This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-12T00:11:53+00:00 www.secnews.physaphae.fr Bleeping Computer - Magazine Américain While cybercriminals have used generative AI technology to create convincing emails, government agencies have warned about the potential abuse of AI tools to creating malicious software, despite the safeguards and restrictions that vendors implemented. [...]]]> 2024-09-24T12:25:00+00:00 https://www.bleepingcomputer.com/news/security/hackers-deploy-ai-written-malware-in-targeted-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8584014 False Malware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain A new version of the Octo Android malware, named "Octo2," has been seen spreading across Europe under the guise of NordVPN, Google Chrome, and an app called Europe Enterprise. [...]]]> 2024-09-24T05:00:00+00:00 https://www.bleepingcomputer.com/news/security/new-octo-android-malware-version-impersonates-nordvpn-google-chrome/ www.secnews.physaphae.fr/article.php?IdArticle=8583822 False Malware,Mobile None 1.00000000000000000000 Bleeping Computer - Magazine Américain An affiliate of the Mallox ransomware operation, also known as TargetCompany, was spotted using a slightly modified version of the Kryptina ransomware to attack Linux systems. [...]]]> 2024-09-23T14:29:15+00:00 https://www.bleepingcomputer.com/news/security/new-mallox-ransomware-linux-variant-based-on-leaked-kryptina-code/ www.secnews.physaphae.fr/article.php?IdArticle=8583183 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new version of the Necro Trojan malware for Android was installed on 11 million devices through Google Play in malicious SDK supply chain attacks. [...]]]> 2024-09-23T11:15:47+00:00 https://www.bleepingcomputer.com/news/security/android-malware-necro-infects-11-million-devices-via-google-play/ www.secnews.physaphae.fr/article.php?IdArticle=8583016 False Malware,Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain In today\'s fast-paced business environment, employees increasingly turn to unauthorized IT solutions, called Shadow IT, to streamline their work and boost productivity. This article explores the prevalence of shadow IT, the risks it poses and discusses strategies for managing it. [...]]]> 2024-09-23T10:01:11+00:00 https://www.bleepingcomputer.com/news/security/how-to-manage-shadow-it-and-reduce-your-attack-surface/ www.secnews.physaphae.fr/article.php?IdArticle=8582974 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A massive infostealer malware operation encompassing thirty campaigns targeting a broad spectrum of demographics and system platforms has been uncovered, attributed to a cybercriminal group named "Marko Polo." [...]]]> 2024-09-21T12:45:38+00:00 https://www.bleepingcomputer.com/news/security/global-infostealer-malware-operation-targets-crypto-users-gamers/ www.secnews.physaphae.fr/article.php?IdArticle=8581474 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Walt Disney Company is reportedly ditching Slack after a July data breach exposed over 1TB of confidential messages and files posted to the company\'s internal communication channels. [...]]]> 2024-09-20T14:33:01+00:00 https://www.bleepingcomputer.com/news/security/disney-ditching-slack-after-massive-july-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8580704 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Dell has confirmed to BleepingComputer that they are investigating recent claims that it suffered a data breach after a threat actor leaked the data for over 10,000 employees. [...]]]> 2024-09-20T12:30:47+00:00 https://www.bleepingcomputer.com/news/security/dell-investigates-data-breach-claims-after-hacker-leaks-employee-info/ www.secnews.physaphae.fr/article.php?IdArticle=8580620 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Google announced that starting today, passkeys added to Google Password Manager will automatically sync between Windows, macOS, Linux, Android, and ChromeOS devices for logged-in users. [...]]]> 2024-09-19T12:00:00+00:00 https://www.bleepingcomputer.com/news/google/google-password-manager-now-automatically-syncs-your-passkeys/ www.secnews.physaphae.fr/article.php?IdArticle=8579702 False Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain Onboarding new employees is an important time for any organization but comes with a unique set of security risks. Learn more from Specops Software about these risks and how to mitigate them. [...]]]> 2024-09-19T10:02:12+00:00 https://www.bleepingcomputer.com/news/security/how-to-reduce-cyber-risk-during-employee-onboarding/ www.secnews.physaphae.fr/article.php?IdArticle=8579674 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A clever threat campaign is abusing GitHub repositories to distribute malware targeting users who frequent an open source project repository or are subscribed to email notifications from it. A malicious GitHub user opens a new "issue" on an open source repository falsely claiming that the project contains a "security vulnerability." [...]]]> 2024-09-19T07:07:38+00:00 https://www.bleepingcomputer.com/news/security/clever-github-scanner-campaign-abusing-repos-to-push-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8579545 False Malware,Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The FBI and cybersecurity researchers have disrupted a massive Chinese botnet called "Raptor Train" that infected over 260,000 networking devices to target critical infrastructure in the US and in other countries. [...]]]> 2024-09-18T12:00:00+00:00 https://www.bleepingcomputer.com/news/security/flax-typhoon-hackers-infect-260-000-routers-ip-cameras-with-botnet-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8579197 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain On Tuesday, Russian anti-malware company Doctor Web (Dr.Web) disclosed a security breach after its systems were targeted in a cyberattack over the weekend. [...]]]> 2024-09-18T11:49:33+00:00 https://www.bleepingcomputer.com/news/security/russian-security-firm-drweb-disconnects-all-servers-after-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8579198 False None None 4.0000000000000000 Bleeping Computer - Magazine Américain Learn about the top 4 security automation use cases that can streamline your cybersecurity efforts. This guide covers reducing enriching indicators of compromise (IoCs), monitoring external attack surface(s), scanning for web application vulnerabilities and monitoring for leaked user credentials - specifically email addresses. [...]]]> 2024-09-18T10:01:11+00:00 https://www.bleepingcomputer.com/news/security/4-top-security-automation-use-cases-a-detailed-guide/ www.secnews.physaphae.fr/article.php?IdArticle=8579199 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain Temu denies it was hacked or suffered a data breach after a threat actor claimed to be selling a stolen database containing 87 million records of customer information. [...]]]> 2024-09-17T16:58:00+00:00 https://www.bleepingcomputer.com/news/security/temu-denies-breach-after-hacker-claims-theft-of-87-million-data-records/ www.secnews.physaphae.fr/article.php?IdArticle=8578643 False Data Breach,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Hackers are brute-forcing passwords for highly privileged accounts on exposed Foundation accounting servers, widely used in the construction industry, to breach corporate networks. [...]]]> 2024-09-17T15:42:59+00:00 https://www.bleepingcomputer.com/news/security/construction-firms-breached-in-brute-force-attacks-on-accounting-software/ www.secnews.physaphae.fr/article.php?IdArticle=8578609 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Federal Communications Commission (FCC) has reached a $13 million settlement with AT&T to resolve a probe into whether the telecom giant failed to protect customer data after a vendor\'s cloud environment was breached three years ago. [...]]]> 2024-09-17T13:36:25+00:00 https://www.bleepingcomputer.com/news/security/atandt-pays-13-million-fcc-settlement-over-2023-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8578547 False Data Breach,Cloud None 2.0000000000000000 Bleeping Computer - Magazine Américain Roughly nine percent of tested firmware images use non-production cryptographic keys that are publicly known or leaked in data breaches, leaving many Secure Boot devices vulnerable to UEFI bootkit malware attacks. [...]]]> 2024-09-17T09:32:09+00:00 https://www.bleepingcomputer.com/news/security/pkfail-secure-boot-bypass-remains-a-significant-risk-two-months-later/ www.secnews.physaphae.fr/article.php?IdArticle=8578402 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain ​CISA has ordered U.S. federal agencies to secure their systems against a recently patched Windows MSHTML spoofing zero-day bug exploited by the Void Banshee APT hacking group. [...]]]> 2024-09-16T15:53:34+00:00 https://www.bleepingcomputer.com/news/security/cisa-warns-of-windows-flaw-used-in-infostealer-malware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8577921 False Malware,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Today, the U.S. Department of the Treasury has sanctioned five executives and one entity linked to the Intellexa Consortium for developing and distributing Predator commercial spyware. [...]]]> 2024-09-16T12:33:09+00:00 https://www.bleepingcomputer.com/news/security/us-cracks-down-on-spyware-vendor-intellexa-with-more-sanctions/ www.secnews.physaphae.fr/article.php?IdArticle=8577832 False Commercial None 2.0000000000000000 Bleeping Computer - Magazine Américain D-Link has fixed critical vulnerabilities in three popular wireless router models that allow remote attackers to execute arbitrary code or access the devices using hardcoded credentials. [...]]]> 2024-09-16T10:24:54+00:00 https://www.bleepingcomputer.com/news/security/d-link-fixes-critical-rce-hardcoded-password-flaws-in-wifi-6-routers/ www.secnews.physaphae.fr/article.php?IdArticle=8577773 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are alerting the public of false claims that the U.S. voter registration data has been compromised in cyberattacks. [...]]]> 2024-09-14T10:26:32+00:00 https://www.bleepingcomputer.com/news/security/fbi-tells-public-to-ignore-false-claims-of-hacked-voter-data/ www.secnews.physaphae.fr/article.php?IdArticle=8577221 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A malware campaign uses the unusual method of locking users in their browser\'s kiosk mode to annoy them into entering their Google credentials, which are then stolen by information-stealing malware. [...]]]> 2024-09-14T10:09:18+00:00 https://www.bleepingcomputer.com/news/security/malware-locks-browser-in-kiosk-mode-to-steal-google-credentials/ www.secnews.physaphae.fr/article.php?IdArticle=8577222 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Port of Seattle, the United States government agency overseeing Seattle\'s seaport and airport, confirmed on Friday that the Rhysida ransomware operation was behind a cyberattack impacting its systems over the last three weeks. [...]]]> 2024-09-13T18:54:15+00:00 https://www.bleepingcomputer.com/news/security/port-of-seattle-says-rhysida-ransomware-was-behind-august-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8576223 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain ​Transport for London (TfL) says that all staff (roughly 30,000 employees) must attend in-person appointments to verify their identities and reset passwords following a cybersecurity incident disclosed almost two weeks ago. [...]]]> 2024-09-13T17:12:54+00:00 https://www.bleepingcomputer.com/news/security/tfl-requires-in-person-password-resets-for-30-000-employees-after-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8576150 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain DNA testing giant 23andMe has agreed to pay $30 million to settle a lawsuit over a data breach that exposed the personal information of 6.4 million customers in 2023. [...]]]> 2024-09-13T14:58:30+00:00 https://www.bleepingcomputer.com/news/security/23andme-to-pay-30-million-in-genetics-data-breach-settlement/ www.secnews.physaphae.fr/article.php?IdArticle=8576093 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are targeting Oracle WebLogic servers to infect them with a new Linux malware named "Hadooken, which launches a cryptominer and a tool for distributed denial-of-service (DDoS) attacks. [...]]]> 2024-09-13T13:05:58+00:00 https://www.bleepingcomputer.com/news/security/new-linux-malware-hadooken-targets-oracle-weblogic-servers/ www.secnews.physaphae.fr/article.php?IdArticle=8576034 False Malware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain Kawasaki Motors Europe has announced that it\'s recovering from a cyberattack that caused service disruptions as the RansomHub ransomware gang threatens to leak stolen data. [...]]]> 2024-09-13T11:26:36+00:00 https://www.bleepingcomputer.com/news/security/ransomhub-claims-kawasaki-cyberattack-threatens-to-leak-stolen-data/ www.secnews.physaphae.fr/article.php?IdArticle=8576003 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Threat actors have infected over 1.3 million TV streaming boxes running Android with a new Vo1d backdoor malware, allowing the attackers to take full control of the devices. [...]]]> 2024-09-12T17:10:33+00:00 https://www.bleepingcomputer.com/news/security/new-vo1d-malware-infects-13-million-android-streaming-boxes/ www.secnews.physaphae.fr/article.php?IdArticle=8575636 False Malware,Threat,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain 2024-09-12T17:10:33+00:00 https://www.bleepingcomputer.com/news/security/new-vo1d-malware-infects-13-million-android-tv-streaming-boxes/ www.secnews.physaphae.fr/article.php?IdArticle=8575501 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain Cybersecurity giant Fortinet has confirmed it suffered a data breach after a threat actor claimed to steal 440GB of files from the company\'s Microsoft Sharepoint server. [...]]]> 2024-09-12T14:01:59+00:00 https://www.bleepingcomputer.com/news/security/fortinet-confirms-data-breach-after-hacker-claims-to-steal-440gb-of-files/ www.secnews.physaphae.fr/article.php?IdArticle=8575419 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain U.K.\'s National Crime Agency says it arrested a 17-year-old teenager who is suspected of being connected to the cyberattack on Transport for London, the city\'s public transportation agency. [...]]]> 2024-09-12T12:36:47+00:00 https://www.bleepingcomputer.com/news/security/uk-arrests-teen-linked-to-transport-for-london-cyber-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8575388 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Members of the North Korean hacker group Lazarus posing as recruiters are baiting Python developers with coding test project for password management products that include malware. [...]]]> 2024-09-11T17:09:36+00:00 https://www.bleepingcomputer.com/news/security/fake-password-manager-coding-test-used-to-hack-python-developers/ www.secnews.physaphae.fr/article.php?IdArticle=8574813 False Malware,Hack APT 38 3.0000000000000000 Bleeping Computer - Magazine Américain Six Chinese nationals and a Singaporean have been arrested on Monday in Singapore for their alleged role in malicious cyber activities committed in connection with a "global syndicate." [...]]]> 2024-09-11T09:43:37+00:00 https://www.bleepingcomputer.com/news/legal/chinese-hackers-linked-to-PlugX-malware-arrested-in-singapore/ www.secnews.physaphae.fr/article.php?IdArticle=8574610 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A novel acoustic attack named \'PIXHELL\' can leak secrets from air-gapped and audio-gapped systems, and without requiring speakers, through the LCD monitors they connect to. [...]]]> 2024-09-10T15:23:19+00:00 https://www.bleepingcomputer.com/news/security/new-pixhell-acoustic-attack-leaks-secrets-from-lcd-screen-noise/ www.secnews.physaphae.fr/article.php?IdArticle=8574110 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The RansomHub ransomware gang has been using TDSSKiller, a legitimate tool from Kaspersky, to disable endpoint detection and response (EDR) services on target systems. [...]]]> 2024-09-10T14:29:18+00:00 https://www.bleepingcomputer.com/news/security/ransomhub-ransomware-abuses-kaspersky-tdsskiller-to-disable-edr-software/ www.secnews.physaphae.fr/article.php?IdArticle=8574082 False Ransomware,Tool None 4.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has released the KB5043064 cumulative update for Windows 10 22H2 and Windows 10 21H2, which includes 6 changes and fixes, including a fix for Bluetooth devices that stop working due to a memory leak. [...]]]> 2024-09-10T14:18:32+00:00 https://www.bleepingcomputer.com/news/microsoft/windows-10-kb5043064-update-released-with-6-fixes-security-updates/ www.secnews.physaphae.fr/article.php?IdArticle=8574083 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The NoName ransomware gang has been trying to build a reputation for more than three years targeting small and medium-sized businesses worldwide with its encryptors and may now be working as a RansomHub affiliate. [...]]]> 2024-09-10T06:35:37+00:00 https://www.bleepingcomputer.com/news/security/noname-ransomware-gang-deploying-ransomhub-malware-in-recent-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8573812 False Ransomware,Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Ransomware affiliates exploit a critical security vulnerability in SonicWall SonicOS firewall devices to breach victims\' networks. [...]]]> 2024-09-09T17:50:13+00:00 https://www.bleepingcomputer.com/news/security/critical-sonicwall-sslvpn-bug-exploited-in-ransomware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8573460 False Ransomware,Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain New attacks attributed to China-based cyber espionage group Mustang Panda show that the threat actor switched to new strategies and malware called FDMTP and PTSOCKET to download payloads and steal information from breached networks. [...]]]> 2024-09-09T15:19:21+00:00 https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-data-theft-malware-in-govt-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8573461 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Highline Public Schools, a K-12 district in Washington state, has shut down all schools and canceled school activities after its technology systems were compromised in a cyberattack. [...]]]> 2024-09-09T15:06:58+00:00 https://www.bleepingcomputer.com/news/security/highline-public-schools-closes-schools-following-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8573389 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Payment gateway provider Slim CD has disclosed a data breach that compromised credit card and personal data belonging to almost 1.7 million individuals. [...]]]> 2024-09-09T10:34:45+00:00 https://www.bleepingcomputer.com/news/security/payment-gateway-data-breach-affects-17-million-credit-card-owners/ www.secnews.physaphae.fr/article.php?IdArticle=8573292 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain While not very sophisticated, brute force password attacks pose a significant threat to an organization\'s security. Learn more from Specops Software about these types of attacks and how to defend against them. [...]]]> 2024-09-09T10:02:27+00:00 https://www.bleepingcomputer.com/news/security/how-to-defend-against-brute-force-and-password-spray-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8573259 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A novel side-channel attack dubbed  "RAMBO" (Radiation of Air-gapped Memory Bus for Offense) generates electromagnetic radiation from a device\'s RAM to send data from air-gapped computers. [...]]]> 2024-09-07T10:15:25+00:00 https://www.bleepingcomputer.com/news/security/new-rambo-attack-steals-data-using-ram-in-air-gapped-computers/ www.secnews.physaphae.fr/article.php?IdArticle=8572403 False None None 4.0000000000000000 Bleeping Computer - Magazine Américain American car rental giant Avis disclosed a data breach after attackers breached one of its business applications last month and stole customer personal information. [...]]]> 2024-09-06T14:04:32+00:00 https://www.bleepingcomputer.com/news/security/car-rental-giant-avis-data-breach-impacts-over-299-000-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8573232 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain A new Android malware named SpyAgent uses optical character recognition (OCR) technology to steal cryptocurrency wallet recovery phrases from screenshots stored on the mobile device. [...]]]> 2024-09-06T11:17:29+00:00 https://www.bleepingcomputer.com/news/security/spyagent-android-malware-steals-your-crypto-recovery-phrases-from-images/ www.secnews.physaphae.fr/article.php?IdArticle=8571376 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are targeting other hackers with a fake OnlyFans tool that claims to help steal accounts but instead infects threat actors with the Lumma stealer information-stealing malware. [...]]]> 2024-09-05T05:15:20+00:00 https://www.bleepingcomputer.com/news/security/hacker-trap-fake-onlyfans-tool-backstabs-cybercriminals-steals-passwords/ www.secnews.physaphae.fr/article.php?IdArticle=8570586 False Malware,Tool,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Planned Parenthood has confirmed it suffered a cyberattack affecting its IT systems, forcing it to take parts of its infrastructure offline to contain the damage. [...]]]> 2024-09-05T01:29:28+00:00 https://www.bleepingcomputer.com/news/security/planned-parenthood-confirms-cyberattack-as-ransomhub-claims-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8570242 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain American semiconductor supplier Microchip Technology Incorporated has confirmed that employee information was stolen from systems compromised in an August cyberattack, which was later claimed by the Play ransomware gang. [...]]]> 2024-09-04T18:05:04+00:00 https://www.bleepingcomputer.com/news/security/microchip-technology-confirms-data-was-stolen-in-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8570006 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico\'s YubiKey 5 Series, allows attackers to extract Elliptic Curve Digital Signature Algorithm (ECDSA) secret keys and clone the FIDO device. [...]]]> 2024-09-04T13:48:12+00:00 https://www.bleepingcomputer.com/news/security/new-eucleak-attack-lets-threat-actors-clone-yubikey-fido-keys/ www.secnews.physaphae.fr/article.php?IdArticle=8569880 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Google has released the September 2024 Android security updates to fix 34 vulnerabilities, including CVE-2024-32896, an actively exploited elevation of privilege flaw that was previously fixed on Pixel devices. [...]]]> 2024-09-04T11:16:22+00:00 https://www.bleepingcomputer.com/news/security/google-backports-fix-for-pixel-eop-flaw-to-other-android-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8569780 False Vulnerability,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain AI Spera has achieved PCI DSS v4.0 certification for its threat intel search engine solution, Criminal IP. Learn more from the Criminal IP cyber threat intelligence search engine. [...]]]> 2024-09-04T10:02:37+00:00 https://www.bleepingcomputer.com/news/security/criminal-ip-earns-pci-dss-v40-certification-for-top-level-security/ www.secnews.physaphae.fr/article.php?IdArticle=8569740 False Threat None 1.00000000000000000000 Bleeping Computer - Magazine Américain Threat actors are utilizing an attack called "Revival Hijack," where they register new PyPi projects using the names of previously deleted packages to conduct supply chain attacks. [...]]]> 2024-09-04T09:43:03+00:00 https://www.bleepingcomputer.com/news/security/revival-hijack-supply-chain-attack-threatens-22-000-pypi-packages/ www.secnews.physaphae.fr/article.php?IdArticle=8569741 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The FBI warns of North Korean hackers aggressively targeting cryptocurrency companies and their employees in sophisticated social engineering attacks, aiming to deploy malware that steals their crypto assets. [...]]]> 2024-09-03T13:43:56+00:00 https://www.bleepingcomputer.com/news/security/fbi-warns-crypto-firms-of-aggressive-social-engineering-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8569210 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Oil and gas giant Halliburton has confirmed in a filing today to the Securities and Exchange Commission (SEC) that data was stolen in the recent attack linked to the RansomHub ransomware gang. [...]]]> 2024-09-03T08:57:21+00:00 https://www.bleepingcomputer.com/news/security/halliburton-confirms-data-stolen-in-recent-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8569070 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain CBIZ Benefits & Insurance Services (CBIZ) has disclosed a data breach that involves unauthorized access of client information stored in specific databases. [...]]]> 2024-09-02T11:34:39+00:00 https://www.bleepingcomputer.com/news/security/business-services-giant-cbiz-discloses-customer-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8568598 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. [...]]]> 2024-08-31T11:21:32+00:00 https://www.bleepingcomputer.com/news/security/github-comments-abused-to-push-password-stealing-malware-masked-as-fixes/ www.secnews.physaphae.fr/article.php?IdArticle=8568003 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A campaign that started on August 5, 2024, is spreading a previously undocumented malware named "Voldemort" to organizations worldwide, impersonating tax agencies from the U.S., Europe, and Asia. [...]]]> 2024-08-30T14:04:36+00:00 https://www.bleepingcomputer.com/news/security/new-voldemort-malware-abuses-google-sheets-to-store-stolen-data/ www.secnews.physaphae.fr/article.php?IdArticle=8567007 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Threat actors target Middle Eastern organizations with malware disguised as the legitimate Palo Alto GlobalProtect Tool that can steal data and execute remote PowerShell commands to infiltrate internal networks further. [...]]]> 2024-08-29T14:29:43+00:00 https://www.bleepingcomputer.com/news/security/fake-palo-alto-globalprotect-used-as-lure-to-backdoor-enterprises/ www.secnews.physaphae.fr/article.php?IdArticle=8566361 False Malware,Tool,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The Corona Mirai-based malware botnet is spreading through a 5-year-old remote code execution (RCE) zero-day in AVTECH IP cameras, which have been discontinued for years and will not receive a patch. [...]]]> 2024-08-29T11:46:45+00:00 https://www.bleepingcomputer.com/news/security/malware-exploits-5-year-old-zero-day-to-infect-end-of-life-ip-cameras/ www.secnews.physaphae.fr/article.php?IdArticle=8566272 False Malware,Vulnerability,Threat None 4.0000000000000000 Bleeping Computer - Magazine Américain The Russian state-sponsored APT29 hacking group has been observed using the same iOS and Android exploits created by commercial spyware vendors in a series of cyberattacks between November 2023 and July 2024. [...]]]> 2024-08-29T09:04:58+00:00 https://www.bleepingcomputer.com/news/security/russian-apt29-hackers-use-ios-chrome-exploits-created-by-spyware-vendors/ www.secnews.physaphae.fr/article.php?IdArticle=8566165 False Mobile,Commercial APT 29 3.0000000000000000 Bleeping Computer - Magazine Américain The South Korea-aligned cyberespionage group APT-C-60 has been leveraging a zero-day code execution vulnerability in the Windows version of WPS Office to install the SpyGlace backdoor on East Asian targets. [...]]]> 2024-08-28T18:50:15+00:00 https://www.bleepingcomputer.com/news/security/apt-c-60-hackers-exploited-wps-office-zero-day-to-deploy-spyglace-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8565722 False Malware,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The malicious PoorTry kernel-mode Windows driver used by multiple ransomware gangs to turn off Endpoint Detection and Response (EDR) solutions has evolved into an EDR wiper, deleting files crucial for the operation of security solutions and making restoration harder. [...]]]> 2024-08-28T14:57:51+00:00 https://www.bleepingcomputer.com/news/security/poortry-windows-driver-evolves-into-a-full-featured-edr-wiper/ www.secnews.physaphae.fr/article.php?IdArticle=8565593 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The APT33 Iranian hacking group has used new Tickler malware to backdoor the networks of organizations in the government, defense, satellite, oil and gas sectors in the United States and the United Arab Emirates. [...]]]> 2024-08-28T14:36:52+00:00 https://www.bleepingcomputer.com/news/security/APT33-Iranian-hacking-group-uses-new-tickler-malware-to-backdoor-us-govt-defense-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8565689 False Malware APT33,APT 33 3.0000000000000000 Bleeping Computer - Magazine Américain The APT33 Iranian hacking group has used new Tickler malware to backdoor the networks of organizations in the government, defense, satellite, oil and gas sectors in the United States and the United Arab Emirates. [...]]]> 2024-08-28T14:36:52+00:00 https://www.bleepingcomputer.com/news/security/new-tickler-malware-used-to-backdoor-us-govt-defense-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8565594 False Malware APT33,APT 33 3.0000000000000000 Bleeping Computer - Magazine Américain Google has more than doubled payouts for Google Chrome security flaws reported through its Vulnerability Reward Program, with the maximum possible reward for a single bug now exceeding $250,000. [...]]]> 2024-08-28T13:00:00+00:00 https://www.bleepingcomputer.com/news/google/google-increases-chrome-bug-bounty-rewards-up-to-250-000/ www.secnews.physaphae.fr/article.php?IdArticle=8565562 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain Fortra is warning of a critical hardcoded password flaw in FileCatalyst Workflow that could allow attackers unauthorized access to an internal database to steal data and gain administrator privileges. [...]]]> 2024-08-28T12:59:17+00:00 https://www.bleepingcomputer.com/news/security/fortra-fixes-critical-filecatalyst-workflow-hardcoded-password-issue/ www.secnews.physaphae.fr/article.php?IdArticle=8565533 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Young Consulting is sending data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024. [...]]]> 2024-08-27T17:01:04+00:00 https://www.bleepingcomputer.com/news/security/blacksuit-ransomware-stole-data-of-950-000-from-software-vendor/ www.secnews.physaphae.fr/article.php?IdArticle=8564931 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Marshals Service (USMS) denies its systems were breached by the Hunters International ransomware gang after being listed as a new victim on the cybercrime group\'s leak site on Monday. [...]]]> 2024-08-27T16:32:47+00:00 https://www.bleepingcomputer.com/news/security/us-marshals-service-disputes-ransomware-gangs-breach-claims/ www.secnews.physaphae.fr/article.php?IdArticle=8564932 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has released the optional KB5041587 preview cumulative update for Windows 11 23H2 and 22H2, which adds sharing to Android devices and fixes multiple File Explorer issues. [...]]]> 2024-08-27T15:03:17+00:00 https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5041587-update-adds-sharing-to-android-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8564877 False Threat,Mobile None 4.0000000000000000 Bleeping Computer - Magazine Américain The Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it was used to install keyloggers, information stealers, and malware commonly used to gain initial access to corporate networks. [...]]]> 2024-08-27T13:25:55+00:00 https://www.bleepingcomputer.com/news/security/malware-infiltrates-pidgin-messengers-official-plugin-repository/ www.secnews.physaphae.fr/article.php?IdArticle=8564850 False Malware,Threat None 4.0000000000000000 Bleeping Computer - Magazine Américain Park\'N Fly is warning that a data breach exposed the personal and account information of 1 million customers in Canada after hackers breached its network. [...]]]> 2024-08-27T11:24:14+00:00 https://www.bleepingcomputer.com/news/security/parkn-fly-notifies-1-million-customers-of-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8564786 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain External Attack Surface Management (EASM) coupled with Penetration Testing as a Service (PTaaS) can help find those blind spots and hidden assets exposed on your network. Learn more from Outpost24 about how combining EASM and PTaaS can help reveal these hidden pitfalls. [...]]]> 2024-08-27T10:05:15+00:00 https://www.bleepingcomputer.com/news/security/how-to-identify-unknown-assets-while-pen-testing/ www.secnews.physaphae.fr/article.php?IdArticle=8564753 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The Chinese state-backed hacking group Volt Typhoon is behind attacks that exploited a zero-day flaw in Versa Director to upload a custom webshell to steal credentials and breach corporate networks. [...]]]> 2024-08-27T10:00:00+00:00 https://www.bleepingcomputer.com/news/security/chinese-volt-typhoon-hackers-exploited-versa-zero-day-to-breach-isps-msps/ www.secnews.physaphae.fr/article.php?IdArticle=8564715 False Vulnerability,Threat Guam 3.0000000000000000 Bleeping Computer - Magazine Américain Patelco Credit Union warns customers it suffered a data breach after personal data was stolen in a RansomHub ransomware attack earlier this year. [...]]]> 2024-08-26T15:30:37+00:00 https://www.bleepingcomputer.com/news/security/patelco-notifies-726-000-customers-of-ransomware-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8564267 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Microsoft is investigating an Exchange Online false positive issue causing emails containing images to be wrongly tagged as malicious and sent to quarantine. [...]]]> 2024-08-26T12:53:13+00:00 https://www.bleepingcomputer.com/news/microsoft/microsoft-exchange-online-mistakenly-tags-emails-as-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8564194 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A stealthy Linux malware named \'sedexp\' has been evading detection since 2022 by using a persistence technique not yet included in the MITRE ATT&CK framework. [...]]]> 2024-08-24T10:36:42+00:00 https://www.bleepingcomputer.com/news/security/stealthy-sedexp-linux-malware-evaded-detection-for-two-years/ www.secnews.physaphae.fr/article.php?IdArticle=8563635 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The American Radio Relay League (ARRL) paid a $1 million ransom for a decryptor that helped restore systems encrypted in a May ransomware attack [...]]]> 2024-08-23T15:40:50+00:00 https://www.bleepingcomputer.com/news/security/american-radio-relay-league-confirms-1-million-ransom-payment/ www.secnews.physaphae.fr/article.php?IdArticle=8562683 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has released a new Windows 10 22H2 beta (KB5041582) with memory leak and crash fixes for Insiders in the Beta and Release Preview channels. [...]]]> 2024-08-23T12:51:43+00:00 https://www.bleepingcomputer.com/news/microsoft/new-windows-10-22h2-beta-fixes-memory-leaks-and-crashes/ www.secnews.physaphae.fr/article.php?IdArticle=8562615 False None None 1.00000000000000000000 Bleeping Computer - Magazine Américain A new Android malware named NGate can steal money from payment cards by relaying to an attacker\'s device the data read by the near-field communication (NFC) chip. [...]]]> 2024-08-22T13:02:08+00:00 https://www.bleepingcomputer.com/news/security/new-ngate-android-malware-uses-nfc-chip-to-steal-credit-card-data/ www.secnews.physaphae.fr/article.php?IdArticle=8562066 False Malware,Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Threat actors started to use progressive web applications to impersonate banking apps and steal credentials from Android and iOS users. [...]]]> 2024-08-21T16:57:58+00:00 https://www.bleepingcomputer.com/news/security/hackers-steal-banking-creds-from-ios-android-users-via-pwa-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8561604 False Threat,Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain The Cannon Corporation dba CannonDesign is sending notices of a data breach to more than 13,000 of its clients, informing that hackers breached and stole data from its network in an attack in early 2023. [...]]]> 2024-08-20T18:46:58+00:00 https://www.bleepingcomputer.com/news/security/cannondesign-confirms-avos-locker-ransomware-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8561073 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Unknown attackers have deployed a newly discovered backdoor dubbed Msupedge on a university\'s Windows systems in Taiwan, likely by exploiting a recently patched PHP remote code execution vulnerability (CVE-2024-4577). [...]]]> 2024-08-20T13:49:02+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-php-exploit-to-backdoor-windows-systems-with-new-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8560955 False Malware,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Oregon Zoo is informing that visitors who purchased tickets online between December and June had their payment card information compromised. [...]]]> 2024-08-20T13:36:34+00:00 https://www.bleepingcomputer.com/news/security/oregon-zoo-warns-visitors-their-credit-card-details-were-stolen/ www.secnews.physaphae.fr/article.php?IdArticle=8560956 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A hacker compromised Unicoin\'s Google Workspace (formerly G-Suite) account and changed the passwords for all company employees, locking them out of their corporate accounts for days. [...]]]> 2024-08-20T11:17:34+00:00 https://www.bleepingcomputer.com/news/security/hacker-locks-unicoin-staff-out-of-google-accounts-for-4-days/ www.secnews.physaphae.fr/article.php?IdArticle=8560896 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. government is warning of increased effort from Iran to influence upcoming elections through cyber operations targeting Presidential campaigns and the American public. [...]]]> 2024-08-20T07:56:23+00:00 https://www.bleepingcomputer.com/news/security/us-warns-of-iranian-hackers-escalating-influence-operations/ www.secnews.physaphae.fr/article.php?IdArticle=8560791 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Toyota confirmed that customer data was exposed in a third-party data breach after a threat actor leaked an archive of 240GB of stolen data on a hacking forum. [...]]]> 2024-08-19T16:51:17+00:00 https://www.bleepingcomputer.com/news/security/toyota-confirms-third-party-data-breach-impacting-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8561045 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Toyota confirmed that its network was breached after a threat actor leaked an archive of 240GB of data stolen from the company\'s systems on a hacking forum. [...]]]> 2024-08-19T16:51:17+00:00 https://www.bleepingcomputer.com/news/security/toyota-confirms-breach-after-stolen-data-leaks-on-hacking-forum/ www.secnews.physaphae.fr/article.php?IdArticle=8560456 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Ransomware victims have paid $459,800,000 to cybercriminals in the first half of 2024, setting the stage for a new record this year if ransom payments continue at this level. [...]]]> 2024-08-19T16:17:38+00:00 https://www.bleepingcomputer.com/news/security/ransomware-rakes-in-record-breaking-450-million-in-first-half-of-2024/ www.secnews.physaphae.fr/article.php?IdArticle=8560457 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Google will redact your credit card details, passwords and other sensitive information in Chrome when you\'re sharing or recording your screen on Android. [...]]]> 2024-08-18T14:00:54+00:00 https://www.bleepingcomputer.com/news/google/chrome-will-redact-credit-cards-passwords-when-you-share-android-screen/ www.secnews.physaphae.fr/article.php?IdArticle=8559872 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain A clever disinformation campaign engages several Microsoft Azure and OVH cloud subdomains as well as Google search to promote malware and spam sites. [...]]]> 2024-08-17T09:00:00+00:00 https://www.bleepingcomputer.com/news/security/azure-domains-and-google-abused-to-spread-disinformation-and-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8559299 False Spam,Malware,Cloud None 3.0000000000000000 Bleeping Computer - Magazine Américain Background check service National Public Data confirms that hackers breached its systems after threat actors leaked a stolen database with millions of social security numbers and other sensitive personal information. [...]]]> 2024-08-16T13:18:50+00:00 https://www.bleepingcomputer.com/news/security/national-public-data-confirms-breach-exposing-social-security-numbers/ www.secnews.physaphae.fr/article.php?IdArticle=8558835 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain A common yet overlooked type of weak password are keyboard walk patterns. Learn more from Specops Software on finding and blocking keyboard walk passwords in your organization. [...]]]> 2024-08-16T10:01:02+00:00 https://www.bleepingcomputer.com/news/security/are-you-blocking-keyboard-walk-passwords-in-your-active-directory/ www.secnews.physaphae.fr/article.php?IdArticle=8558805 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain RansomHub ransomware operators have been spotted deploying new malware to disable Endpoint Detection and Response (EDR) security software in Bring Your Own Vulnerable Driver (BYOVD) attacks [...]]]> 2024-08-15T14:01:26+00:00 https://www.bleepingcomputer.com/news/security/ransomware-gang-deploys-new-malware-to-kill-security-software/ www.secnews.physaphae.fr/article.php?IdArticle=8558261 False Ransomware,Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD workflows. [...]]]> 2024-08-14T16:19:38+00:00 https://www.bleepingcomputer.com/news/security/github-actions-artifacts-found-leaking-auth-tokens-in-popular-projects/ www.secnews.physaphae.fr/article.php?IdArticle=8557799 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Google says it is taking a privacy-minded approach to the integration of AI features like the Gemini assistant on Android devices, implementing end-to-end protection to secure data in transit while keeping the most sensitive data locally on the device. [...]]]> 2024-08-13T16:47:35+00:00 https://www.bleepingcomputer.com/news/google/google-says-its-focusing-on-privacy-with-gemini-ai-on-android/ www.secnews.physaphae.fr/article.php?IdArticle=8557332 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Kootenai Health has disclosed a data breach impacting over 464,000 patients after their personal information was stolen and leaked by the 3AM ransomware operation. [...]]]> 2024-08-13T11:23:20+00:00 https://www.bleepingcomputer.com/news/security/3am-ransomware-stole-data-of-464-000-kootenai-health-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8557084 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Don\'t let AI CoPilots be the source of your first data breach. Learn more from Varonis about the challengers of securing your data in the era of gen AI. [...]]]> 2024-08-13T10:02:04+00:00 https://www.bleepingcomputer.com/news/security/how-to-prevent-your-first-ai-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8557013 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Belarusian-Ukrainian national Maksim Silnikau was arrested in Spain and is now extradited to the USA to face charges for creating the Ransom Cartel ransomware operation in 2021 and running a malvertising operation from 2013 to 2022. [...]]]> 2024-08-13T09:33:37+00:00 https://www.bleepingcomputer.com/news/security/ransom-cartel-reveton-ransomware-owner-arrested-charged-in-us/ www.secnews.physaphae.fr/article.php?IdArticle=8557014 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Evolution Mining has informed that it has been targeted by a ransomware attack on August 8, 2024, which impacted its IT systems. [...]]]> 2024-08-12T14:02:51+00:00 https://www.bleepingcomputer.com/news/security/australian-gold-producer-evolution-mining-hit-by-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8556485 False Ransomware None 3.0000000000000000