This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-12T18:15:15+00:00 www.secnews.physaphae.fr Recorded Future - FLux Recorded Future QNAP is warning customers to update their devices after a vulnerability was discovered making thousands of devices susceptible to attack]]> 2023-02-02T15:54:42+00:00 https://therecord.media/qnap-new-vulnerability-hardware/ www.secnews.physaphae.fr/article.php?IdArticle=8306613 False Ransomware,Vulnerability None 2.0000000000000000 Recorded Future - FLux Recorded Future A data breach involving Vice Media leaked the sensitive information and financial data of more than 1,700 people, according to filings with Maine's Attorney General. In two separate filings on January 26 and 31, Vice Media said it was alerted in March 2022 that there was a cyberattack on its network.  The media company hired […]]> 2023-02-02T15:24:42+00:00 https://therecord.media/data-breach-at-vice-media-involved-ssns-financial-info/ www.secnews.physaphae.fr/article.php?IdArticle=8306614 False Data Breach None 2.0000000000000000 Recorded Future - FLux Recorded Future The Vice Society group apparently posted files that included safeguarding reports, which record information about at-risk students]]> 2023-02-02T13:57:35+00:00 https://therecord.media/vice-society-ransomware-guildford-school-student-data-extortion/ www.secnews.physaphae.fr/article.php?IdArticle=8306577 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Scammers were able to get two fraudulent apps onto the app stores run by both Google and Apple that allowed them to push users into making fake cryptocurrency investments, according to a new report.  Researchers from Sophos said they discovered Ace Pro and MBM_BitScan on both Google's Play Store and Apple's App Store. The apps […]]> 2023-02-02T13:48:50+00:00 https://therecord.media/scammers-managed-to-slip-crypto-apps-onto-apple-google-app-stores/ www.secnews.physaphae.fr/article.php?IdArticle=8306578 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The search is on for one of the most senior roles in British intelligence. U.K. intelligence community (UKIC) insiders believe that the departure of GCHQ's current director, Sir Jeremy Fleming, offers a good opportunity for the agency to bring in its first female executive. A handful of in-the-knows told The Record of more than half […]]]> 2023-02-02T07:30:00+00:00 https://therecord.media/heres-who-intelligence-insiders-tip-for-the-next-gchq-director/ www.secnews.physaphae.fr/article.php?IdArticle=8306484 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The Russian-sponsored hacker group known as Gamaredon continues to attack Ukrainian organizations and remains one of the “key cyber threats” for Ukraine's cyberspace, according to a report the Ukrainian government published Wednesday.  Ukraine claims that Gamaredon operates from the city of Sevastopol in Russia-occupied Crimea, but acts on orders from the FSB Center for Information […]]> 2023-02-01T20:59:46+00:00 https://therecord.media/russia-backed-hacker-group-gamaredon-attacking-ukraine-with-info-stealing-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8306370 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future The feds say GoodRx violated the Health Breach Notification Rule by selling health information to companies such as Google and Facebook]]> 2023-02-01T19:25:23+00:00 https://therecord.media/goodrx-ftc-fine-health-data-facebook-google-advertisting/ www.secnews.physaphae.fr/article.php?IdArticle=8306355 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A ransomware attack on Dublin-based software company ION Group has impacted the trading of financial derivatives on international markets. ION Group describes itself as enabling “financial institutions, central banks and corporations to digitize and automate their most business critical processes.” A pop-up notice on its site on Wednesday warned that “a cybersecurity event” that struck […]]> 2023-02-01T18:46:19+00:00 https://therecord.media/global-markets-impacted-by-ransomware-attack-on-financial-software-company/ www.secnews.physaphae.fr/article.php?IdArticle=8306323 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future The disruptions to school networks in Arizona and Massachusetts follow a string of similar K-12 ransomware incidents]]> 2023-02-01T17:12:21+00:00 https://therecord.media/k-12-schools-ransomware-tucson-nantucket/ www.secnews.physaphae.fr/article.php?IdArticle=8306304 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Scammers used a malicious DocuSign document in a campaign that tried to steal credentials belonging to more than 10,000 people across several organizations.  Researchers at cybersecurity company Armorblox said the brand impersonation campaign targeted Microsoft Office 365 email accounts and managed to bypass other security tools.  The subject of the emails was “Please DocuSign: Approve […]]> 2023-02-01T15:03:40+00:00 https://therecord.media/docusign-scam-targeted-more-than-10000-inboxes-report/ www.secnews.physaphae.fr/article.php?IdArticle=8306239 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Microsoft said it has notified customers impacted by a campaign that involved the abuse of the company's “verified publisher” status to allow access to a victim's cloud environments. Accounts can gain verified publisher status when an app publisher has verified their identity using their Microsoft Partner Network (MPN) account and has associated this MPN account […]]> 2023-02-01T14:09:58+00:00 https://therecord.media/microsoft-notifies-uk-customers-affected-by-hackers-abusing-verified-publisher-tag/ www.secnews.physaphae.fr/article.php?IdArticle=8306240 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hacker gangs often operate like businesses - they have salaries, working hours, clients and employees. To compete in a growing market, they are constantly looking for new talent with better skill sets, and they often use the same methods as legitimate tech companies and startups. The main difference is that cybercriminals do it in the […]]> 2023-01-31T22:05:22+00:00 https://therecord.media/report-developers-are-most-in-demand-on-dark-web/ www.secnews.physaphae.fr/article.php?IdArticle=8306007 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Distributed denial-of-service (DDoS) attacks by pro-Russian hacking groups are causing alarm in the U.S. and Denmark after several incidents affected websites of hospitals and government offices in both countries.  On Tuesday, Denmark announced that it was raising its cyber risk alert level after weeks of attacks on banks and the country's defense ministry.  “We are […]]> 2023-01-31T20:54:06+00:00 https://therecord.media/ddos-denmark-us-russia-killnet/ www.secnews.physaphae.fr/article.php?IdArticle=8305997 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future The LockBit ransomware group this week said it was responsible for a November ransomware attack on a public broadcasting affiliate in Sacramento, California. The high-profile cybercrime gang made the claim on the dark web site where it leaks victims’ data. The PBS station KVIE announced the attack on November 23, noting that some of its […]]> 2023-01-31T19:00:45+00:00 https://therecord.media/lockbit-takes-credit-kvie-pbs-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8305967 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Before Russia invaded Ukraine in February 2022, its law enforcement agencies carried out a series of arrests targeting prominent hacking groups and darknet forums including REvil, SkyFraud, Ferum Shop and Trump's Dumps. The crackdowns were touted as a demonstration of Russia's willingness to fight cybercrime and cooperate with foreign states in their investigations against Russia-linked […]]]> 2023-01-31T16:33:08+00:00 https://therecord.media/how-the-war-in-ukraine-has-strengthened-the-kremlins-ties-with-cybercriminals/ www.secnews.physaphae.fr/article.php?IdArticle=8305934 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future NFT Investments, a British company, worked through legal U.S. legal channels to freeze the digital assets wallet]]> 2023-01-31T14:24:32+00:00 https://therecord.media/nft-investments-restraining-order-digital-wallet-hacker/ www.secnews.physaphae.fr/article.php?IdArticle=8305904 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future An unnamed British government minister told the leader of Redcar and Cleveland Borough Council to keep quiet about the impact of a “catastrophic” ransomware attack two years ago, a parliamentary committee was told on Monday. The pressure from central government to not discuss the impact of the attack “caused us a lot of issues,” said […]]> 2023-01-31T14:01:13+00:00 https://therecord.media/british-government-minister-told-council-to-keep-quiet-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8305905 False Ransomware,Guideline None 2.0000000000000000 Recorded Future - FLux Recorded Future The Indianapolis Housing Agency is notifying more than 200,000 people that their information, including Social Security numbers and more, was leaked during a ransomware attack in that began in September.  The federally-funded agency is responsible for providing housing to low-income tenants across Indianapolis. It did not respond to requests for comment in October when the […]]> 2023-01-30T22:00:28+00:00 https://therecord.media/ransomware-attack-on-indianapolis-housing-agency-leaks-sensitive-info-on-200000-residents/ www.secnews.physaphae.fr/article.php?IdArticle=8305634 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future New York Republican Andrew Garbarino has been chosen as the new chairman of the House’s Cybersecurity, Infrastructure Protection and Innovation Subcommittee. With Republicans taking control of the House, experts were eagerly waiting for leadership to pick the successor to Democratic Rep. Yvette D. Clarke, another New Yorker who led the subcommittee when Democrats had the […]]]> 2023-01-30T20:31:27+00:00 https://therecord.media/andrew-garbarino-cybersecurity-subcommittee-chairman-house/ www.secnews.physaphae.fr/article.php?IdArticle=8305624 False Guideline None 3.0000000000000000 Recorded Future - FLux Recorded Future The Transportation Security Administration has issued a security directive to all U.S. airports and air carriers warning them about the need for more stringent cybersecurity protections following last week's revelation that the federal “no-fly” list had been leaked. Outrage has grown since a Swiss national published a blog post earlier this month explaining that a […]]]> 2023-01-30T18:41:04+00:00 https://therecord.media/no-fly-list-breach-tsa-domestic-airlines-warning/ www.secnews.physaphae.fr/article.php?IdArticle=8305602 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Russia's deputy foreign minister claimed this weekend that the country has been the target of “coordinated aggression” in cyberspace conducted by “intelligence agencies, transnational IT corporations, and hacktivists.” Oleg Syromolotov, a former deputy director and counterintelligence chief for the Russian Federal Security Service (FSB), told the TASS news agency that “in 2022, Russia faced unprecedented […]]]> 2023-01-30T14:38:35+00:00 https://therecord.media/russian-foreign-ministry-claims-to-be-the-target-of-coordinated-cyber-aggression/ www.secnews.physaphae.fr/article.php?IdArticle=8305550 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future British sportswear retailer JD Sports announced Monday that data belonging to approximately 10 million unique customers was compromised in a cyberattack that began last decade. Names, billing and delivery addresses, as well as emails, phone numbers and order details are among the information accessed by hackers between November 2018 and October 2020. The company did […]]> 2023-01-30T14:28:49+00:00 https://therecord.media/british-retailer-jd-sports-reveals-2-year-old-intrusion-affecting-data-of-10-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8305551 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Editor's note: Ukraine's Cyber Police had a busy year in 2022. The law enforcement agency typically focuses its efforts on online fraud, scams, and other forms of financially-motivated cybercrime. But when Russia invaded Ukraine in February, the Cyber Police started seeing a surge in new types of attacks. Yurii Vykhodets, who leads the department, said […]]]> 2023-01-30T01:57:59+00:00 https://therecord.media/how-ukraines-cyber-police-fights-fraud-scams-and-attacks-on-critical-infrastructure/ www.secnews.physaphae.fr/article.php?IdArticle=8305405 False Guideline None 2.0000000000000000 Recorded Future - FLux Recorded Future The Russian cyber-espionage group known as Gamaredon may have been behind a phishing attack on Latvia’s Ministry of Defense last week, the ministry told The Record on Friday. Hackers sent malicious emails to several employees of the ministry, pretending to be Ukrainian government officials. The attempted cyberattack was unsuccessful, the ministry added.  The sample of […]]> 2023-01-29T00:06:41+00:00 https://therecord.media/latvia-confirms-phishing-attack-on-ministry-of-defense-linking-it-to-russian-hacking-group/ www.secnews.physaphae.fr/article.php?IdArticle=8305212 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Researchers are split on whether someone could hack into the New York Times' massively popular game Wordle and change the daily word users are forced to figure out. In a blog post last month, Noname Security's David Thomason said the the entire list of daily Wordles for the next few months could be discovered by […]]> 2023-01-28T11:28:51+00:00 https://therecord.media/could-hackers-change-the-daily-wordle-researchers-are-torn/ www.secnews.physaphae.fr/article.php?IdArticle=8305132 False Hack None 3.0000000000000000 Recorded Future - FLux Recorded Future Telecommunications company Charter Communications said one of its third-party vendors suffered from a security breach after data from the company showed up on a hacking forum. On Thursday, a forum user posted information allegedly stolen from the company that included names, account numbers, addresses and more for about 550,000 customers.  “We are aware of the […]]> 2023-01-27T23:21:42+00:00 https://therecord.media/telecom-giant-charter-communications-says-third-party-vendor-had-security-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8305017 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Following the posting of an alleged database of customer information on a hacker forum, Target is denying that the data being sold on the dark web is current and says that the information was not taken directly from its systems.  On Thursday, the hacker posted the trove, which contains names, addresses, and transaction information, purportedly […]]]> 2023-01-27T20:59:34+00:00 https://therecord.media/target-says-data-sold-on-dark-web-is-outdated-likely-released-by-third-party/ www.secnews.physaphae.fr/article.php?IdArticle=8304986 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The Justice Department’s splashy announcement of the takedown of the Hive ransomware group’s infrastructure on Thursday was reminiscent of other recent high-profile operations against the scourge of ransomware. But the details of the operation set it apart from other ransomware group takedowns in recent years. FBI Director Christopher Wray said agents with the FBI's Tampa […]]> 2023-01-27T20:45:09+00:00 https://therecord.media/ransomware-experts-laud-hive-takedown-but-question-impact-without-arrests/ www.secnews.physaphae.fr/article.php?IdArticle=8304987 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future The notorious state-backed Russian hacking group known as Sandworm may be behind new malware targeting Ukraine, according to research published Friday by cybersecurity company ESET. Malware called SwiftSlicer hit one organization in Ukraine before it was discovered by the Slovakia-based firm this week. The researchers cannot disclose the name of the affected organization and don’t […]]> 2023-01-27T19:40:02+00:00 https://therecord.media/sandworm-swiftslicer-malware-ukraine-russia-eset/ www.secnews.physaphae.fr/article.php?IdArticle=8304899 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future The United Kingdom's Cabinet Secretary Simon Case has ruled himself out of a potentially scandalous bid to take over the reins at spy agency GCHQ. Case, who is the most senior member of Britain's civil service, had been touted as a potential applicant for the role by several sources with connections to the cyber and […]]> 2023-01-27T14:38:47+00:00 https://therecord.media/simon-case-rules-himself-out-of-potentially-scandalous-bid-for-gchq-director-role/ www.secnews.physaphae.fr/article.php?IdArticle=8304830 False General Information None 3.0000000000000000 Recorded Future - FLux Recorded Future A school in Guildford, southwest of London, has confirmed that a cyberattack is responsible for knocking out its phone lines and impacting the school's IT systems. Guildford County School, a specialist music academy with over 1,000 students, first announced IT issues on Twitter on January 19. At the time its headteacher Steve Smith said the […]]> 2023-01-27T14:29:39+00:00 https://therecord.media/guildford-county-school-cyberattack-britain/ www.secnews.physaphae.fr/article.php?IdArticle=8304831 False General Information None 3.0000000000000000 Recorded Future - FLux Recorded Future Russian telecommunications regulator Roskomnadzor blocked access to the U.S. State Department's Rewards for Justice website on Friday, alongside the sites for the Central Intelligence Agency and the Federal Bureau of Investigation. The restrictions were first reported by the Russian newspaper Kommersant. Interfax later quoted Roskomnadzor as explaining that the blocks were put in place because […]]> 2023-01-27T13:37:41+00:00 https://therecord.media/russia-blocks-access-to-us-rewards-for-justice-fbi-and-cia-websites/ www.secnews.physaphae.fr/article.php?IdArticle=8304807 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Large companies in East Asia are being attacked with an open source tool named SparkRAT, according to a new report.  Researchers from SentinelLabs told The Record that they have been tracking a hacking group named “DragonSpark” since October due to its frequent attacks on large companies, which they did not name, and its ability to […]]> 2023-01-26T21:30:32+00:00 https://therecord.media/large-east-asian-companies-attacked-with-sparkrat-open-source-tool/ www.secnews.physaphae.fr/article.php?IdArticle=8304372 False Tool None 2.0000000000000000 Recorded Future - FLux Recorded Future The Cybersecurity and Infrastructure Security Agency's (CISA) Joint Cyber Defense Collaborative (JCDC) will be focusing this year on beefing up security in the energy sector and leading the effort to update the National Cyber Incident Response Plan, according to the body’s planning agenda. Announced in 2021, the JCDC is an initiative spearheaded by CISA Director […]]> 2023-01-26T20:15:18+00:00 https://therecord.media/cisas-joint-cyber-defense-collaborative-to-tackle-energy-water-security-in-2023/ www.secnews.physaphae.fr/article.php?IdArticle=8304363 False Guideline None 2.0000000000000000 Recorded Future - FLux Recorded Future The FBI and Justice Department took down the infrastructure of the Hive ransomware group on Thursday, announcing that their agents had been inside the group's systems since July 2022. FBI Director Christopher Wray said agents gained “clandestine, persistent access” to the control panel used by Hive operators seven months ago, allowing them to identify victims […]]> 2023-01-26T17:25:14+00:00 https://therecord.media/we-hacked-the-hackers-doj-fbi-take-down-hive-ransomware-after-spending-months-inside-gang-systems/ www.secnews.physaphae.fr/article.php?IdArticle=8304256 False Ransomware None 4.0000000000000000 Recorded Future - FLux Recorded Future GCHQ, Britain's cyber and signals intelligence agency, is searching for a new director, following the announcement on Thursday that Sir Jeremy Fleming would be leaving. In a statement, the agency said: “In line with normal practice, there will be an internal civil service competition to identify a successor. Sir Jeremy and the Board will continue […]]> 2023-01-26T16:44:17+00:00 https://therecord.media/britains-cyber-intel-agency-gchq-to-start-search-for-new-director-as-fleming-signals-departure/ www.secnews.physaphae.fr/article.php?IdArticle=8304243 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Google says it shut down more than 50,000 accounts promoting pro-People's Republic of China (PRC) disinformation in 2022 that focused on Taiwan, COVID-19 and U.S. politics.  The takedowns are the latest salvo in an ongoing battle between Google and a campaign it has named “Dragonbridge.”  Since 2019, the company says has shut down more than […]]> 2023-01-26T16:19:08+00:00 https://therecord.media/google-shut-down-thousands-of-pro-chinese-govt-disinformation-channels-on-taiwan-covid-19/ www.secnews.physaphae.fr/article.php?IdArticle=8304244 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Royal Mail is close to resuming full operations just two weeks after a ransomware attack caused “severe service disruption,” marking a victory for British cyber authorities who have stressed the importance of recovery as well as resistance to combat the impact of attacks. The British postage and courier company's ability to dispatch parcels and letters […]]> 2023-01-26T13:48:34+00:00 https://therecord.media/royal-mail-nearly-back-to-full-operations-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8304199 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Stock market data giant Zacks Investment Research is sending out breach notification letters to 820,000 people after discovering a breach that lasted nearly one year. In filings with the Maine Attorney General's office, the company revealed that it suffered a breach that lasted from November 2021 to August 2022. The company did not respond to […]]> 2023-01-26T01:04:11+00:00 https://therecord.media/820000-people-affected-by-zacks-investment-research-breach-from-november-2021/ www.secnews.physaphae.fr/article.php?IdArticle=8304083 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Two separate but similar espionage campaigns from Russian and Iranian-linked groups have prompted a warning from Britain's National Cyber Security Centre. In a document published on Thursday local time the NCSC warned how instead of sending surprise phishing emails, the hacking groups – identified as “Russia-based” SEABORGIUM and “Iran-based” APT42, or Charming Kitten – are […]]> 2023-01-26T00:01:00+00:00 https://therecord.media/british-cyber-agency-issues-warning-over-russian-and-iranian-espionage-campaigns/ www.secnews.physaphae.fr/article.php?IdArticle=8304084 False Conference APT 35,APT 42 2.0000000000000000 Recorded Future - FLux Recorded Future Researchers from Akamai have released a proof-of-concept for a vulnerability affecting a Microsoft tool that allows the Windows' application programming interface to deal with cryptography.  The vulnerability, CVE-2022-34689, was discovered by the United Kingdom’s National Cyber Security Centre and the National Security Agency. It affects a tool called CryptoAPI and allows an attacker to masquerade […]]> 2023-01-25T21:43:55+00:00 https://therecord.media/exploit-released-for-microsoft-bug-allowing-attacker-to-masquerade-as-legitimate-entity/ www.secnews.physaphae.fr/article.php?IdArticle=8304055 False Tool,Vulnerability None 2.0000000000000000 Recorded Future - FLux Recorded Future At least two federal civilian agencies were exploited by cybercriminals as part of a refund scam campaign perpetrated through the use of remote monitoring and management (RMM) software. The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency, and Multi-State Information Sharing and Analysis Center (MS-ISAC) said on Wednesday they discovered the campaign in October. […]]> 2023-01-25T20:44:28+00:00 https://therecord.media/cisa-says-federal-agencies-attacked-in-refund-scam-through-remote-management-software/ www.secnews.physaphae.fr/article.php?IdArticle=8304043 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hackers connected to the North Korean military used a variety of new phishing methods in 2022 to steal cryptocurrency, according to a new report from Proofpoint. The hackers bombarded people with emails about fake job opportunities at prestigious firms or fictitious salary increases as a way to get people to open emails carrying malware that […]]> 2023-01-25T17:12:26+00:00 https://therecord.media/north-korean-hackers-use-fake-job-offers-salary-bumps-as-lure-for-crypto-theft/ www.secnews.physaphae.fr/article.php?IdArticle=8304013 False Malware None 2.0000000000000000 Recorded Future - FLux Recorded Future The FBI accused the notorious North Korean hacker group Lazarus of stealing $100 million from a United States-based cryptocurrency firm last year.  During a crypto heist at the end of June, Lazarus allegedly hacked Horizon Bridge, a service that allows people to move virtual assets between different blockchain networks and is owned by the blockchain […]]> 2023-01-25T17:09:47+00:00 https://therecord.media/fbi-north-korean-hacking-group-lazarus-behind-100-million-crypto-heist/ www.secnews.physaphae.fr/article.php?IdArticle=8304014 False None APT 38 2.0000000000000000 Recorded Future - FLux Recorded Future Russia's private businesses and state services faced a record number of distributed denial-of-service (DDoS) attacks last year, fueled by pro-Ukrainian hackers, according to a report published this week by Russia's largest telecom provider Rostelecom. At the beginning of the war, DDoS attacks against Russia were massive and unsophisticated, according to cybersecurity experts. But throughout 2022 […]]> 2023-01-25T16:35:42+00:00 https://therecord.media/russia-suffered-record-number-of-ddos-attacks-last-year-report/ www.secnews.physaphae.fr/article.php?IdArticle=8303999 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hotel giant Hilton denied that it has been hacked after cybercriminals claimed to have breached the company's systems and stolen data related to 3.7 million customers. On Monday, hackers said they stole a database from 2017 consisting of information from customers enrolled in the Hilton Hotel Honors program. The information in the database includes names, […]]> 2023-01-25T13:54:59+00:00 https://therecord.media/hilton-denies-hack-after-data-from-3-7-million-honors-customer-offered-for-sale/ www.secnews.physaphae.fr/article.php?IdArticle=8303960 False Hack None 4.0000000000000000 Recorded Future - FLux Recorded Future Language learning platform DuoLingo said it is investigating a post on a hacking forum offering information on 2.6 million customer accounts for $1,500. A spokesperson for the company said they are aware of the post, which was created on Tuesday morning and offers emails, phone numbers, courses taken and other information on how customers use […]]> 2023-01-24T21:27:31+00:00 https://therecord.media/duolingo-investigating-dark-web-post-offering-data-from-2-6-million-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8303805 False None None 4.0000000000000000 Recorded Future - FLux Recorded Future Several U.S. Senators criticized Ticketmaster during a Judiciary Committee hearing on Tuesday for only reporting one case of bot abuse to the Federal Trade Commission despite previous claims that the company was dealing with unprecedented attacks by resellers using automated tools.  Companies like Ticketmaster can report bot abuse to the FTC following the passage of […]]> 2023-01-24T20:47:52+00:00 https://therecord.media/senators-slam-ticketmaster-for-reporting-just-one-bot-case-to-ftc-despite-taylor-swift-fiasco-claims/ www.secnews.physaphae.fr/article.php?IdArticle=8303795 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Multibillion-dollar software-as-a-service provider GoTo said hackers stole an encryption key for customer-owned backups during a November cyberattack. In a statement this week, GoTo CEO Paddy Srinivasan said the November cyberattack involved the exfiltration of data from a third-party cloud storage service related to several of their products. “The affected information, which varies by product, may […]]> 2023-01-24T18:56:09+00:00 https://therecord.media/goto-says-hackers-stole-encrypted-backups-during-november-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8303772 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Riot Games, the video game developer and esports organizer, said on Tuesday that it had received a ransom email following a social engineering attack last week. “Needless to say, we won't pay,” the company's official Twitter account announced. When the incident was disclosed, Riot Games said that multiple systems in its development environment had been […]]> 2023-01-24T15:57:03+00:00 https://therecord.media/riot-games-receives-ransom-email-for-stolen-source-code-following-social-engineering-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8303723 False None None 1.00000000000000000000 Recorded Future - FLux Recorded Future An Ohio town is investigating a cyberattack that has brought down the systems used by their court and may have accessed sensitive data. Circleville Municipal Court told The Record that it recently discovered a cyberattack requiring its IT department to work with outside cybersecurity professionals.  A spokesperson would not confirm whether the incident involved ransomware […]]> 2023-01-24T14:51:01+00:00 https://therecord.media/ohio-town-working-to-restore-municipal-court-systems-after-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8303701 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Pakistani authorities are investigating whether a nationwide blackout which left millions of people without power on Monday was caused by a cyberattack. The country's energy minister Khurram Dastgir Khan told journalists during a news conference on Tuesday morning that there was a “remote chance” the incident was caused by hackers. Cyberattacks on energy grids are […]]> 2023-01-24T14:41:02+00:00 https://therecord.media/pakistani-authorities-investigating-if-cyberattack-caused-nationwide-blackout/ www.secnews.physaphae.fr/article.php?IdArticle=8303702 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future This week, Axon, the company that developed the Taser, is hosting a conference in Las Vegas called TaserCon. The event is billed as an opportunity to talk about law enforcement and public safety. Axon is expected to use the occasion to reintroduce a controversial plan: putting stun gun-equipped drones in schools to prevent mass shootings. […]]> 2023-01-24T06:33:02+00:00 https://therecord.media/exclusive-axon-still-wants-to-put-taser-drones-in-your-kids-school/ www.secnews.physaphae.fr/article.php?IdArticle=8303617 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future A Republican congressman on the House Committee on Homeland Security is seeking answers about last week’s hack of regional airline CommuteAir, which led to the exposure of a copy of the federal no-fly list from 2019.  Alarm has grown since the researcher behind the hack, a Swiss national who goes by maia arson crimew, published […]]> 2023-01-24T02:19:28+00:00 https://therecord.media/congressman-coming-for-answers-after-no-fly-list-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8303591 False Hack None 2.0000000000000000 Recorded Future - FLux Recorded Future Video game developer and esports organizer Riot Games was affected by a social engineering cyberattack last week, the company announced on January 20. The attack, which compromised multiple systems, affects the company's ability to release content, as well as other operations at the company, including patching. A senior official at Riot Games clarified that the […]]> 2023-01-23T18:03:58+00:00 https://therecord.media/riot-games-to-pause-updates-after-social-engineering-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8303514 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The Los Angeles Unified School District (LAUSD) sent out breach notification letters to an unknown number of contractors in recent days notifying them that sensitive information – including Social Security numbers – was leaked during a wide-ranging cyberattack last year.  The school district said an investigation revealed that from July 31 until September 3 hackers […]]> 2023-01-23T16:27:09+00:00 https://therecord.media/los-angeles-unified-school-district-confirms-ssns-leaked-in-september-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8303444 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future An international counter-ransomware task force first announced at a White House event in November officially commenced operations on Monday, according to the Australian government which is the inaugural chair of the group. The International Counter Ransomware Task Force's (ICRTF) operations are intended to drive collaboration among a coalition of 36 member states and the European […]]> 2023-01-23T14:14:16+00:00 https://therecord.media/international-counter-ransomware-task-force-kicks-off/ www.secnews.physaphae.fr/article.php?IdArticle=8303420 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Sensitive personal data allegedly stolen from Arnold Clark, one of the United Kingdom's largest car dealerships, has been posted online by the PLAY ransomware group. The company had claimed in a Tweet on January 3 to have protected customer data after it discovered suspicious traffic on its network back in December, although it did not […]]> 2023-01-23T14:03:32+00:00 https://therecord.media/play-ransomware-group-claims-attack-on-arnold-clark-one-of-britains-largest-car-dealerships/ www.secnews.physaphae.fr/article.php?IdArticle=8303403 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future When Jim Langevin entered Congress in 2001, cybersecurity was barely on the radar for most lawmakers. But a drumbeat of hacks and escalating digital threats prompted Langevin, who this year left office after 22 years representing Rhode Island's 2nd congressional district, to help create the House Cybersecurity Caucus in 2008. As its co-chair, Langevin both […]]]> 2023-01-23T04:59:00+00:00 https://therecord.media/jim-langevin-on-how-congress-has-come-a-long-way-from-where-we-first-started-on-cyber/ www.secnews.physaphae.fr/article.php?IdArticle=8303320 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Suspected Chinese hackers have been targeting a European government entity and African managed service provider with new custom malware. According to a report released by Mandiant on Thursday, hackers exploited a recently patched vulnerability - CVE-2022-42475 - in FortiOS, an operating system developed by U.S. cybersecurity company Fortinet, as a zero-day. The exploitation occurred as […]]> 2023-01-21T13:37:00+00:00 https://therecord.media/suspected-chinese-hackers-exploit-vulnerability-in-fortinet-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8303093 False Vulnerability None 3.0000000000000000 Recorded Future - FLux Recorded Future A wide-ranging cyberattack on the Qulliq Energy Corporation (QEC) in Canada's Nunavut territory has crippled the company's administrative offices. Officials with the company said the attack started on January 15 and while power plants are still operating normally, computer systems at the corporation's customer care and administrative offices are unavailable. The company cannot accept bill […]]> 2023-01-20T20:56:26+00:00 https://therecord.media/cyberattack-on-nunavut-energy-supplier-limits-company-operations/ www.secnews.physaphae.fr/article.php?IdArticle=8302923 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Ukraine has taken another step to deepen its cooperation with NATO in the cybersecurity field as its war with Russia - both kinetic and digital - approaches the one-year mark. On Thursday, Ukraine signed an agreement to join the Estonia-based NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE). Before it is official, all of CCDCOE's […]]> 2023-01-20T20:48:37+00:00 https://therecord.media/ukraine-signs-agreement-to-join-nato-cyber-defense-center/ www.secnews.physaphae.fr/article.php?IdArticle=8302924 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Hospital technology giant NextGen Healthcare said it is responding to a cyberattack after a notorious ransomware group added the company to its list of victims.  The multibillion-dollar healthcare giant produces electronic health record (EHR) software and practice management systems for hundreds of the biggest hospitals and clinics in the U.S., U.K., India and Canada. On […]]> 2023-01-20T20:13:31+00:00 https://therecord.media/electronic-health-record-giant-nextgen-dealing-with-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8302925 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Samsung is investigating a potential cyberattack and data breach on an internal employee platform and several systems in South Korea.  On Tuesday, a group of hackers going by the name “Genesis Day” claimed it attacked Samsung's offices in South Korea because of the country's recent opening of a mission to the North Atlantic Treaty Organization […]]> 2023-01-20T18:28:54+00:00 https://therecord.media/samsung-investigating-claims-of-hack-on-south-korea-systems-internal-employee-platform/ www.secnews.physaphae.fr/article.php?IdArticle=8302892 False Data Breach,Hack None 2.0000000000000000 Recorded Future - FLux Recorded Future T-Mobile, one of the largest wireless network operators in the United States, said on Thursday that it was investigating a data breach involving 37 million customer accounts. In a disclosure notice filed to the U.S. Securities and Exchange Commission, the company explained the breach was discovered after it identified malicious activity on its networks on […]]> 2023-01-20T13:09:07+00:00 https://therecord.media/t-mobile-confirms-another-data-breach-affecting-37-million-customer-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8302835 False Data Breach None 1.00000000000000000000 Recorded Future - FLux Recorded Future Costa Rica's government has suffered another ransomware attack just months after several ministries were crippled in a wide-ranging attack by hackers using the Conti ransomware. On Tuesday, Costa Rica's Ministry of Public Works and Transport (MOPT) said in a statement that 12 of its servers were encrypted. Cybersecurity experts from the National Security Directorate and […]]> 2023-01-20T10:30:43+00:00 https://therecord.media/costa-ricas-ministry-of-public-works-and-transport-crippled-by-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8302777 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Researchers at cybersecurity firm Rapid7 have observed exploitation of a vulnerability affecting two dozen ManageEngine products from software company Zoho. The bug – CVE-2022-47966 – was patched in waves starting on October 27, with the last product receiving a patch on November 7. Discovered by a researcher from Viettel Cyber Security, the vulnerability allows an […]]> 2023-01-19T21:11:22+00:00 https://therecord.media/hackers-exploiting-vulnerability-affecting-zoho-manageengine-products-rapid7/ www.secnews.physaphae.fr/article.php?IdArticle=8302673 False Vulnerability None 2.0000000000000000 Recorded Future - FLux Recorded Future PayPal is sending out breach notification letters to nearly 35,000 customers after a December 6 credential stuffing attack allowed hackers to access names, addresses, Social Security Numbers, individual tax identification numbers and dates of birth. The company reported the breach, which occurred from December 6 to December 8, to Maine's Attorney General. On December 20, […]]> 2023-01-19T19:35:58+00:00 https://therecord.media/nearly-35000-paypal-users-had-ssns-tax-info-leaked-during-december-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8302635 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future On January 12, Canadian alcohol retail giant LCBO announced that an “unauthorized party embedded malicious code” onto its website in order to steal information from customers in the process of checking out. Over five days in January, they wrote, customers “may have had their information compromised.” In fact, the infection was one of several to […]]]> 2023-01-19T19:17:18+00:00 https://therecord.media/canadas-largest-alcohol-retailer-infected-with-card-skimming-malware-twice-since-december/ www.secnews.physaphae.fr/article.php?IdArticle=8302636 False Malware None 3.0000000000000000 Recorded Future - FLux Recorded Future The Republic of Ireland's privacy regulator announced on Thursday that it would be taking the European Union's data protection board to court to challenge what it says is unlawful interference. Ireland's Data Protection Commissioner (DPC) made its complaint about the European Data Protection Board (EDPB) alongside an announcement that it had concluded a five-year investigation […]]> 2023-01-19T15:16:38+00:00 https://therecord.media/irish-privacy-regulator-to-take-european-union-body-to-court-over-unlawful-interference/ www.secnews.physaphae.fr/article.php?IdArticle=8302580 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A ransomware attack closed nearly 300 fast-food restaurants in the United Kingdom, according to a statement from Yum! Brands published late Wednesday evening. Yum! Brands, an American company which owns KFC, Pizza Hut and Taco Bell, stated “certain information technology systems” were impacted in the incident. Data was taken from the company's network, the statement […]]> 2023-01-19T14:08:02+00:00 https://therecord.media/ransomware-attack-hits-nearly-300-fast-food-restaurants-in-uk-including-kfc-and-pizza-hut/ www.secnews.physaphae.fr/article.php?IdArticle=8302544 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Royal Mail, the British postage and courier company, said on Wednesday evening it was “trialing operational workarounds” to get services moving again following a suspected ransomware attack. The company announced it had been impacted by a “cyber incident” last week, although it has not confirmed that the incident was a ransomware attack. The Record has […]]> 2023-01-19T13:24:22+00:00 https://therecord.media/royal-mail-trials-operational-workarounds-following-suspected-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8302545 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Revenues brought in from ransomware attacks fell from $765.6 million in 2021 to $456.8 million in 2022, according to a new report. Experts from blockchain research firm Chainalysis attributed the drop to a variety of factors, most notably that more victims are simply refusing to pay up when threatened by criminal groups.  The company tracks […]]> 2023-01-19T13:00:00+00:00 https://therecord.media/ransomware-revenue-fell-by-300-million-in-2022-as-more-victims-refuse-to-pay-report/ www.secnews.physaphae.fr/article.php?IdArticle=8302546 False Ransomware None 4.0000000000000000 Recorded Future - FLux Recorded Future Solaris, one of the leading darknet drug marketplaces, has been taken over by its rival, according to research released this week. Users who tried to access Solaris after January 13 were redirected to the recently-launched Russian language drug marketplace known as Kraken, which claimed to have successfully taken over Solaris' infrastructure, GitLab repository and project […]]> 2023-01-19T12:26:38+00:00 https://therecord.media/russia-linked-drug-marketplace-solaris-hacked-by-its-rival/ www.secnews.physaphae.fr/article.php?IdArticle=8302526 False Guideline None 4.0000000000000000 Recorded Future - FLux Recorded Future Senior cybersecurity officials from the United Kingdom and Ukraine met for several hours on Wednesday to discuss threat intelligence relating to Russian cyberattacks. The bilateral talks between National Cyber Security Centre (NCSC) staff and a delegation from Ukraine's State Service of Special Communications and Information Protection (SSSCIP) and its Computer Emergency Response Team (CERT-UA) covered […]]> 2023-01-19T00:01:00+00:00 https://therecord.media/british-and-ukrainian-cyber-officials-meet-in-london-for-threat-intelligence-talks/ www.secnews.physaphae.fr/article.php?IdArticle=8302417 False Threat None 3.0000000000000000 Recorded Future - FLux Recorded Future A hacker accessed 133 Mailchimp accounts using a social engineering attack on company employees and contractors, the company announced on Tuesday. In a statement, first reported by TechCrunch, the email marketing firm said the attack occurred on January 11. Using employee credentials compromised in that incident, the attacker targeted the 133 accounts.  “After we identified […]]> 2023-01-18T19:55:10+00:00 https://therecord.media/more-than-100-mailchimp-accounts-accessed-via-social-engineering-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8302342 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future The Russian co-founder of a cryptocurrency exchange allegedly used to launder cybercrime proceeds was arrested early Wednesday morning in Miami, the Department of Justice announced.  The arrest of Anatoly Legkodymov, who is charged with “unlicensed money transmitting,” is “a significant blow to the cryptocrime ecosystem,” Deputy Attorney General Lisa Monaco said. The exchange, Bitzlato, is […]]> 2023-01-18T19:11:10+00:00 https://therecord.media/law-enforcement-takes-down-crypto-exchange-allegedly-used-to-launder-15-million-in-ransomware-payments/ www.secnews.physaphae.fr/article.php?IdArticle=8302343 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Nissan has sent out breach notification letters to thousands of people to inform them of a leak of personal information through a third-party vendor.   The car company said it was notified on June 21 that names, dates of birth, and account numbers for Nissan Motor Acceptance Corporation – an indirect lender that helps people […]]> 2023-01-18T17:55:13+00:00 https://therecord.media/thousands-of-nissan-customers-affected-by-data-breach-through-third-party-vendor/ www.secnews.physaphae.fr/article.php?IdArticle=8302310 False Data Breach None 3.0000000000000000 Recorded Future - FLux Recorded Future Researchers associated with the Ukrainian government on Tuesday confirmed that Russia has coordinated kinetic strikes and cyberattacks to inflict damage on government offices, public service organizations, media companies and communication centers. In a study titled “Comprehensive Analysis of Russian Warfare Dimensions,” researchers from Ukraine's Economic Security Council and the independent communication agency Truman said Russia […]]> 2023-01-18T15:52:22+00:00 https://therecord.media/ukraine-says-russia-is-coordinating-missile-strikes-cyberattacks-and-information-operations/ www.secnews.physaphae.fr/article.php?IdArticle=8302282 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Greece's Data Protection Authority (DPA) has issued the Israeli-owned spyware consortium Intellexa a €50,000 fine (about $54,000) for failing to comply with its investigations into the use of the controversial technology. The DPA's inquiry was launched following press reports in Greece which claimed that senior public figures - including the chief of national defense staff […]]> 2023-01-18T14:38:46+00:00 https://therecord.media/spyware-company-intellexa-fined-e50000-for-holding-up-greek-inquiry/ www.secnews.physaphae.fr/article.php?IdArticle=8302263 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future The Vice Society ransomware group said it was responsible for a November attack against one of Germany's largest universities. The University of Duisburg-Essen in the country's North Rhine-Westphalia region was forced to shut down its entire IT infrastructure and disconnect it from the network following the incident. The university has 12 departments and about 43,000 […]]> 2023-01-17T21:06:07+00:00 https://therecord.media/vice-society-ransomware-gang-claims-attack-on-one-of-germanys-largest-universities/ www.secnews.physaphae.fr/article.php?IdArticle=8301957 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future Congressman Ritchie Torres (D-NY) is calling for federal agencies to investigate cybersecurity vulnerabilities in all systems underpinning air travel after a technical glitch last week crippled flights across the country.  Thousands of flights were delayed or canceled last Wednesday, but both the White House and Transportation Secretary Pete Buttigieg were quick to tamp down concerns […]]> 2023-01-17T20:55:20+00:00 https://therecord.media/congressman-calls-on-cisa-to-investigate-air-travel-vulnerabilities-after-outage/ www.secnews.physaphae.fr/article.php?IdArticle=8301958 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Nearly one million active and inactive Norton LifeLock accounts have been targeted by credential stuffing attacks, according to a statement from the cybersecurity product's parent company. Gen Digital – which owns Norton LifeLock and several other consumer cybersecurity brands – told The Record that 925,000 inactive and active accounts were locked down after their security […]]> 2023-01-17T19:29:36+00:00 https://therecord.media/norton-lifelock-says-925000-accounts-targeted-by-credential-stuffing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8301949 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future China has proposed that a new international convention on cybercrime should criminalize the “dissemination of false information” during negotiations in Vienna about the provisions of the United Nations treaty. The proposal is likely to be contested by Western states who will see it as a threat to human rights standards and an attempt by the […]]> 2023-01-17T17:36:03+00:00 https://therecord.media/china-proposes-un-treaty-criminalizing-dissemination-of-false-information/ www.secnews.physaphae.fr/article.php?IdArticle=8301922 False Threat None 2.0000000000000000 Recorded Future - FLux Recorded Future About 1,000 vessels have been affected by a ransomware attack against a major software supplier for ships.  Oslo-based DNV – one of the world's largest maritime organizations – said it was hit with ransomware on the evening of January 7 and was forced to shut down the IT servers connected to their ShipManager system.  “DNV […]]> 2023-01-17T16:30:18+00:00 https://therecord.media/ransomware-attack-on-maritime-software-impacts-1000-ships/ www.secnews.physaphae.fr/article.php?IdArticle=8301904 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Nearly 60 million compromised payment card records were posted for sale on dark web platforms in 2022, according to new report. Researchers with Recorded Future’s Insikt Group said the numbers were actually a stark decrease compared to the numbers seen in 2021, which reached almost 100 million compromised payment card records. The Record is an […]]> 2023-01-17T15:34:24+00:00 https://therecord.media/59-4-million-compromised-payment-card-records-posted-for-sale-on-dark-web-in-2022-report/ www.secnews.physaphae.fr/article.php?IdArticle=8301886 False None None 4.0000000000000000 Recorded Future - FLux Recorded Future Hackers took advantage of Russian concerns about mobilization to steal credentials through malicious links, according to new research. In a phishing campaign described by the Russian cybersecurity channel In2security on the messaging app Telegram and confirmed by researchers from antivirus provider Kaspersky Lab, attackers used a phishing website and Telegram bot to collect personal data […]]> 2023-01-16T18:28:03+00:00 https://therecord.media/hackers-use-fear-of-mobilization-to-target-russians-with-phishing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8301638 False None None 4.0000000000000000 Recorded Future - FLux Recorded Future An unusual announcement appeared in Russian Dark Web forums in June of 2020. Amid the hundreds of ads offering stolen credit card numbers and batches of personally identifiable information there was a Call for Papers. “We're kicking off the summer PAPER CONTEST,” it read. “Accepted article topics include any methods for popuring shells, malware and […]]> 2023-01-16T05:00:03+00:00 https://therecord.media/ransomware-diaries-undercover-with-the-leader-of-lockbit/ www.secnews.physaphae.fr/article.php?IdArticle=8301398 False Ransomware,Malware,Guideline None 3.0000000000000000 Recorded Future - FLux Recorded Future Fortinet published an advisory this week warning that a critical vulnerability is being exploited by an “advanced actor” to target government networks. Fortinet published an advisory about the bug – CVE-2022-42475 – and it quickly garnered widespread attention due to its 9.8 CVSS score, ease of use and the large number of FortiOS versions affected.  […]]> 2023-01-13T19:30:34+00:00 https://therecord.media/fortinet-warns-of-hackers-targeting-governments-through-vpn-vulnerability/ www.secnews.physaphae.fr/article.php?IdArticle=8300953 False Vulnerability None 3.0000000000000000 Recorded Future - FLux Recorded Future International police arrested scammers selling fake cryptocurrency in Europe, Australia, and Canada, Europol announced Thursday. During a cross-border investigation launched in June 2022, police arrested 14 suspects in Serbia and one in Germany. More than 260 other suspects, including people in Bulgaria and Cyprus, have been questioned and some are awaiting prosecution. The criminal network […]]> 2023-01-13T17:11:59+00:00 https://therecord.media/europol-takes-down-call-centers-that-scammed-germans-out-of-e2-million/ www.secnews.physaphae.fr/article.php?IdArticle=8300925 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Cisco warned customers this week that it will not release software updates or workarounds to address two vulnerabilities affecting a line of routers that were last sold in 2020. The popular routers – Cisco Small Business RV016, RV042, RV042G and RV082 – are affected by CVE-2023-20025 and CVE-2023-20026. Cisco said it is aware that proof-of-concept […]]> 2023-01-13T14:10:35+00:00 https://therecord.media/cisco-warns-of-two-vulnerabilities-affecting-end-of-life-routers/ www.secnews.physaphae.fr/article.php?IdArticle=8300894 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Meta has filed a legal action against a surveillance service which it accused of creating fake accounts on Instagram and Facebook for the purpose of scraping user data. Voyager Labs “improperly collected data from Facebook, Instagram and other websites,” the social media giant alleged on Thursday. The company “developed and used proprietary software to launch […]]> 2023-01-13T14:00:51+00:00 https://therecord.media/meta-sues-surveillance-service-for-creating-fake-accounts-and-scraping-user-data/ www.secnews.physaphae.fr/article.php?IdArticle=8300883 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future The Cybersecurity and Infrastructure Security Agency added a recently revealed bug to its known exploited vulnerability list this week after Microsoft confirmed it was being used in attacks.  CISA ordered all federal civilian agencies to patch CVE-2023-21674 by January 31. The bug –  first unveiled in Microsoft's initial Patch Tuesday release of 2023 – affects […]]> 2023-01-12T21:19:14+00:00 https://therecord.media/cisa-adds-recently-announced-microsoft-zero-day-to-exploited-vulnerability-catalog/ www.secnews.physaphae.fr/article.php?IdArticle=8300659 False Vulnerability None 2.0000000000000000 Recorded Future - FLux Recorded Future NSA Director Gen. Paul Nakasone said Thursday that the special targeted internet surveillance program for non-U.S. citizens known as Section 702 has played an “irreplaceable” role in helping the agency fend off ransomware attacks and prevent weapons components from reaching adversaries, as well as being used to identify threats to U.S. troops. “702 has helped […]]> 2023-01-12T20:34:59+00:00 https://therecord.media/nakasone-foreign-surveillance-program-helped-fend-off-cyber-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8300651 False Ransomware None 3.0000000000000000 Recorded Future - FLux Recorded Future The Japanese customers of two large insurance companies have had their personal information leaked after the breach of a third-party service provider. Neither company would say if the two breaches were connected, and the attacked provider has not been named. But each company released statements this week warning their customers that their information was made […]]> 2023-01-12T19:29:55+00:00 https://therecord.media/millions-of-aflac-zurich-insurance-customers-in-japan-have-data-leaked-after-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8300637 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A group of pro-Russian hackers is using Telegram and GitHub to launch distributed denial-of-service attacks against Ukraine and several NATO countries. Researchers at SentinelOne said that as recently as this week they found the group – called NoName057(16) – targeting the websites of candidates in the 2023 Czech presidential election as well as businesses and […]]> 2023-01-12T18:45:31+00:00 https://therecord.media/pro-russia-hackers-use-telegram-github-to-attack-czech-presidential-election/ www.secnews.physaphae.fr/article.php?IdArticle=8300628 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future TikTok has been issued a fine of €5 million (about $5.4 million) by the French data protection regulator because it made it difficult for users to opt out of being tracked on its website – a breach of data protection laws. The CNIL (Commission nationale de l'informatique et des libertés) announced the penalty on Thursday, […]]> 2023-01-12T17:48:12+00:00 https://therecord.media/france-fines-tiktok-e5-million-for-not-offering-refuse-all-button-on-websites-cookie-banner/ www.secnews.physaphae.fr/article.php?IdArticle=8300592 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future A new hacking group dubbed “Dark Pink” is targeting government, military, religious and non-profit organizations in Asia and Europe with phishing emails, according to new research.  The group's core goal, according to a report by Group-IB, is corporate espionage, as hackers have exfiltrated files, microphone audio and messenger data from infected devices. The group was […]]> 2023-01-12T16:36:54+00:00 https://therecord.media/dark-pink-hackers-target-state-and-military-organizations-in-asia-europe/ www.secnews.physaphae.fr/article.php?IdArticle=8300581 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future NFT Investments, a British company that as its name suggests invests in companies developing non-fungible tokens (NFTs), announced on Thursday that it lost $250,000 of assets in a cyberattack. The company, which describes itself as working with “entrepreneurs to develop NFT assets,” disclosed the incident through the London Stock Exchange's (LSE) Regulatory News Service as […]]> 2023-01-12T14:30:07+00:00 https://therecord.media/british-nft-investments-says-hackers-stole-250000-worth-of-assets/ www.secnews.physaphae.fr/article.php?IdArticle=8300553 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Twitter on Wednesday addressed long-simmering rumors that hackers stole the information of more than 200 million users, claiming that there is “no evidence” the information being sold on the dark web came from the exploitation of a vulnerability in the company's systems.  The social media giant - which was purchased by Tesla CEO Elon Musk […]]> 2023-01-11T22:11:24+00:00 https://therecord.media/twitter-says-leaked-data-on-200-million-users-was-likely-publicly-available-info/ www.secnews.physaphae.fr/article.php?IdArticle=8300299 False Vulnerability None 2.0000000000000000