This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-05T13:08:08+00:00 www.secnews.physaphae.fr The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The Cyber Police of Ukraine, in collaboration with law enforcement officials from Czechia, has arrested several members of a cybercriminal gang that set up phishing sites to target European users. Two of the apprehended affiliates are believed to be organizers, with 10 others detained in other territories across the European Union. The suspects are alleged to have created more than 100 phishing]]> 2023-03-31T17:31:00+00:00 https://thehackernews.com/2023/03/cyber-police-of-ukraine-busted-phishing.html www.secnews.physaphae.fr/article.php?IdArticle=8323754 False Legislation None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Organizations rely on Incident response to ensure they are immediately aware of security incidents, allowing for quick action to minimize damage. They also aim to avoid follow on attacks or future related incidents. The SANS Institute provides research and education on information security. In the upcoming webinar, we\'ll outline, in detail, six components of a SANS incident response plan,]]> 2023-03-31T17:17:00+00:00 https://thehackernews.com/2023/03/deep-dive-into-6-key-steps-to.html www.secnews.physaphae.fr/article.php?IdArticle=8323755 False None None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Enterprise communications software maker 3CX on Thursday confirmed that multiple versions of its desktop app for Windows and macOS are affected by a supply chain attack. The version numbers include 18.12.407 and 18.12.416 for Windows and 18.11.1213, 18.12.402, 18.12.407, and 18.12.416 for macOS. The company said it\'s engaging the services of Google-owned Mandiant to review the incident. In the]]> 2023-03-31T15:07:00+00:00 https://thehackernews.com/2023/03/3cx-supply-chain-attack-heres-what-we.html www.secnews.physaphae.fr/article.php?IdArticle=8323728 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Details have emerged about a now-patched vulnerability in Azure Service Fabric Explorer (SFX) that could lead to unauthenticated remote code execution. Tracked as CVE-2023-23383 (CVSS score: 8.2), the issue has been dubbed "Super FabriXss" by Orca Security, a nod to the FabriXss flaw (CVE-2022-35829, CVSS score: 6.2) that was fixed by Microsoft in October 2022. "The Super FabriXss vulnerability]]> 2023-03-30T22:32:00+00:00 https://thehackernews.com/2023/03/researchers-detail-severe-super.html www.secnews.physaphae.fr/article.php?IdArticle=8323528 False Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A Chinese state-sponsored threat activity group tracked as RedGolf has been attributed to the use of a custom Windows and Linux backdoor called KEYPLUG. "RedGolf is a particularly prolific Chinese state-sponsored threat actor group that has likely been active for many years against a wide range of industries globally," Recorded Future told The Hacker News. "The group has shown the ability to]]> 2023-03-30T21:28:00+00:00 https://thehackernews.com/2023/03/chinese-redgolf-group-targeting-windows.html www.secnews.physaphae.fr/article.php?IdArticle=8323506 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A group of academics from Northeastern University and KU Leuven has disclosed a fundamental design flaw in the IEEE 802.11 Wi-Fi protocol standard, impacting a wide range of devices running Linux, FreeBSD, Android, and iOS. Successful exploitation of the shortcoming could be abused to hijack TCP connections or intercept client and web traffic, researchers Domien Schepers, Aanjhan Ranganathan,]]> 2023-03-30T17:51:00+00:00 https://thehackernews.com/2023/03/new-wi-fi-protocol-security-flaw.html www.secnews.physaphae.fr/article.php?IdArticle=8323450 False Data Breach,Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Multi-cloud data storage, once merely a byproduct of the great cloud migration, has now become a strategy for data management. "Multi-cloud by design," and its companion the supercloud, is an ecosystem in which several cloud systems work together to provide many organizational benefits, including increased scale and overall resiliency.And now, even security teams who have long been the holdout]]> 2023-03-30T16:47:00+00:00 https://thehackernews.com/2023/03/cyberstorage-leveraging-multi-cloud-to.html www.secnews.physaphae.fr/article.php?IdArticle=8323423 False Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new "comprehensive toolset" called AlienFox is being distributed on Telegram as a way for threat actors to harvest credentials from API keys and secrets from popular cloud service providers. "The spread of AlienFox represents an unreported trend towards attacking more minimal cloud services, unsuitable for crypto mining, in order to enable and expand subsequent campaigns," SentinelOne security]]> 2023-03-30T15:38:00+00:00 https://thehackernews.com/2023/03/alienfox-malware-targets-api-keys-and.html www.secnews.physaphae.fr/article.php?IdArticle=8323406 False Malware,Threat,Prediction,Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 3CX said it\'s working on a software update for its desktop app after multiple cybersecurity vendors sounded the alarm on what appears to be an active supply chain attack that\'s using digitally signed and rigged installers of the popular voice and video conferencing software to target downstream customers. "The trojanized 3CX desktop app is the first stage in a multi-stage attack chain that pulls]]> 2023-03-30T12:01:00+00:00 https://thehackernews.com/2023/03/3cx-desktop-app-targeted-in-supply.html www.secnews.physaphae.fr/article.php?IdArticle=8323365 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A number of zero-day vulnerabilities that were addressed last year were exploited by commercial spyware vendors to target Android and iOS devices, Google\'s Threat Analysis Group (TAG) has revealed. The two distinct campaigns were both limited and highly targeted, taking advantage of the patch gap between the release of a fix and when it was actually deployed on the targeted devices. "These]]> 2023-03-29T19:22:00+00:00 https://thehackernews.com/2023/03/spyware-vendors-caught-exploiting-zero.html www.secnews.physaphae.fr/article.php?IdArticle=8322970 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An unknown Chinese state-sponsored hacking group has been linked to a novel piece of malware aimed at Linux servers. French cybersecurity firm ExaTrack, which found three samples of the previously documented malicious software that date back to early 2022, dubbed it Mélofée. One of the artifacts is designed to drop a kernel-mode rootkit that\'s based on an open source project referred to as]]> 2023-03-29T17:31:00+00:00 https://thehackernews.com/2023/03/melofee-researchers-uncover-new-linux.html www.secnews.physaphae.fr/article.php?IdArticle=8322933 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The emergence of smart mobility services and applications has led to a sharp increase in the use of APIs in the automotive industry. However, this increased reliance on APIs has also made them one of the most common attack vectors. According to Gartner, APIs account for 90% of the web application attack surface areas.  With no surprise, similar trends are emerging also in the smart mobility]]> 2023-03-29T17:13:00+00:00 https://thehackernews.com/2023/03/smart-mobility-has-blindspot-when-it.html www.secnews.physaphae.fr/article.php?IdArticle=8322935 False General Information None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Malware analysis is an essential part of security researcher\'s work. But working with malicious samples can be dangerous - it requires specialized tools to record their activity, and a secure environment to prevent unintended damage. However, manual lab setup and configuration can prove to be a laborious and time-consuming process. In this article, we\'ll look at 4 ways to create a reverse]]> 2023-03-29T17:13:00+00:00 https://thehackernews.com/2023/03/how-to-build-research-lab-for-reverse.html www.secnews.physaphae.fr/article.php?IdArticle=8322934 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Trojanized installers for the TOR anonymity browser are being used to target users in Russia and Eastern Europe with clipper malware designed to siphon cryptocurrencies since September 2022. "Clipboard injectors [...] can be silent for years, show no network activity or any other signs of presence until the disastrous day when they replace a crypto wallet address," Vitaly Kamluk, director of]]> 2023-03-29T14:47:00+00:00 https://thehackernews.com/2023/03/trojanized-tor-browser-installers.html www.secnews.physaphae.fr/article.php?IdArticle=8322888 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new North Korean nation-state cyber operator has been attributed to a series of campaigns orchestrated to gather strategic intelligence that aligns with Pyongyang\'s geopolitical interests since 2018. Google-owned Mandiant, which is tracking the activity cluster under the moniker APT43, said the group\'s motives are both espionage- and financially-motivated, leveraging techniques like credential]]> 2023-03-29T11:02:00+00:00 https://thehackernews.com/2023/03/north-korean-apt43-group-uses.html www.secnews.physaphae.fr/article.php?IdArticle=8322852 False None APT 43 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Microsoft on Tuesday unveiled Security Copilot in preview, marking its continued push to embed AI-oriented features in an attempt to offer "end-to-end defense at machine speed and scale." Powered by OpenAI\'s GPT-4 generative AI and its own security-specific model, it\'s billed as a security analysis tool that enables cybersecurity analysts to quickly respond to threats, process signals, and]]> 2023-03-28T23:38:00+00:00 https://thehackernews.com/2023/03/microsoft-introduces-gpt-4-ai-powered.html www.secnews.physaphae.fr/article.php?IdArticle=8322609 False Tool None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An advanced persistent threat (APT) group that has a track record of targeting India and Afghanistan has been linked to a new phishing campaign that delivers Action RAT. According to Cyble, which attributed the operation to SideCopy, the activity cluster is designed to target the Defence Research and Development Organization (DRDO), the research and development wing of India\'s Ministry of]]> 2023-03-28T18:01:00+00:00 https://thehackernews.com/2023/03/pakistan-origin-sidecopy-linked-to-new.html www.secnews.physaphae.fr/article.php?IdArticle=8322505 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Multiple threat actors have been observed using two new variants of the IcedID malware in the wild with more limited functionality that removes functionality related to online banking fraud. IcedID, also known as BokBot, started off as a banking trojan in 2017. It\'s also capable of delivering additional malware, including ransomware. "The well-known IcedID version consists of an initial loader]]> 2023-03-28T17:38:00+00:00 https://thehackernews.com/2023/03/icedid-malware-shifts-focus-from.html www.secnews.physaphae.fr/article.php?IdArticle=8322506 False Ransomware,Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Malicious actors are constantly adapting their tactics, techniques, and procedures (TTPs) to adapt to political, technological, and regulatory changes quickly. A few emerging threats that organizations of all sizes should be aware of include the following: Increased use of Artificial Intelligence and Machine Learning: Malicious actors are increasingly leveraging AI and machine learning to]]> 2023-03-28T17:24:00+00:00 https://thehackernews.com/2023/03/breaking-mold-pen-testing-solutions.html www.secnews.physaphae.fr/article.php?IdArticle=8322507 False General Information None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new phishing campaign has set its sights on European entities to distribute Remcos RAT and Formbook via a malware loader dubbed DBatLoader. "The malware payload is distributed through WordPress websites that have authorized SSL certificates, which is a common tactic used by threat actors to evade detection engines," Zscaler researchers Meghraj Nandanwar and Satyam Singh said in a report]]> 2023-03-28T15:23:00+00:00 https://thehackernews.com/2023/03/stealthy-dbatloader-malware-loader.html www.secnews.physaphae.fr/article.php?IdArticle=8322482 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) U.S. President Joe Biden on Monday signed an executive order that restricts the use of commercial spyware by federal government agencies. The order said the spyware ecosystem "poses significant counterintelligence or security risks to the United States Government or significant risks of improper use by a foreign government or foreign person." It also seeks to ensure that the government\'s use of]]> 2023-03-28T14:25:00+00:00 https://thehackernews.com/2023/03/president-biden-signs-executive-order.html www.secnews.physaphae.fr/article.php?IdArticle=8322460 True Threat,General Information,Legislation None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Apple on Monday backported fixes for an actively exploited security flaw to older iPhone and iPad models. The issue, tracked as CVE-2023-23529, concerns a type confusion bug in the WebKit browser engine that could lead to arbitrary code execution. It was originally addressed by the tech giant with improved checks as part of updates released on February 13, 2023. An anonymous researcher has been]]> 2023-03-28T09:11:00+00:00 https://thehackernews.com/2023/03/apple-issues-urgent-security-update-for.html www.secnews.physaphae.fr/article.php?IdArticle=8322404 False Guideline None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Conor Brian Fitzpatrick, the 20-year-old founder and the administrator of the now-defunct BreachForums has been formally charged in the U.S. with conspiracy to commit access device fraud. If proven guilty, Fitzpatrick, who went by the online moniker "pompompurin," faces a maximum penalty of up to five years in prison. He was arrested on March 15, 2023. "Cybercrime victimizes and steals financial]]> 2023-03-27T20:48:00+00:00 https://thehackernews.com/2023/03/20-year-old-breachforums-founder-faces.html www.secnews.physaphae.fr/article.php?IdArticle=8322097 False General Information None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one set of credentials. From a security standpoint, SSO is the gold standard. It ensures access without forcing users to remember multiple passwords and can be further secured with MFA. Furthermore, an estimated 61% of attacks stem from stolen credentials. By]]> 2023-03-27T16:26:00+00:00 https://thehackernews.com/2023/03/where-sso-falls-short-in-protecting-saas.html www.secnews.physaphae.fr/article.php?IdArticle=8322056 False Cloud None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A new information-stealing malware has set its sights on Apple\'s macOS operating system to siphon sensitive information from compromised devices. Dubbed MacStealer, it\'s the latest example of a threat that uses Telegram as a command-and-control (C2) platform to exfiltrate data. It primarily affects devices running macOS versions Catalina and later running on M1 and M2 CPUs. "MacStealer has the]]> 2023-03-27T16:08:00+00:00 https://thehackernews.com/2023/03/new-macstealer-macos-malware-steals.html www.secnews.physaphae.fr/article.php?IdArticle=8322057 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Microsoft has released an out-of-band update to address a privacy-defeating flaw in its screenshot editing tool for Windows 10 and Windows 11. The issue, dubbed aCropalypse, could enable malicious actors to recover edited portions of screenshots, potentially revealing sensitive information that may have been cropped out. Tracked as CVE-2023-28303, the vulnerability is rated 3.3 on the CVSS]]> 2023-03-27T15:18:00+00:00 https://thehackernews.com/2023/03/microsoft-issues-patch-for-acropalypse.html www.secnews.physaphae.fr/article.php?IdArticle=8322043 False Tool,Vulnerability None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) In what\'s a case of setting a thief to catch a thief, the U.K. National Crime Agency (NCA) revealed that it has created a network of fake DDoS-for-hire websites to infiltrate the online criminal underground. "All of the NCA-run sites, which have so far been accessed by around several thousand people, have been created to look like they offer the tools and services that enable cyber criminals to]]> 2023-03-25T14:22:00+00:00 https://thehackernews.com/2023/03/uk-national-crime-agency-sets-up-fake.html www.secnews.physaphae.fr/article.php?IdArticle=8321615 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Microsoft on Friday shared guidance to help customers discover indicators of compromise (IoCs) associated with a recently patched Outlook vulnerability. Tracked as CVE-2023-23397 (CVSS score: 9.8), the critical flaw relates to a case of privilege escalation that could be exploited to steal NT Lan Manager (NTLM) hashes and stage a relay attack without requiring any user interaction. "External]]> 2023-03-25T11:43:00+00:00 https://thehackernews.com/2023/03/microsoft-warns-of-stealthy-outlook.html www.secnews.physaphae.fr/article.php?IdArticle=8321599 False Vulnerability None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) OpenAI on Friday disclosed that a bug in the Redis open source library was responsible for the exposure of other users\' personal information and chat titles in the upstart\'s ChatGPT service earlier this week. The glitch, which came to light on March 20, 2023, enabled certain users to view brief descriptions of other users\' conversations from the chat history sidebar, prompting the company to]]> 2023-03-25T11:21:00+00:00 https://thehackernews.com/2023/03/openai-reveals-redis-bug-behind-chatgpt.html www.secnews.physaphae.fr/article.php?IdArticle=8321589 False None ChatGPT,ChatGPT 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A malicious Python package on the Python Package Index (PyPI) repository has been found to use Unicode as a trick to evade detection and deploy an info-stealing malware. The package in question, named onyxproxy, was uploaded to PyPI on March 15, 2023, and comes with capabilities to harvest and exfiltrate credentials and other valuable data. It has since been taken down, but not before attracting]]> 2023-03-24T19:10:00+00:00 https://thehackernews.com/2023/03/malicious-python-package-uses-unicode.html www.secnews.physaphae.fr/article.php?IdArticle=8321243 False General Information None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Any app that can improve business operations is quickly added to the SaaS stack. However, employees don\'t realize that this SaaS-to-SaaS connectivity, which typically takes place outside the view of the security team, significantly increases risk. Whether employees connect through Microsoft 365, Google Workspace, Slack, Salesforce, or any other app, security teams have no way to quantify their]]> 2023-03-24T17:13:00+00:00 https://thehackernews.com/2023/03/thn-webinar-inside-high-risk-of-3rd.html www.secnews.physaphae.fr/article.php?IdArticle=8321215 False General Information,Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cloud-based repository hosting service GitHub said it took the step of replacing its RSA SSH host key used to secure Git operations "out of an abundance of caution" after it was briefly exposed in a public repository. The activity, which was carried out at 05:00 UTC on March 24, 2023, is said to have been undertaken as a measure to prevent any bad actor from impersonating the service or]]> 2023-03-24T16:36:00+00:00 https://thehackernews.com/2023/03/github-swiftly-replaces-exposed-rsa-ssh.html www.secnews.physaphae.fr/article.php?IdArticle=8321216 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) A recent campaign undertaken by Earth Preta indicates that nation-state groups aligned with China are getting increasingly proficient at bypassing security solutions. The threat actor, active since at least 2012, is tracked by the broader cybersecurity community under Bronze President, HoneyMyte, Mustang Panda, RedDelta, and Red Lich. Attack chains mounted by the group commence with a]]> 2023-03-24T15:29:00+00:00 https://thehackernews.com/2023/03/researchers-uncover-chinese-nation.html www.secnews.physaphae.fr/article.php?IdArticle=8321199 False General Information None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Patches have been released for a critical security flaw impacting the WooCommerce Payments plugin for WordPress, which is installed on over 500,000 websites. The flaw, if left unresolved, could enable a bad actor to gain unauthorized admin access to impacted stores, the company said in an advisory on March 23, 2023. It impacts versions 4.8.0 through 5.6.1. Put differently, the issue could permit]]> 2023-03-24T13:21:00+00:00 https://thehackernews.com/2023/03/critical-woocommerce-payments-plugin.html www.secnews.physaphae.fr/article.php?IdArticle=8321174 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google has stepped in to remove a bogus Chrome browser extension from the official Web Store that masqueraded as OpenAI\'s ChatGPT service to harvest Facebook session cookies and hijack the accounts. The "ChatGPT For Google" extension, a trojanized version of a legitimate open source browser add-on, attracted over 9,000 installations since March 14, 2023, prior to its removal. It was originally]]> 2023-03-23T21:59:00+00:00 https://thehackernews.com/2023/03/fake-chatgpt-chrome-browser-extension.html www.secnews.physaphae.fr/article.php?IdArticle=8320948 False Threat ChatGPT,ChatGPT 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An emerging Android banking trojan dubbed Nexus has already been adopted by several threat actors to target 450 financial applications and conduct fraud. "Nexus appears to be in its early stages of development," Italian cybersecurity firm Cleafy said in a report published this week. "Nexus provides all the main features to perform ATO attacks (Account Takeover) against banking portals and]]> 2023-03-23T17:25:00+00:00 https://thehackernews.com/2023/03/nexus-new-rising-android-banking-trojan.html www.secnews.physaphae.fr/article.php?IdArticle=8320895 False Threat,Mobile None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) In 2022 alone, global cyberattacks increased by 38%, resulting in substantial business loss, including financial and reputational damage. Meanwhile, corporate security budgets have risen significantly because of the growing sophistication of attacks and the number of cybersecurity solutions introduced into the market. With this rise in threats, budgets, and solutions, how prepared are industries]]> 2023-03-23T16:09:00+00:00 https://thehackernews.com/2023/03/2023-cybersecurity-maturity-report.html www.secnews.physaphae.fr/article.php?IdArticle=8320875 False Studies None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Telecommunication providers in the Middle East are the subject of new cyber attacks that commenced in the first quarter of 2023. The intrusion set has been attributed to a Chinese cyber espionage actor associated with a long-running campaign dubbed Operation Soft Cell based on tooling overlaps. "The initial attack phase involves infiltrating Internet-facing Microsoft Exchange servers to deploy]]> 2023-03-23T14:59:00+00:00 https://thehackernews.com/2023/03/operation-soft-cell-chinese-hackers.html www.secnews.physaphae.fr/article.php?IdArticle=8320862 False General Information None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) German and South Korean government agencies have warned about cyber attacks mounted by a threat actor tracked as Kimsuky using rogue browser extensions to steal users\' Gmail inboxes. The joint advisory comes from Germany\'s domestic intelligence apparatus, the Federal Office for the Protection of the Constitution (BfV), and South Korea\'s National Intelligence Service of the Republic of Korea (NIS]]> 2023-03-23T13:07:00+00:00 https://thehackernews.com/2023/03/german-and-south-korean-agencies-warn.html www.secnews.physaphae.fr/article.php?IdArticle=8320822 False Threat,General Information None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released eight Industrial Control Systems (ICS) advisories on Tuesday, warning of critical flaws affecting equipment from Delta Electronics and Rockwell Automation. This includes 13 security vulnerabilities in Delta Electronics\' InfraSuite Device Master, a real-time device monitoring software. All versions prior to 1.0.5 are]]> 2023-03-22T18:39:00+00:00 https://thehackernews.com/2023/03/cisa-alerts-on-critical-security.html www.secnews.physaphae.fr/article.php?IdArticle=8320500 False Industrial None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The North Korean advanced persistent threat (APT) actor dubbed ScarCruft is using weaponized Microsoft Compiled HTML Help (CHM) files to download additional malware. According to multiple reports from AhnLab Security Emergency response Center (ASEC), SEKOIA.IO, and Zscaler, the findings are illustrative of the group\'s continuous efforts to refine and retool its tactics to sidestep detection. "]]> 2023-03-22T17:54:00+00:00 https://thehackernews.com/2023/03/scarcrufts-evolving-arsenal-researchers.html www.secnews.physaphae.fr/article.php?IdArticle=8320487 False Malware,Threat,General Information,Cloud APT 37 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Active Directory (AD) is a powerful authentication and directory service used by organizations worldwide. With this ubiquity and power comes the potential for abuse. Insider threats offer some of the most potentials for destruction. Many internal users have over-provisioned access and visibility into the internal network. Insiders\' level of access and trust in a network leads to unique]]> 2023-03-22T16:50:00+00:00 https://thehackernews.com/2023/03/preventing-insider-threats-in-your.html www.secnews.physaphae.fr/article.php?IdArticle=8320470 False Guideline None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The NuGet repository is the target of a new "sophisticated and highly-malicious attack" aiming to infect .NET developer systems with cryptocurrency stealer malware. The 13 rogue packages, which were downloaded more than 160,000 times over the past month, have since been taken down. "The packages contained a PowerShell script that would execute upon installation and trigger a download of a \']]> 2023-03-22T14:28:00+00:00 https://thehackernews.com/2023/03/rogue-nuget-packages-infect-net.html www.secnews.physaphae.fr/article.php?IdArticle=8320430 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The threat group tracked as REF2924 has been observed deploying previously unseen malware in its attacks aimed at entities in South and Southeast Asia. The malware, dubbed NAPLISTENER by Elastic Security Labs, is an HTTP listener programmed in C# and is designed to evade "network-based forms of detection." REF2924 is the moniker assigned to an activity cluster linked to attacks against an entity]]> 2023-03-22T12:49:00+00:00 https://thehackernews.com/2023/03/new-naplistener-malware-used-by-ref2924.html www.secnews.physaphae.fr/article.php?IdArticle=8320412 False Malware,Threat,General Information None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) In a sudden turn of events, Baphomet, the current administrator of BreachForums, said in an update on March 21, 2023, that the hacking forum has been officially taken down but emphasized that "it\'s not the end." "You are allowed to hate me, and disagree with my decision but I promise what is to come will be better for us all," Baphomet noted in a message posted on the BreachForums Telegram]]> 2023-03-22T10:07:00+00:00 https://thehackernews.com/2023/03/breachforums-administrator-baphomet.html www.secnews.physaphae.fr/article.php?IdArticle=8320394 False None None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Amid the ongoing war between Russia and Ukraine, government, agriculture, and transportation organizations located in Donetsk, Lugansk, and Crimea have been attacked as part of an active campaign that drops a previously unseen, modular framework dubbed CommonMagic. "Although the initial vector of compromise is unclear, the details of the next stage imply the use of spear phishing or similar]]> 2023-03-21T20:31:00+00:00 https://thehackernews.com/2023/03/new-bad-magic-cyber-threat-disrupt.html www.secnews.physaphae.fr/article.php?IdArticle=8320256 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Poorly managed Linux SSH servers are being targeted as part of a new campaign that deploys different variants of malware called ShellBot. "ShellBot, also known as PerlBot, is a DDoS Bot malware developed in Perl and characteristically uses IRC protocol to communicate with the C&C server," AhnLab Security Emergency response Center (ASEC) said in a report. ShellBot is installed on servers that]]> 2023-03-21T17:11:00+00:00 https://thehackernews.com/2023/03/new-shellbot-ddos-malware-targeting.html www.secnews.physaphae.fr/article.php?IdArticle=8320190 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) H0lyGh0st, Magecart, and a slew of state-sponsored hacker groups are diversifying their tactics and shifting their focus to… You. That is, if you\'re in charge of cybersecurity for a small-to-midsize enterprise (SME). Why? Bad actors know that SMEs typically have a smaller security budget, less infosec manpower, and possibly weak or missing security controls to protect their data and]]> 2023-03-21T16:58:00+00:00 https://thehackernews.com/2023/03/the-best-defense-against-cyber-threats.html www.secnews.physaphae.fr/article.php?IdArticle=8320191 False None None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) As many as 55 zero-day vulnerabilities were exploited in the wild in 2022, with most of the flaws discovered in software from Microsoft, Google, and Apple. While this figure represents a decrease from the year before, when a staggering 81 zero-days were weaponized, it still represents a significant uptick in recent years of threat actors leveraging unknown security flaws to their advantage. The]]> 2023-03-21T15:24:00+00:00 https://thehackernews.com/2023/03/from-ransomware-to-cyber-espionage-55.html www.secnews.physaphae.fr/article.php?IdArticle=8320178 False Ransomware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Bitcoin ATM maker General Bytes disclosed that unidentified threat actors stole cryptocurrency from hot wallets by exploiting a zero-day security flaw in its software. "The attacker was able to upload his own java application remotely via the master service interface used by terminals to upload videos and run it using \'batm\' user privileges," the company said in an advisory published over the]]> 2023-03-21T12:25:00+00:00 https://thehackernews.com/2023/03/hackers-steal-over-16-million-in-crypto.html www.secnews.physaphae.fr/article.php?IdArticle=8320132 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-20T19:09:00+00:00 https://thehackernews.com/2023/03/new-dotrunpex-malware-delivers-multiple.html www.secnews.physaphae.fr/article.php?IdArticle=8319939 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-20T17:56:00+00:00 https://thehackernews.com/2023/03/mispadu-banking-trojan-targets-latin.html www.secnews.physaphae.fr/article.php?IdArticle=8319940 False Spam None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-20T16:14:00+00:00 https://thehackernews.com/2023/03/new-cyber-platform-lab-1-decodes-dark.html www.secnews.physaphae.fr/article.php?IdArticle=8319904 False Ransomware ChatGPT 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-20T15:56:00+00:00 https://thehackernews.com/2023/03/researchers-shed-light-on-catb.html www.secnews.physaphae.fr/article.php?IdArticle=8319905 False Ransomware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-20T11:21:00+00:00 https://thehackernews.com/2023/03/emotet-rises-again-evades-macro.html www.secnews.physaphae.fr/article.php?IdArticle=8319860 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-18T17:00:00+00:00 https://thehackernews.com/2023/03/chinese-hackers-exploit-fortinet-zero.html www.secnews.physaphae.fr/article.php?IdArticle=8319600 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-18T11:29:00+00:00 https://thehackernews.com/2023/03/pompompurin-unmasked-infamous.html www.secnews.physaphae.fr/article.php?IdArticle=8319568 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-18T10:47:00+00:00 https://thehackernews.com/2023/03/lockbit-30-ransomware-inside.html www.secnews.physaphae.fr/article.php?IdArticle=8319561 False Ransomware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T23:45:00+00:00 https://thehackernews.com/2023/03/fakecalls-vishing-malware-targets-south.html www.secnews.physaphae.fr/article.php?IdArticle=8319476 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T17:41:00+00:00 https://thehackernews.com/2023/03/thn-webinar-3-research-backed-ways-to.html www.secnews.physaphae.fr/article.php?IdArticle=8319397 False General Information None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T17:37:00+00:00 https://thehackernews.com/2023/03/new-golang-based-hinatabot-exploiting.html www.secnews.physaphae.fr/article.php?IdArticle=8319398 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T16:16:00+00:00 https://thehackernews.com/2023/03/a-new-security-category-addresses-web.html www.secnews.physaphae.fr/article.php?IdArticle=8319390 False General Information,Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T15:52:00+00:00 https://thehackernews.com/2023/03/lookalike-telegram-and-whatsapp.html www.secnews.physaphae.fr/article.php?IdArticle=8319379 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T12:36:00+00:00 https://thehackernews.com/2023/03/winter-vivern-apt-group-targeting.html www.secnews.physaphae.fr/article.php?IdArticle=8319333 False Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-17T12:23:00+00:00 https://thehackernews.com/2023/03/google-uncovers-18-severe-security.html www.secnews.physaphae.fr/article.php?IdArticle=8319334 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-16T21:00:00+00:00 https://thehackernews.com/2023/03/chinese-and-russian-hackers-using.html www.secnews.physaphae.fr/article.php?IdArticle=8319153 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-16T19:09:00+00:00 https://thehackernews.com/2023/03/cryptojacking-group-teamtnt-suspected.html www.secnews.physaphae.fr/article.php?IdArticle=8319111 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-16T15:16:00+00:00 https://thehackernews.com/2023/03/authorities-shut-down-chipmixer.html www.secnews.physaphae.fr/article.php?IdArticle=8319061 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-16T12:42:00+00:00 https://thehackernews.com/2023/03/whats-wrong-with-manufacturing.html www.secnews.physaphae.fr/article.php?IdArticle=8319039 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-16T12:04:00+00:00 https://thehackernews.com/2023/03/multiple-hacker-groups-exploit-3-year.html www.secnews.physaphae.fr/article.php?IdArticle=8319030 False Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-16T10:17:00+00:00 https://thehackernews.com/2023/03/cisa-issues-urgent-warning-adobe.html www.secnews.physaphae.fr/article.php?IdArticle=8319001 False Vulnerability,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-15T19:19:00+00:00 https://thehackernews.com/2023/03/yorotrooper-stealing-credentials-and.html www.secnews.physaphae.fr/article.php?IdArticle=8318804 False Threat,Threat None 4.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-15T15:41:00+00:00 https://thehackernews.com/2023/03/new-cryptojacking-operation-targeting.html www.secnews.physaphae.fr/article.php?IdArticle=8318754 False General Information Uber 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-15T15:13:00+00:00 https://thehackernews.com/2023/03/the-different-methods-and-stages-of.html www.secnews.physaphae.fr/article.php?IdArticle=8318755 False Data Breach None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-15T14:53:00+00:00 https://thehackernews.com/2023/03/tick-apt-targeted-high-value-customers.html www.secnews.physaphae.fr/article.php?IdArticle=8318731 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-15T10:56:00+00:00 https://thehackernews.com/2023/03/microsoft-rolls-out-patches-for-80-new.html www.secnews.physaphae.fr/article.php?IdArticle=8318696 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-14T17:32:00+00:00 https://thehackernews.com/2023/03/gobruteforcer-new-golang-based-malware.html www.secnews.physaphae.fr/article.php?IdArticle=8318405 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-14T17:22:00+00:00 https://thehackernews.com/2023/03/the-prolificacy-of-lockbit-ransomware.html www.secnews.physaphae.fr/article.php?IdArticle=8318406 False Ransomware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-14T15:41:00+00:00 https://thehackernews.com/2023/03/microsoft-warns-of-large-scale-use-of.html www.secnews.physaphae.fr/article.php?IdArticle=8318341 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-14T11:31:00+00:00 https://thehackernews.com/2023/03/fortinet-fortios-flaw-exploited-in.html www.secnews.physaphae.fr/article.php?IdArticle=8318300 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-13T20:29:00+00:00 https://thehackernews.com/2023/03/large-scale-cyber-attack-hijacks-east.html www.secnews.physaphae.fr/article.php?IdArticle=8318075 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-13T17:54:00+00:00 https://thehackernews.com/2023/03/fake-chatgpt-chrome-extension-hijacking.html www.secnews.physaphae.fr/article.php?IdArticle=8318055 False Threat ChatGPT,ChatGPT 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-13T17:53:00+00:00 https://thehackernews.com/2023/03/how-to-apply-nist-principles-to-saas-in.html www.secnews.physaphae.fr/article.php?IdArticle=8318056 False Cloud None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-13T17:17:00+00:00 https://thehackernews.com/2023/03/warning-ai-generated-youtube-video.html www.secnews.physaphae.fr/article.php?IdArticle=8318057 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-13T13:06:00+00:00 https://thehackernews.com/2023/03/researchers-uncover-over-dozen-security.html www.secnews.physaphae.fr/article.php?IdArticle=8317981 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-13T11:45:00+00:00 https://thehackernews.com/2023/03/kamikakabot-malware-used-in-latest-dark.html www.secnews.physaphae.fr/article.php?IdArticle=8317972 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-11T19:02:00+00:00 https://thehackernews.com/2023/03/batloader-malware-uses-google-ads-to.html www.secnews.physaphae.fr/article.php?IdArticle=8317590 False Malware ChatGPT 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-10T19:32:00+00:00 https://thehackernews.com/2023/03/new-version-of-prometei-botnet-infects.html www.secnews.physaphae.fr/article.php?IdArticle=8317264 False Malware None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-10T19:20:00+00:00 https://thehackernews.com/2023/03/china-linked-hackers-targeting.html www.secnews.physaphae.fr/article.php?IdArticle=8317265 False Malware None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-10T19:09:00+00:00 https://thehackernews.com/2023/03/international-law-enforcement-takes.html www.secnews.physaphae.fr/article.php?IdArticle=8317266 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-10T18:26:00+00:00 https://thehackernews.com/2023/03/when-partial-protection-is-zero.html www.secnews.physaphae.fr/article.php?IdArticle=8317243 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-10T15:33:00+00:00 https://thehackernews.com/2023/03/xenomorph-android-banking-trojan.html www.secnews.physaphae.fr/article.php?IdArticle=8317206 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-10T13:13:00+00:00 https://thehackernews.com/2023/03/north-korean-unc2970-hackers-expands.html www.secnews.physaphae.fr/article.php?IdArticle=8317183 False Malware,Threat None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-09T20:24:00+00:00 https://thehackernews.com/2023/03/hackers-exploiting-remote-desktop.html www.secnews.physaphae.fr/article.php?IdArticle=8316967 False Malware,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-09T19:31:00+00:00 https://thehackernews.com/2023/03/icefire-linux-ransomware.html www.secnews.physaphae.fr/article.php?IdArticle=8316952 False Ransomware,Vulnerability None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-09T17:55:00+00:00 https://thehackernews.com/2023/03/does-your-help-desk-know-whos-calling.html www.secnews.physaphae.fr/article.php?IdArticle=8316928 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-09T17:50:00+00:00 https://thehackernews.com/2023/03/iranian-hackers-target-women-involved.html www.secnews.physaphae.fr/article.php?IdArticle=8316929 False Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-09T13:40:00+00:00 https://thehackernews.com/2023/03/new-scrubcrypt-crypter-used-in.html www.secnews.physaphae.fr/article.php?IdArticle=8316882 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-09T10:53:00+00:00 https://thehackernews.com/2023/03/new-critical-flaw-in-fortios-and.html www.secnews.physaphae.fr/article.php?IdArticle=8316852 False Vulnerability,Threat None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2023-03-08T22:00:00+00:00 https://thehackernews.com/2023/03/jenkins-security-alert-new-security.html www.secnews.physaphae.fr/article.php?IdArticle=8316729 False Guideline,Cloud None 2.0000000000000000