This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-15T21:27:01+00:00 www.secnews.physaphae.fr SecurityWeek - Security News La banque espagnole Santander a déclaré que les clients du Chili, de l'Espagne et de l'Uruguay sont affectés par une violation de données d'un fournisseur tiers.

---

>The Spanish bank Santander said customers in Chile, Spain and Uruguay are affected by a data breach at a third-party provider. ]]> 2024-05-15T12:15:40+00:00 https://www.securityweek.com/santander-data-breach-impacts-customers-employees/ www.secnews.physaphae.fr/article.php?IdArticle=8500197 False Data Breach None None SecurityWeek - Security News Singing River Health System indique que les informations personnelles d'environ 900 000 personnes ont été volées lors d'une attaque de ransomware d'août 2023.

---

>Singing River Health System says the personal information of roughly 900,000 individuals was stolen in an August 2023 ransomware attack. ]]> 2024-05-15T11:04:55+00:00 https://www.securityweek.com/900k-impacted-by-data-breach-at-mississippi-healthcare-provider/ www.secnews.physaphae.fr/article.php?IdArticle=8500159 False Ransomware,Data Breach,Medical None None SecurityWeek - Security News Apple et Google ont déployé une nouvelle fonctionnalité mobile qui avertit les utilisateurs de trackers indésirables qui se déplacent avec eux.

---

>Apple and Google have rolled out a new mobile feature that warns users of unwanted trackers moving with them. ]]> 2024-05-15T10:43:43+00:00 https://www.securityweek.com/unwanted-tracking-alerts-rolling-out-to-ios-android/ www.secnews.physaphae.fr/article.php?IdArticle=8500160 False Mobile None None SecurityWeek - Security News Zscaler a terminé son enquête sur les récentes affirmations de piratage et a constaté que seul un environnement de test isolé était compromis.

---

>Zscaler has completed its investigation into the recent hacking claims and found that only an isolated test environment was compromised. ]]> 2024-05-14T07:15:00+00:00 https://www.securityweek.com/zscaler-confirms-only-isolated-test-server-was-hacked/ www.secnews.physaphae.fr/article.php?IdArticle=8499413 False None None 3.0000000000000000 SecurityWeek - Security News Europol étudie une violation de données, mais dit qu'aucun système de base n'est affecté et qu'aucune donnée opérationnelle n'a été compromise.

---

>Europol is investigating a data breach, but says no core systems are impacted and no operational data has been compromised. ]]> 2024-05-13T15:05:50+00:00 https://www.securityweek.com/europol-investigating-breach-after-hacker-offers-to-sell-classified-data/ www.secnews.physaphae.fr/article.php?IdArticle=8498984 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Affaiblir les démocraties libérales et affaiblir l'alliance de l'OTAN sont conjoises dans la guerre hybride que la Russie mène contre l'Ukraine.

---

>Weakening liberal democracies and weakening the NATO alliance are conjoined in the hybrid war that Russia is conducting against Ukraine. ]]> 2024-05-13T14:12:34+00:00 https://www.securityweek.com/nato-draws-a-cyber-red-line-in-tensions-with-russia/ www.secnews.physaphae.fr/article.php?IdArticle=8498956 False None None 3.0000000000000000 SecurityWeek - Security News Solutions financières et consommateurs (FBCS) affirme que les informations personnelles de 2,7 millions ont été touchées dans la récente violation de données.

---

>Financial Business and Consumer Solutions (FBCS) says the personal information of 2.7 million was impacted in the recent data breach. ]]> 2024-05-13T09:50:51+00:00 https://www.securityweek.com/fbcs-collection-agency-data-breach-impacts-2-7-million/ www.secnews.physaphae.fr/article.php?IdArticle=8498841 False Data Breach None 2.0000000000000000 SecurityWeek - Security News L'un des plus grands systèmes de santé aux États-Unis est de se précipiter pour contenir un hack qui provoque des perturbations et des «procédures de temps d'arrêt» dans les hôpitaux du pays.

---

>One of the largest healthcare systems in the United States is scrambling to contain a hack that\'s causing disruption and “downtime procedures” at hospitals around the country. ]]> 2024-05-10T13:33:33+00:00 https://www.securityweek.com/healthcare-giant-ascension-hacked-hospitals-diverting-emergency-service/ www.secnews.physaphae.fr/article.php?IdArticle=8497253 False Hack,Medical None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui auraient pu glisser sous le radar: une application européenne du Parlement violée, Docgo piraté, les avis de VMware ont déménagé à Broadcom Portal.

---

>Noteworthy stories that might have slipped under the radar: European Parliament application breached, DocGo hacked, VMware advisories moved to Broadcom portal.  ]]> 2024-05-10T12:02:40+00:00 https://www.securityweek.com/in-other-news-european-parliament-breach-docgo-hack-vmware-advisories-moved/ www.secnews.physaphae.fr/article.php?IdArticle=8497196 False Hack None 3.0000000000000000 SecurityWeek - Security News La cyberattaque de loterie de l'Ohio menée par le groupe de ransomware Dragonforce a eu un impact sur plus de 500 000 personnes.

---

>The Ohio Lottery cyberattack conducted by the DragonForce ransomware group has impacted more than 500,000 individuals. ]]> 2024-05-10T09:37:40+00:00 https://www.securityweek.com/500000-impacted-by-ohio-lottery-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8497138 False Ransomware None 3.0000000000000000 SecurityWeek - Security News Le géant de la technologie informe des millions de clients que des noms complets et des adresses postales physiques ont été volés lors d'un incident de sécurité.

---

>Tech giant notifies millions of customers that full names and physical mailing addresses were stolen during a security incident. ]]> 2024-05-09T17:04:41+00:00 https://www.securityweek.com/dell-says-customer-names-addresses-stolen-in-database-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8496675 False None None 3.0000000000000000 SecurityWeek - Security News Le groupe de cybercrimes Lockbit a pris le crédit de la récente attaque de ransomwares qui a perturbé la ville de Wichita Systems.

---

>The LockBit cybercrime group has taken credit for the recent ransomware attack that disrupted City of Wichita systems. ]]> 2024-05-09T13:31:44+00:00 https://www.securityweek.com/lockbit-takes-credit-for-city-of-wichita-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8496583 False Ransomware None 2.0000000000000000 SecurityWeek - Security News La société immobilière basée à Philadelphie, Brandywine Realty Trust, arrête les systèmes après une attaque de ransomware.

---

>Philadelphia-based real estate company Brandywine Realty Trust shuts down systems following a ransomware attack. ]]> 2024-05-08T11:40:39+00:00 https://www.securityweek.com/brandywine-realty-trust-hit-by-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8495905 False Ransomware None 3.0000000000000000 SecurityWeek - Security News Android \'s May 2024 Security Update Patches 38 Vulnérabilités, y compris un bogue critique dans le composant système.

---

>Android\'s May 2024 security update patches 38 vulnerabilities, including a critical bug in the System component. ]]> 2024-05-08T11:26:15+00:00 https://www.securityweek.com/android-update-patches-critical-vulnerability/ www.secnews.physaphae.fr/article.php?IdArticle=8495906 False Vulnerability,Mobile None 2.0000000000000000 SecurityWeek - Security News Le système universitaire de Géorgie affirme que les numéros de sécurité sociale et les numéros de compte bancaire ont été compromis dans le hack Moveit de mai 2023.

---

>University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack. ]]> 2024-05-08T09:40:00+00:00 https://www.securityweek.com/university-system-of-georgia-says-800000-impacted-by-moveit-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8495845 False Hack None 3.0000000000000000 SecurityWeek - Security News Le ministère britannique de la Défense a déclaré qu'une violation d'un système de paie tiers exposait jusqu'à 272 000 personnes et anciens combattants.

---

>The UK Ministry of Defense said a breach at a third-party payroll system exposed as many as 272,000 armed forces personnel and veterans. ]]> 2024-05-07T18:41:22+00:00 https://www.securityweek.com/the-uk-says-a-huge-payroll-data-breach-by-a-malign-actor-has-exposed-details-of-military-personnel/ www.secnews.physaphae.fr/article.php?IdArticle=8495432 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Alors que les cybermenaces deviennent plus sophistiquées, l'Amérique ne peut pas se permettre une complaisance.Le temps pour l'action décisive et la cyber-résilience améliorée est maintenant.

---

>As cyber threats grow more sophisticated, America cannot afford complacency. The time for decisive action and enhanced cyber resilience is now. ]]> 2024-05-07T10:48:20+00:00 https://www.securityweek.com/from-warnings-to-action-preparing-americas-infrastructure-for-imminent-cyber-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8495180 False None None 3.0000000000000000 SecurityWeek - Security News L'Allemagne a rappelé son ambassadeur en Russie pour une semaine de consultations à Berlin à la suite d'une prétendue attaque de pirate contre le chancelier Olaf Scholz \'s Party.

---

>Germany recalled its ambassador to Russia for a week of consultations in Berlin following an alleged hacker attack on Chancellor Olaf Scholz\'s party. ]]> 2024-05-07T08:55:00+00:00 https://www.securityweek.com/germany-recalls-its-ambassador-in-russia-for-a-week-in-protest-over-a-hacker-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8495181 False None None 3.0000000000000000 SecurityWeek - Security News Mitre a partagé plus de détails sur le hack récent, y compris les nouveaux logiciels malveillants impliqués dans l'attaque et un calendrier des activités de l'attaquant. .

---

>MITRE has shared more details on the recent hack, including the new malware involved in the attack and a timeline of the attacker\'s activities. ]]> 2024-05-07T07:33:53+00:00 https://www.securityweek.com/mitre-hack-china-linked-group-breached-systems-in-december-2023/ www.secnews.physaphae.fr/article.php?IdArticle=8495094 False Malware,Hack None 2.0000000000000000 SecurityWeek - Security News United States Cyber Command (USCybercom) a nommé Mme Morgan M. Adamski en tant que directeur exécutif en juin 2024.

---

>United States Cyber Command (USCYBERCOM) has named Ms. Morgan M. Adamski as Executive Director effective June 2024. ]]> 2024-05-06T10:37:17+00:00 https://www.securityweek.com/us-cyber-command-appoints-morgan-adamski-as-executive-director/ www.secnews.physaphae.fr/article.php?IdArticle=8494547 False None None 2.0000000000000000 SecurityWeek - Security News La ville de Wichita, au Kansas, a fermé son réseau après avoir été victime d'une attaque de ransomware qui résidait au fichier.

---

>The City of Wichita, Kansas, has shut down its network after falling victim to a file-encrypting ransomware attack. ]]> 2024-05-06T09:00:53+00:00 https://www.securityweek.com/city-of-wichita-shuts-down-network-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8494493 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Vincent StruBel, qui dirige l'agence nationale de cybersécurité de France \\, a appelé le niveau des cyber-starts aux Jeux olympiques sans précédent.

---

>Vincent Strubel, who heads France\'s national cybersecurity agency, called the cyberthreats level facing the Olympic Games unprecedented. ]]> 2024-05-04T11:06:55+00:00 https://www.securityweek.com/french-cyberwarriors-ready-to-test-their-defense-against-hackers-and-malware-during-the-olympics/ www.secnews.physaphae.fr/article.php?IdArticle=8493539 False Malware None 3.0000000000000000 SecurityWeek - Security News L'Allemagne a accusé les agents militaires russes de pirater les échelons les plus élevés du parti du chancelier Olaf Scholz et d'autres cibles gouvernementales et industrielles.

---

>Germany accused Russian military agents of hacking the top echelons of Chancellor Olaf Scholz\'s party and other government and industrial targets. ]]> 2024-05-04T10:57:57+00:00 https://www.securityweek.com/german-foreign-minister-says-russia-will-face-consequences-for-monthslong-cyber-espionage/ www.secnews.physaphae.fr/article.php?IdArticle=8493540 False Industrial None 3.0000000000000000 SecurityWeek - Security News Microsoft has uncovered a new type of attack called Dirty Stream that impacted Android apps with billions of installations.  ]]> 2024-05-03T09:48:50+00:00 https://www.securityweek.com/microsoft-warns-of-dirty-stream-vulnerability-in-popular-android-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8492938 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Startups de cybersécurité Fortes Cyber, Resonance Security, RunReveal et Steps Security Annoncez des séances de financement pré-Seed, Early Stage et SEME.

---

>Cybersecurity startups Insane Cyber, Resonance Security, RunReveal and StepSecurity announce pre-seed, early-stage, and seed funding rounds. ]]> 2024-05-02T14:39:46+00:00 https://www.securityweek.com/startup-dealflow-new-investments-at-resonance-runreveal-stepsecurity-insane-cyber/ www.secnews.physaphae.fr/article.php?IdArticle=8492465 False None None 2.0000000000000000 SecurityWeek - Security News CISA dit qu'un défaut de réinitialisation de mot de passe gitlab critique est exploité dans les attaques et que 1 400 serveurs n'ont pas été corrigés.

---

>CISA says a critical GitLab password reset flaw is being exploited in attacks and roughly 1,400 servers have not been patched. ]]> 2024-05-02T11:30:19+00:00 https://www.securityweek.com/1400-gitlab-servers-impacted-by-exploited-vulnerability/ www.secnews.physaphae.fr/article.php?IdArticle=8492356 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Dropbox indique que les pirates ont violé son environnement de production de signes et ont accédé aux adresses e-mail des clients et aux mots de passe hachés.

---

>Dropbox says hackers breached its Sign production environment and accessed customer email addresses and hashed passwords.  ]]> 2024-05-02T07:23:52+00:00 https://www.securityweek.com/dropbox-data-breach-impacts-customer-information/ www.secnews.physaphae.fr/article.php?IdArticle=8492270 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Les chercheurs peuvent gagner jusqu'à 450 000 $ pour un rapport de vulnérabilité unique car Google augmente son programme de récompenses de vulnérabilité mobile.

---

>Researchers can earn as much as $450,000 for a single vulnerability report as Google boosts its mobile vulnerability rewards program. ]]> 2024-05-01T15:06:19+00:00 https://www.securityweek.com/google-boosts-bug-bounty-payouts-tenfold-in-mobile-app-security-push/ www.secnews.physaphae.fr/article.php?IdArticle=8491898 False Vulnerability,Mobile None 2.0000000000000000 SecurityWeek - Security News Adobe fournit des incitations aux pirates de primes de bogue afin de signaler les défauts de sécurité dans son implémentation des informations d'identification de contenu et d'Adobe Firefly.

---

>Adobe is providing incentives for bug bounty hackers to report security flaws in its implementation of Content Credentials and Adobe Firefly. ]]> 2024-05-01T14:55:41+00:00 https://www.securityweek.com/adobe-adds-content-credentials-and-firefly-to-bug-bounty-program/ www.secnews.physaphae.fr/article.php?IdArticle=8491899 False None None 2.0000000000000000 SecurityWeek - Security News Plate-forme de logiciels malveillants semi-ruisseaux errant autour des routeurs SOHO d'entreprise capables de récolter secrètement les données d'authentification du cloud public à partir du trafic Internet.

---

>Cuttlefish malware platform roaming around enterprise SOHO routers capable of covertly harvesting public cloud authentication data from internet traffic. ]]> 2024-05-01T14:33:31+00:00 https://www.securityweek.com/cuttlefish-malware-targets-routers-harvests-cloud-authentication-data/ www.secnews.physaphae.fr/article.php?IdArticle=8491900 False Malware,Cloud None 3.0000000000000000 SecurityWeek - Security News The new Wpeeper Android trojan ceased operations after a week and has zero detections in VirusTotal. ]]> 2024-05-01T11:57:52+00:00 https://www.securityweek.com/wpeeper-android-trojan-uses-compromised-wordpress-sites-to-shield-command-and-control-server/ www.secnews.physaphae.fr/article.php?IdArticle=8491811 False Mobile None 2.0000000000000000 SecurityWeek - Security News JFROG s’alarme après avoir trouvé trois campagnes de logiciels malveillants à grande échelle ciblant Docker Hub avec des référentiels sans image.

---

>JFrog raises an alarm after finding three large-scale malware campaigns targeting Docker Hub with imageless repositories. ]]> 2024-04-30T17:08:48+00:00 https://www.securityweek.com/docker-hub-users-targeted-with-imageless-malicious-repositories/ www.secnews.physaphae.fr/article.php?IdArticle=8491393 False Malware None 3.0000000000000000 SecurityWeek - Security News Une vulnérabilité (CVE-2024-27322) dans l'implémentation du langage de programmation R peut être exploitée pour exécuter arbitraire et être utilisée dans le cadre d'une attaque de chaîne d'approvisionnement.

---

>A vulnerability (CVE-2024-27322) in the R programming language implementation can be exploited to execute arbitrary and be used as part of a supply chain attack. ]]> 2024-04-30T13:07:55+00:00 https://www.securityweek.com/vulnerability-in-r-programming-language-enables-supply-chain-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8491312 False Vulnerability None 3.0000000000000000 SecurityWeek - Security News Le géant américain de la santé avertit des millions de patients actuels et anciens que leurs informations personnelles ont été exposées à des annonceurs tiers.

---

>US healthcare giant is warning millions of current and former patients that their personal information was exposed to third-party advertisers. ]]> 2024-04-29T14:43:26+00:00 https://www.securityweek.com/kaiser-permanente-discloses-data-breach-impacting-13-4-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8490727 False Data Breach,Medical None 2.0000000000000000 SecurityWeek - Security News Une analyse menée par Honeywell montre qu'une grande partie des logiciels malveillants transmis par l'USB ciblant les organisations industrielles peut toujours provoquer des perturbations.

---

>An analysis conducted by Honeywell shows that much of the USB-borne malware targeting industrial organizations can still cause OT disruption. ]]> 2024-04-29T13:00:00+00:00 https://www.securityweek.com/honeywell-usb-malware-attacks-on-industrial-orgs-becoming-more-sophisticated/ www.secnews.physaphae.fr/article.php?IdArticle=8490671 False Malware,Industrial None 3.0000000000000000 SecurityWeek - Security News Les solutions financières commerciales et de consommation (FBCS) indiquent que les informations compromises peuvent inclure des noms, des dates de naissance, des numéros de sécurité sociale et des informations de compte.

---

>Financial Business and Consumer Solutions (FBCS) says compromised information may include names, dates of birth, Social Security numbers, and account information. ]]> 2024-04-29T09:59:19+00:00 https://www.securityweek.com/2-million-impacted-by-data-breach-at-debt-collector-fbcs/ www.secnews.physaphae.fr/article.php?IdArticle=8490617 False Data Breach None 2.0000000000000000 SecurityWeek - Security News A new Android trojan named Brokewell can steal user\'s sensitive information and allows attackers to take over devices. ]]> 2024-04-26T14:08:40+00:00 https://www.securityweek.com/powerful-brokewell-android-trojan-allows-attackers-to-takeover-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8489108 False Mobile None 3.0000000000000000 SecurityWeek - Security News Plus de 90 000 IPS uniques sont toujours infectés par une variante de vers Plugx qui se propage via des disques flash infectés.

---

>More than 90,000 unique IPs are still infected with a PlugX worm variant that spreads via infected flash drives. ]]> 2024-04-26T13:41:29+00:00 https://www.securityweek.com/self-spreading-plugx-usb-drive-malware-plagues-over-90k-ip-addresses/ www.secnews.physaphae.fr/article.php?IdArticle=8489109 False Malware None 3.0000000000000000 SecurityWeek - Security News La startup prédictive de l'intelligence d'attaque et de la protection des risques BForeaia a levé 15 millions de dollars dans une série A de financement dirigée par Syn Ventures.

---

>Predictive attack intelligence and risk protection startup BforeAI has raised $15 million in a Series A funding round led by SYN Ventures. ]]> 2024-04-25T15:47:59+00:00 https://www.securityweek.com/predictive-security-startup-bforeai-raises-15-million/ www.secnews.physaphae.fr/article.php?IdArticle=8488602 False None None 2.0000000000000000 SecurityWeek - Security News Une nouvelle campagne de phishing abuse des comptes de messagerie compromis et cible les utilisateurs des entreprises avec des fichiers PDF hébergés sur le lecteur Autodesk.

---

>A new phishing campaign abuses compromised email accounts and targets corporate users with PDF files hosted on Autodesk Drive. ]]> 2024-04-25T12:25:23+00:00 https://www.securityweek.com/autodesk-drive-abused-in-phishing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8488577 False None None 3.0000000000000000 SecurityWeek - Security News L'application de gestion de Brocade Sannav est affectée par plusieurs vulnérabilités, y compris un mot de passe racine accessible au public.

---

>The Brocade SANnav management application is affected by multiple vulnerabilities, including a publicly available root password. ]]> 2024-04-25T11:53:41+00:00 https://www.securityweek.com/vulnerabilities-expose-brocade-san-appliances-switches-to-hacking/ www.secnews.physaphae.fr/article.php?IdArticle=8488528 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Cisco avertit que les pirates de pays nationaux exploitent au moins deux vulnérabilités de zéro jour dans ses plates-formes de pare-feu ASA pour planter des logiciels malveillants sur les télécommunications et les réseaux du secteur de l'énergie.

---

>Cisco warns that nation state-backed hackers are exploiting at least two zero-day vulnerabilities in its ASA firewall platforms to plant malware on telecommunications and energy sector networks. ]]> 2024-04-24T17:25:24+00:00 https://www.securityweek.com/cisco-raises-alarm-for-arcanedoor-zero-days-hitting-asa-firewall-platforms/ www.secnews.physaphae.fr/article.php?IdArticle=8488146 False Malware,Vulnerability,Threat None 3.0000000000000000 SecurityWeek - Security News Un acteur de menace lié à la Corée du Nord a détourné le mécanisme de mise à jour de l'antivirus ESCAN pour déployer des délais et des mineurs de crypto-monnaie.

---

>A North Korea-linked threat actor hijacked the update mechanism of eScan antivirus to deploy backdoors and cryptocurrency miners. ]]> 2024-04-24T14:44:17+00:00 https://www.securityweek.com/north-korean-hackers-hijack-antivirus-updates-for-malware-delivery/ www.secnews.physaphae.fr/article.php?IdArticle=8488071 False Malware,Threat None 2.0000000000000000 SecurityWeek - Security News Les systèmes Hive mènent une autre étude sur les mots de passe de fissuration via des attaques de force brute, mais il ne cible plus MD5.

---

>Hive Systems conducts another study on cracking passwords via brute-force attacks, but it\'s no longer targeting MD5. ]]> 2024-04-24T10:22:19+00:00 https://www.securityweek.com/new-password-cracking-analysis-targets-bcrypt/ www.secnews.physaphae.fr/article.php?IdArticle=8487923 False Studies None 3.0000000000000000 SecurityWeek - Security News Quatre Iraniens sont accusés d'avoir piraté des systèmes critiques dans les départements du Trésor et de l'État et des dizaines de sociétés américaines privées.

---

>Four Iranians are accused of hacking into critical systems at the Departments of Treasury and State and dozens of private US companies. ]]> 2024-04-23T18:58:55+00:00 https://www.securityweek.com/10-million-bounty-on-iranian-hackers-for-cyber-attacks-on-us-gov-defense-contractors/ www.secnews.physaphae.fr/article.php?IdArticle=8487584 False None None 3.0000000000000000 SecurityWeek - Security News Le juge de la Cour nationale d'Espagne a déclaré qu'il y avait des raisons de croire que les nouvelles informations fournies par la France peuvent «permettre aux enquêtes d'avancer».

---

>The judge with Spain\'s National Court said there is reason to believe that the new information provided by France can “allow the investigations to advance.” ]]> 2024-04-23T17:28:32+00:00 https://www.securityweek.com/spain-reopens-a-probe-into-a-pegasus-spyware-case-after-a-french-request-to-work-together/ www.secnews.physaphae.fr/article.php?IdArticle=8487534 False None None 3.0000000000000000 SecurityWeek - Security News Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations. ]]> 2024-04-23T12:50:57+00:00 https://www.securityweek.com/russian-cyberspies-deliver-gooseegg-malware-to-government-organizations/ www.secnews.physaphae.fr/article.php?IdArticle=8487450 False Malware,Tool APT 28 3.0000000000000000 SecurityWeek - Security News UnitedHealth confirme que des informations personnelles et de santé ont été volées dans une attaque de ransomware qui pourrait coûter à l'entreprise jusqu'à 1,6 milliard de dollars.

---

>UnitedHealth confirms that personal and health information was stolen in a ransomware attack that could cost the company up to $1.6 billion. ]]> 2024-04-23T12:08:17+00:00 https://www.securityweek.com/unitedhealth-says-patient-data-exposed-in-change-healthcare-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8487451 False Ransomware,Medical None 3.0000000000000000 SecurityWeek - Security News Microsoft Playready Vulnérabilités qui pourraient permettre aux abonnés Rogue de télécharger illégalement des films à partir de services de streaming populaires.

---

>Microsoft PlayReady vulnerabilities that could allow rogue subscribers to illegally download movies from popular streaming services. ]]> 2024-04-23T09:52:00+00:00 https://www.securityweek.com/microsoft-drm-hacking-could-allow-movie-downloads-from-popular-streaming-services/ www.secnews.physaphae.fr/article.php?IdArticle=8487335 False Hack,Vulnerability None 3.0000000000000000 SecurityWeek - Security News Les vulnérabilités dans les réseaux Palo Alto Cortex XDR ont permis à un chercheur en sécurité de le transformer en un outil offensif malveillant.

---

>Vulnerabilities in Palo Alto Networks Cortex XDR allowed a security researcher to turn it into a malicious offensive tool. ]]> 2024-04-22T13:34:47+00:00 https://www.securityweek.com/research-shows-how-attackers-can-abuse-edr-security-products/ www.secnews.physaphae.fr/article.php?IdArticle=8486858 False Tool None 2.0000000000000000 SecurityWeek - Security News Un hack qui a provoqué un débordement du système d'eau de Texas Town \\ en janvier a été lié à un groupe hacktiviste russe sombre, le dernier cas d'un utilitaire public américain devenant une cible de cyberattaques étrangères.

---

>A hack that caused a small Texas town\'s water system to overflow in January has been linked to a shadowy Russian hacktivist group, the latest case of a U.S. public utility becoming a target of foreign cyberattacks. ]]> 2024-04-22T13:28:31+00:00 https://www.securityweek.com/rural-texas-towns-report-cyberattacks-that-caused-one-water-system-to-overflow/ www.secnews.physaphae.fr/article.php?IdArticle=8486830 False Hack None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui pourraient avoir glissé sous le radar: OpenSSF et Incidents OpenJS similaires à la porte dérobée XZ, opérateur de botnet moldave chargé, US Automotive Company ciblé par FIN7.

---

>Noteworthy stories that might have slipped under the radar: OpenSSF and OpenJS incidents similar to XZ backdoor, Moldovan botnet operator charged, US automotive company targeted by FIN7. ]]> 2024-04-19T13:24:10+00:00 https://www.securityweek.com/in-other-news-oss-backdooring-attempts-botnet-operator-charged-automotive-firm-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8485304 False None None 3.0000000000000000 SecurityWeek - Security News Akira Ransomware a frappé plus de 250 organisations dans le monde et a reçu plus de 42 millions de dollars en paiements de rançon.

---

>Akira ransomware has hit over 250 organizations worldwide and received over $42 million in ransom payments. ]]> 2024-04-19T11:25:16+00:00 https://www.securityweek.com/akira-ransomware-made-over-42-million-in-one-year-agencies/ www.secnews.physaphae.fr/article.php?IdArticle=8485254 False Ransomware None 3.0000000000000000 SecurityWeek - Security News Microsoft avertit que plusieurs vulnérabilités Openmetadata sont exploitées pour déployer des logiciels malveillants de cryptomine dans les environnements Kubernetes.

---

>Microsoft warns that several OpenMetadata vulnerabilities are being exploited to deploy cryptomining malware to Kubernetes environments. ]]> 2024-04-19T08:59:00+00:00 https://www.securityweek.com/openmetadata-vulnerabilities-exploited-to-abuse-kubernetes-clusters-for-cryptomining/ www.secnews.physaphae.fr/article.php?IdArticle=8485203 False Malware,Vulnerability None 2.0000000000000000 SecurityWeek - Security News Programme des Nations Unies (PNUD) Enquêtant sur une attaque de ransomware dans laquelle les pirates ont volé des données sensibles.

---

>United Nations Development Programme (UNDP) investigating a ransomware attack in which hackers stole sensitive data. ]]> 2024-04-18T14:21:42+00:00 https://www.securityweek.com/united-nations-agency-investigating-ransomware-attack-involving-data-theft/ www.secnews.physaphae.fr/article.php?IdArticle=8484778 False Ransomware None 3.0000000000000000 SecurityWeek - Security News Cherry Health indique que les informations personnelles de plus de 180 000 personnes ont été volées dans une attaque de ransomware.

---

>Cherry Health says the personal information of over 180,000 individuals was stolen in a ransomware attack. ]]> 2024-04-18T11:30:39+00:00 https://www.securityweek.com/180k-impacted-by-data-breach-at-michigan-healthcare-organization/ www.secnews.physaphae.fr/article.php?IdArticle=8484684 False Ransomware,Data Breach,Medical None 3.0000000000000000 SecurityWeek - Security News Kapeka est une nouvelle porte dérobée qui peut être un nouvel ajout à l'arsenal de logiciels malveillants de la Russie-Link \\ et peut-être un successeur de Greyenergy.

---

>Kapeka is a new backdoor that may be a new addition to Russia-link Sandworm\'s malware arsenal and possibly a successor to GreyEnergy. ]]> 2024-04-17T19:00:00+00:00 https://www.securityweek.com/kapeka-a-new-backdoor-in-sandworms-arsenal-of-aggression/ www.secnews.physaphae.fr/article.php?IdArticle=8484320 False Malware None 2.0000000000000000 SecurityWeek - Security News Armis a acquis la hiérarchisation des cyber-risques et la société d'assainissement Silk Security pour 150 millions de dollars.

---

>Armis has acquired cyber risk prioritization and remediation company Silk Security for $150 million.  ]]> 2024-04-17T14:06:19+00:00 https://www.securityweek.com/armis-acquires-silk-security-for-150-million/ www.secnews.physaphae.fr/article.php?IdArticle=8484210 False None None 3.0000000000000000 SecurityWeek - Security News Ivanti verse des correctifs pour 27 vulnérabilités dans le produit Avalanche MDM, y compris des défauts critiques menant à l'exécution des commandes.

---

>Ivanti releases patches for 27 vulnerabilities in the Avalanche MDM product, including critical flaws leading to command execution. ]]> 2024-04-17T12:24:32+00:00 https://www.securityweek.com/ivanti-patches-27-vulnerabilities-in-avalanche-mdm-product/ www.secnews.physaphae.fr/article.php?IdArticle=8484114 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Omni Hotels affirme que les informations sur les clients ont été compromises dans une cyberattaque affirmée par le groupe de ransomware de l'équipe de Daixin.

---

>Omni Hotels says customer information was compromised in a cyberattack claimed by the Daixin Team ransomware group. ]]> 2024-04-16T10:53:04+00:00 https://www.securityweek.com/omni-hotels-says-personal-information-stolen-in-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8483391 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Cisco Duo avertit que la violation des numéros de téléphone exposés, des opérateurs de téléphone, des métadonnées et d'autres journaux qui pourraient conduire à des attaques d'ingénierie sociale en aval.

---

>Cisco Duo warns that breach exposed phone numbers, phone carriers, metadata and other logs that could lead to downstream social engineering attacks. ]]> 2024-04-15T18:34:59+00:00 https://www.securityweek.com/cisco-duo-says-hack-at-telephony-supplier-exposed-mfa-sms-logs/ www.secnews.physaphae.fr/article.php?IdArticle=8482929 False Hack None 2.0000000000000000 SecurityWeek - Security News ICS malware Fuxnet allegedly used by Ukrainian Blackjack group to disrupt industrial sensors and other systems belonging to a Moscow infrastructure firm. ]]> 2024-04-15T12:51:28+00:00 https://www.securityweek.com/destructive-ics-malware-fuxnet-used-by-ukraine-against-russian-infrastructure/ www.secnews.physaphae.fr/article.php?IdArticle=8482741 False Malware,Industrial None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui auraient pu glisser sous le Radar: Moscou Setwage System Piraked, un nouveau rapport Women in Cybersecurity, Domain Pastehub saisi par les forces de l'ordre.

---

>Noteworthy stories that might have slipped under the radar: Moscow sewage system hacked, a new women in cybersecurity report, PasteHub domain seized by law enforcement.  ]]> 2024-04-12T13:48:52+00:00 https://www.securityweek.com/in-other-news-moscow-sewage-hack-women-in-cybersecurity-report-dam-security-concerns/ www.secnews.physaphae.fr/article.php?IdArticle=8480783 False Hack,Legislation None 2.0000000000000000 SecurityWeek - Security News CheckMarx met en garde contre une nouvelle attaque en s'appuyant sur la manipulation de la recherche GitHub pour livrer du code malveillant.

---

>Checkmarx warns of a new attack relying on GitHub search manipulation to deliver malicious code. ]]> 2024-04-12T09:55:57+00:00 https://www.securityweek.com/threat-actors-manipulate-github-search-to-deliver-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8480680 False Malware,Threat None 2.0000000000000000 SecurityWeek - Security News Lastpass cette semaine a révélé que l'un de ses employés était ciblé dans une attaque de phishing impliquant une technologie DeepFake.

---

>LastPass this week revealed that one of its employees was targeted in a phishing attack involving deepfake technology. ]]> 2024-04-12T08:50:12+00:00 https://www.securityweek.com/lastpass-employee-targeted-with-deepfake-calls/ www.secnews.physaphae.fr/article.php?IdArticle=8480615 False None LastPass 2.0000000000000000 SecurityWeek - Security News Le gouvernement américain émet une alerte rouge pour ce qui semble être une violation massive de la chaîne d'approvisionnement à Sissen, une entreprise qui vend des outils d'analyse de grosses données.

---

>The US government issues a red-alert for what appears to be a massive supply chain breach at Sisense, a company that sells big-data analytics tools. ]]> 2024-04-11T15:17:48+00:00 https://www.securityweek.com/sisense-data-breach-triggers-cisa-alert-and-urgent-calls-for-credential-resets/ www.secnews.physaphae.fr/article.php?IdArticle=8480124 False Data Breach,Tool None 2.0000000000000000 SecurityWeek - Security News Avec l'intelligence de menace automatisée, détaillée et contextualisée, les organisations peuvent mieux anticiper l'activité malveillante et utiliser l'intelligence pour accélérer la détection autour d'attaques éprouvées.

---

>With automated, detailed, contextualized threat intelligence, organizations can better anticipate malicious activity and utilize intelligence to speed detection around proven attacks. ]]> 2024-04-11T13:19:09+00:00 https://www.securityweek.com/why-intelligence-sharing-is-vital-to-building-a-robust-collective-cyber-defense-program/ www.secnews.physaphae.fr/article.php?IdArticle=8480026 False Threat None 3.0000000000000000 SecurityWeek - Security News La force de mission Cyber National de Uscybercom \\ a participé à 22 opérations de chasse étrangères en 2023.

---

>USCYBERCOM\'s Cyber National Mission Force participated in 22 foreign hunt forward operations in 2023. ]]> 2024-04-11T12:47:01+00:00 https://www.securityweek.com/us-cyber-force-assisted-foreign-governments-22-times-in-2023/ www.secnews.physaphae.fr/article.php?IdArticle=8480027 False None None 2.0000000000000000 SecurityWeek - Security News Palo Alto Networks corrige plusieurs vulnérabilités de haute sévérité, y compris celles qui permettent des attaques DOS contre ses pare-feu.

---

>Palo Alto Networks patches several high-severity vulnerabilities, including ones that allow DoS attacks against its firewalls. ]]> 2024-04-11T10:00:00+00:00 https://www.securityweek.com/palo-alto-networks-patches-vulnerabilities-allowing-firewall-disruption/ www.secnews.physaphae.fr/article.php?IdArticle=8479932 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Le système de nouvelle génération de logiciels malveillants de CISA \\ est désormais disponible pour toute organisation pour soumettre des échantillons de logiciels malveillants et d'autres artefacts suspects pour l'analyse.

---

>CISA\'s Malware Next-Gen system is now available for any organization to submit malware samples and other suspicious artifacts for analysis. ]]> 2024-04-10T19:40:05+00:00 https://www.securityweek.com/cisa-releases-malware-next-gen-analysis-system-for-public-use/ www.secnews.physaphae.fr/article.php?IdArticle=8479555 False Malware None 3.0000000000000000 SecurityWeek - Security News The recent AT&T data breach impacts 51 million customers, the company tells Maine\'s attorney general. ]]> 2024-04-10T14:29:20+00:00 https://www.securityweek.com/att-data-breach-update-51-million-customers-impacted/ www.secnews.physaphae.fr/article.php?IdArticle=8479448 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Les chercheurs VUSEC ressuscitent l'attaque de Spectre V2, montrant qu'il fonctionne contre le noyau Linux sur les processeurs Intel de dernière génération.

---

>VUSec researchers resurrect Spectre v2 attack, showing that it works against the Linux kernel on the latest-generation Intel CPUs. ]]> 2024-04-10T13:57:08+00:00 https://www.securityweek.com/researchers-resurrect-spectre-v2-attack-against-intel-cpus/ www.secnews.physaphae.fr/article.php?IdArticle=8479377 False None None 2.0000000000000000 SecurityWeek - Security News Les informations personnelles de 500 000 personnes ont été compromises dans une violation de données chez Group Health Cooperative of South Central Wisconsin.

---

>The personal information of 500,000 people was compromised in a data breach at Group Health Cooperative of South Central Wisconsin. ]]> 2024-04-10T11:06:41+00:00 https://www.securityweek.com/530k-impacted-by-data-breach-at-wisconsin-healthcare-organization/ www.secnews.physaphae.fr/article.php?IdArticle=8479277 False Data Breach,Medical None 3.0000000000000000 SecurityWeek - Security News Microsoft Patches CVE-2024-29988 et CVE-2024-26234, deux vulnérabilités de jour zéro exploitées par les acteurs de la menace pour livrer des logiciels malveillants.

---

>Microsoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware. ]]> 2024-04-10T09:33:35+00:00 https://www.securityweek.com/microsoft-patches-two-zero-days-exploited-for-malware-delivery/ www.secnews.physaphae.fr/article.php?IdArticle=8479243 False Malware,Vulnerability,Threat None 2.0000000000000000 SecurityWeek - Security News La société de soutien à l'analyse économique et aux litiges GMA affirme que les informations personnelles et médicales ont été volées en mai 2023 violation de données.

---

>Economic analysis and litigation support firm GMA says personal and medical information was stolen in a May 2023 data breach. ]]> 2024-04-09T10:56:16+00:00 https://www.securityweek.com/doj-collected-information-exposed-in-data-breach-affecting-340000/ www.secnews.physaphae.fr/article.php?IdArticle=8478633 False Data Breach,Medical None 2.0000000000000000 SecurityWeek - Security News RansomHub extorque les soins de santé des changements, menaçant de publier des données volées dans une attaque de ransomware Blackcat de février 2024.

---

>RansomHub is extorting Change Healthcare, threatening to release data stolen in a February 2024 BlackCat ransomware attack. ]]> 2024-04-09T10:18:23+00:00 https://www.securityweek.com/second-ransomware-group-extorting-change-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8478634 False Ransomware,Medical None 2.0000000000000000 SecurityWeek - Security News Les nouvelles attaques Ahoi Heckler et WESEE ciblent AMD SEV-SNP et Intel TDX avec des interruptions malveillantes pour pirater des VM confidentiels.

---

>New Ahoi attacks Heckler and WeSee target AMD SEV-SNP and Intel TDX with malicious interrupts to hack confidential VMs. ]]> 2024-04-08T13:16:22+00:00 https://www.securityweek.com/confidential-vms-hacked-via-new-ahoi-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8478127 False Hack None 3.0000000000000000 SecurityWeek - Security News Crowdfense a annoncé un programme d'acquisition d'exploit de 30 millions de dollars couvrant Android, iOS, Chrome et Safari Zero-Days.

---

>Crowdfense has announced a $30 million exploit acquisition program covering Android, iOS, Chrome, and Safari zero-days. ]]> 2024-04-08T11:30:59+00:00 https://www.securityweek.com/company-offering-30-million-for-android-ios-browser-zero-day-exploits/ www.secnews.physaphae.fr/article.php?IdArticle=8478101 False Vulnerability,Threat,Mobile None 2.0000000000000000 SecurityWeek - Security News Google combat les bogues de sécurité de la mémoire du moteur Chrome V8 avec un nouveau bac à sable et l'ajoute au programme de prime de bogue.

---

>Google fights Chrome V8 engine memory safety bugs with a new sandbox and adds it to the bug bounty program. ]]> 2024-04-08T11:08:23+00:00 https://www.securityweek.com/google-adds-v8-sandbox-to-chrome/ www.secnews.physaphae.fr/article.php?IdArticle=8478074 False None None 2.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui auraient pu glisser sous le radar: le piratage de la CISA pourrait avoir un impact sur 100 000 personnes, Microsoft AI Copilot interdit par US House, UK Nuclear Site Prosecution.

---

>Noteworthy stories that might have slipped under the radar: the CISA hack could impact 100,000 people, Microsoft AI Copilot banned by US House, UK nuclear site prosecution.  ]]> 2024-04-05T11:59:41+00:00 https://www.securityweek.com/in-other-news-100000-affected-by-cisa-breach-microsoft-ai-copilot-ban-nuclear-site-prosecution/ www.secnews.physaphae.fr/article.php?IdArticle=8476480 False Hack None 3.0000000000000000 SecurityWeek - Security News Acuité, l'entreprise technologique à partir de laquelle les pirates ont prétendu avoir volé le département d'État et d'autres données gouvernementales, confirme le piratage, mais dit que les informations volées sont anciennes.

---

>Acuity, the tech firm from which hackers claimed to have stolen State Department and other government data, confirms hack, but says stolen info is old. ]]> 2024-04-05T10:00:00+00:00 https://www.securityweek.com/acuity-responds-to-us-government-data-theft-claims-says-hackers-obtained-old-info/ www.secnews.physaphae.fr/article.php?IdArticle=8476425 False Hack None 3.0000000000000000 SecurityWeek - Security News City of Hope informe 800 000 personnes d'une violation de données ayant un impact sur leurs informations personnelles et santé.

---

>City of Hope is notifying 800,000 individuals of a data breach impacting their personal and health information. ]]> 2024-04-04T12:47:11+00:00 https://www.securityweek.com/us-cancer-center-data-breach-impacting-800000/ www.secnews.physaphae.fr/article.php?IdArticle=8475907 False Data Breach None 2.0000000000000000 SecurityWeek - Security News La violation de données impactant les utilisateurs \\ 'invites personnelles enquête sur la plate-forme de récompenses sur le levéylama pour réinitialiser les mots de passe.

---

>Data breach impacting users\' personal information prompts survey rewards platform SurveyLama to reset passwords. ]]> 2024-04-04T12:09:06+00:00 https://www.securityweek.com/surveylama-data-breach-impacts-4-4-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=8475870 False Data Breach None 2.0000000000000000 SecurityWeek - Security News La nouvelle méthode DOS HTTP / 2 nommée inondation de continuation peut présenter un risque plus élevé que la réinitialisation rapide, qui a été utilisée pour les attaques records.

---

>New HTTP/2 DoS method named Continuation Flood can pose a greater risk than Rapid Reset, which has been used for record-breaking attacks. ]]> 2024-04-04T10:50:58+00:00 https://www.securityweek.com/new-http-2-dos-attack-potentially-more-severe-than-record-breaking-rapid-reset/ www.secnews.physaphae.fr/article.php?IdArticle=8475843 False None None 3.0000000000000000 SecurityWeek - Security News Le géant de vidéoconférence Zoom a versé 10 millions de dollars grâce à son programme de primes de bug depuis son lancement en 2019.

---

>Video conferencing giant Zoom has paid out $10 million through its bug bounty program since it was launched in 2019. ]]> 2024-04-04T10:00:00+00:00 https://www.securityweek.com/zoom-paid-out-10-million-via-bug-bounty-program-since-2019/ www.secnews.physaphae.fr/article.php?IdArticle=8475807 False None None 3.0000000000000000 SecurityWeek - Security News News analysis:  SecurityWeek editor-at-large Ryan Naraine reads the CSRB report on China\'s audacious Microsoft\'s Exchange Online hack and isn\'t at all surprised by the findings. ]]> 2024-04-04T10:00:00+00:00 https://www.securityweek.com/microsofts-security-chickens-have-come-home-to-roost/ www.secnews.physaphae.fr/article.php?IdArticle=8475806 False Hack None 3.0000000000000000 SecurityWeek - Security News Cyber Safety Review Board, a déclaré que «une cascade d'erreurs» de Microsoft a permis aux cyber-opérateurs chinois soutenus par l'État de s'introduire dans les comptes de messagerie des hauts responsables américains.

---

>Cyber Safety Review Board, said “a cascade of errors” by Microsoft let state-backed Chinese cyber operators break into email accounts of senior U.S. officials. ]]> 2024-04-03T13:08:00+00:00 https://www.securityweek.com/scathing-federal-report-rips-microsoft-for-shoddy-security-insincerity-in-response-to-chinese-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8475237 False Hack None 2.0000000000000000 SecurityWeek - Security News Jackson County, Missouri, révèle \\ 'des perturbations significatives \' aux systèmes informatiques, dit l'attaque des ransomwares probablement en faute.

---

>Jackson County, Missouri, discloses \'significant disruptions\' to IT systems, says ransomware attack likely at fault. ]]> 2024-04-03T12:01:15+00:00 https://www.securityweek.com/missouri-county-hit-by-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8475207 False Ransomware None 2.0000000000000000 SecurityWeek - Security News La découverte de la porte dérobée XZ Utils rappelle à un développeur F-Droid d'un incident similaire qui s'est produit il y a quelques années.

---

>The discovery of the XZ Utils backdoor reminds an F-Droid developer of a similar incident that occurred a few years ago. ]]> 2024-04-03T10:23:35+00:00 https://www.securityweek.com/xz-utils-backdoor-attack-brings-another-similar-incident-to-light/ www.secnews.physaphae.fr/article.php?IdArticle=8475181 False None None 3.0000000000000000 SecurityWeek - Security News Google Patches 28 vulnérabilités dans Android et 25 bogues dans des appareils de pixels, y compris deux défauts exploités dans la nature.

---

>Google patches 28 vulnerabilities in Android and 25 bugs in Pixel devices, including two flaws exploited in the wild. ]]> 2024-04-03T09:43:20+00:00 https://www.securityweek.com/google-patches-exploited-pixel-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8475153 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Prudential Financial dit que les noms, les adresses et les numéros d'identification de plus de 36 000 ont été volés dans une violation de données de février.

---

>Prudential Financial says the names, addresses, and ID numbers of over 36,000 were stolen in a February data breach. ]]> 2024-04-02T10:10:29+00:00 https://www.securityweek.com/36000-impacted-by-prudential-financial-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8474554 False Data Breach None 2.0000000000000000 SecurityWeek - Security News La Fondation OWASP indique qu'une mauvaise configuration du wiki exposée curriculum vitae déposée il y a plus d'une décennie par les aspirants membres.

---

>The OWASP Foundation says a wiki misconfiguration exposed resumes filed over a decade ago by aspiring members. ]]> 2024-04-02T09:55:32+00:00 https://www.securityweek.com/owasp-data-breach-caused-by-server-misconfiguration/ www.secnews.physaphae.fr/article.php?IdArticle=8474555 False Data Breach None 3.0000000000000000 SecurityWeek - Security News MarineMax confirme une violation de données à la suite d'une récente attaque de ransomware, les attaquants affirmant avoir obtenu 180 000 fichiers.

---

>MarineMax confirms suffering a data breach as a result of a recent ransomware attack, with the attackers claiming to have obtained 180,000 files.  ]]> 2024-04-02T08:41:20+00:00 https://www.securityweek.com/boat-dealer-marinemax-confirms-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8474500 False Ransomware,Data Breach None 3.0000000000000000 SecurityWeek - Security News A vulnerability in util-linux, a core utilities package in Linux systems, allows attackers to leak user passwords and modify the clipboard. ]]> 2024-04-01T16:06:25+00:00 https://www.securityweek.com/wallescape-linux-vulnerability-leaks-user-passwords/ www.secnews.physaphae.fr/article.php?IdArticle=8474120 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News NCC Group researchers warn that the Android banking malware \'Vultur\' has been updated with device interaction and file tampering capabilities. ]]> 2024-04-01T15:52:06+00:00 https://www.securityweek.com/vultur-android-malware-gets-extensive-device-interaction-capabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8474121 False Malware,Mobile None 3.0000000000000000 SecurityWeek - Security News Des alertes de sécurité urgentes émises en tant que code malveillant ont été trouvées intégrées dans la bibliothèque de compression de données XZ Utils utilisée dans de nombreuses distributions Linux.

---

>Urgent security alerts issued as malicious code was found embedded in the XZ Utils data compression library used in many Linux distributions. ]]> 2024-04-01T13:05:29+00:00 https://www.securityweek.com/supply-chain-attack-major-linux-distributions-impacted-by-xz-utils-backdoor/ www.secnews.physaphae.fr/article.php?IdArticle=8474046 False None None 3.0000000000000000 SecurityWeek - Security News Noteworthy stories that might have slipped under the radar: US government conducting airline privacy review, SEC\'s overreaching SolarWinds hack probe, MFA bombing of Apple users. ]]> 2024-03-29T13:52:02+00:00 https://www.securityweek.com/in-other-news-airline-privacy-review-secs-solarwinds-hack-probe-apple-mfa-bombing/ www.secnews.physaphae.fr/article.php?IdArticle=8472610 False Hack None 2.0000000000000000 SecurityWeek - Security News Harvard Pilgrim Health Care indique que les informations personnelles de plus de 2,8 millions de personnes ont été volées dans une attaque de ransomware vieille d'un an.

---

>Harvard Pilgrim Health Care says the personal information of over 2.8 million individuals was stolen in a year-old ransomware attack. ]]> 2024-03-29T11:01:38+00:00 https://www.securityweek.com/massachusetts-health-insurer-data-breach-impacts-2-8-million/ www.secnews.physaphae.fr/article.php?IdArticle=8472531 False Ransomware,Data Breach None 2.0000000000000000 SecurityWeek - Security News Les responsables du référentiel Python Package Index (PYPI) ont été obligés de suspendre la création de nouveaux projets et l'enregistrement des nouveaux utilisateurs pour atténuer une campagne de téléchargement de logiciels malveillants.

---

>Maintainers of the Python Package Index (PyPI) repository were forced to suspend new project creation and new user registration to mitigate a malware upload campaign. ]]> 2024-03-28T17:45:03+00:00 https://www.securityweek.com/malware-upload-attack-hits-pypi-repository/ www.secnews.physaphae.fr/article.php?IdArticle=8472180 False Malware None 2.0000000000000000 SecurityWeek - Security News La société de renseignement sur les menaces Eclecticiq documente la livraison de leurres de phishing malware aux organisations énergétiques gouvernementales et privées en Inde.

---

>Threat intelligence firm EclecticIQ documents the delivery of malware phishing lures to government and private energy organizations in India. ]]> 2024-03-28T14:37:56+00:00 https://www.securityweek.com/cyberespionage-campaign-targets-government-energy-entities-in-india/ www.secnews.physaphae.fr/article.php?IdArticle=8472100 False Malware None 3.0000000000000000