Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-15 16:30:00 |
GoatRAT Android Banking Trojan Targets Mobile Automated Payment System (lien direct) |
The new malware was discovered targeting three banks in Brazil. |
Malware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-15 14:00:00 |
Why Security Practitioners Should Understand Their Business (lien direct) |
The sooner CISOs become proactive in understanding the flip side of the organizations they protect, the better they'll be at their jobs. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-15 13:00:00 |
SMBs Orgs Want Help, but Cybersecurity Expertise Is Scarce (lien direct) |
Smaller firms are boosting cybersecurity budgets, but there's a long way to go to address a deep lack of cyber preparedness among SMBs. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-15 12:15:00 |
Are We Doing Enough to Protect Our Unstructured Data? (lien direct) |
Organizations are coming under pressure to protect their data, but does all data need the same security? To secure it, you first need to know what and where it is. |
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-15 01:00:00 |
Google Proposes Reducing TLS Cert Lifespan to 90 Days (lien direct) |
Organizations will likely have until the end of 2024 to gain visibility and control over their keys and certificates. |
Industrial
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-15 00:20:00 |
How Patch Tuesday Keeps the Beat After 20 Years (lien direct) |
Patch Tuesday turned security updates from chaotic events into a routine. Here's how we got here, and where things might be heading. |
General Information
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 22:12:00 |
Optiv More Than Doubles Federal Presence With ClearShark Acquisition (lien direct) |
Convergence of two leading cybersecurity companies creates federal sector powerhouse. |
General Information
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 21:48:00 |
Camozzi Group and Radiflow Announce Collaboration on Industrial Systems Cybersecurity (lien direct) |
Pas de details / No more details |
Industrial
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 21:10:48 |
Microsoft Zero-Day Bugs Allow Security Feature Bypass (lien direct) |
Security vendors urge organizations to fix the actively exploited bugs, in Microsoft Outlook and the Mark of the Web feature, immediately. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 21:05:00 |
Samsung Next Invests in Mitiga, Brings Total Funding to $45M (lien direct) |
Financing will help support increasing customer demand while continuing to transform incident response for cloud and SaaS environments |
Cloud
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 19:58:00 |
LockBit Threatens to Leak Stolen SpaceX Schematics (lien direct) |
The ransomware group sent a message directly to Elon Musk: Pay or the confidential SpaceX information goes up for grabs on the Dark Web. |
Ransomware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 19:51:27 |
CISA Trials Ransomware Warning System for Critical Infrastructure Orgs (lien direct) |
An agency team will identify vulnerabilities being exploited by ransomware groups and alert organizations ahead of attacks, CISA says. |
Ransomware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 17:53:00 |
Access Control Gap in Microsoft Active Directory Widens Enterprise Attack Surface (lien direct) |
One researcher thinks trust is broken in AD. Microsoft disagrees that there's a security vulnerability. But enterprise IT environments should be aware of an authentication gap either way. |
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 17:00:00 |
How Businesses Can Get Ready for AI-Powered Security Threats (lien direct) |
Organizations need to take steps now to strengthen their cyber defenses. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 16:10:00 |
Deepfakes, Synthetic Media: How Digital Propaganda Undermines Trust (lien direct) |
Organizations must educate themselves and their users on how to detect, disrupt, and defend against the increasing volume of online disinformation. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 15:54:30 |
Emotet, QSnatch Malware Dominate Malicious DNS Traffic (lien direct) |
An analysis of trillions of DNS requests shows a shocking amount of malicious traffic inside enterprise networks, with threats using DNS as a sort of malicious Autobahn. |
Malware
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 14:00:00 |
Why Healthcare Boards Lag Other Industries in Preparing for Cyberattacks (lien direct) |
Only by working collaboratively can boards and security leaders make progress and agree about cybersecurity threats and priorities. |
Guideline
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-14 00:00:00 |
Orgs Have a Long Way to Go in Securing Remote Workforce (lien direct) |
Organizations recognize they are responsible for protecting remote workers from cyber threats, but they have a long way to go in deploying the necessary security technologies. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-13 21:52:00 |
200-300% Increase in AI-Generated YouTube Videos to Spread Stealer Malware (lien direct) |
Pas de details / No more details |
Malware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-13 21:15:00 |
SVB Meltdown: What It Means for Cybersecurity Startups\' Access to Capital (lien direct) |
The implosion of Silicon Valley Bank will impact investors, startups, and enterprise customers as they become more cautious over the near term, security experts say. |
General Information
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-13 19:56:00 |
Brand Names in Finance, Telecom, Tech Lead Successful Phishing Lures (lien direct) |
AT&T, PayPal, and Microsoft top the list of domains that victims visit following a link in a phishing email, as firms fight to prevent fraud and credential harvesting. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-13 19:53:21 |
Hackers Lure Cybersecurity Researchers With Fake LinkedIn Recruiter Profiles (lien direct) |
Campaign demonstrates the DPRK-backed cyberattackers are gaining tools to avoid EDR tools. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-13 18:38:00 |
Hike in AI-Created YouTube Videos Loaded With Malware (lien direct) |
AI-generated videos pose as tutorials on how to get cracked versions of Photoshop, Premiere Pro, and more. |
Malware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-13 15:00:00 |
5 Lessons Learned From Hundreds of Penetration Tests (lien direct) |
Developers must balance creativity with security frameworks to keep applications safe. Correlating business logic with security logic will pay in safety dividends. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 22:57:00 |
And the Cyberattack Goes To ... Oscar-Nominated Film Fans (lien direct) |
With the rise of cybercriminals targeting online piracy, this year's Oscar-nom fans need to be especially careful not to download malicious files while attempting to watch popular films for free. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 22:15:00 |
ChatGPT Browser Extension Hijacks Facebook Business Accounts (lien direct) |
Between March 3 and March 9, at least 2,000 people a day downloaded the malicious "Quick access to ChatGPT" Chrome extension from the Google Play app store. |
|
ChatGPT
ChatGPT
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 21:49:07 |
Pig Butchering & Investment Scams: The $3B Cybercrime Threat Overtaking BEC (lien direct) |
A novel take on investment scams mixes romance and the lure of crypto riches to con targets out of "the whole hog" of their assets. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 21:01:30 |
BlackLotus Secure Boot Bypass Malware Set to Ramp Up (lien direct) |
BlackLotus is the first in-the-wild malware to exploit a vulnerability in the Secure Boot process on Windows, and experts expect copycats and imminent increased activity. |
Malware
Vulnerability
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 20:11:00 |
Legal Industry Faces Double Jeopardy as a Favorite Cybercrime Target (lien direct) |
Hackers are increasingly tantalized by the troves of sensitive data held by lightly protected law firms and legal services organizations. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 18:36:00 |
Unpatched Zero-Day Bugs in Smart Intercom Allow Remote Eavesdropping (lien direct) |
A video-enabled smart intercom made by Chinese company Akuvox has major security vulnerabilities that allow audio and video spying, and the company has so far been unresponsive to the discoveries. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 15:00:00 |
Make Sure Your Cybersecurity Budget Stays Flexible (lien direct) |
CISOs' ability to pivot tight budgets is key to defense plans that can stand up to attackers. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-10 01:32:00 |
Proposed FCC Rule Redefines Data Breaches for Communications Carriers (lien direct) |
If the proposed rule is approved, organizations would need to disclose all data breaches, even one that does not cause any harm, to affected customers. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 22:35:00 |
Avast Introduces Avast One Platinum (lien direct) |
New premium service provides all-in-one personal protection beyond device security to include identity restoration and unlimited 24/7 tech support. |
|
|
★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 22:26:00 |
Forrester Study Reveals Businesses Are Insufficiently Prepared to Manage Enterprise Risks (lien direct) |
Study underscores the clear and pressing need for real-time physical and cyber threat alerts for effective enterprise risk management and business resilience. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 22:19:00 |
Keeper Security Issues Top 5 Cybersecurity Tips for 2023 College Basketball Tournament (lien direct) |
Pas de details / No more details |
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 22:10:00 |
ThreatBlockr Announces Partnership With Engaged Security Partners (lien direct) |
This strategic partnership highlights the importance of breach prevention and creating a proactive security culture. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 21:47:10 |
IceFire Ransomware Portends a Broader Shift From Windows to Linux (lien direct) |
IceFire has changed up its OS target in recent cyberattacks, emblematic of ransomware actors increasingly targeting Linux enterprise networks, despite the extra work involved. |
Ransomware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 21:22:47 |
AT&T Vendor Breach Exposes Data on 9M Wireless Accounts (lien direct) |
AT&T is notifying customers of a Customer Proprietary Network Information compromise, exposing years-old upgrade details. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 21:01:00 |
US Lawmakers Face Cyberattacks, Potential Physical Harm After DC Health Link Breach (lien direct) |
The threat actor who posted the data for sale has claimed credit for multiple other breaches, including one at grocery platform Weee! that exposed data on more than 1.1 million customers. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 20:41:03 |
Medusa Gang Video Shows Minneapolis School District\'s Ransomed Data (lien direct) |
Much like a hostage's proof-of-life video, the ransomware gang offers the film as verification that it has the goods, and asks $1 million for the data. |
Ransomware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 19:00:00 |
5 Reasons You Should Care About Unmanaged Assets (lien direct) |
Unmanaged devices pose a significant challenge and risk for many organizations. Here are the five reasons you should care about unmanaged devices and assets. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 18:41:00 |
Inside Threat: Developers Leaked 10M Credentials, Passwords in 2022 (lien direct) |
More than five out of every 1,000 commits to GitHub included a software secret, half again the rate in 2021, putting applications and businesses at risk. |
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 18:00:00 |
How to Jump-Start Your Cybersecurity Career (lien direct) |
With more than 700,000 cybersecurity jobs available, now is a good time to consider a career change. |
General Information
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 16:56:00 |
Iranian APT Targets Female Activists With Mahsa Amini Protest Lures (lien direct) |
A top Iranian, state-sponsored threat is a spear-phishing campaign that uses a fake Twitter persona to target women interested in Iranian political affairs and human rights. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 15:11:33 |
Critical RCE Bug Opens Fortinet\'s Secure Web Gateway to Takeover (lien direct) |
Users should patch an unauthenticated remote code execution bug impacting FortiOS and FortiProxy administrative interfaces ASAP, Fortinet says. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-09 15:00:00 |
5 Critical Components of Effective ICS/OT Security (lien direct) |
These agile controls and processes can help critical infrastructure organizations build an ICS security program tailored to their own risk profile. |
Industrial
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-08 22:45:00 |
\'Skinny\' Cyber Insurance Policies Create Compliance Path (lien direct) |
It's getting hard to buy cyber insurance, but not having it is not always an option. Low-coverage plans could bridge the gap. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-08 22:24:00 |
Edgeless Systems Raises $5M to Advance Confidential Computing (lien direct) |
Confidential computing will revolutionize cloud security in the decade to come and has become a top C-level priority for industry leaders such as Google, Intel and Microsoft. Edgeless Systems is leading these advancements to ensure all data is always encrypted. |
Guideline
Cloud
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-08 22:14:00 |
Emotet Resurfaces Yet Again After 3-Month Hiatus (lien direct) |
More than two years after a major takedown by law enforcement, the threat group is once again proving just how impervious it is against disruption attempts. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-03-08 21:08:00 |
TSA Issues Urgent Directive to Make Aviation More Cyber Resilient (lien direct) |
Will stricter cybersecurity requirements make flying safer? The TSA says yes, and sees it as a time-sensitive imperative. |
|
|
★★
|