This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-23T13:50:31+00:00 www.secnews.physaphae.fr Kaspersky Threatpost - Kaspersky est un éditeur antivirus russe 2021-10-05T14:30:59+00:00 https://threatpost.com/facebook-blames-outage-on-faulty-router-configuration/175322/ www.secnews.physaphae.fr/article.php?IdArticle=3471253 False Data Breach None None SecurityWeek - Security News 2021-10-05T12:19:08+00:00 http://feedproxy.google.com/~r/securityweek/~3/x6xwZ3JOZNk/telecoms-giant-syniverse-discloses-years-long-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3471024 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-10-01T16:30:00+00:00 https://www.infosecurity-magazine.com/news/major-data-breach-hits-neiman/ www.secnews.physaphae.fr/article.php?IdArticle=3454208 False Data Breach None None Security Intelligence - Site de news Américain 2021-10-01T16:05:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/RdJMg44imvg/ www.secnews.physaphae.fr/article.php?IdArticle=3453554 False Data Breach None None Security Affairs - Blog Secu 2021-10-01T13:32:49+00:00 https://securityaffairs.co/wordpress/122799/data-breach/neiman-marcus-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=neiman-marcus-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3452761 False Threat,Data Breach None None TroyHunt - Blog Security 2021-10-01T12:32:30+00:00 https://arstechnica.com/?p=1799906 www.secnews.physaphae.fr/article.php?IdArticle=3452068 False Data Breach None None Bleeping Computer - Magazine Américain 2021-10-01T11:49:22+00:00 https://www.bleepingcomputer.com/news/security/neiman-marcus-sends-notices-of-breach-to-43-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=3453437 False Data Breach None None SecurityWeek - Security News 2021-10-01T11:38:30+00:00 http://feedproxy.google.com/~r/securityweek/~3/0GjDXQg__QE/neiman-marcus-confirms-payment-cards-compromised-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3451990 False Data Breach None None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) ]]> 2021-09-30T02:09:19+00:00 http://feedproxy.google.com/~r/TheHackersNews/~3/-oYMaqQhJCo/immuniweb-launches-free-cloud-security.html www.secnews.physaphae.fr/article.php?IdArticle=3449804 False Data Breach None None Security Intelligence - Site de news Américain 2021-09-29T18:15:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/ac8TBrsIVac/ www.secnews.physaphae.fr/article.php?IdArticle=3465639 False Data Breach None None Bleeping Computer - Magazine Américain 2021-09-29T13:47:24+00:00 https://www.bleepingcomputer.com/news/security/trucking-giant-forward-air-reports-ransomware-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3444846 False Threat,Ransomware,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-09-27T19:04:00+00:00 https://www.infosecurity-magazine.com/news/california-hospital-sued-over-data/ www.secnews.physaphae.fr/article.php?IdArticle=3435038 False Data Breach None None SecurityWeek - Security News 2021-09-22T11:40:22+00:00 http://feedproxy.google.com/~r/securityweek/~3/XSgZEIn6PMc/uk-minister-sorry-over-afghan-interpreters%E2%80%99-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3411266 False Data Breach None None Security Intelligence - Site de news Américain 2021-09-21T16:00:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/0pwFDY-gUW0/ www.secnews.physaphae.fr/article.php?IdArticle=3407002 False Data Breach None None TroyHunt - Blog Security 2021-09-20T12:32:41+00:00 https://arstechnica.com/?p=1796568 www.secnews.physaphae.fr/article.php?IdArticle=3399705 False Data Breach None None Bleeping Computer - Magazine Américain 2021-09-20T09:43:58+00:00 https://www.bleepingcomputer.com/news/security/republican-governors-association-email-server-breached-by-state-hackers/ www.secnews.physaphae.fr/article.php?IdArticle=3400190 False Data Breach None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2021-09-14T20:36:00+00:00 https://www.infosecurity-magazine.com/news/massachusetts-ag-launches-probe/ www.secnews.physaphae.fr/article.php?IdArticle=3370434 False Data Breach None None CyberArk - Software Vendor 2021-09-14T20:35:54+00:00 https://www.cyberark.com/blog/cyber-insurance-how-to-meet-requirements-save-money-and-reduce-risk/ www.secnews.physaphae.fr/article.php?IdArticle=4593661 False Ransomware,Data Breach None None ComputerWeekly - Computer Magazine 2021-09-14T09:13:00+00:00 https://www.computerweekly.com/news/252506664/Mass-health-tracker-data-breach-has-UK-impact www.secnews.physaphae.fr/article.php?IdArticle=3370765 False Data Breach None None Mandiant - Blog Sécu de Mandiant The constant threat of data breach has organizations scrutinizing their ability to protect the business from the next big attack. But technology alone won\'t reduce your mean-time-to-detect and respond. According to Craig Robinson, Program Director within IDC\'s Security Services research practice and author of the latest IDC MarketScape study in U.S. Managed Detection and Response (MDR) Services, “there is going to be more and more of a need for MDR Services in the future.” On the heels of the IDC MarketScape publication, I sat down with Craig to discover what customers and vendors are seeing]]> 2021-09-14T04:04:51+00:00 https://www.mandiant.com/resources/blog/real-power-of-managed-detection-and-response-services www.secnews.physaphae.fr/article.php?IdArticle=8377545 False Threat,Data Breach,Studies None 3.0000000000000000 Kovrr - cyber risk management platform 2021-09-12T00:00:00+00:00 https://www.kovrr.com/reports/regulations-ransomware-a-quick-overview www.secnews.physaphae.fr/article.php?IdArticle=8393604 False Ransomware,Data Breach,Malware,Prediction,Vulnerability,Medical None 3.0000000000000000 Kaspersky Threatpost - Kaspersky est un éditeur antivirus russe 2021-09-10T20:17:59+00:00 https://threatpost.com/myrepublic-data-breach-protection/169382/ www.secnews.physaphae.fr/article.php?IdArticle=3362378 False Data Breach None None Bleeping Computer - Magazine Américain 2021-09-10T14:47:38+00:00 https://www.bleepingcomputer.com/news/security/myrepublic-discloses-data-breach-exposing-government-id-cards/ www.secnews.physaphae.fr/article.php?IdArticle=3361496 False Data Breach None None TechRepublic - Security News US 2021-09-07T18:50:08+00:00 https://www.techrepublic.com/article/data-privacy-day-6-months-later-a-look-at-privacy-trends-and-solutions/#ftag=RSS56d97e7 www.secnews.physaphae.fr/article.php?IdArticle=3348147 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-09-06T08:28:00+00:00 https://www.infosecurity-magazine.com/news/dallas-school-district-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3340817 False Data Breach None None SecurityWeek - Security News 2021-09-05T10:35:43+00:00 http://feedproxy.google.com/~r/securityweek/~3/Mg2LUmthm1w/breach-exposed-dallas-student-parent-teacher-personal-data www.secnews.physaphae.fr/article.php?IdArticle=3337544 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-09-03T15:57:00+00:00 https://www.infosecurity-magazine.com/news/sues-syracuse-uni-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3331152 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-09-03T02:10:00+00:00 https://www.infosecurity-magazine.com/news/uk-gun-owners-data-exposed/ www.secnews.physaphae.fr/article.php?IdArticle=3329029 False Data Breach None None SecurityWeek - Security News 2021-09-02T12:31:12+00:00 http://feedproxy.google.com/~r/securityweek/~3/6lqFBMsLZA4/recruiting-firm-apparently-pays-ransom-after-being-targeted-hackers www.secnews.physaphae.fr/article.php?IdArticle=3325322 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-31T17:05:00+00:00 https://www.infosecurity-magazine.com/news/dupage-medical-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3316527 False Data Breach,Hack None None Security Intelligence - Site de news Américain 2021-08-31T16:30:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/lHGcEO6oofA/ www.secnews.physaphae.fr/article.php?IdArticle=3316615 False Data Breach None None Bleeping Computer - Magazine Américain 2021-08-27T12:51:07+00:00 https://www.bleepingcomputer.com/news/security/t-mobile-ceo-hackers-brute-forced-their-way-through-our-network/ www.secnews.physaphae.fr/article.php?IdArticle=3297967 False Data Breach None None We Live Security - Editeur Logiciel Antivirus ESET 2021-08-27T09:30:28+00:00 http://feedproxy.google.com/~r/eset/blog/~3/vxF0bhM3kjw/ www.secnews.physaphae.fr/article.php?IdArticle=3302225 False Data Breach None None Security Affairs - Blog Secu 2021-08-26T08:16:19+00:00 https://securityaffairs.co/wordpress/121470/cyber-crime/swiss-town-rolle-ransomware.html?utm_source=rss&utm_medium=rss&utm_campaign=swiss-town-rolle-ransomware www.secnews.physaphae.fr/article.php?IdArticle=3287539 False Threat,Ransomware,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-25T18:55:00+00:00 https://www.infosecurity-magazine.com/news/revere-health-breach-impacts/ www.secnews.physaphae.fr/article.php?IdArticle=3283127 False Data Breach None None Security Intelligence - Site de news Américain 2021-08-25T16:00:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/uAEnDKbcbkU/ www.secnews.physaphae.fr/article.php?IdArticle=3282985 False Data Breach,Guideline None None SecurityWeek - Security News 2021-08-24T18:47:41+00:00 http://feedproxy.google.com/~r/securityweek/~3/ASNB6wK58Vc/nokia-owned-sac-wireless-discloses-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3276625 False Data Breach None None SecurityWeek - Security News 2021-08-24T11:08:36+00:00 http://feedproxy.google.com/~r/securityweek/~3/uwpn_6Iep5g/t-mobile-sued-over-data-breach-affecting-millions-customers www.secnews.physaphae.fr/article.php?IdArticle=3274543 False Data Breach None 5.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine 2021-08-23T20:49:00+00:00 https://www.infosecurity-magazine.com/news/att-denies-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3272041 False Threat,Data Breach None None Bleeping Computer - Magazine Américain 2021-08-23T12:16:54+00:00 https://www.bleepingcomputer.com/news/security/nokia-subsidiary-discloses-data-breach-after-conti-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=3270743 False Ransomware,Data Breach None None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) ]]> 2021-08-23T06:48:23+00:00 http://feedproxy.google.com/~r/TheHackersNews/~3/5sG8irJjwRQ/researchers-detail-modus-operandi-of.html www.secnews.physaphae.fr/article.php?IdArticle=3270000 False Data Breach None None Security Affairs - Blog Secu 2021-08-22T07:59:02+00:00 https://securityaffairs.co/wordpress/121361/data-breach/t-mobile-data-breach-update.html?utm_source=rss&utm_medium=rss&utm_campaign=t-mobile-data-breach-update www.secnews.physaphae.fr/article.php?IdArticle=3268011 False Data Breach None None Graham Cluley - Blog Security 2021-08-21T11:08:34+00:00 https://grahamcluley.com/t-mobile-confirms-fifth-data-breach-in-three-years/ www.secnews.physaphae.fr/article.php?IdArticle=3263735 False Data Breach None None McAfee Labs - Editeur Logiciel T-Mobile, the popular US mobile phone service provider, recently confirmed a data breach affecting 7.8 million current customers and 40 million records from past or prospective customers. The... ]]> 2021-08-20T19:10:32+00:00 https://www.mcafee.com/blogs/consumer/mcafee-consumer-news/t-mobiles-data-breach-exposes-the-personal-data-of-40-million/ www.secnews.physaphae.fr/article.php?IdArticle=3260868 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-20T18:56:00+00:00 https://www.infosecurity-magazine.com/news/nyc-teachers-social-security/ www.secnews.physaphae.fr/article.php?IdArticle=3263028 False Data Breach None None IT Security Guru - Blog Sécurité 2021-08-20T13:38:31+00:00 https://www.itsecurityguru.org/2021/08/20/t-mobile-data-breach-impacts-over-40-million-users-security-experts-have-their-say/?utm_source=rss&utm_medium=rss&utm_campaign=t-mobile-data-breach-impacts-over-40-million-users-security-experts-have-their-say www.secnews.physaphae.fr/article.php?IdArticle=3259293 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain 2021-08-20T12:30:05+00:00 https://www.bleepingcomputer.com/news/security/t-mobile-data-breach-just-got-worse-now-at-54-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=3259740 False Data Breach None None TechRepublic - Security News US 2021-08-20T11:29:47+00:00 https://www.techrepublic.com/article/how-to-protect-your-t-mobile-account-in-light-of-the-latest-data-breach/#ftag=RSS56d97e7 www.secnews.physaphae.fr/article.php?IdArticle=3259008 False Data Breach None None Bleeping Computer - Magazine Américain 2021-08-20T09:43:40+00:00 https://www.bleepingcomputer.com/news/security/atandt-denies-data-breach-after-hacker-auctions-70-million-user-database/ www.secnews.physaphae.fr/article.php?IdArticle=3259202 False Threat,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-19T15:05:00+00:00 https://www.infosecurity-magazine.com/news/jpmorgan-chase-notifies-customers/ www.secnews.physaphae.fr/article.php?IdArticle=3255227 False Data Breach None None The Last Watchdog - Blog Sécurité de Byron V Acohido formal apology and offered free identity theft recovery services to nearly 48 million customers for whom the telecom giant failed to protect their sensitive personal information. At the start of this week, word got out … (more…) ]]> 2021-08-19T11:53:19+00:00 https://www.lastwatchdog.com/roundtable-why-t-mobiles-latest-huge-data-breach-could-fuel-attacks-directed-at-mobile-devices/ www.secnews.physaphae.fr/article.php?IdArticle=3257090 False Data Breach None None Schneier on Security - Chercheur Cryptologue Américain big one: As first reported by Motherboard on Sunday, someone on the dark web claims to have obtained the data of 100 million from T-Mobile’s servers and is selling a portion of it on an underground forum for 6 bitcoin, about $280,000. The trove includes not only names, phone numbers, and physical addresses but also more sensitive data like social security numbers, driver’s license information, and IMEI numbers, unique identifiers tied to each mobile device. Motherboard confirmed that samples of the data “contained accurate information on T-Mobile customers.”...]]> 2021-08-19T11:17:56+00:00 https://www.schneier.com/blog/archives/2021/08/t-mobile-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=3254745 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-19T08:34:00+00:00 https://www.infosecurity-magazine.com/news/tmobile-49-million-customers-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3253713 False Data Breach None None Krebs on Security - Chercheur Américain 2021-08-18T16:24:33+00:00 https://krebsonsecurity.com/2021/08/t-mobile-breach-exposed-ssn-dob-of-40m-people/ www.secnews.physaphae.fr/article.php?IdArticle=3250229 False Data Breach None None Security Affairs - Blog Secu 2021-08-18T16:10:56+00:00 https://securityaffairs.co/wordpress/121246/data-breach/t-mobile-data-breach-4.html?utm_source=rss&utm_medium=rss&utm_campaign=t-mobile-data-breach-4 www.secnews.physaphae.fr/article.php?IdArticle=3250242 False Threat,Data Breach None None Security Intelligence - Site de news Américain 2021-08-18T13:00:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/wz8BSFoe3uk/ www.secnews.physaphae.fr/article.php?IdArticle=3249013 False Data Breach None None SecurityWeek - Security News 2021-08-18T12:14:53+00:00 http://feedproxy.google.com/~r/securityweek/~3/fROq1CpNmKM/t-mobile-confirms-data-breach-impacts-millions-customers www.secnews.physaphae.fr/article.php?IdArticle=3248890 False Data Breach None None Anomali - Firm Blog Figure 1 - IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed. Trending Cyber News and Threat Intelligence Colonial Pipeline Reports Data Breach After May Ransomware Attack (published: August 16, 2021) Colonial Pipeline, the largest fuel pipeline in the United States, is sending notification letters to 5,810 individuals affected by the data breach resulting from the DarkSide ransomware attack. During the incident, which occurred during May this year, DarkSide also stole roughly 100GB of files in about two hours. Right after the attack Colonial Pipeline took certain systems offline, temporarily halted all pipeline operations, and paid $4.4 million worth of cryptocurrency for a decryptor, most of it later recovered by the FBI. The DarkSide ransomware gang abruptly shut down their operation due to increased level of attention from governments, but later resurfaced under new name BlackMatter. Emsisoft CTO Fabian Wosar confirmed that both BlackMatter RSA and Salsa20 implementation including their usage of a custom matrix comes from DarkSide. Analyst Comment: BlackMatter (ex DarkSide) group added "Oil and Gas industry (pipelines, oil refineries)" to their non-target list, but ransomware remains a significant threat given profitability and the growing number of ransomware threat actors with various levels of recklessness. Double-extortion schemes are adding data exposure to a company's risks. Stopping ransomware affiliates requires defense in depth including: patch management, enhancing your Endpoint Detection and Response (EDR) tools with ThreatStream, the threat intelligence platform (TIP), and utilizing data loss prevention systems (DLP). MITRE ATT&CK: [MITRE ATT&CK] Data Encrypted for Impact - T1486 Tags: Darkside, BlackMatter, Colonial Pipeline, Oil and Gas, Ransomware, Salsa20, Data Breach, USA Indra — Hackers Behind Recent Attacks on Iran (published: August 14, 2021) Check Point Research discovered that a July 2021 cyber attack against Iranian railway system was committed by Indra, a non-government group. The attackers had access to the targeted networks for a month and then deployed a previously unseen file wiper called Meteor effectively disrupting train service throughout the country. Previous versions of the Indra wiper named Stardust and Comet were seen in Syria, where Indra was attacking oil, airline, and financial sectors at least since 2019. Analyst Comment: It is concerning that even non-government threat actors can damage a critical infrastructure in a large country. Similar to ransomware protection, with regards to wiper attacks organizations should improve their intrusion detection methods and have a resilient backup system. MITRE ATT&CK: [MITRE ATT&CK] Data Destruction - T1485 | [MITRE ATT&CK] File Deletion - T1107 | ]]> 2021-08-17T17:56:00+00:00 https://www.anomali.com/blog/anomali-cyber-watch-anomali-cyber-watch-aggah-using-compromised-websites-to-target-businesses-across-asia-ech0raix-targets-both-qnap-and-nas-lockbit-20-targeted-accenture-and-more www.secnews.physaphae.fr/article.php?IdArticle=3243789 False Threat,Ransomware,Data Breach,Malware,Hack,Guideline,Tool,Vulnerability APT 27,APT 27 None CybeReason - Vendor blog Reports came out this week that T-Mobile had suffered a data breach. T-Mobile claims that the leak has been sealed. They deserve credit for responding quickly, but for some the damage may already be done. The data itself may not pose a direct risk to anyone, but the more information cybercriminals can obtain and correlate, the more effective future attacks will be. ]]> 2021-08-17T17:51:52+00:00 https://www.cybereason.com/blog/t-mobile-data-breach-amplifies-larger-cybersecurity-challenge www.secnews.physaphae.fr/article.php?IdArticle=3243824 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-17T08:45:00+00:00 https://www.infosecurity-magazine.com/news/colonial-pipeline-admits-data/ www.secnews.physaphae.fr/article.php?IdArticle=3241690 False Ransomware,Data Breach None None Security Affairs - Blog Secu 2021-08-17T07:04:00+00:00 https://securityaffairs.co/wordpress/121209/data-breach/colonial-pipeline-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=colonial-pipeline-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3241375 False Ransomware,Data Breach None None ComputerWeekly - Computer Magazine 2021-08-17T05:41:00+00:00 https://www.computerweekly.com/news/252505411/Educational-publisher-Pearson-fined-for-data-breach-cover-up www.secnews.physaphae.fr/article.php?IdArticle=3241813 False Data Breach None None Krebs on Security - Chercheur Américain 2021-08-16T23:53:37+00:00 https://krebsonsecurity.com/2021/08/t-mobile-investigating-claims-of-massive-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3240077 False Data Breach None None Security Affairs - Blog Secu 2021-08-16T21:27:53+00:00 https://securityaffairs.co/wordpress/121205/data-breach/t-mobile-confirms-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=t-mobile-confirms-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3239387 False Threat,Data Breach None None Wired Threat Level - Security News 2021-08-16T20:44:22+00:00 https://www.wired.com/story/t-mobile-hack-data-phishing www.secnews.physaphae.fr/article.php?IdArticle=3239188 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-16T19:45:00+00:00 https://www.infosecurity-magazine.com/news/tmobile-investigates-possible-data/ www.secnews.physaphae.fr/article.php?IdArticle=3238507 False Data Breach None None Bleeping Computer - Magazine Américain 2021-08-16T15:52:44+00:00 https://www.bleepingcomputer.com/news/security/t-mobile-confirms-servers-were-hacked-investigates-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3238519 False Threat,Data Breach None None Bleeping Computer - Magazine Américain 2021-08-16T15:23:21+00:00 https://www.bleepingcomputer.com/news/security/education-giant-pearson-fined-1m-for-downplaying-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3238521 False Data Breach None None Bleeping Computer - Magazine Américain 2021-08-16T07:23:27+00:00 https://www.bleepingcomputer.com/news/security/colonial-pipeline-reports-data-breach-after-may-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=3236058 False Ransomware,Data Breach None None Security Affairs - Blog Secu 2021-08-16T06:47:07+00:00 https://securityaffairs.co/wordpress/121176/data-breach/t-mobile-investigates-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=t-mobile-investigates-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3235192 False Threat,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-12T19:29:00+00:00 https://www.infosecurity-magazine.com/news/chanel-apologizes-for-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3218969 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-10T18:11:00+00:00 https://www.infosecurity-magazine.com/news/upmc-to-pay-265m-to-settle-data/ www.secnews.physaphae.fr/article.php?IdArticle=3206065 False Data Breach None None Security Affairs - Blog Secu 2021-08-04T21:39:51+00:00 https://securityaffairs.co/wordpress/120816/data-breach/advanced-technology-ventures-ransomware-attack.html?utm_source=rss&utm_medium=rss&utm_campaign=advanced-technology-ventures-ransomware-attack www.secnews.physaphae.fr/article.php?IdArticle=3174588 True Threat,Ransomware,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2021-08-04T14:22:00+00:00 https://www.infosecurity-magazine.com/news/personal-data-breach-fall-rising/ www.secnews.physaphae.fr/article.php?IdArticle=3173082 False Data Breach None None Anomali - Firm Blog Figure 1 - IOC Summary Charts. These charts summarize the IOCs attached to this magazine and provide a glimpse of the threats discussed. Trending Cyber News and Threat Intelligence BazaCall: Phony Call Centers Lead to Exfiltration and Ransomware (published: July 29, 2021) BazaCall campaigns have forgone malicious links or attachments in email messages in favor of phone numbers that recipients are misled into calling. Actual humans then provide the callers with step-by-step instructions for installing malware. The BazaLoader payload from these campaigns also gives a remote attacker hands-on-keyboard control on an affected user's device, which allows for a fast network compromise. The lack of obvious malicious elements in the delivery methods could render typical ways of detecting spam and phishing emails ineffective. Analyst Comment: All users should be informed of the risk phishing poses, and how to safely make use of email. They should take notice that a phone number sent to them can be fraudulent too. In the case of infection, the affected system should be wiped and reformatted, and if at all possible the ransom should not be paid. Implement a backup solution for your users to ease the pain of losing sensitive and important data. MITRE ATT&CK: [MITRE ATT&CK] User Execution - T1204 | [MITRE ATT&CK] Credential Dumping - T1003 | [MITRE ATT&CK] Data Encrypted for Impact - T1486 Tags: BazaCall, Bazaar, Ransomware Crimea “Manifesto” Deploys VBA Rat Using Double Attack Vectors (published: July 29, 2021) Hossein Jazi has identified a suspicious document named "Манифест". It downloads and executes two templates: one is macro-enabled and the other is an Internet Explorer exploit. While both techniques rely on template injection to drop a full-featured Remote Access Trojan, the IE exploit is an unusual discovery. Analyst Comment: Files that request content be enabled to properly view the document are often signs of a phishing attack. If such a file is sent to you via a known and trusted sender, that individual should be contacted to verify the authenticity of the attachment prior to opening. Thus, any such file attachment sent by unknown senders should be viewed with the utmost scrutiny, and the attachments should be avoided and properly reported to appropriate personnel. MITRE ATT&CK: [MITRE ATT&CK] User Execution - T1204 | [MITRE ATT&CK] Template Injection - T1221 | [MITRE ATT&CK] Scheduled Task - T1053 | [MITRE ATT&CK] Modify Registry - T1112 Tags: VBA, Russia, RAT, CVE-]]> 2021-08-03T15:00:00+00:00 https://www.anomali.com/blog/anomali-cyber-watch-lockbit-ransomware-phony-call-centers-lead-to-exfiltration-and-ransomware-vba-rat-using-double-attack-vectors-and-more www.secnews.physaphae.fr/article.php?IdArticle=3166543 False Threat,Ransomware,Data Breach,Spam,Malware,Guideline None None CybeReason - Vendor blog A recent global research report conducted by Cybereason, titled Ransomware: The True Cost to Business, revealed that the vast majority of organizations that have suffered a ransomware attack have experienced significant impact to the business, including loss of revenue, damage to the organization's brand, unplanned workforce reductions, and little in the way of relief from cyber insurance policies. An esteemed panel of subject matter experts will examine the research findings and discuss how organizations can better prepare to defend against and respond to a ransomware attack, and the full on-demand webinar can be found here. Recently, IBM came out with its Cost of a Data Breach Report 2021. This publication synthesizes the Ponemon Institute's research of 537 breaches that affected 17 different industries and that occurred across 17 countries and regions. It also draws on nearly 3,500 interviews to understand how much those breaches cost organizations and what decision makers are doing to better defend against security incidents going forward.]]> 2021-08-02T12:07:17+00:00 https://www.cybereason.com/blog/what-the-growing-costs-of-a-data-breach-means-for-the-business www.secnews.physaphae.fr/article.php?IdArticle=3161394 True Ransomware,Data Breach None None Security Intelligence - Site de news Américain 2021-07-30T12:25:45+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/9EOeD00aS5g/ www.secnews.physaphae.fr/article.php?IdArticle=3151621 False Data Breach None None TechRepublic - Security News US 2021-07-28T17:28:21+00:00 https://www.techrepublic.com/article/data-breach-costs-hit-record-high-due-to-pandemic/#ftag=RSS56d97e7 www.secnews.physaphae.fr/article.php?IdArticle=3145467 False Data Breach None None Security Affairs - Blog Secu 2021-07-28T14:26:36+00:00 https://securityaffairs.co/wordpress/120627/data-breach/cost-of-data-breach-2021.html?utm_source=rss&utm_medium=rss&utm_campaign=cost-of-data-breach-2021 www.secnews.physaphae.fr/article.php?IdArticle=3145029 False Data Breach None None SecurityWeek - Security News 2021-07-28T12:31:39+00:00 http://feedproxy.google.com/~r/securityweek/~3/fJqYMc-VoaY/university-san-diego-health-says-personal-information-stolen-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3144654 False Data Breach None None SecurityWeek - Security News 2021-07-28T11:13:44+00:00 http://feedproxy.google.com/~r/securityweek/~3/yWJmWkV-oC4/ibm-average-cost-data-breach-exceeds-42-million www.secnews.physaphae.fr/article.php?IdArticle=3144307 False Data Breach None None Security Intelligence - Site de news Américain 2021-07-28T10:00:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/oPFBrnVvzTw/ www.secnews.physaphae.fr/article.php?IdArticle=3144135 False Data Breach None None IT Security Guru - Blog Sécurité 2021-07-28T08:16:04+00:00 https://www.itsecurityguru.org/2021/07/28/cost-of-a-data-breach-hits-record-high-during-the-pandemic/?utm_source=rss&utm_medium=rss&utm_campaign=cost-of-a-data-breach-hits-record-high-during-the-pandemic www.secnews.physaphae.fr/article.php?IdArticle=3143706 True Data Breach None None Security Intelligence - Site de news Américain 2021-07-28T06:39:34+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/L58L1_Ktj1s/ www.secnews.physaphae.fr/article.php?IdArticle=3143481 False Data Breach None None ZD Net - Magazine Info 2021-07-28T04:01:02+00:00 https://www.zdnet.com/article/enterprise-data-breach-cost-reached-record-high-during-covid-19-pandemic/#ftag=RSSbaffb68 www.secnews.physaphae.fr/article.php?IdArticle=3143379 False Data Breach None None Bleeping Computer - Magazine Américain 2021-07-27T16:06:32+00:00 https://www.bleepingcomputer.com/news/security/uc-san-diego-health-discloses-data-breach-after-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=3141650 False Data Breach None None CybeReason - Vendor blog The average cost of a data breach in 2020 was $3.86 million, according to IBM. It was even more expensive for certain entities. Indeed, that cost rose to $8.64 million when attackers succeeded in breaching an organization located in the United States. It was the same story in the healthcare industry, with the cost of data breaches climbing to $7.13 million for affected entities. ]]> 2021-07-27T12:56:20+00:00 https://www.cybereason.com/blog/the-xdr-advantage-eliminate-dwell-time-and-gain-visibility www.secnews.physaphae.fr/article.php?IdArticle=3139895 False Data Breach None None Veracode - Application Security Research, News, and Education Blog 2021-07-26T09:56:06+00:00 https://www.veracode.com/blog/secure-development/announcing-veracode-security-labs-free-trial www.secnews.physaphae.fr/article.php?IdArticle=3134024 False Data Breach,Guideline None None Veracode - Application Security Research, News, and Education Blog 2021-07-23T15:50:53+00:00 https://www.veracode.com/blog/intro-appsec/what-will-cybersecurity-look-over-next-five-years www.secnews.physaphae.fr/article.php?IdArticle=3121889 False Threat,Data Breach None None Security Affairs - Blog Secu 2021-07-23T13:59:38+00:00 https://securityaffairs.co/wordpress/120477/data-breach/us-municipalities-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=us-municipalities-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3119568 False Data Breach None None Troy Hunt - Blog 2021-07-21T19:36:08+00:00 https://www.troyhunt.com/your-work-email-address-is-your-works-email-address/ www.secnews.physaphae.fr/article.php?IdArticle=3107620 False Data Breach None None Security Intelligence - Site de news Américain 2021-07-20T14:30:00+00:00 http://feedproxy.google.com/~r/SecurityIntelligence/~3/PJym_RwnLKI/ www.secnews.physaphae.fr/article.php?IdArticle=3100566 False Threat,Data Breach None None Bleeping Computer - Magazine Américain 2021-07-19T08:02:33+00:00 https://www.bleepingcomputer.com/news/security/saudi-aramco-data-breach-sees-1-tb-stolen-data-for-sale/ www.secnews.physaphae.fr/article.php?IdArticle=3092919 False Data Breach None None Bleeping Computer - Magazine Américain 2021-07-18T11:22:44+00:00 https://www.bleepingcomputer.com/news/security/ransomware-hits-law-firm-counseling-fortune-500-global-500-companies/ www.secnews.physaphae.fr/article.php?IdArticle=3090521 False Ransomware,Data Breach None None Bleeping Computer - Magazine Américain 2021-07-18T10:16:32+00:00 https://www.bleepingcomputer.com/news/security/comparis-customers-targeted-by-scammers-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=3090522 False Ransomware,Data Breach,Guideline None None Security Affairs - Blog Secu 2021-07-13T07:04:18+00:00 https://securityaffairs.co/wordpress/120029/cyber-crime/guess-discloses-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=guess-discloses-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3055914 True Ransomware,Data Breach None None SecurityWeek - Security News 2021-07-13T04:03:27+00:00 http://feedproxy.google.com/~r/securityweek/~3/UAfWQsQzUSY/fashion-retailer-guess-notifies-users-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3055739 False Ransomware,Data Breach None None Bleeping Computer - Magazine Américain 2021-07-12T12:33:40+00:00 https://www.bleepingcomputer.com/news/security/fashion-retailer-guess-discloses-data-breach-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=3052715 False Ransomware,Data Breach None None Graham Cluley - Blog Security 2021-07-12T10:20:27+00:00 https://grahamcluley.com/spreadshop-hacked-t-shirt-lovers-warned-of-considerably-vicious-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=3051225 False Data Breach None None Security Affairs - Blog Secu 2021-07-11T05:21:09+00:00 https://securityaffairs.co/wordpress/119954/data-breach/mint-mobile-data-breach.html?utm_source=rss&utm_medium=rss&utm_campaign=mint-mobile-data-breach www.secnews.physaphae.fr/article.php?IdArticle=3048666 True Data Breach None None