This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-04-26T03:03:58+00:00 www.secnews.physaphae.fr Bleeping Computer - Magazine Américain The L.A. County\'s Department of Health Services, the second-largest public health care system in the United States, disclosed a data breach after patients\' personal and health information was exposed in a data breach resulting from a recent phishing attack impacting over two dozen employees. [...]]]> 2024-04-25T15:55:17+00:00 https://www.bleepingcomputer.com/news/security/la-county-health-services-patients-data-exposed-in-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8488690 False Data Breach None None Bleeping Computer - Magazine Américain Researchers have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections from unique IP addresses. [...]]]> 2024-04-25T15:20:30+00:00 https://www.bleepingcomputer.com/news/security/researchers-sinkhole-plugx-malware-server-with-25-million-unique-ips/ www.secnews.physaphae.fr/article.php?IdArticle=8488691 False Malware None None Bleeping Computer - Magazine Américain Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device, from touches and information displayed to text input and the applications the user launches. [...]]]> 2024-04-25T06:00:00+00:00 https://www.bleepingcomputer.com/news/security/new-brokewell-malware-takes-over-android-devices-steals-data/ www.secnews.physaphae.fr/article.php?IdArticle=8488547 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain ​Cisco warned today that a state-backed hacking group has been exploiting two zero-day vulnerabilities in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) firewalls since November 2023 to breach government networks worldwide. [...]]]> 2024-04-24T13:07:51+00:00 https://www.bleepingcomputer.com/news/security/arcanedoor-hackers-exploit-cisco-zero-days-to-breach-govt-networks/ www.secnews.physaphae.fr/article.php?IdArticle=8488121 False Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The Federal Trade Commission is sending $5.6 million in refunds to Ring users whose private video feeds were accessed without consent by Amazon employees and contractors, or had their accounts and devices hacked because of insufficient security protections. [...]]]> 2024-04-24T10:31:26+00:00 https://www.bleepingcomputer.com/news/security/ring-customers-get-56-million-in-privacy-breach-settlement/ www.secnews.physaphae.fr/article.php?IdArticle=8488042 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A threat actor has been using a content delivery network cache to store information-stealing malware in an ongoing campaign targeting systems U.S., the U.K., Germany, and Japan. [...]]]> 2024-04-23T17:27:54+00:00 https://www.bleepingcomputer.com/news/security/coralraider-attacks-use-cdn-cache-to-push-info-stealer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8487636 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The National Police Agency in South Korea issued an urgent warning today about North Korean hacking groups targeting defense industry entities to steal valuable technology information. [...]]]> 2024-04-23T12:56:50+00:00 https://www.bleepingcomputer.com/news/security/dprk-hacking-groups-breach-south-korean-defense-contractors/ www.secnews.physaphae.fr/article.php?IdArticle=8487508 False Legislation None 3.0000000000000000 Bleeping Computer - Magazine Américain ​The Department of State has started imposing visa restrictions on mercenary spyware makers and peddlers, prohibiting their entry into the United States, as announced earlier in February. [...]]]> 2024-04-23T11:38:21+00:00 https://www.bleepingcomputer.com/news/security/us-imposes-visa-bans-on-13-spyware-makers-and-their-families/ www.secnews.physaphae.fr/article.php?IdArticle=8487484 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver cryptocurrency miners through GuptiMiner malware. [...]]]> 2024-04-23T10:56:24+00:00 https://www.bleepingcomputer.com/news/security/hackers-hijack-antivirus-updates-to-drop-guptiminer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8487448 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The UnitedHealth Group has confirmed that it paid a ransom to cybercriminals to protect sensitive data stolen during the Optum ransomware attack in late February. [...]]]> 2024-04-23T10:28:36+00:00 https://www.bleepingcomputer.com/news/security/unitedhealth-confirms-it-paid-ransomware-gang-to-stop-data-leak/ www.secnews.physaphae.fr/article.php?IdArticle=8487449 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Synlab Italia has suspended all its medical diagnostic and testing services after a ransomware attack forced its IT systems to be taken offline. [...]]]> 2024-04-22T11:27:52+00:00 https://www.bleepingcomputer.com/news/security/synlab-italia-suspends-operations-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8486883 False Ransomware,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. It turns out, GitLab is also affected by this issue and could be abused in a similar fashion. [...]]]> 2024-04-22T11:05:44+00:00 https://www.bleepingcomputer.com/news/security/gitlab-affected-by-github-style-cdn-flaw-allowing-malware-hosting/ www.secnews.physaphae.fr/article.php?IdArticle=8486857 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain You rarely root for a cybercriminal, but a new malware campaign targeting child exploiters doesn\'t make you feel bad for the victims. [...]]]> 2024-04-21T14:49:58+00:00 https://www.bleepingcomputer.com/news/security/malware-dev-lures-child-exploiters-into-honeytrap-to-extort-them/ www.secnews.physaphae.fr/article.php?IdArticle=8486413 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with a Microsoft repository, making the files appear trustworthy. [...]]]> 2024-04-20T10:14:28+00:00 https://www.bleepingcomputer.com/news/security/github-comments-abused-to-push-malware-via-microsoft-repo-urls/ www.secnews.physaphae.fr/article.php?IdArticle=8485979 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain ​The United Nations Development Programme (UNDP) is investigating a cyberattack after threat actors breached its IT systems to steal human resources data. [...]]]> 2024-04-19T14:03:31+00:00 https://www.bleepingcomputer.com/news/security/united-nations-agency-investigates-ransomware-attack-claimed-by-8Base-gang/ www.secnews.physaphae.fr/article.php?IdArticle=8485404 False Ransomware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain A new info-stealing malware linked to Redline poses as a game cheat called \'Cheat Lab,\' promising downloaders a free copy if they convince their friends to install it too. [...]]]> 2024-04-18T20:46:29+00:00 https://www.bleepingcomputer.com/news/security/fake-cheat-lures-gamers-into-spreading-infostealer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8485016 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain According to a joint advisory from the FBI, CISA, Europol\'s European Cybercrime Centre (EC3), and the Netherlands\' National Cyber Security Centre (NCSC-NL), the Akira ransomware operation has breached the networks of over 250 organizations and raked in roughly $42 million in ransom payments. [...]]]> 2024-04-18T14:11:29+00:00 https://www.bleepingcomputer.com/news/security/fbi-akira-ransomware-raked-in-42-million-from-250-plus-victims/ www.secnews.physaphae.fr/article.php?IdArticle=8484883 False Ransomware None 4.0000000000000000 Bleeping Computer - Magazine Américain A legitimate-looking Google Search advertisement for the crypto trading platform \'Whales Market\' redirects visitors to a wallet-draining phishing site that steals all of your assets. [...]]]> 2024-04-18T13:55:56+00:00 https://www.bleepingcomputer.com/news/security/google-ad-impersonates-whales-market-to-push-wallet-drainer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8484858 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft. [...]]]> 2024-04-18T10:56:41+00:00 https://www.bleepingcomputer.com/news/security/cybercriminals-pose-as-lastpass-staff-to-hack-password-vaults/ www.secnews.physaphae.fr/article.php?IdArticle=8484776 False Hack LastPass 2.0000000000000000 Bleeping Computer - Magazine Américain The LabHost phishing-as-a-service (PhaaS) platform has been disrupted in a year-long global law enforcement operation that compromised the infrastructure and arrested 37 suspects, among them the original developer. [...]]]> 2024-04-18T05:52:04+00:00 https://www.bleepingcomputer.com/news/security/labhost-phishing-service-with-40-000-domains-disrupted-37-arrested/ www.secnews.physaphae.fr/article.php?IdArticle=8484633 False Legislation None 2.0000000000000000 Bleeping Computer - Magazine Américain A new Android banking malware named \'SoumniBot\' is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure. [...]]]> 2024-04-17T17:38:28+00:00 https://www.bleepingcomputer.com/news/security/soumnibot-malware-exploits-android-bugs-to-evade-detection/ www.secnews.physaphae.fr/article.php?IdArticle=8484367 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain At least six distinct botnet malware operations are hunting for TP-Link Archer AX21 (AX1800) routers vulnerable to a command injection security issue reported and addressed last year. [...]]]> 2024-04-17T09:03:09+00:00 https://www.bleepingcomputer.com/news/security/multiple-botnets-exploiting-one-year-old-tp-link-flaw-to-hack-routers/ www.secnews.physaphae.fr/article.php?IdArticle=8484115 False Malware,Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Federal Trade Commission has reached a settlement with telehealth firm Cerebral in which the company will pay $7,000,000 over allegations of mishandling people\'s sensitive health data. [...]]]> 2024-04-16T17:37:20+00:00 https://www.bleepingcomputer.com/news/security/cerebral-to-pay-7-million-settlement-in-facebook-pixel-data-leak-case/ www.secnews.physaphae.fr/article.php?IdArticle=8483705 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Ivanti has released security updates to fix 27 vulnerabilities in its Avalanche mobile device management (MDM) solution, two of them critical heap overflows that can be exploited for remote command execution. [...]]]> 2024-04-16T15:52:14+00:00 https://www.bleepingcomputer.com/news/security/ivanti-warns-of-critical-flaws-in-its-avalanche-mdm-solution/ www.secnews.physaphae.fr/article.php?IdArticle=8483648 False Vulnerability,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain UnitedHealth Group reported an $872 million impact on its Q1 earnings due to the ransomware attack disrupting the U.S. healthcare system since February. [...]]]> 2024-04-16T10:24:54+00:00 https://www.bleepingcomputer.com/news/security/unitedhealth-change-healthcare-cyberattack-caused-872-million-loss/ www.secnews.physaphae.fr/article.php?IdArticle=8483497 False Ransomware,Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain A new campaign conducted by the TA558 hacking group is concealing malicious code inside images using steganography to deliver various malware tools onto targeted systems. [...]]]> 2024-04-15T16:31:28+00:00 https://www.bleepingcomputer.com/news/security/new-steganoamor-attacks-use-steganography-to-target-320-orgs-globally/ www.secnews.physaphae.fr/article.php?IdArticle=8482960 False Malware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain Dutch chipmaker Nexperia confirmed late last week that hackers breached its network in March 2024 after a ransomware gang leaked samples of allegedly stolen data. [...]]]> 2024-04-15T12:00:01+00:00 https://www.bleepingcomputer.com/news/security/chipmaker-nexperia-confirms-breach-after-ransomware-gang-leaks-data/ www.secnews.physaphae.fr/article.php?IdArticle=8482813 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Daixin Team ransomware gang claimed a recent cyberattack on Omni Hotels & Resorts and is now threatening to publish customers\' sensitive information if a ransom is not paid. [...]]]> 2024-04-15T11:01:54+00:00 https://www.bleepingcomputer.com/news/security/daixin-ransomware-gang-claims-attack-on-omni-hotels/ www.secnews.physaphae.fr/article.php?IdArticle=8482781 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Cisco Duo\'s security team warns that hackers stole some customers\' VoIP and SMS logs for multi-factor authentication (MFA) messages in a cyberattack on their telephony provider. [...]]]> 2024-04-15T10:52:39+00:00 https://www.bleepingcomputer.com/news/security/cisco-duo-warns-third-party-data-breach-exposed-sms-mfa-logs/ www.secnews.physaphae.fr/article.php?IdArticle=8482782 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain OpenTable has reversed its decision to show members\' first names and profile pictures in past anonymous reviews after receiving backlash from members who felt it was a breach of privacy. [...]]]> 2024-04-14T18:28:01+00:00 https://www.bleepingcomputer.com/news/security/opentable-wont-add-first-names-photos-to-old-reviews-after-backlash/ www.secnews.physaphae.fr/article.php?IdArticle=8482308 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Canadian retail chain Giant Tiger disclosed a data breach in March 2024. A threat actor has now publicly claimed responsibility for the data breach and leaked 2.8 million records on a hacker forum that they claim are of Giant Tiger customers. [...]]]> 2024-04-13T10:00:16+00:00 https://www.bleepingcomputer.com/news/security/hacker-claims-giant-tiger-data-breach-leaks-28m-records-online/ www.secnews.physaphae.fr/article.php?IdArticle=8481422 False Data Breach,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls tracked as CVE-2024-3400 since March 26, using the compromised devices to breach internal networks, steal data and credentials. [...]]]> 2024-04-13T08:35:15+00:00 https://www.bleepingcomputer.com/news/security/palo-alto-networks-zero-day-exploited-since-march-to-backdoor-firewalls/ www.secnews.physaphae.fr/article.php?IdArticle=8481394 False Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Roku warns that 576,000 accounts were hacked in new credential stuffing attacks after disclosing another incident that compromised 15,000 accounts in early March. [...]]]> 2024-04-12T11:05:07+00:00 https://www.bleepingcomputer.com/news/security/roku-warns-576-000-accounts-hacked-in-new-credential-stuffing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8480779 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new version of "Malware Next-Gen," now allowing the public to submit malware samples for analysis by CISA. [...]]]> 2024-04-11T18:27:13+00:00 https://www.bleepingcomputer.com/news/security/cisa-makes-its-malware-next-gen-analysis-system-publicly-available/ www.secnews.physaphae.fr/article.php?IdArticle=8480305 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain LastPass revealed this week that threat actors targeted one of its employees in a voice phishing attack, using deepfake audio to impersonate Karim Toubba, the company\'s Chief Executive Officer. [...]]]> 2024-04-11T18:00:39+00:00 https://www.bleepingcomputer.com/news/security/lastpass-hackers-targeted-employee-in-failed-deepfake-ceo-call/ www.secnews.physaphae.fr/article.php?IdArticle=8480277 False Threat LastPass 2.0000000000000000 Bleeping Computer - Magazine Américain A recent cyberattack on Hoya Corporation was conducted by the \'Hunters International\' ransomware operation, which demanded a $10 million ransom for a file decryptor and not to release files stolen during the attack. [...]]]> 2024-04-11T14:15:24+00:00 https://www.bleepingcomputer.com/news/security/optics-giant-hoya-hit-with-10-million-ransomware-demand/ www.secnews.physaphae.fr/article.php?IdArticle=8480189 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain CISA has issued a new emergency directive ordering U.S. federal agencies to address risks resulting from the breach of multiple Microsoft corporate email accounts by the Russian APT29 hacking group. [...]]]> 2024-04-11T13:47:19+00:00 https://www.bleepingcomputer.com/news/security/cisa-orders-agencies-impacted-by-microsoft-hack-to-mitigate-risks/ www.secnews.physaphae.fr/article.php?IdArticle=8480159 False Hack APT 29 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is investigating the recent breach of data analytics company Sisense, an incident that also impacted critical infrastructure organizations. [...]]]> 2024-04-11T10:55:04+00:00 https://www.bleepingcomputer.com/news/security/cisa-says-sisense-hack-impacts-critical-infrastructure-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8480129 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain Apple has been notifying iPhone users in 92 countries about a "mercenary spyware attack" attempting to remotely compromise their device. [...]]]> 2024-04-11T10:16:44+00:00 https://www.bleepingcomputer.com/news/security/apple-mercenary-spyware-attacks-target-iphone-users-in-92-countries/ www.secnews.physaphae.fr/article.php?IdArticle=8480058 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Researchers have demonstrated the "first native Spectre v2 exploit" for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors. [...]]]> 2024-04-10T13:19:34+00:00 https://www.bleepingcomputer.com/news/security/new-spectre-v2-attack-impacts-linux-systems-on-intel-cpus/ www.secnews.physaphae.fr/article.php?IdArticle=8479475 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A threat actor is using a PowerShell script that was likely created with the help of an artificial intelligence system such as OpenAI\'s ChatGPT, Google\'s Gemini, or Microsoft\'s CoPilot. [...]]]> 2024-04-10T12:12:40+00:00 https://www.bleepingcomputer.com/news/security/malicious-powershell-script-pushing-malware-looks-ai-written/ www.secnews.physaphae.fr/article.php?IdArticle=8479446 False Malware,Threat ChatGPT 3.0000000000000000 Bleeping Computer - Magazine Américain AT&T is notifying 51 million former and current customers, warning them of a data breach that exposed their personal information on a hacking forum. However, the company has still not disclosed how the data was obtained. [...]]]> 2024-04-10T10:18:41+00:00 https://www.bleepingcomputer.com/news/security/att-now-says-data-breach-impacted-51-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8479370 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Password reuse might seem like a small problem - but it can have far-reaching consequences for an organization\'s cybersecurity. Learn more from Specops Software about what IT teams can do to combat the problem. [...]]]> 2024-04-10T10:02:04+00:00 https://www.bleepingcomputer.com/news/security/reusing-passwords-the-hidden-cost-of-convenience/ www.secnews.physaphae.fr/article.php?IdArticle=8479371 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Threat actors are abusing GitHub automation features and malicious Visual Studio projects to push a new variant of the "Keyzetsu" clipboard-hijacking malware and steal cryptocurrency payments. [...]]]> 2024-04-10T07:00:00+00:00 https://www.bleepingcomputer.com/news/security/malicious-visual-studio-projects-on-github-push-keyzetsu-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8479372 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has fixed two actively exploited zero-day vulnerabilities during the April 2024 Patch Tuesday, although the company failed to initially tag them as such. [...]]]> 2024-04-09T18:06:06+00:00 https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-two-windows-zero-days-exploited-in-malware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8478933 False Malware,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A Romanian botnet group named \'RUBYCARP\' is leveraging known vulnerabilities and performing brute force attacks to breach corporate networks and compromise servers for financial gain. [...]]]> 2024-04-09T11:30:06+00:00 https://www.bleepingcomputer.com/news/security/rubycarp-hackers-linked-to-10-year-old-cryptomining-botnet/ www.secnews.physaphae.fr/article.php?IdArticle=8478768 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain Google is rolling out an upgraded Find My Device network to Android devices in the United States and Canada, almost one year after it was first unveiled during the Google I/O 2023 conference in May. [...]]]> 2024-04-08T14:50:43+00:00 https://www.bleepingcomputer.com/news/google/google-rolls-out-new-find-my-device-network-to-android-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8478263 False Mobile,Conference None 2.0000000000000000 Bleeping Computer - Magazine Américain Home Depot has confirmed that it suffered a data breach after one of its SaaS vendors mistakenly exposed a small sample of limited employee data, which could potentially be used in targeted phishing attacks. [...]]]> 2024-04-07T13:40:56+00:00 https://www.bleepingcomputer.com/news/security/home-depot-confirms-third-party-data-breach-exposed-employee-info/ www.secnews.physaphae.fr/article.php?IdArticle=8477670 False Data Breach,Cloud None 3.0000000000000000 Bleeping Computer - Magazine Américain Ransomware attacks targeting VMware ESXi and other virtual machine platforms are wreaking havoc among the enterprise, causing widespread disruption and loss of services. [...]]]> 2024-04-05T17:59:20+00:00 https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-5th-2024-virtual-machines-under-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8476722 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are using Facebook advertisements and hijacked pages to promote fake Artificial Intelligence services, such as MidJourney, OpenAI\'s SORA and ChatGPT-5, and DALL-E, to infect unsuspecting users with password-stealing malware. [...]]]> 2024-04-05T12:47:51+00:00 https://www.bleepingcomputer.com/news/security/fake-facebook-midjourney-ai-page-promoted-malware-to-12-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8476587 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Panera Bread\'s recent week-long outage was caused by a ransomware attack, according to people familiar with the matter and emails seen by BleepingComputer. [...]]]> 2024-04-05T09:52:22+00:00 https://www.bleepingcomputer.com/news/security/panera-bread-week-long-it-outage-caused-by-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8476510 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain A relatively new malware called Latrodectus is believed to be an evolution of the IcedID loader, seen in malicious email campaigns since November 2023. [...]]]> 2024-04-04T16:38:19+00:00 https://www.bleepingcomputer.com/news/security/new-latrodectus-malware-replaces-icedid-in-network-breaches/ www.secnews.physaphae.fr/article.php?IdArticle=8476154 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Visa is warning about a spike in detections for a new version of the JsOutProx malware targeting financial institutions and their customers. [...]]]> 2024-04-04T15:29:58+00:00 https://www.bleepingcomputer.com/news/security/visa-warns-of-new-jsoutprox-malware-variant-targeting-financial-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8476155 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Cancer treatment and research center City of Hope is warning that a data breach exposed the sensitive information of over 820,000 patients. [...]]]> 2024-04-04T12:57:12+00:00 https://www.bleepingcomputer.com/news/security/us-cancer-center-data-breach-exposes-info-of-827-000-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8476003 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Newly discovered HTTP/2 protocol vulnerabilities called "CONTINUATION Flood" can lead to denial of service (DoS) attacks, crashing web servers with a single TCP connection in some implementations. [...]]]> 2024-04-04T11:28:55+00:00 https://www.bleepingcomputer.com/news/security/new-http-2-dos-attack-can-crash-web-servers-with-a-single-connection/ www.secnews.physaphae.fr/article.php?IdArticle=8475966 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain Recent high-profile malware attacks teach us lessons on limiting malware risks at organizations. Learn more from Blink Ops about what these attacks taught us. [...]]]> 2024-04-04T10:01:02+00:00 https://www.bleepingcomputer.com/news/security/the-biggest-takeaways-from-recent-malware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8475967 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Department of Homeland Security\'s Cyber Safety Review Board (CSRB) has released a scathing report on how Microsoft handled its 2023 Exchange Online attack, warning that the company needs to do better at securing data and be more truthful about how threat actors stole an Azure signing key. [...]]]> 2024-04-03T20:21:10+00:00 https://www.bleepingcomputer.com/news/security/microsoft-still-unsure-how-hackers-stole-msa-key-in-2023-exchange-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8475559 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Data breach alerting service Have I Been Pwned (HIBP) warns that SurveyLama suffered a data breach in February 2024, which exposed the sensitive data of 4.4 million users. [...]]]> 2024-04-03T18:28:08+00:00 https://www.bleepingcomputer.com/news/security/surveylama-data-breach-exposes-info-of-44-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=8475512 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Jackson County, Missouri, is in a state of emergency after a ransomware attack took down some county services on Tuesday. [...]]]> 2024-04-03T17:10:56+00:00 https://www.bleepingcomputer.com/news/security/jackson-county-in-state-of-emergency-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8475455 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Department of State is investigating claims of a cyber incident after a threat actor leaked documents allegedly stolen from a government contractor. [...]]]> 2024-04-03T14:55:21+00:00 https://www.bleepingcomputer.com/news/security/us-state-department-investigates-alleged-theft-of-government-data/ www.secnews.physaphae.fr/article.php?IdArticle=8475395 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain IT security software company Ivanti has released patches to fix multiple security vulnerabilities impacting its Connect Secure and Policy Secure gateways. [...]]]> 2024-04-03T13:29:32+00:00 https://www.bleepingcomputer.com/news/security/ivanti-fixes-vpn-gateway-vulnerability-allowing-rce-dos-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8475367 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain AT&T is facing multiple class-action lawsuits following the company\'s admission to a massive data breach that exposed the sensitive data of 73 million current and former customers. [...]]]> 2024-04-03T12:28:10+00:00 https://www.bleepingcomputer.com/news/security/atandt-faces-lawsuits-over-data-breach-affecting-73-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8475330 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The Chinese \'Winnti\' hacking group was found using a previously undocumented malware called UNAPIMON to let malicous processes run without being detected. [...]]]> 2024-04-02T17:59:42+00:00 https://www.bleepingcomputer.com/news/security/winntis-new-unapimon-tool-hides-malware-from-security-software/ www.secnews.physaphae.fr/article.php?IdArticle=8474848 False Malware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain Russia\'s Prosecutor General\'s Office has announced the indictment of six suspected "hacking group" members for using malware to steal credit card and payment information from foreign online stores. [...]]]> 2024-04-02T11:37:08+00:00 https://www.bleepingcomputer.com/news/security/russia-charges-suspects-behind-theft-of-160-000-credit-cards/ www.secnews.physaphae.fr/article.php?IdArticle=8474694 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Firmware security firm Binarly has released a free online scanner to detect Linux executables impacted by the XZ Utils supply chain attack, tracked as CVE-2024-3094. [...]]]> 2024-04-02T10:33:51+00:00 https://www.bleepingcomputer.com/news/security/new-xz-backdoor-scanner-detects-implant-in-any-linux-binary/ www.secnews.physaphae.fr/article.php?IdArticle=8474666 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The OWASP Foundation has disclosed a data breach after some members\' resumes were exposed online due to a misconfiguration of its old Wiki web server. [...]]]> 2024-04-01T15:25:44+00:00 https://www.bleepingcomputer.com/news/security/owasp-discloses-data-breach-caused-by-wiki-misconfiguration/ www.secnews.physaphae.fr/article.php?IdArticle=8474195 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain MarineMax, self-described as one of the world\'s largest recreational boat and yacht retailers, says attackers stole employee and customer data after breaching its systems in a March cyberattack. [...]]]> 2024-04-01T14:37:49+00:00 https://www.bleepingcomputer.com/news/security/yacht-retailer-marinemax-discloses-data-breach-after-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8474170 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Data belonging to more than 1.3 million customers of the PandaBuy online shopping platform has been leaked, allegedly after two threat actors exploited multiple vulnerabilities to breach systems. [...]]]> 2024-04-01T11:00:28+00:00 https://www.bleepingcomputer.com/news/security/shopping-platform-pandabuy-data-leak-impacts-13-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=8474071 False Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers have observed Red Hat and Ubuntu systems being attacked by a Linux version of the DinodasRAT (also known as XDealer) that may have been operating since 2022. [...]]]> 2024-03-31T10:35:17+00:00 https://www.bleepingcomputer.com/news/security/dinodasrat-malware-targets-linux-servers-in-espionage-campaign/ www.secnews.physaphae.fr/article.php?IdArticle=8473580 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain AT&T has finally confirmed it is impacted by a data breach affecting 73 million current and former customers after initially denying the leaked data originated from them. [...]]]> 2024-03-30T12:52:47+00:00 https://www.bleepingcomputer.com/news/security/atandt-confirms-data-for-73-million-customers-leaked-on-hacker-forum/ www.secnews.physaphae.fr/article.php?IdArticle=8473155 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers found a new version of the Vultur banking trojan for Android that includes more advanced remote control capabilities and an improved evasion mechanism. [...]]]> 2024-03-30T11:56:28+00:00 https://www.bleepingcomputer.com/news/security/vultur-banking-malware-for-android-poses-as-mcafee-security-app/ www.secnews.physaphae.fr/article.php?IdArticle=8473135 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain An infostealer malware campaign has reportedly collected millions of logins from users of various gaming websites, including players that use cheats, pay-to-cheat services. [...]]]> 2024-03-29T16:25:09+00:00 https://www.bleepingcomputer.com/news/security/activision-enable-2fa-to-secure-accounts-recently-stolen-by-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8472754 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Python Package Index (PyPI) has temporarily suspended user registration and the creation of new projects to deal with an ongoing malware campaign. [...]]]> 2024-03-28T14:03:45+00:00 https://www.bleepingcomputer.com/news/security/pypi-suspends-new-user-registration-to-block-malware-campaign/ www.secnews.physaphae.fr/article.php?IdArticle=8472148 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new phishing-as-a-service (PhaaS) named \'Darcula\' uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users in more than 100 countries. [...]]]> 2024-03-27T18:12:20+00:00 https://www.bleepingcomputer.com/news/security/new-darcula-phishing-service-targets-iphone-users-via-imessage/ www.secnews.physaphae.fr/article.php?IdArticle=8471656 False Mobile None 4.0000000000000000 Bleeping Computer - Magazine Américain The INC Ransom extortion gang is threatening to publish three terabytes of data allegedly stolen after breaching the National Health Service (NHS) of Scotland. [...]]]> 2024-03-27T13:59:01+00:00 https://www.bleepingcomputer.com/news/security/inc-ransom-threatens-to-leak-3tb-of-nhs-scotland-stolen-data/ www.secnews.physaphae.fr/article.php?IdArticle=8471514 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Google\'s Threat Analysis Group (TAG) and Google subsidiary Mandiant said they\'ve observed a significant increase in the number of zero-day vulnerabilities exploited in attacks in 2023, many of them linked to spyware vendors and their clients. [...]]]> 2024-03-27T09:00:00+00:00 https://www.bleepingcomputer.com/news/security/google-spyware-vendors-behind-50-percent-of-zero-days-exploited-in-2023/ www.secnews.physaphae.fr/article.php?IdArticle=8471385 False Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The Finnish Police confirmed on Tuesday that the APT31 hacking group linked to the Chinese Ministry of State Security (MSS) was behind a breach of the country\'s parliament disclosed in March 2021. [...]]]> 2024-03-26T17:23:54+00:00 https://www.bleepingcomputer.com/news/security/finland-confirms-apt31-hackers-behind-2021-parliament-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8471001 False Legislation APT 31 3.0000000000000000 Bleeping Computer - Magazine Américain A new hacking campaign dubbed "ShadowRay" targets an unpatched vulnerability in Ray, a popular open-source AI framework, to hijack computing power and leak sensitive data from thousands of companies. [...]]]> 2024-03-26T14:51:32+00:00 https://www.bleepingcomputer.com/news/security/hackers-exploit-ray-framework-flaw-to-breach-servers-hijack-resources/ www.secnews.physaphae.fr/article.php?IdArticle=8470917 False Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Over 15 free VPN apps on Google Play were found using a malicious software development kit that turned Android devices into unwitting residential proxies, likely used for cybercrime and shopping bots. [...]]]> 2024-03-26T12:33:00+00:00 https://www.bleepingcomputer.com/news/security/free-vpn-apps-on-google-play-turned-android-phones-into-proxies/ www.secnews.physaphae.fr/article.php?IdArticle=8470852 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain A new variant of "TheMoon" malware botnet has been spotted infecting thousands of outdated small office and home office (SOHO) routers and IoT devices in 88 countries. [...]]]> 2024-03-26T11:00:00+00:00 https://www.bleepingcomputer.com/news/security/themoon-malware-infects-6-000-asus-routers-in-72-hours-for-proxy-service/ www.secnews.physaphae.fr/article.php?IdArticle=8470791 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new supply chain attack has impacted the top gg Discord bot developers community on GitHub, which has over 170,000 members, with data-stealing malware. [...]]]> 2024-03-25T14:00:01+00:00 https://www.bleepingcomputer.com/news/security/hackers-poison-source-code-from-largest-discord-bot-platform/ www.secnews.physaphae.fr/article.php?IdArticle=8470275 False Malware None 4.0000000000000000 Bleeping Computer - Magazine Américain Academic researchers developed ZenHammer, the first variant of the Rowhammer DRAM attack that works on CPUs based on recent AMD Zen microarchitecture that map physical addresses on DDR4 and DDR5 memory chips. [...]]]> 2024-03-25T12:00:00+00:00 https://www.bleepingcomputer.com/news/security/new-zenhammer-memory-attack-impacts-amd-zen-cpus/ www.secnews.physaphae.fr/article.php?IdArticle=8470224 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Google\'s new AI-powered \'Search Generative Experience\' algorithms recommend scam sites that redirect visitors to unwanted Chrome extensions, fake iPhone giveaways, browser spam subscriptions, and tech support scams. [...]]]> 2024-03-25T07:32:16+00:00 https://www.bleepingcomputer.com/news/google/googles-new-ai-search-results-promotes-sites-pushing-malware-scams/ www.secnews.physaphae.fr/article.php?IdArticle=8470225 False Spam,Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain A new large-scale StrelaStealer malware campaign has impacted over a hundred organizations across the United States and Europe, attempting to steal email account credentials. [...]]]> 2024-03-24T10:19:38+00:00 https://www.bleepingcomputer.com/news/security/over-100-us-and-eu-orgs-targeted-in-strelastealer-malware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8470226 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Opera has reported a substantial 164% increase in new European Union users on iOS devices after Apple introduced a new feature to comply with the EU\'s Digital Markets Act (DMA). [...]]]> 2024-03-23T12:59:46+00:00 https://www.bleepingcomputer.com/news/technology/opera-sees-big-jump-in-eu-users-on-ios-android-after-dma-update/ www.secnews.physaphae.fr/article.php?IdArticle=8469140 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Researchers are warning that a notorious hacking group linked to Russia\'s Foreign Intelligence Service (SVR) is targeting political parties in Germany for the first time, shifting their focus away from the typical targeting of diplomatic missions. [...]]]> 2024-03-22T15:27:56+00:00 https://www.bleepingcomputer.com/news/security/russian-hackers-target-german-political-parties-with-wineloader-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8468661 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new side-channel attack called "GoFetch" impacts Apple M1, M2, and M3 processors and can be used to steal secret cryptographic keys from data in the CPU\'s cache. [...]]]> 2024-03-22T11:01:56+00:00 https://www.bleepingcomputer.com/news/security/new-gofetch-attack-on-apple-silicon-cpus-can-steal-crypto-keys/ www.secnews.physaphae.fr/article.php?IdArticle=8468525 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A previously unknown malware campaign called Sign1 has infected over 39,000 websites over the past six months, causing visitors to see unwanted redirects and popup ads. [...]]]> 2024-03-21T11:56:52+00:00 https://www.bleepingcomputer.com/news/security/evasive-sign1-malware-campaign-infects-39-000-wordpress-sites/ www.secnews.physaphae.fr/article.php?IdArticle=8467974 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Microsoft confirmed that a memory leak introduced with the March 2024 Windows Server security updates is behind a widespread issue causing Windows domain controllers to crash. [...]]]> 2024-03-21T08:27:55+00:00 https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-windows-server-issue-behind-domain-controller-crashes/ www.secnews.physaphae.fr/article.php?IdArticle=8467889 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A new denial-of-service attack dubbed \'Loop DoS\' targeting application layer protocols can pair network services into an indefinite communication loop that creates large volumes of traffic. [...]]]> 2024-03-20T15:40:54+00:00 https://www.bleepingcomputer.com/news/security/new-loop-dos-attack-may-impact-up-to-300-000-online-systems/ www.secnews.physaphae.fr/article.php?IdArticle=8467494 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Ivanti warned customers to immediately patch a critical severity Standalone Sentry vulnerability reported by NATO Cyber Security Centre researchers. [...]]]> 2024-03-20T13:08:58+00:00 https://www.bleepingcomputer.com/news/security/ivanti-fixes-critical-standalone-sentry-bug-reported-by-nato/ www.secnews.physaphae.fr/article.php?IdArticle=8467447 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain The Cyber Crime Center (DC3) of the U.S. Department of Defense (DoD) says it has reached the milestone of processing its 50,000th vulnerability report submitted by 5,635 researchers since its inception in November 2016. [...]]]> 2024-03-19T17:13:01+00:00 https://www.bleepingcomputer.com/news/security/us-defense-dept-received-50-000-vulnerability-reports-since-2016/ www.secnews.physaphae.fr/article.php?IdArticle=8466936 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain The Ukrainian cyber police, in collaboration with investigators from the national police (ГУНП), have arrested three individuals who are accused of hijacking over 100 million emails and Instagram accounts worldwide. [...]]]> 2024-03-19T14:15:08+00:00 https://www.bleepingcomputer.com/news/security/ukraine-arrests-hackers-trying-to-sell-100-million-stolen-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8466851 False Legislation None 2.0000000000000000 Bleeping Computer - Magazine Américain A new destructive malware named AcidPour was spotted in the wild, featuring data-wiper functionality and targeting Linux x86 IoT and networking devices. [...]]]> 2024-03-19T10:33:23+00:00 https://www.bleepingcomputer.com/news/security/new-acidpour-data-wiper-targets-linux-x86-network-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8466730 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain With the growing number of data breaches and cyberattacks, insurance premiums are increasing. Learn more from Specops Software about how securing an Activity Directory could lead to lower cyber insurance premiums. [...]]]> 2024-03-19T10:02:04+00:00 https://www.bleepingcomputer.com/news/security/avoid-high-cyber-insurance-costs-by-improving-active-directory-security/ www.secnews.physaphae.fr/article.php?IdArticle=8466731 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A sophisticated hacking campaign attributed to a Chinese Advanced Persistent Threat (APT) group known as \'Earth Krahang\' has breached 70 organizations and targeted at least 116 across 45 countries. [...]]]> 2024-03-18T16:49:17+00:00 https://www.bleepingcomputer.com/news/security/chinese-earth-krahang-hackers-breach-70-orgs-in-23-countries/ www.secnews.physaphae.fr/article.php?IdArticle=8466271 False Threat None 4.0000000000000000 Bleeping Computer - Magazine Américain Electronic Arts has postponed the North American (NA) finals of the ongoing Apex Legends Global Series (ALGS) after hackers compromised players mid-match during the tournament. [...]]]> 2024-03-18T12:09:07+00:00 https://www.bleepingcomputer.com/news/security/apex-legends-players-worried-about-rce-flaw-after-algs-hacks/ www.secnews.physaphae.fr/article.php?IdArticle=8466134 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Japanese tech giant Fujitsu discovered that several of its systems were infected by malware and warns that the hackers stole customer data. [...]]]> 2024-03-18T10:01:07+00:00 https://www.bleepingcomputer.com/news/security/fujitsu-found-malware-on-it-systems-confirms-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8466060 False Data Breach,Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain AT&T says a massive trove of data impacting 71 million people did not originate from its systems after a hacker leaked it on a cybercrime forum and claimed it was stolen in a 2021 breach of the company. [...]]]> 2024-03-17T19:24:32+00:00 https://www.bleepingcomputer.com/news/security/att-says-leaked-data-of-70-million-people-is-not-from-its-systems/ www.secnews.physaphae.fr/article.php?IdArticle=8465681 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Researchers have demonstrated a new acoustic side-channel attack on keyboards that can deduce user input based on their typing patterns, even in poor conditions, such as environments with noise. [...]]]> 2024-03-17T10:22:43+00:00 https://www.bleepingcomputer.com/news/security/new-acoustic-attack-determines-keystrokes-from-typing-patterns/ www.secnews.physaphae.fr/article.php?IdArticle=8465463 False None None 3.0000000000000000