This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T12:33:54+00:00 www.secnews.physaphae.fr Dark Reading - Informationweek Branch The investigation is ongoing, but the VC giant intends to inform affected customers on a rolling basis as more of the breach details come to light.]]> 2025-05-09T16:33:39+00:00 https://www.darkreading.com/threat-intelligence/insight-partners-data-breach-bigger-impact www.secnews.physaphae.fr/article.php?IdArticle=8673767 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Ascension, one of the largest private healthcare systems in the United States, has revealed that a data breach disclosed last month affects the personal and healthcare information of over 430,000 patients. [...]]]> 2025-05-09T14:48:15+00:00 https://www.bleepingcomputer.com/news/security/ascension-says-recent-data-breach-affects-over-430-000-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8673808 False Data Breach,Medical None None SecurityWeek - Security News La société VMS Valsoft Corporation affirme que les informations personnelles de plus de 160 000 personnes ont été compromises dans une violation de données de février 2025.

---

>VMS firm Valsoft Corporation says the personal information of over 160,000 people was compromised in a February 2025 data breach. ]]> 2025-05-09T13:34:46+00:00 https://www.securityweek.com/160000-impacted-by-valsoft-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8673700 False Data Breach None 3.0000000000000000 Cyble - CyberSecurity Firm 2025-05-09T09:14:31+00:00 https://cyble.com/blog/india-experience-hacktivist-group-activity/ www.secnews.physaphae.fr/article.php?IdArticle=8673614 False Data Breach,Threat,Legislation,Medical None 3.0000000000000000 ProofPoint - Cyber Firms 2025-05-09T02:10:26+00:00 https://www.proofpoint.com/us/blog/insider-threat-management/goal-of-insider-threat-program www.secnews.physaphae.fr/article.php?IdArticle=8673984 False Data Breach,Malware,Tool,Threat,Legislation,Prediction None None HackRead - Chercher Cyber PowerSchool paid ransom after a major data breach; now hackers are targeting teachers and schools with direct extortion…]]> 2025-05-08T19:55:36+00:00 https://hackread.com/powerschool-paid-ransom-now-hackers-target-teachers/ www.secnews.physaphae.fr/article.php?IdArticle=8673373 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The LockBit ransomware gang has suffered a data breach after its dark web affiliate panels were defaced and replaced with a message linking to a MySQL database dump. [...]]]> 2025-05-07T20:06:32+00:00 https://www.bleepingcomputer.com/news/security/lockbit-ransomware-gang-hacked-victim-negotiations-exposed/ www.secnews.physaphae.fr/article.php?IdArticle=8672984 False Ransomware,Data Breach None 3.0000000000000000 HackRead - Chercher Cyber ClickFunnels is investigating a data breach after hackers leaked detailed business data, including emails, phone numbers, and company…]]> 2025-05-07T17:04:18+00:00 https://hackread.com/clickfunnels-investigate-breach-hackers-leak-business-data/ www.secnews.physaphae.fr/article.php?IdArticle=8672856 False Data Breach None 2.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Hot on the heels of Marks & Spencer suffering a cyber attack, the Co-operative Group has become the latest high-profile UK retailer targeted in a major cyberattack-one that now appears far more serious than initially disclosed.  A ransomware group calling itself DragonForce contacted the BBC with proof of a large-scale data breach, claiming they had [...]]]> 2025-05-07T05:12:32+00:00 https://informationsecuritybuzz.com/co-op-cyberattack-hackers-claim-massiv/ www.secnews.physaphae.fr/article.php?IdArticle=8672588 False Ransomware,Data Breach None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) It wasn\'t ransomware headlines or zero-day exploits that stood out most in this year\'s Verizon 2025 Data Breach Investigations Report (DBIR) - it was what fueled them. Quietly, yet consistently, two underlying factors played a role in some of the worst breaches: third-party exposure and machine credential abuse. According to the 2025 DBIR, third-party involvement in breaches doubled]]> 2025-05-06T16:55:00+00:00 https://thehackernews.com/2025/05/third-parties-and-machine-credentials.html www.secnews.physaphae.fr/article.php?IdArticle=8672281 False Ransomware,Data Breach,Vulnerability,Threat None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The Alvin Independent School District in Texas has notified over 47,000 individuals affected by a data breach exposing sensitive personal information]]> 2025-05-06T15:45:00+00:00 https://www.infosecurity-magazine.com/news/texas-school-47000-people-data/ www.secnews.physaphae.fr/article.php?IdArticle=8672358 False Data Breach None 3.0000000000000000 GB Hacker - Blog de reverseur Une grande peur de la sécurité a éclaté à Washington après que des rapports ont émergé qu'un associé Trump utilisait une version non officielle de la plate-forme de messagerie sécurisée Signal-An application qui a ensuite été ciblée dans une violation de données, selon un rapport du dimanche de Tech Outlet 404 Media. Selon le rapport Reuters, le rapport se concentre sur l'ancien […]

---

>A major security scare has erupted in Washington after reports emerged that a Trump associate was using an unofficial version of the secure messaging platform Signal-an application that was subsequently targeted in a data breach, according to a Sunday report from tech outlet 404 Media. According to the Reuters report, the report centers on former […] ]]> 2025-05-06T07:27:50+00:00 https://gbhackers.com/signal-app-security-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8672167 False Data Breach None 2.0000000000000000 Checkpoint - Fabricant Materiel Securite Dans l'environnement DevOps en évolution rapide d'aujourd'hui, le lecteur de la vitesse amplifie souvent par inadvertance les risques de sécurité, laissant les applications exposées à des violations coûteuses. Avec les coûts de violation mondiale en moyenne de 4,8 millions de dollars l'année dernière, selon le coût annuel d'IBM \\ d'un rapport de violation de données - et l'escalade en continu - les équipes DevOps et de sécurité font face à une pression immense pour créer des logiciels robustes et sécurisés. La réponse réside dans les pratiques de codage sécurisées et adoptant l'approche «Shift Left», intégrant la sécurité à chaque étape du développement dès le départ, plutôt que de la traiter comme une réflexion après coup. Comprendre l'approche de gauche à gauche «Shifting Left» intègre les pratiques de sécurité tôt dans le […]

---

>In today’s rapidly evolving DevOps environment, the drive for speed often inadvertently amplifies security risks, leaving applications exposed to costly breaches. With global breach costs averaging $4.8 million last year, according to IBM\'s annual Cost of a Data Breach Report – and continuously climbing – DevOps and security teams face immense pressure to build robust, secure software. The answer lies in secure coding practices and embracing the “Shift Left” approach, embedding security into every stage of development from the get-go, rather than treating it as an afterthought. Understanding the Shift Left Approach “Shifting Left” integrates security practices early into the […] ]]> 2025-05-05T13:00:12+00:00 https://blog.checkpoint.com/infinity-global-services/secure-coding-in-devops-shifting-left-for-stronger-security/ www.secnews.physaphae.fr/article.php?IdArticle=8671844 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Kelly Benefits a déterminé que l'impact de la violation de données récemment divulguée est beaucoup plus important que prévu initialement.

---

>Kelly Benefits has determined that the impact of the recently disclosed data breach is much bigger than initially believed. ]]> 2025-05-05T12:59:25+00:00 https://www.securityweek.com/kelly-benefits-data-breach-impact-grows-to-400000-individuals/ www.secnews.physaphae.fr/article.php?IdArticle=8671822 False Data Breach None 3.0000000000000000 Recorded Future - FLux Recorded Future Ascension Health revealed another security incident this week, warning more than 100,000 people in multiple states that their information was likely accessed by hackers late last year.]]> 2025-05-01T21:54:22+00:00 https://therecord.media/ascension-health-data-breach-impacts-over-100000 www.secnews.physaphae.fr/article.php?IdArticle=8670297 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Ascension informe plus de 100 000 personnes que leurs informations personnelles ont été volées dans une violation de données potentiellement liée au piratage de Cleo.

---

>Ascension is notifying over 100,000 people that their personal information was stolen in a data breach potentially linked to the Cleo hack. ]]> 2025-05-01T08:55:00+00:00 https://www.securityweek.com/ascension-discloses-data-breach-potentially-linked-to-cleo-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8670092 False Data Breach,Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain ​Ascension, one of the largest private healthcare systems in the United States, is notifying patients that their personal and health information was stolen in a December 2024 data theft attack, which affected a former business partner. [...]]]> 2025-04-30T09:21:31+00:00 https://www.bleepingcomputer.com/news/security/ascension-discloses-new-data-breach-after-third-party-hacking-incident/ www.secnews.physaphae.fr/article.php?IdArticle=8669969 False Data Breach,Medical None 2.0000000000000000 BHconsulting - Consulting Conseils, conseils, apprentissage et tendances organisés en cybersécurité et en vie privée, tels que choisis par nos consultants. Le risque tiers augmente comme un facteur de violations: Verizon DBIR 2025 Le dernier rapport annuel d'enquête annuel sur les violations de données (DBIR) montre certaines tendances concernant une forte escalade dans les cyber-menaces mondiales. Atterri plus tôt que d'habitude, l'édition 2025 a constaté que ...

---

>Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Third-party risk rises as a factor in breaches: Verizon DBIR 2025 Verizon\'s latest annual Data Breach Investigations Report (DBIR) shows some concerning trends with a sharp escalation in global cyber threats. Landed earlier than usual, the 2025 edition found that ... ]]> 2025-04-30T09:09:39+00:00 https://bhconsulting.ie/security-roundup-april-2025/ www.secnews.physaphae.fr/article.php?IdArticle=8669879 False Data Breach None 2.0000000000000000 GB Hacker - Blog de reverseur Verizon Business a dévoilé aujourd'hui son rapport sur les enquêtes sur les violations de données de 2025 (DBIR), peignant un tableau frappant du paysage cyber-menace croissant. Analysant plus de 22 000 incidents de sécurité, dont 12 195 violations de données confirmées, le rapport révèle une implication alarmante de 30% de tiers dans des violations - un chiffre qui a doublé par rapport aux années précédentes. Cela souligne les risques croissants […]

---

>Verizon Business unveiled its 2025 Data Breach Investigations Report (DBIR) today, painting a stark picture of the escalating cyber threat landscape. Analyzing over 22,000 security incidents, including 12,195 confirmed data breaches, the report reveals a alarming 30% involvement of third parties in breaches-a figure that has doubled from previous years. This underscores the growing risks […] ]]> 2025-04-29T16:57:19+00:00 https://gbhackers.com/verizon-2025-report-highlights-surge-in-cyberattacks/ www.secnews.physaphae.fr/article.php?IdArticle=8669546 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain South Korean mobile provider SK Telecom has announced free SIM card replacements to its 25 million mobile customers following a recent USIM data breach, but only 6 million cards are available through May. [...]]]> 2025-04-29T12:49:53+00:00 https://www.bleepingcomputer.com/news/security/sk-telecom-cyberattack-free-sim-replacements-for-25-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8669552 False Data Breach,Mobile None 2.0000000000000000 Recorded Future - FLux Recorded Future Urban One, the largest media company primarily serving African Americans, disclosed a data breach to regulators. A ransomware group said it had attacked the company.]]> 2025-04-28T17:55:43+00:00 https://therecord.media/urban-one-data-breach-african-amercian-media www.secnews.physaphae.fr/article.php?IdArticle=8669100 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Employee benefits administration firm VeriSource Services is warning that a data breach exposed the personal information of four million people.  [...]]]> 2025-04-28T13:54:47+00:00 https://www.bleepingcomputer.com/news/security/verisource-now-says-february-data-breach-impacts-4-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8669096 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Verisource Services indique que les informations personnelles de 4 millions de personnes ont été compromises dans une cyberattaque de février 2024.

---

>VeriSource Services says the personal information of 4 million people was compromised in a February 2024 cyberattack. ]]> 2025-04-28T12:23:09+00:00 https://www.securityweek.com/4-million-affected-by-data-breach-at-verisource-services/ www.secnews.physaphae.fr/article.php?IdArticle=8668976 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Le groupe MTN affirme que les informations personnelles de certains clients ont été compromises dans un incident de cybersécurité.

---

>MTN Group says the personal information of certain customers was compromised in a cybersecurity incident. ]]> 2025-04-28T09:43:12+00:00 https://www.securityweek.com/african-telecom-giant-mtn-group-discloses-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8668897 False Data Breach None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Panaseer\'s latest cybersecurity study revealed that US companies have paid $155M in data breach lawsuit settlements over just six months]]> 2025-04-25T10:40:00+00:00 https://www.infosecurity-magazine.com/news/lawsuits-total-155m-cybersecurity/ www.secnews.physaphae.fr/article.php?IdArticle=8667610 False Data Breach,Studies None 3.0000000000000000 Bleeping Computer - Magazine Américain ​Baltimore City Public Schools notified tens of thousands of employees and students of a data breach following an incident in February when unknown attackers hacked into its network. [...]]]> 2025-04-25T10:06:23+00:00 https://www.bleepingcomputer.com/news/security/baltimore-city-public-schools-data-breach-affects-over-31-000-people/ www.secnews.physaphae.fr/article.php?IdArticle=8667678 False Data Breach None 2.0000000000000000 Dark Reading - Informationweek Branch 2025-04-24T22:19:01+00:00 https://www.darkreading.com/events/-virtual-event-anatomy-of-a-data-breach-and-what-to-do-if-it-happens-to-you www.secnews.physaphae.fr/article.php?IdArticle=8667392 False Data Breach None 2.0000000000000000 GB Hacker - Blog de reverseur Verizon Business en 2025 Data Breach Investigations Report (DBIR), publié le 24 avril 2025, peint un tableau frappant du paysage de la cybersécurité, issue d'une analyse de plus de 22 000 incidents de sécurité, dont 12 195 violations de données confirmées. Le rapport identifie les abus d'identification (22%) et l'exploitation des vulnérabilités (20%) en tant que vecteurs d'attaque initiaux prédominants, avec 34% […]

---

>Verizon Business’s 2025 Data Breach Investigations Report (DBIR), released on April 24, 2025, paints a stark picture of the cybersecurity landscape, drawing from an analysis of over 22,000 security incidents, including 12,195 confirmed data breaches. The report identifies credential abuse (22%) and exploitation of vulnerabilities (20%) as the predominant initial attack vectors, with a 34% […] ]]> 2025-04-24T17:13:46+00:00 https://gbhackers.com/verizon-dbir-report-small-businesses-identified-as-key-targets/ www.secnews.physaphae.fr/article.php?IdArticle=8667289 False Ransomware,Data Breach,Vulnerability None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine A misconfigured tracking tool has exposed protected health information of 4.7 million Blue Shield members to Google Ads]]> 2025-04-24T15:00:00+00:00 https://www.infosecurity-magazine.com/news/blue-shield-california-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8667215 True Data Breach,Tool None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial Verizon Business published its 2025 Data Breach Investigations Report (DBIR), revealing a sharp rise in cyberattacks and an... ]]> 2025-04-24T12:55:30+00:00 https://industrialcyber.co/reports/verizons-2025-dbir-report-finds-spike-in-cyberattacks-complexity-in-threat-landscape-amid-rising-supply-chain-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8667149 False Data Breach,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain ​A ransomware attack in January at Frederick Health Medical Group, a major healthcare provider in Maryland, has led to a data breach affecting nearly one million patients. [...]]]> 2025-04-24T12:19:14+00:00 https://www.bleepingcomputer.com/news/security/frederick-health-data-breach-impacts-nearly-1-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8667270 False Ransomware,Data Breach,Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain Yale New Haven Health (YNHHS) is warning that threat actors stole the personal data of 5.5 million patients in a cyberattack earlier this month. [...]]]> 2025-04-24T10:12:24+00:00 https://www.bleepingcomputer.com/news/security/yale-new-haven-health-data-breach-affects-55-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8667212 False Data Breach,Threat None 3.0000000000000000 ComputerWeekly - Computer Magazine Organisations exposed to the US market paid out over $150m in class action settlements in just six months. Security leaders must do more to address cyber gaps, respond better to incidents and demonstrate compliance]]> 2025-04-24T09:45:00+00:00 https://www.computerweekly.com/news/366622911/Data-breach-class-action-costs-mount-up www.secnews.physaphae.fr/article.php?IdArticle=8667184 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Blue Shield of California affirme qu'une mauvaise configuration du site Web a exposé les informations sur la santé de ses membres à Google.

---

>Blue Shield of California says a website misconfiguration exposed the health information of its members to Google. ]]> 2025-04-24T08:55:00+00:00 https://www.securityweek.com/blue-shield-of-california-data-breach-impacts-4-7-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8667055 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Le système de santé de Yale New Haven a récemment découvert que les informations personnelles de millions de patients avaient été volées à ses systèmes.

---

>Yale New Haven Health System recently discovered that the personal information of millions of patients was stolen from its systems. ]]> 2025-04-24T07:07:35+00:00 https://www.securityweek.com/5-5-million-patients-affected-by-data-breach-at-yale-new-haven-health/ www.secnews.physaphae.fr/article.php?IdArticle=8667029 False Data Breach None 3.0000000000000000 Dark Reading - Informationweek Branch Verizon\'s 2025 Data Breach Investigations Report highlighted dire - but not new - trends in the education sector. Without more help, faculty and staff continue to fall for social engineering campaigns and make simple security errors.]]> 2025-04-23T19:50:16+00:00 https://www.darkreading.com/cyberattacks-data-breaches/attackers-capitalize-mistakes-target-schools www.secnews.physaphae.fr/article.php?IdArticle=8667147 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Blue Shield of California disclosed it suffered a data breach after exposing protected health information of 4.7 million members to Google\'s analytics and advertisement platforms. [...]]]> 2025-04-23T11:38:37+00:00 https://www.bleepingcomputer.com/news/security/blue-shield-of-california-leaked-health-data-of-47-million-members-to-google/ www.secnews.physaphae.fr/article.php?IdArticle=8666714 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Le fournisseur de solutions de prestations et de paie Kelly Benefits a révélé une violation de données ayant un impact sur plus de 260 000 personnes.

---

>Benefits and payroll solutions provider Kelly Benefits has disclosed a data breach impacting more than 260,000 individuals. ]]> 2025-04-23T10:30:00+00:00 https://www.securityweek.com/kelly-benefits-data-breach-impacts-260000-people/ www.secnews.physaphae.fr/article.php?IdArticle=8666592 False Data Breach None 2.0000000000000000 Global Security Mag - Site de news francais Investigations]]> 2025-04-23T10:01:01+00:00 https://www.globalsecuritymag.fr/rapport-verizon-data-breach-investigations-report-2025-les-intrusions-systeme-163335.html www.secnews.physaphae.fr/article.php?IdArticle=8666594 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Massachusetts Medical Firm sur place Mammographie révèle la violation des données ayant un impact sur les informations personnelles de 350 000 patients.

---

>Massachusetts medical firm Onsite Mammography discloses data breach impacting the personal information of 350,000 patients. ]]> 2025-04-23T10:00:00+00:00 https://www.securityweek.com/data-breach-at-onsite-mammography-impacts-350000/ www.secnews.physaphae.fr/article.php?IdArticle=8666566 False Data Breach,Medical None 3.0000000000000000 Global Security Mag - Site de news francais Malwares]]> 2025-04-23T09:54:15+00:00 https://www.globalsecuritymag.fr/rapport-verizon-data-breach-investigations-report-2025-les-intrusions-systeme.html www.secnews.physaphae.fr/article.php?IdArticle=8666570 False Data Breach None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The latest ITRC data finds breach volumes remained flat in Q1 but victim numbers increased 26% annually]]> 2025-04-23T09:30:00+00:00 https://www.infosecurity-magazine.com/news/us-data-breach-victim-count-surges/ www.secnews.physaphae.fr/article.php?IdArticle=8666567 False Data Breach None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Verizon \'s 2025 Data Breach Investigations Rapport Le rapport a noté une augmentation de 37% des attaques de ransomwares et une augmentation de 34% des vulnérabilités exploitées.

---

>Verizon\'s 2025 Data Breach Investigations Report noted a 37% increase in ransomware attacks and a 34% increase in exploited vulnerabilities. ]]> 2025-04-23T04:01:00+00:00 https://cyberscoop.com/verizon-data-breach-investigations-report-2025/ www.secnews.physaphae.fr/article.php?IdArticle=8666441 False Ransomware,Data Breach,Vulnerability None 3.0000000000000000 Recorded Future - FLux Recorded Future Thousands of students, teachers and administrators had information stolen from the Baltimore City Public Schools system during a ransomware attack in February.]]> 2025-04-23T00:31:37+00:00 https://therecord.media/baltimore-public-schools-data-breach-ransomware www.secnews.physaphae.fr/article.php?IdArticle=8666384 False Ransomware,Data Breach None 2.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC Enquête par le groupe consultatif de Richmond, les évaluations des risques et le développement de l'installation des incidents ont été les plus hautement réalisées pour la priorité des capacités de révision pour 2024. Il n'est pas suffisant pour que les organisations soient réactives; Ils doivent évaluer en permanence leur préparation aux incidents et effectuer des ajustements proactifs en avant des menaces potentielles. Pourquoi la préparation des incidents est-elle si importante? La préparation aux incidents permet aux organisations d'identifier et d'évaluer les risques, de répondre efficacement aux incidents de sécurité et de maintenir la continuité des activités. L'établissement d'un programme structuré autour de la préparation aux incidents simplifie également la conformité aux normes fédérales et de l'industrie, protégeant les organisations contre les répercussions juridiques et financières. La documentation des rôles et des responsabilités améliore l'alignement de l'équipe, raccourcit les temps de réponse et réduit les coûts globaux. Dans le 2024 Top Cybersecurity Menaces Report Par Forrester, la moitié des répondants enquêtes qui ont connu un million de cyber a estimé le coût cumulatif pour traiter le coût du Cyber. En prenant des mesures proactives, les organisations peuvent éviter les perturbations commerciales, les dommages de réputation et les revers financiers associés à la reprise des incidents. À quoi ressemble un programme de préparation et de réponse aux incidents matures? Pour répondre constamment aux menaces et à maintenir la conformité, votre programme de préparation et de réponse aux incidents devrait inclure: Évaluations des risques: Les évaluations des risques donnent un aperçu des niveaux de risque actuels et des lacunes de sécurité. Ils aident à améliorer la préparation, à améliorer les capacités de réponse aux incidents et à minimiser l'impact des perturbations. Plan de réponse aux incidents: Un plan efficace de réponse aux incidents devrait définir les rôles et les responsabilités, établir des protocoles de communication, les procédures de réponse détaillées pour les incidents et la mise en place de processus pour l'analyse et l'apprentissage post-inccidental. Cela doit être régulièrement évalué et mis à jour pour garantir que le plan reste efficace, incorporant tout changement dans les opérations de l'organisation ainsi que les apprentissages post-incidents. Réponse incident Playbook : Un livre de jeu détaillé décrit les procédures étape par étape pour gérer des types d'incidents spécifiques. Cela englobe la détection et la vérification des incidents, l'isolement des systèmes affectés et la communication avec les parties pertinentes. Chaque livre de jeu est adapté à un type spécifique d'incident, comme le ransomware, et fournit un plan clair et exploitable pour que l'équipe de réponse puisse suivre. Tests de table: Les exercices de table impliquent un scénario hypothétique, tel qu'une violation de données ou une attaque de ransomware, et examiner comment l'organisation réagirait. Cela permet d'évalu]]> 2025-04-22T04:35:00+00:00 https://levelblue.com/blogs/security-essentials/incident-readiness-and-response-program-to-drive-operational-efficiency www.secnews.physaphae.fr/article.php?IdArticle=8666156 False Ransomware,Data Breach,Tool,Vulnerability,Threat None 2.0000000000000000 Recorded Future - FLux Recorded Future According to a complaint filed by a former employee, cybercriminals exfiltrated records that held personal information like names and Social Security numbers belonging to 76,000 current and former employees of Paradies Shops.]]> 2025-04-17T17:51:48+00:00 https://therecord.media/airport-retailer-agrees-to-settlement-ransomware-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8664152 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Entertainment venue management firm Legends International warns it suffered a data breach in November 2024, which has impacted employees and people who visited venues under its management. [...]]]> 2025-04-17T16:51:18+00:00 https://www.bleepingcomputer.com/news/security/entertainment-services-giant-legends-international-discloses-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8664213 False Data Breach None 3.0000000000000000 Recorded Future - FLux Recorded Future Car rental giant Hertz has been notifying state regulators of a data breach that occurred through third-party file sharing software. Tens of thousands of people are affected, but the company hasn\'t specified a total number.]]> 2025-04-16T16:20:51+00:00 https://therecord.media/hertz-data-breach-notifications-cleo-vulnerability www.secnews.physaphae.fr/article.php?IdArticle=8663636 False Data Breach,Tool None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Hertz has confirmed a data breach exposing customer data after a zero-day attack targeting file transfer software from Cleo Communications]]> 2025-04-16T15:00:00+00:00 https://www.infosecurity-magazine.com/news/hertz-data-breach-exposes-customer/ www.secnews.physaphae.fr/article.php?IdArticle=8663591 False Data Breach,Vulnerability,Threat None 3.0000000000000000 SecurityWeek - Security News Le gang de ransomware Rhysida prétend avoir volé 2,5 TB de fichiers du département de la qualité de l'environnement de l'Oregon.

---

>The Rhysida ransomware gang claims to have stolen 2.5 Tb of files from the Oregon Department of Environmental Quality. ]]> 2025-04-16T12:21:16+00:00 https://www.securityweek.com/ransomware-group-claims-hacking-of-oregon-regulator-after-data-breach-denial/ www.secnews.physaphae.fr/article.php?IdArticle=8663528 False Ransomware,Data Breach None 3.0000000000000000 HackRead - Chercher Cyber Hertz confirms data breach linked to Cleo software flaw; Cl0p ransomware group leaked stolen data, exposing names, driver\'s…]]> 2025-04-16T12:19:42+00:00 https://hackread.com/hertz-confirms-data-breach-hackers-stole-customer-pii/ www.secnews.physaphae.fr/article.php?IdArticle=8663517 False Ransomware,Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Landmark Admin has issued an update to its investigation of a cyberattack it suffered in May 2024, increasing the number of impacted individuals to 1.6 million. [...]]]> 2025-04-15T14:33:57+00:00 https://www.bleepingcomputer.com/news/security/landmark-admin-data-breach-impact-now-reaches-16-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8663193 False Data Breach None 3.0000000000000000 GB Hacker - Blog de reverseur La Hertz Corporation a confirmé que des informations personnelles sensibles appartenant aux clients de ses marques Hertz, Dollar et Thrifty ont été compromises après que les pirates ont ciblé la plate-forme de transfert de fichiers d'un fournisseur. La violation a suscité des inquiétudes concernant le vol d'identité et la vie privée, ce qui a incité Hertz à offrir des services de surveillance d'identité gratuits pour les personnes touchées. Selon un avis officiel […]

---

>The Hertz Corporation has confirmed that sensitive personal information belonging to customers of its Hertz, Dollar, and Thrifty brands was compromised after hackers targeted a vendor\'s file transfer platform. The breach has sparked concerns about identity theft and privacy, prompting Hertz to offer free identity monitoring services for affected individuals. According to an official notice […] ]]> 2025-04-15T10:57:44+00:00 https://gbhackers.com/hertz-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8663038 False Data Breach None 3.0000000000000000 ComputerWeekly - Computer Magazine Car hire giant Hertz reveals UK customer data was affected in a cyber incident orchestrated via a series of vulnerabilities in Cleo managed file transfer products]]> 2025-04-15T10:48:00+00:00 https://www.computerweekly.com/news/366622655/Hertz-warns-UK-customers-of-Cleo-linked-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8663115 False Data Breach,Vulnerability None 3.0000000000000000 SecurityWeek - Security News Les clients des marques Hertz, Thrifty et Dollar ont fait voler leurs informations personnelles à la suite du piratage de Cleo l'année dernière.

---

>Customers of the Hertz, Thrifty, and Dollar brands had their personal information stolen as a result of the Cleo hack last year. ]]> 2025-04-15T10:05:36+00:00 https://www.securityweek.com/hertz-discloses-data-breach-linked-to-cleo-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8663007 False Data Breach,Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain Car rental giant Hertz Corporation warns it suffered a data breach after customer data for its Hertz, Thrifty, and Dollar brands was stolen in the Cleo zero-day data theft attacks. [...]]]> 2025-04-14T19:16:03+00:00 https://www.bleepingcomputer.com/news/security/hertz-confirms-customer-info-drivers-licenses-stolen-in-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8662867 False Data Breach,Vulnerability,Threat None 3.0000000000000000 GB Hacker - Blog de reverseur Le National Social Security Fund (CNSS) du Maroc a confirmé que les vérifications initiales sur des documents divulguées circulant sur les réseaux sociaux ont révélé qu'une grande partie des informations est fausse, inexacte ou incomplète. Les responsables déclarent que ces documents proviennent d'une cyberattaque ciblant les systèmes informatiques de l'organisation. Le CNSS a activé des protocoles de sécurité, lancé un […] interne […]

---

>The National Social Security Fund (CNSS) of Morocco has confirmed that initial checks on leaked documents circulating on social media have revealed that much of the information is false, inaccurate, or incomplete. Officials state these documents originated from a cyber attack targeting the organization’s computer systems. The CNSS has activated security protocols, launched an internal […] ]]> 2025-04-14T13:34:17+00:00 https://gbhackers.com/morocco-investigation-major-data-breach-allegedly-claimed/ www.secnews.physaphae.fr/article.php?IdArticle=8662703 False Data Breach None 2.0000000000000000 HackRead - Chercher Cyber Data breach at Laboratory Services Cooperative (LSC) exposed the sensitive health and personal information of 1.6 million individuals…]]> 2025-04-14T07:48:29+00:00 https://hackread.com/lab-breach-tied-planned-parenthood-compromises-records/ www.secnews.physaphae.fr/article.php?IdArticle=8662588 False Data Breach None 3.0000000000000000 Recorded Future - FLux Recorded Future The country\'s national social security agency said the cyberattack resulted in the leak of sensitive personal data reportedly belonging to millions of citizens.]]> 2025-04-11T18:20:43+00:00 https://therecord.media/morocco-investigates-breach-hackers-algeria www.secnews.physaphae.fr/article.php?IdArticle=8661839 False Data Breach None 3.0000000000000000 Dark Reading - Informationweek Branch With $4.4 billion in worldwide data breach fines in 2024, the cost of not knowing who\'s walking into your systems is devastating.]]> 2025-04-11T14:00:00+00:00 https://www.darkreading.com/cyber-risk/using-third-party-id-providers-zero-trust www.secnews.physaphae.fr/article.php?IdArticle=8661770 False Data Breach None 3.0000000000000000 SecurityWeek - Security News La coopérative de services de laboratoire indique que les informations personnelles et médicales de 1,6 million ont été volées dans une violation de données d'octobre 2024.

---

>Laboratory Services Cooperative says the personal and medical information of 1.6 million was stolen in an October 2024 data breach. ]]> 2025-04-11T10:35:00+00:00 https://www.securityweek.com/1-6-million-people-impacted-by-data-breach-at-laboratory-services-cooperative/ www.secnews.physaphae.fr/article.php?IdArticle=8661679 False Data Breach,Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain Laboratory Services Cooperative (LSC) has released a statement informing it suffered a data breach where hackers stole sensitive information of roughly 1.6 million people from its systems. [...]]]> 2025-04-11T09:23:18+00:00 https://www.bleepingcomputer.com/news/security/us-lab-testing-provider-exposed-health-data-of-16-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8661751 False Data Breach None 3.0000000000000000 The Register - Site journalistique Anglais

---

Issues at the very top continue to worsen The UK government\'s latest annual data breach survey shows the number of ransomware attacks on the isles is on the increase – and many techies are forced to constantly informally request company directors for defense spending because there\'s no security people on the board.… ]]> 2025-04-11T08:33:14+00:00 https://go.theregister.com/feed/www.theregister.com/2025/04/11/uk_cyberattacks/ www.secnews.physaphae.fr/article.php?IdArticle=8661647 False Ransomware,Data Breach None 3.0000000000000000 CybeReason - Vendor blog Entre 2022 et 2024, recours collectifs liés aux violations de données aux États-Unis à la fois à Cybersecurity Posture et un ]]> 2025-04-10T14:30:01+00:00 https://www.cybereason.com/blog/expert-support-class-action www.secnews.physaphae.fr/article.php?IdArticle=8661437 False Data Breach,Technical None 2.0000000000000000 HackRead - Chercher Cyber A hacker using the alias “Satanic” claims a WooCommerce data breach via a third party, selling data on…]]> 2025-04-09T21:27:57+00:00 https://hackread.com/hacker-claims-woocommerce-data-breach-selling-records/ www.secnews.physaphae.fr/article.php?IdArticle=8661233 False Data Breach None 3.0000000000000000 HackRead - Chercher Cyber Another day, another data breach claim involving a high-profile company!]]> 2025-04-09T15:36:47+00:00 https://hackread.com/hackers-magento-breach-3rd-party-crm-data-leak/ www.secnews.physaphae.fr/article.php?IdArticle=8661169 False Data Breach None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine WK Kellogg breach exposed employee data after attackers exploited flaws in Cleo software]]> 2025-04-09T15:00:00+00:00 https://www.infosecurity-magazine.com/news/wk-kellogg-confirms-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8661155 False Data Breach,Threat None 3.0000000000000000 SecurityWeek - Security News Oracle envoie des notifications écrites aux clients au cours du récent hack après qu'il ait initialement semblé refuser une violation de données.

---

>Oracle is sending out written notifications to customers over the recent hack after it initially appeared to completely deny a data breach. ]]> 2025-04-09T10:10:00+00:00 https://www.securityweek.com/oracle-faces-mounting-criticism-as-it-notifies-customers-of-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8661105 False Data Breach,Hack None 2.0000000000000000 Resecurity - cyber risk firms 2025-04-09T00:00:00+00:00 https://www.resecurity.com/blog/article/cybercriminals-attacked-national-social-security-fund-of-morocco-millions-of-digital-identities-at-risk-of-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8661206 False Data Breach None 3.0000000000000000 Schneier on Security - Chercheur Cryptologue Américain audition Plus tôt cette semaine, Matt Blaze a fait le point que CALEA, la loi de 1994 qui force les télécommunications pour faire des appels téléphoniques, est terminée dans l'environnement de menace d'aujourd'hui et devrait être réduit: En d'autres termes, tandis que les exigences de capacité CALEA légalement mandatées ont peu changé au cours des trois dernières décennies, l'infrastructure qui doit la mettre en œuvre et le protéger a radicalement changé. Cela a considérablement élargi la «surface d'attaque» qui doit être défendue pour empêcher les écoutes électroniques non autorisées, en particulier à grande échelle. Le travail de l'écoute illégale est devenu beaucoup plus facile, avec beaucoup plus d'options et d'opportunités à exploiter. Compromettre notre infrastructure de télécommunications est désormais peu différent de la réalisation de tout autre type d'intrusion ou de violation de données, un problème de cybersécurité bien connu et endémique. Pour le dire franchement, quelque chose comme le typhon de sel était inévitable, et se reproduira probablement à moins que des modifications significatives ne soient apportées ...

---

At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms to make phone calls wiretappable, is outdated in today’s threat environment and should be rethought: In other words, while the legally-mandated CALEA capability requirements have changed little over the last three decades, the infrastructure that must implement and protect it has changed radically. This has greatly expanded the “attack surface” that must be defended to prevent unauthorized wiretaps, especially at scale. The job of the illegal eavesdropper has gotten significantly easier, with many more options and opportunities for them to exploit. Compromising our telecommunications infrastructure is now little different from performing any other kind of computer intrusion or data breach, a well-known and endemic cybersecurity problem. To put it bluntly, something like Salt Typhoon was inevitable, and will likely happen again unless significant changes are made...]]> 2025-04-08T11:08:13+00:00 https://www.schneier.com/blog/archives/2025/04/arguing-against-calea.html www.secnews.physaphae.fr/article.php?IdArticle=8660932 False Data Breach,Threat None 3.0000000000000000 BHconsulting - Consulting

---

Brian Honan shares his thoughts with Bank Info Security about Oracle\'s recent data breach. Read More > ]]> 2025-04-07T14:05:24+00:00 https://bhconsulting.ie/cybersecurity-experts-slam-oracles-handling-of-big-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8660737 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain US food giant WK Kellogg Co is warning employees and vendors that company data was stolen during the 2024 Cleo data theft attacks. [...]]]> 2025-04-07T11:56:51+00:00 https://www.bleepingcomputer.com/news/security/food-giant-wk-kellogg-discloses-data-breach-linked-to-clop-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8660766 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain ​Port of Seattle, the U.S. government agency overseeing Seattle\'s seaport and airport, is notifying roughly 90,000 individuals of a data breach after their personal information was stolen in an August 2024 ransomware attack. [...]]]> 2025-04-04T13:26:38+00:00 https://www.bleepingcomputer.com/news/security/port-of-seattle-says-ransomware-breach-impacts-90-000-people/ www.secnews.physaphae.fr/article.php?IdArticle=8660288 False Ransomware,Data Breach None 3.0000000000000000 SecurityWeek - Security News Oracle a confirmé avoir subi une violation de données, mais le géant de la technologie essaie apparemment de minimiser l'impact de l'incident.

---

>Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident. ]]> 2025-04-04T10:30:00+00:00 https://www.securityweek.com/oracle-confirms-cloud-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8660219 False Data Breach,Hack,Cloud None 3.0000000000000000 HackRead - Chercher Cyber A hacker, previously linked to the Tracelo breach, now claims to have breached Twilio\'s SendGrid, leaking and selling data on 848,000 customers, including contact and company info.]]> 2025-04-03T18:57:32+00:00 https://hackread.com/hacker-twilio-sendgrid-data-breach-customer-data/ www.secnews.physaphae.fr/article.php?IdArticle=8660103 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The State Bar of Texas is warning it suffered a data breach after the INC ransomware gang claimed to have breached the organization and began leaking samples of stolen data. [...]]]> 2025-04-03T11:43:17+00:00 https://www.bleepingcomputer.com/news/security/texas-state-bar-warns-of-data-breach-after-inc-ransomware-claims-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8660073 False Ransomware,Data Breach None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine A cyber threat actor has claimed to have leaked 144GB of data from Royal Mail users]]> 2025-04-02T15:44:00+00:00 https://www.infosecurity-magazine.com/news/royal-mail-investigates-data/ www.secnews.physaphae.fr/article.php?IdArticle=8659867 False Data Breach,Threat None 3.0000000000000000 HackRead - Chercher Cyber Oracle faces a class action lawsuit filed in Texas over a cloud data breach exposing sensitive data of 6M+ users; plaintiff alleges negligence and delays.]]> 2025-04-01T18:23:29+00:00 https://hackread.com/oracle-lawsuit-over-cloud-breach-affecting-millions/ www.secnews.physaphae.fr/article.php?IdArticle=8659675 False Data Breach,Cloud None 3.0000000000000000 Incogni - Blog Sécu de la société incogni, spécialisé en protection de la vie privé 2025-03-31T16:01:55+00:00 https://blog.incogni.com/potential-data-breach-florida-department-state/ www.secnews.physaphae.fr/article.php?IdArticle=8659412 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Un incident de sécurité par e-mail chez Chord Specialty Dental Partners, une organisation de services dentaires américains, a eu un impact sur plus de 170 000 personnes. 

---

>An email security incident at Chord Specialty Dental Partners, a US dental service organization, has impacted more than 170,000 people.  ]]> 2025-03-31T10:10:00+00:00 https://www.securityweek.com/170000-impacted-by-data-breach-at-chord-specialty-dental-partners/ www.secnews.physaphae.fr/article.php?IdArticle=8659364 False Data Breach None 3.0000000000000000 HackRead - Chercher Cyber Massive Twitter (X) data breach exposes details of 2.8 billion users; alleged insider leak surfaces with no official response from the company.]]> 2025-03-29T15:02:45+00:00 https://hackread.com/twitter-x-of-2-8-billion-data-leak-an-insider-job/ www.secnews.physaphae.fr/article.php?IdArticle=8659103 False Data Breach None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC Cybersecurity Insiders Introduction Pour les dirigeants de la santé, la priorisation de la conformité à la sécurité ne consiste pas seulement à répondre aux exigences réglementaires, mais à protéger la réputation de l'organisation, à réduire les risques et à assurer la continuité des activités. La certification HitRust E1 ou I1 peut améliorer considérablement le plan de santé et l'assurance des patients, réduire les risques de sécurité et créer des opportunités pour une augmentation des revenus grâce à une confiance améliorée, à un potentiel de partenariat amélioré et à des pratiques de conformité plus efficaces. En investissant dans la conformité de la sécurité et en réalisant des certifications comme HitRust, les organisations de santé de petite à moyenne taille peuvent atténuer les risques et se positionner pour un succès à long terme dans une industrie de plus en plus réglementée et compétitive. Exigences réglementaires et conséquences juridiques Les organisations de soins de santé doivent de plus en plus se conformer aux mandats du plan de santé, aux réglementations fédérales et étatiques, telles que HIPAA (Health Insurance Portability and Accountability Act), et HITECH (Health Information Technology for Economic Health Act). Le non-respect des mandats du plan de santé et des réglementations fédérales et étatiques peuvent entraîner des amendes, des conséquences juridiques et une perte de partenariats commerciaux ou d'accréditation. L'augmentation des attaques de ransomwares, telles que celles ciblant les hôpitaux et les assureurs, a souligné l'importance de sécuriser les systèmes de santé pour assurer la sécurité des patients et la continuité des soins. Menaces d'atténuation des risques et de cybersécurité Les organisations de soins de santé sont des cibles fréquentes des cyberattaques, en particulier en raison de la nature sensible des données de santé. Les violations des données sur les soins de santé peuvent entraîner un vol d'identité, une fraude médicale ou une exposition des informations sur la santé personnelle (PHI). Le rapport d'enquête sur les violations de Verizon 2024 sur les soins de santé montre des erreurs diverses, une mauvaise utilisation des privilèges et l'intrusion du système représentaient 83% des violations. Les acteurs de la menace représentent 70% des violations internes et externes à 30% avec 98% motivées par un gain financier et un espionnage de 1%, et des compromis de données allant de 75% personnels, 51% internes, 25% autres et 13% des informations d'identification (Verrizon 2024 DBIR). confiance et réputation Les patients et les partenaires contiennent les organisations de soins de santé des informations personnelles et médicales très sensibles et s'attendent à ce que leurs prestataires de soins de santé protégent leurs données médicales contre les cybermenaces et les violations de données. Si un plan de santé ou un fournisseur ne démontre pas la conformité, cela peut entraîner une perte de confiance des patients, une rétention de patient inférieure, une confiance érodée et endommager la réputation d'une organisation. La lutte contre la conformité à la sécurité permet de garantir que les données et les systèmes sensibles des patients sont adéquatement protégés, réduisant la probabilité de violations. Continuité opérationnelle Les cadres de conformité de la sécurité fournissent des processus structurés pour garantir que les données sont protégées, que les sauvegardes sont sécurisées et que des plans d]]> 2025-03-28T15:10:00+00:00 https://levelblue.com/blogs/security-essentials/why-healthcare-executives-should-prioritize-security-compliance www.secnews.physaphae.fr/article.php?IdArticle=8659411 False Ransomware,Data Breach,Vulnerability,Medical None 3.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Despite Oracle’s denial of a breach affecting its Oracle Cloud federated SSO login servers, Bleeping Computer has confirmed with multiple companies that data samples shared by the threat actor are authentic.  Recently, a threat actor, “rose87168,” claimed to be selling six million records, including sensitive account data, on dark web forums.   CloudSEK\'s investigation suggests [...]]]> 2025-03-28T06:24:44+00:00 https://informationsecuritybuzz.com/oracles-data-breach-denial-unravels/ www.secnews.physaphae.fr/article.php?IdArticle=8658784 False Data Breach,Threat,Cloud None 2.0000000000000000 SecurityWeek - Security News L'ICO britannique a infligé une amende de 3 millions de livres sterling de logiciels inférieurs à 3 millions de livres sterling (3,8 millions de dollars) sur une violation de données de 2022 résultant d'une attaque de ransomware.

---

>The UK ICO has fined Advanced Computer Software Group £3 million ($3.8 million) over a 2022 data breach resulting from a ransomware attack. ]]> 2025-03-27T15:30:00+00:00 https://www.securityweek.com/uk-software-firm-fined-3-million-over-ransomware-caused-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8658620 False Ransomware,Data Breach None 3.0000000000000000 BBC - BBC News - Technology Security failings by the Advanced Computer Software Group led to a cyberattack in 2022 that impacted NHS services.]]> 2025-03-27T01:25:34+00:00 https://www.bbc.com/news/articles/cp3yv1zxn94o www.secnews.physaphae.fr/article.php?IdArticle=8658455 False Ransomware,Data Breach None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) When people think of cybersecurity threats, they often picture external hackers breaking into networks. However, some of the most damaging breaches stem from within organizations. Whether through negligence or malicious intent, insiders can expose your organization to significant cybersecurity risks. According to Verizon\'s 2024 Data Breach Investigations Report, 57% of companies experience over]]> 2025-03-26T15:45:00+00:00 https://thehackernews.com/2025/03/how-pam-mitigates-insider-threats.html www.secnews.physaphae.fr/article.php?IdArticle=8658297 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Cloud-based streaming company StreamElements confirms it suffered a data breach at a third-party service provider after a threat actor leaked samples of stolen data on a hacking forum. [...]]]> 2025-03-26T14:42:51+00:00 https://www.bleepingcomputer.com/news/security/streamelements-discloses-third-party-data-breach-after-hacker-leaks-data/ www.secnews.physaphae.fr/article.php?IdArticle=8658394 False Data Breach,Threat None 3.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Consumer-grade spyware operation SpyX has been identified on the data breach notification site have I been pwned? as experiencing a data breach in June 2024 that compromised almost 2 million unique email addresses. Among those, interestingly, were thousands of Apple users.  The incident highlights not only the structural vulnerabilities of such applications (apps) but also [...]]]> 2025-03-26T04:53:46+00:00 https://informationsecuritybuzz.com/spyx-breach-apple-arent-invulnerable/ www.secnews.physaphae.fr/article.php?IdArticle=8658236 False Data Breach,Vulnerability None 2.0000000000000000 SecurityWeek - Security News La violation de données liée au courrier électronique subie par le fauteuil roulant et d'autres fournisseurs d'équipements de mobilité Numotion affecte près de 500 000 personnes. 

---

>Email-related data breach suffered by wheelchair and other mobility equipment provider Numotion affects almost 500,000 individuals.  ]]> 2025-03-25T12:30:55+00:00 https://www.securityweek.com/numotion-data-breach-impacts-nearly-500000-people/ www.secnews.physaphae.fr/article.php?IdArticle=8658088 False Data Breach None 2.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Cybersecurity firm CloudSEK has identified a major data breach involving Oracle Cloud. A threat actor, known as “rose87168,” claims to be selling around 6 million records stolen from Oracle Cloud’s Single Sign-On (SSO) and Lightweight Directory Access Protocol (LDAP) servers.   The compromised data includes Java KeyStore (JKS) files, encrypted SSO passwords, key files, and Enterprise [...]]]> 2025-03-25T06:19:50+00:00 https://informationsecuritybuzz.com/firm-uncover-major-oracle-cloud-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8658019 False Data Breach,Threat,Cloud None 3.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Without a robust backup and recovery strategy, organisations risk significant data loss, workflow disruptions, reputational damage, fines, and lawsuits in the case of a data breach or ransomware attack. Yet, many businesses are still struggling to master their data protection challenges: Nearly a third of IT professionals are currently losing sleep over their backup and [...]]]> 2025-03-25T05:08:40+00:00 https://informationsecuritybuzz.com/data-top-trends-in-backup-and-recovery/ www.secnews.physaphae.fr/article.php?IdArticle=8658010 False Ransomware,Data Breach None 3.0000000000000000 The State of Security - Magazine Américain Protecting individual privacy is paramount, given the proliferation of Personally Identifiable Information (PII) and other sensitive data collected by enterprises across all industries. One way to protect sensitive data is through PII masking e.g., consistently changing names or including only the last four digits of a credit card or Social Security Number. What is data masking? Data masking replaces sensitive columns in the source data with realistic test data. A data breach remediation strategy is primarily used to address areas of risk. By preserving the integrity and usability of the...]]> 2025-03-25T03:52:33+00:00 https://www.tripwire.com/state-of-security/introduction-data-masking-privacy-engineering www.secnews.physaphae.fr/article.php?IdArticle=8658041 False Data Breach None 2.0000000000000000 HackRead - Chercher Cyber Oracle is caught up in a cybersecurity mess right now, with claims about a massive data breach affecting…]]> 2025-03-24T21:33:50+00:00 https://hackread.com/cloudsek-disputes-oracle-data-breach-denial-evidence/ www.secnews.physaphae.fr/article.php?IdArticle=8657945 False Data Breach None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Two years after a data breach that compromised almost seven million customers, 23andMe\'s CEO has resigned as the company files for bankruptcy]]> 2025-03-24T11:30:00+00:00 https://www.infosecurity-magazine.com/news/california-23andme-data-rights/ www.secnews.physaphae.fr/article.php?IdArticle=8657759 False Data Breach None 4.0000000000000000 InformationSecurityBuzzNews - Site de News Securite California Cryobank (CCB), one of the world’s largest reproductive tissue banks, has begun informing consumers about a data breach impacting an unspecified number of individuals. The biotechnology company reported detecting unauthorized activity on certain computers on 21 April last year, and subsequently isolated them from its IT network.  Protecting Data Confidentiality  In a statement, the [...]]]> 2025-03-21T04:39:39+00:00 https://informationsecuritybuzz.com/california-cryobank-alerts-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8657097 False Data Breach None 2.0000000000000000 SecurityWeek - Security News La Pennsylvania State Education Association affirme que les informations personnelles de plus de 500 000 personnes ont été volées dans une violation de données.

---

>Pennsylvania State Education Association says the personal information of over 500,000 individuals was stolen in a data breach. ]]> 2025-03-20T12:21:23+00:00 https://www.securityweek.com/500000-impacted-by-pennsylvania-teachers-union-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8656924 False Data Breach None 3.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Western Alliance Bank has announced a data breach affecting 21,899 people, that was caused by an October 2024 cyberattack on a third-party file transfer software. The breach exposed sensitive personal and financial information, including names, Social Security numbers, driver’s license details, and financial account numbers.   The bank said the malicious actors exploited a zero-day vulnerability in the third-party software to [...]]]> 2025-03-20T06:50:29+00:00 https://informationsecuritybuzz.com/western-alliance-bank-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8656849 False Data Breach,Vulnerability,Threat None 2.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC 2025-03-20T06:00:00+00:00 https://levelblue.com/blogs/security-essentials/dangers-of-data-logging-and-data-hashing-in-cybersecurity www.secnews.physaphae.fr/article.php?IdArticle=8656956 False Data Breach,Tool,Vulnerability,Threat,Technical None 2.0000000000000000 Bleeping Computer - Magazine Américain The Pennsylvania State Education Association (PSEA), the largest public-sector union in Pennsylvania, is notifying over half a million individuals that attackers stole their personal information in a July 2024 security breach. [...]]]> 2025-03-19T17:38:25+00:00 https://www.bleepingcomputer.com/news/security/pennsylvania-education-union-data-breach-hit-500-000-people/ www.secnews.physaphae.fr/article.php?IdArticle=8656787 False Data Breach None 3.0000000000000000 Recorded Future - FLux Recorded Future More than 500,000 people were impacted by a cyberattack on the Pennsylvania State Education Association (PSEA) that took place in July 2024.]]> 2025-03-19T15:51:09+00:00 https://therecord.media/half-a-million-impacted-pennsylvania-education-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8656723 False Data Breach None 2.0000000000000000