Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-03-17 15:08:43 |
State-sponsored Threat Groups Target Telcos, Steal 5G Secrets (lien direct) |
Researchers say China-linked APTs lure victims with bogus Huawei career pages in what they dub 'Operation Diànxùn'. |
Threat
|
|
|
|
2021-03-12 21:05:14 |
REvil Group Claims Slew of Ransomware Attacks (lien direct) |
The threat group behind the Sodinokibi ransomware claimed to have recently compromised nine organizations. |
Ransomware
Threat
|
|
|
|
2021-03-11 21:47:23 |
TrickBot Takes Over, After Cops Kneecap Emotet (lien direct) |
TrickBot rises to top threat in February, overtaking Emotet in Check Point's new index. |
Threat
|
|
|
|
2021-03-04 22:19:15 |
Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers (lien direct) |
Researchers with Microsoft and FireEye found three new malware families, which they said are used by the threat group behind the SolarWinds attack. |
Malware
Threat
|
|
|
|
2021-03-03 19:29:14 |
Home-Office Photos: A Ripe Cyberattack Vector (lien direct) |
Threat actors can use personal information gleaned from images to craft targeted scams, putting personal and corporate data at risk. |
Threat
|
|
|
|
2021-03-03 19:18:21 |
RTM Cybergang Adds New Quoter Ransomware to Crime Spree (lien direct) |
The Russian-speaking RTM threat group is targeting organizations in an ongoing campaign that leverages a well-known banking trojan, brand new ransomware strain and extortion tactics. |
Ransomware
Threat
|
|
|
|
2021-03-01 22:54:02 |
Mobile Adware Booms, Online Banks Become Prime Target for Attacks (lien direct) |
A snapshot of the 2020 mobile threat landscape reveals major shifts toward adware and threats to online banks. |
Threat
|
|
|
|
2021-02-26 16:22:56 |
Malware Gangs Partner Up in Double-Punch Security Threat (lien direct) |
From TrickBot to Ryuk, more malware cybercriminal groups are putting their heads together when attacking businesses. |
Malware
Threat
|
|
|
|
2021-02-24 17:14:55 |
VMWare Patches Critical RCE Flaw in vCenter Server (lien direct) |
The vulnerability, one of three patched by the company this week, could allow threat actors to breach the external perimeter of a data center or leverage backdoors already installed to take over a system. |
Threat
|
|
|
|
2021-02-22 21:07:03 |
Chinese Hackers Hijacked NSA-Linked Hacking Tool: Report (lien direct) |
APT31, a Chinese-affiliated threat group, copied a Microsoft Windows exploit previously used by the Equation Group, said researchers. |
Threat
|
APT 31
|
|
|
2021-02-22 17:51:20 |
Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11 (lien direct) |
The threat actors stole data and used Clop's leaks site to demand money in an extortion scheme, though no ransomware was deployed. |
Ransomware
Threat
|
|
|
|
2021-02-09 12:54:39 |
Hacker Tries to Poison Water Supply of Florida Town (lien direct) |
A threat actor remotely accessed the IT system of the water treatment facility of Oldsmar and raised the levels of sodium hydroxide in the water, an action that was quickly noticed and remediated. |
Threat
|
|
|
|
2021-01-12 18:35:41 |
Mimecast Certificate Hacked in Microsoft Email Supply-Chain Attack (lien direct) |
A sophisticated threat actor has hijacked email security connections to spy on targets. |
Threat
|
|
|
|
2021-01-05 15:26:12 |
Major Gaming Companies Hit with Ransomware Linked to APT27 (lien direct) |
Researchers say a recent attack targeting videogaming developers has 'strong links' to the infamous APT27 threat group. |
Ransomware
Threat
|
APT 27
APT 27
|
|
|
2021-01-03 15:00:52 |
2021 Cybersecurity Trends: Bigger Budgets, Endpoint Emphasis and Cloud (lien direct) |
Insider threats are redefined in 2021, the work-from-home trend will continue define the threat landscape and mobile endpoints become the attack vector of choice, according 2021 forecasts. |
Threat
|
|
★★★★★
|
|
2020-12-21 21:48:12 |
Nosy Ex-Partners Armed with Instagram Passwords Pose a Serious Threat (lien direct) |
A survey of single people found almost a third are still logging into their ex's social-media accounts, some for revenge. |
Threat
|
|
|
|
2020-12-21 21:01:14 |
Defending Against State and State-Sponsored Threat Actors (lien direct) |
State and state-sponsored threat actors are the apex predators of the cybersecurity world. |
Threat
|
|
|
|
2020-12-21 17:10:35 |
Simplifying Proactive Defense With Threat Playbooks (lien direct) |
FortiGuard Labs' Derek Manky talks about how threat playbooks can equip defense teams with the tools they need to fight back against evolving attacker TTPs. |
Threat
|
|
|
|
2020-12-18 16:32:55 |
Cyberpunk 2077 Headaches Grow: New Spyware Found in Fake Android Download (lien direct) |
Threat actors impersonate Google Play store in scam as Sony pulls the game off the PlayStation store due to myriad performance issues. |
Threat
|
|
|
|
2020-12-14 19:50:14 |
Ex-Cisco Employee Convicted for Deleting 16K Webex Accounts (lien direct) |
The insider threat will go to jail for two years after compromising Cisco's cloud infrastructure. |
Threat
|
|
|
|
2020-12-11 17:05:37 |
Facebook Shutters Accounts Used in APT32 Cyberattacks (lien direct) |
Facebook shut down accounts and Pages used by two separate threat groups to spread malware and conduct phishing attacks. |
Malware
Threat
|
APT 32
|
|
|
2020-12-10 20:41:57 |
Pfizer COVID-19 Vaccine Targeted in EU Cyberattack (lien direct) |
Threat actors accessed Pfizer vaccine documentation submitted to EU regulators in the latest cyberattack trying to profit off pandemic suffering. |
Threat
|
|
|
|
2020-12-10 17:50:29 |
MoleRats APT Returns with Espionage Play Using Facebook, Dropbox (lien direct) |
The threat group is increasing its espionage activity in light of the current political climate and recent events in the Middle East, with two new backdoors. |
Threat
|
|
|
|
2020-12-04 14:25:55 |
Vancouver Metro Disrupted by Egregor Ransomware (lien direct) |
The attack, which prevented Translink users from using their metro cards or buying tickets at kiosks, is the second from the prolific threat group just this week. |
Ransomware
Threat
|
|
|
|
2020-11-27 17:33:57 |
TurkeyBombing Puts New Twist on Zoom Abuse (lien direct) |
Threat actors already stole nearly 4,000 credentials before the holiday was even over, according to report. |
Threat
|
|
|
|
2020-11-19 14:34:36 |
APT Exploits Microsoft Zerologon Bug: Targets Japanese Companies (lien direct) |
Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims' networks. |
Threat
|
|
|
|
2020-11-12 18:12:44 |
Digging into the Dark Web: How Security Researchers Learn to Think Like the Bad Guys (lien direct) |
Hacker forums are a rich source of threat intelligence. |
Threat
|
|
|
|
2019-05-20 20:08:03 |
Sharing Threat Intelligence: Time for an Overhaul (lien direct) |
All too often, information-sharing is limited to vertical market silos; to build better defenses, it's time to take a broader view beyond the ISAC. |
Threat
|
|
|
|
2019-04-09 15:39:00 |
Shadow App Development: Insider Threat or Opportunity? (lien direct) |
The challenge for most enterprises is that the demand for software is so high that traditional development teams often can't keep up. |
Threat
|
|
|
|
2019-04-09 12:06:00 |
SAS 2019: 4 Stuxnet-Related APTs Form Gossip Girl, an \'Apex Threat Actor\' (lien direct) |
Flowershop, Equation, Flame and Duqu appear to have a hand in the different phases of Stuxnet development, all working as part of an operation active as early as 2006. |
Threat
|
|
|
|
2019-04-04 13:26:01 |
Free Cynet Threat Assessment for Mid-sized and Large Organizations (lien direct) |
Have your business try Cynet's Free Threat Assessment that checks for malware, C&C connections, data exfiltration, phishing link access, user credential thefts attempts, etc. |
Threat
|
|
|
|
2019-03-22 18:33:00 |
Analysis: Drone Tech Creates New Type of Blended Threat (lien direct) |
Hacked drones are breaching physical and cyberdefenses to cause disruption and steal data, experts warn. |
Threat
|
|
|
|
2019-03-13 14:15:01 |
Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw (lien direct) |
Newly patched CVE-2019-0797 is being actively exploited by two APTs, FruityArmor and SandCat. |
Threat
|
|
|
|
2019-03-08 18:04:04 |
RSA Conference 2019: Emotet Takes Aim at Latin America (lien direct) |
RAT activity in Latin America and Asia ramped up at the end of 2018, indicating widespread coordinated targeting by threat actors. |
Threat
|
|
|
|
2019-03-07 17:00:02 |
RSAC 2019: For Domestic Abuse, IoT Devices Pose New Threat (lien direct) |
When it comes to domestic abuse, smart products around the house are turning into new threats, a panel of experts said at RSA. |
Threat
|
|
|
|
2019-03-06 19:42:00 |
RSA Conference 2019: How to Defend Against an AI vs AI \'Flash War\' (lien direct) |
Offensive cyber attack chains are accelerating rapidly thanks to a combination of artificial intelligence, machine learning and broadening threat landscape. |
Threat
|
|
|
|
2019-02-27 12:30:04 |
Bronze Union APT Updates Remote Access Trojans in Fresh Wave of Attacks (lien direct) |
The China-linked threat group has returned in 2018 using updated RATs to launch its attacks, including ZxShell, Gh0st RAT, and SysUpdate malware. |
Threat
|
APT 27
|
|
|
2019-02-13 20:55:00 |
ThreatList: Banking Trojans Are Still The Top Big Bad for Email (lien direct) |
Banking trojans, led by the ever-changing Emotet, dominated the email-borne threat landscape in Q4, according to Proofpoint. |
Threat
|
|
|
|
2019-01-31 21:59:01 |
TheMoon Rises Again, With a Botnet-as-a-Service Threat (lien direct) |
A new module allows it to be rented to other malicious actors -- and it's likely other new capabilities are coming down the pike. |
Threat
|
|
|
|
2019-01-23 16:34:00 |
6 Signs of Successful Threat Hunting (lien direct) |
Here are six tips to put threat hunters in the driver's seat so they can outsmart their adversaries. |
Threat
|
|
|
|
2019-01-16 15:11:02 |
Magecart Returns with Advertising Library Tactic (lien direct) |
The threat group also has a new subsidiary, Magecart Group 12. |
Threat
|
|
|
|
2018-12-13 22:14:04 |
Bomb Threat Bitcoin Demands Cause Disruption, Evacuations (lien direct) |
An email campaign is demanding large sums of money in return for not blowing up schools, banks and businesses. |
Threat
|
|
|
|
2018-12-11 18:40:00 |
Cobalt Group Pushes Revamped ThreadKit Malware (lien direct) |
Threat actors have updated their malware to include a macro-based delivery framework. |
Malware
Threat
|
|
|
|
2018-12-07 18:35:03 |
TA505 Crooks are Now Targeting US Retailers with Personalized Campaigns (lien direct) |
Threat group moves away from “smash-and-grab” attacks and adopts a boutique approach to targeting victims. |
Threat
|
|
|
|
2018-11-30 21:00:03 |
Podcast: Breaking Down the Magecart Threat (Part Two) (lien direct) |
In part two of our podcast series on Magecart, we talk to expert Yonathan Klijnsma, who has been tracking the threat for years. |
Threat
|
|
|
|
2018-11-22 12:00:01 |
Podcast: Breaking Down the Magecart Threat (Part One) (lien direct) |
In the first part of our podcast series, we talked to Rapid7's chief data scientist about how Magecart has changed. |
Threat
|
|
|
|
2018-11-21 00:32:03 |
Sofacy APT Takes Aim with Novel \'Cannon\' Trojan (lien direct) |
The Russian-speaking threat group is changing up its tactics. |
Threat
|
|
|
|
2018-11-19 21:38:00 |
VisionDirect Blindsided by Magecart in Data Breach (lien direct) |
Researchers say the Magecart threat group skimmed data of VisionDirect customers using fake Google Analytics scripts. |
Data Breach
Threat
|
|
★★★★★
|
|
2018-11-09 17:13:00 |
Embracing the Cybersecurity \'Grey Space\' (lien direct) |
Security teams carefully monitor potential threat activity, but incidents aren't always black and white. |
Threat
|
|
|
|
2018-10-09 18:40:05 |
Slideshow: Intel from Virus Bulletin 2018 (lien direct) |
This year's Virus Bulletin conference featured top-tier research from some of the world's best threat intelligence experts. |
Threat
|
|
|