This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-06T11:21:35+00:00 www.secnews.physaphae.fr Bleeping Computer - Magazine Américain The Computer Emergency Response Team of Ukraine (CERT-UA) says Russian hackers are targeting various government bodies in the country with malicious emails supposedly containing instructions on how to update Windows as a defense against cyber attacks. [...]]]> 2023-04-30T10:07:17+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-fake-windows-update-guides-to-target-ukrainian-govt/ www.secnews.physaphae.fr/article.php?IdArticle=8332529 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Americold, a leading cold storage and logistics company, has been facing IT issues since its network was breached on Tuesday night. [...]]]> 2023-04-28T15:53:38+00:00 https://www.bleepingcomputer.com/news/security/cold-storage-giant-americold-outage-caused-by-network-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8331980 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A new version of the ViperSoftX information-stealing malware has been discovered with a broader range of targets, including targeting the KeePass and 1Password password managers. [...]]]> 2023-04-28T13:37:18+00:00 https://www.bleepingcomputer.com/news/security/vipersoftx-info-stealing-malware-now-targets-password-managers/ www.secnews.physaphae.fr/article.php?IdArticle=8331945 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A set of 38 Minecraft copycat games on Google Play infected devices with the Android adware \'HiddenAds\' to stealthily load ads in the background to generate revenue for its operators. [...]]]> 2023-04-27T15:42:12+00:00 https://www.bleepingcomputer.com/news/security/android-minecraft-clones-with-35m-downloads-infect-users-with-adware/ www.secnews.physaphae.fr/article.php?IdArticle=8331671 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Google says it banned 173,000 developer accounts in 2022 to block malware operations and fraud rings from infecting Android users\' devices with malicious apps. [...]]]> 2023-04-27T13:13:21+00:00 https://www.bleepingcomputer.com/news/google/google-banned-173k-developer-accounts-to-block-malware-fraud-rings/ www.secnews.physaphae.fr/article.php?IdArticle=8331644 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new macOS information-stealing malware named \'Atomic\' (aka \'AMOS\') is being sold to cybercriminals via private Telegram channels for a subscription of $1,000 per month. [...]]]> 2023-04-27T10:34:24+00:00 https://www.bleepingcomputer.com/news/security/new-atomic-macos-info-stealing-malware-targets-50-crypto-wallets/ www.secnews.physaphae.fr/article.php?IdArticle=8331578 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain In some ways, past best practices for password policies may have made password cracking easier. Let\'s examine the most common types of password attacks, and how to defend against them. [...]]]> 2023-04-27T10:04:08+00:00 https://www.bleepingcomputer.com/news/security/a-password20231-password-may-not-be-as-complex-as-you-think/ www.secnews.physaphae.fr/article.php?IdArticle=8331579 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Ukrainian cyber police have arrested a 36-year-old man from the city of Netishyn for selling the personal data and sensitive information of over 300 million people, citizens of Ukraine, and various European countries. [...]]]> 2023-04-26T17:35:05+00:00 https://www.bleepingcomputer.com/news/security/ukrainian-arrested-for-selling-data-of-300m-people-to-russians/ www.secnews.physaphae.fr/article.php?IdArticle=8331371 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Chinese APT hacking group known as \'Evasive Panda\' are behind a mysterious attack that distributed the MsgBot malware as part of an automatic update for the Tencent QQ messaging app. [...]]]> 2023-04-26T14:16:40+00:00 https://www.bleepingcomputer.com/news/security/tencent-qq-users-hacked-in-mysterious-malware-attack-says-eset/ www.secnews.physaphae.fr/article.php?IdArticle=8331322 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Google is taking down malware infrastructure linked to the Cryptbot info stealer after suing those using it to infect Google Chrome users and steal their data. [...]]]> 2023-04-26T12:46:34+00:00 https://www.bleepingcomputer.com/news/security/google-disrupts-the-cryptbot-info-stealing-malware-operation/ www.secnews.physaphae.fr/article.php?IdArticle=8331284 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are deploying new Linux malware variants in cyberespionage attacks, such as a new PingPull variant and a previously undocumented backdoor tracked as \'Sword2033.\'  [...]]]> 2023-04-26T06:00:00+00:00 https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-linux-malware-variants-for-espionage/ www.secnews.physaphae.fr/article.php?IdArticle=8331225 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Google Authenticator app has received a critical update for Android and iOS that allows users to back up their two-factor authentication one-time passwords (OTPs) to their Google Accounts and have multi-device support. [...]]]> 2023-04-25T10:39:17+00:00 https://www.bleepingcomputer.com/news/google/google-authenticator-now-backs-up-your-2fa-codes-to-the-cloud/ www.secnews.physaphae.fr/article.php?IdArticle=8330955 False Cloud None 3.0000000000000000 Bleeping Computer - Magazine Américain The Mirai malware botnet is actively exploiting a TP-Link Archer A21 (AX1800) WiFi router vulnerability tracked as CVE-2023-1389 to incorporate devices into DDoS (distributed denial of service) swarms. [...]]]> 2023-04-25T07:45:00+00:00 https://www.bleepingcomputer.com/news/security/tp-link-archer-wifi-router-flaw-exploited-by-mirai-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8330897 False Malware,Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain VirusTotal announced on Monday the launch of a new artificial intelligence-based code analysis feature named Code Insight. [...]]]> 2023-04-24T17:56:35+00:00 https://www.bleepingcomputer.com/news/security/virustotal-now-has-an-ai-powered-malware-analysis-feature/ www.secnews.physaphae.fr/article.php?IdArticle=8330761 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new side-channel attack impacting multiple generations of Intel CPUs has been discovered, allowing data to be leaked through the EFLAGS register. [...]]]> 2023-04-24T15:38:40+00:00 https://www.bleepingcomputer.com/news/security/intel-cpus-vulnerable-to-new-transient-execution-side-channel-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8330716 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Yellow Pages Group, a Canadian directory publisher has confirmed to BleepingComputer that it has been hit by a cyber attack. Black Basta ransomware and extortion gang claims responsibility for the attack and has posted sensitive documents and data over the weekend. [...]]]> 2023-04-24T03:22:54+00:00 https://www.bleepingcomputer.com/news/security/yellow-pages-canada-confirms-cyber-attack-as-black-basta-leaks-data/ www.secnews.physaphae.fr/article.php?IdArticle=8330516 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Enterprise-level network equipment on the secondary market hide sensitive data that hackers could use to breach corporate environments or to obtain customer information. [...]]]> 2023-04-23T12:32:57+00:00 https://www.bleepingcomputer.com/news/security/hackers-can-breach-networks-using-data-on-resold-corporate-routers/ www.secnews.physaphae.fr/article.php?IdArticle=8330408 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain A new enterprise-targeting malware toolkit called \'Decoy Dog\' has been discovered after inspecting anomalous DNS traffic that is distinctive from regular internet activity. [...]]]> 2023-04-23T10:25:50+00:00 https://www.bleepingcomputer.com/news/security/decoy-dog-malware-toolkit-found-after-analyzing-70-billion-dns-queries/ www.secnews.physaphae.fr/article.php?IdArticle=8330409 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Researchers are seeing a rise in attacks spreading the EvilExtractor data theft tool, used to steal users\' sensitive data in Europe and the U.S. [...]]]> 2023-04-22T11:14:28+00:00 https://www.bleepingcomputer.com/news/security/evilextractor-malware-activity-spikes-in-europe-and-the-us/ www.secnews.physaphae.fr/article.php?IdArticle=8330251 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The enterprise-targeting Bumblebee malware is distributed through Google Ads and SEO poisoning that promote popular software like Zoom, Cisco AnyConnect, ChatGPT, and Citrix Workspace. [...]]]> 2023-04-22T10:08:16+00:00 https://www.bleepingcomputer.com/news/security/google-ads-push-bumblebee-malware-used-by-ransomware-gangs/ www.secnews.physaphae.fr/article.php?IdArticle=8330252 False Ransomware,Malware ChatGPT 2.0000000000000000 Bleeping Computer - Magazine Américain The X_Trader software supply chain attack that led to last month\'s 3CX breach has also impacted at least several critical infrastructure organizations in the United States and Europe, according to Symantec\'s Threat Hunter Team. [...]]]> 2023-04-21T15:26:43+00:00 https://www.bleepingcomputer.com/news/security/critical-infrastructure-also-hit-by-supply-chain-attack-behind-3cx-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8330039 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The American Bar Association (ABA) has suffered a data breach after hackers compromised its network and gained access to older credentials for 1,466,000 members. [...]]]> 2023-04-21T09:56:10+00:00 https://www.bleepingcomputer.com/news/security/american-bar-association-data-breach-hits-14-million-members/ www.secnews.physaphae.fr/article.php?IdArticle=8329940 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain A new Lazarus campaign considered part of "Operation DreamJob" has been discovered targeting Linux users with malware for the first time. [...]]]> 2023-04-20T11:43:51+00:00 https://www.bleepingcomputer.com/news/security/lazarus-hackers-now-push-linux-malware-via-fake-job-offers/ www.secnews.physaphae.fr/article.php?IdArticle=8329714 False Malware APT 38 2.0000000000000000 Bleeping Computer - Magazine Américain An investigation into last month\'s 3CX supply chain attack discovered that it was caused by another supply chain compromise where suspected North Korean attackers breached the site of stock trading automation company Trading Technologies to push trojanized software builds. [...]]]> 2023-04-20T08:00:00+00:00 https://www.bleepingcomputer.com/news/security/3cx-hack-caused-by-trading-software-supply-chain-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8329654 False Hack None 3.0000000000000000 Bleeping Computer - Magazine Américain The United Kingdom\'s NCSC (National Cyber Security Centre) is warning of a heightened risk from attacks by state-aligned Russian hacktivists, urging all organizations in the country to apply recommended security measures. [...]]]> 2023-04-19T12:57:46+00:00 https://www.bleepingcomputer.com/news/security/uk-cyber-argency-warns-of-a-new-class-of-russian-hackers/ www.secnews.physaphae.fr/article.php?IdArticle=8329408 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain March 2023 was the most prolific month recorded by cybersecurity analysts in recent years, measuring 459 attacks, an increase of 91% from the previous month and 62% compared to March 2022. [...]]]> 2023-04-19T03:00:00+00:00 https://www.bleepingcomputer.com/news/security/march-2023-broke-ransomware-attack-records-with-459-incidents/ www.secnews.physaphae.fr/article.php?IdArticle=8329306 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The US, UK, and Cisco are warning of Russian state-sponsored APT28 hackers deploying a custom malware named \'Jaguar Tooth\' on Cisco IOS routers, allowing unauthenticated access to the device. [...]]]> 2023-04-18T17:42:45+00:00 https://www.bleepingcomputer.com/news/security/us-uk-warn-of-govt-hackers-using-custom-malware-on-cisco-routers/ www.secnews.physaphae.fr/article.php?IdArticle=8329040 False Malware APT 28 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers commonly target Active Directory with various attack techniques spanning many attack vectors. Let\'s consider a few of these attacks and what organizations can do to protect themselves. [...]]]> 2023-04-18T10:07:14+00:00 https://www.bleepingcomputer.com/news/security/the-attacks-that-can-target-your-windows-active-directory/ www.secnews.physaphae.fr/article.php?IdArticle=8328937 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Ex-Conti ransomware members have teamed up with the FIN7 threat actors to distribute a new malware family named \'Domino\' in attacks on corporate networks. [...]]]> 2023-04-17T16:36:21+00:00 https://www.bleepingcomputer.com/news/security/ex-conti-members-and-fin7-devs-team-up-to-push-new-domino-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8328696 False Ransomware,Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain QBot malware is now distributed in phishing campaigns utilizing PDFs and Windows Script Files (WSF) to infect Windows devices. [...]]]> 2023-04-17T09:48:24+00:00 https://www.bleepingcomputer.com/news/security/new-qbot-email-attacks-use-pdf-and-wsf-combo-to-install-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8328656 False Malware None 4.0000000000000000 Bleeping Computer - Magazine Américain A new Android trojan called \'Chameleon\' has been targeting users in Australia and Poland since the start of the year, mimicking the CoinSpot cryptocurrency exchange, an Australian government agency, and the IKO bank. [...]]]> 2023-04-17T08:46:23+00:00 https://www.bleepingcomputer.com/news/security/new-chameleon-android-malware-mimics-bank-govt-and-crypto-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8328657 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today of a high-severity Android vulnerability believed to have been exploited by a Chinese e-commerce app Pinduoduo as a zero-day to spy on its users. [...]]]> 2023-04-16T10:08:23+00:00 https://www.bleepingcomputer.com/news/security/cisa-warns-of-android-bug-exploited-by-chinese-app-to-spy-on-users/ www.secnews.physaphae.fr/article.php?IdArticle=8328422 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain NCR is suffering an outage on its Aloha point of sale platform after being hit by an ransomware attack claimed by the BlackCat/ALPHV gang. [...]]]> 2023-04-15T14:26:51+00:00 https://www.bleepingcomputer.com/news/security/ncr-suffers-aloha-pos-outage-after-blackcat-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8328179 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers are warning that cybercriminals are increasingly using the Action1 remote access software for persistence on compromised networks and to execute commands, scripts, and binaries. [...]]]> 2023-04-15T12:45:23+00:00 https://www.bleepingcomputer.com/news/security/hackers-start-abusing-action1-rmm-in-ransomware-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8328155 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new Android malware named \'Goldoson\' has infiltrated the platform\'s official app store, Google Play, through 60 apps that collectively have 100 million downloads. [...]]]> 2023-04-15T10:07:14+00:00 https://www.bleepingcomputer.com/news/security/android-malware-infiltrates-60-google-play-apps-with-100m-installs/ www.secnews.physaphae.fr/article.php?IdArticle=8328129 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Vice Society ransomware gang is deploying a new, rather sophisticated PowerShell script to automate data theft from compromised networks. [...]]]> 2023-04-14T15:46:58+00:00 https://www.bleepingcomputer.com/news/security/vice-society-ransomware-uses-new-powershell-data-theft-tool-in-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8327913 False Ransomware,Tool None 2.0000000000000000 Bleeping Computer - Magazine Américain Cybersecurity firm Darktrace says it found no evidence that the LockBit ransomware gang breached its network after the group added an entry to their dark web leak platform, implying that they stole data from the company\'s systems. [...]]]> 2023-04-14T13:29:28+00:00 https://www.bleepingcomputer.com/news/security/darktrace-investigation-found-no-evidence-of-lockbit-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8327885 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft is warning of a phishing campaign targeting accounting firms and tax preparers with remote access malware allowing initial access to corporate networks. [...]]]> 2023-04-13T18:21:11+00:00 https://www.bleepingcomputer.com/news/security/microsoft-phishing-attack-targets-accountants-as-tax-day-approaches/ www.secnews.physaphae.fr/article.php?IdArticle=8327580 False Malware None 1.00000000000000000000 Bleeping Computer - Magazine Américain Microsoft is investigating an interoperability bug between the recently added Windows Local Administrator Password Solution (LAPS) feature and legacy LAPS policies. [...]]]> 2023-04-13T15:13:50+00:00 https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-laps-is-incompatible-with-legacy-policies/ www.secnews.physaphae.fr/article.php?IdArticle=8327541 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Dutch Police is sending emails to former RaidForums members, asking them to delete stolen data and stop illegal cyber activities and warning that they are not anonymous. [...]]]> 2023-04-13T12:42:40+00:00 https://www.bleepingcomputer.com/news/security/dutch-police-mails-raidforums-members-to-warn-theyre-being-watched/ www.secnews.physaphae.fr/article.php?IdArticle=8327502 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain WhatsApp announced today the introduction of several new security features, one of them dubbed "Device Verification" and designed to provide better protection against account takeover (ATO) attacks. [...]]]> 2023-04-13T09:00:00+00:00 https://www.bleepingcomputer.com/news/security/whatsapp-boosts-defense-against-account-takeover-via-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8327463 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Hyper-volumetric DDoS (distributed denial of service) attacks in the first quarter of 2023 have shifted from relying on compromised IoT devices to leveraging breached Virtual Private Servers (VPS). [...]]]> 2023-04-12T15:40:27+00:00 https://www.bleepingcomputer.com/news/security/ddos-attacks-shifting-to-vps-infrastructure-for-increased-power/ www.secnews.physaphae.fr/article.php?IdArticle=8327174 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A Kyocera Android printing app is vulnerable to improper intent handling, allowing other malicious applications to abuse the flaw to download and potentially install malware on devices. [...]]]> 2023-04-12T14:19:25+00:00 https://www.bleepingcomputer.com/news/security/kyocera-android-app-with-1m-installs-can-be-abused-to-drop-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8327156 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has shared guidance to help organizations check if hackers targeted or compromised machines with the BlackLotus UEFI bootkit by exploiting the CVE-2022-21894 vulnerability. [...]]]> 2023-04-12T12:39:59+00:00 https://www.bleepingcomputer.com/news/security/microsoft-shares-guidance-to-detect-blacklotus-uefi-bootkit-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8327129 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Hyundai has disclosed a data breach impacting Italian and French car owners and those who booked a test drive, warning that hackers gained access to personal data. [...]]]> 2023-04-12T10:55:52+00:00 https://www.bleepingcomputer.com/news/security/hyundai-data-breach-exposes-owner-details-in-france-and-italy/ www.secnews.physaphae.fr/article.php?IdArticle=8327095 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain External web applications can prove difficult to secure and are often targeted by hackers due to the range of vulnerabilities they may contain. These are 10 Common web application security risks you should know about. [...]]]> 2023-04-12T10:05:10+00:00 https://www.bleepingcomputer.com/news/apple/how-to-secure-web-applications-in-a-growing-digital-attack-surface/ www.secnews.physaphae.fr/article.php?IdArticle=8327096 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain AI research company OpenAI announced today the launch of a new bug bounty program to allow registered security researchers to discover vulnerabilities in its product line and get paid for reporting them via the Bugcrowd crowdsourced security platform. [...]]]> 2023-04-11T16:32:17+00:00 https://www.bleepingcomputer.com/news/security/openai-launches-bug-bounty-program-with-rewards-up-to-20k/ www.secnews.physaphae.fr/article.php?IdArticle=8326800 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are compromising websites to inject scripts that display fake Google Chrome automatic update errors that distribute malware to unaware visitors. [...]]]> 2023-04-11T16:14:37+00:00 https://www.bleepingcomputer.com/news/security/hacked-sites-caught-spreading-malware-via-fake-chrome-updates/ www.secnews.physaphae.fr/article.php?IdArticle=8326778 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft and Citizen Lab discovered commercial spyware made by an Israel-based company QuaDream used to compromise the iPhones of high-risk individuals using a zero-click exploit named ENDOFDAYS. [...]]]> 2023-04-11T13:46:43+00:00 https://www.bleepingcomputer.com/news/security/iphones-hacked-via-invisible-calendar-invites-to-drop-quadream-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8326735 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Kodi Foundation has disclosed a data breach after hackers stole the organization\'s MyBB forum database containing user data and private messages and attempted to sell it online. [...]]]> 2023-04-11T12:31:09+00:00 https://www.bleepingcomputer.com/news/security/kodi-discloses-data-breach-after-forum-database-for-sale-online/ www.secnews.physaphae.fr/article.php?IdArticle=8326719 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain VoIP communications company 3CX confirmed today that a North Korean hacking group was behind last month\'s supply chain attack. [...]]]> 2023-04-11T12:08:45+00:00 https://www.bleepingcomputer.com/news/security/3cx-confirms-north-korean-hackers-behind-supply-chain-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8326720 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Malware developers have created a thriving market promising to add malicious Android apps to Google Play for $2,000 to $20,000, depending on the type of malicious behavior cyber criminals request. [...]]]> 2023-04-11T11:30:18+00:00 https://www.bleepingcomputer.com/news/security/cybercriminals-charge-5k-to-add-android-malware-to-google-play/ www.secnews.physaphae.fr/article.php?IdArticle=8326693 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Yum! Brands, the brand owner of the KFC, Pizza Hut, and Taco Bell fast food chains, is now sending data breach notification letters to an undisclosed number of individuals whose personal information was stolen in a January 13 ransomware attack. [...]]]> 2023-04-10T14:23:40+00:00 https://www.bleepingcomputer.com/news/security/kfc-pizza-hut-owner-discloses-data-breach-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8326405 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to patch two security vulnerabilities actively exploited in the wild to hack iPhones, Macs, and iPads. [...]]]> 2023-04-10T12:24:43+00:00 https://www.bleepingcomputer.com/news/security/cisa-orders-govt-agencies-to-update-iphones-macs-by-may-1st/ www.secnews.physaphae.fr/article.php?IdArticle=8326366 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain A threat group called ARES is gaining notoriety on the cybercrime scene by selling and leaking databases stolen from corporations and public authorities. [...]]]> 2023-04-08T12:17:34+00:00 https://www.bleepingcomputer.com/news/security/breached-shutdown-sparks-migration-to-ares-data-leak-forums/ www.secnews.physaphae.fr/article.php?IdArticle=8326054 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Apple has released emergency security updates to address two new zero-day vulnerabilities exploited in attacks to compromise iPhones, Macs, and iPads. [...]]]> 2023-04-07T14:22:20+00:00 https://www.bleepingcomputer.com/news/apple/apple-fixes-two-zero-days-exploited-to-hack-iphones-and-macs/ www.secnews.physaphae.fr/article.php?IdArticle=8325888 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain Following reports of a ransomware attack, Taiwanese PC vendor MSI (short for Micro-Star International) confirmed today that its network was breached in a cyberattack. [...]]]> 2023-04-07T12:39:44+00:00 https://www.bleepingcomputer.com/news/security/msi-confirms-security-breach-following-ransomware-attack-claims/ www.secnews.physaphae.fr/article.php?IdArticle=8325843 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain An estimated one million WordPress websites have been compromised during a long-lasting campaign that exploits "all known and recently discovered theme and plugin vulnerabilities" to inject a Linux backdoor that researchers named Balad Injector. [...]]]> 2023-04-07T12:24:20+00:00 https://www.bleepingcomputer.com/news/security/massive-balada-injector-campaign-attacking-wordpress-sites-since-2017/ www.secnews.physaphae.fr/article.php?IdArticle=8325844 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The UK\'s Criminal Records Office (ACRO) has finally confirmed, after weeks of delaying issuing a statement, that online portal issues experienced since January 17 resulted from what it described as a "cyber security incident." [...]]]> 2023-04-06T15:38:41+00:00 https://www.bleepingcomputer.com/news/security/uk-criminal-records-office-confirms-cyber-incident-behind-portal-issues/ www.secnews.physaphae.fr/article.php?IdArticle=8325548 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A new malware strain called Rilide has been targeting Chromium-based web browsers like Google Chrome, Brave, Opera, and Microsoft Edge, to monitor user browsing history, snap screenshots, and inject scripts that can steal cryptocurrency. [...]]]> 2023-04-06T15:02:16+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-rilide-browser-extension-to-bypass-2fa-steal-crypto/ www.secnews.physaphae.fr/article.php?IdArticle=8325530 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Medusa ransomware gang has claimed a cyberattack on the Open University of Cyprus (OUC), which caused severe disruptions of the organization\'s operations. [...]]]> 2023-04-06T12:11:03+00:00 https://www.bleepingcomputer.com/news/security/medusa-ransomware-claims-attack-on-open-university-of-cyprus/ www.secnews.physaphae.fr/article.php?IdArticle=8325494 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain The developers of the Typhon info-stealer announced on a dark web forum that they have updated the malware to a major version they advertise as \'Typhon Reborn V2\' [...]]]> 2023-04-05T16:30:16+00:00 https://www.bleepingcomputer.com/news/security/typhon-info-stealing-malware-devs-upgrade-evasion-capabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8325193 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Google has announced a new Google Play Store data deletion policy that will require Android developers to provide users with an online option to delete their accounts and in-app data. [...]]]> 2023-04-05T16:16:05+00:00 https://www.bleepingcomputer.com/news/google/google-will-require-android-apps-to-let-you-delete-your-account/ www.secnews.physaphae.fr/article.php?IdArticle=8325194 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain eFile.com, an IRS-authorized e-file software service provider used by many for filing their tax returns, has been caught serving JavaScript malware. [...]]]> 2023-04-04T05:00:51+00:00 https://www.bleepingcomputer.com/news/security/irs-authorized-efilecom-tax-return-software-caught-serving-js-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8324604 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Some of the victims affected by the 3CX supply chain attack have also had their systems backdoored with Gopuram malware, with the threat actors specifically targeting cryptocurrency companies with this additional malicious payload. [...]]]> 2023-04-03T13:22:17+00:00 https://www.bleepingcomputer.com/news/security/cryptocurrency-companies-backdoored-in-3cx-supply-chain-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8324411 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A new ransomware gang named \'Money Message\' has appeared, targeting victims worldwide and demanding million-dollar ransoms not to leak data and release a decryptor. [...]]]> 2023-04-02T13:36:12+00:00 https://www.bleepingcomputer.com/news/security/new-money-message-ransomware-demands-million-dollar-ransoms/ www.secnews.physaphae.fr/article.php?IdArticle=8324178 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Fake extortionists are piggybacking on data breaches and ransomware incidents, threatening U.S. companies with publishing or selling allegedly stolen data unless they get paid. [...]]]> 2023-04-01T11:59:04+00:00 https://www.bleepingcomputer.com/news/security/fake-ransomware-gang-targets-us-orgs-with-empty-data-leak-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8324021 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Dish Network has been slapped with multiple class action lawsuits after it suffered a ransomware incident that was behind the company\'s multi-day "network outage." The legal actions aim to recover losses faced by DISH investors who were adversely affected by what has been dubbed a "securities fraud."  [...]]]> 2023-04-01T06:39:00+00:00 https://www.bleepingcomputer.com/news/security/dish-slapped-with-multiple-lawsuits-after-ransomware-cyber-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8323978 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain A 10-year-old Windows vulnerability is still being exploited in attacks to make it appear that executables are legitimately signed, with the fix from Microsoft still "opt-in" after all these years. Even worse, the fix is removed after upgrading to Windows 11. [...]]]> 2023-03-31T10:38:23+00:00 https://www.bleepingcomputer.com/news/microsoft/10-year-old-windows-bug-with-opt-in-fix-exploited-in-3cx-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8323780 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain TMX Finance and its subsidiaries TitleMax, TitleBucks, and InstaLoan have collectively disclosed a data breach that exposed the personal data of 4,822,580 customers. [...]]]> 2023-03-31T10:18:32+00:00 https://www.bleepingcomputer.com/news/security/consumer-lender-tmx-discloses-data-breach-impacting-48-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8323781 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies today to patch a set of security vulnerabilities exploited as zero-days in recent attacks to install commercial spyware on mobile devices. [...]]]> 2023-03-30T15:52:33+00:00 https://www.bleepingcomputer.com/news/security/cisa-orders-agencies-to-patch-bugs-exploited-to-drop-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8323562 False Threat,General Information,Legislation None 3.0000000000000000 Bleeping Computer - Magazine Américain Multiple malware botnets actively target Cacti and Realtek vulnerabilities in campaigns detected between January and March 2023, spreading ShellBot and Moobot malware. [...]]]> 2023-03-30T14:44:32+00:00 https://www.bleepingcomputer.com/news/security/realtek-and-cacti-flaws-now-actively-exploited-by-malware-botnets/ www.secnews.physaphae.fr/article.php?IdArticle=8323545 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A misconfigured Microsoft application allowed anyone to log in and modify Bing.com search results in real-time, as well as inject XSS attacks to potentially breach the accounts of Office 365 users. [...]]]> 2023-03-30T13:05:42+00:00 https://www.bleepingcomputer.com/news/security/bing-search-results-hijacked-via-misconfigured-microsoft-app/ www.secnews.physaphae.fr/article.php?IdArticle=8323501 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company\'s customers in an ongoing supply chain attack. [...]]]> 2023-03-29T18:46:47+00:00 https://www.bleepingcomputer.com/news/security/hackers-compromise-3cx-desktop-app-in-a-supply-chain-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8323303 False Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain Google\'s Threat Analysis Group (TAG) discovered several exploit chains using Android, iOS, and Chrome zero-day and n-day vulnerabilities to install commercial spyware and malicious apps on targets\' devices. [...]]]> 2023-03-29T08:00:00+00:00 https://www.bleepingcomputer.com/news/security/google-finds-more-android-ios-zero-days-used-to-install-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8322966 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain A surge of trojanized Tor Browser installers targets Russians and Eastern Europeans with clipboard-hijacking malware that steals infected users\' cryptocurrency transactions. [...]]]> 2023-03-28T17:49:13+00:00 https://www.bleepingcomputer.com/news/security/trojanized-tor-browsers-target-russians-with-crypto-stealing-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8322666 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Crown Resorts, Australia\'s largest gambling and entertainment company, has confirmed that it suffered a data breach after its GoAnywhere secure file-sharing server was breached using a zero-day vulnerability. [...]]]> 2023-03-28T12:26:40+00:00 https://www.bleepingcomputer.com/news/security/crown-resorts-confirms-ransom-demand-after-goanywhere-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8322587 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Though there are many ways to create passwords, not all are equally effective. It is important to consider the various ways a password-protected system can fail. [...]]]> 2023-03-28T10:07:14+00:00 https://www.bleepingcomputer.com/news/security/the-end-user-password-mistakes-putting-your-organization-at-risk/ www.secnews.physaphae.fr/article.php?IdArticle=8322551 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Australian loan giant Latitude Financial Services (Latitude) is warning customers that its data breach is much more significant than initially stated, taking the number of affected individuals from 328,000 to 14 million. [...]]]> 2023-03-28T09:50:17+00:00 https://www.bleepingcomputer.com/news/security/latitude-financial-data-breach-now-impacts-14-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8322519 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain New IcedID variants have been found without the usual online banking fraud functionality and instead focus on installing further malware on compromised systems. [...]]]> 2023-03-27T15:25:03+00:00 https://www.bleepingcomputer.com/news/security/new-icedid-variants-shift-from-bank-fraud-to-malware-delivery/ www.secnews.physaphae.fr/article.php?IdArticle=8322205 False Malware None 1.00000000000000000000 Bleeping Computer - Magazine Américain A new info-stealing malware named MacStealer is targeting Mac users, stealing their credentials stored in the iCloud KeyChain and web browsers, cryptocurrency wallets, and potentially sensitive files. [...]]]> 2023-03-27T13:16:39+00:00 https://www.bleepingcomputer.com/news/security/new-macstealer-macos-malware-steals-passwords-from-icloud-keychain/ www.secnews.physaphae.fr/article.php?IdArticle=8322144 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain A new Emotet phishing campaign is targeting U.S. taxpayers by impersonating W-9 tax forms allegedly sent by the Internal Revenue Service and companies you work with. [...]]]> 2023-03-26T10:46:56+00:00 https://www.bleepingcomputer.com/news/security/emotet-malware-distributed-as-fake-w-9-tax-forms-from-the-irs/ www.secnews.physaphae.fr/article.php?IdArticle=8321841 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new ransomware operation named \'Dark Power\' has appeared, and it has already listed its first victims on a dark web data leak site, threatening to publish the data if a ransom is not paid. [...]]]> 2023-03-25T12:29:04+00:00 https://www.bleepingcomputer.com/news/security/new-dark-power-ransomware-claims-10-victims-in-its-first-month/ www.secnews.physaphae.fr/article.php?IdArticle=8321675 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain American university researchers have developed a novel attack which they named "Near-Ultrasound Inaudible Trojan" (NUIT) that can launch silent attacks against devices powered by voice assistants, like smartphones, smart speakers, and other IoTs. [...]]]> 2023-03-25T11:14:07+00:00 https://www.bleepingcomputer.com/news/security/inaudible-ultrasound-attack-can-stealthily-control-your-phone-smart-speaker/ www.secnews.physaphae.fr/article.php?IdArticle=8321676 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain OpenAI says a Redis client open-source library bug was behind Monday\'s ChatGPT outage and data leak, where users saw other users\' personal information and chat queries. [...]]]> 2023-03-24T14:39:50+00:00 https://www.bleepingcomputer.com/news/security/openai-chatgpt-payment-data-leak-caused-by-open-source-bug/ www.secnews.physaphae.fr/article.php?IdArticle=8321313 False None ChatGPT,ChatGPT 3.0000000000000000 Bleeping Computer - Magazine Américain Consumer goods giant Procter & Gamble has confirmed a data breach affecting an undisclosed number of employees after its GoAnywhere MFT secure file-sharing platform was compromised in early February. [...]]]> 2023-03-24T13:54:29+00:00 https://www.bleepingcomputer.com/news/security/procter-and-gamble-confirms-data-theft-via-goanywhere-zero-day/ www.secnews.physaphae.fr/article.php?IdArticle=8321296 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The U.K.\'s National Crime Agency (NCA) revealed today that they created multiple fake DDoS-for-hire service websites to identify cybercriminals who utilize these platforms to attack organizations. [...]]]> 2023-03-24T12:35:07+00:00 https://www.bleepingcomputer.com/news/security/uk-creates-fake-ddos-for-hire-sites-to-identify-cybercriminals/ www.secnews.physaphae.fr/article.php?IdArticle=8321277 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A cyberespionage hacking group tracked as \'Bitter APT\' was recently seen targeting the Chinese nuclear energy industry using phishing emails to infect devices with malware downloaders. [...]]]> 2023-03-24T10:47:57+00:00 https://www.bleepingcomputer.com/news/security/bitter-espionage-hackers-target-chinese-nuclear-energy-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=8321252 False Malware,General Information None 2.0000000000000000 Bleeping Computer - Magazine Américain A malicious Python package on PyPI uses Unicode as an obfuscation technique to evade detection while stealing and exfiltrating developers\' account credentials and other sensitive data from compromised devices. [...]]]> 2023-03-23T11:09:06+00:00 https://www.bleepingcomputer.com/news/security/python-info-stealing-malware-uses-unicode-to-evade-detection/ www.secnews.physaphae.fr/article.php?IdArticle=8320929 False Malware,Hack None 3.0000000000000000 Bleeping Computer - Magazine Américain A new credit card stealing hacking campaign is doing things differently than we have seen in the past by hiding their malicious code inside the \'Authorize.net\' payment gateway module for WooCommcerce, allowing the breach to evade detection by security scans. [...]]]> 2023-03-22T15:55:58+00:00 https://www.bleepingcomputer.com/news/security/hackers-inject-credit-card-stealers-into-payment-processing-modules/ www.secnews.physaphae.fr/article.php?IdArticle=8320697 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Fresh produce giant Dole Food Company has confirmed that the information of an undisclosed number of employees was accessed during a February ransomware attack. [...]]]> 2023-03-22T15:04:35+00:00 https://www.bleepingcomputer.com/news/security/dole-discloses-employee-data-breach-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8320659 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers have discovered attacks from an advanced threat actor that used "a previously unseen malicious framework" called CommonMagic and a new backdoor called PowerMagic. [...]]]> 2023-03-21T16:33:24+00:00 https://www.bleepingcomputer.com/news/security/hackers-use-new-powermagic-and-commonmagic-malware-to-steal-data/ www.secnews.physaphae.fr/article.php?IdArticle=8320310 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Another ransomware operation, the LockBit gang, now threatens to leak what it describes as files stolen from the City of Oakland\'s systems. [...]]]> 2023-03-21T12:57:44+00:00 https://www.bleepingcomputer.com/news/security/lockbit-ransomware-gang-now-also-claims-city-of-oakland-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8320253 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain The Clop ransomware gang claims to have attacked Saks Fifth Avenue on its dark web leak site. Saks admits the incident is linked to the ongoing GoAnywhere MFT software exploits but states that no real customer data was stolen. [...]]]> 2023-03-21T05:25:02+00:00 https://www.bleepingcomputer.com/news/security/clop-ransomware-claims-saks-fifth-avenue-retailer-says-mock-data-stolen/ www.secnews.physaphae.fr/article.php?IdArticle=8320149 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain Ferrari has disclosed a data breach following a ransom demand received after attackers gained access to some of the company\'s IT systems. [...]]]> 2023-03-20T19:20:47+00:00 https://www.bleepingcomputer.com/news/security/ferrari-discloses-data-breach-after-receiving-ransom-demand/ www.secnews.physaphae.fr/article.php?IdArticle=8320064 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain 2023-03-19T10:20:40+00:00 https://www.bleepingcomputer.com/news/security/new-hinatabot-botnet-could-launch-massive-33-tbps-ddos-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8319793 False Malware None 4.0000000000000000 Bleeping Computer - Magazine Américain 2023-03-18T15:03:23+00:00 https://www.bleepingcomputer.com/news/security/emotet-malware-now-distributed-in-microsoft-onenote-files-to-evade-defenses/ www.secnews.physaphae.fr/article.php?IdArticle=8319645 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain 2023-03-17T19:01:27+00:00 https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-march-17th-2023-shifting-to-data-extortion/ www.secnews.physaphae.fr/article.php?IdArticle=8319514 False Ransomware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain 2023-03-17T16:21:13+00:00 https://www.bleepingcomputer.com/news/security/nba-alerts-fans-of-a-data-breach-exposing-personal-information/ www.secnews.physaphae.fr/article.php?IdArticle=8319495 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain 2023-03-17T12:20:58+00:00 https://www.bleepingcomputer.com/news/security/hitachi-energy-confirms-data-breach-after-clop-goanywhere-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8319459 False Ransomware,Data Breach,Industrial None 3.0000000000000000