This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-12T15:59:08+00:00 www.secnews.physaphae.fr SecurityWeek - Security News En mai 2023, le groupe de cyberespionnage lié à l'Iran Charming Kitten a ciblé un groupe de réflexion basé aux États-Unis avec un nouveau malware macOS.

---

>In May 2023, Iran-linked cyberespionage group Charming Kitten targeted a US-based think tank with new macOS malware. ]]> 2023-07-07T13:42:29+00:00 https://www.securityweek.com/iranian-cyberspies-target-us-based-think-tank-with-new-macos-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8353399 False Malware APT 35,APT 35 2.0000000000000000 SecurityWeek - Security News 2022-05-12T13:18:29+00:00 https://www.securityweek.com/iranian-cyberspy-group-launching-ransomware-attacks-against-us www.secnews.physaphae.fr/article.php?IdArticle=4584033 False Ransomware,Threat,Conference APT 35,APT 35 3.0000000000000000 SecurityWeek - Security News 2022-02-22T15:18:36+00:00 https://www.securityweek.com/enterprise-iot-security-firm-phosphorus-raises-38-million www.secnews.physaphae.fr/article.php?IdArticle=4166870 False Patching,Conference APT 35,APT 35 None SecurityWeek - Security News 2022-02-01T16:24:06+00:00 https://www.securityweek.com/iranian-hackers-using-new-powershell-backdoor-linked-memento-ransomware www.secnews.physaphae.fr/article.php?IdArticle=4066276 False Ransomware,Conference APT 35,APT 35 None SecurityWeek - Security News 2021-08-05T15:48:35+00:00 http://feedproxy.google.com/~r/securityweek/~3/n6qIj2C2k4g/iran-linked-hackers-expand-arsenal-new-android-backdoor www.secnews.physaphae.fr/article.php?IdArticle=3178517 False Threat,Conference APT 35,APT 35 None SecurityWeek - Security News 2019-10-09T18:20:48+00:00 http://feedproxy.google.com/~r/Securityweek/~3/VIYT0SkoGlQ/iranian-hackers-update-spear-phishing-techniques-recent-campaign www.secnews.physaphae.fr/article.php?IdArticle=1393558 False Threat,Conference APT 35 None SecurityWeek - Security News 2019-03-28T06:57:04+00:00 https://www.securityweek.com/microsoft-takes-control-99-domains-used-iranian-cyberspies www.secnews.physaphae.fr/article.php?IdArticle=1086037 False Conference APT 35 None SecurityWeek - Security News Organizations are getting increasingly better at discovering data breaches on their own, with more than 60% of intrusions in 2017 detected internally, according to FireEye-owned Mandiant. The company's M-Trends report for 2018 shows that the global median time for internal detection dropped to 57.5 days in 2017, compared to 80 days in the previous year. Of the total number of breaches investigated by Mandiant last year, 62% were discovered internally, up from 53% in 2016. On the other hand, it still took roughly the same amount of time for organizations to learn that their systems had been compromised. The global median dwell time in 2017 – the median time from the first evidence of a hack to detection – was 101 days, compared to 99 days in 2016. Companies in the Americas had the shortest median dwell time (75.5 days), while organizations in the APAC region had the longest dwell time (nearly 500 days). Data collected by Mandiant in 2013 showed that more than one-third of organizations had been attacked again after the initial incident had been remediated. More recent data, specifically from the past 19 months, showed that 56% of Mandiant customers were targeted again by either the same group or one with similar motivation. In cases where investigators discovered at least one type of significant activity (e.g. compromised accounts, data theft, lateral movement), the targeted organization was successfully attacked again within one year. Organizations that experienced more than one type of significant activity were attacked by more than one threat actor. Again, the highest percentage of companies attacked multiple times and by multiple threat groups was in the APAC region – more than double compared to the Americas and the EMEA region. When it comes to the most targeted industries, companies in the financial and high-tech sectors recorded the highest number of significant attacks, while the high-tech, telecommunications and education sectors were hit by the highest number of different hacker groups. Last year, FireEye assigned names to four state-sponsored threat groups, including the Vietnam-linked APT32 (OceanLotus), and the Iran-linked APT33, APT34 (OilRig), and APT35 (NewsBeef, Newscaster and Charming Kitten). ]]> 2018-04-04T14:00:03+00:00 https://www.securityweek.com/breaches-increasingly-discovered-internally-mandiant www.secnews.physaphae.fr/article.php?IdArticle=565681 False Conference APT33,APT 35,APT 33,APT 32,APT 34 None SecurityWeek - Security News 2017-12-06T13:49:19+00:00 http://feedproxy.google.com/~r/Securityweek/~3/noqRtez4R0M/hbo-hacker-linked-iranian-spy-group www.secnews.physaphae.fr/article.php?IdArticle=445528 False Conference APT 35 None SecurityWeek - Security News A cyber espionage operation linked to Iran and the recent Shamoon 2 attacks has targeted several organizations in the Middle East, particularly in Saudi Arabia. ]]> 2017-02-16T12:27:22+00:00 http://feedproxy.google.com/~r/Securityweek/~3/pFJkb6i3h-s/iranian-spies-target-saudi-arabia-magic-hound-attacks www.secnews.physaphae.fr/article.php?IdArticle=316562 False None APT 35 None