What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2024-04-19 17:59:30 | Plusieurs utilisateurs de LastPass perdent des mots de passe maîtres à une arnaque ultra-consacrée Multiple LastPass Users Lose Master Passwords to Ultra-Convincing Scam (lien direct) |
Les attaquants de CryptochameLeon échangent la quantité de qualité, consacrant du temps et des ressources pour tromper même l'utilisateur le plus diligent à remettre leurs informations d'identification à grande valeur.
CryptoChameleon attackers trade quantity for quality, dedicating time and resources to trick even the most diligent user into handing over their high-value credentials. |
LastPass | ★★ | |
 |
2024-04-18 12:39:22 | LastPass met en garde contre la tentative de phishing profonde LastPass Warns of Deepfake Phishing Attempt (lien direct) |
LastPass | ★★ | ||
 |
2024-04-18 10:56:41 | Les cybercriminels se présentent en tant que personnel de LastPass pour pirater les voûtes de mot de passe Cybercriminals pose as LastPass staff to hack password vaults (lien direct) |
Lastpass précède une campagne malveillante ciblant ses utilisateurs avec le kit de phishing Cryptochameleon associé au vol de crypto-monnaie.[...]
LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft. [...] |
Hack | LastPass | ★★ |
 |
2024-04-12 16:11:57 | LastPass Dodges Deepfake Scam: PDG Impination de tentative de contrepartie LastPass Dodges Deepfake Scam: CEO Impersonation Attempt Thwarted (lien direct) |
> Par waqas
Cybercriminels utilisant DeepFakes pour cibler les entreprises!LastPass évite de justesse la rupture de sécurité après que l'employé a identifié un faux PDG dans WhatsApp Call.Lisez comment Lastpass exhorte la conscience de l'évolution des tactiques d'ingénierie sociale.
Ceci est un article de HackRead.com Lire le post original: Lastpass Dodges Deepfake Scam: PDG Impination de tentative de contrepartie
>By Waqas Cybercriminals using deepfakes to target businesses! LastPass narrowly avoids security breach after employee identifies fake CEO in WhatsApp call. Read how LastPass is urging awareness against evolving social engineering tactics. This is a post from HackRead.com Read the original post: LastPass Dodges Deepfake Scam: CEO Impersonation Attempt Thwarted |
LastPass | ★★★ | |
 |
2024-04-12 09:12:43 | LastPass – Un attaque deepfake ratée a ciblé un employé (lien direct) | LastPass a révélé qu'un de ses employés a été ciblé par une attaque de phishing vocal utilisant un deepfake audio pour imiter le PDG de l'entreprise. L'employé n'est pas tombé dans le piège. | LastPass | ★★★ | |
 |
2024-04-12 08:50:12 | Employé de LastPass ciblé avec des appels Deepfake LastPass Employee Targeted With Deepfake Calls (lien direct) |
> Lastpass cette semaine a révélé que l'un de ses employés était ciblé dans une attaque de phishing impliquant une technologie DeepFake.
>LastPass this week revealed that one of its employees was targeted in a phishing attack involving deepfake technology. |
LastPass | ★★ | |
|
2024-04-11 18:00:39 | Lastpass: les pirates ciblés pour l'employé dans l'appel du PDG de Deepfake défaillant LastPass: Hackers targeted employee in failed deepfake CEO call (lien direct) |
Lastpass a révélé cette semaine que les acteurs de la menace ont ciblé l'un de ses employés dans une attaque de phishing vocale, en utilisant Deepfake Audio pour usurper l'identité de Karim Toubba, le directeur général de la société.[...]
LastPass revealed this week that threat actors targeted one of its employees in a voice phishing attack, using deepfake audio to impersonate Karim Toubba, the company\'s Chief Executive Officer. [...] |
Threat | LastPass | ★★ |
 |
2024-03-13 10:00:00 | 25 conseils essentiels de cybersécurité et meilleures pratiques pour votre entreprise 25 Essential Cybersecurity tips and best practices for your business (lien direct) |
The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. Cybercrime is quickly becoming one of the biggest threats worldwide, impacting businesses across all sectors. To avoid the risk of a damaging security breach, it\'s crucial to stay updated on the latest cybersecurity tips and practices. Protecting yourself or your business from cyberattacks can be tough. But there are several cybersecurity tips that can help defend against attacks. We\'ve gathered a list of 25 most effective tips for you to adopt and share with others. Top 25 cybersecurity tips for your business 1. Keep your software up to date To stay safe from cyber threats like ransomware, it\'s essential to regularly update your software, including your operating system and applications. Updates often contain crucial security patches that fix vulnerabilities exploited by hackers. Enable automatic updates for your device and web browser, and ensure plugins like Flash and Java are also kept up to date. | Ransomware Malware Tool Vulnerability Mobile Cloud | LastPass | ★★ |
 |
2024-02-08 22:16:25 | Un gestionnaire de mots de passe Lastpass appelle «frauduleux» démarré à partir de l'App Store A password manager LastPass calls “fraudulent” booted from App Store (lien direct) |
"Lastpass" a imité le nom et le logo du vrai gestionnaire de mots de passe Lastpass.
"LassPass" mimicked the name and logo of real LastPass password manager. |
LastPass | ★★ | |
 |
2024-02-08 21:59:40 | Fake Lastpass Lookalike s'est transformé en Apple App Store Fake LastPass lookalike made it into Apple App Store (lien direct) |
Aucun jardin clos ne peut empêcher chaque mauvaise herbe, nous supposons que Lastpass dit qu'une application voyou imitant son gestionnaire de mot de passe populaire a passé les gardiens d'Apple \\ et a été répertorié dans l'iOS App Store pour sans mécontentementLes gens à télécharger et à installer.…
No walled garden can keep out every weed, we suppose LastPass says a rogue application impersonating its popular password manager made it past Apple\'s gatekeepers and was listed in the iOS App Store for unsuspecting folks to download and install.… |
LastPass | ★★ | |
|
2024-02-08 17:52:06 | Lastpass avertit l'application de mot de passe découverte dans Apple App Store LastPass Warns on Password App Discovered in Apple App Store (lien direct) |
La fausse application ressemble à l'application LastPass légitime de sa marque, et elle pourrait voler des informations d'identification des utilisateurs.
The fake app looks similar to the legitimate LastPass app in its branding, and it could be stealing users\' credentials. |
LastPass | ★★ | |
|
2024-02-08 17:48:00 | Faux applications LastPass Password Manager se cache sur iOS App Store Fake LastPass Password Manager App Lurks on iOS App Store (lien direct) |
> Par waqas
N'oubliez pas, c'est LastPass Password Manager, pas LassPass Password Manager!
Ceci est un article de HackRead.com Lire la publication originale: Faux applications LastPass Password Manager se cache sur iOS App Store
>By Waqas Remember, it is LastPass Password Manager, not LassPass Password Manager! This is a post from HackRead.com Read the original post: Fake LastPass Password Manager App Lurks on iOS App Store |
LastPass | ★★ | |
|
2024-02-08 12:02:26 | Fake Lastpass Password Manager repéré sur l'App Store d'Apple \\ Fake LastPass password manager spotted on Apple\\'s App Store (lien direct) |
Lastpass avertit qu'une fausse copie de son application est distribuée sur l'App Store d'Apple, probablement utilisée comme application de phishing pour voler des informations d'identification des utilisateurs.[...]
LastPass is warning that a fake copy of its app is being distributed on the Apple App Store, likely used as a phishing app to steal users\' credentials. [...] |
LastPass | ★★ | |
 |
2024-01-22 20:19:09 | Top 6 alternatives et concurrents du dernier pass pour 2024 Top 6 LastPass Alternatives and Competitors for 2024 (lien direct) |
Vous cherchez des alternatives LastPass?Consultez notre liste des meilleurs gestionnaires de mots de passe qui proposent des options sécurisées et pratiques pour gérer vos mots de passe.
Looking for LastPass alternatives? Check out our list of the top password managers that offer secure and convenient options for managing your passwords. |
LastPass | ★★★ | |
 |
2024-01-04 17:00:00 | LastPass applique des mots de passe maîtres à 12 caractères LastPass Enforces 12-Character Master Passwords (lien direct) |
Le fournisseur de gestion de mot de passe Lastpass a commencé à implémenter des mesures de mot de passe plus strictes pour ses clients
Password manager provider LastPass has started implementing stricter password measures for its customers |
LastPass | ★★★ | |
|
2024-01-03 20:00:00 | Exigences de mot de passe de randonnée LastPass à 12 caractères LastPass Hikes Password Requirements to 12 Characters (lien direct) |
Un déploiement progressif invitera également les clients LastPass à réinscrire leurs comptes dans l'authentification multifactorielle (MFA) pour éviter les violations futures.
A phased rollout will also prompt LastPass customers to re-enroll their accounts in multifactor authentication (MFA) to prevent future breaches. |
LastPass | ★★ | |
|
2023-12-20 18:29:12 | Nordpass vs Lastpass (2023): Quel gestionnaire de mot de passe est plus sûr à utiliser? NordPass vs. LastPass (2023): Which Password Manager Is Safer To Use? (lien direct) |
Explorez les différences entre Nordpass et Lastpass pour déterminer lequel est le mieux adapté à vos besoins de gestion de mot de passe.
Explore the differences between NordPass and LastPass to determine which one is the best fit for your password management needs. |
LastPass | ★★ | |
|
2023-12-04 18:19:17 | Comment utiliser LastPass Password Manager How to Use LastPass Password Manager (lien direct) |
Apprenez à configurer et à utiliser LastPass Password Manager.Commencez à gérer et à stocker vos mots de passe avec ce guide étape par étape.
Learn how to set up and use LastPass password manager. Start managing and storing your passwords with this step-by-step guide. |
LastPass | ★★ | |
|
2023-12-04 17:57:46 | LastPass Review 2023: Est-il toujours sûr et fiable? LastPass Review 2023: Is It Still Safe and Reliable? (lien direct) |
LASTPASS \\ 'Les violations de données récentes rendent difficile le recommandation en tant que gestionnaire de mots de passe viable en 2023. En savoir plus dans notre examen complet ci-dessous.
LastPass\' recent data breaches make it hard to recommend as a viable password manager in 2023. Learn more in our full review below. |
LastPass | ★★ | |
|
2023-11-30 11:00:00 | Sécration sécurisée: un guide pour parcourir Internet en toute sécurité Secure browsing: A guide to browsing the internet safely (lien direct) |
The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. In an age when the internet is an integral part of our daily lives, ensuring your online safety and privacy is critical. Secure browsing is about protecting sensitive personal information and yourself from cyber threats such as malware, phishing, and hacking. This article delves into the various aspects of web browsing securely, from understanding the risks to implementing best practices and using the right tools to improve your online security. Understanding the risks Before delving into secure browsing techniques, it\'s critical to understand the risks. The internet is full of hazards, and a lack of awareness can leave you vulnerable. Here are a few of the most common dangers: Malware: When you download files, click on untrustworthy links, or visit compromised websites, malicious software can infect your device. Malware can steal your data, damage your system, or track your online activities once infected. Phishing: Phishing attacks involve duping users into disclosing sensitive information such as login credentials, credit card information, or personal information. These attacks frequently disguise themselves as legitimate emails or websites. Data protection: Many websites and online services collect and share your personal information without your permission, which can invade privacy and unwanted tracking. Hacking: Cybercriminals may try to gain unauthorized access to your accounts or devices, resulting in financial loss and damage to your online identity. Unsecured connections: Unsecured Wi-Fi networks expose your data to interception, as attackers can intercept your data. Browsing safely Now that you know the dangers, let\'s look at how to browse the web safely. Use a secure browser: Select a browser with a strong reputation for security features. Google Chrome, Mozilla Firefox, and Microsoft Edge provide regular security updates. Maintain software updates: Regularly update your browser and other software to patch vulnerabilities that cybercriminals may exploit. Use strong, unique passwords: Use solid, one-time passwords for each online account. To keep track of complex passwords, consider using a password manager. Enable two-factor authentication (2FA): Enable two-factor authentication wherever possible to add an extra layer of security to your online accounts. Stay informed: To stay informed about emerging threats and vulnerabilities, keep up with the latest cybersecurity news and best practices. Exercise caution with Email: Unsolicited emails should be avoided, especially those with attachments or links. Check the sender\'s identity before clicking on any links or downloading attachments. Use HTTPS: Look for HTTPS (secure browsing protocol) websites. Most modern browsers display a padlock icon in the address bar for secure sites. Install ad blockers and privacy extensions: Browser extensions such as uBlock Origin, Privacy Badger, and HTTPS Everywhere can help you protect your online privacy by blocking advertisements, tracking scripts, and forcing secure connections. Avoid public Wi-Fi for sensitive transactions: Avoid using public Wi-Fi networks when conducting sensitive transactions such as online banking or shopping. Consider using a Virtual Private Network (VPN) to encrypt your connection if you must use public Wi-Fi. Regularly clear browser data: Clear your browsing history, cookies, and cached data regularly to reduce your digital footprint. Tools for secure browsing Virtual private networks (VPNs): VPNs encrypt your internet connection, ma | Malware Tool Vulnerability Threat | LastPass LastPass | ★★ |
|
2023-11-14 22:00:00 | Lastpass lance une interface utilisateur améliorée pour le coffre-fort mobile LastPass Launches Enhanced User Interface for Mobile Vault (lien direct) |
The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. In an age when the internet is an integral part of our daily lives, ensuring your online safety and privacy is critical. Secure browsing is about protecting sensitive personal information and yourself from cyber threats such as malware, phishing, and hacking. This article delves into the various aspects of web browsing securely, from understanding the risks to implementing best practices and using the right tools to improve your online security. Understanding the risks Before delving into secure browsing techniques, it\'s critical to understand the risks. The internet is full of hazards, and a lack of awareness can leave you vulnerable. Here are a few of the most common dangers: Malware: When you download files, click on untrustworthy links, or visit compromised websites, malicious software can infect your device. Malware can steal your data, damage your system, or track your online activities once infected. Phishing: Phishing attacks involve duping users into disclosing sensitive information such as login credentials, credit card information, or personal information. These attacks frequently disguise themselves as legitimate emails or websites. Data protection: Many websites and online services collect and share your personal information without your permission, which can invade privacy and unwanted tracking. Hacking: Cybercriminals may try to gain unauthorized access to your accounts or devices, resulting in financial loss and damage to your online identity. Unsecured connections: Unsecured Wi-Fi networks expose your data to interception, as attackers can intercept your data. Browsing safely Now that you know the dangers, let\'s look at how to browse the web safely. Use a secure browser: Select a browser with a strong reputation for security features. Google Chrome, Mozilla Firefox, and Microsoft Edge provide regular security updates. Maintain software updates: Regularly update your browser and other software to patch vulnerabilities that cybercriminals may exploit. Use strong, unique passwords: Use solid, one-time passwords for each online account. To keep track of complex passwords, consider using a password manager. Enable two-factor authentication (2FA): Enable two-factor authentication wherever possible to add an extra layer of security to your online accounts. Stay informed: To stay informed about emerging threats and vulnerabilities, keep up with the latest cybersecurity news and best practices. Exercise caution with Email: Unsolicited emails should be avoided, especially those with attachments or links. Check the sender\'s identity before clicking on any links or downloading attachments. Use HTTPS: Look for HTTPS (secure browsing protocol) websites. Most modern browsers display a padlock icon in the address bar for secure sites. Install ad blockers and privacy extensions: Browser extensions such as uBlock Origin, Privacy Badger, and HTTPS Everywhere can help you protect your online privacy by blocking advertisements, tracking scripts, and forcing secure connections. Avoid public Wi-Fi for sensitive transactions: Avoid using public Wi-Fi networks when conducting sensitive transactions such as online banking or shopping. Consider using a Virtual Private Network (VPN) to encrypt your connection if you must use public Wi-Fi. Regularly clear browser data: Clear your browsing history, cookies, and cached data regularly to reduce your digital footprint. Tools for secure browsing Virtual private networks (VPNs): VPNs encrypt your internet connection, ma | LastPass | ★★ | |
|
2023-10-30 18:46:52 | BREADE LASTPASS LIENS AU VOL DE 4,4 millions de dollars en crypto LastPass breach linked to theft of $4.4 million in crypto (lien direct) |
Les pirates ont volé 4,4 millions de dollars en crypto-monnaie le 25 octobre en utilisant des clés privées et des phrases de passe stockées dans des bases de données Stolen LastPass, selon des recherches de chercheurs de fraude à Crypto qui ont recherché des incidents similaires.[...]
Hackers have stolen $4.4 million in cryptocurrency on October 25th using private keys and passphrases stored in stolen LastPass databases, according to research by crypto fraud researchers who have been researching similar incidents. [...] |
LastPass LastPass | ★★★★ | |
 |
2023-09-22 23:41:09 | Lastpass: \\ 'Horse Gone Barn Blowted \\' est un mot de passe fort LastPass: \\'Horse Gone Barn Bolted\\' is Strong Password (lien direct) |
Le service de mot de passe du service Lastpass oblige maintenant certains de ses utilisateurs à choisir des mots de passe maîtres plus longs.Lastpass affirme que les modifications sont nécessaires pour s'assurer que tous les clients sont protégés par leurs dernières améliorations de sécurité.Mais les critiques disent que cette décision n'est guère plus qu'un coup de relations publiques qui ne fera rien pour aider d'innombrables adoptants précoces dont les voûtes de mot de passe ont été exposées dans une violation de 2022 à Lastpass.
The password manager service LastPass is now forcing some of its users to pick longer master passwords. LastPass says the changes are needed to ensure all customers are protected by their latest security improvements. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass. |
LastPass LastPass | ★★ | |
|
2023-09-18 11:02:52 | Utiliser des clés Pirat Pirat pour voler la crypto-monnaie Using Hacked LastPass Keys to Steal Cryptocurrency (lien direct) |
Rappelez-vous en novembre dernier, lorsque les pirates Brokedans Le réseau pour LastPass & # 8212; une base de données de mot de passe & # 8212; et vaulai des données de mot de passe avec des données cryptées et en texte clair pour plus de 25 millions d'utilisateurs?
Eh bien, ils & # 8217; re maintenant En utilisant ces données , pénétrer dans les portefeuilles crypto et les égouter: 35 millions de dollars et compter, tous entrant dans un seul portefeuille.
C'est un hack vraiment rentable.(C'est aussi un mauvais opsec. Les pirates doivent bouger et blanchir tout cet argent rapidement.)
Regardez, je sais que les bases de données de mot de passe en ligne sont plus pratiques.Mais ils sont également risqués.C'est pourquoi mon mot de passe en toute sécurité ...
Remember last November, when hackers broke into the network for LastPass—a password database—and stole password vaults with both encrypted and plaintext data for over 25 million users? Well, they’re now using that data break into crypto wallets and drain them: $35 million and counting, all going into a single wallet. That’s a really profitable hack. (It’s also bad opsec. The hackers need to move and launder all that money quickly.) Look, I know that online password databases are more convenient. But they’re also risky. This is why my Password Safe... |
LastPass LastPass | ★★ | |
 |
2023-09-14 10:03:42 | BlastPass: les agences gouvernementales ont dit de sécuriser les iPhones contre les attaques de logiciels espions BLASTPASS: Government agencies told to secure iPhones against spyware attacks (lien direct) |
Ce qui s'est passé?CISA, l'agence de sécurité de cybersécurité et d'infrastructure des États-Unis, a ordonné aux agences fédérales de corriger leurs iPhones contre les vulnérabilités qui peuvent être utilisées dans le cadre d'une attaque en clic zéro pour installer des logiciels espions du célèbre groupe NSO.Une "attaque zéro cliquez sur"?C'est une attaque qui ne nécessite aucune interaction de l'utilisateur.Souvent, un pirate malveillant exige qu'un utilisateur ouvre un fichier joint ou visite un lien Web dangereux, afin d'activer une attaque.Avec une attaque zéro cliquez, l'utilisateur ne doit rien faire.Alors, comment ça marche?Dans ce particulier ...
What\'s happened? CISA, the United States\'s Cybersecurity and Infrastructure Security Agency, has ordered federal agencies to patch their iPhones against vulnerabilities that can be used as part of a zero-click attack to install spyware from the notorious NSO Group. A "zero-click attack"? That\'s an attack that doesn\'t require any interaction from the user. Often times a malicious hacker requires a user to open an attached file, or visit a dangerous web link, in order to activate an attack. With a zero-click attack, the user doesn\'t have to do anything. So how does it work? In this particular... |
Vulnerability | LastPass | ★★ |
|
2023-09-13 11:13:39 | Exploit zéro cliquez sur des iPhones Zero-Click Exploit in iPhones (lien direct) |
Assurez-vous que vous mettent à jourtes iPhones :
Citizen Lab, Citizen Lab, affirme que deux jours zéro fixés par Apple aujourd'hui dans les mises à jour de sécurité d'urgence ont été activement abusés dans le cadre d'une chaîne d'exploitation zéro clique (surnommée BlastPass) pour déployer NSO Group & # 8217; Spyware commercial de Pegasus sur ENTIÈREMENTiPhones patchés.
Les deux bogues, suivi comme CVE-2023-41064 et CVE-2023-41061 , a permis aux attaquants d'infecter un iPhone entièrement paires exécutant iOS 16.6 et appartenant à une organisation de la société civile basée à Washington DC via des pièces jointes Passkit contenant des images malveillantes.
& # 8220; Nous appelons la chaîne d'exploitation comme BlastPass.La chaîne d'exploitation était capable de compromettre les iPhones exécutant la dernière version d'iOS (16,6) sans aucune interaction de la victime, & # 8221;Citizen Lab ...
Make sure you update your iPhones: Citizen Lab says two zero-days fixed by Apple today in emergency security updates were actively abused as part of a zero-click exploit chain (dubbed BLASTPASS) to deploy NSO Group’s Pegasus commercial spyware onto fully patched iPhones. The two bugs, tracked as CVE-2023-41064 and CVE-2023-41061, allowed the attackers to infect a fully-patched iPhone running iOS 16.6 and belonging to a Washington DC-based civil society organization via PassKit attachments containing malicious images. “We refer to the exploit chain as BLASTPASS. The exploit chain was capable of compromising iPhones running the latest version of iOS (16.6) without any interaction from the victim,” Citizen Lab ... |
LastPass | ★★ | |
|
2023-09-12 09:00:00 | Le gouvernement américain a ordonné de corriger de toute urgence les bogues d'Apple zéro-jour US Government Ordered to Urgently Patch Apple Zero-Day Bugs (lien direct) |
Les agences fédérales ont un mois pour corriger les vulnérabilités BlastPass
Federal agencies have one month to fix BlastPass vulnerabilities |
Vulnerability | LastPass | ★★ |
|
2023-09-08 12:44:31 | Dans d'autres nouvelles: Hacking Lastpass Vault, la Russie cible l'Ukraine Energy Facility, NXP Breach In Other News: LastPass Vault Hacking, Russia Targets Ukraine Energy Facility, NXP Breach (lien direct) |
> Des histoires remarquables qui auraient pu glisser sous le radar: le piratage de Vault Lastpass, la Russie cible les installations énergétiques en Ukraine, violation de données NXP
>Noteworthy stories that might have slipped under the radar: LastPass vault hacking, Russia targets energy facility in Ukraine, NXP data breach. |
LastPass LastPass | ★★ | |
 |
2023-09-08 09:30:00 | Apple Patches BlastPass Exploit abusé par les fabricants de logiciels espions Apple patches Blastpass exploit abused by spyware makers (lien direct) |
> Des histoires remarquables qui auraient pu glisser sous le radar: le piratage de Vault Lastpass, la Russie cible les installations énergétiques en Ukraine, violation de données NXP
>Noteworthy stories that might have slipped under the radar: LastPass vault hacking, Russia targets energy facility in Ukraine, NXP data breach. |
LastPass | ★★ | |
|
2023-09-07 22:47:27 | Apple Patches «Clickless» Vulnérabilité de traitement d'image de 0 jour dans iOS, macOS Apple patches “clickless” 0-day image processing vulnerability in iOS, macOS (lien direct) |
Le bug "BlastPass" peut installer des logiciels malveillants sans interaction utilisateur.
"BLASTPASS" bug can install malware without user interaction. |
Malware Vulnerability | LastPass | ★★ |
|
2023-09-07 20:30:00 | Apple frappé par 2 jours zéro-clics dans la chaîne d'exploitation BlastPass Apple Hit By 2 No-Click Zero-Days in Blastpass Exploit Chain (lien direct) |
Les chercheurs de Citizen Lab recommandent immédiatement de mettre à jour immédiatement tous les iPhones et iPads aux dernières OS.
Researchers at Citizen Lab recommend immediately updating any iPhones and iPads to the latest OSes. |
LastPass | ★★★ | |
|
2023-09-06 00:21:07 | Les experts craignent que les escrocs soient des clés volées en violation de LastPass Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach (lien direct) |
En novembre 2022, le service Motword Manager Service Lastpass a révélé une violation dans laquelle les pirates ont volé des coffres de mot de passe contenant à la fois des données cryptées et en texte clair pour plus de 25 millions d'utilisateurs.Depuis lors, un filet constant de crates de crypto-monnaie à six chiffres ciblant les personnes soucieuses de la sécurité dans toute l'industrie de la technologie a conduit certains experts en sécurité à conclure que des escrocs ont probablement réussi à ouvrir certaines des voûtes de passes volées.
In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. |
LastPass LastPass | ★★★ | |
|
2023-08-09 21:36:00 | Lastpass annonce la disponibilité des authentificateurs FIDO2 pour la connexion sans mot de passe LastPass Announces Availability of FIDO2 Authenticators for Passwordless Login (lien direct) |
En novembre 2022, le service Motword Manager Service Lastpass a révélé une violation dans laquelle les pirates ont volé des coffres de mot de passe contenant à la fois des données cryptées et en texte clair pour plus de 25 millions d'utilisateurs.Depuis lors, un filet constant de crates de crypto-monnaie à six chiffres ciblant les personnes soucieuses de la sécurité dans toute l'industrie de la technologie a conduit certains experts en sécurité à conclure que des escrocs ont probablement réussi à ouvrir certaines des voûtes de passes volées.
In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. |
LastPass LastPass | ★★ | |
 |
2023-07-25 08:01:00 | Décodage ROMCOM: comportements et opportunités de détection Decoding RomCom: Behaviors and Opportunities for Detection (lien direct) |
L'acteur de menace derrière le rat Romcom a été particulièrement actif depuis l'invasion de l'Ukraine par la Russie.Dans ce rapport, nous fournissons des conseils de détection comportementale et des règles YARA pour détecter les exploits et les charges utiles des campagnes récentes de RomCom \\.
The threat actor behind the RomCom RAT has been particularly active since Russia\'s invasion of Ukraine. In this report, we provide behavioral detection tips and YARA rules to detect exploits and payloads from RomCom\'s recent campaigns. |
Threat | LastPass | ★★ |
|
2023-06-24 10:15:30 | Les utilisateurs de LastPass furieux après avoir été verrouillé en raison des réinitialisations de la MFA LastPass users furious after being locked out due to MFA resets (lien direct) |
Les utilisateurs de Lastpass Password Manager ont connu des problèmes de connexion importants à partir du début mai après avoir été invité à réinitialiser leurs applications d'authentificateur.[...]
LastPass password manager users have been experiencing significant login issues starting early May after being prompted to reset their authenticator apps. [...] |
LastPass LastPass | ★★ | |
 |
2023-04-19 16:02:00 | Découvrir (et comprendre) les risques cachés des applications SaaS Uncovering (and Understanding) the Hidden Risks of SaaS Apps (lien direct) |
Les violations de données récentes entre Circleci, Lastpass et Okta soulignent un thème commun: les piles de SaaS Enterprise connectées à ces applications de pointe peuvent être très risquées de compromis.
Circleci, par exemple, joue un rôle intégral et SaaS-SAAS pour le développement d'applications SaaS.De même, des dizaines de milliers d'organisations comptent sur les rôles de sécurité Okta et LastPass pour l'identité et l'accès SaaS
Recent data breaches across CircleCI, LastPass, and Okta underscore a common theme: The enterprise SaaS stacks connected to these industry-leading apps can be at serious risk for compromise. CircleCI, for example, plays an integral, SaaS-to-SaaS role for SaaS app development. Similarly, tens of thousands of organizations rely on Okta and LastPass security roles for SaaS identity and access |
Cloud | LastPass LastPass | ★★ |
|
2023-04-12 14:00:00 | LastPass Breach révèle des leçons importantes LastPass Breach Reveals Important Lessons (lien direct) |
Les cyberattaques dévastatrices peuvent souvent être empêchées avec des mesures de cybersécurité de base.
Devastating cyberattacks often can be prevented with basic cybersecurity measures. |
LastPass LastPass | ★★★ | |
 |
2023-04-11 13:00:00 | Que se passe-t-il avec LastPass, et est-il sûr à utiliser? What\\'s Going On With LastPass, and is it Safe to Use? (lien direct) |
En ce qui concerne les gestionnaires de mot de passe, LastPass a été l'un des acteurs les plus importants du marché.Depuis 2008, l'entreprise s'est concentrée sur la fourniture de solutions sécurisées et pratiques aux consommateurs et aux entreprises.Du moins cela semblait.Lastpass a récemment fait la une des nouvelles pour toutes les mauvaises raisons, avec plusieurs rapports de données [& # 8230;]
When it comes to password managers, LastPass has been one of the most prominent players in the market. Since 2008, the company has focused on providing secure and convenient solutions to consumers and businesses. Or so it seemed. LastPass has been in the news recently for all the wrong reasons, with multiple reports of data […] |
LastPass LastPass | ★★ | |
|
2023-03-13 14:32:01 | CISA Warns of Plex Vulnerability Linked to LastPass Hack (lien direct) | >CISA has added vulnerabilities in Plex Media Server and VMware NSX-V to its Known Exploited Vulnerabilities catalog. | Hack Vulnerability | LastPass LastPass | ★★★ |
|
2023-03-11 11:28:14 | CISA warns of actively exploited Plex bug after LastPass breach (lien direct) | CISA has added an almost three-year-old high-severity remote code execution (RCE) vulnerability in the Plex Media Server to its catalog of security flaws exploited in attacks. [...] | Vulnerability | LastPass LastPass | ★★★ |
 |
2023-03-08 11:25:00 | Bug Bytes #195 – LastPass discovery, learning to code, and a complete guide to SSRF (lien direct) | >Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and resources. This issue covers the weeks from February 27th to March 5th Intigriti News From my notebook […] | LastPass LastPass | ★★★★ | |
|
2023-03-07 11:51:00 | LastPass Hack: Engineer\'s Failure to Update Plex Software Led to Massive Data Breach (lien direct) | The massive breach at LastPass was the result of one of its engineers failing to update Plex on their home computer, in what's a sobering reminder of the dangers of failing to keep software up-to-date. The embattled password management service last week revealed how unidentified actors leveraged information stolen from an earlier incident that took place prior to August 12, 2022, along with | Data Breach | LastPass LastPass | ★★ |
 |
2023-03-06 13:34:57 | Piratage de LastPass : la situation en trois points (lien direct) | On en sait davantage sur le piratage de LastPass. Que s'est-il passé, quelles données ont filtré et que faire ? | LastPass LastPass | ★★★ | |
 |
2023-03-06 12:00:27 | Piratage de LastPass : une grave négligence est à l\'origine du vol (lien direct) |  On continue d'en apprendre davantage sur le piratage de LastPass. D'après une nouvelle révélation, le vol des mots de passe a été rendu possible par la négligence d'un développeur en matière de sécurité informatique. |
LastPass | ★★ | |
|
2023-03-04 15:18:08 | LastPass releases new security incident disclosure and recommendations (lien direct) | >LastPass attacks began with a hacked employee's home computer. The investigation now reveals the password manager company's data vault was compromised. | LastPass LastPass | ★★★ | |
 |
2023-03-04 14:00:00 | The LastPass Hack Somehow Gets Worse (lien direct) | Plus: The US Marshals disclose a “major” cybersecurity incident, T-Mobile has gotten pwned so much, and more. | Hack | LastPass LastPass | ★★★ |
 |
2023-03-01 13:17:45 | Streaming service Plex unaware \'of any unpatched vulnerabilities\' following LastPass report (lien direct) |  Plex defended the security of its software after reports said it allowed hackers to get a foothold in a LastPass employee's computer |
LastPass | ★★★ | |
|
2023-03-01 11:30:48 | LastPass révèle comment des hackers ont volé vos mots de passe (lien direct) |  LastPass est longuement revenu sur les deux attaques informatiques de l'année dernière. Après enquête, le gestionnaire a finalement découvert comment des pirates sont parvenus à s'emparer des mots de passe de ses clients. |
LastPass | ★★ | |
|
2023-02-28 22:32:00 | LastPass DevOps Engineer Targeted for Cloud Decryption Keys in Latest Breach Revelation (lien direct) | The adversaries obtained a decryption key to a LastPass database containing multifactor authentication and federation information as well as customer vault data, company says. | Cloud | LastPass | ★★ |
|
2023-02-28 17:00:00 | (Déjà vu) LastPass Data Stolen in August 2022 Breach Used For December Attack (lien direct) | Threat actors obtained credentials and keys later used to access and decrypt some storage volumes | Threat | LastPass | ★★ |
To see everything:
Our RSS (filtrered)
