This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-10T21:03:34+00:00 www.secnews.physaphae.fr Bleeping Computer - Magazine Américain The threat actor behind the recent Dell data breach revealed they scraped information of 49 million customer records using an partner portal API they accessed as a fake company. [...]]]> 2024-05-10T15:30:07+00:00 https://www.bleepingcomputer.com/news/security/dell-api-abused-to-steal-49-million-customer-records-in-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8497398 False Data Breach,Threat None None Bleeping Computer - Magazine Américain Ascension, a major U.S. healthcare network, is diverting ambulances from several hospitals due to a suspected ransomware attack that has been causing clinical operation disruptions and system outages since Wednesday. [...]]]> 2024-05-10T14:51:56+00:00 https://www.bleepingcomputer.com/news/security/healthcare-giant-ascension-redirects-ambulances-after-suspected-Black-Basta-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8497369 False Ransomware,Medical None None Bleeping Computer - Magazine Américain ​The Ohio Lottery is sending data breach notification letters to over 538,000 individuals affected by a cyberattack that hit the organization\'s systems on Christmas Eve. [...]]]> 2024-05-10T11:38:32+00:00 https://www.bleepingcomputer.com/news/security/ohio-lottery-ransomware-attack-impacts-over-538-000-individuals/ www.secnews.physaphae.fr/article.php?IdArticle=8497282 False Ransomware None None Bleeping Computer - Magazine Américain Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS. [...]]]> 2024-05-10T04:00:00+00:00 https://www.bleepingcomputer.com/news/security/widely-used-modems-in-industrial-iot-devices-open-to-sms-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8497313 False Industrial,Medical None None Bleeping Computer - Magazine Américain Dell is warning customers of a data breach after a threat actor claimed to have stolen information for approximately 49 million customers. [...]]]> 2024-05-09T11:21:59+00:00 https://www.bleepingcomputer.com/news/security/dell-warns-of-data-breach-49-million-customers-allegedly-affected/ www.secnews.physaphae.fr/article.php?IdArticle=8496646 False Data Breach,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Zscaler says that they discovered an exposed "test environment" that was taken offline for analysis after rumors circulated that a threat actor was selling access to the company\'s systems. [...]]]> 2024-05-08T19:30:25+00:00 https://www.bleepingcomputer.com/news/security/zscaler-takes-test-environment-offline-after-rumors-of-a-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8496241 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The University System of Georgia (USG) is sending data breach notifications to 800,000 individuals whose data was exposed in the 2023 Clop MOVEit attacks. [...]]]> 2024-05-08T17:48:59+00:00 https://www.bleepingcomputer.com/news/security/university-system-of-georgia-800k-exposed-in-2023-moveit-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8496153 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The LockBit ransomware gang has claimed responsibility for a disruptive cyberattack on the City of Wichita, which has forced the City\'s authorities to shut down IT systems used for online bill payment, including court fines, water bills, and public transportation. [...]]]> 2024-05-08T12:16:36+00:00 https://www.bleepingcomputer.com/news/security/city-of-wichita-breach-claimed-by-lockbit-ransomware-gang/ www.secnews.physaphae.fr/article.php?IdArticle=8496023 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain The UK Government confirmed today that a threat actor recently breached the country\'s Ministry of Defence and gained access to part of the Armed Forces payment network. [...]]]> 2024-05-07T15:41:53+00:00 https://www.bleepingcomputer.com/news/security/uk-confirms-ministry-of-defence-payroll-data-exposed-in-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8495434 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A new attack dubbed "TunnelVision" can route traffic outside a VPN\'s encryption tunnel, allowing attackers to snoop on unencrypted traffic while maintaining the appearance of a secure VPN connection. [...]]]> 2024-05-07T14:46:52+00:00 https://www.bleepingcomputer.com/news/security/new-tunnelvision-attack-leaks-vpn-traffic-using-rogue-dhcp-servers/ www.secnews.physaphae.fr/article.php?IdArticle=8495402 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The City of Wichita, Kansas, disclosed it was forced to shut down portions of its network after suffering a weekend ransomware attack. [...]]]> 2024-05-06T10:34:36+00:00 https://www.bleepingcomputer.com/news/security/city-of-wichita-shuts-down-it-network-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8494656 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The NCA, FBI, and Europol have revived a seized LockBit ransomware data leak site to hint at new information being revealed by law enforcement this Tuesday. [...]]]> 2024-05-06T07:06:12+00:00 https://www.bleepingcomputer.com/news/security/lockbits-seized-site-comes-alive-to-tease-new-police-announcements/ www.secnews.physaphae.fr/article.php?IdArticle=8494657 False Ransomware,Legislation None 3.0000000000000000 Bleeping Computer - Magazine Américain Finland\'s Transport and Communications Agency (Traficom) has issued a warning about an ongoing Android malware campaign targeting banking accounts. [...]]]> 2024-05-05T10:19:38+00:00 https://www.bleepingcomputer.com/news/security/finland-warns-of-android-malware-attacks-breaching-bank-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8494115 False Malware,Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain The Iranian state-backed threat actor tracked as APT42 is employing social engineering attacks, including posing as journalists, to breach corporate networks and cloud environments of Western and Middle Eastern targets. [...]]]> 2024-05-04T10:17:34+00:00 https://www.bleepingcomputer.com/news/security/iranian-hackers-pose-as-journalists-to-push-backdoor-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8493646 False Malware,Threat,Cloud APT 42 3.0000000000000000 Bleeping Computer - Magazine Américain A Mullvad VPN user has discovered that Android devices leak DNS queries when switching VPN servers even though the "Always-on VPN" feature was enabled with the "Block connections without VPN" option. [...]]]> 2024-05-03T17:02:42+00:00 https://www.bleepingcomputer.com/news/security/android-bug-leaks-dns-queries-even-when-vpn-kill-switch-is-enabled/ www.secnews.physaphae.fr/article.php?IdArticle=8493647 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain ​NATO and the European Union, with international partners, formally condemned a long-term cyber espionage campaign against European countries conducted by the Russian threat group APT28. [...]]]> 2024-05-03T11:47:35+00:00 https://www.bleepingcomputer.com/news/security/nato-and-eu-condemn-russias-cyberattacks-against-germany-czechia/ www.secnews.physaphae.fr/article.php?IdArticle=8493049 False Threat APT 28 3.0000000000000000 Bleeping Computer - Magazine Américain Bitwarden, the creator of the popular open-source password manager, has just launched a new authenticator app called Bitwarden Authenticator, which is available for iOS and Android devices. [...]]]> 2024-05-02T16:20:51+00:00 https://www.bleepingcomputer.com/news/software/bitwarden-launches-new-mfa-authenticator-app-for-ios-android/ www.secnews.physaphae.fr/article.php?IdArticle=8492599 False Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has highlighted a novel attack dubbed "Dirty Stream," which could allow malicious Android apps to overwrite files in another application\'s home directory, potentially leading to arbitrary code execution and secrets theft. [...]]]> 2024-05-02T12:02:45+00:00 https://www.bleepingcomputer.com/news/security/microsoft-warns-of-dirty-stream-attack-impacting-android-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8492473 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Yaroslav Vasinskyi, a Ukrainian national, was sentenced to 13 years and seven months in prison and ordered to pay $16 million in restitution for his involvement in the REvil ransomware operation. [...]]]> 2024-05-02T10:44:23+00:00 https://www.bleepingcomputer.com/news/security/revil-hacker-behind-kaseya-ransomware-attack-gets-13-years-in-prison/ www.secnews.physaphae.fr/article.php?IdArticle=8492439 False Ransomware,Legislation None 2.0000000000000000 Bleeping Computer - Magazine Américain Panda Restaurant Group, the parent company of Panda Express, Panda Inn, and Hibachi-San, disclosed a data breach after attackers compromised its corporate systems in March and stole the personal information of an undisclosed number of individuals. [...]]]> 2024-05-01T13:35:03+00:00 https://www.bleepingcomputer.com/news/security/panda-restaurants-discloses-a-data-breach-after-corporate-systems-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8491959 False Data Breach,Hack None 3.0000000000000000 Bleeping Computer - Magazine Américain The Hôpital de Cannes - Simone Veil (CHC-SV) in France announced it received a ransom demand from the Lockbit 3.0 ransomware gang, saying they refuse to pay the ransom. [...]]]> 2024-05-01T12:38:04+00:00 https://www.bleepingcomputer.com/news/security/french-hospital-chc-sv-refuses-to-pay-lockbit-extortion-demand/ www.secnews.physaphae.fr/article.php?IdArticle=8491932 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain ​CISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via password resets. [...]]]> 2024-05-01T12:29:36+00:00 https://www.bleepingcomputer.com/news/security/cisa-says-gitlab-account-takeover-bug-is-actively-exploited-in-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8491933 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain A new malware named \'Cuttlefish\' has been spotted infecting enterprise-grade and small office/home office (SOHO) routers to monitor data that passes through them and steal authentication information. [...]]]> 2024-05-01T09:00:00+00:00 https://www.bleepingcomputer.com/news/security/new-cuttlefish-malware-infects-routers-to-monitor-traffic-for-credentials/ www.secnews.physaphae.fr/article.php?IdArticle=8491839 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Latrodectus malware is now being distributed in phishing campaigns using Microsoft Azure and Cloudflare lures to appear legitimate while making it harder for email security platforms to detect the emails as malicious. [...]]]> 2024-04-30T18:08:49+00:00 https://www.bleepingcomputer.com/news/security/new-latrodectus-malware-attacks-use-microsoft-cloudflare-themes/ www.secnews.physaphae.fr/article.php?IdArticle=8491506 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Daily newspaper Philadelphia Inquirer revealed that attackers behind a May 2023 security breach have stolen the personal and financial information of 25,549 individuals. [...]]]> 2024-04-30T16:12:01+00:00 https://www.bleepingcomputer.com/news/security/philadelphia-inquirer-data-of-over-25-000-people-stolen-in-2023-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8491465 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Google has increased rewards for reporting remote code execution vulnerabilities within select Android apps by ten times, from $30,000 to $300,000, with the maximum reward reaching $450,000 for exceptional quality reports. [...]]]> 2024-04-30T14:33:51+00:00 https://www.bleepingcomputer.com/news/security/google-now-pays-up-to-450-000-for-rce-bugs-in-some-android-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8491419 False Vulnerability,Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Three large-scale campaigns have targeted Docker Hub users, planting millions of repositories designed to push malware and phishing sites since early 2021. [...]]]> 2024-04-30T13:32:10+00:00 https://www.bleepingcomputer.com/news/security/millions-of-docker-repos-found-pushing-malware-phishing-sites/ www.secnews.physaphae.fr/article.php?IdArticle=8491395 False Malware None 4.0000000000000000 Bleeping Computer - Magazine Américain A new Android backdoor malware named \'Wpeeper\' has been spotted in at least two unofficial app stores mimicking the Uptodown App Store, a popular third-party app store for Android devices with over 220 million downloads. [...]]]> 2024-04-30T12:41:57+00:00 https://www.bleepingcomputer.com/news/security/new-wpeeper-android-malware-hides-behind-hacked-wordpress-sites/ www.secnews.physaphae.fr/article.php?IdArticle=8491367 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain Google blocked 2.28 million Android apps from being published on Google Play after finding various policy violations that could threaten user\'s security. [...]]]> 2024-04-29T12:00:00+00:00 https://www.bleepingcomputer.com/news/security/google-rejected-228-million-risky-apps-from-play-store-in-2023/ www.secnews.physaphae.fr/article.php?IdArticle=8490728 False Mobile None 1.00000000000000000000 Bleeping Computer - Magazine Américain Google blocked 2.28 million Android apps from being published on Google Play after finding various policy violations that could threaten user\'s security. [...]]]> 2024-04-29T12:00:00+00:00 https://www.bleepingcomputer.com/news/security/google-rejected-228-million-risky-android-apps-from-play-store-in-2023/ www.secnews.physaphae.fr/article.php?IdArticle=8490755 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Financial Business and Consumer Solutions (FBCS) is warning 1,955,385 impacted individuals in the United States that the company suffered a data breach after discovering unauthorized access to specific systems in its network. [...]]]> 2024-04-29T10:23:32+00:00 https://www.bleepingcomputer.com/news/security/collection-agency-fbcs-warns-data-breach-impacts-19-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8490699 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Healthcare service provider Kaiser Permanente disclosed a data security incident that may impact 13.4 million people in the United States. [...]]]> 2024-04-26T05:34:06+00:00 https://www.bleepingcomputer.com/news/security/kaiser-permanente-data-breach-may-impact-134-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8488979 False Data Breach,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain ​The Los Angeles County Department of Health Services disclosed a data breach after thousands of patients\' personal and health information was exposed in a data breach resulting from a recent phishing attack impacting over two dozen employees. [...]]]> 2024-04-25T15:55:17+00:00 https://www.bleepingcomputer.com/news/security/la-county-health-services-thousands-of-patients-data-exposed-in-email-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8488980 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Researchers have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections from unique IP addresses. [...]]]> 2024-04-25T15:20:30+00:00 https://www.bleepingcomputer.com/news/security/researchers-sinkhole-plugx-malware-server-with-25-million-unique-ips/ www.secnews.physaphae.fr/article.php?IdArticle=8488691 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device, from touches and information displayed to text input and the applications the user launches. [...]]]> 2024-04-25T06:00:00+00:00 https://www.bleepingcomputer.com/news/security/new-brokewell-malware-takes-over-android-devices-steals-data/ www.secnews.physaphae.fr/article.php?IdArticle=8488547 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain ​Cisco warned today that a state-backed hacking group has been exploiting two zero-day vulnerabilities in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) firewalls since November 2023 to breach government networks worldwide. [...]]]> 2024-04-24T13:07:51+00:00 https://www.bleepingcomputer.com/news/security/arcanedoor-hackers-exploit-cisco-zero-days-to-breach-govt-networks/ www.secnews.physaphae.fr/article.php?IdArticle=8488121 False Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The Federal Trade Commission is sending $5.6 million in refunds to Ring users whose private video feeds were accessed without consent by Amazon employees and contractors, or had their accounts and devices hacked because of insufficient security protections. [...]]]> 2024-04-24T10:31:26+00:00 https://www.bleepingcomputer.com/news/security/ring-customers-get-56-million-in-privacy-breach-settlement/ www.secnews.physaphae.fr/article.php?IdArticle=8488042 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A threat actor has been using a content delivery network cache to store information-stealing malware in an ongoing campaign targeting systems U.S., the U.K., Germany, and Japan. [...]]]> 2024-04-23T17:27:54+00:00 https://www.bleepingcomputer.com/news/security/coralraider-attacks-use-cdn-cache-to-push-info-stealer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8487636 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The National Police Agency in South Korea issued an urgent warning today about North Korean hacking groups targeting defense industry entities to steal valuable technology information. [...]]]> 2024-04-23T12:56:50+00:00 https://www.bleepingcomputer.com/news/security/dprk-hacking-groups-breach-south-korean-defense-contractors/ www.secnews.physaphae.fr/article.php?IdArticle=8487508 False Legislation None 3.0000000000000000 Bleeping Computer - Magazine Américain ​The Department of State has started imposing visa restrictions on mercenary spyware makers and peddlers, prohibiting their entry into the United States, as announced earlier in February. [...]]]> 2024-04-23T11:38:21+00:00 https://www.bleepingcomputer.com/news/security/us-imposes-visa-bans-on-13-spyware-makers-and-their-families/ www.secnews.physaphae.fr/article.php?IdArticle=8487484 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver cryptocurrency miners through GuptiMiner malware. [...]]]> 2024-04-23T10:56:24+00:00 https://www.bleepingcomputer.com/news/security/hackers-hijack-antivirus-updates-to-drop-guptiminer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8487448 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The UnitedHealth Group has confirmed that it paid a ransom to cybercriminals to protect sensitive data stolen during the Optum ransomware attack in late February. [...]]]> 2024-04-23T10:28:36+00:00 https://www.bleepingcomputer.com/news/security/unitedhealth-confirms-it-paid-ransomware-gang-to-stop-data-leak/ www.secnews.physaphae.fr/article.php?IdArticle=8487449 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Synlab Italia has suspended all its medical diagnostic and testing services after a ransomware attack forced its IT systems to be taken offline. [...]]]> 2024-04-22T11:27:52+00:00 https://www.bleepingcomputer.com/news/security/synlab-italia-suspends-operations-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8486883 False Ransomware,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. It turns out, GitLab is also affected by this issue and could be abused in a similar fashion. [...]]]> 2024-04-22T11:05:44+00:00 https://www.bleepingcomputer.com/news/security/gitlab-affected-by-github-style-cdn-flaw-allowing-malware-hosting/ www.secnews.physaphae.fr/article.php?IdArticle=8486857 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain You rarely root for a cybercriminal, but a new malware campaign targeting child exploiters doesn\'t make you feel bad for the victims. [...]]]> 2024-04-21T14:49:58+00:00 https://www.bleepingcomputer.com/news/security/malware-dev-lures-child-exploiters-into-honeytrap-to-extort-them/ www.secnews.physaphae.fr/article.php?IdArticle=8486413 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with a Microsoft repository, making the files appear trustworthy. [...]]]> 2024-04-20T10:14:28+00:00 https://www.bleepingcomputer.com/news/security/github-comments-abused-to-push-malware-via-microsoft-repo-urls/ www.secnews.physaphae.fr/article.php?IdArticle=8485979 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain ​The United Nations Development Programme (UNDP) is investigating a cyberattack after threat actors breached its IT systems to steal human resources data. [...]]]> 2024-04-19T14:03:31+00:00 https://www.bleepingcomputer.com/news/security/united-nations-agency-investigates-ransomware-attack-claimed-by-8Base-gang/ www.secnews.physaphae.fr/article.php?IdArticle=8485404 False Ransomware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain A new info-stealing malware linked to Redline poses as a game cheat called \'Cheat Lab,\' promising downloaders a free copy if they convince their friends to install it too. [...]]]> 2024-04-18T20:46:29+00:00 https://www.bleepingcomputer.com/news/security/fake-cheat-lures-gamers-into-spreading-infostealer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8485016 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain According to a joint advisory from the FBI, CISA, Europol\'s European Cybercrime Centre (EC3), and the Netherlands\' National Cyber Security Centre (NCSC-NL), the Akira ransomware operation has breached the networks of over 250 organizations and raked in roughly $42 million in ransom payments. [...]]]> 2024-04-18T14:11:29+00:00 https://www.bleepingcomputer.com/news/security/fbi-akira-ransomware-raked-in-42-million-from-250-plus-victims/ www.secnews.physaphae.fr/article.php?IdArticle=8484883 False Ransomware None 4.0000000000000000 Bleeping Computer - Magazine Américain A legitimate-looking Google Search advertisement for the crypto trading platform \'Whales Market\' redirects visitors to a wallet-draining phishing site that steals all of your assets. [...]]]> 2024-04-18T13:55:56+00:00 https://www.bleepingcomputer.com/news/security/google-ad-impersonates-whales-market-to-push-wallet-drainer-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8484858 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain LastPass is warning of a malicious campaign targeting its users with the CryptoChameleon phishing kit that is associated with cryptocurrency theft. [...]]]> 2024-04-18T10:56:41+00:00 https://www.bleepingcomputer.com/news/security/cybercriminals-pose-as-lastpass-staff-to-hack-password-vaults/ www.secnews.physaphae.fr/article.php?IdArticle=8484776 False Hack LastPass 2.0000000000000000 Bleeping Computer - Magazine Américain The LabHost phishing-as-a-service (PhaaS) platform has been disrupted in a year-long global law enforcement operation that compromised the infrastructure and arrested 37 suspects, among them the original developer. [...]]]> 2024-04-18T05:52:04+00:00 https://www.bleepingcomputer.com/news/security/labhost-phishing-service-with-40-000-domains-disrupted-37-arrested/ www.secnews.physaphae.fr/article.php?IdArticle=8484633 False Legislation None 2.0000000000000000 Bleeping Computer - Magazine Américain A new Android banking malware named \'SoumniBot\' is using a less common obfuscation approach by exploiting weaknesses in the Android manifest extraction and parsing procedure. [...]]]> 2024-04-17T17:38:28+00:00 https://www.bleepingcomputer.com/news/security/soumnibot-malware-exploits-android-bugs-to-evade-detection/ www.secnews.physaphae.fr/article.php?IdArticle=8484367 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain At least six distinct botnet malware operations are hunting for TP-Link Archer AX21 (AX1800) routers vulnerable to a command injection security issue reported and addressed last year. [...]]]> 2024-04-17T09:03:09+00:00 https://www.bleepingcomputer.com/news/security/multiple-botnets-exploiting-one-year-old-tp-link-flaw-to-hack-routers/ www.secnews.physaphae.fr/article.php?IdArticle=8484115 False Malware,Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Federal Trade Commission has reached a settlement with telehealth firm Cerebral in which the company will pay $7,000,000 over allegations of mishandling people\'s sensitive health data. [...]]]> 2024-04-16T17:37:20+00:00 https://www.bleepingcomputer.com/news/security/cerebral-to-pay-7-million-settlement-in-facebook-pixel-data-leak-case/ www.secnews.physaphae.fr/article.php?IdArticle=8483705 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Ivanti has released security updates to fix 27 vulnerabilities in its Avalanche mobile device management (MDM) solution, two of them critical heap overflows that can be exploited for remote command execution. [...]]]> 2024-04-16T15:52:14+00:00 https://www.bleepingcomputer.com/news/security/ivanti-warns-of-critical-flaws-in-its-avalanche-mdm-solution/ www.secnews.physaphae.fr/article.php?IdArticle=8483648 False Vulnerability,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain UnitedHealth Group reported an $872 million impact on its Q1 earnings due to the ransomware attack disrupting the U.S. healthcare system since February. [...]]]> 2024-04-16T10:24:54+00:00 https://www.bleepingcomputer.com/news/security/unitedhealth-change-healthcare-cyberattack-caused-872-million-loss/ www.secnews.physaphae.fr/article.php?IdArticle=8483497 False Ransomware,Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain A new campaign conducted by the TA558 hacking group is concealing malicious code inside images using steganography to deliver various malware tools onto targeted systems. [...]]]> 2024-04-15T16:31:28+00:00 https://www.bleepingcomputer.com/news/security/new-steganoamor-attacks-use-steganography-to-target-320-orgs-globally/ www.secnews.physaphae.fr/article.php?IdArticle=8482960 False Malware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain Dutch chipmaker Nexperia confirmed late last week that hackers breached its network in March 2024 after a ransomware gang leaked samples of allegedly stolen data. [...]]]> 2024-04-15T12:00:01+00:00 https://www.bleepingcomputer.com/news/security/chipmaker-nexperia-confirms-breach-after-ransomware-gang-leaks-data/ www.secnews.physaphae.fr/article.php?IdArticle=8482813 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Daixin Team ransomware gang claimed a recent cyberattack on Omni Hotels & Resorts and is now threatening to publish customers\' sensitive information if a ransom is not paid. [...]]]> 2024-04-15T11:01:54+00:00 https://www.bleepingcomputer.com/news/security/daixin-ransomware-gang-claims-attack-on-omni-hotels/ www.secnews.physaphae.fr/article.php?IdArticle=8482781 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Cisco Duo\'s security team warns that hackers stole some customers\' VoIP and SMS logs for multi-factor authentication (MFA) messages in a cyberattack on their telephony provider. [...]]]> 2024-04-15T10:52:39+00:00 https://www.bleepingcomputer.com/news/security/cisco-duo-warns-third-party-data-breach-exposed-sms-mfa-logs/ www.secnews.physaphae.fr/article.php?IdArticle=8482782 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain OpenTable has reversed its decision to show members\' first names and profile pictures in past anonymous reviews after receiving backlash from members who felt it was a breach of privacy. [...]]]> 2024-04-14T18:28:01+00:00 https://www.bleepingcomputer.com/news/security/opentable-wont-add-first-names-photos-to-old-reviews-after-backlash/ www.secnews.physaphae.fr/article.php?IdArticle=8482308 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Canadian retail chain Giant Tiger disclosed a data breach in March 2024. A threat actor has now publicly claimed responsibility for the data breach and leaked 2.8 million records on a hacker forum that they claim are of Giant Tiger customers. [...]]]> 2024-04-13T10:00:16+00:00 https://www.bleepingcomputer.com/news/security/hacker-claims-giant-tiger-data-breach-leaks-28m-records-online/ www.secnews.physaphae.fr/article.php?IdArticle=8481422 False Data Breach,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls tracked as CVE-2024-3400 since March 26, using the compromised devices to breach internal networks, steal data and credentials. [...]]]> 2024-04-13T08:35:15+00:00 https://www.bleepingcomputer.com/news/security/palo-alto-networks-zero-day-exploited-since-march-to-backdoor-firewalls/ www.secnews.physaphae.fr/article.php?IdArticle=8481394 False Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Roku warns that 576,000 accounts were hacked in new credential stuffing attacks after disclosing another incident that compromised 15,000 accounts in early March. [...]]]> 2024-04-12T11:05:07+00:00 https://www.bleepingcomputer.com/news/security/roku-warns-576-000-accounts-hacked-in-new-credential-stuffing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8480779 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new version of "Malware Next-Gen," now allowing the public to submit malware samples for analysis by CISA. [...]]]> 2024-04-11T18:27:13+00:00 https://www.bleepingcomputer.com/news/security/cisa-makes-its-malware-next-gen-analysis-system-publicly-available/ www.secnews.physaphae.fr/article.php?IdArticle=8480305 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain LastPass revealed this week that threat actors targeted one of its employees in a voice phishing attack, using deepfake audio to impersonate Karim Toubba, the company\'s Chief Executive Officer. [...]]]> 2024-04-11T18:00:39+00:00 https://www.bleepingcomputer.com/news/security/lastpass-hackers-targeted-employee-in-failed-deepfake-ceo-call/ www.secnews.physaphae.fr/article.php?IdArticle=8480277 False Threat LastPass 2.0000000000000000 Bleeping Computer - Magazine Américain A recent cyberattack on Hoya Corporation was conducted by the \'Hunters International\' ransomware operation, which demanded a $10 million ransom for a file decryptor and not to release files stolen during the attack. [...]]]> 2024-04-11T14:15:24+00:00 https://www.bleepingcomputer.com/news/security/optics-giant-hoya-hit-with-10-million-ransomware-demand/ www.secnews.physaphae.fr/article.php?IdArticle=8480189 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain CISA has issued a new emergency directive ordering U.S. federal agencies to address risks resulting from the breach of multiple Microsoft corporate email accounts by the Russian APT29 hacking group. [...]]]> 2024-04-11T13:47:19+00:00 https://www.bleepingcomputer.com/news/security/cisa-orders-agencies-impacted-by-microsoft-hack-to-mitigate-risks/ www.secnews.physaphae.fr/article.php?IdArticle=8480159 False Hack APT 29 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is investigating the recent breach of data analytics company Sisense, an incident that also impacted critical infrastructure organizations. [...]]]> 2024-04-11T10:55:04+00:00 https://www.bleepingcomputer.com/news/security/cisa-says-sisense-hack-impacts-critical-infrastructure-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8480129 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain Apple has been notifying iPhone users in 92 countries about a "mercenary spyware attack" attempting to remotely compromise their device. [...]]]> 2024-04-11T10:16:44+00:00 https://www.bleepingcomputer.com/news/security/apple-mercenary-spyware-attacks-target-iphone-users-in-92-countries/ www.secnews.physaphae.fr/article.php?IdArticle=8480058 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Researchers have demonstrated the "first native Spectre v2 exploit" for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors. [...]]]> 2024-04-10T13:19:34+00:00 https://www.bleepingcomputer.com/news/security/new-spectre-v2-attack-impacts-linux-systems-on-intel-cpus/ www.secnews.physaphae.fr/article.php?IdArticle=8479475 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A threat actor is using a PowerShell script that was likely created with the help of an artificial intelligence system such as OpenAI\'s ChatGPT, Google\'s Gemini, or Microsoft\'s CoPilot. [...]]]> 2024-04-10T12:12:40+00:00 https://www.bleepingcomputer.com/news/security/malicious-powershell-script-pushing-malware-looks-ai-written/ www.secnews.physaphae.fr/article.php?IdArticle=8479446 False Malware,Threat ChatGPT 3.0000000000000000 Bleeping Computer - Magazine Américain AT&T is notifying 51 million former and current customers, warning them of a data breach that exposed their personal information on a hacking forum. However, the company has still not disclosed how the data was obtained. [...]]]> 2024-04-10T10:18:41+00:00 https://www.bleepingcomputer.com/news/security/att-now-says-data-breach-impacted-51-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8479370 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Password reuse might seem like a small problem - but it can have far-reaching consequences for an organization\'s cybersecurity. Learn more from Specops Software about what IT teams can do to combat the problem. [...]]]> 2024-04-10T10:02:04+00:00 https://www.bleepingcomputer.com/news/security/reusing-passwords-the-hidden-cost-of-convenience/ www.secnews.physaphae.fr/article.php?IdArticle=8479371 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Threat actors are abusing GitHub automation features and malicious Visual Studio projects to push a new variant of the "Keyzetsu" clipboard-hijacking malware and steal cryptocurrency payments. [...]]]> 2024-04-10T07:00:00+00:00 https://www.bleepingcomputer.com/news/security/malicious-visual-studio-projects-on-github-push-keyzetsu-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8479372 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has fixed two actively exploited zero-day vulnerabilities during the April 2024 Patch Tuesday, although the company failed to initially tag them as such. [...]]]> 2024-04-09T18:06:06+00:00 https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-two-windows-zero-days-exploited-in-malware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8478933 False Malware,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A Romanian botnet group named \'RUBYCARP\' is leveraging known vulnerabilities and performing brute force attacks to breach corporate networks and compromise servers for financial gain. [...]]]> 2024-04-09T11:30:06+00:00 https://www.bleepingcomputer.com/news/security/rubycarp-hackers-linked-to-10-year-old-cryptomining-botnet/ www.secnews.physaphae.fr/article.php?IdArticle=8478768 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain Google is rolling out an upgraded Find My Device network to Android devices in the United States and Canada, almost one year after it was first unveiled during the Google I/O 2023 conference in May. [...]]]> 2024-04-08T14:50:43+00:00 https://www.bleepingcomputer.com/news/google/google-rolls-out-new-find-my-device-network-to-android-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8478263 False Mobile,Conference None 2.0000000000000000 Bleeping Computer - Magazine Américain Home Depot has confirmed that it suffered a data breach after one of its SaaS vendors mistakenly exposed a small sample of limited employee data, which could potentially be used in targeted phishing attacks. [...]]]> 2024-04-07T13:40:56+00:00 https://www.bleepingcomputer.com/news/security/home-depot-confirms-third-party-data-breach-exposed-employee-info/ www.secnews.physaphae.fr/article.php?IdArticle=8477670 False Data Breach,Cloud None 3.0000000000000000 Bleeping Computer - Magazine Américain Ransomware attacks targeting VMware ESXi and other virtual machine platforms are wreaking havoc among the enterprise, causing widespread disruption and loss of services. [...]]]> 2024-04-05T17:59:20+00:00 https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-april-5th-2024-virtual-machines-under-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8476722 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are using Facebook advertisements and hijacked pages to promote fake Artificial Intelligence services, such as MidJourney, OpenAI\'s SORA and ChatGPT-5, and DALL-E, to infect unsuspecting users with password-stealing malware. [...]]]> 2024-04-05T12:47:51+00:00 https://www.bleepingcomputer.com/news/security/fake-facebook-midjourney-ai-page-promoted-malware-to-12-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8476587 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Panera Bread\'s recent week-long outage was caused by a ransomware attack, according to people familiar with the matter and emails seen by BleepingComputer. [...]]]> 2024-04-05T09:52:22+00:00 https://www.bleepingcomputer.com/news/security/panera-bread-week-long-it-outage-caused-by-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8476510 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain A relatively new malware called Latrodectus is believed to be an evolution of the IcedID loader, seen in malicious email campaigns since November 2023. [...]]]> 2024-04-04T16:38:19+00:00 https://www.bleepingcomputer.com/news/security/new-latrodectus-malware-replaces-icedid-in-network-breaches/ www.secnews.physaphae.fr/article.php?IdArticle=8476154 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Visa is warning about a spike in detections for a new version of the JsOutProx malware targeting financial institutions and their customers. [...]]]> 2024-04-04T15:29:58+00:00 https://www.bleepingcomputer.com/news/security/visa-warns-of-new-jsoutprox-malware-variant-targeting-financial-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8476155 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Cancer treatment and research center City of Hope is warning that a data breach exposed the sensitive information of over 820,000 patients. [...]]]> 2024-04-04T12:57:12+00:00 https://www.bleepingcomputer.com/news/security/us-cancer-center-data-breach-exposes-info-of-827-000-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8476003 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Newly discovered HTTP/2 protocol vulnerabilities called "CONTINUATION Flood" can lead to denial of service (DoS) attacks, crashing web servers with a single TCP connection in some implementations. [...]]]> 2024-04-04T11:28:55+00:00 https://www.bleepingcomputer.com/news/security/new-http-2-dos-attack-can-crash-web-servers-with-a-single-connection/ www.secnews.physaphae.fr/article.php?IdArticle=8475966 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain Recent high-profile malware attacks teach us lessons on limiting malware risks at organizations. Learn more from Blink Ops about what these attacks taught us. [...]]]> 2024-04-04T10:01:02+00:00 https://www.bleepingcomputer.com/news/security/the-biggest-takeaways-from-recent-malware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8475967 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Department of Homeland Security\'s Cyber Safety Review Board (CSRB) has released a scathing report on how Microsoft handled its 2023 Exchange Online attack, warning that the company needs to do better at securing data and be more truthful about how threat actors stole an Azure signing key. [...]]]> 2024-04-03T20:21:10+00:00 https://www.bleepingcomputer.com/news/security/microsoft-still-unsure-how-hackers-stole-msa-key-in-2023-exchange-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8475559 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Data breach alerting service Have I Been Pwned (HIBP) warns that SurveyLama suffered a data breach in February 2024, which exposed the sensitive data of 4.4 million users. [...]]]> 2024-04-03T18:28:08+00:00 https://www.bleepingcomputer.com/news/security/surveylama-data-breach-exposes-info-of-44-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=8475512 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Jackson County, Missouri, is in a state of emergency after a ransomware attack took down some county services on Tuesday. [...]]]> 2024-04-03T17:10:56+00:00 https://www.bleepingcomputer.com/news/security/jackson-county-in-state-of-emergency-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8475455 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Department of State is investigating claims of a cyber incident after a threat actor leaked documents allegedly stolen from a government contractor. [...]]]> 2024-04-03T14:55:21+00:00 https://www.bleepingcomputer.com/news/security/us-state-department-investigates-alleged-theft-of-government-data/ www.secnews.physaphae.fr/article.php?IdArticle=8475395 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain IT security software company Ivanti has released patches to fix multiple security vulnerabilities impacting its Connect Secure and Policy Secure gateways. [...]]]> 2024-04-03T13:29:32+00:00 https://www.bleepingcomputer.com/news/security/ivanti-fixes-vpn-gateway-vulnerability-allowing-rce-dos-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8475367 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain AT&T is facing multiple class-action lawsuits following the company\'s admission to a massive data breach that exposed the sensitive data of 73 million current and former customers. [...]]]> 2024-04-03T12:28:10+00:00 https://www.bleepingcomputer.com/news/security/atandt-faces-lawsuits-over-data-breach-affecting-73-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8475330 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The Chinese \'Winnti\' hacking group was found using a previously undocumented malware called UNAPIMON to let malicous processes run without being detected. [...]]]> 2024-04-02T17:59:42+00:00 https://www.bleepingcomputer.com/news/security/winntis-new-unapimon-tool-hides-malware-from-security-software/ www.secnews.physaphae.fr/article.php?IdArticle=8474848 False Malware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain Russia\'s Prosecutor General\'s Office has announced the indictment of six suspected "hacking group" members for using malware to steal credit card and payment information from foreign online stores. [...]]]> 2024-04-02T11:37:08+00:00 https://www.bleepingcomputer.com/news/security/russia-charges-suspects-behind-theft-of-160-000-credit-cards/ www.secnews.physaphae.fr/article.php?IdArticle=8474694 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Firmware security firm Binarly has released a free online scanner to detect Linux executables impacted by the XZ Utils supply chain attack, tracked as CVE-2024-3094. [...]]]> 2024-04-02T10:33:51+00:00 https://www.bleepingcomputer.com/news/security/new-xz-backdoor-scanner-detects-implant-in-any-linux-binary/ www.secnews.physaphae.fr/article.php?IdArticle=8474666 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The OWASP Foundation has disclosed a data breach after some members\' resumes were exposed online due to a misconfiguration of its old Wiki web server. [...]]]> 2024-04-01T15:25:44+00:00 https://www.bleepingcomputer.com/news/security/owasp-discloses-data-breach-caused-by-wiki-misconfiguration/ www.secnews.physaphae.fr/article.php?IdArticle=8474195 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain MarineMax, self-described as one of the world\'s largest recreational boat and yacht retailers, says attackers stole employee and customer data after breaching its systems in a March cyberattack. [...]]]> 2024-04-01T14:37:49+00:00 https://www.bleepingcomputer.com/news/security/yacht-retailer-marinemax-discloses-data-breach-after-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8474170 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Data belonging to more than 1.3 million customers of the PandaBuy online shopping platform has been leaked, allegedly after two threat actors exploited multiple vulnerabilities to breach systems. [...]]]> 2024-04-01T11:00:28+00:00 https://www.bleepingcomputer.com/news/security/shopping-platform-pandabuy-data-leak-impacts-13-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=8474071 False Vulnerability,Threat None 2.0000000000000000