www.secnews.physaphae.fr

www.secnews.physaphae.fr This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-03T06:15:47+00:00 www.secnews.physaphae.fr HackRead - Chercher Cyber PowerLoom annonce l'expansion à la base alors qu'elle dépasse 5200 nœuds d'instantané Lite Powerloom Announces Expansion to Base as It Surpasses 5200 Snapshotter Lite Nodes Par uzair amir Au cours des 30 derniers jours, PowerLoom a généré plus de 250 millions d'instantanés (points de données uniques), avec une augmentation quotidienne à environ 10 millions d'instantanés Ceci est un article de HackRead.com Lire la publication originale: PowerLoom annonce l'expansion à la base lorsqu'elle dépasse 5200 nœuds d'instantané Lite

>By Uzair Amir In the last 30 days, Powerloom generated over 250 million snapshots (unique data points), with a daily increase to approximately 10 million snapshots This is a post from HackRead.com Read the original post: Powerloom Announces Expansion to Base as It Surpasses 5200 Snapshotter Lite Nodes]]> 2024-04-02T18:02:40+00:00 https://www.hackread.com/powerloom-expansion-base-surpasses-snapshotter-lite-nodes/ www.secnews.physaphae.fr/article.php?IdArticle=8474750 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Le nouvel outil Unapimon de Winnti \\ masque les logiciels malveillants à partir du logiciel de sécurité Winnti\\'s new UNAPIMON tool hides malware from security software The Chinese \'Winnti\' hacking group was found using a previously undocumented malware called UNAPIMON to let malicous processes run without being detected. [...]]]> 2024-04-02T17:59:42+00:00 https://www.bleepingcomputer.com/news/security/winntis-new-unapimon-tool-hides-malware-from-security-software/ www.secnews.physaphae.fr/article.php?IdArticle=8474848 False Malware,Tool None 2.0000000000000000 Recorded Future - FLux Recorded Future Le comté de Missouri, qui abrite Kansas City Missouri county home to Kansas City says suspected ransomware attack affecting tax payments

L'un des plus grands comtés du Missouri a confirmé mardi qu'il faisait face à une attaque de ransomware présumée affectant les paiements d'impôts et les biens en ligne, les licences de mariage et les recherches de détenus.Jackson County - qui compte 715 000 résidents et qui abrite une partie de Kansas City - a déclaré qu'elle avait "identifié des perturbations importantes au sein de son

One of the largest counties in Missouri confirmed on Tuesday that it is dealing with a suspected ransomware attack affecting tax payments and online property, marriage licenses and inmate searches. Jackson County - which has 715,000 residents and is home to part of Kansas City - said it has “identified significant disruptions within its]]> 2024-04-02T17:32:25+00:00 https://therecord.media/kansas-city-missouri-county-suspected-ransomware-attack-tax-payments www.secnews.physaphae.fr/article.php?IdArticle=8474748 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future YouTube n'a pas bloqué la désinformation sur les élections indiennes, les chercheurs trouvent YouTube failed to block disinformation about Indian elections, researchers find

YouTube n'a pas réussi à détecter la manipulation et la désinformation dans des dizaines de fausses publicités politiques téléchargées par des chercheurs pour tester la modération de la plate-forme du contenu lié aux élections en Inde.Selon une nouvelle enquête des groupes de défense des droits de l'homme Access Now et Global Witness, YouTube a approuvé chacune des 48 annonces en anglais, en hindi et en telugu, qui contenait

YouTube failed to detect manipulation and disinformation in dozens of fake political advertisements uploaded by researchers to test the platform\'s moderation of election-related content in India. According to a new investigation by the human rights groups Access Now and Global Witness, YouTube approved each of 48 ads in English, Hindi, and Telugu, which contained]]> 2024-04-02T17:06:33+00:00 https://therecord.media/youtube-failed-to-block-indian-disinformation-elections www.secnews.physaphae.fr/article.php?IdArticle=8474749 False None None 3.0000000000000000 Schneier on Security - Chercheur Cryptologue Américain Declassifiez les newsletters de la NSA Declassified NSA Newsletters Contes du krypt , & # 8221;de 1994 à 2003. Il y a beaucoup de choses intéressantes dans les 800 pages de newsletter.Il existe de nombreuses rédactions.Et une revue de 1994 de la cryptographie appliquée par expurgé : La cryptographie appliquée, pour ceux qui ne lisent pas Internet News, est un livre écrit par Bruce Schneier l'année dernière.Selon la veste, Schneier est un expert en sécurité des données avec un diplôme de maître en informatique.Selon ses disciples, il est un héros qui a finalement réuni les fils lâches de la cryptographie pour que le grand public comprenne.Schneier a rassemblé des recherches académiques, des potins sur Internet et tout ce qu'il pouvait trouver sur la cryptographie en un fouillis de 600 pages ...

Through a 2010 FOIA request (yes, it took that long), we have copies of the NSA’s KRYPTOS Society Newsletter, “Tales of the Krypt,” from 1994 to 2003. There are many interesting things in the 800 pages of newsletter. There are many redactions. And a 1994 review of Applied Cryptography by redacted: Applied Cryptography, for those who don’t read the internet news, is a book written by Bruce Schneier last year. According to the jacket, Schneier is a data security expert with a master’s degree in computer science. According to his followers, he is a hero who has finally brought together the loose threads of cryptography for the general public to understand. Schneier has gathered academic research, internet gossip, and everything he could find on cryptography into one 600-page jumble...]]> 2024-04-02T17:05:15+00:00 https://www.schneier.com/blog/archives/2024/04/declassified-nsa-newsletters.html www.secnews.physaphae.fr/article.php?IdArticle=8474727 False None None 2.0000000000000000 Vuln GCP - FLux Vuln GoogleCloudPlatform GCP-2024-020 CVE-2023-48022 ) dans ]]> 2024-04-02T17:03:04+00:00 https://cloud.google.com/support/bulletins/index#gcp-2024-020 www.secnews.physaphae.fr/article.php?IdArticle=8474728 False Vulnerability,Threat,Cloud None None The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Exploitation de la puissance du CTEM pour la sécurité du cloud Harnessing the Power of CTEM for Cloud Security Cloud solutions are more mainstream – and therefore more exposed – than ever before. In 2023 alone, a staggering 82% of data breaches were against public, private, or hybrid cloud environments. What\'s more, nearly 40% of breaches spanned multiple cloud environments. The average cost of a cloud breach was above the overall average, at $4.75 million. In a time where cloud has become the de facto]]> 2024-04-02T16:57:00+00:00 https://thehackernews.com/2024/04/harnessing-power-of-ctem-for-cloud.html www.secnews.physaphae.fr/article.php?IdArticle=8474584 False Cloud None 3.0000000000000000 HackRead - Chercher Cyber Authentic8 lance le programme Silo Shield pour protéger les communautés à haut risque en partenariat avec CISA Authentic8 launches Silo Shield program to protect high-risk communities in partnership with CISA Par cyber navre Washington, DC, États-Unis, 2 avril 2024, CyberNewswire Authentic8, fournisseur de la principale plateforme de recherche OSINT Silo pour & # 8230; Ceci est un article de HackRead.com Lire le post original: Authentic8 lance le programme Silo Shield pour protéger les communautés à haut risque en partenariat avec CISA

>By Cyber Newswire Washington, DC, United States, April 2nd, 2024, CyberNewsWire Authentic8, provider of the leading OSINT research platform Silo for… This is a post from HackRead.com Read the original post: Authentic8 launches Silo Shield program to protect high-risk communities in partnership with CISA]]> 2024-04-02T16:34:06+00:00 https://www.hackread.com/authentic8-launches-silo-shield-program-to-protect-high-risk-communities-in-partnership-with-cisa/ www.secnews.physaphae.fr/article.php?IdArticle=8474723 False None None 2.0000000000000000 The Register - Site journalistique Anglais Pandabuy admet une violation de données de 1,3 million d'enregistrements uniques Pandabuy admits to data breach of 1.3 million unique records Nothing says \'sorry\' like 10 percent off shipping for a month Ecommerce platform Pandabuy has apologized after two cybercriminals were spotted hawking personal data belonging to 1.3 million customers.…]]> 2024-04-02T16:30:08+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/02/pandabuy_admits_to_data_breach/ www.secnews.physaphae.fr/article.php?IdArticle=8474722 False Data Breach None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Des pirates liés à la Chine déploient de nouveaux \\ 'Unapimon \\' malware pour les opérations furtives China-linked Hackers Deploy New \\'UNAPIMON\\' Malware for Stealthy Operations A threat activity cluster tracked as Earth Freybug has been observed using a new malware called UNAPIMON to fly under the radar. "Earth Freybug is a cyberthreat group that has been active since at least 2012 that focuses on espionage and financially motivated activities," Trend Micro security researcher Christopher So said in a report published today. "It has been observed to]]> 2024-04-02T16:30:00+00:00 https://thehackernews.com/2024/04/china-linked-hackers-deploy-new.html www.secnews.physaphae.fr/article.php?IdArticle=8474613 False Malware,Threat,Prediction None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine AT&T confirme 73 millions de violations de données clients liées à Dark Web AT&T Confirms 73 Million Customer Data Breach Linked to Dark Web The telecommunications giant said that the published dataset comprises information from 2019 or earlier]]> 2024-04-02T16:30:00+00:00 https://www.infosecurity-magazine.com/news/atandt-confirms-73m-customer-data/ www.secnews.physaphae.fr/article.php?IdArticle=8474724 False Data Breach None 2.0000000000000000 Recorded Future - FLux Recorded Future Google pour supprimer des milliards d'enregistrements de données sur la navigation Web pour résoudre le procès Google to delete billions of web browsing data records to resolve lawsuit

Google s'est engagé à détruire ou à désidentifier les grandes quantités de données de navigation Web recueillies auprès des utilisateurs en mode incognito dans le cadre d'un règlement de recours collectif de classe déposé lundi.Selon les termes du règlement proposé, Google désactivera ou supprimera les milliards de dossiers de données qu'il a collectés auprès des utilisateurs qui pensaient être

Google committed to destroying or de-identifying vast amounts of web browsing data gathered from users in Incognito mode as part of a landmark class-action lawsuit settlement filed Monday. Under the terms of the proposed settlement, Google will de-identify or delete the billions of data records it has collected from users who thought they were]]> 2024-04-02T16:24:25+00:00 https://therecord.media/google-to-delete-web-browsing-records-to-resolve-lawsuit www.secnews.physaphae.fr/article.php?IdArticle=8474720 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future La Fondation OWASP avertit les membres de la violation de données après avoir découvert 1 000 curriculum vitae sur Wiki Server OWASP Foundation warns members of data breach after discovering 1,000 resumes on Wiki server

Le Software Security à but non lucratif Open Worldwide Application Security Project (OWASP) a averti que ses membres d'une éventuelle violation de données affectant potentiellement toute personne membre de l'organisation de 2006 à 2014. & NBSP;Vendredi, la fondation a publié un avis expliquant que fin février, il a pris conscience d'un ancien serveur wiki qui

The software security nonprofit Open Worldwide Application Security Project (OWASP) has warned its members of a possible data breach potentially affecting anyone who was a member of the organization from 2006 to 2014. The foundation published an advisory on Friday explaining that in late February it became aware of an old Wiki server that]]> 2024-04-02T16:15:29+00:00 https://therecord.media/owasp-foundation-warns-of-data-breach-resumes www.secnews.physaphae.fr/article.php?IdArticle=8474721 False Data Breach None 2.0000000000000000 Silicon - Site de News Francais Data quality : faut-il être plus exigeant à l\'aune de l\'IA ? 2024-04-02T15:54:32+00:00 https://www.silicon.fr/data-quality-magic-quadrant-2024-477370.html www.secnews.physaphae.fr/article.php?IdArticle=8474692 False Commercial None 3.0000000000000000 Global Security Mag - Site de news francais Veracode acquiert Longbow Security Business]]> 2024-04-02T15:53:25+00:00 https://www.globalsecuritymag.fr/veracode-acquiert-longbow-security.html www.secnews.physaphae.fr/article.php?IdArticle=8474696 False Cloud None 2.0000000000000000 Global Security Mag - Site de news francais La Chine liée à des cyberattaques britanniques contre les données des électeurs Malwares]]> 2024-04-02T15:47:27+00:00 https://www.globalsecuritymag.fr/la-chine-liee-a-des-cyberattaques-britanniques-contre-les-donnees-des-electeurs.html www.secnews.physaphae.fr/article.php?IdArticle=8474697 False None None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Les chercheurs déclarent une augmentation de septiche des cas de vol de données Researchers Report Sevenfold Increase in Data Theft Cases Kaspersky said cybercriminals harvested 50.9 login credentials per infected device in 2023]]> 2024-04-02T15:45:00+00:00 https://www.infosecurity-magazine.com/news/sevenfold-increase-data-theft-cases/ www.secnews.physaphae.fr/article.php?IdArticle=8474695 False None None 2.0000000000000000 Global Security Mag - Site de news francais La délibération termine l'acquisition de FastPath Delinea Completes Acquisition of Fastpath nouvelles commerciales

Delinea Completes Acquisition of Fastpath, Modernizing Identity Security with Intelligent Authorization to Keep Data Secure - Business News]]> 2024-04-02T15:44:31+00:00 https://www.globalsecuritymag.fr/delinea-completes-acquisition-of-fastpath.html www.secnews.physaphae.fr/article.php?IdArticle=8474698 False None None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Plantes de contributeur de confiance Sophistiqué de porte dérobée dans la bibliothèque critique open source Trusted Contributor Plants Sophisticated Backdoor in Critical Open-Source Library A backdoor in XZ Utils, a widely used file-compressing software in Linux systems, could have led to a critical supply chain attack had a Microsoft researcher not spotted it in time]]> 2024-04-02T15:00:00+00:00 https://www.infosecurity-magazine.com/news/backdoor-xz-utils-linux-open-source/ www.secnews.physaphae.fr/article.php?IdArticle=8474667 False None None 2.0000000000000000 McAfee Labs - Editeur Logiciel Êtes-vous victime d'une attaque Deepfake?Voici ce qu'il faut faire ensuite Are You a Victim of a Deepfake Attack? Here\\'s What to Do Next

Avec la montée des outils d'IA bon marché et faciles à utiliser, les attaques Deepfake se retrouvent également à la hausse.Comme ça ...

With the rise of cheap and easy-to-use AI tools, deepfake attacks find themselves likewise on the rise. Startling as that... ]]> 2024-04-02T14:41:57+00:00 https://www.mcafee.com/blogs/tips-tricks/are-you-a-victim-of-a-deepfake-attack-heres-what-to-do-next/ www.secnews.physaphae.fr/article.php?IdArticle=8474669 False Tool None 2.0000000000000000 Checkpoint Research - Fabricant Materiel Securite L'agent Tesla ciblant les États-Unis et l'Australie: révéler l'identité des attaquants \\ ' Agent Tesla Targeting United States & Australia: Revealing the Attackers\\' Identities Research by: Antonis Terefos, Raman Ladutska Part I from the series E-Crime & Punishment Introduction When considering a notoriously famous topic known for quite a long time, it may feel like there is nothing new to add to this area anymore – all paths traced, all words said, all “i”s dotted. Is it worth an […] ]]> 2024-04-02T14:26:57+00:00 https://research.checkpoint.com/2024/agent-tesla-targeting-united-states-and-australia/ www.secnews.physaphae.fr/article.php?IdArticle=8474668 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Inculquer l'organisation de la mentalité de pirate à l'échelle Instilling the Hacker Mindset Organizationwide It\'s critical for security teams to stay vigilant not only when it comes to major security issues, but also with minor lags in security best practice.]]> 2024-04-02T14:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/instilling-hacker-mindset-organizationwide www.secnews.physaphae.fr/article.php?IdArticle=8474641 False None None 3.0000000000000000 The Register - Site journalistique Anglais Fichiers Rubrik pour rendre public après une alliance avec Microsoft Rubrik files to go public following alliance with Microsoft 2024-04-02T13:30:09+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/02/rubrik_files_for_ipo/ www.secnews.physaphae.fr/article.php?IdArticle=8474640 False None None 2.0000000000000000 HackRead - Chercher Cyber Clearpool s'étend à Avalanche avec une entreprise de fintech cotée en lançant le premier crédit de crédit Clearpool Expands to Avalanche with Listed Fintech Firm Launching First Credit Vault Par uzair amir Clearpool lance des coffrets de crédit sur Avalanche, offrant une solution de crédit en chaîne avec un soutien d'actifs réel, marquant une étape importante dans le fait de combler la finance traditionnelle et de défi grâce à des partenariats avec des entreprises comme Banxa. Ceci est un article de HackRead.com Lire le post original: Clearpool s'étend à Avalanche avec une entreprise de fintech répertoriée lançant le premier crédit de crédit

>By Uzair Amir Clearpool launches Credit Vaults on Avalanche, offering an on-chain credit solution with real-world asset backing, marking a significant step in bridging traditional finance and DeFi through partnerships with firms like Banxa. This is a post from HackRead.com Read the original post: Clearpool Expands to Avalanche with Listed Fintech Firm Launching First Credit Vault]]> 2024-04-02T13:19:14+00:00 https://www.hackread.com/clearpool-debuts-avalanche-fintech-credit-vault-launch/ www.secnews.physaphae.fr/article.php?IdArticle=8474642 False None None 2.0000000000000000 ProofPoint - Firm Security Proofpoint a nommé un leader global de la compasse de leadership de Kuppingercole pour la sécurité des e-mails Proofpoint Named an Overall Leader in KuppingerCole Leadership Compass for Email Security 2024-04-02T13:04:07+00:00 https://www.proofpoint.com/us/newsroom/press-releases/proofpoint-named-overall-leader-kuppingercole-leadership-compass-email www.secnews.physaphae.fr/article.php?IdArticle=8474847 False None None 2.0000000000000000 Palo Alto Network - Site Constructeur IA, cybersécurité et ascension des modèles de grande langue AI, Cybersecurity and the Rise of Large Language Models Découvrez comment l'IA a un impact sur la détection des menaces, la réponse aux incidents et la gestion des risques et découvrez les stratégies d'intégration d'IA sécurisée.

>Discover how AI impacts threat detection, incident response and risk management, and learn about strategies for secure AI integration. ]]> 2024-04-02T13:00:59+00:00 https://www.paloaltonetworks.com/blog/2024/04/ai-cybersecurity-and-large-language-models/ www.secnews.physaphae.fr/article.php?IdArticle=8474608 False Threat None 2.0000000000000000 Checkpoint - Fabricant Materiel Securite Au-delà de l'imagination & # 8211;Comment l'IA est activement utilisée dans les campagnes électorales du monde entier Beyond Imagining – How AI is actively used in election campaigns around the world Les résultats clés de l'IA sont déjà largement utilisés dans les campagnes électorales du monde entier.Deepfakes et le clonage de voix ont été employés aux élections dans trois lieux principaux: par des candidats à l'auto-promotion.Par les candidats pour attaquer et diffamer les opposants politiques.Par les acteurs étrangers de l'État-nation de diffamer des candidats spécifiques.Les matériaux DeepFake (convaincant l'audio, la vidéo et les images générés par l'IA qui simulent ou modifient de manière trompeuse l'apparence, la voix ou les actions des candidats politiques) sont souvent diffusés peu de temps avant les dates électorales pour limiter la possibilité aux vérificateurs de faits de répondre.Les réglementations qui interdisent la discussion politique sur les médias grand public dans les heures qui ont précédé les élections, permettent de fausses nouvelles incontestées à [& # 8230;]

>Key Findings AI is already extensively utilized in election campaigns worldwide. Deepfakes and voice cloning have been employed in elections in three main venues: By candidates for self-promotion. By candidates to attack and defame political opponents. By foreign nation-state actors to defame specific candidates. Deepfake materials (convincing AI-generated audio, video, and images that deceptively fake or alter the appearance, voice, or actions of political candidates) are often disseminated shortly before election dates to limit the opportunity for fact-checkers to respond. Regulations which ban political discussion on mainstream media in the hours leading up to elections, allow unchallenged fake news to […] ]]> 2024-04-02T13:00:32+00:00 https://blog.checkpoint.com/research/beyond-imagining-how-ai-is-actively-used-in-election-campaigns-around-the-world/ www.secnews.physaphae.fr/article.php?IdArticle=8474614 False None None 2.0000000000000000 HackRead - Chercher Cyber Swalwell for Congress Campaign avec Wolfsbane.ai contre le clonage généré par l'AI-AI Swalwell for Congress Campaign with Wolfsbane.ai Against AI-Generated Cloning Par cyber navre Le membre du Congrès Swalwell s'associe à Wolfsbane.ai, en utilisant Advanced Tech pour protéger sa campagne en 2024 à partir de l'IA Deepfakes et de sauvegarder l'intégrité électorale. Ceci est un article de HackRead.com Lire le message original: Swalwell for Congress Campaign avec wolfsbane.ai contre le clonage généré par AI

>By Cyber Newswire Congressman Swalwell partners with Wolfsbane.ai, using advanced tech to shield his 2024 campaign from AI deepfakes and safeguard election integrity. This is a post from HackRead.com Read the original post: Swalwell for Congress Campaign with Wolfsbane.ai Against AI-Generated Cloning]]> 2024-04-02T13:00:23+00:00 https://www.hackread.com/swalwell-wolfsbane-ai-against-ai-generated-cloning/ www.secnews.physaphae.fr/article.php?IdArticle=8474643 False None None 2.0000000000000000 HackRead - Chercher Cyber Swalwell pour la campagne du Congrès s'associe à Wolfsbane.ai pour protéger contre le clonage généré par l'IA Swalwell for Congress Campaign Partners with Wolfsbane.ai to Protect Against AI Generated Cloning Par cyber navre Los Angeles, États-Unis, le 2 avril 2024, Cyberwire Today, membre du Congrès Eric Swalwell, CA-14, a annoncé qu'il s'était associé & # 8230; Ceci est un article de HackRead.com Lire le post original: Swalwell pour la campagne du Congrès s'associe à Wolfsbane.ai pour protéger contre l'IA généré de clonage

>By Cyber Newswire Los Angeles, United States, April 2nd, 2024, Cyberwire Today, Congressman Eric Swalwell, CA-14, announced that he has partnered… This is a post from HackRead.com Read the original post: Swalwell for Congress Campaign Partners with Wolfsbane.ai to Protect Against AI Generated Cloning]]> 2024-04-02T13:00:23+00:00 https://www.hackread.com/swalwell-for-congress-campaign-partners-with-wolfsbane-ai-to-protect-against-ai-generated-cloning/ www.secnews.physaphae.fr/article.php?IdArticle=8474611 False None None 3.0000000000000000 Checkpoint - Fabricant Materiel Securite Agent Tesla Targeting United States & Australia: Revealing the Attackers\' Identities Souleveillance La recherche sur le point de contrôle (RCR) a découvert trois campagnes malveillantes récentes de l'un des logiciels malveillants les plus répandus du marché & # 8211;Agent Tesla.These operations were aimed against US and Australian organizations and exploited the topics of goods purchasing and order delivery as their lures Upon investigation, we discovered that these threat actors had a database of 62,000 emails, including individuals and organizations from different spheres Apart from campaigns originating fromvictimes des entreprises, le groupe maintient un grand nombre de serveurs, qui sont utilisés pour la protection de leur identité malgré les efforts des acteurs de la menace pour maintenir leur anonymat, [& # 8230;]

Highlights Check Point Research (CPR) uncovered three recent malicious campaigns of one of the most prevalent malware in the market – Agent Tesla. These operations were aimed against US and Australian organizations and exploited the topics of goods purchasing and order delivery as their lures Upon investigation, we discovered that these threat actors had a database of 62,000 emails, including individuals and organizations from different spheres Apart from campaigns originating from victims of companies, the group maintains a large number of servers, which are used for protection of their identity Despite the efforts of threat actors to keep their anonymity, […] ]]> 2024-04-02T13:00:04+00:00 https://blog.checkpoint.com/research/agent-tesla-targeting-united-states-australia-revealing-the-attackers-identities/ www.secnews.physaphae.fr/article.php?IdArticle=8475273 False Malware,Threat None 2.0000000000000000 Fortinet - Fabricant Materiel Securite Entrez dans l'ère de la plate-forme Step into the Platform Era Explore the different levels of the platform concept to help you determine what\'s right for you. Read more.]]> 2024-04-02T13:00:00+00:00 https://www.fortinet.com/blog/business-and-technology/step-into-the-platform-era www.secnews.physaphae.fr/article.php?IdArticle=8474638 False None None 2.0000000000000000 Security Intelligence - Site de news Américain L'évolution d'un CISO: comment le rôle a changé The evolution of a CISO: How the role has changed Dans de nombreuses organisations, le directeur de la sécurité de l'information (CISO) se concentre principalement & # 8212;et parfois exclusivement & # 8212;sur la cybersécurité.Cependant, avec les menaces sophistiquées d'aujourd'hui et le paysage des menaces évolutives, les entreprises changent de nombreux rôles & # 8217;Responsabilités et élargir le rôle du CISO est à la pointe de ces changements.Selon Gartner, la pression réglementaire et l'expansion de la surface d'attaque seront [& # 8230;]

>In many organizations, the Chief Information Security Officer (CISO) focuses mainly — and sometimes exclusively — on cybersecurity. However, with today’s sophisticated threats and evolving threat landscape, businesses are shifting many roles’ responsibilities, and expanding the CISO’s role is at the forefront of those changes. According to Gartner, regulatory pressure and attack surface expansion will […] ]]> 2024-04-02T13:00:00+00:00 https://securityintelligence.com/articles/ciso-role-evolution/ www.secnews.physaphae.fr/article.php?IdArticle=8474637 False Threat None 2.0000000000000000 HackRead - Chercher Cyber Des centaines d'Indiens ont sauvé des gangs cybercriminaux cambodgiens Hundreds of Indians Rescued from Cambodian Cybercrime Gangs Par waqas Les autorités indiennes sauvent des centaines de trafic pour la cybercriminalité au Cambodge.Les victimes attirées par de faux emplois, forcés de travailler dans & # 8230; Ceci est un article de HackRead.com Lire le post original: des centaines de centaines de centaines de centaines de centaines de centaines deLes Indiens se sont sauvés des gangs cambodgiens de la cybercriminalité

>By Waqas Indian authorities rescue hundreds trafficked for cybercrime in Cambodia. Victims lured by false jobs, forced to work in… This is a post from HackRead.com Read the original post: Hundreds of Indians Rescued from Cambodian Cybercrime Gangs]]> 2024-04-02T12:50:52+00:00 https://www.hackread.com/indians-rescued-cambodian-cybercrime-gangs/ www.secnews.physaphae.fr/article.php?IdArticle=8474612 False None None 2.0000000000000000 Korben - Bloger francais Faille de sécurité dans les terminaux de check-in IBIS – les codes d\'accès aux chambres exposés 2024-04-02T12:39:22+00:00 https://korben.info/faille-securite-terminaux-check-in-ibis-codes-acces-chambres-exposes.html www.secnews.physaphae.fr/article.php?IdArticle=8474639 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google pour supprimer des milliards de dossiers de navigation en mode \\ 'incognito \\' Settlement de procès de confidentialité Google to Delete Billions of Browsing Records in \\'Incognito Mode\\' Privacy Lawsuit Settlement Google has agreed to purge billions of data records reflecting users\' browsing activities to settle a class action lawsuit that claimed the search giant tracked them without their knowledge or consent in its Chrome browser. The class action, filed in 2020, alleged the company misled users by tracking their internet browsing activity who thought that it remained private when using the "]]> 2024-04-02T12:38:00+00:00 https://thehackernews.com/2024/04/google-to-delete-billions-of-browsing.html www.secnews.physaphae.fr/article.php?IdArticle=8474472 False None None 2.0000000000000000 Silicon - Site de News Francais Quel LLM pour coder en cobol ? Un benchmark spécifique émerge 2024-04-02T12:17:45+00:00 https://www.silicon.fr/llm-cobol-benchmark-477364.html www.secnews.physaphae.fr/article.php?IdArticle=8474610 False None None 4.0000000000000000 The Register - Site journalistique Anglais Les responsables polonais peuvent faire face à des accusations criminelles dans la sonde spyware de Pegasus Polish officials may face criminal charges in Pegasus spyware probe Victims of the powerful surveillance tool will soon find out the truth Former Polish government officials may face criminal charges following an investigation into their use of the notorious spyware Pegasus to surveil political opponents and others.…]]> 2024-04-02T12:00:11+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/02/polish_pegasus_inquiry/ www.secnews.physaphae.fr/article.php?IdArticle=8474581 False Tool None 2.0000000000000000 Dark Reading - Informationweek Branch Les cyberattaques produisaient une perturbation physique en augmentation Cyberattacks Wreaking Physical Disruption on the Rise Ransomware groups tore into manufacturing other parts of the OT sector in 2023, and a few attacks caused eight- and nine-figure damages. But worse is yet to come in 2024.]]> 2024-04-02T12:00:00+00:00 https://www.darkreading.com/ics-ot-security/cyberattacks-wreaking-physical-disruption-on-the-rise www.secnews.physaphae.fr/article.php?IdArticle=8474583 False Ransomware,Industrial None 3.0000000000000000 Checkpoint Research - Fabricant Materiel Securite Au-delà de l'imagination & # 8211;Comment l'IA est activement utilisée dans les campagnes électorales du monde entier Beyond Imagining – How AI is Actively Used in Election Campaigns Around the World Auteur: Yoav Arad Pinkas Clé des résultats du fond 2024 devrait être un moment central pour les processus démocratiques dans le monde, alors que plus de 2 milliards d'individus dans 50 pays se préparent à voter lors des élections.Cette vague électorale mondiale comprend des pays comme les États-Unis, l'Inde, le Mexique, le Parlement européen et l'Afrique du Sud, après des bulletins de vote importants [& # 8230;]

>Author: Yoav Arad Pinkas Key Findings Background 2024 is expected to be a pivotal moment for democratic processes worldwide, as over 2 billion individuals in 50 nations prepare to cast their ballots in elections. This global electoral wave includes countries such as the United States, India, Mexico, the European Parliament, and South Africa, following significant ballots […] ]]> 2024-04-02T12:00:00+00:00 https://research.checkpoint.com/2024/beyond-imagining-how-ai-is-actively-used-in-election-campaigns-around-the-world/ www.secnews.physaphae.fr/article.php?IdArticle=8474586 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain La Russie charge les suspects derrière le vol de 160 000 cartes de crédit Russia charges suspects behind theft of 160,000 credit cards Russia\'s Prosecutor General\'s Office has announced the indictment of six suspected "hacking group" members for using malware to steal credit card and payment information from foreign online stores. [...]]]> 2024-04-02T11:37:08+00:00 https://www.bleepingcomputer.com/news/security/russia-charges-suspects-behind-theft-of-160-000-credit-cards/ www.secnews.physaphae.fr/article.php?IdArticle=8474694 False Malware None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial New Mitre Engage Mappings publié pour ATT & CK pour ICS, ATT & CK pour mobile New MITRE Engage mappings released for ATT&CK for ICS, ATT&CK for Mobile Non-profit organization MITRE announced Monday that its Engage team has introduced new mappings for techniques from the ATT&CK... ]]> 2024-04-02T11:26:02+00:00 https://industrialcyber.co/ics-security-framework/new-mitre-engage-mappings-released-for-attck-for-ics-attck-for-mobile/ www.secnews.physaphae.fr/article.php?IdArticle=8474585 False Mobile,Industrial None 2.0000000000000000 The Register - Site journalistique Anglais Inc Ransom prétend être derrière \\ 'cyber incident \\' au conseil municipal britannique INC Ransom claims to be behind \\'cyber incident\\' at UK city council This follows attack on NHS services in Scotland last week The cyber skids at INC Ransom are claiming responsbility for the ongoing cybersecurity incident at Leicester City Council, according to a post caught by eagle-eyed infosec watchers.…]]> 2024-04-02T11:15:14+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/02/inc_ransom_leicester_council/ www.secnews.physaphae.fr/article.php?IdArticle=8474582 False None None 2.0000000000000000 Global Security Mag - Site de news francais Cybersécurité sur un budget: comment les petites entreprises peuvent rester en sécurité Cybersecurity On A Budget: How Small Businesses Can Keep Safe opinion

Cybersecurity On A Budget: How Small Businesses Can Keep Safe How To Maximize Security While Minimizing Costs For Your Small Business - Opinion]]> 2024-04-02T11:06:01+00:00 https://www.globalsecuritymag.fr/cybersecurity-on-a-budget-how-small-businesses-can-keep-safe.html www.secnews.physaphae.fr/article.php?IdArticle=8474556 False None None 3.0000000000000000 Global Security Mag - Site de news francais Logrhythm dévoile les capacités avancées pour la plate-forme SIEM-Native Cloud, Axon Logrhythm LogRhythm Unveils Advanced Capabilities for Cloud-Native SIEM Platform, LogRhythm Axon revues de produits

LogRhythm Unveils Advanced Capabilities for Cloud-Native SIEM Platform, LogRhythm Axon LogRhythm\'s 8th Quarterly Release Enhances Global Security Communication and Collaboration - Product Reviews]]> 2024-04-02T11:03:18+00:00 https://www.globalsecuritymag.fr/logrhythm-unveils-advanced-capabilities-for-cloud-native-siem-platform.html www.secnews.physaphae.fr/article.php?IdArticle=8474557 False None None 3.0000000000000000 Global Security Mag - Site de news francais Keeper Security annonce la prise en charge des Passkey sur les appareils mobiles Produits]]> 2024-04-02T11:01:23+00:00 https://www.globalsecuritymag.fr/keeper-security-annonce-la-prise-en-charge-des-passkey-sur-les-appareils.html www.secnews.physaphae.fr/article.php?IdArticle=8474558 False None None 2.0000000000000000 Global Security Mag - Site de news francais Veracode a annoncé l'acquisition de la sécurité des arcs longs Veracode annouced the Acquisition of Longbow Security nouvelles commerciales

Advancing Cloud-Native Application Security: Veracode Connects Security from Code to Cloud with the Acquisition of Longbow Security Organizations Accelerate Application Risk Management Through Effective Prioritization and Security Debt Reduction - Business News]]> 2024-04-02T10:56:12+00:00 https://www.globalsecuritymag.fr/veracode-annouced-the-acquisition-of-longbow-security.html www.secnews.physaphae.fr/article.php?IdArticle=8474559 False Cloud None 3.0000000000000000 Bleeping Computer - Magazine Américain Le nouveau scanner de porte dérobée XZ détecte l'implant dans n'importe quel binaire Linux New XZ backdoor scanner detects implant in any Linux binary Firmware security firm Binarly has released a free online scanner to detect Linux executables impacted by the XZ Utils supply chain attack, tracked as CVE-2024-3094. [...]]]> 2024-04-02T10:33:51+00:00 https://www.bleepingcomputer.com/news/security/new-xz-backdoor-scanner-detects-implant-in-any-linux-binary/ www.secnews.physaphae.fr/article.php?IdArticle=8474666 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) La campagne de phishing massive frappe l'Amérique latine: Venom Rat ciblant plusieurs secteurs Massive Phishing Campaign Strikes Latin America: Venom RAT Targeting Multiple Sectors The threat actor known as TA558 has been attributed to a new massive phishing campaign that targets a wide range of sectors in Latin America with the goal of deploying Venom RAT. The attacks primarily singled out hotel, travel, trading, financial, manufacturing, industrial, and government verticals in Spain, Mexico, United States, Colombia, Portugal, Brazil, Dominican Republic, and]]> 2024-04-02T10:24:00+00:00 https://thehackernews.com/2024/04/massive-phishing-campaign-strikes-latin.html www.secnews.physaphae.fr/article.php?IdArticle=8474426 False Threat,Industrial None 3.0000000000000000 IT Security Guru - Blog Sécurité Insight expert: Pourquoi les femmes ressentent-elles la cybersécurité qui n'est pas pour elles? Expert Insight: Why do women feel cybersecurity isn\\'t for them? insigne expert: Pourquoi les femmes estiment-elles que la cybersécurité n'est pas pour elles? C'est apparu pour la première fois sur gourou de la sécurité informatique .

Women represent only 30% of the global cybersecurity workforce, reflecting a slow growth rate and pervasive social inequalities. As we witness a concerning increase in cyber harm and a widening skills gap within the industry, it becomes imperative to engage more women in cybersecurity. Diversity is not merely a desirable trait; it\'s a fundamental necessity […] The post Expert Insight: Why do women feel cybersecurity isn\'t for them? first appeared on IT Security Guru. ]]> 2024-04-02T10:21:22+00:00 https://www.itsecurityguru.org/2024/04/02/expert-insight-why-do-women-feel-cybersecurity-isnt-for-them/?utm_source=rss&utm_medium=rss&utm_campaign=expert-insight-why-do-women-feel-cybersecurity-isnt-for-them www.secnews.physaphae.fr/article.php?IdArticle=8474551 False None None 3.0000000000000000 SecurityWeek - Security News La violation des données financières prudentielles a un impact sur 36 000 Prudential Financial Data Breach Impacts 36,000 Prudential Financial dit que les noms, les adresses et les numéros d'identification de plus de 36 000 ont été volés dans une violation de données de février.

>Prudential Financial says the names, addresses, and ID numbers of over 36,000 were stolen in a February data breach. ]]> 2024-04-02T10:10:29+00:00 https://www.securityweek.com/36000-impacted-by-prudential-financial-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8474554 False Data Breach None 2.0000000000000000 IT Security Guru - Blog Sécurité Keeper Security annonce le support Passkey sur les appareils mobiles Keeper Security Announces Passkey Support on Mobile Devices La sécurité du gardien annonce le soutien du clé de passe sur le soutien du clé de pass sur laLes appareils mobiles sont apparus pour la première fois sur gourou de la sécurité informatique .

Today, password management leaders Keeper Security have announced support for passkey management on iOS and Android mobile devices. With Keeper, passkeys are created, stored and managed in the Keeper Vault, and can be used to log in to websites and applications across all browsers and operating systems with ease. As long as you have access […] The post Keeper Security Announces Passkey Support on Mobile Devices first appeared on IT Security Guru. ]]> 2024-04-02T10:07:32+00:00 https://www.itsecurityguru.org/2024/04/02/keeper-security-announces-passkey-support-on-mobile-devices/?utm_source=rss&utm_medium=rss&utm_campaign=keeper-security-announces-passkey-support-on-mobile-devices www.secnews.physaphae.fr/article.php?IdArticle=8474552 False Mobile None 2.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC Arrestations numériques: la nouvelle frontière de la cybercriminalité Digital Arrests: The New Frontier of Cybercrime A Noida woman was duped out of over Rs 11 lakh (approximately $13,500 USD) in a digital arrest scam. The scammers, posing as police officers, convinced her that her identity was used in illicit activities and her involvement carried severe legal ramifications. Through prolonged interrogation on a video call, they led her to transfer the funds under the guise of protection. Case II: A 23-year-old woman was defrauded of Rs 2.5 lakh (approximately $3,000 USD) after fraudsters convinced her that her Aadhaar card details were linked to human trafficking activities. Facing threats of arrest and social humiliation, she was coerced into transferring money]]> 2024-04-02T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/digital-arrests-the-new-frontier-of-cybercrime www.secnews.physaphae.fr/article.php?IdArticle=8474670 False Vulnerability,Threat,Legislation,Prediction,Cloud None 2.0000000000000000 SecurityWeek - Security News Brave de données OWASP causée par une mauvaise configuration du serveur OWASP Data Breach Caused by Server Misconfiguration La Fondation OWASP indique qu'une mauvaise configuration du wiki exposée curriculum vitae déposée il y a plus d'une décennie par les aspirants membres.

>The OWASP Foundation says a wiki misconfiguration exposed resumes filed over a decade ago by aspiring members. ]]> 2024-04-02T09:55:32+00:00 https://www.securityweek.com/owasp-data-breach-caused-by-server-misconfiguration/ www.secnews.physaphae.fr/article.php?IdArticle=8474555 False Data Breach None 3.0000000000000000 Zataz - Magazine Francais de secu Réfléchissez bien avant de transférer les identités de vos utilisateurs vers le cloud 2024-04-02T09:53:39+00:00 https://www.zataz.com/reflechissez-bien-avant-de-transferer-les-identites-de-vos-utilisateurs-vers-le-cloud/ www.secnews.physaphae.fr/article.php?IdArticle=8474524 False Cloud None 3.0000000000000000 Global Security Mag - Site de news francais APPEL A COMMUNICATION - 15ème EDITION DES GSDAYS – 28 JANVIER 2025 Les événements de Global Security Mag / affiche]]> 2024-04-02T09:51:22+00:00 https://www.globalsecuritymag.fr/appel-a-communication-15eme-edition-des-gsdays-28-janvier-2025.html www.secnews.physaphae.fr/article.php?IdArticle=8474528 False Conference None 3.0000000000000000 Zataz - Magazine Francais de secu Comment une entreprise peut-elle se protéger contre les attaques informatiques ? 2024-04-02T09:45:18+00:00 https://www.zataz.com/comment-une-entreprise-peut-elle-se-proteger-contre-les-attaques-informatiques/ www.secnews.physaphae.fr/article.php?IdArticle=8474525 False None None 1.00000000000000000000 Silicon - Site de News Francais Les associations de DSI unissent leurs voix contre Broadcom 2024-04-02T09:37:44+00:00 https://www.silicon.fr/associations-dsi-broadcom-477361.html www.secnews.physaphae.fr/article.php?IdArticle=8474527 False None None 3.0000000000000000 ProofPoint - Cyber Firms ProofPoint en tête de KuppingerCole Leadership Compass pour la sécurité des e-mails Proofpoint Tops KuppingerCole Leadership Compass for Email Security 2024-04-02T09:34:09+00:00 https://www.proofpoint.com/us/blog/email-and-cloud-threats/proofpoint-leader-kuppingercole-leadership-compass-email-security www.secnews.physaphae.fr/article.php?IdArticle=8474609 False Data Breach,Malware,Threat,Mobile,Commercial None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Les autorités indiennes sauvent des centaines de trafic de cybercriminalité Indian Authorities Rescue Hundreds Trafficked For Cybercrime Hundreds of Indians forced into cybercrime by Cambodian gangs have been rescued]]> 2024-04-02T09:30:00+00:00 https://www.infosecurity-magazine.com/news/indian-rescue-hundreds-trafficked/ www.secnews.physaphae.fr/article.php?IdArticle=8474526 False None None 2.0000000000000000 We Live Security - Editeur Logiciel Antivirus ESET Des logiciels malveillants se cachent dans les photos?Plus probable que vous ne le pensez Malware hiding in pictures? More likely than you think There is more to some images than meets the eye – their seemingly innocent façade can mask a sinister threat.]]> 2024-04-02T09:30:00+00:00 https://www.welivesecurity.com/en/malware/malware-hiding-in-pictures-more-likely-than-you-think/ www.secnews.physaphae.fr/article.php?IdArticle=8485913 False Malware,Threat None 3.0000000000000000 Global Security Mag - Site de news francais Le Chiffre du jour : 10% des Cyberattaques Nationales concernent des établissements de santé, mais qu\'en est-il côté mutuelles ? Points de Vue]]> 2024-04-02T09:19:13+00:00 https://www.globalsecuritymag.fr/le-chiffre-du-jour-10-des-cyberattaques-nationales-concernent-des.html www.secnews.physaphae.fr/article.php?IdArticle=8474529 False None None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Impromension escroquerie des fraudeurs nets 1,1 milliard de dollars en un an Impersonation Scams Net Fraudsters $1.1bn in a Year FTC figures reveal a three-fold increase in losses from impersonation scams over the past three years]]> 2024-04-02T09:00:00+00:00 https://www.infosecurity-magazine.com/news/impersonation-scams-net-fraudsters/ www.secnews.physaphae.fr/article.php?IdArticle=8474498 False None None 3.0000000000000000 ProofPoint - Firm Security «L'espoir n'est pas une stratégie»: les cyber-leaders sur les vraies clés de l'exécution d'une stratégie de défense en profondeur “Hope Is Not a Strategy”: Cyber Leaders on the Real Keys to Executing a Defense-in-Depth Strategy 2024-04-02T08:56:31+00:00 https://www.proofpoint.com/us/newsroom/news/hope-not-strategy-cyber-leaders-real-keys-executing-defense-depth-strategy www.secnews.physaphae.fr/article.php?IdArticle=8476718 False None None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial La Maison Blanche émet une politique sur l'atténuation des risques d'IA et les avantages sociaux conformément au décret du président Biden \\ White House issues policy on AI risk mitigation and benefits in line with President Biden\\'s Executive Order The U.S. administration recently announced that the White House Office of Management and Budget (OMB) is issuing its... ]]> 2024-04-02T08:51:53+00:00 https://industrialcyber.co/ai/white-house-issues-policy-on-ai-risk-mitigation-and-benefits-in-line-with-president-bidens-executive-order/ www.secnews.physaphae.fr/article.php?IdArticle=8474501 False None None 3.0000000000000000 SecurityWeek - Security News Le concessionnaire de bateaux MarineMax confirme la violation des données Boat Dealer MarineMax Confirms Data Breach MarineMax confirme une violation de données à la suite d'une récente attaque de ransomware, les attaquants affirmant avoir obtenu 180 000 fichiers.

>MarineMax confirms suffering a data breach as a result of a recent ransomware attack, with the attackers claiming to have obtained 180,000 files. ]]> 2024-04-02T08:41:20+00:00 https://www.securityweek.com/boat-dealer-marinemax-confirms-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8474500 False Ransomware,Data Breach None 3.0000000000000000 Zataz - Magazine Francais de secu WALLIX s\'engage auprès de Docaposte 2024-04-02T08:36:14+00:00 https://www.zataz.com/wallix-sengage-aupres-de-docaposte/ www.secnews.physaphae.fr/article.php?IdArticle=8474496 False None None 2.0000000000000000 Silicon - Site de News Francais Microsoft mondialise le découplage Teams-Office 365 2024-04-02T08:35:12+00:00 https://www.silicon.fr/microsoft-mondialise-decouplage-teams-office-365-477354.html www.secnews.physaphae.fr/article.php?IdArticle=8474499 False None None 2.0000000000000000 Global Security Mag - Site de news francais Alertes de vulnérabilité de la vigilance - Giflib: fuite de mémoire via la décharge2rgb (), analysée le 18/03/2024 Vigilance Vulnerability Alerts - GIFLIB: memory leak via DumpScreen2RGB(), analyzed on 18/03/2024 vulnérabilité de sécurité

An attacker can create a memory leak of GIFLIB, via DumpScreen2RGB(), in order to trigger a denial of service. - Security Vulnerability]]> 2024-04-02T08:11:28+00:00 https://www.globalsecuritymag.fr/vigilance-vulnerability-alerts-giflib-memory-leak-via-dumpscreen2rgb-analyzed.html www.secnews.physaphae.fr/article.php?IdArticle=8474474 False Vulnerability None 2.0000000000000000 Wired Threat Level - Security News La porte arrière XZ: tout ce que vous devez savoir The XZ Backdoor: Everything You Need to Know Details are starting to emerge about a stunning supply chain attack that sent the open source software community reeling.]]> 2024-04-02T08:00:00+00:00 https://www.wired.com/story/xz-backdoor-everything-you-need-to-know/ www.secnews.physaphae.fr/article.php?IdArticle=8474471 False None None 2.0000000000000000 Global Security Mag - Site de news francais Axians s\'associe à La Plateforme pour former ses futurs experts en cybersécurité Business]]> 2024-04-02T07:54:31+00:00 https://www.globalsecuritymag.fr/axians-s-associe-a-la-plateforme-pour-former-ses-futurs-experts-en.html www.secnews.physaphae.fr/article.php?IdArticle=8474475 False None None 2.0000000000000000 Data Security Breach - Site de news Francais PowerMail : La Réponse Française à la Souveraineté Numérique des Emails d\'Entreprise 2024-04-02T07:18:22+00:00 https://www.datasecuritybreach.fr/enjeu-email-powermail/ www.secnews.physaphae.fr/article.php?IdArticle=8474515 False None None 2.0000000000000000 Korben - Bloger francais StickerBaker – Créez des stickers IA personnalisés en quelques clics 2024-04-02T07:00:00+00:00 https://korben.info/stickerbaker-generez-stickers-personnalises-ia.html www.secnews.physaphae.fr/article.php?IdArticle=8474473 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Les menaces de cybersécurité s'intensifient au Moyen-Orient pendant le Ramadan Cybersecurity Threats Intensify in the Middle East During Ramadan How security teams in the region fortify their defenses amid short-staffing - and increased DDoS, phishing, and ransomware campaigns - during the Muslim holy month.]]> 2024-04-02T05:00:00+00:00 https://www.darkreading.com/cyber-risk/cyber-threats-intensify-in-middle-east-during-ramadan www.secnews.physaphae.fr/article.php?IdArticle=8474402 False Ransomware None 2.0000000000000000 The State of Security - Magazine Américain Oups, malware!Maintenant quoi?Faire face à l'exécution accidentelle des logiciels malveillants Oops, Malware! Now What? Dealing with Accidental Malware Execution On an ordinary day, you\'re casually surfing the web and downloading some PDF files. The document icons seem pretty legitimate, so you click without a second thought. But, to your surprise, nothing happens. A closer look reveals that what you believed to be a harmless PDF was, in fact, an executable file. Panic sets in as your settings lock up, and even accessing the task manager becomes impossible. Unknown pop-ups invade your screen, telltale signs of malware execution. Regret washes over you as you realize the consequences of your unintentional actions. Now, the question looms: What should be...]]> 2024-04-02T02:56:58+00:00 https://www.tripwire.com/state-of-security/oops-malware-now-what-dealing-accidental-malware-execution www.secnews.physaphae.fr/article.php?IdArticle=8474468 False Malware None 3.0000000000000000 The State of Security - Magazine Américain Qu'est-ce qui est nouveau dans le cadre de cybersécurité de NIST \\. What\\'s New in NIST\\'s Cybersecurity Framework 2.0? The National Institute of Standards and Technology Cybersecurity Framework (NIST CSF) was published in 2014 for the purpose of providing cybersecurity guidance for organizations in critical infrastructure. In the intervening years, much has changed about the threat landscape, the kinds of technology that organizations use, and the ways that operational technology (OT) and information technology (IT) work and interact. In an effort to update NIST CSF for a broader and more current audience, the agency has finalized and released CSF 2.0 , the first major change to the CSF. There are extensive...]]> 2024-04-02T02:56:47+00:00 https://www.tripwire.com/state-of-security/whats-new-nists-cybersecurity-framework-20 www.secnews.physaphae.fr/article.php?IdArticle=8474469 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Financement des organisations qui sécurisent Internet Funding the Organizations That Secure the Internet Common Good Cyber is a global consortium connecting nonprofit, private sector, and government organizations to fund organizations focused on securing Internet infrastructure.]]> 2024-04-02T01:31:32+00:00 https://www.darkreading.com/vulnerabilities-threats/funding-the-organizations-that-secure-the-internet www.secnews.physaphae.fr/article.php?IdArticle=8474693 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Prudential Insurance indique que les données de 36 000 exposées au cours de la cyberattaque de février Prudential Insurance says data of 36,000 exposed during February cyberattack

Prudential Insurance - l'un des plus grands assureurs des États-Unis - a déclaré que les pirates ont volé les informations sensibles de plus de 36 000 lors d'un incident de février.Vendredi, dans un dossier de dépôt auprès des régulateurs du Maine, la société a déclaré avoir détecté un accès non autorisé le 5 février, ce qui a incité une enquête. & NBSP;«Grâce à l'enquête, nous avons appris

Prudential Insurance - one of the largest insurers in the United States - said hackers stole the sensitive information of more than 36,000 during a February incident. In a filing on Friday with regulators in Maine, the company said it detected unauthorized access on February 5, prompting an investigation. “Through the investigation, we learned]]> 2024-04-02T00:50:52+00:00 https://therecord.media/prudential-discloses-new-information-from-february-incident www.secnews.physaphae.fr/article.php?IdArticle=8474317 False None None 2.0000000000000000 TrendMicro - Security Firm Blog Earth Freybug utilise un désactivation pour décrocher les API critiques Earth Freybug Uses UNAPIMON for Unhooking Critical APIs This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child processes from being monitored via a new malware we\'ve discovered and dubbed UNAPIMON.]]> 2024-04-02T00:00:00+00:00 https://www.trendmicro.com/en_us/research/24/d/earth-freybug.html www.secnews.physaphae.fr/article.php?IdArticle=8474424 False Malware None 2.0000000000000000 Microsoft - Microsoft Security Response Center Embrasser l'innovation: la transition de Derrick \\ de l'équipe de renseignement des menaces de Microsoft \\ Embracing innovation: Derrick\\'s transition from banking to Microsoft\\'s Threat Intelligence team Meet Derrick, a Senior Program Manager on the Operational Threat Intelligence team at Microsoft. Derrick\'s role involves understanding and roadmapping the complete set of tools that Threat Intel analysts use to collect, analyze, process, and disseminate threat intelligence across Microsoft. Derrick\'s love of learning and his natural curiosity led him to a career in technology and ultimately, to his current role at Microsoft.]]> 2024-04-02T00:00:00+00:00 https://msrc.microsoft.com/blog/2024/04/embracing-innovation-derricks-transition-from-banking-to-microsofts-threat-intelligence-team/ www.secnews.physaphae.fr/article.php?IdArticle=8475364 False Tool,Threat None 2.0000000000000000 HackRead - Chercher Cyber Backdoor découverte dans XZ Utils: Patchez vos systèmes maintenant (CVE-2024-3094) Backdoor Discovered in XZ Utils: Patch Your Systems Now (CVE-2024-3094) Par waqas Alerte de porte dérobée critique!Patch XZ utilise maintenant (CVE-2024-3094) & # 38;Sécurisez votre système Linux.Découvrez comment une porte dérobée cachée & # 8230; Ceci est un article de HackRead.com Lire la publication originale: Backdoor découverte dans XZ Utils: Patchez vos systèmes maintenant (CVE-2024-3094)

>By Waqas Critical Backdoor Alert! Patch XZ Utils Now (CVE-2024-3094) & Secure Your Linux System. Learn how a hidden backdoor… This is a post from HackRead.com Read the original post: Backdoor Discovered in XZ Utils: Patch Your Systems Now (CVE-2024-3094)]]> 2024-04-01T23:17:59+00:00 https://www.hackread.com/xz-utils-backdoor-patch-systems-cve-2024-3094/ www.secnews.physaphae.fr/article.php?IdArticle=8474294 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Microsoft Beefs Up Defenses en Azure AI Microsoft Beefs Up Defenses in Azure AI Microsoft adds tools to protect Azure AI from threats such as prompt injection, as well as give developers the capabilities to ensure generative AI apps are more resilient to model and content manipulation attacks.]]> 2024-04-01T22:18:59+00:00 https://www.darkreading.com/application-security/microsoft-adds-tools-for-protecting-against-prompt-injection-other-threats-in-azure-ai www.secnews.physaphae.fr/article.php?IdArticle=8474272 False Tool None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) "Hé, ce n'est pas le bon site!"Distribution des logiciels malveillants exploitant le suivi des annonces Google "Hey, This Isn\\'t the Right Site!" Distribution of Malware Exploiting Google Ads Tracking [Consultez la rédaction de Microsoft \\ sur les voleurs d'informations ici.] (Https://sip.security.microsoft.com/intel-profiles/2296d491ea381b532b24f2575f9418d4b6723c17b8a1f507d20c2140a75d16d6?)?) > [Découvrez les rapports OSINT précédents sur Rhadamanthys ici.] (Https://sip.security.microsoft.com/intel-explorer/articles/463afcea) #### URL de référence (s) 1. https://asec.ahnlab.com/en/63477/ #### Date de publication 31 mars 2024 #### Auteurs) Ahnlab Security Intelligence Center

#### Description AhnLab Security Intelligence Center (ASEC) discovered Rhadamanthys, an information stealer malware, using Google Ads tracking to distribute itself, posing as installers for popular groupware like Notion and Slack. The malware downloads malicious files after installation, often distributed through Inno Setup or NSIS installers. The attackers utilized Google Ads tracking to lead users to a malicious site, taking advantage of the platform\'s ability to insert external analytic website addresses. Clicking on the ads redirected users to a site tricking them into downloading the malware, ultimately injecting the Rhadamanthys malware into legitimate Windows files for data theft. >[Check out Microsoft\'s write-up on Information Stealers here.](https://sip.security.microsoft.com/intel-profiles/2296d491ea381b532b24f2575f9418d4b6723c17b8a1f507d20c2140a75d16d6?) >[Check out previous OSINT reporting on Rhadamanthys here.](https://sip.security.microsoft.com/intel-explorer/articles/463afcea) #### Reference URL(s) 1. https://asec.ahnlab.com/en/63477/ #### Publication Date March 31, 2024 #### Author(s) AhnLab Security Intelligence Center ]]> 2024-04-01T22:00:49+00:00 https://community.riskiq.com/article/bf8b5bc1 www.secnews.physaphae.fr/article.php?IdArticle=8474308 False Malware None 2.0000000000000000 SonarSource - Blog Sécu et Codage Assurer la bonne utilisation de Java 21 nouvelles fonctionnalités Ensuring the right usage of Java 21 new features Last September 2023 Java 21 was released as the latest LTS (Long Time Support). But taking advantage of the changes and new features, which we are not used to including in our code, can be a tough task. Also, it can lead to improper use or poor uptake, bugs, or basically not taking full advantage of new improvements.]]> 2024-04-01T22:00:00+00:00 https://www.sonarsource.com/blog/ensuring-the-right-usage-of-java-21-new-features www.secnews.physaphae.fr/article.php?IdArticle=8479385 False None None 2.0000000000000000 SonarSource - Blog Sécu et Codage Risques des consommateurs Apache Dubbo: la route non prise Apache Dubbo Consumer Risks: The Road Not Taken Explore the lesser-known Apache Dubbo risks that weren\'t well documented until now, and delve into the importance of clean code ensuring clarity, maintainability, and comprehensibility.]]> 2024-04-01T22:00:00+00:00 https://www.sonarsource.com/blog/apache-dubbo-consumer-risks www.secnews.physaphae.fr/article.php?IdArticle=8474636 False None None 2.0000000000000000 Dark Reading - Informationweek Branch XZ utilise la porte dérobée implantée dans une attaque de chaîne d'approvisionnement soigneusement exécutée et soigneusement exécutée XZ Utils Backdoor Implanted in Carefully Executed, Multiyear Supply Chain Attack Had a Microsoft developer not spotted the malware when he did, the outcome could have been much worse.]]> 2024-04-01T21:25:52+00:00 https://www.darkreading.com/cyber-risk/xz-utils-backdoor-implanted-in-intricate-multi-year-supply-chain-attack www.secnews.physaphae.fr/article.php?IdArticle=8474250 False Malware None 3.0000000000000000 Dark Reading - Informationweek Branch Les cybercriminels pèsent les options pour l'utilisation de LLMS: acheter, construire ou casser? Cybercriminals Weigh Options for Using LLMs: Buy, Build, or Break? While some cybercriminals have bypassed guardrails to force legitimate AI models to turn bad, building their own malicious chatbot platforms and making use of open source models are a greater threat.]]> 2024-04-01T20:52:40+00:00 https://www.darkreading.com/threat-intelligence/cybercriminals-options-lms-buy-build-break www.secnews.physaphae.fr/article.php?IdArticle=8474223 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Le site de déchets nucléaires de sellafield étendus poursuivi pour défaillance de la cybersécurité Sprawling Sellafield Nuclear Waste Site Prosecuted for Cybersecurity Failings UK regulator said that one of the world\'s most toxic sites accumulated cybersecurity "offenses" from 2019 to 2023.]]> 2024-04-01T20:24:18+00:00 https://www.darkreading.com/ics-ot-security/sellafield-nuclear-waste-site-prosecuted-cybersecurity-failings www.secnews.physaphae.fr/article.php?IdArticle=8474224 False Legislation,Prediction None 3.0000000000000000 Recorded Future - FLux Recorded Future Backlog de base de données de vulnérabilité due à une augmentation du volume, des changements dans le support \\ ', \\' nist dit Vulnerability database backlog due to increased volume, changes in \\'support,\\' NIST says

L'Institut national des normes et de la technologie (NIST) a blâmé l'augmentation du volume des logiciels et «un changement de support interinstitutions» pour le récent arriéré de vulnérabilités analysées dans la base de données nationale de vulnérabilité de l'organisation (NVD).Pendant des années, le NVD est une ressource inestimable pour les experts et les défenseurs de la cybersécurité qui comptent sur

The National Institute of Standards and Technology (NIST) blamed increases in the volume of software and “a change in interagency support” for the recent backlog of vulnerabilities analyzed in the organization\'s National Vulnerability Database (NVD). For years, the NVD has been an invaluable resource for cybersecurity experts and defenders who rely on it for]]> 2024-04-01T20:17:13+00:00 https://therecord.media/vulnerability-database-backlog-nist-support www.secnews.physaphae.fr/article.php?IdArticle=8474225 False Vulnerability None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) Rescoms monte des vagues de spam d'acceptor Rescoms Rides Waves of AceCryptor Spam #### Description ESET research shares insights into AceCryptor, one of the most popular and prevalent cryptors-as-a-service (CaaS) in the second half of 2023, with a focus on Rescoms campaigns in European countries. Even though well known by security products, AceCryptor\'s prevalence is not showing indications of decline: on the contrary, the number of attacks significantly increased due to the Rescoms campaigns. The threat actor behind those campaigns in some cases abused compromised accounts to send spam emails in order to make them look as credible as possible. The goal of the spam campaigns was to obtain credentials stored in browsers or email clients, which in case of a successful compromise would open possibilities for further attacks. #### Reference URL(s) 1. https://www.welivesecurity.com/en/eset-research/rescoms-rides-waves-acecryptor-spam/ #### Publication Date March 20, 2024 #### Author(s) Jakub Kaloč ]]> 2024-04-01T20:02:08+00:00 https://community.riskiq.com/article/e3595388 www.secnews.physaphae.fr/article.php?IdArticle=8474239 False Spam,Threat None 2.0000000000000000 Global Security Mag - Site de news francais Février 2025 Calendrier ]]> 2024-04-01T20:00:00+00:00 https://www.globalsecuritymag.fr/fevrier-2025.html www.secnews.physaphae.fr/article.php?IdArticle=8472638 False Conference None 3.0000000000000000 Dark Reading - Informationweek Branch AT & t confirme 73 millions de clients affectés dans la fuite de données AT&T Confirms 73M Customers Affected in Data Leak AT&T denies any evidence of unauthorized access but admits that a data set released on the Dark Web including Social Security numbers and other sensitive information on tens of millions of customers is genuine.]]> 2024-04-01T19:51:05+00:00 https://www.darkreading.com/remote-workforce/att-confirms-73m-customers-affected-data-leak www.secnews.physaphae.fr/article.php?IdArticle=8474196 False None None 2.0000000000000000 Global Security Mag - Site de news francais Mars 2025 calendrier

3 - 5 mars - Sydney ( Australie) Gartner Security & Risk Management Summit www.gartner.com/en/conferences/apac/security-risk-management-australia 5 - 6 mars - Barcelone (Espagne) Mobile World Congress www.mobileworldcongress.com 11 - 13 mars - Baton Rouge - Louisiane (USA) Critical Infrastructure Protection & Resilience North America www.ciprna-expo.com 12 - 13 mars - Londres (UK) Cloud Expo Europe & Data Centre World & Smart IOT Lieu : Centre d\'exposition d\'ExCel (...) - Calendrier ]]> 2024-04-01T19:30:00+00:00 https://www.globalsecuritymag.fr/mars-2025.html www.secnews.physaphae.fr/article.php?IdArticle=8472639 False Mobile,Cloud,Conference None 3.0000000000000000 PaloAlto Vunerability - PaloAlto Vunerability CVE-2024-3094 Information: Impact du code malveillant dans les outils et bibliothèques XZ (CVE-2024-3094) (Gravité: Aucun) CVE-2024-3094 Informational: Impact of Malicious Code in XZ Tools and Libraries (CVE-2024-3094) (Severity: NONE) 2024-04-01T19:30:00+00:00 https://security.paloaltonetworks.com/CVE-2024-3094 www.secnews.physaphae.fr/article.php?IdArticle=8474193 False Tool None None Korben - Bloger francais The Pirate Bay – Le plus vieux torrent actif fête ses 20 ans 2024-04-01T19:28:40+00:00 https://korben.info/pirate-bay-20-ans-partage-survie-plus-vieux-torrent-actif.html www.secnews.physaphae.fr/article.php?IdArticle=8474199 False None None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Le gouvernement indien sauve 250 citoyens forcés de participer à la cybercriminalité au Cambodge Indian Government Rescues 250 Citizens Forced into Cybercrime in Cambodia The Indian government said it has rescued and repatriated about 250 citizens in Cambodia who were held captive and coerced into running cyber scams. The Indian nationals "were lured with employment opportunities to that country but were forced to undertake illegal cyber work," the Ministry of External Affairs (MEA) said in a statement, adding it had rescued 75 people in the past three]]> 2024-04-01T19:21:00+00:00 https://thehackernews.com/2024/04/indian-government-rescues-250-citizens.html www.secnews.physaphae.fr/article.php?IdArticle=8474075 False None None 4.0000000000000000 Global Security Mag - Site de news francais Mars 2025 March 2025 intime

3 - 5 March - Sydney ( Australia) Gartner Security & Risk Management Summit www.gartner.com/en/conferences/apac/security-risk-management-australia 5 - 6 March - Barcelona (Spain) Mobile World Congress www.mobileworldcongress.com 11 - 13 mars - Baton Rouge - Louisiane (USA) Critical Infrastructure Protection & Resilience North America www.ciprna-expo.com 12 - 13 March - London (UK) Cloud Expo Europe & Data Centre World & Smart IOT Place: Centre d\'exposition d\'ExCel (...) - Diary]]> 2024-04-01T19:15:00+00:00 https://www.globalsecuritymag.fr/march-2025.html www.secnews.physaphae.fr/article.php?IdArticle=8472822 False Mobile,Cloud,Conference None 3.0000000000000000 Korben - Bloger francais ChatGPT est maintenant accessible sans compte 2024-04-01T19:10:18+00:00 https://korben.info/chatgpt-accessible-sans-compte-avancee-majeure-ia-conversationnelle.html www.secnews.physaphae.fr/article.php?IdArticle=8474200 False None ChatGPT 2.0000000000000000 Recorded Future - FLux Recorded Future \\ 'Organisation de cybercriminalité \\' a volé les données des clients et des employés, dit le géant de la navigation \\'Cybercrime organization\\' stole customer and employee data, boating giant says

Les pirates ont pu accéder aux données des serveurs de l'un des plus grands vendeurs de bateaux du monde au cours d'une attaque le mois dernier, a confirmé la société.Marinemax a déposé lundi un rapport mis à jour aux régulateurs de la Securities and Exchange Commission avertissant que les informations sur les clients et les employés ont été volées au cours de l'incident.Le ransomware de Rhysida

Hackers were able to access data from the servers of one of the world\'s largest boat sellers during an attack last month, the company confirmed. MarineMax filed an updated report to regulators at the Securities and Exchange Commission on Monday warning that customer and employee information was stolen during the incident. The Rhysida ransomware]]> 2024-04-01T19:09:57+00:00 https://therecord.media/cybercrime-organization-stole-customer-data-sec-marinemax www.secnews.physaphae.fr/article.php?IdArticle=8474198 False Ransomware None 2.0000000000000000 TroyHunt - Blog Security AT&T reconnaît la fuite de données qui a frappé 73 millions d'utilisateurs actuels et anciens AT&T acknowledges data leak that hit 73 million current and former users Data leak hit 7.6 million current AT&T users, 65.4 million former subscribers.]]> 2024-04-01T19:01:02+00:00 https://arstechnica.com/?p=2014073 www.secnews.physaphae.fr/article.php?IdArticle=8474168 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Les pertes liées aux escroqueries d'identité supérieure à 1 milliard de dollars par an, la FTC dit Losses linked to impersonation scams top $1 billion yearly, FTC says

Un type de fraude classique - lorsqu'un escroc imite une entreprise ou une agence gouvernementale - semble être plus grand que jamais, selon les statistiques fédérales, et elle est désormais la plus susceptible de commencer par SMS ou par e-mail au lieu d'un appel téléphonique.Des escroqueries d'identité signalées à la Federal Trade Commission des victimes de coûts

A classic type of fraud - when a crook impersonates a business or a government agency - appears to be bigger than ever, according to federal statistics, and it\'s now most likely to begin via text message or email instead of a phone call. Impersonation scams reported to the Federal Trade Commission cost victims]]> 2024-04-01T18:53:23+00:00 https://therecord.media/impersonation-scam-losses-top-1-billion www.secnews.physaphae.fr/article.php?IdArticle=8474172 False None None 2.0000000000000000