Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 20:53:00 |
Cyberattack on Fintech Firm Disrupts Derivatives Trading Globally (lien direct) |
The Russia-linked LockBit ransomware group claims to be behind the attack that fouled automated transactions for dozens of clients of financial technology firm ION Group. |
Ransomware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 19:01:00 |
6 Examples of the Evolution of a Scam Site (lien direct) |
Examining some key examples of recently found fraud sites that target the lucrative retail shoe industry helps us understand how brand impersonation sites evolve. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 18:23:00 |
Rising \'Firebrick Ostrich\' BEC Group Launches Industrial-Scale Cyberattacks (lien direct) |
The group's wanton attacks demonstrate that business email compromise is everything a hacker can want in one package: low risk, high reward, quick, easy, and low effort. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 16:08:00 |
Patch Critical Bug Now: QNAP NAS Devices Ripe for the Slaughter (lien direct) |
Analysts find that 98% of QNAP NAS are vulnerable to CVE-2022-27596, which allows unauthenticated, remote SQL code injection. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 15:00:00 |
AppSec Playbook 2023: Study of 829M Attacks on 1,400 Websites (lien direct) |
The total number of 61,000 open vulnerabilities, including 1,700 critical ones that have been open for 180+ days, exposes businesses to potential attacks. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 15:00:00 |
Managing the Governance Model for Software Development in a No-Code Ecosystem (lien direct) |
Forward-leading business and technology leaders are seeing the value of the "do-It-yourself" approach. |
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 14:50:00 |
Cybersecurity Leaders Launch First Attack Matrix for Software Supply Chain Security (lien direct) |
Current and former cybersecurity leaders from Microsoft, Google, GitLab, Check Point, OWASP, Fortinet and others have already joined the open framework initiative, which is being led by OX Security. |
Guideline
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 14:40:00 |
ChatGPT May Already Be Used In Nation State Cyberattacks, Say IT Decision Makers in BlackBerry Global Research (lien direct) |
Pas de details / No more details |
|
ChatGPT
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 11:01:00 |
Discrepancies Discovered in Vulnerability Severity Ratings (lien direct) |
Differences in how the National Vulnerability Database (NVD) and vendors score bugs can make patch prioritization harder, study says. |
Vulnerability
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-02 09:00:00 |
Lazarus Group Rises Again, to Gather Intelligence on Energy, Healthcare Firms (lien direct) |
An OpSec slip from the North Korean threat group helps researchers attribute what was first suspected as a ransomware attack to nation-state espionage. |
Ransomware
Threat
|
APT 38
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 23:36:00 |
Why CISOs Should Care About Brand Impersonation Scam Sites (lien direct) |
Enterprises often don't know whose responsibility it is to monitor for spoofed brand sites and scams that steal customers' trust, money, and personally identifiable information. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 22:12:13 |
Nearly All Firms Have Ties With Breached Third Parties (lien direct) |
The average organization does business with 11 third parties, and 98% of organizations do business with a third party who has suffered a breach, an analysis finds. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 21:31:56 |
CISA to Open Supply Chain Risk Management Office (lien direct) |
A new supply chain risk management office aims to help public and private sectors implement recent CISA policies and guidance. |
|
|
★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 20:58:00 |
Greater Incident Complexity, Shift in How Threat Actors Use Stolen Data, Will Drive the Cyber Threat Landscape in 2023, Says Beazley Report (lien direct) |
Noting 13% year-over-year growth in fraudulent instruction as a cause of loss, report predicts organizations must get smarter about educating employees to spot fraudulent tactics. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 20:32:00 |
Radiant Logic Signs Definitive Agreement to Acquire Brainwave GRC (lien direct) |
Move will strengthen position as a leader in the identity governance and analytics market. |
Guideline
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 20:29:00 |
Vista Equity Partners Completes Acquisition of KnowBe4 (lien direct) |
. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 20:20:55 |
Inside Killnet: Pro-Russia Hacktivist Group\'s Support and Influence Grows (lien direct) |
Killnet is building its profile, inspiring jewelry sales and rap anthems. But the impact of its DDoS attacks, like the ones that targeted 14 major US hospitals this week, remain largely questionable. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 18:00:00 |
Beating the Odds: 3 Challenges Women Face in the Cybersecurity Industry (lien direct) |
Companies need to be aware of the work culture they foster. Diversity and inclusion aren't just buzzwords. Increasing female visibility and improving female mentoring to help women enter and advance within the cybersecurity industry are key steps forward. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 16:05:00 |
Gem Security Emerges From Stealth With $11M, Unveils Cloud TDIR Platform for Faster Response to Cloud Threats (lien direct) |
Gem Security provides the world's first holistic approach for Cloud TDIR, bridging the gap between cloud complexity and security operations. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 16:00:00 |
Command-Injection Bug in Cisco Industrial Gear Opens Devices to Complete Takeover (lien direct) |
Two security holes - one particularly gnarly - could allow hackers the freedom to do as they wish with the popular edge equipment. |
Industrial
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 15:45:00 |
Contrast Security Launches Alliance Program to Change the Way Customers Scale Their Security Solutions (lien direct) |
The Security Innovation Alliance (SIA) empowers customers to create holistic security programs by leveraging robust end-to-end integration partnerships. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 15:08:00 |
Fortra\'s Terranova Security 2022 Gone Phishing Tournament Results Reveal Large Organizations at Highest Risk of Compromising Data (lien direct) |
Findings underscore security awareness training that leverages practical, hands-on exercises is essential to creating a security-aware culture. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 15:00:00 |
Application Security Must Be Nonnegotiable (lien direct) |
Companies need to keep security priorities top of mind during economic downturns so all-important revenue generation doesn't come with a heaping side order of security problems. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 15:00:00 |
KnowBe4 to Offer $10,000 to Black Americans in Cybersecurity Scholarship (lien direct) |
KnowBe4 partners with the Center for Cyber Safety and Education to support Black Americans in recognition of Black History Month to help further education. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 14:48:00 |
ManageEngine Study Finds United States Enterprises Hit by Short-Staffed Security Operations Centers (lien direct) |
Study also reveals enterprises rely on multiple tools to ensure cloud security. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 14:18:08 |
Google Fi Users Caught Up in T-Mobile Breach (lien direct) |
Google Fi mobile customers have been alerted that their SIM card serial numbers, phone numbers, and other data were exposed in T-Mobile hack. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 05:00:00 |
Checkmarx Launches Threat Intelligence for Open Source Packages (lien direct) |
The new API incorporates threat intelligence research and employs machine learning to identify threats in the supply chain. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-01 02:05:00 |
How Can Disrupting DNS Communications Thwart a Malware Attack? (lien direct) |
Malware eventually has to exfiltrate the data it accessed. By watching DNS traffic for suspicious activity, organizations can halt the damage. |
Malware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 22:35:00 |
Firmware Flaws Could Spell \'Lights Out\' for Servers (lien direct) |
Five vulnerabilities in the baseboard management controller (BMC) software used by 15 major vendors could allow remote code execution if attackers gain network access. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 21:30:33 |
Critical VMware RCE Vulnerabilities Targeted by Public Exploit Code (lien direct) |
Security vulnerabilities in VMware's vRealize Log Insight platform can be chained together to offer a cybercriminals a gaping hole to access corporate crown jewels. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 20:00:41 |
Phishers Trick Microsoft Into Granting Them \'Verified\' Cloud Partner Status (lien direct) |
Everyone on Twitter wants a blue check mark. But Microsoft Azure's blue badges are even more valuable to a threat actor stealing your data via malicious OAuth apps. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 19:44:43 |
Poser Hackers Impersonate LockBit in SMB Cyberattacks (lien direct) |
Recent cyberattacks against SMBs across Europe have been traced back to copycat groups using leaked LockBit locker malware. |
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 18:00:00 |
Will Cybersecurity Remain Recession-Proof in 2023? (lien direct) |
Demand for skilled professionals will remain high, but cyber budgets will be eaten away. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 16:15:00 |
NanoLock Addresses Global Industrial & OT Cyber Demand with Expansions into Europe and North America (lien direct) |
To meet a pressing demand for industrial and OT security, zero-trust, device-level cybersecurity provider expands with strategic hires in new and established markets. |
Industrial
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 16:09:00 |
New Survey Reveals 40% of Companies Experienced a Data Leak in the Past Year (lien direct) |
SysKit report highlighting effects of digital transformation on IT admins and governance landscape released. |
|
|
★★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 15:58:00 |
Aura and Nonprofit Cyversity Partner to Support a More Inclusive Cyber Workforce (lien direct) |
Mentoring, scholarships, and professional development opportunities will be offered to those underrepresented in the industry through the collaboration. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 15:45:00 |
Sentra Raises $30 Million Series A Financing to Meet Growing Demand for Data Security in the Cloud (lien direct) |
Standard Investments leads round with participation from Munich Re Ventures, Moore Strategic Ventures, Bessemer Venture Partners, and Zeev Ventures. |
Guideline
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 15:00:00 |
Are Your Employees Thinking Critically About Their Online Behaviors? (lien direct) |
Three mindset shifts will help employees build a habit of vigilance and make better security decisions. Move past security theater to reframe thinking so employees understand data's value, act with intention, and follow data best practices. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 08:00:00 |
Predictions For Securing Today\'s Hybrid Workforce (lien direct) |
Since requirements differ for users who work both from home and in the office, policies - and underlying technology - must adapt. |
Prediction
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-31 08:00:00 |
Unleash the Full Potential of Zero-Trust Security (lien direct) |
The demand is unmistakeable and the business case is readily justified - it's time to implement zero trust. |
General Information
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 22:32:00 |
Russia\'s Sandworm APT Launches Swarm of Wiper Attacks in Ukraine (lien direct) |
The incidents are the latest indication of the growing popularity of dangerous disk wipers, created to disrupt and degrade critical infrastructure and other organizations. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 22:00:00 |
SentinelOne and KPMG Announce Alliance To Accelerate Cyber Investigations and Response (lien direct) |
Pas de details / No more details |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 21:52:00 |
Cybercrime Ecosystem Spawns Lucrative Underground Gig Economy (lien direct) |
The complex nature of cyberattacks has increased demand for software developers, reverse engineers, and offensive specialists - attracting workers facing financial insecurity. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 21:17:00 |
10M JD Sports Customers\' Info Exposed in Data Breach (lien direct) |
UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack. |
Data Breach
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 20:33:00 |
IT and Security Professionals Spend an Average of 4,300 Hours Annually Achieving or Maintaining Compliance (lien direct) |
New research from Drata shows compliance remains a business challenge for many organizations. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 20:28:00 |
The Threat from Within: 71% of Business Leaders Surveyed Think Next Cybersecurity Breach Will Come from the Inside (lien direct) |
Pas de details / No more details |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 20:17:00 |
Make Developers the Driver of Software Security Excellence (lien direct) |
Those who are wrangling code every day could fuel a genuinely transformational approach to security - if they are adequately upskilled. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 19:55:00 |
How $6 Can Buy Hacked Social Media & Streaming Accounts From the Dark Web, Whizcase Study Reveals (lien direct) |
Pas de details / No more details |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 19:00:00 |
Facebook Bug Allows 2FA Bypass Via Instagram (lien direct) |
The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports. |
Vulnerability
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-01-30 17:40:00 |
Fake Texts From the Boss, Bogus Job Postings and Frankenstein Shoppers - Oh My! (lien direct) |
Experian's annual Future of Fraud Forecast highlights five fraud threats facing businesses and consumers in 2023. |
|
|
★★★
|