Global Action "Dismantles" Hive Ransomware Group (lien direct) |
FBI distributes hundreds of decryption keys to victims |
Ransomware
|
|
★★
|
|
2023-01-27 09:50:00 |
Microsoft: Update On-Premises Exchange Server Now (lien direct) |
Attacks are not going away, tech giant warns |
|
|
★★
|
|
2023-01-26 18:00:00 |
Iranian Group Cobalt Sapling Targets Saudi Arabia With New Persona (lien direct) |
The findings come from cybersecurity experts at Secureworks' Counter Threat Unit |
Threat
|
|
★★★
|
|
2023-01-26 17:00:00 |
Zacks Investment Research Confirms Breach Affecting 820,000 Customers (lien direct) |
The firm believes the unauthorized access occurred between November 2021 and August 2022 |
|
|
★
|
|
2023-01-26 16:00:00 |
CISA Warns Against Malicious Use of Legitimate RMM Software (lien direct) |
The document mentions an October 2022 cyber campaign involving the malicious use of RMM solutions |
|
|
★★
|
|
2023-01-26 12:00:00 |
NCSC: Iranian and Russian Groups Targeting Government, Activists and Journalists With Spearphishing (lien direct) |
The NCSC advisory details tactics used by Russia-based threat actor SEABORGIUM and Iran-based group TA453 |
Threat
|
|
★★
|
|
2023-01-26 11:00:00 |
Dark Web Posts Advertising Counterfeit Cash Surge 90% (lien direct) |
Physical currency remains a big draw for cyber-criminals |
|
|
★★
|
|
2023-01-26 10:15:00 |
Near-Record Year for US Data Breaches in 2022 (lien direct) |
Breach notices are increasingly opaque, warns non-profit |
|
|
★★
|
|
2023-01-26 09:40:00 |
Lloyds Bank Warns of 80% Surge in Advance Fee Scams (lien direct) |
Fake ads for loans, jobs and properties are on the rise |
|
|
★★
|
|
2023-01-25 18:00:00 |
North Korean Group TA444 Shows \'Startup\' Culture, Tries Numerous Infection Methods (lien direct) |
The threat actor has been targeting cryptocurrency exchanges since at least 2017 |
Threat
|
|
★★
|
|
2023-01-25 17:00:00 |
Yahoo Overtakes DHL As Most Impersonated Brand in Q4 2022 (lien direct) |
DHL came in second place, with 16% of all brand phishing attempts, and Microsoft followed with 11% |
|
Yahoo
Yahoo
|
★★★★
|
|
2023-01-25 16:00:00 |
Ticketmaster Claims Bot Attack Disrupted Taylor Swift Tour Sales (lien direct) |
Joe Berchtold, president of Live Nation, made the claims at a congressional committee Tuesday |
|
|
★★
|
|
2023-01-25 10:50:00 |
Regulator Stress Test Highlights Cyber Insurance Concerns (lien direct) |
Bank of England warns greater cross-industry consensus is needed |
|
|
★★
|
|
2023-01-25 10:00:00 |
New Cheats May Emerge After Riot Games Hack (lien direct) |
Ransomware actors stole source code, company reveals |
Ransomware
Hack
|
|
★★★
|
|
2023-01-25 09:30:00 |
Just Half of Firms Have Sufficient Cybersecurity Budget (lien direct) |
One in 10 can only protect critical assets, says Neustar |
|
|
★★★
|
|
2023-01-24 18:00:00 |
DragonSpark Hackers Evade Detection With SparkRAT and Golang (lien direct) |
The new string of attacks mostly targeted East Asian organizations |
|
|
★★
|
|
2023-01-24 17:00:00 |
FBI Confirms Lazarus Group Was Behind $100m Harmony Hack (lien direct) |
The North Korean cyber actors laundered over $60m worth of Ethereum stolen during the heist |
Hack
|
APT 38
|
★★★
|
|
2023-01-24 16:10:00 |
#DataPrivacyWeek: Consumers Already Concerned About AI\'s Impact on Data Privacy (lien direct) |
There is significant disconnect between consumer expectations and organizations' approaches around privacy, a new report has found |
|
|
★★
|
|
2023-01-24 16:00:00 |
Microsoft to Block Excel XLL Add-Ins to Stop Malware Delivery (lien direct) |
The tech giant confirmed it intends to implement these plans by March 2023 |
Malware
|
|
★
|
|
2023-01-24 10:30:00 |
Gartner: Zero Trust Won\'t Mitigate Over Half of Attacks (lien direct) |
Analyst claims only 10% of firms will have a program in place by 2026 |
|
|
★★★
|
|
2023-01-24 10:00:00 |
ICO Offers Data Protection Advice to SMBs (lien direct) |
Regulator also has words of caution for emerging tech providers |
|
|
★★
|
|
2023-01-24 09:30:00 |
Record-Breaking Year for DDoS Attacks Targeting Russia (lien direct) |
ISP Rostelecom says longest attack lasted three months |
|
|
★★★★
|
|
2023-01-23 18:00:00 |
Hackers Deploy Open-Source Tool Sliver C2, Replacing Cobalt Strike, Metasploit (lien direct) |
Sliver is gaining popularity due to its modular capabilities and cross-platform support |
Tool
|
|
★★
|
|
2023-01-23 17:00:00 |
Two Vulnerabilities Found in Galaxy App Store (lien direct) |
Both issues reportedly affected only Samsung devices running Android 12 and below |
|
|
★★★
|
|
2023-01-23 16:00:00 |
Most Federal Agencies Ignored GAO\'s Cybersecurity Recommendations (lien direct) |
Out of the 335 public recommendations issued since 2010, 190 still needed to be implemented |
|
|
★★
|
|
2023-01-23 10:30:00 |
Ad Fraud Scheme Tops 12 Billion Daily Bid Requests (lien direct) |
Vastflux operation injected obfuscated JavaScript into ads |
|
|
★★★
|
|
2023-01-23 10:00:00 |
Riot Games Halts Work After Cyber-Attack (lien direct) |
Compromise impacts developer's ability to release updates |
|
|
★★
|
|
2023-01-23 09:30:00 |
New Government Cyber Advice for £100bn UK Charity Sector (lien direct) |
NCSC report warns of surging threat to the third sector |
Threat
|
|
★★
|
|
2023-01-20 15:15:00 |
WhatsApp Hit with €5.5m fine for GDPR Violations (lien direct) |
The case raised disagreements between Ireland's DPC and the European Data Protection Board |
|
|
★★
|
|
2023-01-20 11:30:00 |
(Déjà vu) "Workarounds" Helped Royal Mail Resume Shipping After Ransomware Attack (lien direct) |
Thanks to technical “workarounds,” Royal Mail has been able to resume “limited” export services one week after being hit by cyber-attack |
Ransomware
|
|
★
|
|
2023-01-20 10:30:00 |
Phishers Use Blank Images to Disguise Malicious Attachments (lien direct) |
Researchers see another sophisticated attempt to obfuscate links |
|
|
★
|
|
2023-01-20 10:00:00 |
API Attacker Steals Data on 37 Million T-Mobile Customers (lien direct) |
Carrier says attack began in November 2022 |
|
|
★
|
|
2023-01-20 09:30:00 |
Massive Credential Stuffing Campaign Hits 35,000 PayPal Users (lien direct) |
Payments giant says attacks happened in early December |
|
|
★
|
|
2023-01-19 18:00:00 |
Roaming Mantis\' Hacking Campaign Adds DNS Changer to Mobile App (lien direct) |
The new feature can infiltrate WiFi routers and undertake DNS hijacking |
|
|
★★
|
|
2023-01-19 17:00:00 |
ThreatModeler Makes DevSecOps More Accessible With New Marketplace (lien direct) |
The store includes pre-built threat models that can be integrated into a development pipeline |
Threat
|
|
★
|
|
2023-01-19 16:00:00 |
Mailchimp Hit By Another Data Breach Following Employee Hack (lien direct) |
According to the company, the incident was limited to 133 accounts |
Data Breach
Hack
|
|
★★★
|