This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-19T20:49:33+00:00 www.secnews.physaphae.fr Dark Reading - Informationweek Branch The threat actor behind the campaign is still unknown, but it shares some similarities with other cyptojacking groups.]]> 2024-02-01T22:20:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/commando-cat-campaign-is-second-this-year-to-target-docker www.secnews.physaphae.fr/article.php?IdArticle=8445746 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors linked to the People\'s Republic of China, such as Volt Typhoon, continue to "pre-position" themselves in the critical infrastructure of the United States, according to military and law enforcement officials.]]> 2024-02-01T20:30:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/china-infiltrates-us-critical-infrastructure-ramp-up-conflict www.secnews.physaphae.fr/article.php?IdArticle=8445711 False Threat Guam 3.0000000000000000 Dark Reading - Informationweek Branch County services have come to a halt and are not expected to resume until next week; no threat actor has yet been identified.]]> 2024-01-31T22:36:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/fulton-county-suffers-power-outages-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8445346 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The Russians are engaged in widespread influence operations designed to erode trust, increase polarization, and threaten democratic processes around the globe.]]> 2024-01-31T10:30:00+00:00 https://www.darkreading.com/threat-intelligence/microsoft-threat-report-how-russia-s-war-on-ukraine-is-impacting-the-global-cybersecurity-community www.secnews.physaphae.fr/article.php?IdArticle=8445348 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The RCE/auth bypass bugs in Connect Secure VPNs have gone unpatched for 20 days as state-sponsored groups continue to backdoor Ivanti gear.]]> 2024-01-30T23:22:00+00:00 https://www.darkreading.com/endpoint-security/ivanti-zero-day-patches-delayed-krustyloader-attacks-mount www.secnews.physaphae.fr/article.php?IdArticle=8444979 False Vulnerability,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The China-linked threat actor\'s attacks on US critical infrastructure organizations have alarmed American intelligence officials, Reuters says.]]> 2024-01-30T20:25:00+00:00 https://www.darkreading.com/cybersecurity-operations/us-govt-reportedly-trying-to-disrupt-volt-typhoon-attack-infrastructure www.secnews.physaphae.fr/article.php?IdArticle=8444927 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The threat actor went more than half a decade before being discovered - thanks to a remarkable backdoor delivered in invisible adversary-in-the-middle attacks.]]> 2024-01-26T21:00:00+00:00 https://www.darkreading.com/application-security/chinese-apt-hides-backdoor-in-software-updates www.secnews.physaphae.fr/article.php?IdArticle=8443534 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Threat actors created and abused OAuth apps to access Microsoft\'s corporate email environment and remain there for weeks.]]> 2024-01-26T20:37:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/microsoft-shares-new-guidance-in-wake-of-midnight-blizzard-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8443535 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch PoC exploit code for flaw is publicly available, heightening breach risks for users of the managed file-transfer technology.]]> 2024-01-24T19:55:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/fortra-discloses-critical-auth-bypass-vuln-in-goanywhere-mft www.secnews.physaphae.fr/article.php?IdArticle=8442665 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch With the rush to adopt large language models, companies have not thought through all of the security implications to their businesses. Two groups of researchers tackle the questions.]]> 2024-01-24T14:00:00+00:00 https://www.darkreading.com/cyber-risk/researchers-map-ai-threat-landscape-risks www.secnews.physaphae.fr/article.php?IdArticle=8442552 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The new bug is Apple\'s 12th WebKit zero-day in the last year, highlighting the increasing enterprise exposure to browser-borne threats.]]> 2024-01-23T23:30:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/days-after-google-apple-discloses-actively-exploited-0-day-in-its-browser-engine www.secnews.physaphae.fr/article.php?IdArticle=8442318 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Even the most careful VMware customers may need to go back and double check that they weren\'t compromised by a zero-day exploit for CVE-2023-34048.]]> 2024-01-22T22:08:00+00:00 https://www.darkreading.com/endpoint-security/chinese-spies-exploited-critical-vmware-bug-2-years www.secnews.physaphae.fr/article.php?IdArticle=8441859 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Russian state-sponsored threat actor Nobelium used a basic password-spray attack to breach Microsoft corporate email accounts, including for execs.]]> 2024-01-22T21:58:00+00:00 https://www.darkreading.com/threat-intelligence/microsoft-falls-victim-russian-midnight-blizzard-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8441839 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Based on fresh infection routines the APT is testing, it\'s looking to harvest threat intelligence in order to improve operational security and stealth.]]> 2024-01-22T20:30:00+00:00 https://www.darkreading.com/threat-intelligence/north-koreasc-arcruft-attackers-target-cybersecurity-pros www.secnews.physaphae.fr/article.php?IdArticle=8441819 False Threat APT 37 3.0000000000000000 Dark Reading - Informationweek Branch The agreement to enable future sharing of information and experience is part of a spate of inter-country threat intelligence agreements that Israel is signing, as war-related attacks ramp up.]]> 2024-01-22T17:31:00+00:00 https://www.darkreading.com/cybersecurity-operations/israel-czech-republic-reinforce-cyber-partnership-hamas-war www.secnews.physaphae.fr/article.php?IdArticle=8441756 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Though reports say this latest Ivanti bug is being exploited, it\'s unclear exactly how threat actors are using it.]]> 2024-01-19T19:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/third-ivanti-vulnerability-exploited-in-the-wild-cisa-reports www.secnews.physaphae.fr/article.php?IdArticle=8440748 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch A panel of CISOs acknowledged that artificial intelligence has boosted the capabilities of threat actors, but enterprise defenders are actually benefiting more from the technology.]]> 2024-01-18T23:00:00+00:00 https://www.darkreading.com/cyber-risk/ai-gives-defenders-the-advantage-in-enterprise-defense www.secnews.physaphae.fr/article.php?IdArticle=8440749 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Just like you and me, cyberattackers returned from winter break and immediately started sending thousands of emails.]]> 2024-01-18T22:46:00+00:00 https://www.darkreading.com/threat-intelligence/threat-actors-post-holiday-phishing-email-surge www.secnews.physaphae.fr/article.php?IdArticle=8440443 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Analysis of the infostealer malware version 4.1 includes hidden ASCII art and a shout-out thanking cybersecurity researchers.]]> 2024-01-18T15:15:00+00:00 https://www.darkreading.com/threat-intelligence/chaes-infostealer-code-threat-hunter-love-notes www.secnews.physaphae.fr/article.php?IdArticle=8440332 False Malware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The first Chrome zero-day bug of 2024 adds to a growing list of actively exploited vulnerabilities found in Chromium and other browser technologies.]]> 2024-01-17T21:15:00+00:00 https://www.darkreading.com/cloud-security/google-chrome-zero-day-bug-attack-code-injection www.secnews.physaphae.fr/article.php?IdArticle=8440044 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch WoS cybersecurity creates a united front for governments to defend against threat actors, harden security postures, and protect constituents who depend on services.]]> 2024-01-17T15:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/strength-in-numbers-the-case-for-whole-of-state-cybersecurity www.secnews.physaphae.fr/article.php?IdArticle=8439907 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Anyone who hasn\'t mitigated two zero-day security bugs in Ivanti VPNs may already be compromised by a Chinese nation-state actor.]]> 2024-01-16T21:25:00+00:00 https://www.darkreading.com/cloud-security/ivanti-zero-day-exploits-skyrocket-no-patches www.secnews.physaphae.fr/article.php?IdArticle=8439675 False Vulnerability,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Two flaws discovered a year apart are ostensibly the same with slightly different exploit paths, exposing corporate networks to risk and potential intrusion.]]> 2024-01-16T16:43:00+00:00 https://www.darkreading.com/vulnerabilities-threats/78k-sonicwall-firewalls-vulnerable-dos-rce-attacks www.secnews.physaphae.fr/article.php?IdArticle=8439604 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch FBI Director Christopher Wray says to have confidence in the American election system but to expect ongoing information warfare, pointing to China as most formidable threat actor.]]> 2024-01-12T13:00:00+00:00 https://www.darkreading.com/cloud-security/fbi-warns-more-election-chaos-in-2024 www.secnews.physaphae.fr/article.php?IdArticle=8438273 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The Chinese state-sponsored APT has compromised as many as 30% of Cisco legacy routers on a SOHO botnet that multiple threat groups use.]]> 2024-01-11T22:49:00+00:00 https://www.darkreading.com/cyber-risk/volt-typhoon-ramps-up-malicious-activity-critical-infrastructure www.secnews.physaphae.fr/article.php?IdArticle=8438034 False Threat Guam 3.0000000000000000 Dark Reading - Informationweek Branch Patches will be available in late January and February, but until then, customers must take mitigation measures.]]> 2024-01-11T21:43:00+00:00 https://www.darkreading.com/vulnerabilities-threats/ivanti-researchers-report-of-two-critical-zero-day-vulnerabilities www.secnews.physaphae.fr/article.php?IdArticle=8438016 False Vulnerability,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch An emerging threat actor, Water Curupira, is wielding a new, sophisticated loader in a series of thread-jacking phishing campaigns that precede ransomware.]]> 2024-01-10T16:29:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/pikabot-malware-qakbot-replacement-black-basta-attacks www.secnews.physaphae.fr/article.php?IdArticle=8437569 False Ransomware,Malware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Microsoft\'s database continues to attract cybercriminal attention; the nature of this wave\'s threat group is unknown, with the attacks having been exposed only after a happenstance OpSec lag.]]> 2024-01-09T18:36:00+00:00 https://www.darkreading.com/ics-ot-security/turkish-cyber-threat-targets-mssql-servers-mimic-ransomware www.secnews.physaphae.fr/article.php?IdArticle=8437254 False Ransomware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Attackers can exploit the issue to access all data in Cacti database; and, it enables RCE when chained with a previous vulnerability.]]> 2024-01-08T23:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/cacti-monitoring-tool-critical-sql-injection-vulnerability www.secnews.physaphae.fr/article.php?IdArticle=8436853 False Tool,Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch An old state-aligned threat actor is back on the radar, thanks to recent EMEA espionage campaigns against a minority ethnic group.]]> 2024-01-08T21:49:00+00:00 https://www.darkreading.com/threat-intelligence/turkish-apt-sea-turtle-spy-kurdish-opposition www.secnews.physaphae.fr/article.php?IdArticle=8436829 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors leave medical centers with the difficult choice of paying the ransom or witnessing patients suffer the consequences.]]> 2024-01-08T18:22:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/swatting-latest-extortion-tactic-ransomware-attacks www.secnews.physaphae.fr/article.php?IdArticle=8436755 False Ransomware,Threat,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch The Middle Eastern developers claim to be building a new version of the antivirus-bypassing remote access Trojan (RAT) attack tool.]]> 2024-01-05T19:19:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/syrian-threat-group-peddles-destructive-silverrat www.secnews.physaphae.fr/article.php?IdArticle=8435267 False Tool,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch UNC-0050 is targeting government agencies in Ukraine in what appears to be a politically motivated intelligence-gathering operation.]]> 2024-01-05T01:27:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/threat-group-using-rare-data-transfer-tactic-in-new-remcosrat-campaign www.secnews.physaphae.fr/article.php?IdArticle=8434800 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch A new threat actor just concluded a month and a half of two major leaks per day. Now comes phase two: follow-on attacks.]]> 2024-01-04T14:32:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/-cyber-toufan-hacktivists-leaked-100-plus-israeli-orgs-in-one-month www.secnews.physaphae.fr/article.php?IdArticle=8434454 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Apache fixed a vulnerability in its OfBiz enterprise resource planning (ERP) framework last month, but attackers and researchers found a way around the patch.]]> 2024-01-03T21:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/apache-erp-0day-underscores-dangers-of-incomplete-patches www.secnews.physaphae.fr/article.php?IdArticle=8434658 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch What a recent rise in DDoS attacks portends - and how to prepare for 2024.]]> 2023-12-28T15:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/in-cybersecurity-whats-old-is-new-again www.secnews.physaphae.fr/article.php?IdArticle=8430318 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch CVE-2023-7024, exploited in the wild prior to patching, is a Chrome vulnerability that allows remote code execution within the browser\'s WebRTC component.]]> 2023-12-22T18:00:00+00:00 https://www.darkreading.com/cloud-security/google-eighth-zero-day-patch-2023-chrome www.secnews.physaphae.fr/article.php?IdArticle=8427494 False Vulnerability,Threat,Patching None 3.0000000000000000 Dark Reading - Informationweek Branch The shadowy threat actor uses some nifty tricks to drop popular malware with targets that meet its specifications.]]> 2023-12-21T22:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/battleroyal-hackers-deliver-darkgate-rat www.secnews.physaphae.fr/article.php?IdArticle=8427012 False Malware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Malicious attachments that exploit an RCE flaw from 2017 are propagating Agent Tesla via socially engineered emails and an evasive infection method.]]> 2023-12-20T16:00:00+00:00 https://www.darkreading.com/cloud-security/attackers-exploit-microsoft-office-bug-spyware www.secnews.physaphae.fr/article.php?IdArticle=8426182 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Threat intelligence feedback loops are an increasingly vital tool in the escalating battle against bots.]]> 2023-12-20T15:00:00+00:00 https://www.darkreading.com/threat-intelligence/3-ways-real-time-intelligence-defeat-bots www.secnews.physaphae.fr/article.php?IdArticle=8426150 False Tool,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch By reviewing the latest risks, organizations can better protect themselves against a dynamic threat landscape - and deploy technologies and policies that keep them better defended.]]> 2023-12-20T13:55:00+00:00 https://www.darkreading.com/threat-intelligence/5-essential-insights-from-the-microsoft-digital-defense-report-2023 www.secnews.physaphae.fr/article.php?IdArticle=8426116 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch CVE-2023-50164 is harder to exploit than the 2017 Struts bug behind the massive breach at Equifax, but don\'t underestimate the potential for attackers to use it in targeted attacks.]]> 2023-12-15T20:55:00+00:00 https://www.darkreading.com/cloud-security/patch-exploit-activity-dangerous-apache-struts-bug www.secnews.physaphae.fr/article.php?IdArticle=8423394 False Threat Equifax 3.0000000000000000 Dark Reading - Informationweek Branch Chinese threat actors are taking advantage of the poor state of edge security to breach both small and big fish.]]> 2023-12-14T22:18:00+00:00 https://www.darkreading.com/cloud-security/volt-typhoon-soho-botnet-infects-us-govt-entities www.secnews.physaphae.fr/article.php?IdArticle=8422884 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The fresh-faced cybercrime group has been using nothing but publicly available penetration testing tools in its campaign so far.]]> 2023-12-14T22:00:00+00:00 https://www.darkreading.com/cloud-security/gambleforce-threat-actor-sql-injection-attacks www.secnews.physaphae.fr/article.php?IdArticle=8422886 False Tool,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Russia\'s APT29 is going after a critical RCE flaw in the JetBrains TeamCity software developer platform, prompting governments worldwide to issue an urgent warning to patch.]]> 2023-12-13T23:26:00+00:00 https://www.darkreading.com/vulnerabilities-threats/global-teamcity-exploitation-opens-door-to-solarwinds-style-nightmare www.secnews.physaphae.fr/article.php?IdArticle=8422329 False Threat APT 29 3.0000000000000000 Dark Reading - Informationweek Branch EMB3D, like ATT&CK and CWE, seeks to provide a common understanding of cyber-threats to embedded devices and of the security mechanisms for addressing them.]]> 2023-12-13T20:48:00+00:00 https://www.darkreading.com/ics-ot-security/mitre-debuts-ics-cyber-threat-modeling-embedded-systems www.secnews.physaphae.fr/article.php?IdArticle=8422260 False Threat,Industrial None 4.0000000000000000 Dark Reading - Informationweek Branch After compromising Azure and Outlook user accounts, threat actors are creating malicious apps with high privileges to conduct cryptomining, phishing, and password spraying.]]> 2023-12-13T18:45:00+00:00 https://www.darkreading.com/cloud-security/attackers-target-microsoft-accounts-weaponize-oauth-apps www.secnews.physaphae.fr/article.php?IdArticle=8422214 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors are fully embracing the spin machine: rebranding, speaking with the media, writing detailed FAQs, and more, all in an effort to make headlines.]]> 2023-12-13T11:00:00+00:00 https://www.darkreading.com/threat-intelligence/ransomware-gangs-pr-charm-offensive-pressure-victims www.secnews.physaphae.fr/article.php?IdArticle=8422002 False Ransomware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Threat intel sources confirm the ransomware group\'s site has been shuttered by law enforcement.]]> 2023-12-09T01:02:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/alphv-blackcat-takedown-appears-to-be-law-enforcement-related www.secnews.physaphae.fr/article.php?IdArticle=8421099 False Ransomware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Threat intel sources confirm the ransomware group\'s site has been shuttered by law enforcement.]]> 2023-12-09T01:02:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/alphv-blackcat-takedown-appears-to-be-law-enforcement-related- www.secnews.physaphae.fr/article.php?IdArticle=8420325 False Ransomware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch State-sponsored actors continue to exploit CVE-2023-23397, a dangerous no-interaction vulnerability in Microsoft\'s Outlook email client that was patched in March, in a widespread global campaign.]]> 2023-12-08T15:00:00+00:00 https://www.darkreading.com/ics-ot-security/russian-espionage-group-hammers-zero-click-microsoft-outlook-bug www.secnews.physaphae.fr/article.php?IdArticle=8420259 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Chaos and volume of holiday season sales make a perfect storm of threat opportunity. Companies need to prepare - and practice! - action plans, identify key stakeholders, and consider cyber insurance.]]> 2023-12-08T15:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/3-most-prevalent-cyber-threats-holidays www.secnews.physaphae.fr/article.php?IdArticle=8420216 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch 2023-12-07T23:18:00+00:00 https://www.darkreading.com/threat-intelligence/cybersixgill-announces-identity-intelligence-module-for-threat-analysis www.secnews.physaphae.fr/article.php?IdArticle=8420041 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Because of the criticality of remaining operational, industrial companies and utilities are far more likely to pay, attracting even more threat groups and a focus on OT systems.]]> 2023-12-07T19:00:00+00:00 https://www.darkreading.com/ics-ot-security/ransomware-data-breaches-inundate-ot-industrial-sector www.secnews.physaphae.fr/article.php?IdArticle=8419977 False Ransomware,Threat,Industrial None 3.0000000000000000 Dark Reading - Informationweek Branch The Dragos Community Defense Program provides small water, gas, and electric utilities with access to the Dragos Platform, training resources, and threat intelligence.]]> 2023-12-07T15:00:00+00:00 https://www.darkreading.com/ics-ot-security/dragos-expands-defense-program-for-small-utilities www.secnews.physaphae.fr/article.php?IdArticle=8419908 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Adobe patched CVE-2023-26360 in March amid active exploit activity targeting the flaw.]]> 2023-12-06T22:26:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/hreat-actor-breached-federal-agency-systems-via-adobe-coldfusion-flaw-cisa-says www.secnews.physaphae.fr/article.php?IdArticle=8419702 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch BlackCat/ALPHV claims it has had access to the payments technology vendor\'s systems since September, and threatens follow-on attacks on its customer Roblox.]]> 2023-12-05T21:19:00+00:00 https://www.darkreading.com/application-security/payments-giant-tipalti-no-ransomware-breach-roblox www.secnews.physaphae.fr/article.php?IdArticle=8419379 False Ransomware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The prolific threat actor has laundered hundreds of millions of dollars in stolen virtual currency through the service.]]> 2023-11-30T17:35:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/feds-seize-sinbad-crypto-mixer-used-by-north-korea-s-lazarus www.secnews.physaphae.fr/article.php?IdArticle=8418122 False Threat APT 38,APT 38 2.0000000000000000 Dark Reading - Informationweek Branch The collaboration focuses on helping security teams detect and address cloud threats more effectively.]]> 2023-11-30T02:00:00+00:00 https://www.darkreading.com/cloud-security/wiz-securonix-partnership-promises-unified-threat-detection www.secnews.physaphae.fr/article.php?IdArticle=8418084 False Threat,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch Dropping the ball on chemical security has precipitated "a national security gap too great to ignore," CISA warns.]]> 2023-11-28T22:00:00+00:00 https://www.darkreading.com/cyber-risk/cisa-to-congress-us-under-threat-of-chemical-attacks www.secnews.physaphae.fr/article.php?IdArticle=8417647 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch As cyber threats evolve in 2024, organizations must prepare for deepfakes, extortion, cloud targeting, supply chain compromises, and zero day exploits. Robust security capabilities, employee training, and incident response plans are key.]]> 2023-11-27T23:16:00+00:00 https://www.darkreading.com/edge/cyber-threats-to-watch-out-for-in-2024 www.secnews.physaphae.fr/article.php?IdArticle=8417351 False Threat,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch As cyber threats evolve in 2024, organizations must prepare for deepfakes, extortion, cloud targeting, supply chain compromises, and zero day exploits. Robust security capabilities, employee training, and incident response plans are key.]]> 2023-11-27T23:16:00+00:00 https://www.darkreading.com/cyber-risk/cyber-threats-to-watch-out-for-in-2024 www.secnews.physaphae.fr/article.php?IdArticle=8418317 False Threat,Prediction,Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.]]> 2023-11-21T21:29:00+00:00 https://www.darkreading.com/vulnerabilities-threats/exploit-for-critical-windows-defender-bypass-goes-public www.secnews.physaphae.fr/article.php?IdArticle=8417434 False Vulnerability,Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.]]> 2023-11-21T21:29:00+00:00 https://www.darkreading.com/vulnerabilities-threats/exploit-critical-windows-defender-bypass-public www.secnews.physaphae.fr/article.php?IdArticle=8415587 False Vulnerability,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Active exploit of the critical RCE flaw targets Linux systems to achieve full system compromise.]]> 2023-11-21T16:30:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/kinsing-cyberattackers-target-apache-activemq-flaw-to-mine-crypto www.secnews.physaphae.fr/article.php?IdArticle=8417436 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Active exploit of the critical RCE flaw targets Linux systems to achieve full system compromise.]]> 2023-11-21T16:30:00+00:00 https://www.darkreading.com/attacks-breaches/kinsing-cyberattackers-target-apache-activemq-flaw-to-mine-crypto www.secnews.physaphae.fr/article.php?IdArticle=8415472 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Threat actors were actively exploiting CVE-2023-36025 before Microsoft patched it in November.]]> 2023-11-21T00:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/proof-of-concept-exploit-publicly-available-for-critical-windows-smartscreen-flaw www.secnews.physaphae.fr/article.php?IdArticle=8416075 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The Known Exploited Vulnerabilities (KEV) catalog is a high-quality source of information on software flaws being exploited in the wild, but updates are often delayed, so companies need other sources of threat intelligence.]]> 2023-11-20T19:16:03+00:00 https://www.darkreading.com/edge/exploited-vulnerabilities-take-months-to-make-kev-list www.secnews.physaphae.fr/article.php?IdArticle=8415098 False Vulnerability,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Combining a malware sandbox with threat intelligence feeds improves security detection, analysis, and response capabilities.]]> 2023-11-20T08:00:00+00:00 https://www.darkreading.com/threat-intelligence/leveraging-sandbox-and-threat-intelligence-feeds-to-combat-cyber-threats www.secnews.physaphae.fr/article.php?IdArticle=8414726 False Malware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Does your security operation center\'s performance meet the 5/5/5 benchmark for cloud threat detection and incident response?]]> 2023-11-20T08:00:00+00:00 https://www.darkreading.com/cloud/5-5-5-benchmark-cloud-detection-and-response www.secnews.physaphae.fr/article.php?IdArticle=8414727 False Threat,Cloud,Technical None 4.0000000000000000 Dark Reading - Informationweek Branch There\'s no time to waste: For organizations on the fence about patching the critical bug in ActiveMQ, the new proof-of-concept exploit should push them towards action.]]> 2023-11-16T22:45:00+00:00 https://www.darkreading.com/application-security/dangerous-apache-activemq-exploit-edr-bypass www.secnews.physaphae.fr/article.php?IdArticle=8413104 False Threat,Patching None 2.0000000000000000 Dark Reading - Informationweek Branch Cybersecurity investment involves more than just buying security technologies - organizations are also looking at threat intelligence, risk assessment, cyber-insurance, and third-party risk management.]]> 2023-11-16T17:00:00+00:00 https://www.darkreading.com/tech-trends/cybersecurity-investment-more-than-technology www.secnews.physaphae.fr/article.php?IdArticle=8413289 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch While China is already among the world\'s most formidable threat actors, a focus on exploiting public-facing appliances makes its state-sponsored APTs more dangerous than ever.]]> 2023-11-14T20:23:00+00:00 https://www.darkreading.com/vulnerabilities-threats/zero-days-in-edge-devices-china-cyber-warfare-tactic www.secnews.physaphae.fr/article.php?IdArticle=8412076 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors distributed an archive containing images of new products by major clothing companies, along with a malicious executable disguised with a PDF icon.]]> 2023-11-13T19:09:00+00:00 https://www.darkreading.com/threat-intelligence/ducktail-malware-targets-fashion-industry www.secnews.physaphae.fr/article.php?IdArticle=8411237 False Malware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch ChatGPT and the associated APIs have been affected by regular outages, citing DDoS attacks as the reason - the Anonymous Sudan group claimed responsibility.]]> 2023-11-10T18:18:00+00:00 https://www.darkreading.com/attacks-breaches/chatgpt-openai-attributes-regular-outages-ddos-attacks www.secnews.physaphae.fr/article.php?IdArticle=8409248 False Threat ChatGPT 2.0000000000000000 Dark Reading - Informationweek Branch Checkmarx researchers warn that BlazeStealer can exfiltrate information, steal passwords, disable PCs, and take over webcams.]]> 2023-11-09T23:15:00+00:00 https://www.darkreading.com/application-security/-blazestealer-python-malware-complete-takeover-developer www.secnews.physaphae.fr/article.php?IdArticle=8408794 False Malware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Keyboard warriors are claiming to contribute to the Gaza war with OT attacks. You should be skeptical.]]> 2023-11-09T15:50:00+00:00 https://www.darkreading.com/dr-global/worldwide-hacktivists-take-sides-over-gaza-with-little-show www.secnews.physaphae.fr/article.php?IdArticle=8408576 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch In-the-wild exploit activity from dozens of cyberattacker networks is ramping up for the security vulnerability in Confluence, tracked as CVE-2023-22518.]]> 2023-11-03T21:51:00+00:00 https://www.darkreading.com/attacks-breaches/critical-atlassian-bug-exploit-immediate-patching www.secnews.physaphae.fr/article.php?IdArticle=8405538 False Vulnerability,Threat,Patching None 2.0000000000000000 Dark Reading - Informationweek Branch Oil executive Amin H. Nasser calls for global cooperation and international standards to combat the dark side of artificial intelligence.]]> 2023-11-02T17:30:00+00:00 https://www.darkreading.com/dr-global/saudi-aramco-ceo-warns-of-new-threat-of-generative-ai www.secnews.physaphae.fr/article.php?IdArticle=8404842 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch As cyber threats evolve, so does the shared responsibility mindset that calls for IT and security to work in tandem.]]> 2023-11-02T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/threat-prevention-begins-with-it-security-team-collaboration www.secnews.physaphae.fr/article.php?IdArticle=8404702 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch It\'s unknown who the threat actors are and whether the outages are connected.]]> 2023-11-01T21:26:00+00:00 https://www.darkreading.com/attacks-breaches/british-toronto-libraries-struggle-after-cyber-incidents www.secnews.physaphae.fr/article.php?IdArticle=8404363 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The solution? Follow in the footsteps of companies that have raised the cost of exploitation.]]> 2023-11-01T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/its-cheap-to-exploit-software-major-security-problem www.secnews.physaphae.fr/article.php?IdArticle=8404117 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The parties within the International Counter Ransomware Initiative intend to use information-sharing tools and AI to achieve their goals of cutting off the financial resources of threat actors.]]> 2023-10-31T19:25:00+00:00 https://www.darkreading.com/endpoint/us-leads-alliance-cut-off-ransomware-attack-payments www.secnews.physaphae.fr/article.php?IdArticle=8403702 False Ransomware,Tool,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch An advanced feature of Google targeted ads can allow a rarely precedented flood of malware infections, rendering machines completely useless.]]> 2023-10-30T22:08:00+00:00 https://www.darkreading.com/endpoint/google-dynamic-search-ads-malware-deluge www.secnews.physaphae.fr/article.php?IdArticle=8403170 False Malware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The financially motivated English-speaking threat actors use advanced social engineering techniques, SIM swapping, and even threats of violence to breach targets.]]> 2023-10-27T19:08:00+00:00 https://www.darkreading.com/threat-intelligence/octo-tempest-group-threatens-physical-violence-social-engineering-tactic www.secnews.physaphae.fr/article.php?IdArticle=8401560 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The newly launched AI & ML Security Library allows developers to analyze the code used in machine learning systems to identify and address risks.]]> 2023-10-26T22:00:00+00:00 https://www.darkreading.com/dr-tech/iriusrisk-brings-threat-modeling-to-machine-learning www.secnews.physaphae.fr/article.php?IdArticle=8401183 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Nation-state hackers are using hybrids to ensnare those in the maritime, shipping, and logistics industries.]]> 2023-10-26T19:35:00+00:00 https://www.darkreading.com/dr-global/iran-apt-targets-mediterranean-watering-hole-attacks www.secnews.physaphae.fr/article.php?IdArticle=8401035 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The threat actor exfiltrated 690 gigabytes of uncompressed data, or 767,035 files.]]> 2023-10-25T23:59:00+00:00 https://www.darkreading.com/attacks-breaches/bhi-energy-releases-details-of-akira-ransomware-attack www.secnews.physaphae.fr/article.php?IdArticle=8400611 False Ransomware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch In the race over Citrix\'s latest vulnerability, the bad guys have a huge head start, with broad implications for businesses and critical infrastructure providers worldwide.]]> 2023-10-25T19:55:00+00:00 https://www.darkreading.com/vulnerabilities-threats/citrix-urges-clients-patch-researchers-release-exploit www.secnews.physaphae.fr/article.php?IdArticle=8400552 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch VMware vCenter Servers need immediate patch against critical RCE bug as race against threat actors begins.]]> 2023-10-25T19:38:00+00:00 https://www.darkreading.com/vulnerabilities-threats/vmware-issues-alarming-security-advisory www.secnews.physaphae.fr/article.php?IdArticle=8400553 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch A campaign targeting European governmental organizations and a think tank shows consistency from the low-profile threat group, which has ties to Belarus and Russia.]]> 2023-10-25T15:37:00+00:00 https://www.darkreading.com/endpoint/winter-vivern-blasts-webmail-0day-one-click-exploit www.secnews.physaphae.fr/article.php?IdArticle=8400186 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Okta\'s IAM platform finds itself in cyberattackers\' sights once again, as threat actors mount a supply chain attack targeting Okta customer support engagements.]]> 2023-10-24T20:14:00+00:00 https://www.darkreading.com/remote-workforce/1password-latest-victim-okta-customer-service-breach www.secnews.physaphae.fr/article.php?IdArticle=8399877 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch As the conflict in the Middle East rages, malicious actors look to exploit the situation with bogus charity sites encouraging donations.]]> 2023-10-24T16:08:00+00:00 https://www.darkreading.com/dr-global/israeli-hamas-conflict-spells-opportunity-for-online-scammers www.secnews.physaphae.fr/article.php?IdArticle=8399783 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch A patch for the max severity zero-day bug tracked as CVE-2023-20198 is coming soon, but the bug has already led to the compromise of tens of thousands of Cisco devices. And now, there\'s a new unpatched threat.]]> 2023-10-20T20:09:00+00:00 https://www.darkreading.com/application-security/cisco-zero-day-bug-patches-in-days www.secnews.physaphae.fr/article.php?IdArticle=8398390 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Vietnamese cybercrime groups are using multiple different MaaS infostealers and RATs to target the digital marketing sector.]]> 2023-10-20T18:15:00+00:00 https://www.darkreading.com/vulnerabilities-threats/ducktail-infostealer-darkgate-rat-linked-to-same-threat-actors www.secnews.physaphae.fr/article.php?IdArticle=8398360 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Two weeks after the first data leak from the DNA ancestry service, the threat actor produces an additional 4 million user records they purportedly stole.]]> 2023-10-19T20:45:00+00:00 https://www.darkreading.com/attacks-breaches/23andme-hacker-leaks-new-tranche-of-stolen-data- www.secnews.physaphae.fr/article.php?IdArticle=8397886 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Known threat groups Diamond Sleet and Onyx Sleet focus on cyber espionage, data theft, network sabotage, and other malicious actions, Microsoft says.]]> 2023-10-19T20:25:00+00:00 https://www.darkreading.com/attacks-breaches/north-korean-state-actors-attack-critical-bug-in-teamcity-server www.secnews.physaphae.fr/article.php?IdArticle=8397887 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The Israelis are building a cyber defense system that will use ChatGPT-like generative AI platforms to parse threat intelligence.]]> 2023-10-19T17:38:00+00:00 https://www.darkreading.com/dr-global/ai-powered-israeli-cyber-dome-defense-operation-comes-to-life www.secnews.physaphae.fr/article.php?IdArticle=8397814 False Threat ChatGPT 3.0000000000000000 Dark Reading - Informationweek Branch The state-sponsored threat actors (aka APT34, Crambus, Helix Kitten, or OilRig) spent months seemingly taking whatever government data they wished, using never-before-seen tools.]]> 2023-10-19T14:22:00+00:00 https://www.darkreading.com/dr-global/iran-linked-muddywater-spies-middle-east-govt-eight-months www.secnews.physaphae.fr/article.php?IdArticle=8397738 False Threat APT 34 2.0000000000000000 Dark Reading - Informationweek Branch State-sponsored cyberespionage actors from Russia and China continue to target WinRAR users with various info-stealing and backdoor malware, as a patching lag plagues the software\'s footprint.]]> 2023-10-19T13:30:00+00:00 https://www.darkreading.com/attacks-breaches/patch-now-apts-pummel-winrar-bug www.secnews.physaphae.fr/article.php?IdArticle=8397739 False Threat,General Information None 3.0000000000000000