This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-06-16T11:46:25+00:00 www.secnews.physaphae.fr Recorded Future - FLux Recorded Future The EU's cybersecurity agency says several Chinese military hacking groups are targeting European businesses and other organizations]]> 2023-02-17T17:01:27+00:00 https://therecord.media/multiple-chinese-apts-are-attacking-european-targets-eu-cyber-agency-warns/ www.secnews.physaphae.fr/article.php?IdArticle=8311283 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Prime Minister Kaja Kallas warned at the Munich Security Conference that allies should expect constant Russian pressure in cyberspace]]> 2023-02-17T13:53:23+00:00 https://therecord.media/estonia-prime-minister-russia-cyberattacks-continue-after-war/ www.secnews.physaphae.fr/article.php?IdArticle=8311242 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Deputy Attorney General Lisa Monaco said the feds will continue to use sanctions and hacking operations as tools against ransomware groups]]> 2023-02-17T13:14:19+00:00 https://therecord.media/lisa-monaco-more-hacking-ransomware-groups-doj-fbi/ www.secnews.physaphae.fr/article.php?IdArticle=8311243 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Chinese-speaking users are being targeted with FatalRAT malware, spread via fake websites of popular apps, new research has found.  First discovered in August 2021, FatalRat malware can capture keystrokes, change a victim's screen resolution, download and execute files, and steal or delete data stored in browsers. So far, the researchers from cybersecurity company ESET have […]]> 2023-02-16T21:54:11+00:00 https://therecord.media/hackers-target-chinese-language-speakers-with-fatalrat-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8311049 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future An espionage campaign targeting telecommunications providers across the Middle East hid its activities through a range of popular tools from Microsoft, Google and Dropbox, according to a report released Thursday. Researchers at cybersecurity company SentinelOne named the campaign “WIP26” - work in progress - because they were unable to attribute it to any actor or […]]> 2023-02-16T20:35:07+00:00 https://therecord.media/middle-east-telecoms-espionage-sentinelone-microsoft-google-dropbox/ www.secnews.physaphae.fr/article.php?IdArticle=8310959 False Malware None 4.0000000000000000 Recorded Future - FLux Recorded Future The Aspen Institute suggests ways that Western companies' cybersecurity aid to Ukraine could start to move away from the "ad hoc" phase.]]> 2023-02-16T19:53:42+00:00 https://therecord.media/cybersecurity-aid-ukraine-aspen-institute-report/ www.secnews.physaphae.fr/article.php?IdArticle=8310946 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Data related to $44 billion software company Atlassian was stolen from a third-party application, the company confirmed on Thursday, after hackers published troves of the information on Telegram.  A spokesperson for Atlassian told The Record that Envoy, an app that helps companies organize office spaces, was compromised and that Atlassian only learned of the breach […]]> 2023-02-16T19:30:43+00:00 https://therecord.media/atlassian-envoy-data-stolen-siegedsec/ www.secnews.physaphae.fr/article.php?IdArticle=8310947 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Researchers have discovered a new variant of the infamous Mirai malware that compromises smart devices and adds them to a botnet.  Called V3G4, the variant exploits 13 known vulnerabilities, according to research by Palo Alto Networks' Unit 42. Mirai typically allows for full control of devices, adding them to its network of remotely controlled bots […]]> 2023-02-16T17:57:40+00:00 https://therecord.media/new-mirai-botnet-variant-has-been-very-busy-researchers-say/ www.secnews.physaphae.fr/article.php?IdArticle=8310914 False Malware None 2.0000000000000000 Recorded Future - FLux Recorded Future Fortra says it is working with customers and CISA to address cyberattacks using a vulnerability in its GoAnywhere managed file-transfer tool.]]> 2023-02-16T17:31:28+00:00 https://therecord.media/fortra-goanywhere-clop-attacks-response/ www.secnews.physaphae.fr/article.php?IdArticle=8310915 False Vulnerability None 2.0000000000000000 Recorded Future - FLux Recorded Future The Biden administration's long-awaited national cyber strategy calls for “fundamental shifts” in how the U.S. will protect itself in cyberspace, a senior official told the Munich Cyber Security Conference on Thursday. Kemba Walden, the acting national cyber director, said the new strategy will entail a move to lift the “responsibility for cybersecurity risks… off of […]]> 2023-02-16T16:46:57+00:00 https://therecord.media/bidens-national-cyber-strategy-to-move-risk-from-end-users-to-technology-producers/ www.secnews.physaphae.fr/article.php?IdArticle=8310882 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The U.S. government will launch a new “strike force” to protect American technology from theft and block threats to critical assets like semiconductors, a top law enforcement official announced on Thursday.  In prepared remarks at London's Chatham House, Deputy Attorney General Lisa Monaco announced the “Disruptive Technology Strike Force,” which will be led by the […]]]> 2023-02-16T15:39:52+00:00 https://therecord.media/disruptive-technology-strike-force-doj-announcement/ www.secnews.physaphae.fr/article.php?IdArticle=8310862 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Google's Threat Analysis Group reports that cyberattacks on Ukraine and its supporters increased aggressively as Russia waged war]]> 2023-02-16T15:04:20+00:00 https://therecord.media/ukraine-cyberattacks-russia-google-tag-mandiant/ www.secnews.physaphae.fr/article.php?IdArticle=8310844 False Threat None 2.0000000000000000 Recorded Future - FLux Recorded Future If the iPhone in your pocket is any newer than an iPhone 8 (circa 2017), or you own an iPad Pro or third generation iPad Air, you need to update the software. The Cybersecurity and Infrastructure Security Agency (CISA) added four new bugs in Apple and Microsoft products to its list of known exploited vulnerabilities […]]> 2023-02-15T21:47:54+00:00 https://therecord.media/if-you-bought-an-iphone-after-2017-update-it-now-cisa-says/ www.secnews.physaphae.fr/article.php?IdArticle=8310627 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future More than 500 European organizations are dealing with new infections of the ESXiArgs ransomware, according to Censys]]> 2023-02-15T21:35:27+00:00 https://therecord.media/esxiargs-ransomware-new-infections-europe-censys/ www.secnews.physaphae.fr/article.php?IdArticle=8310628 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future The City of Oakland has declared a state of emergency one week after a ransomware attack hampered local government operations.  In a statement on Tuesday, interim City Administrator G. Harold Duffey said he was issuing the declaration “due to the ongoing impacts of the network outages resulting from the ransomware attack” that began February 8.  […]]> 2023-02-15T18:44:59+00:00 https://therecord.media/oakland-ransomware-emergency-declared/ www.secnews.physaphae.fr/article.php?IdArticle=8310582 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future A group calling itself "Anonymous Sudan" took credit on Telegram for knocking the SAS website offline and exposing some customer data.]]> 2023-02-15T18:32:01+00:00 https://therecord.media/scandinavian-airlines-cyberattack-anonymous-sudan/ www.secnews.physaphae.fr/article.php?IdArticle=8310583 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Two vulnerabilities affecting tools from Schneider Electric have been disclosed by the same researchers behind last year's “ICEFALL” findings]]> 2023-02-15T16:27:19+00:00 https://therecord.media/schneider-electric-modicon-vulnerabilities-forescout-icefall/ www.secnews.physaphae.fr/article.php?IdArticle=8310549 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future NHTSA said Hyundai and Kia are releasing software updates to block the kind of hotwiring shown in viral TikTok videos]]> 2023-02-15T13:35:39+00:00 https://therecord.media/hyundai-kia-anti-theft-software-response-tiktok-challenge/ www.secnews.physaphae.fr/article.php?IdArticle=8310486 False None None 4.0000000000000000 Recorded Future - FLux Recorded Future Organizations in the U.S. and elsewhere have been hit with the new MortalKombat ransomware, according to researchers at Cisco Talos]]> 2023-02-14T21:59:11+00:00 https://therecord.media/mortalkombat-ransomware-discovered-cisco-talos/ www.secnews.physaphae.fr/article.php?IdArticle=8310281 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Tonga’s state-owned telecommunications company has been hit with ransomware, it warned customers on Monday.  Tonga Communications Corporation (TCC) – one of two telecoms companies in the country – published a notice on Facebook saying the attack may slow down administrative operations. “Ransomware attack has been confirmed to encrypt and lock access to part of TCC's […]]> 2023-02-14T20:54:27+00:00 https://therecord.media/tonga-is-the-latest-pacific-island-nation-hit-with-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8310189 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Vladislav Klyushin, a Russian with possible Kremlin ties, was convicted of a hack-and-trade scheme that allegedly netted him millions]]> 2023-02-14T20:14:06+00:00 https://therecord.media/hack-and-trade-conviction-vladislav-klyushin-russia/ www.secnews.physaphae.fr/article.php?IdArticle=8310190 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Cryptocurrency exchanges Binance and Huobi froze accounts that contained $1.4 million worth of assets stolen from blockchain company Harmony last June. The platforms were notified about the funds by blockchain research company Elliptic, which managed to trace it through sanctioned cryptocurrency mixer Tornado Cash.  U.S. authorities said Tornado Cash was frequently used by hackers connected […]]> 2023-02-14T20:11:49+00:00 https://therecord.media/binance-huobi-freeze-some-cryptocurrency-stolen-in-100-million-harmony-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8310191 False Hack None 2.0000000000000000 Recorded Future - FLux Recorded Future The number of ransomware attacks on industrial infrastructure grew significantly in 2022, according to cybersecurity firm Dragos]]> 2023-02-14T18:53:13+00:00 https://therecord.media/dragos-ransomware-report-2022-ics-ot-lockbit/ www.secnews.physaphae.fr/article.php?IdArticle=8310146 False Ransomware,Industrial None 3.0000000000000000 Recorded Future - FLux Recorded Future The only Catholic historically Black college or university (HBCU) reported a data breach this week involving Social Security numbers and other personal information from more than 44,000 students and vendors. In filings with the office of Maine's attorney general, Xavier University of Louisiana said it suffered a cyberattack on November 22. “Xavier engaged cybersecurity experts […]]> 2023-02-14T18:48:40+00:00 https://therecord.media/louisiana-hbcu-says-personal-data-from-44000-students-accessed-in-november-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8310147 False Data Breach None 3.0000000000000000 Recorded Future - FLux Recorded Future A darkweb post by the ALPHV ransomware group purports to include employee records from Munster Technological University]]> 2023-02-14T13:48:55+00:00 https://therecord.media/alphv-blackcat-posted-data-ireland-munster-technical-university/ www.secnews.physaphae.fr/article.php?IdArticle=8310063 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Just in time for Valentine's Day, the Federal Trade Commission released its latest report on romance scams. Last year, it said some 70,000 people reported being on the receiving end of some lovelorn scheme and paid out something in the neighborhood of $1.3 billion. That's as much as the previous five years combined. Romance scams […]]> 2023-02-14T12:15:03+00:00 https://therecord.media/for-a-former-yahoo-boy-romance-is-a-cut-and-paste-proposition/ www.secnews.physaphae.fr/article.php?IdArticle=8310002 False None Yahoo 2.0000000000000000 Recorded Future - FLux Recorded Future Internet infrastructure company Cloudflare said that over the weekend it detected and mitigated the largest distributed denial-of-service (DDoS) attack ever recorded. The 71 million request-per-second (rps) DDoS attack is more than 35% larger than the previously reported record of 46 million rps in June 2022. Such attacks work by flooding targeted websites with junk traffic, […]]> 2023-02-13T23:02:31+00:00 https://therecord.media/cloudflare-says-it-stopped-largest-ddos-attack-on-record/ www.secnews.physaphae.fr/article.php?IdArticle=8309801 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future At first glance, the sweater looks like something from The Cosby Show: colorful swirls, crazy textures, a sort of abstract collage of greens, reds, yellows. But his knitwear has a secret mission: fooling facial recognition software.  Rachele Didero, the founder of Italian fashion tech startup Cap_able wanted her clothing and designs to “have a function” […]]> 2023-02-13T22:05:10+00:00 https://therecord.media/facial-recognitions-latest-foe-italian-knitwear/ www.secnews.physaphae.fr/article.php?IdArticle=8309784 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hackers from a previously unknown group called DarkBit demanded about $1.7 million from the Technion technical university.]]> 2023-02-13T21:03:20+00:00 https://therecord.media/technion-israel-ransomware-darkbit-exams-canceled/ www.secnews.physaphae.fr/article.php?IdArticle=8309774 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Domain name registrar and web hosting company Namecheap denied that its systems were breached after some customers received scam emails from the platform on Sunday evening.  In notices published on Twitter and on its website, the company explained that SendGrid – the system they use to send marketing emails and account information to customers – […]]> 2023-02-13T19:20:25+00:00 https://therecord.media/namecheap-denies-system-breach-after-email-service-used-to-spread-phishing-scams/ www.secnews.physaphae.fr/article.php?IdArticle=8309754 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The websites for the Philadelphia Orchestra and its home venue are still down days after they posted a notice saying they were dealing with a cyberattack.  On Friday, the orchestra and the Kimmel Center said ticket sales were affected by a cyberattack, without providing further details. A spokesperson for the Philadelphia Orchestra did not respond […]]> 2023-02-13T18:06:48+00:00 https://therecord.media/philadelphia-orchestra-kimmel-center-websites-down-after-cyberattack-cripples-ticket-sales/ www.secnews.physaphae.fr/article.php?IdArticle=8309685 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future All but two U.S. states and territories have applied for federal funding set aside last year to help local communities address cybersecurity issues, with Florida and South Dakota the notable exceptions.  As part of the $1.2 trillion infrastructure spending deal signed into law last year, $1 billion was allocated to state and local governments to […]]> 2023-02-13T13:49:32+00:00 https://therecord.media/all-but-florida-south-dakota-apply-for-federal-cyber-grants-allocated-by-infrastructure-bill/ www.secnews.physaphae.fr/article.php?IdArticle=8309390 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The City of Oakland confirmed reports that its networks had been hit with ransomware after rumors emerged online that several agencies were having issues with systems on Thursday.  City officials did not respond to requests for comment but released a statement on Friday afternoon saying the ransomware attack began on Wednesday night.  “The Information Technology […]]]> 2023-02-10T21:43:54+00:00 https://therecord.media/city-of-oakland-hit-with-ransomware-attack-but-says-core-functions-are-intact/ www.secnews.physaphae.fr/article.php?IdArticle=8309391 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Rapid7 said 18,581 VMware ESXi servers are still exposed to CVE-2021-21974 - a 2-year-old bug being exploited by the ESXiArgs ransomware]]> 2023-02-10T21:09:22+00:00 https://therecord.media/esxiargs-ransomware-vmware-more-than-18500-servers-still-vulnerable/ www.secnews.physaphae.fr/article.php?IdArticle=8309392 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Facilities within California's Heritage Provider Network reported a data breach related to a ransomware attack in December]]> 2023-02-10T19:45:08+00:00 https://therecord.media/ransomware-attack-leads-to-massive-data-breach-from-california-health-network/ www.secnews.physaphae.fr/article.php?IdArticle=8309393 False Ransomware,Data Breach,Guideline Heritage,Heritage 3.0000000000000000 Recorded Future - FLux Recorded Future Reddit, the popular discussion website with 50 million daily users, said hackers gained access to the company's source code as well as limited contact information for hundreds of current and former employees.  The incident began when unidentified attackers managed to steal employee credentials through a phishing website masquerading as Reddit's intranet portal. After obtaining the […]]> 2023-02-10T17:24:54+00:00 https://therecord.media/reddit-suffers-sophisticated-and-highly-targeted-phishing-attack-exposing-source-code/ www.secnews.physaphae.fr/article.php?IdArticle=8309394 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Maine government officials denied that a notorious hacking group breached their systems after the gang boasted of stealing information this week.  The GhostSec hacking group posted to Telegram on Thursday claiming that they stole 40 GB of data from Maine's government websites. The group provided a zip file of the data they stole.  But Sharon […]]]> 2023-02-10T13:00:00+00:00 https://therecord.media/maine-govt-says-state-systems-were-not-breached-despite-hacking-groups-claims/ www.secnews.physaphae.fr/article.php?IdArticle=8308872 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Mount Saint Mary College – a liberal arts college in New York – confirmed it experienced a ransomware attack in December after a cybercrime group publicly shared details about the incident this week.  The Vice Society ransomware gang, a group known for dozens of attacks on K-12 schools as well as colleges and universities, claimed […]]> 2023-02-09T22:25:22+00:00 https://therecord.media/mount-saint-mary-college-confirms-december-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8308750 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future When North Korea collects ransoms from healthcare facilities, the money could be funding operations against bigger targets, an advisory said]]> 2023-02-09T21:44:38+00:00 https://therecord.media/north-korea-hackers-funding-us-south-korea-advisory/ www.secnews.physaphae.fr/article.php?IdArticle=8308741 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Russia is waging a hybrid war not only in Ukraine but also throughout Europe, and Ukraine's neighbors and closest allies are bearing the brunt of it.  That is especially true in Moldova. In an interview with Euronews on Tuesday, Moldovan Prime Minister Natalia Gavrilița accused Russia of trying to destabilize the country by sponsoring protests […]]]> 2023-02-09T20:54:55+00:00 https://therecord.media/russias-cyberattacks-aimed-at-destabilizing-moldova-pm-says/ www.secnews.physaphae.fr/article.php?IdArticle=8308673 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Billion-dollar bookseller Indigo has been hit by a cyberattack that has severely limited their ability to fulfill orders.  In a message on its website, the company said it was attacked on Wednesday and is working with cybersecurity experts to resolve the situation. The website is down and their physical stores are unable to accept electronic […]]> 2023-02-09T19:21:56+00:00 https://therecord.media/canadian-book-giant-indigo-limited-to-cash-sales-by-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8308661 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Hackers are using tools from Geo Targetly to tailor phishing attacks to specific locations, according to research from Avanan]]> 2023-02-09T18:50:46+00:00 https://therecord.media/geo-targetly-geotargeting-phishing-avanan/ www.secnews.physaphae.fr/article.php?IdArticle=8308621 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Ukrainian refugees and their hosts should be on the lookout for fake letters that are part of a data-collection scam]]> 2023-02-09T15:42:46+00:00 https://therecord.media/ukrainian-refugees-poland-lithuania-uk-warning-data-collection-scam/ www.secnews.physaphae.fr/article.php?IdArticle=8308578 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future A previously unknown hacking group is using espionage tools to target Pakistan’s Navy, according to new research. Dmitry Bestuzhev, a threat Researcher at BlackBerry, told The Record that the group – which they named “NewsPenguin” – is a targeted attack group focused on militaries and the defense industry. The group used the upcoming Pakistan International […]]]> 2023-02-09T15:28:22+00:00 https://therecord.media/new-hacking-group-targets-pakistans-navy-and-maritime-industry/ www.secnews.physaphae.fr/article.php?IdArticle=8308579 False Threat None 2.0000000000000000 Recorded Future - FLux Recorded Future The sanctions documents formally link the Conti and Ryuk ransomware gangs and the Trickbot banking trojan to a single criminal organization]]> 2023-02-09T13:34:05+00:00 https://therecord.media/ransomware-sactions-conti-ryuk-trickbot-uk-us/ www.secnews.physaphae.fr/article.php?IdArticle=8308547 False Ransomware None 1.00000000000000000000 Recorded Future - FLux Recorded Future Revenues earned by darknet markets fell from $2.6 billion in 2021 to $1.3 billion in 2022, according to new research. Much of the decline was attributed by researchers at blockchain analysis firm Chainalysis to the shutdown of Hydra Market, which was taken down by law enforcement agencies in Germany and the U.S. in April 2022. […]]> 2023-02-09T13:00:00+00:00 https://therecord.media/darknet-market-revenue-plummeted-to-1-3-billion-in-2022/ www.secnews.physaphae.fr/article.php?IdArticle=8308532 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future In a series of videos posted on Twitter, Facebook and YouTube, Chinese state-aligned actors used AI-generated broadcasters to distribute content that promotes the interests of the Chinese Communist Party, according to a new report.  At first glance, the news presenters of the likely fictitious media company Wolf News look like real people, and researchers with […]]> 2023-02-09T03:03:33+00:00 https://therecord.media/deepfake-news-anchors-spread-chinese-propaganda-on-social-media/ www.secnews.physaphae.fr/article.php?IdArticle=8308445 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A new information-stealing malware named Graphiron is being used against a wide range of targets in Ukraine, according to new research. Researchers from Symantec declined to say which sorts of organizations are being targeted but confirmed that the attacks are being launched by an espionage group named Nodaria. They added that there is “limited evidence” […]]> 2023-02-08T21:17:09+00:00 https://therecord.media/new-info-stealing-malware-used-against-ukraine-organizations/ www.secnews.physaphae.fr/article.php?IdArticle=8308401 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future Hackers attempted last week to infect Ukrainian government computer systems with malware hosted on fake websites impersonating legitimate state services. Ukraine's computer emergency response team, CERT-UA, attributed the attack to a group called WinterVivern. The group has been active since at least June and includes Russian-speaking members. In addition to its Ukrainian targets, it has […]]> 2023-02-08T20:42:52+00:00 https://therecord.media/hackers-used-fake-websites-to-target-state-agencies-in-ukraine-and-poland/ www.secnews.physaphae.fr/article.php?IdArticle=8308365 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future Toyota said it remediated the vulnerability discovered by researcher Eaton Zveare. The company referred others to its bug disclosure platform.]]> 2023-02-08T19:41:06+00:00 https://therecord.media/toyota-says-no-evidence-malicious-access-eaton-zveare/ www.secnews.physaphae.fr/article.php?IdArticle=8308355 False Vulnerability None 3.0000000000000000 Recorded Future - FLux Recorded Future Internet traffic data showed that Twitter was totally inaccessible from with Turkey. The government has warned about disinformation.]]> 2023-02-08T18:54:09+00:00 https://therecord.media/turkey-twitter-blocked-earthquake/ www.secnews.physaphae.fr/article.php?IdArticle=8308341 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future CISA adapted work by two Turkish developers into a script for recovering files affected by ESXiArgs ransomware without having to decrypt them]]> 2023-02-08T17:14:52+00:00 https://therecord.media/esxiargs-ransomware-cisa-file-recovery-script/ www.secnews.physaphae.fr/article.php?IdArticle=8308319 False Ransomware None 4.0000000000000000 Recorded Future - FLux Recorded Future Activists who highlighted human rights abuses in Bahrain can sue the country's government for using the FinSpy, or FinFisher, spyware on them]]> 2023-02-08T15:10:03+00:00 https://therecord.media/finspy-finfisher-bahrain-activists-spyware-uk-high-court-ruling/ www.secnews.physaphae.fr/article.php?IdArticle=8308288 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Estonia's Välisluureamet says Ukraine probably surprised Russia with its adaptability when faced with war-related cyberattacks.]]> 2023-02-08T13:57:06+00:00 https://therecord.media/ukraine-cyber-resilience-russia-estonia-intelligence-report/ www.secnews.physaphae.fr/article.php?IdArticle=8308259 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The first Linux variant of the Clop ransomware was rife with issues that allowed researchers to create a decryptor tool for victims. SentinelOne researcher Antonis Terefos said his team observed the first Clop (also stylized as Cl0p) ransomware variant targeting Linux systems on December 26. Clop has existed since about 2019, targeting large companies, financial institutions, […]]> 2023-02-08T00:34:48+00:00 https://therecord.media/first-linux-variant-of-clop-ransomware-targeted-universities-colleges-but-was-flawed/ www.secnews.physaphae.fr/article.php?IdArticle=8308101 False Ransomware,Tool None 2.0000000000000000 Recorded Future - FLux Recorded Future A Russian man pleaded guilty on Monday in an Oregon court on charges related to laundering funds for the Ryuk ransomware group.  Denis Dubnikov was arrested in November 2021 in the Netherlands before being extradited to the U.S. last August. Prosecutors accused him, along with 13 co-conspirators whose names were redacted in a federal indictment, […]]> 2023-02-07T21:17:45+00:00 https://therecord.media/russian-crypto-exchange-exec-pleads-guilty-to-laundering-ryuk-ransomware-funds/ www.secnews.physaphae.fr/article.php?IdArticle=8308051 False Ransomware,Guideline None 3.0000000000000000 Recorded Future - FLux Recorded Future CISA said it helped dozens of hospitals respond to a series of DDoS attacks last week that were launched by a pro-Russian hacking group]]> 2023-02-07T21:07:51+00:00 https://therecord.media/ddos-hospitals-cisa-killnet-limited-effects/ www.secnews.physaphae.fr/article.php?IdArticle=8308033 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The U.S. House of Representatives on Monday passed a bill that would provide funding for cybersecurity research with a focus on protecting the country's energy infrastructure.  The Energy Cybersecurity University Leadership Act - inspired by the ransomware attack on Colonial Pipeline and several other incidents - proposes grants and other forms of funding to graduate […]]> 2023-02-07T19:19:38+00:00 https://therecord.media/energy-cybersecurity-university-leadership-act-passes-house/ www.secnews.physaphae.fr/article.php?IdArticle=8308024 False Ransomware,Guideline None 3.0000000000000000 Recorded Future - FLux Recorded Future The number of cybersecurity patent applications has skyrocketed over the past decade, with U.S. companies leading the way.  According to French software company IS Decisions, about 2,270 cybersecurity-related patents have been filed since the turn of the century. Nearly all – about 97% – have been filed since 2010, a year that marked a huge […]]> 2023-02-07T17:41:31+00:00 https://therecord.media/more-than-2000-cybersecurity-patent-applications-filed-since-2010-report/ www.secnews.physaphae.fr/article.php?IdArticle=8307991 False Guideline None 3.0000000000000000 Recorded Future - FLux Recorded Future President Joe Biden added several cybersecurity executives to the National Security Telecommunications Advisory Committee (NSTAC), which advises the White House on national security issues and emergency preparedness. Mandiant CEO Kevin Mandia, Rapid7 CEO Corey Thomas and Trellix CEO Bryan Palma were added to the committee alongside several other cybersecurity executives, including Microsoft Vice President of […]]> 2023-02-07T17:39:09+00:00 https://therecord.media/biden-adds-mandia-and-other-cybersecurity-execs-to-advisory-committee/ www.secnews.physaphae.fr/article.php?IdArticle=8307992 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Germany's interior ministry has announced the appointment of Claudia Plattner, formerly the director general for information systems at the European Central Bank (ECB), as its new cybersecurity chief. Plattner joins the Federal Office for Information Security (BSI) in the wake of a scandal left by its former president Arne Schönbohm, regarding accusations that he had […]]> 2023-02-07T16:28:35+00:00 https://therecord.media/germany-hires-new-cybersecurity-chief-in-wake-of-russian-scandal/ www.secnews.physaphae.fr/article.php?IdArticle=8307965 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hacking group UAC-0050 tried to deploy the remote management software Remcos in an effort to spy on government agencies, Ukraine said]]> 2023-02-07T16:08:53+00:00 https://therecord.media/remcos-spyware-ukraine-government-agencies-uac0050/ www.secnews.physaphae.fr/article.php?IdArticle=8307966 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The LockBit cybercriminals told the British mail service it has until February 9 to pay up to protect data apparently stolen in January]]> 2023-02-07T14:18:24+00:00 https://therecord.media/lockbit-ransomware-group-threatens-royal-mail-data-leak-deadline/ www.secnews.physaphae.fr/article.php?IdArticle=8307935 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Morgan Advanced Materials said its response to a cyberattack in January could cost as much as £12 million. Its shares took a 5 percent hit]]> 2023-02-07T13:58:28+00:00 https://therecord.media/morgan-advanced-materials-cyberattack-shares-drop/ www.secnews.physaphae.fr/article.php?IdArticle=8307916 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Munster Technological University (MTU) in Ireland announced on Monday that its campuses in Cork would be closed following a “significant IT breach and telephone outage.” “All classes, full-time and part-time, are cancelled” on both Tuesday and Wednesday, the university's statement said. A number of learning tools, including one called Canvas used to manage student assignments, […]]> 2023-02-07T13:12:44+00:00 https://therecord.media/all-classes-canceled-at-irish-university-as-it-announces-significant-it-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8307917 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Back in October, a day before President Xi Jinping was set to assume an unprecedented third term as general secretary of the Chinese Communist Party, an activist named Peng Lifa made his way to a highway overpass not far from one of China's key tech quarters. He was wearing a construction worker's outfit and was […]]> 2023-02-07T12:30:06+00:00 https://therecord.media/chinas-tech-weapons-roll-in-to-quell-demonstrations-identify-protesters/ www.secnews.physaphae.fr/article.php?IdArticle=8307897 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Nearly 20,000 students in West Virginia were forced to miss classes on Monday due to a cyberattack that crippled their school. Berkeley County Schools said on Friday it was experiencing an internet and phone outage on Friday and spent the weekend working through issues related to a cyberattack.  Superintendent Ronald Stephens wrote a note to […]]> 2023-02-06T23:20:31+00:00 https://therecord.media/west-virginia-students-returning-to-class-after-days-long-outage-following-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8307746 False General Information None 2.0000000000000000 Recorded Future - FLux Recorded Future It's unclear why BlackSprut was able to buy the Moscow billboard space, but Russia is known for some permissiveness toward darknet groups]]> 2023-02-06T21:24:18+00:00 https://therecord.media/blacksprut-darknet-drug-market-billboards-moscow/ www.secnews.physaphae.fr/article.php?IdArticle=8307645 False Legislation None 3.0000000000000000 Recorded Future - FLux Recorded Future Thousands of servers running an unpatched version of VMware's ESXi product are vulnerable to ransomware, researchers say]]> 2023-02-06T14:28:11+00:00 https://therecord.media/esxiargs-ransomware-vmware-servers/ www.secnews.physaphae.fr/article.php?IdArticle=8307548 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Vesuvius Plc confirmed that the incident “involved unauthorized access to our systems,” but it did not provide further details]]> 2023-02-06T13:45:02+00:00 https://therecord.media/vesuvius-plc-cyber-incident-steel-industry-supplier/ www.secnews.physaphae.fr/article.php?IdArticle=8307531 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The Cybersecurity and Infrastructure Security Agency (CISA) said two vulnerabilities from Oracle and SugarCRM are actively being exploited and ordered federal civilian agencies to patch them before February 23. On Thursday, CISA added CVE-2022-21587 – affecting Oracle’s E-Business suite – and CVE-2023-22952 – which affects multiple products from SugarCRM – to its Known Exploited Vulnerabilities […]]> 2023-02-03T21:50:38+00:00 https://therecord.media/cisa-adds-oracle-sugarcrm-bugs-to-exploited-vulnerabilities-list/ www.secnews.physaphae.fr/article.php?IdArticle=8307030 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Fortra issued a private advisory about the zero-day. Cyber researchers then highlighted the information. There's no mention of a patch]]> 2023-02-03T20:28:11+00:00 https://therecord.media/forta-goanywhere-mft-file-transfer-zero-day/ www.secnews.physaphae.fr/article.php?IdArticle=8307005 False Tool None 3.0000000000000000 Recorded Future - FLux Recorded Future For $120 per month, Passion allows customers to “customize” their DDoS incidents. The tool allegedly has been used against hospital websites]]> 2023-02-03T20:23:18+00:00 https://therecord.media/passion-botnet-customizable-pro-russia-hackers/ www.secnews.physaphae.fr/article.php?IdArticle=8307006 False Tool None 3.0000000000000000 Recorded Future - FLux Recorded Future The New York attorney general has ordered a spyware maker whose apps are marketed as tools for surveilling one's partner to pay a $410,000 fine and amend their business practices. Under Thursday's agreement with Patrick Hinchy, a Florida-based man whose 16 companies operate a constellation of spyware apps and services, the entities must alter practices […]]> 2023-02-03T20:19:07+00:00 https://therecord.media/new-york-attorney-general-fines-developer-of-stalking-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8307007 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A Tallahassee hospital has been forced to divert patients to other facilities and cancel all non-emergency surgical procedures after being hit by a cyberattack that began on Thursday night. Tallahassee Memorial HealthCare – one of the biggest hospitals serving a 21-county region in north Florida and south Georgia – said they have had to take their […]]> 2023-02-03T18:19:29+00:00 https://therecord.media/tallahassee-hospital-diverting-patients-canceling-non-emergency-surgeries-after-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8306940 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Microsoft says the data breach of Charlie Hebdo was retaliation for the satire publication's call for drawings of Iran's leader, Ali Khamenei.]]> 2023-02-03T16:53:57+00:00 https://therecord.media/charlie-hebdo-hacking-iran-microsoft/ www.secnews.physaphae.fr/article.php?IdArticle=8306899 False Data Breach,Guideline None 1.00000000000000000000 Recorded Future - FLux Recorded Future Julius Kivimäki was being sought in the investigation into a cyberattack targeting Vastaamo, a Helsinki-based private psychotherapy center.]]> 2023-02-03T14:49:36+00:00 https://therecord.media/julius-kivimaki-arrested-vastaamo-hack-finland/ www.secnews.physaphae.fr/article.php?IdArticle=8306871 False Legislation None 2.0000000000000000 Recorded Future - FLux Recorded Future The Russian group, known as Cold River, reportedly targeted the Brookhaven, Argonne and Lawrence Livermore labs in mid-2022]]> 2023-02-03T14:20:42+00:00 https://therecord.media/cold-river-hackers-national-laboratories-chairmen-doe-letter/ www.secnews.physaphae.fr/article.php?IdArticle=8306872 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future The University of Zurich, Switzerland's largest university, announced on Friday it was the target of a “serious cyberattack,” which comes amid a wave of hacks targeting German-speaking institutions. The university's website is currently inaccessible, but the phone line to the press office is working. In a statement sent to The Record, a spokesperson described the […]]> 2023-02-03T12:29:09+00:00 https://therecord.media/switzerlands-largest-university-confirms-serious-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8306847 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The North Korean military's notorious hacking arm – known as the Lazarus Group – has been accused of targeting public and private sector research organizations, an Indian medical research company and other businesses in the energy sector. Security analysts at WithSecure said they were called on to respond to a cyberattack that they initially tied to the […]]> 2023-02-02T21:04:29+00:00 https://therecord.media/hackers-linked-to-north-korea-targeted-indian-medical-org-energy-sector/ www.secnews.physaphae.fr/article.php?IdArticle=8306679 False Medical,Medical APT 38 3.0000000000000000 Recorded Future - FLux Recorded Future Nickolas Sharp's audacious insider attack on his then-employer involved data theft, a ransom demand and disinformation to the media]]> 2023-02-02T20:23:43+00:00 https://therecord.media/ubiquiti-nickolas-sharp-guilty-plea-data-extortion/ www.secnews.physaphae.fr/article.php?IdArticle=8306680 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Nearly $4 billion was stolen in cyberattacks on cryptocurrency platforms in 2022, fueled in large part by hackers working on behalf of the North Korean government. Blockchain research firm Chainalysis found that it was a banner year for hackers targeting cryptocurrency firms, with about $3.8 billion in total stolen from companies in the industry, up […]]> 2023-02-02T18:21:24+00:00 https://therecord.media/last-year-was-the-worst-on-record-for-crypto-hacks-as-north-korean-groups-cash-in/ www.secnews.physaphae.fr/article.php?IdArticle=8306656 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future QNAP is warning customers to update their devices after a vulnerability was discovered making thousands of devices susceptible to attack]]> 2023-02-02T15:54:42+00:00 https://therecord.media/qnap-new-vulnerability-hardware/ www.secnews.physaphae.fr/article.php?IdArticle=8306613 False Ransomware,Vulnerability None 2.0000000000000000 Recorded Future - FLux Recorded Future A data breach involving Vice Media leaked the sensitive information and financial data of more than 1,700 people, according to filings with Maine's Attorney General. In two separate filings on January 26 and 31, Vice Media said it was alerted in March 2022 that there was a cyberattack on its network.  The media company hired […]]> 2023-02-02T15:24:42+00:00 https://therecord.media/data-breach-at-vice-media-involved-ssns-financial-info/ www.secnews.physaphae.fr/article.php?IdArticle=8306614 False Data Breach None 2.0000000000000000 Recorded Future - FLux Recorded Future The Vice Society group apparently posted files that included safeguarding reports, which record information about at-risk students]]> 2023-02-02T13:57:35+00:00 https://therecord.media/vice-society-ransomware-guildford-school-student-data-extortion/ www.secnews.physaphae.fr/article.php?IdArticle=8306577 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Scammers were able to get two fraudulent apps onto the app stores run by both Google and Apple that allowed them to push users into making fake cryptocurrency investments, according to a new report.  Researchers from Sophos said they discovered Ace Pro and MBM_BitScan on both Google's Play Store and Apple's App Store. The apps […]]> 2023-02-02T13:48:50+00:00 https://therecord.media/scammers-managed-to-slip-crypto-apps-onto-apple-google-app-stores/ www.secnews.physaphae.fr/article.php?IdArticle=8306578 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The search is on for one of the most senior roles in British intelligence. U.K. intelligence community (UKIC) insiders believe that the departure of GCHQ's current director, Sir Jeremy Fleming, offers a good opportunity for the agency to bring in its first female executive. A handful of in-the-knows told The Record of more than half […]]]> 2023-02-02T07:30:00+00:00 https://therecord.media/heres-who-intelligence-insiders-tip-for-the-next-gchq-director/ www.secnews.physaphae.fr/article.php?IdArticle=8306484 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The Russian-sponsored hacker group known as Gamaredon continues to attack Ukrainian organizations and remains one of the “key cyber threats” for Ukraine's cyberspace, according to a report the Ukrainian government published Wednesday.  Ukraine claims that Gamaredon operates from the city of Sevastopol in Russia-occupied Crimea, but acts on orders from the FSB Center for Information […]]> 2023-02-01T20:59:46+00:00 https://therecord.media/russia-backed-hacker-group-gamaredon-attacking-ukraine-with-info-stealing-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8306370 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future The feds say GoodRx violated the Health Breach Notification Rule by selling health information to companies such as Google and Facebook]]> 2023-02-01T19:25:23+00:00 https://therecord.media/goodrx-ftc-fine-health-data-facebook-google-advertisting/ www.secnews.physaphae.fr/article.php?IdArticle=8306355 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A ransomware attack on Dublin-based software company ION Group has impacted the trading of financial derivatives on international markets. ION Group describes itself as enabling “financial institutions, central banks and corporations to digitize and automate their most business critical processes.” A pop-up notice on its site on Wednesday warned that “a cybersecurity event” that struck […]]> 2023-02-01T18:46:19+00:00 https://therecord.media/global-markets-impacted-by-ransomware-attack-on-financial-software-company/ www.secnews.physaphae.fr/article.php?IdArticle=8306323 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future The disruptions to school networks in Arizona and Massachusetts follow a string of similar K-12 ransomware incidents]]> 2023-02-01T17:12:21+00:00 https://therecord.media/k-12-schools-ransomware-tucson-nantucket/ www.secnews.physaphae.fr/article.php?IdArticle=8306304 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Scammers used a malicious DocuSign document in a campaign that tried to steal credentials belonging to more than 10,000 people across several organizations.  Researchers at cybersecurity company Armorblox said the brand impersonation campaign targeted Microsoft Office 365 email accounts and managed to bypass other security tools.  The subject of the emails was “Please DocuSign: Approve […]]> 2023-02-01T15:03:40+00:00 https://therecord.media/docusign-scam-targeted-more-than-10000-inboxes-report/ www.secnews.physaphae.fr/article.php?IdArticle=8306239 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Microsoft said it has notified customers impacted by a campaign that involved the abuse of the company's “verified publisher” status to allow access to a victim's cloud environments. Accounts can gain verified publisher status when an app publisher has verified their identity using their Microsoft Partner Network (MPN) account and has associated this MPN account […]]> 2023-02-01T14:09:58+00:00 https://therecord.media/microsoft-notifies-uk-customers-affected-by-hackers-abusing-verified-publisher-tag/ www.secnews.physaphae.fr/article.php?IdArticle=8306240 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hacker gangs often operate like businesses - they have salaries, working hours, clients and employees. To compete in a growing market, they are constantly looking for new talent with better skill sets, and they often use the same methods as legitimate tech companies and startups. The main difference is that cybercriminals do it in the […]]> 2023-01-31T22:05:22+00:00 https://therecord.media/report-developers-are-most-in-demand-on-dark-web/ www.secnews.physaphae.fr/article.php?IdArticle=8306007 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Distributed denial-of-service (DDoS) attacks by pro-Russian hacking groups are causing alarm in the U.S. and Denmark after several incidents affected websites of hospitals and government offices in both countries.  On Tuesday, Denmark announced that it was raising its cyber risk alert level after weeks of attacks on banks and the country's defense ministry.  “We are […]]> 2023-01-31T20:54:06+00:00 https://therecord.media/ddos-denmark-us-russia-killnet/ www.secnews.physaphae.fr/article.php?IdArticle=8305997 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future The LockBit ransomware group this week said it was responsible for a November ransomware attack on a public broadcasting affiliate in Sacramento, California. The high-profile cybercrime gang made the claim on the dark web site where it leaks victims’ data. The PBS station KVIE announced the attack on November 23, noting that some of its […]]> 2023-01-31T19:00:45+00:00 https://therecord.media/lockbit-takes-credit-kvie-pbs-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8305967 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Before Russia invaded Ukraine in February 2022, its law enforcement agencies carried out a series of arrests targeting prominent hacking groups and darknet forums including REvil, SkyFraud, Ferum Shop and Trump's Dumps. The crackdowns were touted as a demonstration of Russia's willingness to fight cybercrime and cooperate with foreign states in their investigations against Russia-linked […]]]> 2023-01-31T16:33:08+00:00 https://therecord.media/how-the-war-in-ukraine-has-strengthened-the-kremlins-ties-with-cybercriminals/ www.secnews.physaphae.fr/article.php?IdArticle=8305934 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future NFT Investments, a British company, worked through legal U.S. legal channels to freeze the digital assets wallet]]> 2023-01-31T14:24:32+00:00 https://therecord.media/nft-investments-restraining-order-digital-wallet-hacker/ www.secnews.physaphae.fr/article.php?IdArticle=8305904 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future An unnamed British government minister told the leader of Redcar and Cleveland Borough Council to keep quiet about the impact of a “catastrophic” ransomware attack two years ago, a parliamentary committee was told on Monday. The pressure from central government to not discuss the impact of the attack “caused us a lot of issues,” said […]]> 2023-01-31T14:01:13+00:00 https://therecord.media/british-government-minister-told-council-to-keep-quiet-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8305905 False Ransomware,Guideline None 2.0000000000000000 Recorded Future - FLux Recorded Future The Indianapolis Housing Agency is notifying more than 200,000 people that their information, including Social Security numbers and more, was leaked during a ransomware attack in that began in September.  The federally-funded agency is responsible for providing housing to low-income tenants across Indianapolis. It did not respond to requests for comment in October when the […]]> 2023-01-30T22:00:28+00:00 https://therecord.media/ransomware-attack-on-indianapolis-housing-agency-leaks-sensitive-info-on-200000-residents/ www.secnews.physaphae.fr/article.php?IdArticle=8305634 False Ransomware None 3.0000000000000000