This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-04-29T07:29:47+00:00 www.secnews.physaphae.fr SecurityWeek - Security News Une puce de sécurité ESC améliorée rend le micrologiciel de plusieurs PC professionnels HP résilients aux attaques informatiques quantiques.

---

>An upgraded ESC security chip makes the firmware of several HP business PCs resilient to quantum computer attacks. ]]> 2024-03-08T10:14:14+00:00 https://www.securityweek.com/quantum-attack-protection-added-to-hp-business-pcs/ www.secnews.physaphae.fr/article.php?IdArticle=8460775 False None None 3.0000000000000000 SecurityWeek - Security News Le rôle du CISO évolue en permanence en tandem avec la dépendance croissante à l'égard de la cybersécurité en tant que catalyseur commercial.Mais il est possible que la SEC ait lancé une courbe avec son affirmation croissante?

---

>The role of the CISO continuously evolves in tandem with the growing reliance on cybersecurity as a business enabler. But it is possible that the SEC has pitched a curveball with its increasing assertiveness? ]]> 2024-03-07T12:10:37+00:00 https://www.securityweek.com/cyber-insights-2024-a-dire-year-for-cisos/ www.secnews.physaphae.fr/article.php?IdArticle=8460312 False None None 2.0000000000000000 SecurityWeek - Security News Fidelity affirme que 28 000 personnes ont été touchées par la violation de données chez le fournisseur de services tiers Infosys McCamish.

---

>Fidelity says 28,000 individuals were impacted by data breach at third-party services provider Infosys McCamish System. ]]> 2024-03-07T10:42:31+00:00 https://www.securityweek.com/fidelity-investments-notifying-28000-people-of-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8460284 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Une nouvelle campagne de logiciels malveillants a été observée ciblant les instances d'apache Hadoop, Confluence, Docker et Redis. .

---

>A new malware campaign has been observed targeting misconfigured Apache Hadoop, Confluence, Docker, and Redis instances. ]]> 2024-03-06T15:50:14+00:00 https://www.securityweek.com/linux-malware-campaign-targets-misconfigured-cloud-servers/ www.secnews.physaphae.fr/article.php?IdArticle=8459917 False Malware,Cloud None 2.0000000000000000 SecurityWeek - Security News Les experts de la réponse aux incidents de Sygnia fournissent un souffle détaillé par coup d'une attaque de ransomware Blackcat et partagent des conseils pour la survie.

---

>Incident response experts at Sygnia provide a detailed blow-by-blow of a BlackCat ransomware attack and share tips for survival. ]]> 2024-03-06T15:21:19+00:00 https://www.securityweek.com/anatomy-of-a-blackcat-attack-through-the-eyes-of-incident-response/ www.secnews.physaphae.fr/article.php?IdArticle=8459887 False Ransomware,Technical None 4.0000000000000000 SecurityWeek - Security News À l'ère de l'augmentation des tensions géopolitiques causées par les guerres réelles et la menace d'une action chinoise contre Taïwan, l'OT est une cible qui ne peut être ignorée par les États-nations.

---

>In an age of increasing geopolitical tensions caused by actual wars, and the threat of Chinese action against Taiwan, OT is a target that cannot be ignored by nation states. ]]> 2024-03-06T12:16:22+00:00 https://www.securityweek.com/cyber-insights-2024-ot-ics-and-iiot/ www.secnews.physaphae.fr/article.php?IdArticle=8459839 False Threat,Industrial None 2.0000000000000000 SecurityWeek - Security News Le Blackcat Ransomware Gang annonce la fermeture alors qu'un affilié accuse le vol de 22 millions de dollars de rançon.

---

>The BlackCat ransomware gang announces shutdown as an affiliate accuses theft of $22 million ransom payment. ]]> 2024-03-06T11:25:48+00:00 https://www.securityweek.com/blackcat-ransomware-gang-suspected-of-pulling-exit-scam/ www.secnews.physaphae.fr/article.php?IdArticle=8459790 False Ransomware None 2.0000000000000000 SecurityWeek - Security News CISA ajoute un téléphone Android Pixel (CVE-2023-21237) et Sunhillo Sureline (CVE-2021-36380) définitivement à son catalogue de vulnérabilités exploitées connues.

---

>CISA adds Pixel Android phone (CVE-2023-21237) and Sunhillo SureLine (CVE-2021-36380) flaws to its known exploited vulnerabilities catalog.  ]]> 2024-03-06T11:00:00+00:00 https://www.securityweek.com/cisa-warns-of-pixel-phone-vulnerability-exploitation/ www.secnews.physaphae.fr/article.php?IdArticle=8459791 False Vulnerability,Mobile None 2.0000000000000000 SecurityWeek - Security News The Treasury Department sanctioned individuals associated with Intellexa Consortium, maker of the powerful Predator Spyware. ]]> 2024-03-05T19:41:07+00:00 https://www.securityweek.com/us-sanctions-spyware-company-and-executives-who-targeted-american-journalists-government-officials/ www.secnews.physaphae.fr/article.php?IdArticle=8459494 False None None 3.0000000000000000 SecurityWeek - Security News American Express indique que les noms, les numéros de compte des cartes et les dates d'expiration des cartes ont été compromis dans une violation de données.

---

>American Express says names, card account numbers, and card expiration dates were compromised in a data breach. ]]> 2024-03-05T12:55:34+00:00 https://www.securityweek.com/american-express-discloses-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8459297 False Data Breach None 4.0000000000000000 SecurityWeek - Security News Le kit de phishing avancé utilise de nouvelles tactiques dans les attaques ciblant les plateformes de crypto-monnaie et les employés de la FCC.

---

>Advanced phishing kit employs novel tactics in attack targeting cryptocurrency platforms and FCC employees. ]]> 2024-03-04T12:12:51+00:00 https://www.securityweek.com/fcc-employees-targeted-in-sophisticated-phishing-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8458826 False None None 3.0000000000000000 SecurityWeek - Security News Les chercheurs démontrent que des attaques à distance de style Stuxnet sont possibles contre de nombreux API modernes en utilisant des logiciels malveillants en ligne.

---

>Researchers demonstrate that remote Stuxnet-style attacks are possible against many modern PLCs using web-based malware. ]]> 2024-03-04T11:43:47+00:00 https://www.securityweek.com/remote-stuxnet-style-attack-possible-with-web-based-plc-malware-researchers/ www.secnews.physaphae.fr/article.php?IdArticle=8458827 False Malware None 3.0000000000000000 SecurityWeek - Security News Le gardien national d'Air accusé d'avoir divulgué des documents militaires hautement classifiés sur les réseaux sociaux devrait plaider coupable dans son affaire fédérale.

---

>The Air National Guardsman accused of leaking highly classified military documents on social media is expected to plead guilty in his federal case. ]]> 2024-03-02T12:25:19+00:00 https://www.securityweek.com/pentagon-leak-suspect-jack-teixeira-expected-to-plead-guilty-in-federal-case/ www.secnews.physaphae.fr/article.php?IdArticle=8457950 False Legislation None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui pourraient avoir glissé sous le radar: des imprimantes 3D non corrigées, les imprimantes 3D piratées par des chapeaux blancs, WhatsApp obtiendra des logiciels espions NSO.

---

>Noteworthy stories that might have slipped under the radar: Unpatched Google vulnerability exploited, 3D printers hacked by white hats, WhatsApp will get NSO spyware.  ]]> 2024-03-01T16:02:10+00:00 https://www.securityweek.com/in-other-news-google-flaw-exploited-3d-printer-hack-whatsapp-gets-nso-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8457596 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News La chaîne de restaurants Golden Corral dit que les informations personnelles ont été compromises dans une violation de données d'août 2023.

---

>Restaurant chain Golden Corral says personal information was compromised in an August 2023 data breach. ]]> 2024-03-01T13:07:44+00:00 https://www.securityweek.com/data-breach-at-golden-corral-impacts-180000-employees/ www.secnews.physaphae.fr/article.php?IdArticle=8457526 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Les informations d'identification stockées sur les appareils VPN Ivanti touchées par les vulnérabilités récentes sont probablement compromises, selon les agences gouvernementales.

---

>Credentials stored on Ivanti VPN appliances impacted by recent vulnerabilities are likely compromised, government agencies say. ]]> 2024-03-01T12:30:44+00:00 https://www.securityweek.com/governments-urge-organizations-to-hunt-for-ivanti-vpn-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8457527 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Le conglomérat allemand de l'acier Thyssenkrupp confirme que l'une de ses unités automobiles a été perturbée par une attaque de ransomware.

---

>German steelmaking conglomerate Thyssenkrupp confirms one of its automotive units was disrupted by a ransomware attack. ]]> 2024-02-29T16:07:48+00:00 https://www.securityweek.com/german-steelmaker-thyssenkrupp-confirms-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8457090 False Ransomware None 3.0000000000000000 SecurityWeek - Security News Le détaillant de réduction européen Pepco a perdu et euro; 15,5 millions à la suite de ce qu'il a décrit comme une attaque de phishing.

---

>European discount retailer Pepco has lost €15.5 million as a result of what it described as a phishing attack. ]]> 2024-02-29T14:47:40+00:00 https://www.securityweek.com/discount-retail-giant-pepco-loses-e15-million-to-cybercriminals/ www.secnews.physaphae.fr/article.php?IdArticle=8457035 False None None 2.0000000000000000 SecurityWeek - Security News Meta a corrigé une vulnérabilité critique qui aurait pu être exploitée pour reprendre n'importe quel compte Facebook via une attaque par force brute.

---

>Meta has patched a critical vulnerability that could have been exploited to take over any Facebook account via a brute-force attack. ]]> 2024-02-29T13:41:57+00:00 https://www.securityweek.com/meta-patches-facebook-account-takeover-vulnerability/ www.secnews.physaphae.fr/article.php?IdArticle=8457006 False Vulnerability None 3.0000000000000000 SecurityWeek - Security News Le gang de ransomware Alphv / BlackCat affirme que 6 téraoctets de données ont été volés à la société de technologies de santé Change Healthcare.

---

>The Alphv/BlackCat ransomware gang says 6 terabytes of data were stolen from healthcare technology firm Change Healthcare. ]]> 2024-02-29T11:57:53+00:00 https://www.securityweek.com/blackcat-ransomware-gang-claims-attack-on-change-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8456953 False Ransomware,Medical None 2.0000000000000000 SecurityWeek - Security News Le groupe nord-coréen Lazarus a exploité le conducteur Applocker Zero-Day CVE-2024-21338 pour l'escalade des privilèges dans les attaques impliquant Fudmodule Rootkit.

---

>North Korean group Lazarus exploited AppLocker driver zero-day CVE-2024-21338 for privilege escalation in attacks involving FudModule rootkit. ]]> 2024-02-29T10:28:36+00:00 https://www.securityweek.com/windows-zero-day-exploited-by-north-korean-hackers-in-rootkit-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8456926 False Vulnerability,Threat APT 38 3.0000000000000000 SecurityWeek - Security News La surface d'attaque de l'API se développe et les vulnérabilités de l'API augmentent.L'IA aidera les attaquants à trouver et à exploiter les vulnérabilités d'API à grande échelle.

---

>The API attack surface is expanding and API vulnerabilities are growing. AI will help attackers find and exploit API vulnerabilities at scale. ]]> 2024-02-28T15:38:05+00:00 https://www.securityweek.com/cyber-insights-2024-apis-a-clear-present-and-future-danger/ www.secnews.physaphae.fr/article.php?IdArticle=8456492 False Vulnerability,Threat None 3.0000000000000000 SecurityWeek - Security News The US government says Russia\'s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide. ]]> 2024-02-28T12:36:12+00:00 https://www.securityweek.com/us-government-urges-cleanup-of-routers-infected-by-russias-apt28/ www.secnews.physaphae.fr/article.php?IdArticle=8456413 False None APT 28 3.0000000000000000 SecurityWeek - Security News Lors de l'évaluation de XDR, considérez sa valeur en fonction de sa capacité à réduire la complexité et à améliorer la détection des menaces et les temps de réponse.

---

>When evaluating XDR, consider its value based on its ability to reduce complexity and improve threat detection and response times. ]]> 2024-02-28T12:24:15+00:00 https://www.securityweek.com/is-xdr-enough-the-hidden-gaps-in-your-security-net/ www.secnews.physaphae.fr/article.php?IdArticle=8456414 False Threat None 3.0000000000000000 SecurityWeek - Security News Les acteurs de la menace chinoise ciblent les appareils VPN Ivanti avec de nouveaux logiciels malveillants conçus pour persister des mises à niveau du système.

---

>Chinese threat actors target Ivanti VPN appliances with new malware designed to persist system upgrades. ]]> 2024-02-28T12:21:28+00:00 https://www.securityweek.com/chinese-cyberspies-use-new-malware-in-ivanti-vpn-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8456415 False Malware,Threat None 3.0000000000000000 SecurityWeek - Security News Les ordinateurs quantiques arrivent et vaincront le chiffrement actuel du PKE.Mais cette cryptopocalypse ne dépend pas des ordinateurs quantiques - cela pourrait se produire par d'autres moyens, à tout moment.

---

>Quantum computers are coming, and will defeat current PKE encryption. But this cryptopocalypse is not dependent upon quantum computers - it could happen through other means, at any time. ]]> 2024-02-27T14:04:11+00:00 https://www.securityweek.com/cyber-insights-2024-quantum-and-the-cryptopocalypse/ www.secnews.physaphae.fr/article.php?IdArticle=8455910 False None None 2.0000000000000000 SecurityWeek - Security News U-Haul indique que les informations du client ont été compromises dans une violation de données impliquant un système de suivi de réservation.

---

>U-Haul says customer information was compromised in a data breach involving a reservation tracking system. ]]> 2024-02-27T12:07:10+00:00 https://www.securityweek.com/67000-u-haul-customers-impacted-by-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8455857 False Data Breach None 3.0000000000000000 SecurityWeek - Security News L'IA permettra aux attaquants d'améliorer leurs attaques et les défenseurs d'améliorer leur défense.Au fil du temps, peu de temps changera - mais la bataille sera plus intense.

---

>AI will allow attackers to improve their attacks, and defenders to improve their defense. Over time, little will change - but the battle will be more intense. ]]> 2024-02-26T16:40:06+00:00 https://www.securityweek.com/cyber-insights-2024-artificial-intelligence/ www.secnews.physaphae.fr/article.php?IdArticle=8455470 False None None 2.0000000000000000 SecurityWeek - Security News UnitedHealth Group blâme un acteur de menace parrainé par l'État pour une cyberattaque perturbatrice sur sa filiale Change Healthcare.

---

>UnitedHealth Group is blaming a state-sponsored threat actor for a disruptive cyberattack on its subsidiary Change Healthcare. ]]> 2024-02-26T14:41:25+00:00 https://www.securityweek.com/state-sponsored-group-blamed-for-change-healthcare-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8455450 False Threat None 2.0000000000000000 SecurityWeek - Security News Le cabinet de prêt Loandepot a déclaré que les informations personnelles de 16,9 millions de personnes avaient été volées dans une attaque de ransomware début janvier.

---

>Lending firm LoanDepot said the personal information of 16.9 million people was stolen in a ransomware attack in early January. ]]> 2024-02-26T14:31:04+00:00 https://www.securityweek.com/loandepot-ransomware-attack-exposed-16-9-million-individuals/ www.secnews.physaphae.fr/article.php?IdArticle=8455451 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Les opérateurs de ransomwares de verrouillage annoncent un nouveau site de fuite alors qu'ils tentent de restaurer la crédibilité après le retrait des forces de l'ordre.

---

>The LockBit ransomware operators announce a new leak site as they try to restore credibility after law enforcement takedown. ]]> 2024-02-26T13:22:16+00:00 https://www.securityweek.com/lockbit-ransomware-gang-resurfaces-with-new-site/ www.secnews.physaphae.fr/article.php?IdArticle=8455396 False Ransomware None 3.0000000000000000 SecurityWeek - Security News La vulnérabilité de haute sévérité dans les raccourcis Apple pourrait entraîner une fuite d'informations sensibles à la connaissance de l'utilisateur.

---

>High-severity vulnerability in Apple Shortcuts could lead to sensitive information leak without user\'s knowledge. ]]> 2024-02-23T13:21:51+00:00 https://www.securityweek.com/apple-shortcuts-vulnerability-exposes-sensitive-information/ www.secnews.physaphae.fr/article.php?IdArticle=8454152 False Vulnerability None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui auraient pu glisser sous le radar: le vendeur de logiciels espions Varonis s'arrête, Crowdsstrike Tracks 232 Acteurs de la menace, Meta et Freenom Reach Settlement.

---

>Noteworthy stories that might have slipped under the radar: Spyware vendor Varonis is shutting down, Crowdstrike tracks 232 threat actors, Meta and Freenom reach settlement.  ]]> 2024-02-23T13:11:11+00:00 https://www.securityweek.com/in-other-news-spyware-vendor-shutdown-freenom-meta-settlement-232-threat-groups/ www.secnews.physaphae.fr/article.php?IdArticle=8454153 False Threat None 3.0000000000000000 SecurityWeek - Security News ConnectWise ScreenConnect vulnerability tracked as CVE-2024-1709 and SlashAndGrab exploited to deliver ransomware and other malware. ]]> 2024-02-23T12:25:12+00:00 https://www.securityweek.com/slashandgrab-screenconnect-vulnerability-widely-exploited-for-malware-delivery/ www.secnews.physaphae.fr/article.php?IdArticle=8454113 False Ransomware,Malware,Vulnerability None 2.0000000000000000 SecurityWeek - Security News Tangerine Telecom dit que les attaquants ont volé les informations personnelles de 230 000 personnes dans une base de données client héritée.

---

>Tangerine Telecom says attackers stole the personal information of 230,000 individuals from a legacy customer database. ]]> 2024-02-23T11:37:07+00:00 https://www.securityweek.com/230k-individuals-impacted-by-data-breach-at-australian-telco-tangerine/ www.secnews.physaphae.fr/article.php?IdArticle=8454114 False Data Breach None 2.0000000000000000 SecurityWeek - Security News AT&T said the hourslong outage to its U.S. cellphone network Thursday appeared to be the result of a technical error, not a malicious attack. ]]> 2024-02-23T10:13:36+00:00 https://www.securityweek.com/att-says-the-outage-to-its-us-cellphone-network-was-not-caused-by-a-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8454073 False Technical None 2.0000000000000000 SecurityWeek - Security News La société de gestion des pratiques de soins oculaires American Vision Partners fait face à un procès sur la violation de données ayant un impact sur 2,3 millions de patients.

---

>Eye care practice management firm American Vision Partners faces lawsuit over data breach impacting 2.3 million patients. ]]> 2024-02-22T16:45:08+00:00 https://www.securityweek.com/eye-care-services-firm-faces-lawsuit-over-data-breach-impacting-2-3-million/ www.secnews.physaphae.fr/article.php?IdArticle=8453753 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Des documents divulgués montrent comment les autorités chinoises surveillent les dissidents à l'étranger, piratent d'autres nations et promouvaient des récits pro-beijing en ligne.

---

>Leaked documents show how Chinese authorities surveil dissidents overseas, hack other nations and promote pro-Beijing narratives online. ]]> 2024-02-22T13:51:39+00:00 https://www.securityweek.com/an-online-dump-of-chinese-hacking-documents-offers-a-rare-window-into-pervasive-state-surveillance/ www.secnews.physaphae.fr/article.php?IdArticle=8453686 False Hack None 3.0000000000000000 SecurityWeek - Security News Insignes de ransomware: lorsque le ransomware est apparu pour la première fois, le terme s'est associé aux données de cryptage.C'est une idée fausse.

---

>Ransomware insights: When ransomware first appeared, the term became associated with encrypting data. This is a misconception. ]]> 2024-02-21T17:43:57+00:00 https://www.securityweek.com/cyber-insights-2024-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8453319 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Les équipes de sécurité doivent combiner les angles de détection côté client et côté serveur afin d'avoir les meilleures chances d'atténuer le risque de malware mobile avancé.

---

>Security teams need to combine the angles of client-side and server-side detection in order to have the best chance of mitigating the risk of advanced mobile malware. ]]> 2024-02-21T12:44:40+00:00 https://www.securityweek.com/diversifying-defenses-fjordphantom-malware-shows-importance-of-a-multi-pronged-approach/ www.secnews.physaphae.fr/article.php?IdArticle=8453231 False Malware,Mobile None 2.0000000000000000 SecurityWeek - Security News Attackers weaken Redis instances to deploy the new Migo malware and install a rootkit and cryptominers. ]]> 2024-02-21T12:33:22+00:00 https://www.securityweek.com/redis-servers-targeted-with-new-migo-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8453183 False Malware None 2.0000000000000000 SecurityWeek - Security News Le logiciel PSI du fournisseur de solutions de système de contrôle allemand dit qu'il se remet encore d'une attaque de ransomware.

---

>German control system solutions provider PSI Software says it is still recovering from a ransomware attack. ]]> 2024-02-21T11:27:16+00:00 https://www.securityweek.com/control-systems-firm-psi-struggles-to-recover-from-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8453161 False Ransomware,Industrial None 3.0000000000000000 SecurityWeek - Security News Supply Chain Security Insights: Une attaque réussie contre un fournisseur peut conduire à de multiples opportunités contre les clients en aval du fournisseur.

---

>Supply chain security insights: A successful attack against a supplier can lead to multiple opportunities against the supplier\'s downstream customers. ]]> 2024-02-20T14:01:44+00:00 https://www.securityweek.com/cyber-insights-2024-supply-chain/ www.secnews.physaphae.fr/article.php?IdArticle=8452721 False None None 2.0000000000000000 SecurityWeek - Security News Les attaquants exploitent un défaut d'exécution de code à distance récent dans le plugin WordPress du constructeur de briques pour déployer des logiciels malveillants.

---

>Attackers are exploiting a recent remote code execution flaw in the Bricks Builder WordPress plugin to deploy malware. ]]> 2024-02-20T13:10:33+00:00 https://www.securityweek.com/websites-hacked-via-vulnerability-in-bricks-builder-wordpress-plugin/ www.secnews.physaphae.fr/article.php?IdArticle=8452722 False Malware,Vulnerability None 2.0000000000000000 SecurityWeek - Security News Les ransomwares du cactus ont ajouté Schneider Electric à son site de fuite, affirmant avoir volé 1,5 téraoctets de données.

---

>Cactus ransomware has added Schneider Electric to its leak site, claiming to have stolen 1.5 terabytes of data. ]]> 2024-02-20T12:24:01+00:00 https://www.securityweek.com/cactus-ransomware-group-confirms-hacking-schneider-electric/ www.secnews.physaphae.fr/article.php?IdArticle=8452723 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Les récentes attaques de chevaux de Troie d'Android Anatsa sont devenues plus ciblées, montrant une évolution des tactiques.

---

>Recent Anatsa Android banking trojan attacks have become more targeted, showing an evolution in tactics. ]]> 2024-02-20T11:34:54+00:00 https://www.securityweek.com/anatsa-android-banking-trojan-continues-to-spread-via-google-play/ www.secnews.physaphae.fr/article.php?IdArticle=8452698 False Mobile None 2.0000000000000000 SecurityWeek - Security News Le groupe BlackCat / AlphV Ransomware a pris le crédit des attaques financières Loandepot et Prudential, menaçant de vendre ou de fuir les données.

---

>The BlackCat/Alphv ransomware group has taken credit for the LoanDepot and Prudential Financial attacks, threatening to sell or leak data. ]]> 2024-02-19T12:32:44+00:00 https://www.securityweek.com/ransomware-group-takes-credit-for-loandepot-prudential-financial-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8452290 False Ransomware None 2.0000000000000000 SecurityWeek - Security News La nouvelle initiative de cyber-défense de Google \\ se concentre sur l'augmentation de la cybersécurité grâce à l'intelligence artificielle.

---

>Google\'s new AI Cyber Defense Initiative focuses on boosting cybersecurity through artificial intelligence. ]]> 2024-02-19T10:27:24+00:00 https://www.securityweek.com/new-google-initiative-to-foster-ai-in-cybersecurity/ www.secnews.physaphae.fr/article.php?IdArticle=8452247 False None None 3.0000000000000000 SecurityWeek - Security News Les pirates chinois utilisent des chevaux de Troie Android et iOS pour obtenir les informations nécessaires pour voler de l'argent aux victimes \\ 'comptes bancaires.

---

>Chinese hackers use Android and iOS trojans to obtain information needed to steal money from victims\' bank accounts. ]]> 2024-02-19T10:10:05+00:00 https://www.securityweek.com/ios-trojan-collects-face-and-other-data-for-bank-account-hacking/ www.secnews.physaphae.fr/article.php?IdArticle=8452248 False Mobile None 2.0000000000000000 SecurityWeek - Security News A threat actor employed the administrative credentials of a former employee to hack a US government organization. ]]> 2024-02-16T13:53:42+00:00 https://www.securityweek.com/ex-employees-admin-credentials-used-in-us-gov-agency-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8450957 False Hack,Threat None 3.0000000000000000 SecurityWeek - Security News L'existence d'une technique d'infection précédemment inconnue utilisée par la société spyware NSO Group est suggérée par une seule ligne dans un contrat entre NSO et le régulateur des télécommunications du Ghana.

---

>The existence of a previously unknown infection technique used by spyware firm NSO Group is suggested by a single line in a contract between NSO and the telecom regulator of Ghana. ]]> 2024-02-16T13:27:24+00:00 https://www.securityweek.com/mysterious-mms-fingerprint-hack-used-by-spyware-firm-nso-group-revealed/ www.secnews.physaphae.fr/article.php?IdArticle=8450958 False Hack None 3.0000000000000000 SecurityWeek - Security News Le national ukrainien Vyacheslav Igorevich Penchukov a plaidé coupable à des rôles clés dans les opérations de logiciels malveillants Zeus et icedid.

---

>Ukrainian national Vyacheslav Igorevich Penchukov has pleaded guilty to holding key roles in the Zeus and IcedID malware operations. ]]> 2024-02-16T09:40:54+00:00 https://www.securityweek.com/ukrainian-pleads-guilty-in-us-to-key-role-in-zeus-icedid-malware-operations/ www.secnews.physaphae.fr/article.php?IdArticle=8450855 True Malware,Legislation None 2.0000000000000000 SecurityWeek - Security News La production dans cinq usines de fabricant de batteries allemandes Varta a été perturbée par une cyberattaque, peut-être une attaque de ransomware.

---

>Production at five plants of German battery maker Varta has been disrupted by a cyberattack, possibly a ransomware attack. ]]> 2024-02-15T15:03:13+00:00 https://www.securityweek.com/cyberattack-disrupts-production-in-varta-battery-factories/ www.secnews.physaphae.fr/article.php?IdArticle=8450465 False Ransomware,Hack None 3.0000000000000000 SecurityWeek - Security News Les attaques du DDOS ont évolué à partir des manifestations sociales par l'extorsion criminelle, le piratage d'attaques de fumeurs et la suppression des concurrents à la vengeance géopolitique.

---

>DDoS attacks have evolved from social protests through criminal extortion, hack attack smokescreens and competitor suppression to geopolitical vengeance. ]]> 2024-02-15T11:02:32+00:00 https://www.securityweek.com/ddos-hacktivism-is-back-with-a-geopolitical-vengeance/ www.secnews.physaphae.fr/article.php?IdArticle=8450381 False Hack None 2.0000000000000000 SecurityWeek - Security News Les chasseurs de menaces de Microsoft disent que les APT étrangers interagissent avec le chatppt d'Openai \\ pour automatiser la recherche de vulnérabilité malveillante, la reconnaissance cible et les tâches de création de logiciels malveillants.

---

>Microsoft threat hunters say foreign APTs are interacting with OpenAI\'s ChatGPT to automate malicious vulnerability research, target reconnaissance and malware creation tasks. ]]> 2024-02-14T18:25:10+00:00 https://www.securityweek.com/microsoft-catches-apts-using-chatgpt-for-vuln-research-malware-scripting/ www.secnews.physaphae.fr/article.php?IdArticle=8450120 False Malware,Vulnerability,Threat ChatGPT 2.0000000000000000 SecurityWeek - Security News Prudential Financial dit que les données administratives et utilisateurs ont été compromises dans une cyberattaque plus tôt ce mois-ci.

---

>Prudential Financial says administrative and user data was compromised in a cyberattack earlier this month. ]]> 2024-02-14T14:22:55+00:00 https://www.securityweek.com/prudential-financial-discloses-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8450040 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Patches publiées pour une nouvelle vulnérabilité DNSSEC nommée KeyTrap, décrite comme la pire attaque DNS jamais découverte.

---

>Patches released for a new DNSSEC vulnerability named KeyTrap, described as the worst DNS attack ever discovered.   ]]> 2024-02-14T12:53:28+00:00 https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/ www.secnews.physaphae.fr/article.php?IdArticle=8449978 False Vulnerability None 4.0000000000000000 SecurityWeek - Security News Bank of America informe certains clients que leurs informations personnelles ont été volées dans une violation de données chez un fournisseur de services tiers.

---

>Bank of America is notifying some customers that their personal information was stolen in a data breach at third-party services provider. ]]> 2024-02-13T13:58:40+00:00 https://www.securityweek.com/bank-of-america-informing-customers-of-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8449590 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Les hôpitaux roumains se tournent vers le stylo et le papier après une attaque de ransomware contre le système de gestion des soins de santé centralisé.

---

>Romanian hospitals turn to pen and paper after ransomware attack on centralized healthcare management system. ]]> 2024-02-13T11:28:40+00:00 https://www.securityweek.com/ransomware-attack-knocks-100-romanian-hospitals-offline/ www.secnews.physaphae.fr/article.php?IdArticle=8449549 True Ransomware None 2.0000000000000000 SecurityWeek - Security News Une tactique de logiciels malveillants surnommée \\ 'Hunter-Killer \' augmente, sur la base d'une analyse de plus de 600 000 échantillons de logiciels malveillants.Cela peut devenir l'approche standard des attaques avancées.

---

>A malware tactic dubbed \'hunter-killer\' is growing, based on an analysis of more than 600,000 malware samples. This may become the standard approach for advanced attacks. ]]> 2024-02-13T05:01:00+00:00 https://www.securityweek.com/hunter-killer-malware-tactic-growing-stealthy-persistent-and-aggressive/ www.secnews.physaphae.fr/article.php?IdArticle=8449478 False Malware None 2.0000000000000000 SecurityWeek - Security News Une campagne de rachat actif du cloud a eu un impact sur des dizaines d'environnements Azure et compromis des centaines de comptes d'utilisateurs

---

>An active cloud account takeover campaign has impacted dozens of Azure environments and compromised hundreds of user accounts. ]]> 2024-02-12T15:06:28+00:00 https://www.securityweek.com/ongoing-azure-cloud-account-takeover-campaign-targeting-senior-personnel/ www.secnews.physaphae.fr/article.php?IdArticle=8449309 False Cloud None 3.0000000000000000 SecurityWeek - Security News Des histoires remarquables qui pourraient avoir glissé sous le radar: 350 millions de dollars de fuite de données Google+, AI utilisé pour la fraude, 2023 Rapport de financement de la cybersécurité.

---

>Noteworthy stories that might have slipped under the radar: $350 million Google+ data leak settlement, AI used for fraud, 2023 cybersecurity funding report.  ]]> 2024-02-09T15:00:34+00:00 https://www.securityweek.com/in-other-news-350-million-google-settlement-ai-powered-fraud-cybersecurity-funding/ www.secnews.physaphae.fr/article.php?IdArticle=8448433 False None None 3.0000000000000000 SecurityWeek - Security News AnyDesk a fourni plus d'informations sur le hack récent, y compris lorsque l'attaque a commencé et son impact.

---

>AnyDesk has provided more information on the recent hack, including when the attack started and its impact. ]]> 2024-02-09T11:17:11+00:00 https://www.securityweek.com/anydesk-shares-more-information-on-recent-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8448351 False Hack None 3.0000000000000000 SecurityWeek - Security News Les cyber-opérations offensives de l'Iran contre Israël sont passées de chaotique en octobre 2023 à cibler de nouvelles géographies un mois plus tard.

---

>Iran\'s offensive cyber operations against Israel went from chaotic in October 2023 to targeting new geographies a month later. ]]> 2024-02-08T15:13:43+00:00 https://www.securityweek.com/iran-ramps-up-cyberattacks-on-israel-amid-hamas-conflict-microsoft/ www.secnews.physaphae.fr/article.php?IdArticle=8448064 False None None 2.0000000000000000 SecurityWeek - Security News Google Play Protect bloquera l'installation de demandes de téléchargement de côté demandant des autorisations fréquemment abusées par des fraudeurs.

---

>Google Play Protect will block the installation of sideloaded applications requesting permissions frequently abused by fraudsters. ]]> 2024-02-08T12:39:48+00:00 https://www.securityweek.com/google-announces-enhanced-fraud-protection-for-android/ www.secnews.physaphae.fr/article.php?IdArticle=8448020 False Mobile None 3.0000000000000000 SecurityWeek - Security News New CISA alert includes technical mitigations to harden attack surfaces and instructions to hunt for the Chinese government-backed hackers. ]]> 2024-02-07T21:45:09+00:00 https://www.securityweek.com/cisa-chinas-volt-typhoon-hackers-planning-critical-infrastructure-disruption/ www.secnews.physaphae.fr/article.php?IdArticle=8447815 False Technical Guam 2.0000000000000000 SecurityWeek - Security News Verizon informe 63 000 employés que leurs informations personnelles ont été exposées dans une violation de données interne.

---

>Verizon is informing 63,000 employees that their personal information was exposed in an internal data breach. ]]> 2024-02-07T12:48:03+00:00 https://www.securityweek.com/verizon-discloses-internal-data-breach-impacting-63000-employees/ www.secnews.physaphae.fr/article.php?IdArticle=8447675 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Android \'s Février 2024 Patchs de sécurité résoudre 46 vulnérabilités, y compris un bug d'exécution de code distant critique.

---

>Android\'s February 2024 security patches resolve 46 vulnerabilities, including a critical remote code execution bug. ]]> 2024-02-06T12:22:10+00:00 https://www.securityweek.com/critical-remote-code-execution-vulnerability-patched-in-android/ www.secnews.physaphae.fr/article.php?IdArticle=8447259 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News Plus de 60 des Adobe, Google, Android, Microsoft, Mozilla et Apple Zero-Days qui ont été révélés depuis 2016 attribués à des fournisseurs de logiciels espions.

---

>More than 60 of the Adobe, Google, Android, Microsoft, Mozilla and Apple zero-days that have come to light since 2016 attributed to spyware vendors.  ]]> 2024-02-06T10:49:32+00:00 https://www.securityweek.com/google-links-over-60-zero-days-to-commercial-spyware-vendors/ www.secnews.physaphae.fr/article.php?IdArticle=8447244 False Studies,Mobile,Commercial None 4.0000000000000000 SecurityWeek - Security News Les responsables ont déclaré que la politique de restriction des visas peut s'appliquer aux citoyens de tout pays qui avait mal utilisé ou facilité l'utilisation maligne de logiciels espions

---

>Officials said the visa restriction policy can apply to citizens of any country found to have misused or facilitated the malign use of spyware ]]> 2024-02-05T19:54:26+00:00 https://www.securityweek.com/us-to-roll-out-visa-restrictions-on-people-who-misuse-spyware-to-target-journalists-activists/ www.secnews.physaphae.fr/article.php?IdArticle=8447051 False None None 2.0000000000000000 SecurityWeek - Security News Google announces $1 million investment in improving Rust\'s interoperability with legacy C++ codebases. ]]> 2024-02-05T17:01:00+00:00 https://www.securityweek.com/google-contributes-1-million-to-rust-says-it-prevented-hundreds-of-android-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8446994 False Vulnerability,Mobile None 3.0000000000000000 SecurityWeek - Security News AnyDesk révoque des certificats et des mots de passe en réponse à une violation de sécurité récemment découverte impactant les systèmes de production.

---

>AnyDesk is revoking certificates and passwords in response to a recently discovered security breach impacting production systems. ]]> 2024-02-05T09:48:39+00:00 https://www.securityweek.com/anydesk-revokes-passwords-certificates-in-response-to-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8446872 False Hack None 3.0000000000000000 SecurityWeek - Security News Le général Timothy D. Haugh a assumé le commandement de la NSA et de l'USCYBERCOM le 2 février 2024, prenant en charge le rôle du général Paul M. Nakasone.

---

>General Timothy D. Haugh assumed command of NSA and USCYBERCOM on February 2, 2024, taking over the role from General Paul M. Nakasone. ]]> 2024-02-04T23:20:26+00:00 https://www.securityweek.com/general-timothy-haugh-takes-lead-of-nsa-and-cyber-command/ www.secnews.physaphae.fr/article.php?IdArticle=8446825 False None None 2.0000000000000000 SecurityWeek - Security News La société de logiciels FTC et de collecte de fonds Blackbaud atteint le règlement sur les mauvaises pratiques de sécurité qui ont conduit à une violation de données majeure.

---

>FTC and fundraising software company Blackbaud reach settlement over poor security practices that led to a major data breach. ]]> 2024-02-02T14:50:09+00:00 https://www.securityweek.com/ftc-orders-blackbaud-to-address-poor-security-practices/ www.secnews.physaphae.fr/article.php?IdArticle=8446022 False Data Breach None 3.0000000000000000 SecurityWeek - Security News Les forces de l'ordre dans 50 pays s'associent pour éliminer les ransomwares, les logiciels malveillants bancaires et les menaces de phishing.

---

>Law enforcement in 50 countries partner to take down ransomware, banking malware, and phishing threats.  ]]> 2024-02-02T12:18:54+00:00 https://www.securityweek.com/31-people-arrested-in-global-cybercrime-crackdown/ www.secnews.physaphae.fr/article.php?IdArticle=8445965 False Ransomware,Malware,Legislation None 3.0000000000000000 SecurityWeek - Security News Le président Biden opposera son veto au veto aux législateurs républicains \\ 'tenter de renverser les récentes règles de divulgation des cyber-incidents de la seconde.

---

>President Biden would veto Republican lawmakers\' attempt to overturn the SEC\'s recent cyber incident disclosure rules.  ]]> 2024-02-02T12:08:51+00:00 https://www.securityweek.com/biden-to-veto-attempt-to-overturn-sec-cyber-incident-disclosure-rules/ www.secnews.physaphae.fr/article.php?IdArticle=8445966 False None None 3.0000000000000000 SecurityWeek - Security News Un acteur de menace nationale a accédé aux systèmes internes de cloudflare à l'aide d'identification volées pendant le piratage d'Okta.

---

>A nation-state threat actor accessed internal Cloudflare systems using credentials stolen during the Okta hack. ]]> 2024-02-02T11:15:47+00:00 https://www.securityweek.com/cloudflare-hacked-by-suspected-state-sponsored-attacker/ www.secnews.physaphae.fr/article.php?IdArticle=8445943 False Hack,Threat None 3.0000000000000000 SecurityWeek - Security News Video: Top US cyber officials testify on China\'s cyber threat to U.S. national security and critical infrastrcuture. ]]> 2024-02-01T15:32:30+00:00 https://www.securityweek.com/watch-top-cyber-officials-testify-on-chinas-cyber-threat-to-us/ www.secnews.physaphae.fr/article.php?IdArticle=8445612 False Threat None 3.0000000000000000 SecurityWeek - Security News Les logiciels espions de Pegasus du groupe NSO ont été utilisés en Jordanie pour pirater les téléphones portables des journalistes, des avocats, des droits de l'homme et des militants politiques.

---

>Pegasus spyware from NSO Group was used in Jordan to hack the cellphones of journalists, lawyers, human rights and political activists. ]]> 2024-02-01T12:51:07+00:00 https://www.securityweek.com/at-least-30-journalists-lawyers-and-activists-hacked-with-pegasus-in-jordan-forensic-probe-finds/ www.secnews.physaphae.fr/article.php?IdArticle=8445568 False Hack None 3.0000000000000000 SecurityWeek - Security News Johnson Controls confirme que la récente attaque de ransomware a entraîné un vol de données et dit que les dépenses ont atteint 27 millions de dollars.

---

>Johnson Controls confirms that the recent ransomware attack resulted in data theft and says expenses reached $27 million.  ]]> 2024-02-01T11:39:15+00:00 https://www.securityweek.com/johnson-controls-ransomware-attacks-data-theft-confirmed-cost-exceeds-27-million/ www.secnews.physaphae.fr/article.php?IdArticle=8445528 False Ransomware None 3.0000000000000000 SecurityWeek - Security News Les pirates de gouvernement chinois visent activement les usines de traitement de l'eau, le réseau électrique, les systèmes de transport et d'autres infrastructures critiques à l'intérieur des États-Unis, a déclaré le directeur du FBI, Chris Wray, a déclaré aux législateurs.

---

>Chinese government hackers are busily targeting water treatment plants, the electrical grid, transportation systems and other critical infrastructure inside the United States, FBI Director Chris Wray told lawmakers. ]]> 2024-02-01T02:06:29+00:00 https://www.securityweek.com/us-says-it-disrupted-a-china-cyber-threat-but-warns-hackers-could-still-wreak-havoc-for-americans/ www.secnews.physaphae.fr/article.php?IdArticle=8445402 False Threat None 3.0000000000000000 SecurityWeek - Security News US Treasury Department announces sanctions against two Egyptian nationals accused of running an ISIS cyber platform. ]]> 2024-01-31T11:30:00+00:00 https://www.securityweek.com/us-sanctions-two-isis-affiliated-cybersecurity-experts/ www.secnews.physaphae.fr/article.php?IdArticle=8445170 False None None 2.0000000000000000 SecurityWeek - Security News Le gouvernement américain aurait désactivé des parties d'une cyber campagne de botnet menée par l'acteur de menace chinoise Volt Typhoon.

---

>US government reportedly disabled parts of a botnet-powered cyber campaign conducted by the Chinese threat actor Volt Typhoon. ]]> 2024-01-30T12:54:27+00:00 https://www.securityweek.com/us-disrupted-chinese-hacking-operation-aimed-at-critical-infrastructure-report/ www.secnews.physaphae.fr/article.php?IdArticle=8444814 False Threat Guam 3.0000000000000000 SecurityWeek - Security News Insurance brokerage firm Keenan & Associates says personal information stolen in an August 2023 cyberattack. ]]> 2024-01-30T12:20:17+00:00 https://www.securityweek.com/1-5-million-affected-by-data-breach-at-insurance-broker-keenan-associates/ www.secnews.physaphae.fr/article.php?IdArticle=8444770 False Data Breach None 2.0000000000000000 SecurityWeek - Security News La division commerciale de durabilité de Schneider Electric \\ a perturbé à la suite d'une attaque de ransomware et d'une violation de données.

---

>Schneider Electric\'s Sustainability Business division disrupted as a result of a ransomware attack and data breach.  ]]> 2024-01-30T12:14:41+00:00 https://www.securityweek.com/schneider-electric-division-responding-to-ransomware-attack-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8444771 False Ransomware,Data Breach,Industrial None 4.0000000000000000 SecurityWeek - Security News Le groupe de cyberespionnage lié à la Chine Blackwood a été surpris en train de livrer des logiciels malveillants aux entités en Chine et au Japon.

---

>The China-linked cyberespionage group Blackwood has been caught delivering malware to entities in China and Japan.  ]]> 2024-01-26T11:30:21+00:00 https://www.securityweek.com/elusive-chinese-cyberspy-group-hijacks-software-updates-to-deliver-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8443367 False Malware None 3.0000000000000000 SecurityWeek - Security News Vladimir Dunaev condamné à 5 ans de prison après avoir admis avoir participé au développement et à la distribution du malware Trickbot.

---

>Vladimir Dunaev sentenced to 5 years in prison after admitting to participating in the development and distribution of the TrickBot malware. ]]> 2024-01-26T11:19:44+00:00 https://www.securityweek.com/russian-trickbot-malware-developer-sentenced-to-prison-in-us/ www.secnews.physaphae.fr/article.php?IdArticle=8443368 False Malware,Legislation None 3.0000000000000000 SecurityWeek - Security News Plus d'un million de dollars versés au cours des deux premiers jours de PWN2OWN Automotive pour Tesla, Infodiveral et EV Charger Hacks.

---

>Over $1 million paid out in the first two days of Pwn2Own Automotive for Tesla, infotainment and EV charger hacks. ]]> 2024-01-25T12:32:18+00:00 https://www.securityweek.com/tesla-infotainment-hack-earns-researchers-100000-at-pwn2own-automotive/ www.secnews.physaphae.fr/article.php?IdArticle=8442981 False Hack None 3.0000000000000000 SecurityWeek - Security News Plus de 5 000 serveurs Gitlab n'ont pas encore été corrigées contre CVE-2023-7028, une vulnérabilité de réinitialisation de mot de passe critique.

---

>Over 5,000 GitLab servers have yet to be patched against CVE-2023-7028, a critical password reset vulnerability. ]]> 2024-01-25T11:53:21+00:00 https://www.securityweek.com/thousands-of-gitlab-instances-unpatched-against-critical-password-reset-bug/ www.secnews.physaphae.fr/article.php?IdArticle=8442982 False Vulnerability None 3.0000000000000000 SecurityWeek - Security News Jason\'s Deli says hackers targeted users in credential stuffing attacks, likely compromising their personal information. ]]> 2024-01-24T12:30:55+00:00 https://www.securityweek.com/340000-jasons-deli-customers-potentially-impacted-by-credential-stuffing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8442572 False None None 2.0000000000000000 SecurityWeek - Security News Les États-Unis, le Royaume-Uni et l'Australie annoncent des sanctions contre Alexander Ermakov pour son rôle dans l'attaque des ransomwares en 2022 contre l'assureur de la santé Medibank.

---

>US, UK and Australia announce sanctions against Alexander Ermakov for his role in the 2022 ransomware attack on healthcare insurer Medibank.  ]]> 2024-01-24T09:07:32+00:00 https://www.securityweek.com/us-uk-australia-sanction-russian-man-over-ransomware-attack-on-healthcare-insurer/ www.secnews.physaphae.fr/article.php?IdArticle=8442469 False Ransomware None 3.0000000000000000 SecurityWeek - Security News AERCAP confirme l'attaque des ransomwares après une émergence de gangs de cybercrimes répertorie la société sur son site Web de fuite.

---

>AerCap confirms ransomware attack after emerging cybercrime gang lists the company on its leak website. ]]> 2024-01-23T13:04:59+00:00 https://www.securityweek.com/aircraft-lessor-aercap-confirms-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8442122 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Les agences gouvernementales suédoises et les magasins ont été perturbées par une attaque de ransomware qui aurait été menée par des pirates russes.

---

>Swedish government agencies and shops were disrupted by a ransomware attack believed to have been carried out by Russian hackers. ]]> 2024-01-23T11:36:28+00:00 https://www.securityweek.com/russian-hackers-suspected-of-sweden-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8442071 False Ransomware None 3.0000000000000000 SecurityWeek - Security News National russe sanctionné par le gouvernement australien pour son rôle dans l'attaque de Medibank sur plus de 10 millions d'Australiens.

---

>Russian national sanctioned by the Australian government for his role in the Medibank attack impacting more than 10 million Australians. ]]> 2024-01-23T09:56:37+00:00 https://www.securityweek.com/a-sanction-has-been-imposed-on-a-hacker-who-released-australian-health-insurer-client-data/ www.secnews.physaphae.fr/article.php?IdArticle=8442072 False None None 3.0000000000000000 SecurityWeek - Security News Le géant des prêts Loandepot (NYSE: LDI) a déclaré qu'environ 16,6 millions d'individus étaient touchés à la suite d'une attaque de ransomware.

---

>Lending giant LoanDepot (NYSE: LDI) said that roughly 16.6 million individuals were impacted as a result of a ransomware attack. ]]> 2024-01-22T15:06:40+00:00 https://www.securityweek.com/loandepot-breach-16-6-million-people-impacted/ www.secnews.physaphae.fr/article.php?IdArticle=8441710 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Varonis trouve une vulnérabilité et trois méthodes d'attaque qui peuvent être utilisées pour obtenir des hachages NTLM via Outlook et deux programmes Windows.

---

>Varonis finds one vulnerability and three attack methods that can be used to obtain NTLM hashes via Outlook and two Windows programs. ]]> 2024-01-22T14:14:55+00:00 https://www.securityweek.com/new-ntlm-hash-leak-attacks-target-outlook-windows-programs/ www.secnews.physaphae.fr/article.php?IdArticle=8441711 False Vulnerability None 3.0000000000000000 SecurityWeek - Security News Le propriétaire des marques de vêtements et de chaussures VF Corp partage plus de détails sur l'impact d'une attaque de ransomware de décembre 2023.

---

>Apparel and footwear brands owner VF Corp shares more details on the impact of a December 2023 ransomware attack. ]]> 2024-01-19T11:54:04+00:00 https://www.securityweek.com/vf-corp-says-data-breach-resulting-from-ransomware-attack-impacts-35-million/ www.secnews.physaphae.fr/article.php?IdArticle=8440639 False Ransomware,Data Breach None 2.0000000000000000 SecurityWeek - Security News Le document CISA, FBI et EPA vise à aider les organisations d'eau et d'eaux usées à améliorer leur cyber-résilience et leur réponse aux incidents.

---

>CISA, FBI and EPA document aims to help water and wastewater organizations improve their cyber resilience and incident response. ]]> 2024-01-19T11:17:02+00:00 https://www.securityweek.com/us-gov-publishes-cybersecurity-guidance-for-water-and-wastewater-utilities/ www.secnews.physaphae.fr/article.php?IdArticle=8440619 False None None 4.0000000000000000 SecurityWeek - Security News Le nombre d'appareils VPN Ivanti compromis par l'exploitation des augmentations de défauts récentes et une autre vulnérabilité est ajoutée à la liste exploitée.

---

>The number of Ivanti VPN appliances compromised through exploitation of recent flaws increases and another vulnerability is added to exploited list. ]]> 2024-01-19T11:01:38+00:00 https://www.securityweek.com/ivanti-epmm-vulnerability-targeted-in-attacks-as-exploitation-of-vpn-flaws-increases/ www.secnews.physaphae.fr/article.php?IdArticle=8440600 False Vulnerability None 3.0000000000000000 SecurityWeek - Security News Le groupe de menaces russes Colriver a développé SPICA, un malware qui lui permet de compromettre les systèmes et de voler des informations.

---

>Russian threat group ColdRiver has developed Spica, a malware that enables it to compromise systems and steal information.  ]]> 2024-01-18T14:06:53+00:00 https://www.securityweek.com/russian-apt-known-for-phishing-attacks-is-also-developing-malware-google-warns/ www.secnews.physaphae.fr/article.php?IdArticle=8440306 False Malware,Threat None 3.0000000000000000