This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T14:33:18+00:00 www.secnews.physaphae.fr Dark Reading - Informationweek Branch It might still sound far-fetched to say AI can develop critical thinking skills and help us make decisions in the cybersecurity industry. But we\'re not far off.]]> 2024-08-21T14:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/critical-thinking-ai-in-cybersecurity-a-stretch-or-a-possibility www.secnews.physaphae.fr/article.php?IdArticle=8562726 False None None 2.0000000000000000 Dark Reading - Informationweek Branch A server-side request forgery (SSRF) bug in Microsoft\'s tool for creating custom AI chatbots potentially exposed info across multiple tenants within cloud environments.]]> 2024-08-21T10:59:17+00:00 https://www.darkreading.com/remote-workforce/microsoft-copilot-studio-exploit-leaks-sensitive-cloud-data www.secnews.physaphae.fr/article.php?IdArticle=8562727 False Tool,Threat,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch CodeBreaker technique can create code samples that poison the output of code-completing large language models, resulting in vulnerable - and undetectable - code suggestions.]]> 2024-08-20T22:29:44+00:00 https://www.darkreading.com/application-security/researchers-turn-code-completion-llms-into-attack-tools www.secnews.physaphae.fr/article.php?IdArticle=8562728 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Two congressmen want the US Commerce Department to examine the company\'s goods and decide if they pose a threat.]]> 2024-08-20T21:11:59+00:00 https://www.darkreading.com/cyber-risk/chinese-wifi-router-vendor-draws-us-congressional-ire www.secnews.physaphae.fr/article.php?IdArticle=8561177 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Vulnerability gave attackers with access to a pod a way to obtain credentials and other secrets.]]> 2024-08-20T20:55:54+00:00 https://www.darkreading.com/application-security/azure-kubernetes-bug-lays-open-cluster-secrets www.secnews.physaphae.fr/article.php?IdArticle=8561178 False Vulnerability None 3.0000000000000000 Dark Reading - Informationweek Branch The company has released little information on the breach, but claims it\'s been in contact with the individuals affected.]]> 2024-08-20T19:33:56+00:00 https://www.darkreading.com/cyberattacks-data-breaches/toyota-customer-employee-data-leaks-in-confirmed-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8561179 False Data Breach None 3.0000000000000000 Dark Reading - Informationweek Branch A 7-month-old bug in an OSS CI/CD server is still being actively exploited, thanks to spotty patching, CISA warns.]]> 2024-08-20T19:28:56+00:00 https://www.darkreading.com/vulnerabilities-threats/critical-actively-exploited-jenkins-rce-bug-patch-lag www.secnews.physaphae.fr/article.php?IdArticle=8562729 False Patching None 2.0000000000000000 Dark Reading - Informationweek Branch Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.]]> 2024-08-20T17:00:54+00:00 https://www.darkreading.com/cyberattacks-data-breaches/name-that-toon-security-games www.secnews.physaphae.fr/article.php?IdArticle=8561180 False None None 2.0000000000000000 Dark Reading - Informationweek Branch By moving beyond guidelines and enforcing accountability, encouraging innovation, and prioritizing the safety and well-being of our communities in the digital age, we can build a more secure software future.]]> 2024-08-20T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/human-nature-is-causing-our-cybersecurity-problem www.secnews.physaphae.fr/article.php?IdArticle=8561181 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Feds confirmed Iran\'s involvement in the email attack against Roger Stone after Microsoft, Google reported Iranian APT action against both presidential campaigns.]]> 2024-08-20T11:47:26+00:00 https://www.darkreading.com/cyberattacks-data-breaches/us-intelligence-blames-ira-for-hack-on-trump-campaign www.secnews.physaphae.fr/article.php?IdArticle=8561182 False Hack None 3.0000000000000000 Dark Reading - Informationweek Branch Charming Kitten goes retro and consolidates its backdoor into a tighter package, abandoning the malware framework trend.]]> 2024-08-20T09:00:00+00:00 https://www.darkreading.com/threat-intelligence/irgc-linked-hackers-package-modular-malware-into-monolithic-trojan www.secnews.physaphae.fr/article.php?IdArticle=8561183 False Malware,Prediction APT 35 2.0000000000000000 Dark Reading - Informationweek Branch While the combined gross domestic product (GDP) of African nations grew fivefold in two decades, a lack of cybersecurity is holding back gains - although the jury is out on how much.]]> 2024-08-20T07:00:00+00:00 https://www.darkreading.com/cyber-risk/africa-s-economies-feel-pain-of-cybersecurity-deficit www.secnews.physaphae.fr/article.php?IdArticle=8561184 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Outlook, Teams, PowerPoint, OneNote, Excel, and Word undermine macOS\'s strict user permission-based privacy and security protections.]]> 2024-08-19T21:22:25+00:00 https://www.darkreading.com/remote-workforce/multiple-microsoft-apps-for-macos-vuln-to-malicious-library-injection-attacks www.secnews.physaphae.fr/article.php?IdArticle=8561185 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-19T20:30:31+00:00 https://www.darkreading.com/cybersecurity-operations/ibm-skillsbuild-cybersecurity-and-data-analytics-certificates-to-be-deployed-in-community-college-systems-in-alabama-california-bay-area-colorado-louisiana www.secnews.physaphae.fr/article.php?IdArticle=8561186 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Multifactor authentication enforcement for Azure portal, Microsoft Entrata admin center, and Intune admin center will begin October.]]> 2024-08-19T20:27:54+00:00 https://www.darkreading.com/identity-access-management-security/microsoft-will-require-mfa-for-azure-services www.secnews.physaphae.fr/article.php?IdArticle=8561187 False Legislation None 2.0000000000000000 Dark Reading - Informationweek Branch What is a Verizon Wireless demo store app doing on non-Verizon phones, and why is it a vehicle to an attacker?]]> 2024-08-19T17:31:49+00:00 https://www.darkreading.com/remote-workforce/every-google-pixel-phone-has-a-verizon-app-backdoor www.secnews.physaphae.fr/article.php?IdArticle=8561188 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Cyber incidents like this highlight the need for tougher action on companies that fail to adequately protect consumer data.]]> 2024-08-19T15:39:54+00:00 https://www.darkreading.com/cyberattacks-data-breaches/national-public-data-confirms-massive-breach www.secnews.physaphae.fr/article.php?IdArticle=8561189 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The US needs to seize this moment to set a global standard for responsible and ethical AI, ensuring that technological progress upholds and advances human rights.]]> 2024-08-19T14:00:00+00:00 https://www.darkreading.com/cyber-risk/a-critical-look-at-the-state-department-s-risk-management-profile www.secnews.physaphae.fr/article.php?IdArticle=8561190 False None None 2.0000000000000000 Dark Reading - Informationweek Branch AI jailbreaks are not vulnerabilities; they are expected behavior.]]> 2024-08-19T13:39:41+00:00 https://www.darkreading.com/application-security/assume-breach-when-building-ai-apps www.secnews.physaphae.fr/article.php?IdArticle=8561191 False Vulnerability None 3.0000000000000000 Dark Reading - Informationweek Branch The last known cyberattack waged against Iranian infrastructure took place last December with the blame placed on Israel and the US.]]> 2024-08-16T20:09:51+00:00 https://www.darkreading.com/cyberattacks-data-breaches/iran-reportedly-grapples-with-major-cyberattack-on-banking-systems www.secnews.physaphae.fr/article.php?IdArticle=8558908 False None None 3.0000000000000000 Dark Reading - Informationweek Branch When it comes to this year\'s candidates and political campaigns fending off major cyberattacks, a lot has changed since the 2016 election cycle.]]> 2024-08-16T17:48:32+00:00 https://www.darkreading.com/remote-workforce/2024-us-political-campaigns-prepared-cyber-threats www.secnews.physaphae.fr/article.php?IdArticle=8558836 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Users of Oracle\'s ERP for Web storefronts might not be aware of a misconfiguration which could put customer data at risk of exposure.]]> 2024-08-16T16:29:44+00:00 https://www.darkreading.com/application-security/oracle-netsuite-ecommerce-sites-expose-customer-data www.secnews.physaphae.fr/article.php?IdArticle=8558806 False None None 3.0000000000000000 Dark Reading - Informationweek Branch After loading a vulnerable driver, the utility uses a public exploit to gain privilege escalation and the ability to disable endpoint protection software.]]> 2024-08-16T16:12:48+00:00 https://www.darkreading.com/endpoint-security/ransomhub-rolls-out-brand-new-edr-killing-byovd-binary www.secnews.physaphae.fr/article.php?IdArticle=8558807 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Though it is possible for cyber disruptions to occur, CISA and the FBI say that ransomware will not impact casting or counting ballots.]]> 2024-08-16T15:41:14+00:00 https://www.darkreading.com/cyberattacks-data-breaches/cisa-fbi-assure-american-voters-cyber-safe-electoral-process www.secnews.physaphae.fr/article.php?IdArticle=8558808 False Ransomware None 3.0000000000000000 Dark Reading - Informationweek Branch Institutionalizing and sustaining fundamental cybersecurity practices requires a commitment to ongoing vigilance, active management, and a comprehensive understanding of evolving threats.]]> 2024-08-16T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/why-are-organizations-losing-ransomware-battle www.secnews.physaphae.fr/article.php?IdArticle=8558727 False Ransomware None 3.0000000000000000 Dark Reading - Informationweek Branch The Open-Source Software Prevalence Initiative, announced at DEF CON, will examine how open source software is used in critical infrastructure.]]> 2024-08-15T22:36:55+00:00 https://www.darkreading.com/application-security/white-house-pledges-10-million-for-open-source-initiative www.secnews.physaphae.fr/article.php?IdArticle=8558647 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Teams designed AI systems to secure open-source infrastructure software to be used in industry sectors such as financial services, utilities, and healthcare. Each finalist was awarded a $2 million prize.]]> 2024-08-15T22:25:24+00:00 https://www.darkreading.com/application-security/darpa-announces-ai-cyber-challenge-finalists www.secnews.physaphae.fr/article.php?IdArticle=8558648 False Medical None 3.0000000000000000 Dark Reading - Informationweek Branch Inconsistencies and lack of information in cybersecurity disclosures highlight the need for organizations to establish a robust materiality assessment framework.]]> 2024-08-15T21:52:09+00:00 https://www.darkreading.com/cyber-risk/how-can-organizations-navigate-sec-cyber-materiality-disclosures www.secnews.physaphae.fr/article.php?IdArticle=8558113 False None None 3.0000000000000000 Dark Reading - Informationweek Branch The attack affects organizations that have synced multiple on-premises Active Directory domains to a single Azure tenant.]]> 2024-08-15T20:09:34+00:00 https://www.darkreading.com/application-security/unfixed-microsoft-entra-id-authentication-bypass-threatens-hybrid-clouds www.secnews.physaphae.fr/article.php?IdArticle=8558332 False None None 3.0000000000000000 Dark Reading - Informationweek Branch The vulnerability was given a high-severity CVSS score, indicating that customers should act swiftly to mitigate the flaw.]]> 2024-08-15T18:51:26+00:00 https://www.darkreading.com/vulnerabilities-threats/solarwinds-critical-rce-bug-requires-urgent-patch www.secnews.physaphae.fr/article.php?IdArticle=8558286 False Vulnerability None 2.0000000000000000 Dark Reading - Informationweek Branch The threat group tracked as APT42 remains on the warpath with various phishing and other social engineering campaigns, as tensions with Israel rise.]]> 2024-08-15T17:21:38+00:00 https://www.darkreading.com/cyberattacks-data-breaches/google-iran-charming-kitten-targets-presidential-elections-israeli-military www.secnews.physaphae.fr/article.php?IdArticle=8558263 False Threat APT 35,APT 42 3.0000000000000000 Dark Reading - Informationweek Branch Though WormGPT tools may not be a major problem now, organizations can\'t let their guard down.]]> 2024-08-15T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/beyond-the-hype-unveiling-realities-of-wormgpt-in-cybersecurity www.secnews.physaphae.fr/article.php?IdArticle=8558165 False Tool None 3.0000000000000000 Dark Reading - Informationweek Branch Brain Cipher made a loud entry to the ransomware scene, but it doesn\'t seem to be quite as sophisticated as its accomplishment would suggest.]]> 2024-08-15T00:00:00+00:00 https://www.darkreading.com/threat-intelligence/ransomware-group-behind-major-indonesian-attack-wears-many-masks www.secnews.physaphae.fr/article.php?IdArticle=8557865 False Ransomware None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T19:49:37+00:00 https://www.darkreading.com/ics-ot-security/new-isagca-report-explores-zero-trust-outcomes-in-ot-cybersecurity www.secnews.physaphae.fr/article.php?IdArticle=8557779 False Industrial None 3.0000000000000000 Dark Reading - Informationweek Branch The likely China-linked campaign is deploying CloudSorcerer and other proprietary binaries belonging to known state-sponsored groups, showing how advanced persistent threat groups often collaborate with each other.]]> 2024-08-14T19:46:52+00:00 https://www.darkreading.com/cyberattacks-data-breaches/eastwind-cyber-spy-campaign-chinese-apt-tools www.secnews.physaphae.fr/article.php?IdArticle=8557800 False Tool,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T19:06:06+00:00 https://www.darkreading.com/endpoint-security/mimecast-announces-acquisition-of-aware-doubles-down-on-ai-powered-human-risk-management-capabilities www.secnews.physaphae.fr/article.php?IdArticle=8557751 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T19:01:59+00:00 https://www.darkreading.com/cloud-security/digicert-to-acquire-vercara www.secnews.physaphae.fr/article.php?IdArticle=8557752 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T18:59:25+00:00 https://www.darkreading.com/cybersecurity-operations/guardz-launches-free-community-shield-plan-to-empower-msps www.secnews.physaphae.fr/article.php?IdArticle=8557753 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T18:46:49+00:00 https://www.darkreading.com/cloud-security/gcore-radar-report-shows-46-increase-in-number-of-ddos-attacks-in-first-half-of-2024 www.secnews.physaphae.fr/article.php?IdArticle=8557754 False None None 4.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T18:42:42+00:00 https://www.darkreading.com/cybersecurity-operations/zimperium-teams-up-with-okta-to-enhance-zero-trust-identity-threat-protection-with-ai-driven-mobile-security-solutions www.secnews.physaphae.fr/article.php?IdArticle=8557755 False Threat,Mobile None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T18:18:13+00:00 https://www.darkreading.com/cybersecurity-operations/digital-align-inc-achieves-soc-2-type-2-certification-for-secure-automation-intelligence www.secnews.physaphae.fr/article.php?IdArticle=8557756 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-14T18:11:06+00:00 https://www.darkreading.com/endpoint-security/experian-acquires-behavioral-analytics-company-neuroid www.secnews.physaphae.fr/article.php?IdArticle=8557757 False None None 2.0000000000000000 Dark Reading - Informationweek Branch According to the researchers, roughly 250 fake advertisements appeared on platforms like Facebook and Instagram, and some are reportedly still up and running.]]> 2024-08-14T17:48:17+00:00 https://www.darkreading.com/vulnerabilities-threats/uk-royal-family-prime-minister-deepfakes-meta www.secnews.physaphae.fr/article.php?IdArticle=8557725 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Cloud services and thus millions of end users who access them could have been affected by the poisoning of artifacts in the development workflow of open source projects.]]> 2024-08-14T14:16:57+00:00 https://www.darkreading.com/cloud-security/github-attack-vector-google-microsoft-aws-projects www.secnews.physaphae.fr/article.php?IdArticle=8557726 False Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch By nurturing a security-centric work culture that involves everybody, organizations can overcome challenges with greater agility and confidence.]]> 2024-08-14T14:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/cybersecuritys-real-challenge-is-communication-not-just-technology www.secnews.physaphae.fr/article.php?IdArticle=8557624 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Maksim Silnikau and his associates are accused of developing and distributing notorious ransomware strains such as Reveton and Ransom Cartel, amongst other criminal acts.]]> 2024-08-14T13:57:46+00:00 https://www.darkreading.com/cyber-risk/cybercriminal-leader-jp-morgan-busted-pioneering-raas www.secnews.physaphae.fr/article.php?IdArticle=8557625 False Ransomware None 3.0000000000000000 Dark Reading - Informationweek Branch Security experts welcomed the long-anticipated publication of the first post-quantum cryptographic standards as a significant milestone.]]> 2024-08-14T13:16:50+00:00 https://www.darkreading.com/endpoint-security/nist-releases-3-post-quantum-standards-urges-orgs-to-start-pqc-journey www.secnews.physaphae.fr/article.php?IdArticle=8557823 False None None 4.0000000000000000 Dark Reading - Informationweek Branch The threat group is disrupting healthcare organizations. Victims can help themselves, though, even after compromise, by being careful in the decryption process.]]> 2024-08-14T10:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/inc-ransomware-encryptor-contains-keys-to-victim-data-recovery www.secnews.physaphae.fr/article.php?IdArticle=8557214 False Ransomware,Threat,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch The Democratic National Convention soon to take place in Chicago, already under heavy security, faces an additional threat in the form of stolen credentials for delegates.]]> 2024-08-14T10:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/dnc-credentials-compromised-intelfetch-telegram-bot www.secnews.physaphae.fr/article.php?IdArticle=8557517 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch While there are smart people and good leaders in other fields, we need to cultivate and grow leaders from the existing cybersecurity workforce, too.]]> 2024-08-14T00:26:35+00:00 https://www.darkreading.com/cybersecurity-operations/it-s-time-to-promote-security-talent-from-within www.secnews.physaphae.fr/article.php?IdArticle=8557542 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Australia\'s Evolution Mining said its IT systems were infected with ransomware in an Aug. 8 cyber incident.]]> 2024-08-13T23:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/gold-mining-company-struck-by-ransomware-attack www.secnews.physaphae.fr/article.php?IdArticle=8557267 False Ransomware None 2.0000000000000000 Dark Reading - Informationweek Branch Attackers are already actively exploiting six of the bugs and four others are public, including one for which Microsoft has no patch yet.]]> 2024-08-13T20:56:46+00:00 https://www.darkreading.com/vulnerabilities-threats/microsoft-discloses-10-zero-day-bugs-in-pacth-tuesday-update www.secnews.physaphae.fr/article.php?IdArticle=8557242 False Vulnerability,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The new standards from NIST are designed for two tasks: general encryption and digital signatures.]]> 2024-08-13T20:38:20+00:00 https://www.darkreading.com/endpoint-security/nist-finalizes-post-quantum-encryption-standards www.secnews.physaphae.fr/article.php?IdArticle=8557215 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Cash may be king, but law enforcement keeps track of who spends it, especially when it\'s in the six-figure range.]]> 2024-08-13T20:25:31+00:00 https://www.darkreading.com/cybersecurity-operations/cybercriminal-duo-attract-fbi-by-spending-big-and-living-large www.secnews.physaphae.fr/article.php?IdArticle=8557216 False Legislation None 3.0000000000000000 Dark Reading - Informationweek Branch The CVSS 9.8 authentication bypass in Ivanti\'s traffic manager admin panel already has a proof-of-concept (PoC) exploit lurking in the wild.]]> 2024-08-13T19:51:26+00:00 https://www.darkreading.com/remote-workforce/critical-ivanti-vtm-bug-unauthorized-admin-access www.secnews.physaphae.fr/article.php?IdArticle=8557217 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Privilege escalation flaws in the healthcare chatbot platform could have allowed unauthorized cross-tenant access and management of other customers\' resources.]]> 2024-08-13T18:36:28+00:00 https://www.darkreading.com/application-security/microsoft-azure-ai-health-bot-infected-with-critical-vulnerabilities www.secnews.physaphae.fr/article.php?IdArticle=8557167 False Vulnerability,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch Computer infrastructure in the US, UK, and Germany associated with the cybercriminal group, which targeted SMBs using double extortion, is officially out of commission.]]> 2024-08-13T18:08:36+00:00 https://www.darkreading.com/cyberattacks-data-breaches/fbi-shuts-down-dozens-of-radar-dispossessor-ransomware-servers www.secnews.physaphae.fr/article.php?IdArticle=8557143 False Ransomware None 3.0000000000000000 Dark Reading - Informationweek Branch AI\'s proficiency at creating software code won\'t put developers out of a job, but the job will change to one focused on security, collaboration, and "mentoring" AI models.]]> 2024-08-13T14:00:00+00:00 https://www.darkreading.com/application-security/the-changing-expectations-for-developers-in-an-ai-coding-future www.secnews.physaphae.fr/article.php?IdArticle=8557021 False None None 3.0000000000000000 Dark Reading - Informationweek Branch The Defense Advanced Research Projects Agency launches TRACTOR program to work with university and industry researchers on creating a translation system that can turn C code into secure, idiomatic Rust code.]]> 2024-08-13T12:28:23+00:00 https://www.darkreading.com/application-security/darpa-aims-to-ditch-c-code-move-to-rust www.secnews.physaphae.fr/article.php?IdArticle=8556985 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Both CrowdStrike president and CTO were at Black Hat and DEF CON to face direct questions from customers and cybersecurity professionals.]]> 2024-08-12T21:23:20+00:00 https://www.darkreading.com/cybersecurity-operations/crowdstrike-tries-patch-things-up-cybersecurity-industry www.secnews.physaphae.fr/article.php?IdArticle=8556586 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The treaty would allow any country to request technology firms to aid in cybercrime investigations and preserve data about their users - potentially imperiling penetration testers and security researchers, among others.]]> 2024-08-12T20:39:18+00:00 https://www.darkreading.com/cyberattacks-data-breaches/un-approves-cybercrime-treaty-despite-major-tech-privacy-concerns www.secnews.physaphae.fr/article.php?IdArticle=8556558 False None None 3.0000000000000000 Dark Reading - Informationweek Branch The vulnerability has been around for nearly 20 years and gives sophisticated attackers a way to bury virtually undetectable bootkits on devices with EPYC and Ryzen microprocessors.]]> 2024-08-12T20:14:47+00:00 https://www.darkreading.com/remote-workforce/amd-issues-updates-for-silicon-level-sinkclose-flaw www.secnews.physaphae.fr/article.php?IdArticle=8556559 False Vulnerability None 3.0000000000000000 Dark Reading - Informationweek Branch More than 100 Ukrainian government devices have been affected by the threat that is being tracked as UAC-0198.]]> 2024-08-12T18:25:00+00:00 https://www.darkreading.com/vulnerabilities-threats/ukraine-cert-phishing-campaign-poses-as-nations-security-service www.secnews.physaphae.fr/article.php?IdArticle=8556510 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch A quick and easy exploit for crashing Windows computers has no fix yet nor really any way to mitigate its effects.]]> 2024-08-12T18:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/clfs-bug-crashes-even-updated-windows-10-11-systems www.secnews.physaphae.fr/article.php?IdArticle=8556486 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Earth Baku, yet another subgroup of the highly active and increasingly sophisticated collective, is moving into EMEA with new malware and living-off-the-land (LOL) tactics.]]> 2024-08-12T14:30:31+00:00 https://www.darkreading.com/cyberattacks-data-breaches/apt41-spinoff-expands-chinese-actor-scope-beyond-asia www.secnews.physaphae.fr/article.php?IdArticle=8557118 False Malware APT 41 3.0000000000000000 Dark Reading - Informationweek Branch The recent outage highlights the critical importance of adhering to established processes and governance frameworks.]]> 2024-08-12T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/lesson-from-crowdstrike-incident www.secnews.physaphae.fr/article.php?IdArticle=8556385 False None None 3.0000000000000000 Dark Reading - Informationweek Branch US citizens play middleman between US companies and the North Korean government agents they unwittingly hire.]]> 2024-08-12T13:30:00+00:00 https://www.darkreading.com/remote-workforce/tennessee-man-helped-dprk-workers-get-jobs-at-us-orgs-fund-wmds www.secnews.physaphae.fr/article.php?IdArticle=8556386 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The American Hospital Association and the Health-ISAC issued a joint threat bulletin warning healthcare IT providers that their ransomware plans need to consider third-party risk.]]> 2024-08-10T01:59:25+00:00 https://www.darkreading.com/endpoint-security/healthcare-providers-must-plan-for-ransomware-attacks-on-third-party-suppliers www.secnews.physaphae.fr/article.php?IdArticle=8554657 False Ransomware,Threat,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T19:14:24+00:00 https://www.darkreading.com/endpoint-security/vectra-ai-expands-xdr-platform-to-deliver-a-real-time-view-of-active-posture-to-monitor-exposure-to-attackers www.secnews.physaphae.fr/article.php?IdArticle=8554875 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T19:10:09+00:00 https://www.darkreading.com/cybersecurity-operations/wicys-and-isc2-launch-fall-camp-for-cybersecurity-certification www.secnews.physaphae.fr/article.php?IdArticle=8554849 False None None 3.0000000000000000 Dark Reading - Informationweek Branch The weaknesses gave attackers an avenue to take over millions of photovoltaic devices connected to Solarman and Deye\'s cloud-hosted management systems.]]> 2024-08-09T18:31:09+00:00 https://www.darkreading.com/ics-ot-security/solar-power-installations-worldwide-open-to-cloud-api-bugs www.secnews.physaphae.fr/article.php?IdArticle=8554850 False Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T17:53:19+00:00 https://www.darkreading.com/cybersecurity-operations/antrhopic-expanding-our-model-safety-bug-bounty-program www.secnews.physaphae.fr/article.php?IdArticle=8554813 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T17:46:18+00:00 https://www.darkreading.com/cyberattacks-data-breaches/hpe-aruba-networking-strengthens-cyber-defenses-with-ai-powered-network-detection-and-response www.secnews.physaphae.fr/article.php?IdArticle=8554814 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T17:34:18+00:00 https://www.darkreading.com/endpoint-security/entro-extends-industry-leading-non-human-identity-security-platform www.secnews.physaphae.fr/article.php?IdArticle=8554815 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T17:07:57+00:00 https://www.darkreading.com/cybersecurity-operations/progress-announces-conclusion-of-sec-investigation-into-moveit www.secnews.physaphae.fr/article.php?IdArticle=8554816 False None None 2.0000000000000000 Dark Reading - Informationweek Branch In a panel at Black Hat 2024, journalists and investigators explain their differing goals when a victim organization is breached.]]> 2024-08-09T17:05:56+00:00 https://www.darkreading.com/cyberattacks-data-breaches/media-and-victims-find-common-ground-against-hackers www.secnews.physaphae.fr/article.php?IdArticle=8554817 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-09T17:00:25+00:00 https://www.darkreading.com/cybersecurity-operations/rubrik-partners-with-mandiant-for-cyber-resilience-and-accelerated-incident-response-recovery www.secnews.physaphae.fr/article.php?IdArticle=8554788 False None None 2.0000000000000000 Dark Reading - Informationweek Branch As attack surfaces increase, partner networks widen, and security teams remain stretched, vulnerabilities and errors continue to be a daunting challenge.]]> 2024-08-09T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/tackling-vulnerabilities-and-errors-head-on-for-proactive-security www.secnews.physaphae.fr/article.php?IdArticle=8554715 False Vulnerability None 2.0000000000000000 Dark Reading - Informationweek Branch Spectre and Meltdown exposed just how easy a target computer memory was for attackers. Several efforts are underway to protect memory.]]> 2024-08-08T22:33:36+00:00 https://www.darkreading.com/endpoint-security/memory-safety-is-key-to-preventing-hardware-hacks www.secnews.physaphae.fr/article.php?IdArticle=8554686 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Following the July 19 outages caused by a bad update, the cybersecurity firm faces shareholder lawsuits and pressure to pay damages for at least one major customer, by Delta Airlines. Will software liability follow?]]> 2024-08-08T21:15:58+00:00 https://www.darkreading.com/cyber-risk/crowdstrike-s-legal-pressures-mount-could-blaze-path-to-software-liability www.secnews.physaphae.fr/article.php?IdArticle=8554687 False None None 2.0000000000000000 Dark Reading - Informationweek Branch At Black Hat USA, security researcher Michael Bargury released a "LOLCopilot" ethical hacking module to demonstrate how attackers can exploit Microsoft Copilot - and offered advice for defensive tooling.]]> 2024-08-08T18:29:55+00:00 https://www.darkreading.com/application-security/how-to-weaponize-microsoft-copilot-for-cyberattackers www.secnews.physaphae.fr/article.php?IdArticle=8554243 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Microsoft execs detailed the company\'s reaction to the CrowdStrike incident and emphasized the value of a collective identity.]]> 2024-08-08T17:45:58+00:00 https://www.darkreading.com/cybersecurity-operations/microsoft-on-cisos-thriving-community-means-stronger-security www.secnews.physaphae.fr/article.php?IdArticle=8554211 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Attackers can use a seemingly innocuous IP address to exploit localhost APIs to conduct a range of malicious activity, including unauthorized access to user data and the delivery of malware.]]> 2024-08-08T17:24:08+00:00 https://www.darkreading.com/cyberattacks-data-breaches/0000-day-flaw-puts-chrome-firefox-mozilla-browsers-at-rce-risk www.secnews.physaphae.fr/article.php?IdArticle=8554212 False Malware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch As AI technologies continue to advance at a rapid pace, privacy, security and governance teams can\'t expect to achieve strong AI governance while working in isolation.]]> 2024-08-08T14:00:00+00:00 https://www.darkreading.com/cyber-risk/building-an-effective-strategy-to-manage-ai-risks www.secnews.physaphae.fr/article.php?IdArticle=8554101 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Black Hat presentation reveals adversaries don\'t need to complete all seven stages of a traditional kill chain to achieve their objectives.]]> 2024-08-08T13:00:00+00:00 https://www.darkreading.com/application-security/saas-apps-present-abbreviated-kill-chain-for-attackers www.secnews.physaphae.fr/article.php?IdArticle=8554071 False Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch Researchers at Aqua Security discovered the "Shadow Resource" attack vector and the "Bucket Monopoly" problem, where threat actors can guess the name of S3 buckets based on their public account IDs.]]> 2024-08-08T12:00:00+00:00 https://www.darkreading.com/remote-workforce/critical-aws-vulnerabilities-allow-s3-attack-bonanza www.secnews.physaphae.fr/article.php?IdArticle=8554041 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Invisible authentication mechanisms in Microsoft allow any attacker to escalate from privileged to super-duper privileged in cloud environments, paving the way for complete takeover.]]> 2024-08-07T23:20:00+00:00 https://www.darkreading.com/application-security/hazy-issue-entra-id-privileged-users-become-global-admins www.secnews.physaphae.fr/article.php?IdArticle=8553725 False Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch The number of additions to the Known Exploited Vulnerabilities catalog is growing quickly, but even silent changes to already-documented flaws can help security teams prioritize.]]> 2024-08-07T22:05:00+00:00 https://www.darkreading.com/cybersecurity-analytics/monitoring-kev-list-for-changes-can-guide-security-teams www.secnews.physaphae.fr/article.php?IdArticle=8553676 False Vulnerability None 3.0000000000000000 Dark Reading - Informationweek Branch The security vendor has also implemented several changes to protect against the kind of snafu that crashed 8.5 million Windows computers worldwide last month.]]> 2024-08-07T20:35:46+00:00 https://www.darkreading.com/cyber-risk/crowdstrike-will-give-customers-control-over-falcon-sensor-content-updates www.secnews.physaphae.fr/article.php?IdArticle=8553645 False None None 4.0000000000000000 Dark Reading - Informationweek Branch During a "Shark Tank"-like final, each startup\'s representative spent five minutes detailing their company and product, with an additional five minutes to take questions from eight judges from Omdia, investment firms, and top companies in cyber.]]> 2024-08-07T18:54:34+00:00 https://www.darkreading.com/cybersecurity-operations/knostic-wins-2024-black-hat-startup-spotlight-competition www.secnews.physaphae.fr/article.php?IdArticle=8553611 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The evolving malware is targeting hospitality and other B2C workers in Canada and Europe with capabilities that can evade Android 13 security restrictions.]]> 2024-08-07T17:13:41+00:00 https://www.darkreading.com/endpoint-security/chameleon-banking-trojan-makes-a-comeback-cloaked-as-crm-app www.secnews.physaphae.fr/article.php?IdArticle=8553550 False Malware,Mobile None 2.0000000000000000 Dark Reading - Informationweek Branch Microsoft claims 50,000 organizations are using its new Copilot Creation tool, but researcher Michael Bargury demonstrated at Black Hat USA ways it could unleash insecure chatbots.]]> 2024-08-07T15:20:00+00:00 https://www.darkreading.com/application-security/creating-insecure-ai-assistants-microsoft-copilot-studio www.secnews.physaphae.fr/article.php?IdArticle=8553576 False Tool None 3.0000000000000000 Dark Reading - Informationweek Branch You\'re only as strong as your weakest security link.]]> 2024-08-07T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/api-security-crisis-why-your-company-could-be-next www.secnews.physaphae.fr/article.php?IdArticle=8553429 False None None 3.0000000000000000 Dark Reading - Informationweek Branch The Dark Reading team once again welcomes the world\'s top cybersecurity experts to the Dark Reading News Desk live from Black Hat USA 2024. Tune into the livestream.]]> 2024-08-07T10:38:52+00:00 https://www.darkreading.com/threat-intelligence/dark-reading-news-desk-live-at-black-hat-usa-2024 www.secnews.physaphae.fr/article.php?IdArticle=8553341 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-08-07T09:41:02+00:00 https://www.darkreading.com/endpoint-security/verizon-business-2024-mobile-security-index-reveals-escalating-risks-in-mobile-and-iot-security www.secnews.physaphae.fr/article.php?IdArticle=8553989 False Studies,Mobile None 4.0000000000000000 Dark Reading - Informationweek Branch 2024-08-07T09:17:28+00:00 https://www.darkreading.com/threat-intelligence/cybersecurity-industry-leaders-launch-the-cyber-threat-intelligence-capability-maturity-model www.secnews.physaphae.fr/article.php?IdArticle=8553959 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-08-07T09:09:50+00:00 https://www.darkreading.com/cybersecurity-operations/dataprise-acquires-phoenix-it www.secnews.physaphae.fr/article.php?IdArticle=8553960 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-08-07T09:06:34+00:00 https://www.darkreading.com/cyber-risk/votiro-unveils-new-data-privacy-features-and-integrations www.secnews.physaphae.fr/article.php?IdArticle=8553961 False None None 2.0000000000000000 Dark Reading - Informationweek Branch While still under development, the malware contains Turkish-language filenames, can record the screen and keystrokes, and inject custom overlays to steal passwords and sensitive data.]]> 2024-08-07T06:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/blankbot-trojan-targets-turkish-android-users www.secnews.physaphae.fr/article.php?IdArticle=8553200 False Malware,Mobile None 3.0000000000000000 Dark Reading - Informationweek Branch Protections like Windows Smart App Control are useful but susceptible to attacks that allow threat actors initial access to an environment without triggering any alerts.]]> 2024-08-06T20:58:14+00:00 https://www.darkreading.com/application-security/attackers-use-multiple-techniques-to-bypass-reputation-based-security www.secnews.physaphae.fr/article.php?IdArticle=8552976 False Threat None 2.0000000000000000