This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T10:25:27+00:00 www.secnews.physaphae.fr SecurityWeek - Security News 2022-07-25T13:20:58+00:00 https://www.securityweek.com/uber-settles-federal-investigators-over-2016-data-breach-coverup www.secnews.physaphae.fr/article.php?IdArticle=5940182 False Data Breach Uber None IT Security Guru - Blog Sécurité 2022-07-25T09:49:03+00:00 https://www.itsecurityguru.org/2022/07/25/neopets-confirm-data-breach/?utm_source=rss&utm_medium=rss&utm_campaign=neopets-confirm-data-breach www.secnews.physaphae.fr/article.php?IdArticle=5938324 False Data Breach None None SecurityWeek - Security News disclosed last August that personal data like social security numbers had been stolen in a ]]> 2022-07-25T00:51:25+00:00 https://www.securityweek.com/t-mobile-settles-pay-350m-customers-data-breach www.secnews.physaphae.fr/article.php?IdArticle=5933540 False Data Breach,Hack None None Bleeping Computer - Magazine Américain 2022-07-22T18:00:35+00:00 https://www.bleepingcomputer.com/news/security/hacker-selling-twitter-account-data-of-54-million-users-for-30k/ www.secnews.physaphae.fr/article.php?IdArticle=5885962 False Data Breach,Vulnerability,Threat None None InformationSecurityBuzzNews - Site de News Securite 2022-07-21T12:24:11+00:00 https://informationsecuritybuzz.com/expert-comments/neopets-data-breach-exposes-personal-data-of-69-million-members/ www.secnews.physaphae.fr/article.php?IdArticle=5854162 True Data Breach,Guideline None None IT Security Guru - Blog Sécurité 2022-07-21T09:51:49+00:00 https://www.itsecurityguru.org/2022/07/21/hacker-selling-data-of-over-69-million-neopets-members/?utm_source=rss&utm_medium=rss&utm_campaign=hacker-selling-data-of-over-69-million-neopets-members www.secnews.physaphae.fr/article.php?IdArticle=5852165 True Data Breach,Guideline None None Bleeping Computer - Magazine Américain 2022-07-20T18:45:38+00:00 https://www.bleepingcomputer.com/news/security/neopets-data-breach-exposes-personal-data-of-69-million-members/ www.secnews.physaphae.fr/article.php?IdArticle=5840872 False Data Breach,Guideline None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC more than 100 SaaS apps on average, and that figure keeps climbing. As these tools play an increasingly central role in how businesses operate, IT professionals on both sides must consider SaaS data security more carefully. SaaS data security impacts both providers and clients SaaS data security is so crucial because any vulnerabilities can affect multiple parties. If a breach occurs in a SaaS provider’s database, it could expose their commercial clients’ data. The infamous SolarWinds hack, which affected thousands of Orion users, highlights how one SaaS vulnerability can give attackers access to multiple organizations. When an event like this occurs, attackers could directly affect software users by stealing their data or installing malware on their devices. These steps, in turn, could affect their customers if they use the software to manage consumers’ data. All these ripple effects would come back to the SaaS provider in the form of lost trust and legal repercussions. Every party connected to SaaS can suffer considerable damage if a breach occurs. Consequently, all parties should take it seriously and the responsibility for improving security falls to both providers and users. Best practices for SaaS providers SaaS security begins with the companies that develop and sell the software. One of the most important steps for SaaS providers is to embrace the principle of least privilege. The only people, apps, and systems that should be able to access any data are those that absolutely need it. This will restrict lateral movement and make it easier to trace any potential breaches. Monitoring user activity is another important step. Logging all activity will reveal abnormalities that may signal an attempted attack, enabling faster responses. Automation is crucial here, as companies with fully deployed security automation identify breaches 55 days earlier and lose $1.49 million less than those without it on average. Encrypting all data both at rest and in transit will help further mitigate potential breaches. SaaS companies should also partner with reliable security vendors to offer users as much protection as possible. Similarly, SaaS providers can seek relevant security certifications. Certifications like the AICPA SOC 2 Type 2 offer assurance to customers that the company has met high standards for data security. This will both provide guidelines for reliable cybersecurity and attract more business. Best practices for SaaS users SaaS users can also take data security into their own hands. Since misconfiguration is the most common cloud vulnerability, the most important step is to address configuration gaps. IT teams must approach configuration carefully and frequently review SaaS permissions and processes to find and fix errors. Businesses should also look for trusted SaaS vendors. Just as SaaS providers should pursue security certifications, users should prefer to use software from companies that have these certifications. Reviewing providers’ data breach history and security]]> 2022-07-20T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/everything-to-know-about-saas-data-security www.secnews.physaphae.fr/article.php?IdArticle=5828881 False Data Breach,Malware,Vulnerability None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC nearly 88% of all data breaches result from employee mistakes. In addition, 60% of cybersecurity professionals accepted that their staff is the weakest link in IT security. It is high time for organizations and employees to take measures to reduce the attack surface and ensure a robust cybersecurity culture. Why humans are the weakest link in any organization? The cybersecurity threat landscape is becoming complex and threatening even with practicing strict cybersecurity regulations and using emerging technologies. Against this growing threat landscape, 57% of businesses assume that their IT security team might become compromised, and the most significant threat against the cyber-attacks is their employees. Humans are the weakest link in any business organization and continue to drive data breaches. The Verizon Data Breach Incident Report 2022 finds that 82% of cyber breaches involved the human element. By human element, it is meant that a breach can occur because of clicking on a link in a phishing email, reusing the same old passwords, or using the internet without hiding their IP. For example, a notable venture capital firm, Sequoia Capital, got hacked in February 2021. The hacking incident occurred because employees fell victim to a phishing attack that exposed its investors' personal and financial information to third parties. Besides this, there are a few other reasons that make employees vulnerable: Inadequate software security Employees tend to be careless when they perform the same task regularly. It turns their work into something that focuses more on efficiency than carefulness. As a result, they start neglecting to follow proper security procedures and practices and often compromise the cybersecurity of the entire organization. They even neglect updates because they consume more time or the pop-ups are inconvenient, leaving software vulnerable to cyber-attacks. Moreover, some employees continue to use legacy software with known vulnerabilities. They typically use such software because they’re used to it - not because it has exclusive features. In addition, employees sometimes disable security update options because they think it hinders their work. Such actions compromise the entire security of the organization. Low security awareness Hackers easily install malware, spyware, or ransomware through vulnerable or careless employees. Most employees have low security awareness about the evolving cyber threats and attacks that expose them to malicious actors to access the company's data. Employees even use or download unauthor]]> 2022-07-19T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/what-roles-do-humans-play-in-cyber-breaches www.secnews.physaphae.fr/article.php?IdArticle=5824009 False Data Breach,Malware,Threat,Guideline None None SecureMac - Security focused on MAC Apple's new Lockdown Mode fights back against mercenary spyware. Plus: a medical data breach and AirTag sounds explained. ]]> 2022-07-16T04:07:33+00:00 https://www.securemac.com/checklist/checklist-287-taking-a-look-at-lockdown-mode www.secnews.physaphae.fr/article.php?IdArticle=5762864 False Data Breach None None CSO - CSO Daily Dashboard personally identifiable information (PII) manages to get a look at it, that can have dire consequences both for the individual and for the organization that stored the data and was supposed to keep it safe. To read this article in full, please click here]]> 2022-07-14T16:00:00+00:00 https://www.csoonline.com/article/3666958/data-breaches-explained-types-examples-and-impact.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=5729781 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-07-14T14:12:45+00:00 https://informationsecuritybuzz.com/expert-comments/rise-in-smishing-scams-why-and-how-to-protect/ www.secnews.physaphae.fr/article.php?IdArticle=5721274 False Data Breach None None CybeReason - Vendor blog Dwell time has a lot to do with the overall cost of a data breach these days. For example, the Cost of a Data Breach Study 2021 revealed that average data breach costs had risen from $3.86 million to $4.24 million-the highest amount in the report's history. ]]> 2022-07-13T12:18:03+00:00 https://www.cybereason.com/blog/how-an-integrated-approach-is-key-for-security-operations www.secnews.physaphae.fr/article.php?IdArticle=5692993 False Data Breach None None knowbe4 - cybersecurity services ]]> 2022-07-12T13:21:14+00:00 https://blog.knowbe4.com/cyberheistnews-vol-12-28-eye-opener-lessons-learned-from-a-big-hotels-recent-data-breach-caused-by-social-engineering www.secnews.physaphae.fr/article.php?IdArticle=5669917 True Data Breach None None Malwarebytes Labs - MalwarebytesLabs 2022-07-12T13:20:49+00:00 https://blog.malwarebytes.com/privacy-2/2022/07/insecure-password-leads-to-mangatoon-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=5669938 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-07-12T08:12:36+00:00 https://informationsecuritybuzz.com/expert-comments/marriott-hotels-repeat-hack-proves-businesses-still-way-behind-on-cybersecurity/ www.secnews.physaphae.fr/article.php?IdArticle=5667331 False Data Breach,Hack,Threat None None AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC 45% of companies will have experienced a supply chain attack. Supply chain attacks can come in various ways, whether by malicious code injected into enterprise software or vulnerabilities in software your company uses. To mitigate this risk, companies must learn about the methods used to execute attacks and understand their company’s blind spots.  This article will look at 5 recent software supply chain attacks and how third-party partners can pose a security risk to your company. We’ll make recommendations for how to secure your business against supply chain attacks and how you can engage in early detection to respond to threats before they take down your enterprise. What is a software supply chain attack? The CISA or US Cybersecurity and Infrastructure Security Agency defines a software supply chain attack as an attack that “occurs when a cyber threat actor infiltrates a software vendor’s network and employs malicious code to compromise the software before the vendor sends it to their customers. The compromised software then compromises the customer’s data or system.” A software supply chain includes any company you purchase software from and any open-source software and public repositories from which your developers pull code. It also includes any service organizations that have access to your data. In the aggregate, all of these different suppliers exponentially increase the surface area of a potential attack. Software supply chain attacks are particularly dangerous because the software supply chain acts as an amplifier for hackers. This means that when one vendor is impacted, hackers can potentially reach any of their customers, giving them greater reach than if they attacked a single target corporation.  Two primary reasons contribute to the danger, according to CISA: Third-party software products usually require privileged access; They often require frequent communication between the vendor’s own network and the vendor’s software on customer networks. Attackers leverage privileged access and a privileged network access channel as their first point of access. Depending on the level of available access, attackers can easily target many devices and levels of an organization. Some industries, like healthcare, are of particular vulnerability because they possess huge volumes of patient data subject to strict compliance regulations and laws. Five major supply chain attacks In recent memory, software supply chain attacks have gathered increased attention from the public because of how damaging they can be to a company and its reputation. The Log4j vulnerability demonstrated just how vulnerable companies can be to relying on third-party software, for example. Other high-profile attacks like the SolarWinds SUNBURST attack and Kaseya VSA (REvil) attack also provided painful reminders of how damaging supply chain attacks can be. The SolarWinds SUNBURST backdoor On December 13th, 2020, the SUNBURST backdoor was first disclosed. The attack utilized the popular SolarWinds Orion IT monitorin]]> 2022-07-11T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/5-common-blind-spots-that-make-you-vulnerable-to-supply-chain-attacks www.secnews.physaphae.fr/article.php?IdArticle=5659440 False Ransomware,Data Breach,Vulnerability,Threat,Patching Solardwinds None Kovrr - cyber risk management platform 2022-07-11T00:00:00+00:00 https://www.kovrr.com/reports/why-hackers-love-credentials-parsing-verizons-2022-breach-report www.secnews.physaphae.fr/article.php?IdArticle=8393599 False Ransomware,Data Breach,Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain 2022-07-09T11:12:06+00:00 https://www.bleepingcomputer.com/news/security/mangatoon-data-breach-exposes-data-from-23-million-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=5631086 False Data Breach None None knowbe4 - cybersecurity services ]]> 2022-07-08T12:55:07+00:00 https://blog.knowbe4.com/lessons-learned-from-a-popular-hotels-recent-data-breach-involving-social-engineering www.secnews.physaphae.fr/article.php?IdArticle=5611365 False Data Breach None None Bleeping Computer - Magazine Américain 2022-07-07T13:19:23+00:00 https://www.bleepingcomputer.com/news/security/quantum-ransomware-attack-affects-657-healthcare-orgs/ www.secnews.physaphae.fr/article.php?IdArticle=5597259 False Ransomware,Data Breach None None Graham Cluley - Blog Security Continue reading "Smashing Security podcast #282: Raising money through ransomware, China’s mega-leak, and hackers for hire"]]> 2022-07-07T11:17:47+00:00 https://grahamcluley.com/smashing-security-podcast-282/ www.secnews.physaphae.fr/article.php?IdArticle=5593194 False Data Breach None None IT Security Guru - Blog Sécurité 2022-07-07T10:09:57+00:00 https://www.itsecurityguru.org/2022/07/07/marriott-hotels-suffers-second-data-breach-in-2022/?utm_source=rss&utm_medium=rss&utm_campaign=marriott-hotels-suffers-second-data-breach-in-2022 www.secnews.physaphae.fr/article.php?IdArticle=5593164 False Data Breach None None SecurityWeek - Security News 2022-07-07T10:01:47+00:00 https://www.securityweek.com/marriott-confirms-small-scale-data-breach www.secnews.physaphae.fr/article.php?IdArticle=5592666 False Data Breach,Threat None None InfoSecurity Mag - InfoSecurity Magazine 2022-07-07T08:10:00+00:00 https://www.infosecurity-magazine.com/news/marriott-plays-down-20gb-data/ www.secnews.physaphae.fr/article.php?IdArticle=5591616 False Data Breach None None ComputerWeekly - Computer Magazine 2022-07-07T05:35:00+00:00 https://www.computerweekly.com/news/252522450/Latest-Marriott-data-breach-not-as-serious-as-others www.secnews.physaphae.fr/article.php?IdArticle=5592106 False Data Breach None None Security Affairs - Blog Secu Hotel chain Marriott International suffered a new data breach, a threat actor has stolen 20GB from the company. Hotel chain Marriott International confirmed it has suffered a new data breach after a threat actor stole 20GB of files from one of its properties. The attacker compromised the network at the BWI Airport Marriott Maryland  (BWIA), […] ]]> 2022-07-06T23:08:11+00:00 https://securityaffairs.co/wordpress/132943/data-breach/marriott-new-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=5585378 False Data Breach,Threat None None InformationSecurityBuzzNews - Site de News Securite 2022-07-06T19:32:55+00:00 https://informationsecuritybuzz.com/expert-comments/marriot-data-breach-expert-weighs-in/ www.secnews.physaphae.fr/article.php?IdArticle=5582478 False Data Breach None None Dark Reading - Informationweek Branch 2022-07-06T17:57:00+00:00 https://www.darkreading.com/attacks-breaches/marriott-data-breach-pii-credit-cards www.secnews.physaphae.fr/article.php?IdArticle=5581769 False Data Breach None None The Register - Site journalistique Anglais 2022-07-06T14:00:13+00:00 https://go.theregister.com/feed/www.theregister.com/2022/07/06/marriott_hotels_suffer_yet_another/ www.secnews.physaphae.fr/article.php?IdArticle=5578655 False Data Breach None None Bleeping Computer - Magazine Américain 2022-07-06T12:52:48+00:00 https://www.bleepingcomputer.com/news/security/marriott-confirms-another-data-breach-after-hotel-got-hacked/ www.secnews.physaphae.fr/article.php?IdArticle=5595319 True Data Breach,Threat None None Bleeping Computer - Magazine Américain 2022-07-06T12:52:48+00:00 https://www.bleepingcomputer.com/news/security/marriott-confirms-data-breach-and-a-failed-extortion-attempt/ www.secnews.physaphae.fr/article.php?IdArticle=5580624 False Data Breach,Threat None None Bleeping Computer - Magazine Américain 2022-07-06T12:52:48+00:00 https://www.bleepingcomputer.com/news/security/marriott-hit-by-new-data-breach-and-a-failed-extortion-attempt/ www.secnews.physaphae.fr/article.php?IdArticle=5582627 True Data Breach,Threat None None SecurityWeek - Security News 2022-07-05T18:23:58+00:00 https://www.securityweek.com/data-breach-pfc-usa-impacts-patients-650-healthcare-providers www.secnews.physaphae.fr/article.php?IdArticle=5566248 False Data Breach None None CSO - CSO Daily Dashboard identity and access management (IAM) strategies for decades. "It started with mainframe time sharing, so nothing is new," says Jay Bretzmann, program director for security products at IDC. Despite that long experience, there are still opportunities for mistakes, especially when companies are upgrading their IAM platforms to those that can better deal with modern IT deployments.Here are six ways to tell that a company's IAM strategy is failing.1. Users can't access their applications, but criminals can The primary goal of an IAM platform is to allow legitimate users to access the resources that they need, while keeping out the bad guys. If the opposite is happening, then something is wrong. According to the latest Verizon Data Breach Incident Report, stolen credentials were the most common attack method last year, involved in half of all breaches and in over 80% of web application breaches.To read this article in full, please click here]]> 2022-07-05T02:00:00+00:00 https://www.csoonline.com/article/3665234/6-signs-your-iam-strategy-is-failing-and-how-to-fix-it.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=5559108 False Data Breach None None Security Affairs - Blog Secu Threat actors claim to have breached a database belonging to Shanghai police and stole the data of a billion Chinese residents. Unknown threat actors claimed to have obtained data of a billion Chinese residents after breaching a database of the Shanghai police. If the incident will be confirmed, this data breach is the largest one […] ]]> 2022-07-04T18:37:06+00:00 https://securityaffairs.co/wordpress/132860/data-breach/chinese-residents-data-dark-web.html www.secnews.physaphae.fr/article.php?IdArticle=5553246 False Data Breach,Threat None None Security Affairs - Blog Secu Threat actors claim to have breached a database belonging to Shanghai police and stole the data of a billion Chinese residents. Unknown threat actors claimed to have obtained data of a billion Chinese residents after breaching a database of the Shanghai police. If the incident will be confirmed, this data breach is the largest one […] ]]> 2022-07-04T18:37:06+00:00 https://securityaffairs.co/wordpress/132860/data-breach/chinese-residents-data-hacking-forum.html www.secnews.physaphae.fr/article.php?IdArticle=5568431 True Data Breach,Threat None None CSO - CSO Daily Dashboard Top Threats to Cloud Computing: The Pandemic 11 report released earlier this month. "Data breaches and data loss were the top concerns last year," says CSA Global Vice President of Research John Yeoh. "This year, they weren't even in the top 11.""What that tells me is the cloud customer is getting a lot smarter," Yeoh continues. "They're getting away from worrying about end results-a data breach or loss is an end result-and looking at the causes of those results (data access, misconfigurations, insecure applications) and taking control of them."To read this article in full, please click here]]> 2022-07-04T02:00:00+00:00 https://www.csoonline.com/article/3043030/top-cloud-security-threats.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=5548896 False Data Breach,Threat None None InformationSecurityBuzzNews - Site de News Securite 2022-07-01T14:12:04+00:00 https://informationsecuritybuzz.com/expert-comments/nft-giant-opensea-reports-major-email-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=5493104 False Data Breach None None Graham Cluley - Blog Security 2022-07-01T13:12:23+00:00 https://www.bitdefender.com/blog/hotforsecurity/amd-held-to-ransom-by-gang-that-claims-450gb-of-data-has-been-stolen/ www.secnews.physaphae.fr/article.php?IdArticle=5492129 False Data Breach None None Graham Cluley - Blog Security 2022-06-30T13:29:57+00:00 https://grahamcluley.com/nft-marketplace-opensea-warns-of-data-breach-that-could-lead-to-phishing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=5470994 False Data Breach None None Bleeping Computer - Magazine Américain 2022-06-30T06:05:16+00:00 https://www.bleepingcomputer.com/news/security/opensea-discloses-data-breach-warns-users-of-phishing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=5468065 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-06-29T16:08:04+00:00 https://informationsecuritybuzz.com/study-research/82-cyber-breaches-in-verizons-report-preventable-says-mycena/ www.secnews.physaphae.fr/article.php?IdArticle=5454190 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-06-29T16:03:30+00:00 https://informationsecuritybuzz.com/expert-comments/expert-insight-on-ransomhouse-attacking-amd/ www.secnews.physaphae.fr/article.php?IdArticle=5453413 False Ransomware,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-06-27T08:30:00+00:00 https://www.infosecurity-magazine.com/news/cafepress-fined-500k-massive-data/ www.secnews.physaphae.fr/article.php?IdArticle=5416435 False Data Breach None None Bleeping Computer - Magazine Américain 2022-06-24T12:48:42+00:00 https://www.bleepingcomputer.com/news/security/cafepress-fined-500-000-for-breach-affecting-23-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=5363484 True Data Breach None None Bleeping Computer - Magazine Américain 2022-06-24T12:48:42+00:00 https://www.bleepingcomputer.com/news/security/ftc-fines-cafepress-500k-for-breach-affecting-23-million-users/ www.secnews.physaphae.fr/article.php?IdArticle=5362668 False Data Breach None None SecurityWeek - Security News 2022-06-23T11:13:05+00:00 https://www.securityweek.com/mcg-health-faces-lawsuit-over-data-breach-impacting-11-million-individuals www.secnews.physaphae.fr/article.php?IdArticle=5341257 False Data Breach None None Naked Security - Blog sophos 2022-06-23T11:08:42+00:00 https://nakedsecurity.sophos.com/2022/06/23/s3-ep88-phone-scammers-hacking-bust-and-data-breach-fines-podcast/ www.secnews.physaphae.fr/article.php?IdArticle=5341179 False Data Breach None None Security Affairs - Blog Secu US Flagstar Bank disclosed a data breach that exposed files containing the personal information of 1.5 million individuals. US-based Flagstar Bank disclosed a data breach that impacted roughly 1.5 million individuals, but the company did not share details about the attack. The security breach took place in early December 2021, and the investigation that was […] ]]> 2022-06-22T07:31:01+00:00 https://securityaffairs.co/wordpress/132490/data-breach/flagstar-bank-data-breach.html www.secnews.physaphae.fr/article.php?IdArticle=5321943 False Data Breach None None Naked Security - Blog sophos 2022-06-21T15:24:24+00:00 https://nakedsecurity.sophos.com/2022/06/21/capital-one-identity-theft-hacker-finally-gets-convicted/ www.secnews.physaphae.fr/article.php?IdArticle=5310264 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-06-21T15:16:06+00:00 https://informationsecuritybuzz.com/expert-comments/expert-commentary-flagstar-bank-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=5309983 False Data Breach None None The Last Watchdog - Blog Sécurité de Byron V Acohido ‘SASE’ blends connectivity and security Verizon's Data Breach Incident Report shows a 13 percent spike in 2021, a jump greater than the past  years combined; Sophos' State of Ransomware survey shows victims … (more…) ]]> 2022-06-21T14:31:04+00:00 https://www.lastwatchdog.com/fireside-chat-new-sase-weapon-chokes-off-ransomware-before-attack-spreads-laterally/ www.secnews.physaphae.fr/article.php?IdArticle=5309400 False Ransomware,Data Breach None None SecurityWeek - Security News 2022-06-21T13:04:25+00:00 https://www.securityweek.com/flagstar-bank-data-breach-affects-15-million-customers www.secnews.physaphae.fr/article.php?IdArticle=5309176 False Data Breach,Threat None None ZD Net - Magazine Info 2022-06-21T09:24:51+00:00 https://www.zdnet.com/article/1-5-million-customers-impacted-in-flagstar-data-breach/#ftag=RSSbaffb68 www.secnews.physaphae.fr/article.php?IdArticle=5306524 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-06-21T08:30:00+00:00 https://www.infosecurity-magazine.com/news/us-bank-data-breach-impacts-15/ www.secnews.physaphae.fr/article.php?IdArticle=5306165 False Data Breach None None The State of Security - Magazine Américain According to IBM's Cost of a Data Breach report In 2021, data breach costs rose from $3.86 million to $4.24 million, exhibiting the highest average total cost in the 17-year history of their report. A new report from the Department for Culture, Media, and Sport (DCMS) has revealed that data breaches have become more costly […]… Read More ]]> 2022-06-21T03:00:00+00:00 https://www.tripwire.com/state-of-security/security-data-protection/actual-cost-breach-reputation-loss-customers-fines-suspension-business/ www.secnews.physaphae.fr/article.php?IdArticle=5304730 False Data Breach None None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) 2022-06-21T02:46:21+00:00 https://thehackernews.com/2022/06/former-amazon-employee-found-guilty-in.html www.secnews.physaphae.fr/article.php?IdArticle=5306747 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-06-20T17:00:00+00:00 https://www.infosecurity-magazine.com/news/amazon-convicted-capital-one-breach/ www.secnews.physaphae.fr/article.php?IdArticle=5300956 False Data Breach None None Bleeping Computer - Magazine Américain 2022-06-20T12:57:31+00:00 https://www.bleepingcomputer.com/news/security/flagstar-bank-discloses-data-breach-impacting-15-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=5300095 False Data Breach None None SecurityWeek - Security News 2022-06-20T10:10:17+00:00 https://www.securityweek.com/breach-eye-care-software-vendor-hits-millions-patients www.secnews.physaphae.fr/article.php?IdArticle=5296783 False Data Breach,Threat,Guideline None None SecureMac - Security focused on MAC Problems with edit and unsend in iOS 16, a data breach at a healthcare company, and a beer-based scam for Father's Day. ]]> 2022-06-17T14:00:00+00:00 https://www.securemac.com/news/checklist-283-edit-the-edit-and-unsend-plans www.secnews.physaphae.fr/article.php?IdArticle=5219272 False Data Breach None None Sontiq - Ancien CyberScout In 2021, the number of data breaches reached historic levels and the Identity Theft Resource Center reports that the start of this year is generating similar record-breaking trends. As a result, the personal information of millions of individuals is being put at risk of identity, financial and other crimes. What kinds of businesses are being […] ]]> 2022-06-16T13:47:51+00:00 https://www.sontiq.com/resources/webinar-mid-year-data-breach-update/ www.secnews.physaphae.fr/article.php?IdArticle=5190609 False Data Breach None None Sontiq - Ancien CyberScout   What If My Business Experiences a Data Breach? Regardless of cybersecurity proficiency, no organization is safe from data breaches. That's why it's critical every business develops and documents an Incident Response Plan. Your response plan will outline steps your organization should take if you suspect data has been compromised. The quicker your business follows […] ]]> 2022-06-16T08:01:16+00:00 https://www.sontiq.com/resources/data-breach-response-steps/ www.secnews.physaphae.fr/article.php?IdArticle=5183834 False Data Breach None None Malwarebytes Labs - MalwarebytesLabs 2022-06-15T10:30:13+00:00 https://blog.malwarebytes.com/cybercrime/2022/06/email-compromise-leads-to-healthcare-data-breach-at-kaiser-permanente/ www.secnews.physaphae.fr/article.php?IdArticle=5163007 False Data Breach None None IT Security Guru - Blog Sécurité 2022-06-15T09:43:21+00:00 https://www.itsecurityguru.org/2022/06/15/avera-health-data-breach-affects-700-patients/?utm_source=rss&utm_medium=rss&utm_campaign=avera-health-data-breach-affects-700-patients www.secnews.physaphae.fr/article.php?IdArticle=5163530 False Data Breach None None BHconsulting - Consulting Curated advice, guidance, learning and trends in cybersecurity and privacy, as chosen by our consultants. Verizon DBIR 2022 findings highlight the human factor in breaches The 2022 Verizon Data Breach Investigations Report has found – once again – that people were the main driver behind most breaches. In this year's edition, 82 per cent of ... ]]> 2022-06-15T09:32:16+00:00 https://bhconsulting.ie/security-roundup-june-2022/ www.secnews.physaphae.fr/article.php?IdArticle=5162614 False Data Breach None None Kaspersky Threatpost - Kaspersky est un éditeur antivirus russe 2022-06-14T11:08:27+00:00 https://threatpost.com/kaiser-permanente-breach/179949/ www.secnews.physaphae.fr/article.php?IdArticle=5142601 False Data Breach None None IT Security Guru - Blog Sécurité 2022-06-14T10:13:08+00:00 https://www.itsecurityguru.org/2022/06/14/kaiser-permanente-discloses-data-breach-at-wa-health-plan-69k-impacted/?utm_source=rss&utm_medium=rss&utm_campaign=kaiser-permanente-discloses-data-breach-at-wa-health-plan-69k-impacted www.secnews.physaphae.fr/article.php?IdArticle=5142231 False Data Breach None None CSO - CSO Daily Dashboard the massive 2017 data breach at the credit reporting agency Equifax, have been traced back to unpatched vulnerabilities-a 2019 Tripwire study found that 27% of all breaches were caused by unpatched vulnerabilities, while a 2018 Ponemon study put the number at a jaw-dropping 60%.To read this article in full, please click here]]> 2022-06-14T02:00:00+00:00 https://www.csoonline.com/article/3663493/vulnerability-management-mistakes-cisos-still-make.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=5141340 False Data Breach Equifax None Bleeping Computer - Magazine Américain 2022-06-13T18:54:20+00:00 https://www.bleepingcomputer.com/news/security/kaiser-permanente-data-breach-exposes-health-data-of-69k-people/ www.secnews.physaphae.fr/article.php?IdArticle=5136735 False Data Breach,Guideline None None Sontiq - Ancien CyberScout Last year saw a historic number of data breaches that exposed the personal information of millions of individuals to possible risk. In our new 15-minute webinar, we'll be joined by the Identity Theft Resource Center (ITRC) to review 2022's threat trends, the risks to businesses, and how employees and consumers can help protect their identity, […] ]]> 2022-06-08T18:27:42+00:00 https://www.sontiq.com/resources/2022-mid-year-data-breach-update-webinar/ www.secnews.physaphae.fr/article.php?IdArticle=5043825 False Data Breach,Threat None None InformationSecurityBuzzNews - Site de News Securite 2022-06-08T11:44:33+00:00 https://informationsecuritybuzz.com/expert-comments/why-shields-health-care-group-suffers-data-breach-expert-weighs-in/ www.secnews.physaphae.fr/article.php?IdArticle=5039171 False Data Breach None None Bleeping Computer - Magazine Américain 2022-06-07T12:27:24+00:00 https://www.bleepingcomputer.com/news/security/online-gun-shops-in-the-us-hacked-to-steal-credit-cards/ www.secnews.physaphae.fr/article.php?IdArticle=5023872 False Data Breach None None Bleeping Computer - Magazine Américain 2022-06-07T10:53:17+00:00 https://www.bleepingcomputer.com/news/security/shields-health-care-group-data-breach-affects-2-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=5022219 False Data Breach None None Troy Hunt - Blog 2022-06-04T08:08:12+00:00 https://www.troyhunt.com/weekly-update-298/ www.secnews.physaphae.fr/article.php?IdArticle=4967695 False Data Breach None None CSO - CSO Daily Dashboard ransomware schemes are planning to take any time to rest. Ransomware was all over the infosec news headlines in the past week, with one new report revealing that its presence has grown more in the last year than in the past several years combined.Here's roundup of noteworthy ransomware stories you might have missed.DBIR finds ransomware increased by double digits Verizon Business' annual Data Breach Investigations Report (DBIR) is out and confirms what many CISOs already know: ransomware continues to plague business. Ransomware-related breach instances rose 13%, an increase larger than in the past 5 years combined.To read this article in full, please click here]]> 2022-06-02T02:00:00+00:00 https://www.csoonline.com/article/3662038/ransomware-roundup-system-locking-malware-dominates-headlines.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=4930072 False Ransomware,Data Breach,Malware None None CyberArk - Software Vendor 2022-06-01T13:00:45+00:00 https://www.cyberark.com/blog/2022-verizon-dbir-15-years-15-takeaways/ www.secnews.physaphae.fr/article.php?IdArticle=4922966 False Data Breach,Threat None None knowbe4 - cybersecurity services ]]> 2022-06-01T12:59:33+00:00 https://blog.knowbe4.com/cyberheistnews-vol-12-22-heads-up-the-new-verizon-2022-data-breach-investigation-report-shows-sharp-rise-in-ransomware www.secnews.physaphae.fr/article.php?IdArticle=4918859 False Ransomware,Data Breach None None SecureMac - Security focused on MAC Verizon's data breach report annual report is a good way to see how the data breach landscape is changing. ]]> 2022-05-31T17:42:25+00:00 https://www.securemac.com/news/highlights-from-verizons-2022-data-breach-investigation-report www.secnews.physaphae.fr/article.php?IdArticle=4907146 False Data Breach None None Kaspersky - Kaspersky Research blog 2022-05-25T15:57:59+00:00 https://securelist.com/the-verizon-2022-dbir/105844/ www.secnews.physaphae.fr/article.php?IdArticle=4804567 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-25T11:07:08+00:00 https://informationsecuritybuzz.com/expert-comments/2022-verizon-data-breach-investigations-report-cyber-security-experts-reactions/ www.secnews.physaphae.fr/article.php?IdArticle=4801497 False Data Breach None None Dark Reading - Informationweek Branch 2022-05-24T23:21:49+00:00 https://www.darkreading.com/tech-trends/dbir-case-for-passwordless www.secnews.physaphae.fr/article.php?IdArticle=4802455 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-24T17:18:43+00:00 https://informationsecuritybuzz.com/expert-comments/chicago-public-schools-data-breach-expert-comments/ www.secnews.physaphae.fr/article.php?IdArticle=4788181 False Ransomware,Data Breach None None Global Security Mag - Site de news francais Investigations]]> 2022-05-24T12:23:20+00:00 http://www.globalsecuritymag.fr/Parution-du-Data-Breach,20220524,125777.html www.secnews.physaphae.fr/article.php?IdArticle=4785029 False Ransomware,Data Breach None None IT Security Guru - Blog Sécurité 2022-05-24T10:29:45+00:00 https://www.itsecurityguru.org/2022/05/24/cyberattack-on-general-motors-exposes-customer-data/?utm_source=rss&utm_medium=rss&utm_campaign=cyberattack-on-general-motors-exposes-customer-data www.secnews.physaphae.fr/article.php?IdArticle=4783805 False Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-05-23T16:37:00+00:00 https://www.infosecurity-magazine.com/news/mark-zuckerberg-sued-cambridge/ www.secnews.physaphae.fr/article.php?IdArticle=4776722 False Data Breach,Guideline None 4.0000000000000000 Bleeping Computer - Magazine Américain 2022-05-21T13:32:30+00:00 https://www.bleepingcomputer.com/news/security/ransomware-attack-exposes-data-of-500-000-chicago-students/ www.secnews.physaphae.fr/article.php?IdArticle=4739506 False Ransomware,Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-19T14:59:33+00:00 https://informationsecuritybuzz.com/expert-comments/omnicell-suffers-ransomware-attack-impact-to-internal-systems/ www.secnews.physaphae.fr/article.php?IdArticle=4707549 True Ransomware,Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-19T14:56:45+00:00 https://informationsecuritybuzz.com/expert-comments/texas-state-dept-of-insurance-consumer-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=4707550 False Data Breach None None CSO - CSO Daily Dashboard both of whom were later indicted for their breach of Lynda (a company acquired by Linkedin).To read this article in full, please click here]]> 2022-05-19T02:00:00+00:00 https://www.csoonline.com/article/3660560/uber-cisos-trial-underscores-the-importance-of-truth-transparency-and-trust.html#tk.rss_all www.secnews.physaphae.fr/article.php?IdArticle=4704406 False Data Breach,Hack Uber,Uber None InfoSecurity Mag - InfoSecurity Magazine 2022-05-18T16:32:00+00:00 https://www.infosecurity-magazine.com/news/pharmacy-giant-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=4690864 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-18T15:45:01+00:00 https://informationsecuritybuzz.com/expert-comments/expert-commentary-omnicell-hit-by-cyber-attack/ www.secnews.physaphae.fr/article.php?IdArticle=4689831 False Ransomware,Data Breach None None IT Security Guru - Blog Sécurité 2022-05-18T09:48:42+00:00 https://www.itsecurityguru.org/2022/05/18/omnicell-healthcare-company-hit-by-ransomware/?utm_source=rss&utm_medium=rss&utm_campaign=omnicell-healthcare-company-hit-by-ransomware www.secnews.physaphae.fr/article.php?IdArticle=4685567 False Ransomware,Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-17T13:17:37+00:00 https://informationsecuritybuzz.com/expert-comments/google-other-rtb-companies-behind-biggest-data-breach-ever-recorded/ www.secnews.physaphae.fr/article.php?IdArticle=4667297 False Data Breach None None InformationSecurityBuzzNews - Site de News Securite 2022-05-16T10:33:40+00:00 https://informationsecuritybuzz.com/expert-comments/cornwall-council-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=4655368 False Data Breach None None Bleeping Computer - Magazine Américain 2022-05-16T10:17:58+00:00 https://www.bleepingcomputer.com/news/security/engineering-firm-parker-discloses-data-breach-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=4657238 False Ransomware,Data Breach None None InfoSecurity Mag - InfoSecurity Magazine 2022-05-12T16:30:00+00:00 https://www.infosecurity-magazine.com/news/oklahoma-city-indian-clinic-data/ www.secnews.physaphae.fr/article.php?IdArticle=4585476 False Data Breach None 2.0000000000000000 knowbe4 - cybersecurity services Months after the MailChimp data breach targeting 102 companies in the crypto sector, a new lawsuit has been filed seeking millions of dollars in damages.]]> 2022-05-12T16:23:17+00:00 https://blog.knowbe4.com/trezor-customers-class-action-lawsuit-against-mailchimp www.secnews.physaphae.fr/article.php?IdArticle=4584887 False Data Breach None 3.0000000000000000 The State of Security - Magazine Américain Penetration testing is something that more companies and organizations should be considering a necessary expense. I say this because over the years the cost of data breaches and other forms of malicious intrusions and disruptions are getting costlier. Per IBM Security's “Cost of a Data Breach Report 2021,” the average cost of a breach has […]… Read More ]]> 2022-05-12T03:00:00+00:00 https://www.tripwire.com/state-of-security/controls/cis-control-18/ www.secnews.physaphae.fr/article.php?IdArticle=4665043 False Data Breach None None