This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T16:37:36+00:00 www.secnews.physaphae.fr Bleeping Computer - Magazine Américain Air Canada, the flag carrier and the largest airline of Canada, disclosed a cyber security incident this week in which hackers "briefly" obtained limited access to its internal systems. The incident resulted in the theft of a limited amount of personal information of some of its employees and "certain records." [...]]]> 2023-09-23T07:16:35+00:00 https://www.bleepingcomputer.com/news/security/air-canada-discloses-data-breach-of-employee-and-certain-records/ www.secnews.physaphae.fr/article.php?IdArticle=8387050 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The City of Dallas, Texas, said this week that the Royal ransomware attack that forced it to shut down all IT systems in May started with a stolen account. [...]]]> 2023-09-22T16:59:32+00:00 https://www.bleepingcomputer.com/news/security/dallas-says-royal-ransomware-breached-its-network-using-stolen-account/ www.secnews.physaphae.fr/article.php?IdArticle=8386873 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Security researchers with The Citizen Lab and Google\'s Threat Analysis Group (TAG) revealed today that three zero-days patched by Apple on Thursday were abused as part of an exploit chain to install Cytrox\'s Predator spyware. [...]]]> 2023-09-22T14:16:52+00:00 https://www.bleepingcomputer.com/news/security/recently-patched-apple-chrome-zero-days-exploited-in-spyware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8386842 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Ethereum blockchain analytics firm Nansen asks a subset of its users to reset passwords following a recent data breach at its authentication provider. [...]]]> 2023-09-22T13:22:43+00:00 https://www.bleepingcomputer.com/news/security/crypto-firm-nansen-asks-users-to-reset-passwords-after-vendor-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8386818 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain T-Mobile has denied suffering another data breach following Thursday night reports that a threat actor leaked a large database allegedly containing T-Mobile employees\' data. [...]]]> 2023-09-22T11:05:02+00:00 https://www.bleepingcomputer.com/news/security/t-mobile-denies-new-data-breach-rumors-points-to-authorized-retailer/ www.secnews.physaphae.fr/article.php?IdArticle=8386776 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers discovered a multi-step information stealing campaign where hackers breach the systems of hotels, booking sites, and travel agencies and then use their access to go after financial data belonging to customers. [...]]]> 2023-09-22T07:41:05+00:00 https://www.bleepingcomputer.com/news/security/hotel-hackers-redirect-guests-to-fake-bookingcom-to-steal-cards/ www.secnews.physaphae.fr/article.php?IdArticle=8386679 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A previously unknown threat actor dubbed \'Sandman\' targets telecommunication service providers in the Middle East, Western Europe, and South Asia, using a modular info-stealing malware named \'LuaDream.\' [...]]]> 2023-09-21T15:50:00+00:00 https://www.bleepingcomputer.com/news/security/sandman-hackers-backdoor-telcos-with-new-luadream-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8386438 False Malware,Threat None 1.00000000000000000000 Bleeping Computer - Magazine Américain Pizza Hut Australia is sending data breach notifications to customers, warning that a cyberattack allowed hackers to access their personal information. [...]]]> 2023-09-21T11:50:45+00:00 https://www.bleepingcomputer.com/news/security/pizza-hut-australia-warns-193-000-customers-of-a-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8386337 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The P2PInfect botnet worm is going through a period of highly elevated activity volumes starting in late August and then picking up again in September 2023. [...]]]> 2023-09-20T18:08:26+00:00 https://www.bleepingcomputer.com/news/security/p2pinfect-botnet-activity-surges-600x-with-stealthier-malware-variants/ www.secnews.physaphae.fr/article.php?IdArticle=8386042 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Credit reporting firm TransUnion has denied claims of a security breach after a threat actor known as USDoD leaked data allegedly stolen from the company\'s network. [...]]]> 2023-09-20T15:34:05+00:00 https://www.bleepingcomputer.com/news/security/transunion-denies-it-was-hacked-links-leaked-data-to-3rd-party/ www.secnews.physaphae.fr/article.php?IdArticle=8385987 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The developers of Free Download Manager (FDM) have published a script to check if a Linux device was infected through a recently reported supply chain attack. [...]]]> 2023-09-20T15:02:03+00:00 https://www.bleepingcomputer.com/news/security/free-download-manager-releases-script-to-check-for-linux-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8385952 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A hacker is spreading a fake proof-of-concept (PoC) exploit for a recently fixed WinRAR vulnerability on GitHub, attempting to infect downloaders with the VenomRAT malware. [...]]]> 2023-09-20T10:49:34+00:00 https://www.bleepingcomputer.com/news/security/fake-winrar-proof-of-concept-exploit-drops-venomrat-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8385859 False Malware,Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Data breaches and their investigations are becoming extremely costly for the enterprise. Learn from Outpost24 below about what your business can do to reduce these costs. [...]]]> 2023-09-20T10:02:01+00:00 https://www.bleepingcomputer.com/news/security/expensive-investigations-drive-surging-data-breach-costs/ www.secnews.physaphae.fr/article.php?IdArticle=8385860 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Scammers are impersonating the bankruptcy claim agent for crypto lender Celsius in phishing attacks that attempt to steal funds from cryptocurrency wallets. [...]]]> 2023-09-19T19:38:43+00:00 https://www.bleepingcomputer.com/news/security/claimants-in-celsius-crypto-bankruptcy-targeted-in-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8385542 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain New malware named HTTPSnoop and PipeSnoop are used in cyberattacks on telecommunication service providers in the Middle East, allowing threat actors to remotely execute commands on infected devices. [...]]]> 2023-09-19T11:14:35+00:00 https://www.bleepingcomputer.com/news/security/hackers-backdoor-telecom-providers-with-new-httpsnoop-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8385369 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The APT36 hacking group, aka \'Transparent Tribe,\' has been observed using at least three Android apps that mimic YouTube to infect devices with their signature remote access trojan (RAT), \'CapraRAT.\' [...]]]> 2023-09-18T18:06:13+00:00 https://www.bleepingcomputer.com/news/security/apt36-state-hackers-infect-android-devices-using-youtube-app-clones/ www.secnews.physaphae.fr/article.php?IdArticle=8385032 False None APT 36 1.00000000000000000000 Bleeping Computer - Magazine Américain The malware loader \'Bumblebee\' has broken its two-month vacation with a new campaign that employs new distribution techniques that abuse 4shared WebDAV services. [...]]]> 2023-09-18T12:47:10+00:00 https://www.bleepingcomputer.com/news/security/bumblebee-malware-returns-in-new-attacks-abusing-webdav-folders/ www.secnews.physaphae.fr/article.php?IdArticle=8384946 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A Chinese espionage-focused hacker tracked as \'Earth Lusca\' was observed targeting government agencies in multiple countries, using a new Linux backdoor dubbed \'SprySOCKS.\' [...]]]> 2023-09-18T10:05:41+00:00 https://www.bleepingcomputer.com/news/security/new-sprysocks-linux-malware-used-in-cyber-espionage-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8384885 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Passwords have long been used as the primary gatekeepers of digital security, yet they can also be a weak link in the chain. Learn more from Specops Software on how to find and secure compromised passwords. [...]]]> 2023-09-18T10:01:02+00:00 https://www.bleepingcomputer.com/news/security/are-your-end-users-passwords-compromised-heres-how-to-check/ www.secnews.physaphae.fr/article.php?IdArticle=8384886 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain This week\'s big news is the extortion attacks on the Caesars and MGM Las Vegas casino chains, with one having already paid the ransom and the other still facing operational disruptions. [...]]]> 2023-09-15T17:54:14+00:00 https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-september-15th-2023-russian-roulette/ www.secnews.physaphae.fr/article.php?IdArticle=8383894 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Software company Retool says the accounts of 27 cloud customers were compromised following a targeted and multi-stage social engineering attack. [...]]]> 2023-09-15T15:15:29+00:00 https://www.bleepingcomputer.com/news/security/retool-blames-breach-on-google-authenticator-mfa-cloud-sync-feature/ www.secnews.physaphae.fr/article.php?IdArticle=8383848 False Cloud None 2.0000000000000000 Bleeping Computer - Magazine Américain California\'s Attorney General announced today that Google will pay $93 million to settle a privacy lawsuit alleging it violated the U.S. state\'s consumer protection laws. [...]]]> 2023-09-15T09:57:25+00:00 https://www.bleepingcomputer.com/news/google/google-pays-93m-to-settle-android-tracking-lawsuit-in-california/ www.secnews.physaphae.fr/article.php?IdArticle=8383704 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Trucking and fleet management solutions provider ORBCOMM has confirmed that a ransomware attack is causing recent service outages that prevent trucking companies from managing their fleets. [...]]]> 2023-09-15T09:33:46+00:00 https://www.bleepingcomputer.com/news/security/orbcomm-ransomware-attack-causes-trucking-fleet-management-outage/ www.secnews.physaphae.fr/article.php?IdArticle=8383705 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain An affiliate of the BlackCat ransomware group, also known as APLHV, is behind the attack that disrupted MGM Resorts\' operations, forcing the company to shut down IT systems. [...]]]> 2023-09-14T18:52:04+00:00 https://www.bleepingcomputer.com/news/security/mgm-casinos-esxi-servers-allegedly-encrypted-in-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8383545 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Auckland Transport (AT) transportation authority in New Zealand is dealing with a widespread outage caused by a cyber incident, impacting a wide range of customer services. [...]]]> 2023-09-14T16:09:02+00:00 https://www.bleepingcomputer.com/news/security/auckland-transport-authority-hit-by-suspected-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8382782 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Caesars Entertainment, self-described as the largest U.S. casino chain with the most extensive loyalty program in the industry, says it paid a ransom to avoid the online leak of customer data stolen in a recent cyberattack. [...]]]> 2023-09-14T12:58:20+00:00 https://www.bleepingcomputer.com/news/security/caesars-entertainment-confirms-ransom-payment-customer-data-theft/ www.secnews.physaphae.fr/article.php?IdArticle=8382725 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft says an Iranian-backed threat group has targeted thousands of organizations in the U.S. and worldwide in password spray attacks since February 2023. [...]]]> 2023-09-14T12:30:00+00:00 https://www.bleepingcomputer.com/news/security/iranian-hackers-breach-defense-orgs-in-password-spray-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8382726 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain United Kingdom\'s Greater Manchester Police (GMP) said earlier today that some of its employees\' personal information was impacted by a ransomware attack that hit a third-party supplier. [...]]]> 2023-09-14T11:13:12+00:00 https://www.bleepingcomputer.com/news/security/manchester-police-officers-data-exposed-in-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8382706 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Criminal IP, a cyber threat intelligence search engine, has achieved PCI DSS Level 1 certification. Learn more from Criminal IP about their cyber threat intelligence search engine. [...]]]> 2023-09-14T10:02:01+00:00 https://www.bleepingcomputer.com/news/security/criminal-ip-elevates-payment-security-with-pci-dss-level-1-certification/ www.secnews.physaphae.fr/article.php?IdArticle=8382707 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Threat actors use Google Ads tracking templates as a loophole to create convincing Webex software search ads that redirect users to websites that distribute the BatLoader malware. [...]]]> 2023-09-14T09:47:16+00:00 https://www.bleepingcomputer.com/news/security/fake-cisco-webex-google-ads-abuse-tracking-templates-to-push-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8382664 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Software bug-tracking company Rollbar disclosed a data breach after unknown attackers hacked its systems in early August and gained access to customer access tokens. [...]]]> 2023-09-13T15:57:05+00:00 https://www.bleepingcomputer.com/news/security/rollbar-discloses-data-breach-after-hackers-stole-access-tokens/ www.secnews.physaphae.fr/article.php?IdArticle=8382421 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain A new ransomware strain called 3AM has been uncovered after a threat actor used it in an attack that failed to deploy LockBit ransomware on a target network. [...]]]> 2023-09-13T08:29:40+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-new-3am-ransomware-to-save-failed-lockbit-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8382291 False Ransomware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain A new information stealer malware named \'MetaStealer\' has appeared in the wild, stealing a wide variety of sensitive information from Intel-based macOS computers. [...]]]> 2023-09-12T17:06:02+00:00 https://www.bleepingcomputer.com/news/security/new-metastealer-malware-targets-intel-based-macos-systems/ www.secnews.physaphae.fr/article.php?IdArticle=8382018 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft says an initial access broker known for working with ransomware groups has recently switched to Microsoft Teams phishing attacks to breach corporate networks. [...]]]> 2023-09-12T15:14:00+00:00 https://www.bleepingcomputer.com/news/security/ransomware-access-broker-steals-accounts-via-microsoft-teams-phishing/ www.secnews.physaphae.fr/article.php?IdArticle=8381999 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain A reported Free Download Manager supply chain attack redirected Linux users to a malicious Debian package repository that installed information-stealing malware. [...]]]> 2023-09-12T11:25:44+00:00 https://www.bleepingcomputer.com/news/security/free-download-manager-site-redirected-linux-users-to-malware-for-years/ www.secnews.physaphae.fr/article.php?IdArticle=8381869 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new attack dubbed \'WiKI-Eve\' can intercept the cleartext transmissions of smartphones connected to modern WiFi routers and deduce individual numeric keystrokes at an accuracy rate of up to 90%, allowing numerical passwords to be stolen. [...]]]> 2023-09-11T16:30:50+00:00 https://www.bleepingcomputer.com/news/security/new-wiki-eve-attack-can-steal-numerical-passwords-over-wifi/ www.secnews.physaphae.fr/article.php?IdArticle=8381490 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies today to patch security vulnerabilities abused as part of a zero-click iMessage exploit chain to infect iPhones with NSO Group\'s Pegasus spyware. [...]]]> 2023-09-11T12:21:57+00:00 https://www.bleepingcomputer.com/news/security/cisa-warns-govt-agencies-to-secure-iphones-against-spyware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8381417 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain A nation-state threat actor known as \'Charming Kitten\' (Phosphorus, TA453, APT35/42) has been observed deploying a previously unknown backdoor malware named \'Sponsor\' against 34 companies around the globe. [...]]]> 2023-09-11T12:19:26+00:00 https://www.bleepingcomputer.com/news/security/iranian-hackers-backdoor-34-orgs-with-new-sponsor-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8381418 False Malware,Threat APT 35 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers use a massive network of fake and compromised Facebook accounts to send out millions of Messenger phishing messages to target Facebook business accounts with password-stealing malware. [...]]]> 2023-09-11T11:01:25+00:00 https://www.bleepingcomputer.com/news/security/facebook-messenger-phishing-wave-targets-100k-business-accounts-per-week/ www.secnews.physaphae.fr/article.php?IdArticle=8381387 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Associated Press is warning of a data breach impacting AP Stylebook customers where the attackers used the stolen data to conduct targeted phishing attacks. [...]]]> 2023-09-10T13:22:02+00:00 https://www.bleepingcomputer.com/news/security/associated-press-warns-that-ap-stylebook-data-breach-led-to-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8381023 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Several malicious Telegram clones for Android on Google Play were installed over 60,000 times, infecting people with spyware that steals user messages, contacts lists, and other data. [...]]]> 2023-09-10T10:39:18+00:00 https://www.bleepingcomputer.com/news/security/evil-telegram-android-apps-on-google-play-infected-60k-with-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8380992 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A new phishing campaign is abusing Microsoft Teams messages to send malicious attachments that install the DarkGate Loader malware. [...]]]> 2023-09-09T10:50:40+00:00 https://www.bleepingcomputer.com/news/security/microsoft-teams-phishing-attack-pushes-darkgate-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8380745 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Ragnar Locker ransomware gang has claimed responsibility for an attack on Israel\'s Mayanei Hayeshua hospital, threatening to leak 1 TB of data allegedly stolen during the cyberattack. [...]]]> 2023-09-08T15:02:43+00:00 https://www.bleepingcomputer.com/news/security/ragnar-locker-claims-attack-on-israels-mayanei-hayeshua-hospital/ www.secnews.physaphae.fr/article.php?IdArticle=8380510 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Dymocks Booksellers is warning customers their personal information was exposed in a data breach after the company\'s database was shared on hacking forums. [...]]]> 2023-09-08T13:13:04+00:00 https://www.bleepingcomputer.com/news/security/dymocks-booksellers-suffers-data-breach-impacting-836k-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8380487 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain State-backed hacking groups have breached a U.S. aeronautical organization using exploits targeting critical Zoho ManageEngine and Fortinet vulnerabilities, a joint advisory published by CISA, the FBI, and the United States Cyber Command (USCYBERCOM) revealed on Thursday. [...]]]> 2023-09-07T17:32:42+00:00 https://www.bleepingcomputer.com/news/security/iranian-hackers-breach-us-aviation-org-via-manageengine-fortinet-bugs/ www.secnews.physaphae.fr/article.php?IdArticle=8381205 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Citizen Lab says two zero-days fixed by Apple today in emergency security updates were actively abused as part of a zero-click exploit chain to deploy NSO Group\'s Pegasus commercial spyware onto fully patched iPhones. [...]]]> 2023-09-07T16:18:23+00:00 https://www.bleepingcomputer.com/news/security/apple-zero-click-imessage-exploit-used-to-infect-iphones-with-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8380202 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Apple released emergency security updates to fix two new zero-day vulnerabilities exploited in attacks targeting iPhone and Mac users, for a total of 13 exploited zero-days patched since the start of the year. [...]]]> 2023-09-07T13:58:55+00:00 https://www.bleepingcomputer.com/news/apple/apple-discloses-2-new-zero-days-exploited-to-attack-iphones-macs/ www.secnews.physaphae.fr/article.php?IdArticle=8380163 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Google\'s Threat Analysis Group (TAG) says North Korean state hackers are again targeting security researchers in attacks using at least one zero-day in an undisclosed popular software. [...]]]> 2023-09-07T12:48:03+00:00 https://www.bleepingcomputer.com/news/security/google-state-hackers-attack-security-researchers-with-new-zero-day/ www.secnews.physaphae.fr/article.php?IdArticle=8380150 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Johnson & Johnson Health Care Systems ("Janssen") has informed its CarePath customers that their sensitive information has been compromised in a third-party data breach involving IBM. [...]]]> 2023-09-07T11:02:20+00:00 https://www.bleepingcomputer.com/news/security/johnson-and-johnson-discloses-ibm-data-breach-impacting-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8380098 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The University of Michigan (UMICH) warned staff and students on Tuesday that they\'re required to reset their account passwords after a recent cyberattack. [...]]]> 2023-09-06T16:43:14+00:00 https://www.bleepingcomputer.com/news/security/university-of-michigan-requires-password-resets-after-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8379823 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft says Storm-0558 Chinese hackers stole a signing key used to breach government email accounts from a Windows crash dump after compromising a Microsoft engineer\'s corporate account. [...]]]> 2023-09-06T14:12:18+00:00 https://www.bleepingcomputer.com/news/microsoft/hackers-stole-microsoft-signing-key-from-windows-crash-dump/ www.secnews.physaphae.fr/article.php?IdArticle=8379776 False None None 4.0000000000000000 Bleeping Computer - Magazine Américain A new Mirai malware botnet variant has been spotted infecting inexpensive Android TV set-top boxes used by millions for media streaming. [...]]]> 2023-09-06T12:56:36+00:00 https://www.bleepingcomputer.com/news/security/mirai-variant-infects-low-cost-android-tv-boxes-for-ddos-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8379745 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The September 2023 Android security updates tackle 33 vulnerabilities, including a zero-day bug currently targeted in the wild. [...]]]> 2023-09-06T12:20:57+00:00 https://www.bleepingcomputer.com/news/security/september-android-updates-fix-zero-day-exploited-in-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8379746 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A threat actor known as W3LL developed a phishing kit that can bypass multi-factor authentication along with other tools that compromised more than 8,000 Microsoft 365 corporate accounts. [...]]]> 2023-09-06T06:33:54+00:00 https://www.bleepingcomputer.com/news/security/w3ll-phishing-kit-hijacks-thousands-of-microsoft-365-accounts-bypasses-mfa/ www.secnews.physaphae.fr/article.php?IdArticle=8379573 False Tool,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Online cryptocurrency casino Stake.com announced that its ETH/BSC hot wallets had been compromised to perform unauthorized transactions, with over $40 million in crypto reportedly stolen. [...]]]> 2023-09-05T14:24:30+00:00 https://www.bleepingcomputer.com/news/security/crypto-casino-stakecom-loses-41-million-to-hot-wallet-hackers/ www.secnews.physaphae.fr/article.php?IdArticle=8379255 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The Chaes malware has returned as a new, more advanced variant that includes a custom implementation of the Google DevTools protocol for direct access to the victim\'s browser functions, allowing it to steal data using WebSockets. [...]]]> 2023-09-05T13:01:19+00:00 https://www.bleepingcomputer.com/news/security/chaes-malware-now-uses-google-chrome-devtools-protocol-to-steal-data/ www.secnews.physaphae.fr/article.php?IdArticle=8379223 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Freecycle, an online forum dedicated to exchanging used items rather than trashing them, confirmed a massive data breach that affected more than 7 million users. [...]]]> 2023-09-04T14:09:38+00:00 https://www.bleepingcomputer.com/news/security/freecycle-confirms-massive-data-breach-impacting-7-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=8378863 False Data Breach None 1.00000000000000000000 Bleeping Computer - Magazine Américain The German Federal Financial Supervisory Authority (BaFin) announced today that an ongoing distributed denial-of-service (DDoS) attack has been impacting its website since Friday. [...]]]> 2023-09-04T13:11:14+00:00 https://www.bleepingcomputer.com/news/security/german-financial-agency-site-disrupted-by-ddos-attack-since-friday/ www.secnews.physaphae.fr/article.php?IdArticle=8378864 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are exploiting two recent MinIO vulnerabilities to breach object storage systems and access private information, execute arbitrary code, and potentially take over servers. [...]]]> 2023-09-04T12:45:19+00:00 https://www.bleepingcomputer.com/news/security/hackers-exploit-minio-storage-system-to-breach-corporate-networks/ www.secnews.physaphae.fr/article.php?IdArticle=8378835 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain The University of Sydney (USYD) has announced it has suffered a data breach through a third-party service provider, exposing the personal data of recently applied and enrolled international applicants. [...]]]> 2023-09-03T11:13:15+00:00 https://www.bleepingcomputer.com/news/security/university-of-sydney-data-breach-impacts-recent-applicants/ www.secnews.physaphae.fr/article.php?IdArticle=8378384 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain A new sextortion scam is making the rounds that pretends to be an email from the adult site YouPorn, warning that a sexually explicit video of you was uploaded to the site and suggesting you pay to have it taken down. [...]]]> 2023-09-02T10:12:06+00:00 https://www.bleepingcomputer.com/news/security/fake-youporn-extortion-scam-threatens-to-leak-your-sex-tape/ www.secnews.physaphae.fr/article.php?IdArticle=8378202 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Topgolf Callaway (Callaway) suffered a data breach at the start of August, which exposed the sensitive personal and account data of more than a million customers. [...]]]> 2023-09-01T08:43:44+00:00 https://www.bleepingcomputer.com/news/security/golf-gear-giant-callaway-data-breach-exposes-info-of-11-million/ www.secnews.physaphae.fr/article.php?IdArticle=8377863 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Forever 21 clothing and accessories retailer is sending data breach notifications to more than half a million individuals who had their personal information exposed to network intruders. [...]]]> 2023-08-31T15:23:26+00:00 https://www.bleepingcomputer.com/news/security/forever-21-data-breach-hackers-accessed-info-of-500-000/ www.secnews.physaphae.fr/article.php?IdArticle=8377864 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers working for the Main Directorate of the General Staff of the Armed Forces of the Russian Federation, more commonly known as the GRU, have been targeting Android devices in Ukraine with a new malicious framework named \'Infamous Chisel. [...]]]> 2023-08-31T10:48:51+00:00 https://www.bleepingcomputer.com/news/security/gru-hackers-attack-ukrainian-military-with-new-android-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8377220 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain American entertainment giant Paramount Global disclosed a data breach after its systems got hacked and attackers gained access to personally identifiable information (PII). [...]]]> 2023-08-30T19:08:43+00:00 https://www.bleepingcomputer.com/news/security/paramount-discloses-data-breach-following-security-incident/ www.secnews.physaphae.fr/article.php?IdArticle=8376958 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are targeting Cisco Adaptive Security Appliance (ASA) SSL VPNs in credential stuffing and brute-force attacks that take advantage of lapses in security defenses, such as not enforcing multi-factor authentication (MFA). [...]]]> 2023-08-30T12:00:54+00:00 https://www.bleepingcomputer.com/news/security/hacking-campaign-bruteforces-cisco-vpns-to-breach-networks/ www.secnews.physaphae.fr/article.php?IdArticle=8376771 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Trojanized Signal and Telegram apps containing the BadBazaar spyware were uploaded onto Google Play and Samsung Galaxy Store by a Chinese APT hacking group known as GREF. [...]]]> 2023-08-30T11:16:48+00:00 https://www.bleepingcomputer.com/news/security/trojanized-signal-and-telegram-apps-on-google-play-delivered-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8376772 False None APT 15 3.0000000000000000 Bleeping Computer - Magazine Américain The FBI announced today the disruption of the Qakbot botnet in an international law enforcement operation that not only seized infrastructure but also uninstalled the malware from infected devices. [...]]]> 2023-08-29T16:45:48+00:00 https://www.bleepingcomputer.com/news/security/how-the-fbi-nuked-qakbot-malware-from-infected-windows-pcs/ www.secnews.physaphae.fr/article.php?IdArticle=8376418 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new version of the DreamBus botnet malware exploits a critical-severity remote code execution vulnerability in RocketMQ servers to infect devices. [...]]]> 2023-08-29T15:17:34+00:00 https://www.bleepingcomputer.com/news/security/dreambus-malware-exploits-rocketmq-flaw-to-infect-servers/ www.secnews.physaphae.fr/article.php?IdArticle=8376419 False Malware,Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain A novel Android banking malware named MMRat utilizes a rarely used communication method, protobuf data serialization, to more efficiently steal data from compromised devices. [...]]]> 2023-08-29T14:04:20+00:00 https://www.bleepingcomputer.com/news/security/new-android-mmrat-malware-uses-protobuf-protocol-to-steal-your-data/ www.secnews.physaphae.fr/article.php?IdArticle=8376339 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Japan\'s computer emergency response team (JPCERT) is sharing a new \'MalDoc in PDF\' attack detected in July 2023 that bypasses detection by embedding malicious Word files into PDFs. [...]]]> 2023-08-28T16:32:37+00:00 https://www.bleepingcomputer.com/news/security/maldoc-in-pdfs-hiding-malicious-word-docs-in-pdf-files/ www.secnews.physaphae.fr/article.php?IdArticle=8375862 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain PurFoods, which conducts business in the U.S. as \'Mom\'s Meals,\' is warning of a data breach after the personal information of 1.2 million customers and employees was stolen in a ransomware attack. [...]]]> 2023-08-28T10:24:22+00:00 https://www.bleepingcomputer.com/news/security/moms-meals-discloses-data-breach-impacting-12-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8375712 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Threat actors take advantage of common password mistakes to breach corporate networks. Learn more from Specops Software on the four most common mistakes and how to strengthen your Active Directory against these risks. [...]]]> 2023-08-28T10:02:01+00:00 https://www.bleepingcomputer.com/news/security/four-common-password-mistakes-hackers-love-to-exploit/ www.secnews.physaphae.fr/article.php?IdArticle=8375713 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The Rhysida ransomware gang has claimed responsibility for the massive cyberattack on Prospect Medical Holdings, claiming to have stolen 500,000 social security numbers, corporate documents, and patient records. [...]]]> 2023-08-27T18:37:44+00:00 https://www.bleepingcomputer.com/news/security/rhysida-claims-ransomware-attack-on-prospect-medical-threatens-to-sell-data/ www.secnews.physaphae.fr/article.php?IdArticle=8375376 False Ransomware,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain Pôle emploi, France\'s governmental unemployment registration and financial aid agency, is informing of a data breach that exposed data belonging to 10 million individuals. [...]]]> 2023-08-25T13:01:02+00:00 https://www.bleepingcomputer.com/news/security/data-breach-at-french-govt-agency-exposes-info-of-10-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8374593 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Leaseweb, one of the world\'s largest cloud and hosting providers, notified people that it\'s working on restoring "critical" systems disabled following a recent security breach. [...]]]> 2023-08-25T10:59:10+00:00 https://www.bleepingcomputer.com/news/security/leaseweb-is-restoring-critical-systems-after-security-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8374537 False Cloud None 2.0000000000000000 Bleeping Computer - Magazine Américain Multiple reports on social media warn of a data breach at financial and risk advisory company Kroll that resulted in exposing to an unauthorized third-party the personal data of some credit claimants. [...]]]> 2023-08-25T10:10:04+00:00 https://www.bleepingcomputer.com/news/security/kroll-data-breach-exposes-info-of-ftx-blockfi-genesis-creditors/ www.secnews.physaphae.fr/article.php?IdArticle=8374538 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The Federal Bureau of Investigation warned that patches for a critical Barracuda Email Security Gateway (ESG) remote command injection flaw are "ineffective," and patched appliances are still being compromised in ongoing attacks. [...]]]> 2023-08-24T15:09:53+00:00 https://www.bleepingcomputer.com/news/security/fbi-warns-of-patched-barracuda-esg-appliances-still-being-hacked/ www.secnews.physaphae.fr/article.php?IdArticle=8374201 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Ransomware threat actors are spending less time on compromised networks before security solutions sound the alarm. In the first half of the year the hackers\' median dwell time dropped to five days from nine in 2022 [...]]]> 2023-08-24T14:18:04+00:00 https://www.bleepingcomputer.com/news/security/ransomware-hackers-dwell-time-drops-to-5-days-rdp-still-widely-used/ www.secnews.physaphae.fr/article.php?IdArticle=8374177 False Ransomware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Cybercriminals behind the Smoke Loader botnet are using a new piece of malware called Whiffy Recon to triangulate the location of infected devices through WiFi scanning and Google\'s geolocation API. [...]]]> 2023-08-24T11:36:57+00:00 https://www.bleepingcomputer.com/news/security/new-whiffy-recon-malware-uses-wifi-to-triangulate-your-location/ www.secnews.physaphae.fr/article.php?IdArticle=8374126 False Malware None 4.0000000000000000 Bleeping Computer - Magazine Américain The North Korean state-backed hacker group tracked as Lazarus has been exploiting a critical vulnerability (CVE-2022-47966) in Zoho\'s ManageEngine ServiceDesk to compromise an internet backbone infrastructure provider and healthcare organizations. [...]]]> 2023-08-24T08:31:20+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-public-manageengine-exploit-to-breach-internet-org/ www.secnews.physaphae.fr/article.php?IdArticle=8374056 False Vulnerability APT 38 2.0000000000000000 Bleeping Computer - Magazine Américain A London jury has found that an 18-year-old member of the Lapsus$ data extortion gang helped hack multiple high-profile companies, stole data from them, and demanded a ransom threatening to leak the information. [...]]]> 2023-08-23T18:17:45+00:00 https://www.bleepingcomputer.com/news/security/lapsus-teen-hackers-convicted-of-high-profile-cyberattacks/ www.secnews.physaphae.fr/article.php?IdArticle=8373836 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Bitwarden, the maker of the popular open-source password manager tool, has released \'Secrets Manager,\' an end-to-end encrypted secrets manager for IT professionals, software development teams, and the DevOps industry. [...]]]> 2023-08-23T15:04:02+00:00 https://www.bleepingcomputer.com/news/security/bitwarden-releases-free-and-open-source-e2ee-secrets-manager/ www.secnews.physaphae.fr/article.php?IdArticle=8373790 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Starting on Monday, Discord has been reaching out to users affected by a data breach disclosed earlier this year to let them know what Personal Identifying Information (PII) was exposed in the incident. [...]]]> 2023-08-23T14:45:23+00:00 https://www.bleepingcomputer.com/news/security/discord-starts-notifying-users-affected-by-march-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8373766 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Danish hosting firms CloudNordic and AzeroCloud have suffered ransomware attacks, causing the loss of the majority of customer data and forcing the hosting providers to shut down all systems, including websites, email, and customer sites. [...]]]> 2023-08-23T10:40:43+00:00 https://www.bleepingcomputer.com/news/security/hosting-firm-says-it-lost-all-customer-data-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8373686 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain When a cyberattack like the 2023 MOVEit hack makes global news headlines, attention often focuses on the names of the affected organizations. This article from @Outpost24 overviews the Moveit hack and aims to draw some important actionable takeaways for your business. [...]]]> 2023-08-23T10:01:02+00:00 https://www.bleepingcomputer.com/news/security/the-moveit-hack-and-what-it-taught-us-about-application-security/ www.secnews.physaphae.fr/article.php?IdArticle=8373687 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain A WinRar zero-day vulnerability tracked as CVE-2023-38831 was actively exploited to install malware when clicking on harmless files in an archive, allowing the hackers to breach online cryptocurrency trading accounts. [...]]]> 2023-08-23T09:53:26+00:00 https://www.bleepingcomputer.com/news/security/winrar-zero-day-exploited-since-april-to-hack-trading-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8373658 False Malware,Hack,Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain In a new HiatusRAT malware campaign, threat actors have targeted a server belonging to the U.S. Department of Defense in what researchers described as a reconnaissance attack. [...]]]> 2023-08-22T12:47:21+00:00 https://www.bleepingcomputer.com/news/security/new-hiatusrat-malware-attacks-target-us-defense-department/ www.secnews.physaphae.fr/article.php?IdArticle=8373169 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain There\'s mounting evidence that Akira ransomware targets Cisco VPN (virtual private network) products as an attack vector to breach corporate networks, steal, and eventually encrypt data. [...]]]> 2023-08-22T09:00:00+00:00 https://www.bleepingcomputer.com/news/security/akira-ransomware-targets-cisco-vpns-to-breach-organizations/ www.secnews.physaphae.fr/article.php?IdArticle=8373136 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain A previously unidentified APT hacking group named \'Carderbee\' was observed attacking organizations in Hong Kong and other regions in Asia, using legitimate software to infect targets\' computers with the PlugX malware. [...]]]> 2023-08-22T06:00:00+00:00 https://www.bleepingcomputer.com/news/security/carderbee-hacking-group-hits-hong-kong-orgs-in-supply-chain-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8373137 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Researchers from Italy and the UK have discovered four vulnerabilities in the TP-Link Tapo L530E smart bulb and TP-Link\'s Tapo app, which could allow attackers to steal their target\'s WiFi password. [...]]]> 2023-08-21T15:55:29+00:00 https://www.bleepingcomputer.com/news/security/tp-link-smart-bulbs-can-let-hackers-steal-your-wifi-password/ www.secnews.physaphae.fr/article.php?IdArticle=8372855 False Vulnerability None 4.0000000000000000 Bleeping Computer - Magazine Américain Google is testing a new feature in the Chrome browser that will warn users when an installed extension has been removed from the Chrome Web Store, usually indicative of it being malware. [...]]]> 2023-08-20T13:26:54+00:00 https://www.bleepingcomputer.com/news/google/google-chrome-to-warn-when-installed-extensions-are-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8372467 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The China-aligned APT (advanced persistent threat) group known as \'Bronze Starlight\' was seen targeting the Southeast Asian gambling industry with malware signed using a valid certificate used by the Ivacy VPN provider. [...]]]> 2023-08-19T10:07:14+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-vpn-providers-code-certificate-to-sign-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8372468 False Malware APT 10 3.0000000000000000 Bleeping Computer - Magazine Américain An international law enforcement operation led by Interpol has led to the arrest of 14 suspected cybercriminals in an operation codenamed \'Africa Cyber Surge II,\' launched in April 2023. [...]]]> 2023-08-18T10:39:02+00:00 https://www.bleepingcomputer.com/news/security/interpol-arrests-14-suspected-cybercriminals-for-stealing-40-million/ www.secnews.physaphae.fr/article.php?IdArticle=8371797 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Threat actors increasingly distribute malicious Android APKs (packaged app installers) that resist decompilation using unsupported, unknown, or heavily tweaked compression algorithms. [...]]]> 2023-08-17T10:51:12+00:00 https://www.bleepingcomputer.com/news/security/thousands-of-android-apks-use-compression-trick-to-thwart-analysis/ www.secnews.physaphae.fr/article.php?IdArticle=8371282 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A new campaign involving the delivery of proxy server apps to Windows systems has been uncovered, where users are reportedly involuntarily acting as residential exit nodes controlled by a private company. [...]]]> 2023-08-16T11:31:40+00:00 https://www.bleepingcomputer.com/news/security/massive-400-000-proxy-botnet-built-with-stealthy-malware-infections/ www.secnews.physaphae.fr/article.php?IdArticle=8370784 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A phishing campaign was observed predominantly targeting a notable energy company in the US, employing QR codes to slip malicious emails into inboxes and bypass security. [...]]]> 2023-08-16T10:16:40+00:00 https://www.bleepingcomputer.com/news/security/major-us-energy-org-targeted-in-qr-code-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8370746 False None None 4.0000000000000000 Bleeping Computer - Magazine Américain A threat actor has compromised close to 2,000 thousand Citrix NetScaler servers in a massive campaign exploiting the critical-severity remote code execution tracked as CVE-2023-3519. [...]]]> 2023-08-15T15:41:38+00:00 https://www.bleepingcomputer.com/news/security/almost-2-000-citrix-netscaler-servers-backdoored-in-hacking-campaign/ www.secnews.physaphae.fr/article.php?IdArticle=8370374 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The developers of Raccoon Stealer information-stealing malware have ended their 6-month hiatus from hacker forums to promote a new 2.3.0 version of the malware to cyber criminals. [...]]]> 2023-08-15T13:24:32+00:00 https://www.bleepingcomputer.com/news/security/raccoon-stealer-malware-returns-with-new-stealthier-version/ www.secnews.physaphae.fr/article.php?IdArticle=8370317 False Malware None 4.0000000000000000 Bleeping Computer - Magazine Américain Mandiant has released a scanner to check if a Citrix NetScaler Application Delivery Controller (ADC) or NetScaler Gateway Appliance was compromised in widespread attacks exploiting the CVE-2023-3519 vulnerability.  [...]]]> 2023-08-15T11:32:29+00:00 https://www.bleepingcomputer.com/news/security/new-cve-2023-3519-scanner-detects-hacked-citrix-adc-gateway-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8370280 False None None 2.0000000000000000