This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T16:30:09+00:00 www.secnews.physaphae.fr The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Meta Platforms, Microsoft, and the U.S. Department of Justice (DoJ) have announced independent actions to tackle cybercrime and disrupt services that enable scams, fraud, and phishing attacks. To that end, Microsoft\'s Digital Crimes Unit (DCU) said it seized 240 fraudulent websites associated with an Egypt-based cybercrime facilitator named Abanoub Nady (aka MRxC0DER and mrxc0derii), who]]> 2024-11-22T15:07:00+00:00 https://thehackernews.com/2024/11/microsoft-meta-and-doj-disrupt-global.html www.secnews.physaphae.fr/article.php?IdArticle=8615936 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have discovered two malicious packages uploaded to the Python Package Index (PyPI) repository that impersonated popular artificial intelligence (AI) models like OpenAI ChatGPT and Anthropic Claude to deliver an information stealer called JarkaStealer. The packages, named gptplus and claudeai-eng, were uploaded by a user named "Xeroline" in November 2023, attracting]]> 2024-11-22T11:45:00+00:00 https://thehackernews.com/2024/11/pypi-attack-chatgpt-claude.html www.secnews.physaphae.fr/article.php?IdArticle=8615861 False None ChatGPT 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) As many as 2,000 Palo Alto Networks devices are estimated to have been compromised as part of a campaign abusing the newly disclosed security flaws that have come under active exploitation in the wild. According to statistics shared by the Shadowserver Foundation, a majority of the infections have been reported in the U.S. (554) and India (461), followed by Thailand (80), Mexico (48), Indonesia]]> 2024-11-21T21:52:00+00:00 https://thehackernews.com/2024/11/warning-over-2000-palo-alto-networks.html www.secnews.physaphae.fr/article.php?IdArticle=8615524 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The China-aligned advanced persistent threat (APT) actor known as Gelsemium has been observed using a new Linux backdoor dubbed WolfsBane as part of cyber attacks likely targeting East and Southeast Asia. That\'s according to findings from cybersecurity firm ESET based on multiple Linux samples uploaded to the VirusTotal platform from Taiwan, the Philippines, and Singapore in March 2023.]]> 2024-11-21T21:20:00+00:00 https://thehackernews.com/2024/11/chinese-apt-gelsemium-targets-linux.html www.secnews.physaphae.fr/article.php?IdArticle=8615525 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Privileged access management (PAM) plays a pivotal role in building a strong security strategy. PAM empowers you to significantly reduce cybersecurity risks, gain tighter control over privileged access, achieve regulatory compliance, and reduce the burden on your IT team.  As an established provider of a PAM solution, we\'ve witnessed firsthand how PAM transforms organizational security. In]]> 2024-11-21T17:53:00+00:00 https://thehackernews.com/2024/11/10-most-impactful-pam-use-cases-for.html www.secnews.physaphae.fr/article.php?IdArticle=8615435 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Threat actors with ties to the Democratic People\'s Republic of Korea (DPRK) are impersonating U.S.-based software and technology consulting businesses in order to further their financial objectives as part of a broader information technology (IT) worker scheme. "Front companies, often based in China, Russia, Southeast Asia, and Africa, play a key role in masking the workers\' true origins and]]> 2024-11-21T17:34:00+00:00 https://thehackernews.com/2024/11/north-korean-front-companies.html www.secnews.physaphae.fr/article.php?IdArticle=8615398 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) As a relatively new security category, many security operators and executives I\'ve met have asked us “What are these Automated Security Validation (ASV) tools?” We\'ve covered that pretty extensively in the past, so today, instead of covering the “What is ASV?” I wanted to address the “Why ASV?” question. In this article, we\'ll cover some common use cases and misconceptions of how people misuse]]> 2024-11-21T17:00:00+00:00 https://thehackernews.com/2024/11/cyber-story-time-boy-who-cried-secure.html www.secnews.physaphae.fr/article.php?IdArticle=8615399 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) New research has uncovered more than 145,000 internet-exposed Industrial Control Systems (ICS) across 175 countries, with the U.S. alone accounting for over one-third of the total exposures. The analysis, which comes from attack surface management company Censys, found that 38% of the devices are located in North America, 35.4% in Europe, 22.9% in Asia, 1.7% in Oceania, 1.2% in South America,]]> 2024-11-21T16:30:00+00:00 https://thehackernews.com/2024/11/over-145000-industrial-control-systems.html www.secnews.physaphae.fr/article.php?IdArticle=8615365 False Industrial None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Five alleged members of the infamous Scattered Spider cybercrime crew have been indicted in the U.S. for targeting employees of companies across the country using social engineering techniques to harvest credentials and using them to gain unauthorized access to sensitive data and break into crypto accounts to steal digital assets worth millions of dollars. All of the accused parties have been]]> 2024-11-21T14:46:00+00:00 https://thehackernews.com/2024/11/5-scattered-spider-gang-members.html www.secnews.physaphae.fr/article.php?IdArticle=8615308 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google has revealed that its AI-powered fuzzing tool, OSS-Fuzz, has been used to help identify 26 vulnerabilities in various open-source code repositories, including a medium-severity flaw in the OpenSSL cryptographic library. "These particular vulnerabilities represent a milestone for automated vulnerability finding: each was found with AI, using AI-generated and enhanced fuzz targets,"]]> 2024-11-21T12:43:00+00:00 https://thehackernews.com/2024/11/googles-ai-powered-oss-fuzz-tool-finds.html www.secnews.physaphae.fr/article.php?IdArticle=8615278 False Tool,Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Threat hunters are warning about an updated version of the Python-based NodeStealer that\'s now equipped to extract more information from victims\' Facebook Ads Manager accounts and harvest credit card data stored in web browsers. "They collect budget details of Facebook Ads Manager accounts of their victims, which might be a gateway for Facebook malvertisement," Netskope Threat Labs researcher]]> 2024-11-21T12:04:00+00:00 https://thehackernews.com/2024/11/nodestealer-malware-targets-facebook-ad.html www.secnews.physaphae.fr/article.php?IdArticle=8615222 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Threat actors are increasingly banking on a new technique that leverages near-field communication (NFC) to cash out victim\'s funds at scale. The technique, codenamed Ghost Tap by ThreatFabric, enables cybercriminals to cash-out money from stolen credit cards linked to mobile payment services such as Google Pay or Apple Pay and relaying NFC traffic. "Criminals can now misuse Google Pay and Apple]]> 2024-11-20T18:39:00+00:00 https://thehackernews.com/2024/11/ghost-tap-hackers-exploiting-nfcgate-to.html www.secnews.physaphae.fr/article.php?IdArticle=8614757 False Threat,Mobile None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The frequency and sophistication of modern cyberattacks are surging, making it increasingly challenging for organizations to protect sensitive data and critical infrastructure. When attackers compromise a non-human identity (NHI), they can swiftly exploit it to move laterally across systems, identifying vulnerabilities and compromising additional NHIs in minutes. While organizations often take]]> 2024-11-20T17:00:00+00:00 https://thehackernews.com/2024/11/nhis-are-future-of-cybersecurity-meet.html www.secnews.physaphae.fr/article.php?IdArticle=8614689 False Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Multiple decade-old security vulnerabilities have been disclosed in the needrestart package installed by default in Ubuntu Server (since version 21.04) that could allow a local attacker to gain root privileges without requiring user interaction. The Qualys Threat Research Unit (TRU), which identified and reported the flaws early last month, said they are trivial to exploit, necessitating that]]> 2024-11-20T14:46:00+00:00 https://thehackernews.com/2024/11/decades-old-security-vulnerabilities.html www.secnews.physaphae.fr/article.php?IdArticle=8614620 False Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Microsoft has announced a new Windows Resiliency Initiative as a way to improve security and reliability, as well as ensure that system integrity is not compromised. The idea, the tech giant said, is to avoid incidents like that of CrowdStrike\'s earlier this July, enable more apps and users to be run without admin privileges, add controls surrounding the use of unsafe apps and drivers, and offer]]> 2024-11-20T12:30:00+00:00 https://thehackernews.com/2024/11/microsoft-launches-windows-resiliency.html www.secnews.physaphae.fr/article.php?IdArticle=8614722 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new China-linked cyber espionage group has been attributed as behind a series of targeted cyber attacks targeting telecommunications entities in South Asia and Africa since at least 2020 with the goal of enabling intelligence collection. Cybersecurity company CrowdStrike is tracking the adversary under the name Liminal Panda, describing it as possessing deep knowledge about telecommunications]]> 2024-11-20T12:28:00+00:00 https://thehackernews.com/2024/11/china-backed-hackers-leverage-sigtran.html www.secnews.physaphae.fr/article.php?IdArticle=8614563 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Apple has released security updates for iOS, iPadOS, macOS, visionOS, and its Safari web browser to address two zero-day flaws that have come under active exploitation in the wild. The flaws are listed below - CVE-2024-44308 - A vulnerability in JavaScriptCore that could lead to arbitrary code execution when processing malicious web content CVE-2024-44309 - A cookie management vulnerability in]]> 2024-11-20T10:07:00+00:00 https://thehackernews.com/2024/11/apple-releases-urgent-updates-to-patch.html www.secnews.physaphae.fr/article.php?IdArticle=8614510 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Oracle is warning that a high-severity security flaw impacting the Agile Product Lifecycle Management (PLM) Framework has been exploited in the wild. The vulnerability, tracked as CVE-2024-21287 (CVSS score: 7.5), could be exploited sans authentication to leak sensitive information. "This vulnerability is remotely exploitable without authentication, i.e., it may be exploited over a network]]> 2024-11-20T09:54:00+00:00 https://thehackernews.com/2024/11/oracle-warns-of-agile-plm-vulnerability.html www.secnews.physaphae.fr/article.php?IdArticle=8614511 False Vulnerability None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The malware known as Ngioweb has been used to fuel a notorious residential proxy service called NSOCKS, as well as by other services such as VN5Socks and Shopsocks5, new findings from Lumen Technologies reveal. "At least 80% of NSOCKS bots in our telemetry originate from the Ngioweb botnet, mainly utilizing small office/home office (SOHO) routers and IoT devices," the Black Lotus Labs team at]]> 2024-11-19T19:31:00+00:00 https://thehackernews.com/2024/11/ngioweb-botnet-fuels-nsocks-residential.html www.secnews.physaphae.fr/article.php?IdArticle=8614128 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Malicious actors are exploiting misconfigured JupyterLab and Jupyter Notebooks to conduct stream ripping and enable sports piracy using live streaming capture tools. The attacks involve the hijack of unauthenticated Jupyter Notebooks to establish initial access, and perform a series of actions designed to facilitate illegal live streaming of sports events, Aqua said in a report shared with The]]> 2024-11-19T19:30:00+00:00 https://thehackernews.com/2024/11/hackers-hijack-unsecured-jupyter.html www.secnews.physaphae.fr/article.php?IdArticle=8614129 False Tool None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Privileged accounts are well-known gateways for potential security threats. However, many organizations focus solely on managing privileged access-rather than securing the accounts and users entrusted with it. This emphasis is perhaps due to the persistent challenges of Privileged Access Management (PAM) deployments. Yet, as the threat landscape evolves, so must organizational priorities. To]]> 2024-11-19T17:00:00+00:00 https://thehackernews.com/2024/11/privileged-accounts-hidden-threats-why.html www.secnews.physaphae.fr/article.php?IdArticle=8614066 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have shed light on a Linux variant of a relatively new ransomware strain called Helldown, suggesting that the threat actors are broadening their attack focus. "Helldown deploys Windows ransomware derived from the LockBit 3.0 code," Sekoia said in a report shared with The Hacker News. "Given the recent development of ransomware targeting ESX, it appears that the group]]> 2024-11-19T15:10:00+00:00 https://thehackernews.com/2024/11/new-helldown-ransomware-expands-attacks.html www.secnews.physaphae.fr/article.php?IdArticle=8614009 False Ransomware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) U.S. telecoms giant T-Mobile has confirmed that it was also among the companies that were targeted by Chinese threat actors to gain access to valuable information. The adversaries, tracked as Salt Typhoon, breached the company as part of a "monthslong campaign" designed to harvest cellphone communications of "high-value intelligence targets." It\'s not clear what information was taken, if any,]]> 2024-11-19T12:32:00+00:00 https://thehackernews.com/2024/11/chinese-hackers-exploit-t-mobile-and.html www.secnews.physaphae.fr/article.php?IdArticle=8613940 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Now-patched security flaws impacting Progress Kemp LoadMaster and VMware vCenter Server have come under active exploitation in the wild, it has emerged. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added CVE-2024-1212 (CVSS score: 10.0), a maximum-severity security vulnerability in Progress Kemp LoadMaster to its Known Exploited Vulnerabilities (KEV) catalog. It was]]> 2024-11-19T12:01:00+00:00 https://thehackernews.com/2024/11/cisa-alert-active-exploitation-of.html www.secnews.physaphae.fr/article.php?IdArticle=8613916 False Vulnerability None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have shed light on a new stealthy malware loader called BabbleLoader that has been observed in the wild delivering information stealer families such as WhiteSnake and Meduza. BabbleLoader is an "extremely evasive loader, packed with defensive mechanisms, that is designed to bypass antivirus and sandbox environments to deliver stealers into memory," Intezer security]]> 2024-11-18T22:18:00+00:00 https://thehackernews.com/2024/11/new-stealthy-babbleloader-malware.html www.secnews.physaphae.fr/article.php?IdArticle=8613612 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) According to research from GitGuardian and CyberArk, 79% of IT decision-makers reported having experienced a secrets leak, up from 75% in the previous year\'s report. At the same time, the number of leaked credentials has never been higher, with over 12.7 million hardcoded credentials in public GitHub repositories alone. One of the more troubling aspects of this report is that over 90% of valid]]> 2024-11-18T19:20:00+00:00 https://thehackernews.com/2024/11/the-problem-of-permissions-and-non.html www.secnews.physaphae.fr/article.php?IdArticle=8613496 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) What do hijacked websites, fake job offers, and sneaky ransomware have in common? They\'re proof that cybercriminals are finding smarter, sneakier ways to exploit both systems and people. This week makes one thing clear: no system, no person, no organization is truly off-limits. Attackers are getting smarter, faster, and more creative-using everything from human trust to hidden flaws in]]> 2024-11-18T17:06:00+00:00 https://thehackernews.com/2024/11/thn-recap-top-cybersecurity-threats_18.html www.secnews.physaphae.fr/article.php?IdArticle=8613440 False Ransomware,Tool,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google appears to be readying a new feature called Shielded Email that allows users to create email aliases when signing up for online services and better combat spam. The feature was first reported by Android Authority last week following a teardown of the latest version of Google Play Services for Android. The idea is to create unique, single-use email addresses that forward the messages to]]> 2024-11-18T16:45:00+00:00 https://thehackernews.com/2024/11/shielded-email-googles-latest-tool-for.html www.secnews.physaphae.fr/article.php?IdArticle=8613441 False Spam,Mobile None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new phishing campaign is targeting e-commerce shoppers in Europe and the United States with bogus pages that mimic legitimate brands with the goal of stealing their personal information ahead of the Black Friday shopping season. "The campaign leveraged the heightened online shopping activity in November, the peak season for Black Friday discounts. The threat actor used fake discounted products]]> 2024-11-18T16:26:00+00:00 https://thehackernews.com/2024/11/fake-discount-sites-exploit-black.html www.secnews.physaphae.fr/article.php?IdArticle=8613406 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) IT leaders know the drill-regulators and cyber insurers demand regular network penetration testing to keep the bad guys out. But here\'s the thing: hackers don\'t wait around for compliance schedules. Most companies approach network penetration testing on a set schedule, with the most common frequency being twice a year (29%), followed by three to four times per year (23%) and once per year (20%),]]> 2024-11-18T16:00:00+00:00 https://thehackernews.com/2024/11/beyond-compliance-advantage-of-year.html www.secnews.physaphae.fr/article.php?IdArticle=8613407 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Legal documents released as part of an ongoing legal tussle between Meta\'s WhatsApp and NSO Group have revealed that the Israeli spyware vendor used multiple exploits targeting the messaging app to deliver Pegasus, including one even after it was sued by Meta for doing so. They also show that NSO Group repeatedly found ways to install the invasive surveillance tool on the target\'s devices as]]> 2024-11-18T11:22:00+00:00 https://thehackernews.com/2024/11/nso-group-exploited-whatsapp-to-install.html www.secnews.physaphae.fr/article.php?IdArticle=8613285 False Tool None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A critical authentication bypass vulnerability has been disclosed in the Really Simple Security (formerly Really Simple SSL) plugin for WordPress that, if successfully exploited, could grant an attacker to remotely gain full administrative access to a susceptible site. The vulnerability, tracked as CVE-2024-10924 (CVSS score: 9.8), impacts both free and premium versions of the plugin. The]]> 2024-11-18T10:22:00+00:00 https://thehackernews.com/2024/11/urgent-critical-wordpress-plugin.html www.secnews.physaphae.fr/article.php?IdArticle=8613236 False Vulnerability None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor confirmed that a new zero-day vulnerability impacting its PAN-OS firewall management interface has been actively exploited in the wild. To that end, the company said it observed malicious activity originating from below IP addresses and targeting PAN-OS management web interface IP]]> 2024-11-16T13:51:00+00:00 https://thehackernews.com/2024/11/pan-os-firewall-vulnerability-under.html www.secnews.physaphae.fr/article.php?IdArticle=8612205 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A threat actor known as BrazenBamboo has exploited an unresolved security flaw in Fortinet\'s FortiClient for Windows to extract VPN credentials as part of a modular framework called DEEPDATA. Volexity, which disclosed the findings Friday, said it identified the zero-day exploitation of the credential disclosure vulnerability in July 2024, describing BrazenBamboo as the developer behind DEEPDATA,]]> 2024-11-16T11:55:00+00:00 https://thehackernews.com/2024/11/warning-deepdata-malware-exploiting.html www.secnews.physaphae.fr/article.php?IdArticle=8612180 False Malware,Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have disclosed two security flaws in Google\'s Vertex machine learning (ML) platform that, if successfully exploited, could allow malicious actors to escalate privileges and exfiltrate models from the cloud. "By exploiting custom job permissions, we were able to escalate our privileges and gain unauthorized access to all data services in the project," Palo Alto Networks]]> 2024-11-15T18:05:00+00:00 https://thehackernews.com/2024/11/researchers-warn-of-privilege.html www.secnews.physaphae.fr/article.php?IdArticle=8611732 False Cloud None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) In the fast-paced digital world, trust is everything-but what happens when that trust is disrupted? Certificate revocations, though rare, can send shockwaves through your operations, impacting security, customer confidence, and business continuity. Are you prepared to act swiftly when the unexpected happens? Join DigiCert\'s exclusive webinar, "When Shift Happens: Are You Ready for Rapid]]> 2024-11-15T17:18:00+00:00 https://thehackernews.com/2024/11/master-certificate-management-join-this.html www.secnews.physaphae.fr/article.php?IdArticle=8611733 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A Vietnamese-speaking threat actor has been linked to an information-stealing campaign targeting government and education entities in Europe and Asia with a new Python-based malware called PXA Stealer. The malware "targets victims\' sensitive information, including credentials for various online accounts, VPN and FTP clients, financial information, browser cookies, and data from gaming software,"]]> 2024-11-15T16:42:00+00:00 https://thehackernews.com/2024/11/vietnamese-hacker-group-deploys-new-pxa.html www.secnews.physaphae.fr/article.php?IdArticle=8611674 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) In recent years, artificial intelligence (AI) has begun revolutionizing Identity Access Management (IAM), reshaping how cybersecurity is approached in this crucial field. Leveraging AI in IAM is about tapping into its analytical capabilities to monitor access patterns and identify anomalies that could signal a potential security breach. The focus has expanded beyond merely managing human]]> 2024-11-15T16:00:00+00:00 https://thehackernews.com/2024/11/how-ai-is-transforming-iam-and-identity.html www.secnews.physaphae.fr/article.php?IdArticle=8611640 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have shed light on a new remote access trojan and information stealer used by Iranian state-sponsored actors to conduct reconnaissance of compromised endpoints and execute malicious commands. Cybersecurity company Check Point has codenamed the malware WezRat, stating it has been detected in the wild since at least September 1, 2023, based on artifacts uploaded to the]]> 2024-11-15T13:41:00+00:00 https://thehackernews.com/2024/11/iranian-hackers-deploy-wezrat-malware.html www.secnews.physaphae.fr/article.php?IdArticle=8611840 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have disclosed a high-severity security flaw in the PostgreSQL open-source database system that could allow unprivileged users to alter environment variables, and potentially lead to code execution or information disclosure. The vulnerability, tracked as CVE-2024-10979, carries a CVSS score of 8.8. Environment variables are user-defined values that can allow a program]]> 2024-11-15T12:10:00+00:00 https://thehackernews.com/2024/11/high-severity-flaw-in-postgresql-allows.html www.secnews.physaphae.fr/article.php?IdArticle=8611564 False Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Ilya Lichtenstein, who pleaded guilty to the 2016 hack of cryptocurrency stock exchange Bitfinex, has been sentenced to five years in prison, the U.S. Department of Justice (DoJ) announced Thursday. Lichtenstein was charged for his involvement in a money laundering scheme that led to the theft of nearly 120,000 bitcoins (valued at over $10.5 billion at current prices) from the crypto exchange.]]> 2024-11-15T11:00:00+00:00 https://thehackernews.com/2024/11/bitfinex-hacker-sentenced-to-5-years.html www.secnews.physaphae.fr/article.php?IdArticle=8611534 False Hack,Legislation None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday warned that two more flaws impacting the Palo Alto Networks Expedition have come under active exploitation in the wild. To that, it has added the vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to apply the necessary updates by December 5,]]> 2024-11-15T10:34:00+00:00 https://thehackernews.com/2024/11/cisa-flags-critical-palo-alto-network.html www.secnews.physaphae.fr/article.php?IdArticle=8611507 False Vulnerability None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Multiple threat actors have been found taking advantage of an attack technique called Sitting Ducks to hijack legitimate domains for using them in phishing attacks and investment fraud schemes for years. The findings come from Infoblox, which said it identified nearly 800,000 vulnerable registered domains over the past three months, of which approximately 9% (70,000) have been subsequently]]> 2024-11-14T23:06:00+00:00 https://thehackernews.com/2024/11/experts-uncover-70000-hijacked-domains.html www.secnews.physaphae.fr/article.php?IdArticle=8611226 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google has revealed that bad actors are leveraging techniques like landing page cloaking to conduct scams by impersonating legitimate sites. "Cloaking is specifically designed to prevent moderation systems and teams from reviewing policy-violating content which enables them to deploy the scam directly to users," Laurie Richardson, VP and Head of Trust and Safety at Google, said. "The landing]]> 2024-11-14T19:30:00+00:00 https://thehackernews.com/2024/11/google-warns-of-rising-cloaking-scams.html www.secnews.physaphae.fr/article.php?IdArticle=8611112 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Ransomware isn\'t just a buzzword; it\'s one of the most dreaded challenges businesses face in this increasingly digitized world. Ransomware attacks are not only increasing in frequency but also in sophistication, with new ransomware groups constantly emerging. Their attack methods are evolving rapidly, becoming more dangerous and damaging than ever. Almost all respondents (99.8%) in a recent]]> 2024-11-14T17:40:00+00:00 https://thehackernews.com/2024/11/5-bcdr-oversights-that-leave-you-exposed-to-ransomware.html www.secnews.physaphae.fr/article.php?IdArticle=8611040 False Ransomware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Advertising on TikTok is the obvious choice for any company trying to reach a young market, and especially so if it happens to be a travel company, with 44% of American Gen Zs saying they use the platform to plan their vacations. But one online travel marketplace targeting young holidaymakers with ads on the popular video-sharing platform broke GDPR rules when a third-party partner misconfigured]]> 2024-11-14T16:00:00+00:00 https://thehackernews.com/2024/11/tiktok-pixel-privacy-nightmare-new-case.html www.secnews.physaphae.fr/article.php?IdArticle=8610986 False Studies None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Threat actors have been found leveraging a new technique that abuses extended attributes for macOS files to smuggle a new malware called RustyAttr. The Singaporean cybersecurity company has attributed the novel activity with moderate confidence to the infamous North Korea-linked Lazarus Group, citing infrastructure and tactical overlaps observed in connection with prior campaigns, including]]> 2024-11-14T15:21:00+00:00 https://thehackernews.com/2024/11/new-rustyattr-malware-targets-macos.html www.secnews.physaphae.fr/article.php?IdArticle=8610957 False Malware,Threat APT 38 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A newly patched security flaw impacting Windows NT LAN Manager (NTLM) was exploited as a zero-day by a suspected Russia-linked actor as part of cyber attacks targeting Ukraine. The vulnerability in question, CVE-2024-43451 (CVSS score: 6.5), refers to an NTLM hash disclosure spoofing vulnerability that could be exploited to steal a user\'s NTLMv2 hash. It was patched by Microsoft earlier this]]> 2024-11-14T11:13:00+00:00 https://thehackernews.com/2024/11/russian-hackers-exploit-new-ntlm-flaw.html www.secnews.physaphae.fr/article.php?IdArticle=8610870 False Malware,Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A threat actor affiliated with Hamas has expanded its malicious cyber operations beyond espionage to carry out disruptive attacks that exclusively target Israeli entities. The activity, linked to a group called WIRTE, has also targeted the Palestinian Authority, Jordan, Iraq, Saudi Arabia, and Egypt, Check Point said in an analysis. "The [Israel-Hamas] conflict has not disrupted the WIRTE\'s]]> 2024-11-13T21:39:00+00:00 https://thehackernews.com/2024/11/hamas-affiliated-wirte-employs-samecoin.html www.secnews.physaphae.fr/article.php?IdArticle=8610491 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Romanian cybersecurity company Bitdefender has released a free decryptor to help victims recover data encrypted using the ShrinkLocker ransomware. The decryptor is the result of a comprehensive analysis of ShrinkLocker\'s inner workings, allowing the researchers to discover a "specific window of opportunity for data recovery immediately after the removal of protectors from BitLocker-encrypted]]> 2024-11-13T19:08:00+00:00 https://thehackernews.com/2024/11/free-decryptor-released-for-bitlocker.html www.secnews.physaphae.fr/article.php?IdArticle=8610429 False Ransomware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The rise of SaaS and cloud-based work environments has fundamentally altered the cyber risk landscape. With more than 90% of organizational network traffic flowing through browsers and web applications, companies are facing new and serious cybersecurity threats. These include phishing attacks, data leakage, and malicious extensions. As a result, the browser also becomes a vulnerability that]]> 2024-11-13T16:30:00+00:00 https://thehackernews.com/2024/11/comprehensive-guide-to-building-strong.html www.secnews.physaphae.fr/article.php?IdArticle=8610355 False Vulnerability,Cloud None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A security analysis of the OvrC cloud platform has uncovered 10 vulnerabilities that could be chained to allow potential attackers to execute code remotely on connected devices. "Attackers successfully exploiting these vulnerabilities can access, control, and disrupt devices supported by OvrC; some of those include smart electrical power supplies, cameras, routers, home automation systems, and]]> 2024-11-13T14:58:00+00:00 https://thehackernews.com/2024/11/ovrc-platform-vulnerabilities-expose.html www.secnews.physaphae.fr/article.php?IdArticle=8610328 False Vulnerability,Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The Iranian threat actor known as TA455 has been observed taking a leaf out of a North Korean hacking group\'s playbook to orchestrate its own version of the Dream Job campaign targeting the aerospace industry by offering fake jobs since at least September 2023. "The campaign distributed the SnailResin malware, which activates the SlugResin backdoor," Israeli cybersecurity company ClearSky said]]> 2024-11-13T12:44:00+00:00 https://thehackernews.com/2024/11/iranian-hackers-use-dream-job-lures-to.html www.secnews.physaphae.fr/article.php?IdArticle=8610277 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Microsoft on Tuesday revealed that two security flaws impacting Windows NT LAN Manager (NTLM) and Task Scheduler have come under active exploitation in the wild. The security vulnerabilities are among the 90 security bugs the tech giant addressed as part of its Patch Tuesday update for November 2024. Of the 90 flaws, four are rated Critical, 85 are rated Important, and one is rated Moderate in]]> 2024-11-13T12:21:00+00:00 https://thehackernews.com/2024/11/microsoft-fixes-90-new-vulnerabilities.html www.secnews.physaphae.fr/article.php?IdArticle=8610227 False Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution (RCE) The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators to capture user activity, and record keyboard and mouse input, along with a video stream of the]]> 2024-11-12T19:31:00+00:00 https://thehackernews.com/2024/11/new-flaws-in-citrix-virtual-apps-enable.html www.secnews.physaphae.fr/article.php?IdArticle=8609862 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers are calling attention to a new sophisticated tool called GoIssue that can be used to send phishing messages at scale targeting GitHub users. The program, first marketed by a threat actor named cyberdluffy (aka Cyber D\' Luffy) on the Runion forum earlier this August, is advertised as a tool that allows criminal actors to extract email addresses from public GitHub]]> 2024-11-12T19:30:00+00:00 https://thehackernews.com/2024/11/new-phishing-tool-goissue-targets.html www.secnews.physaphae.fr/article.php?IdArticle=8609863 False Tool,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Threat actors with ties to the Democratic People\'s Republic of Korea (DPRK aka North Korea) have been found embedding malware within Flutter applications, marking the first time this tactic has been adopted by the adversary to infect Apple macOS devices. Jamf Threat Labs, which made the discovery based on artifacts uploaded to the VirusTotal platform earlier this month, said the Flutter-built]]> 2024-11-12T18:30:00+00:00 https://thehackernews.com/2024/11/north-korean-hackers-target-macos-using.html www.secnews.physaphae.fr/article.php?IdArticle=8609811 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Behavioral analytics, long associated with threat detection (i.e. UEBA or UBA), is experiencing a renaissance. Once primarily used to identify suspicious activity, it\'s now being reimagined as a powerful post-detection technology that enhances incident response processes. By leveraging behavioral insights during alert triage and investigation, SOCs can transform their workflows to become more]]> 2024-11-12T16:30:00+00:00 https://thehackernews.com/2024/11/5-ways-behavioral-analytics-is.html www.secnews.physaphae.fr/article.php?IdArticle=8609765 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have flagged a new ransomware family called Ymir that was deployed in an attack two days after systems were compromised by a stealer malware called RustyStealer. "Ymir ransomware introduces a unique combination of technical features and tactics that enhance its effectiveness," Russian cybersecurity vendor Kaspersky said. "Threat actors leveraged an unconventional blend]]> 2024-11-12T11:30:00+00:00 https://thehackernews.com/2024/11/new-ymir-ransomware-exploits-memory-for.html www.secnews.physaphae.fr/article.php?IdArticle=8609672 False Ransomware,Malware,Technical None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) ⚠️ Imagine this: the very tools you trust to protect you online-your two-factor authentication, your car\\\\\\\\\\\\'s tech system, even your security software-turned into silent allies for hackers. Sounds like a scene from a thriller, right? Yet, in 2024, this isn\\\\\\\\\\\\'t fiction; it\\\\\\\\\\\\'s the new cyber reality. Today\\\\\\\\\\\\'s attackers have become so sophisticated that they\\\\\\\\\\\\'re using our trusted tools as secret pathways,]]> 2024-11-11T17:27:00+00:00 https://thehackernews.com/2024/11/thn-recap-top-cybersecurity-threats_11.html www.secnews.physaphae.fr/article.php?IdArticle=8609329 False Tool,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) In an unusually specific campaign, users searching about the legality of Bengal Cats in Australia are being targeted with the GootLoader malware. "In this case, we found the GootLoader actors using search results for information about a particular cat and a particular geography being used to deliver the payload: \'Are Bengal Cats legal in Australia?,\'" Sophos researchers Trang Tang, Hikaru Koike,]]> 2024-11-11T17:25:00+00:00 https://thehackernews.com/2024/11/new-gootloader-campaign-targets-users.html www.secnews.physaphae.fr/article.php?IdArticle=8609673 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cyber threats are intensifying, and cybersecurity has become critical to business operations. As security budgets grow, CEOs and boardrooms are demanding concrete evidence that cybersecurity initiatives deliver value beyond regulation compliance. Just like you wouldn\\\\\\\\\\\\'t buy a car without knowing it was first put through a crash test, security systems must also be validated to confirm their value.]]> 2024-11-11T17:00:00+00:00 https://thehackernews.com/2024/11/the-roi-of-security-investments-how.html www.secnews.physaphae.fr/article.php?IdArticle=8609303 False Conference None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have uncovered nearly two dozen security flaws spanning 15 different machine learning (ML) related open-source projects. These comprise vulnerabilities discovered both on the server- and client-side, software supply chain security firm JFrog said in an analysis published last week. The server-side weaknesses "allow attackers to hijack important servers in the]]> 2024-11-11T15:41:00+00:00 https://thehackernews.com/2024/11/security-flaws-in-popular-ml-toolkits.html www.secnews.physaphae.fr/article.php?IdArticle=8609283 False Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Hewlett Packard Enterprise (HPE) has released security updates to address multiple vulnerabilities impacting Aruba Networking Access Point products, including two critical bugs that could result in unauthenticated command execution. The flaws affect Access Points running Instant AOS-8 and AOS-10 - AOS-10.4.x.x: 10.4.1.4 and below Instant AOS-8.12.x.x: 8.12.0.2 and below Instant AOS-8.10.x.x:]]> 2024-11-11T15:27:00+00:00 https://thehackernews.com/2024/11/hpe-issues-critical-security-patches.html www.secnews.physaphae.fr/article.php?IdArticle=8609284 False Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have discovered a new phishing campaign that spreads a new fileless variant of known commercial malware called Remcos RAT. Remcos RAT "provides purchases with a wide range of advanced features to remotely control computers belonging to the buyer," Fortinet FortiGuard Labs researcher Xiaopeng Zhang said in an analysis published last week. "However, threat actors have]]> 2024-11-11T11:43:00+00:00 https://thehackernews.com/2024/11/cybercriminals-use-excel-exploit-to.html www.secnews.physaphae.fr/article.php?IdArticle=8609206 False Malware,Threat,Commercial None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface is secured because of a potential remote code execution vulnerability. "Palo Alto Networks is aware of a claim of a remote code execution vulnerability via the PAN-OS management interface," the company said. "At this time, we do not know the specifics of the]]> 2024-11-09T11:42:00+00:00 https://thehackernews.com/2024/11/palo-alto-advises-securing-pan-os.html www.secnews.physaphae.fr/article.php?IdArticle=8608466 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison for facilitating money laundering activities between 2011 and 2021. Roman Sterlingov, a dual Russian-Swedish national, pleaded guilty to charges of money laundering and operating an unlicensed money-transmitting business earlier this March. The U.S. Department of Justice (DoJ)]]> 2024-11-09T11:12:00+00:00 https://thehackernews.com/2024/11/bitcoin-fog-founder-sentenced-to-12.html www.secnews.physaphae.fr/article.php?IdArticle=8608448 False Legislation None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware. "This botnet utilizes remote code execution and credential-stealing methods to maintain persistent access, leveraging unpatched vulnerabilities to infiltrate critical infrastructures," CloudSEK said in a]]> 2024-11-08T19:32:00+00:00 https://thehackernews.com/2024/11/androxgh0st-malware-integrates-mozi.html www.secnews.physaphae.fr/article.php?IdArticle=8608143 False Malware,Vulnerability,Threat,Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and a previously unknown China-nexus cyber espionage group dubbed IcePeony. The intrusions linked to Transparent Tribe involve the use of a malware called ElizaRAT and a new stealer payload dubbed ApoloStealer on specific victims of interest, Check Point]]> 2024-11-08T17:53:00+00:00 https://thehackernews.com/2024/11/icepeony-and-transparent-tribe-target.html www.secnews.physaphae.fr/article.php?IdArticle=8608093 False Malware,Tool,Threat APT 36 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new campaign has targeted the npm package repository with malicious JavaScript libraries that are designed to infect Roblox users with open-source stealer malware such as Skuld and Blank-Grabber. "This incident highlights the alarming ease with which threat actors can launch supply chain attacks by exploiting trust and human error within the open source ecosystem, and using readily available]]> 2024-11-08T17:23:00+00:00 https://thehackernews.com/2024/11/malicious-npm-packages-target-roblox.html www.secnews.physaphae.fr/article.php?IdArticle=8608094 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) We\'ve all heard a million times: growing demand for robust cybersecurity in the face of rising cyber threats is undeniable. Globally small and medium-sized businesses (SMBs) are increasingly targeted by cyberattacks but often lack the resources for full-time Chief Information Security Officers (CISOs). This gap is driving the rise of the virtual CISO (vCISO) model, offering a cost-effective]]> 2024-11-08T16:30:00+00:00 https://thehackernews.com/2024/11/the-vciso-academy-transforming-msps-and.html www.secnews.physaphae.fr/article.php?IdArticle=8608065 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Let\'s face it-traditional security training can feel as thrilling as reading the fine print on a software update. It\'s routine, predictable, and, let\'s be honest, often forgotten the moment it\'s over. Now, imagine cybersecurity training that\'s as unforgettable as your favorite show. Remember how "Hamilton" made history come alive, or how "The Office" taught us CPR (Staying Alive beat, anyone?)?]]> 2024-11-08T15:09:00+00:00 https://thehackernews.com/2024/11/webinar-learn-how-storytelling-can-make.html www.secnews.physaphae.fr/article.php?IdArticle=8608042 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have flagged a new malware campaign that infects Windows systems with a Linux virtual instance containing a backdoor capable of establishing remote access to the compromised hosts. The "intriguing" campaign, codenamed CRON#TRAP, starts with a malicious Windows shortcut (LNK) file likely distributed in the form of a ZIP archive via a phishing email. "What makes the CRON#]]> 2024-11-08T12:45:00+00:00 https://thehackernews.com/2024/11/new-crontrap-malware-infects-windows-by.html www.secnews.physaphae.fr/article.php?IdArticle=8607975 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a now-patched critical security flaw impacting Palo Alto Networks Expedition to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2024-5910 (CVSS score: 9.3), concerns a case of missing authentication in the Expedition migration tool that]]> 2024-11-08T10:47:00+00:00 https://thehackernews.com/2024/11/cisa-alerts-to-active-exploitation-of.html www.secnews.physaphae.fr/article.php?IdArticle=8607929 False Tool,Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A threat actor with ties to the Democratic People\'s Republic of Korea (DPRK) has been observed targeting cryptocurrency-related businesses with a multi-stage malware capable of infecting Apple macOS devices. Cybersecurity company SentinelOne, which dubbed the campaign Hidden Risk, attributed it with high confidence to BlueNoroff, which has been previously linked to malware families such as]]> 2024-11-07T18:10:00+00:00 https://thehackernews.com/2024/11/north-korean-hackers-target-crypto.html www.secnews.physaphae.fr/article.php?IdArticle=8607535 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Defending your organization\'s security is like fortifying a castle-you need to understand where attackers will strike and how they\'ll try to breach your walls. And hackers are always searching for weaknesses, whether it\'s a lax password policy or a forgotten backdoor. To build a stronger defense, you must think like a hacker and anticipate their moves. Read on to learn more about hackers\']]> 2024-11-07T17:30:00+00:00 https://thehackernews.com/2024/11/a-hackers-guide-to-password-cracking.html www.secnews.physaphae.fr/article.php?IdArticle=8607536 False None None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Tactics, techniques, and procedures (TTPs) form the foundation of modern defense strategies. Unlike indicators of compromise (IOCs), TTPs are more stable, making them a reliable way to identify specific cyber threats. Here are some of the most commonly used techniques, according to ANY.RUN\'s Q3 2024 report on malware trends, complete with real-world examples. Disabling of Windows Event Logging]]> 2024-11-07T15:18:00+00:00 https://thehackernews.com/2024/11/5-most-common-malware-techniques-in-2024.html www.secnews.physaphae.fr/article.php?IdArticle=8607457 False Malware None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An ongoing phishing campaign is employing copyright infringement-related themes to trick victims into downloading a newer version of the Rhadamanthys information stealer since July 2024. Cybersecurity firm Check Point is tracking the large-scale campaign under the name CopyRh(ight)adamantys. Targeted regions include the United States, Europe, East Asia, and South America. "The campaign]]> 2024-11-07T15:12:00+00:00 https://thehackernews.com/2024/11/steelfox-and-rhadamanthys-malware-use.html www.secnews.physaphae.fr/article.php?IdArticle=8607458 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The China-aligned threat actor known as MirrorFace has been observed targeting a diplomatic organization in the European Union, marking the first time the hacking crew has targeted an organization in the region. "During this attack, the threat actor used as a lure the upcoming World Expo, which will be held in 2025 in Osaka, Japan," ESET said in its APT Activity Report for the period April to]]> 2024-11-07T15:10:00+00:00 https://thehackernews.com/2024/11/china-aligned-mirrorface-hackers-target.html www.secnews.physaphae.fr/article.php?IdArticle=8607509 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating developers\' Amazon Web Services (AWS) credentials. The package in question is "fabrice," which typosquats a popular Python library known as "fabric," which is designed to execute shell commands remotely over]]> 2024-11-07T14:37:00+00:00 https://thehackernews.com/2024/11/malicious-pypi-package-fabrice-found.html www.secnews.physaphae.fr/article.php?IdArticle=8607459 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cisco has released security updates to address a maximum severity security flaw impacting Ultra-Reliable Wireless Backhaul (URWB) Access Points that could permit unauthenticated, remote attackers to run commands with elevated privileges. Tracked as CVE-2024-20418 (CVS score: 10.0), the vulnerability has been described as stemming from a lack of input validation to the web-based management]]> 2024-11-07T12:43:00+00:00 https://thehackernews.com/2024/11/cisco-releases-patch-for-critical-urwb.html www.secnews.physaphae.fr/article.php?IdArticle=8607430 False Vulnerability,Industrial None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The Canadian government on Wednesday ordered ByteDance-owned TikTok to dissolve its operations in the country, citing national security risks, but stopped short of instituting a ban on the popular video-sharing platform. "The decision was based on the information and evidence collected over the course of the review and on the advice of Canada\'s security and intelligence community and other]]> 2024-11-07T10:09:00+00:00 https://thehackernews.com/2024/11/canada-orders-tiktok-to-shut-down.html www.secnews.physaphae.fr/article.php?IdArticle=8607343 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An ongoing threat campaign dubbed VEILDrive has been observed taking advantage of legitimate services from Microsoft, including Teams, SharePoint, Quick Assist, and OneDrive, as part of its modus operandi. "Leveraging Microsoft SaaS services - including Teams, SharePoint, Quick Assist, and OneDrive - the attacker exploited the trusted infrastructures of previously compromised organizations to]]> 2024-11-06T23:22:00+00:00 https://thehackernews.com/2024/11/veildrive-attack-exploits-microsoft.html www.secnews.physaphae.fr/article.php?IdArticle=8607121 False Malware,Threat,Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers are warning that a command-and-control (C&C) framework called Winos is being distributed within gaming-related applications like installation tools, speed boosters, and optimization utilities. "Winos 4.0 is an advanced malicious framework that offers comprehensive functionality, a stable architecture, and efficient control over numerous online endpoints to execute]]> 2024-11-06T19:29:00+00:00 https://thehackernews.com/2024/11/new-winos-40-malware-infects-gamers.html www.secnews.physaphae.fr/article.php?IdArticle=8607017 False Malware,Tool None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Budget season is upon us, and everyone in your organization is vying for their slice of the pie. Every year, every department has a pet project that they present as absolutely essential to profitability, business continuity, and quite possibly the future of humanity itself. And no doubt that some of these actually may be mission critical. But as cybersecurity professionals, we understand that]]> 2024-11-06T17:00:00+00:00 https://thehackernews.com/2024/11/9-steps-to-get-ctem-on-your-2025.html www.secnews.physaphae.fr/article.php?IdArticle=8606941 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) INTERPOL on Tuesday said it took down more than 22,000 malicious servers linked to various cyber threats as part of a global operation. Dubbed Operation Synergia II, the coordinated effort ran from April 1 to August 31, 2024, targeting phishing, ransomware, and information stealer infrastructure. "Of the approximately 30,000 suspicious IP addresses identified, 76 per cent were taken down and 59]]> 2024-11-06T15:43:00+00:00 https://thehackernews.com/2024/11/interpols-operation-synergia-ii.html www.secnews.physaphae.fr/article.php?IdArticle=8606916 False Ransomware None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Meta has been fined 21.62 billion won ($15.67 million) by South Korea\'s data privacy watchdog for illegally collecting sensitive personal information from Facebook users, including data about their political views and sexual orientation, and sharing it with advertisers without their consent. The country\'s Personal Information Protection Commission (PIPC) said Meta gathered information such as]]> 2024-11-06T12:28:00+00:00 https://thehackernews.com/2024/11/south-korea-fines-meta-1567m-for.html www.secnews.physaphae.fr/article.php?IdArticle=8606840 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google\'s cloud division has announced that it will enforce mandatory multi-factor authentication (MFA) for all users by the end of 2025 as part of its efforts to improve account security. "We will be implementing mandatory MFA for Google Cloud in a phased approach that will roll out to all users worldwide during 2025," Mayank Upadhyay, vice president of engineering and distinguished engineer at]]> 2024-11-06T11:07:00+00:00 https://thehackernews.com/2024/11/google-cloud-to-enforce-multi-factor.html www.secnews.physaphae.fr/article.php?IdArticle=8606819 False Cloud None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The U.S. Federal Bureau of Investigation (FBI) has sought assistance from the public in connection with an investigation involving the breach of edge devices and computer networks belonging to companies and government entities. "An Advanced Persistent Threat group allegedly created and deployed malware (CVE-2020-12271) as part of a widespread series of indiscriminate computer intrusions designed]]> 2024-11-05T22:45:00+00:00 https://thehackernews.com/2024/11/fbi-seeks-public-help-to-identify.html www.secnews.physaphae.fr/article.php?IdArticle=8606541 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Over 1,500 Android devices have been infected by a new strain of Android banking malware called ToxicPanda that allows threat actors to conduct fraudulent banking transactions. "ToxicPanda\'s main goal is to initiate money transfers from compromised devices via account takeover (ATO) using a well-known technique called on-device fraud (ODF)," Cleafy researchers Michele Roviello, Alessandro Strino]]> 2024-11-05T17:46:00+00:00 https://thehackernews.com/2024/11/new-android-banking-malware-toxicpanda.html www.secnews.physaphae.fr/article.php?IdArticle=8606414 False Malware,Threat,Mobile None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Zero Trust security changes how organizations handle security by doing away with implicit trust while continuously analyzing and validating access requests. Contrary to perimeter-based security, users within an environment are not automatically trusted upon gaining access. Zero Trust security encourages continuous monitoring of every device and user, which ensures sustained protection after]]> 2024-11-05T16:30:00+00:00 https://thehackernews.com/2024/11/leveraging-wazuh-for-zero-trust-security.html www.secnews.physaphae.fr/article.php?IdArticle=8606364 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution. Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonstrated at the Pwn2Own Ireland 2024 hacking contest by security researcher Rick de Jager. RISK:STATION is an "]]> 2024-11-05T15:04:00+00:00 https://thehackernews.com/2024/11/synology-urges-patch-for-critical-zero.html www.secnews.physaphae.fr/article.php?IdArticle=8606345 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An ongoing campaign is targeting npm developers with hundreds of typosquat versions of their legitimate counterparts in an attempt to trick them into running cross-platform malware. The attack is notable for utilizing Ethereum smart contracts for command-and-control (C2) server address distribution, according to independent findings from Checkmarx, Phylum, and Socket published over the past few]]> 2024-11-05T11:03:00+00:00 https://thehackernews.com/2024/11/malware-campaign-uses-ethereum-smart.html www.secnews.physaphae.fr/article.php?IdArticle=8606284 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from the breach of cloud data warehousing platform Snowflake earlier this year. The individual in question, Alexander "Connor" Moucka (aka Judische and Waifu), was apprehended on October 30, 2024, on the basis of a provisional arrest warrant, following a request by the]]> 2024-11-05T10:38:00+00:00 https://thehackernews.com/2024/11/canadian-suspect-arrested-over.html www.secnews.physaphae.fr/article.php?IdArticle=8606285 False Data Breach,Legislation,Cloud None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild. The vulnerability, tracked as CVE-2024-43093, has been described as a privilege escalation flaw in the Android Framework component that could result in unauthorized access to "Android/data," "Android/obb," and "Android/sandbox" directories and its sub-directories,]]> 2024-11-05T09:00:00+00:00 https://thehackernews.com/2024/11/google-warns-of-actively-exploited-cve.html www.secnews.physaphae.fr/article.php?IdArticle=8606233 False Vulnerability,Mobile None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform various actions, including denial-of-service, model poisoning, and model theft. "Collectively, the vulnerabilities could allow an attacker to carry out a wide-range of malicious actions with a single HTTP request, including]]> 2024-11-04T19:38:00+00:00 https://thehackernews.com/2024/11/critical-flaws-in-ollama-ai-framework.html www.secnews.physaphae.fr/article.php?IdArticle=8605981 False Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) German law enforcement authorities have announced the disruption of a criminal service called dstat[.]cc that made it possible for other threat actors to easily mount distributed denial-of-service (DDoS) attacks. "The platform made such DDoS attacks accessible to a wide range of users, even those without any in-depth technical skills of their own," the Federal Criminal Police Office (aka]]> 2024-11-04T17:32:00+00:00 https://thehackernews.com/2024/11/german-police-disrupt-ddos-for-hire.html www.secnews.physaphae.fr/article.php?IdArticle=8605930 False Threat,Legislation,Technical None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2024-11-04T16:58:00+00:00 https://thehackernews.com/2024/11/thn-recap-top-cybersecurity-threats.html www.secnews.physaphae.fr/article.php?IdArticle=8605931 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) As the holiday season approaches, retail businesses are gearing up for their annual surge in online (and in-store) traffic. Unfortunately, this increase in activity also attracts cybercriminals looking to exploit vulnerabilities for their gain.  Imperva, a Thales company, recently published its annual holiday shopping cybersecurity guide. Data from the Imperva Threat Research team\'s]]> 2024-11-04T16:30:00+00:00 https://thehackernews.com/2024/11/cyber-threats-that-could-impact-retail.html www.secnews.physaphae.fr/article.php?IdArticle=8605909 False Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google said it discovered a zero-day vulnerability in the SQLite open-source database engine using its large language model (LLM) assisted framework called Big Sleep (formerly Project Naptime). The tech giant described the development as the "first real-world vulnerability" uncovered using the artificial intelligence (AI) agent. "We believe this is the first public example of an AI agent finding]]> 2024-11-04T15:34:00+00:00 https://thehackernews.com/2024/11/googles-ai-tool-big-sleep-finds-zero.html www.secnews.physaphae.fr/article.php?IdArticle=8605910 False Tool,Vulnerability,Threat None 3.0000000000000000