www.secnews.physaphae.fr

www.secnews.physaphae.fr This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-04-29T18:41:46+00:00 www.secnews.physaphae.fr Cisco - Security Firm Blog Inscrivez-vous à une tournée à la RSA Conference 2024 SOC Sign up for a Tour at the RSA Conference 2024 SOC Join the guided tour outside the Security Operations Center, where we\'ll discuss real time network traffic of the RSA Conference.]]> 2024-03-18T12:00:59+00:00 https://feedpress.me/link/23535/16623025/sign-up-for-a-tour-at-the-rsa-conference-2024-soc www.secnews.physaphae.fr/article.php?IdArticle=8465998 False Conference None 3.0000000000000000 SecurityWeek - Security News Une nouvelle attaque montre les risques de navigateurs donnant aux sites Web l'accès au GPU New Attack Shows Risks of Browsers Giving Websites Access to GPU Les chercheurs démontrent une attaque de canal latéral à distance de CPU à distance des navigateurs contre les cartes graphiques AMD et NVIDIA.

>Researchers demonstrate remote GPU cache side-channel attack from within browsers against AMD and NVIDIA graphics cards. ]]> 2024-03-18T11:52:21+00:00 https://www.securityweek.com/new-attack-shows-risks-of-browsers-giving-websites-access-to-gpu/ www.secnews.physaphae.fr/article.php?IdArticle=8466063 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future New Zealand Media Company: des pirates ciblant directement des individus après une violation de données présumée New Zealand media company: Hackers directly targeting individuals after alleged data breach

MediaWorks, une entreprise basée en Nouvelle-Zélande, a déclaré qu'elle enquête sur un incident de sécurité présumé après qu'un pirate a affirmé avoir volé les données d'un peu plus de 2,4 millions de personnes et commencé à cibler les individus pour les paiements d'extorsion. & NBSP;L'entreprise, qui n'a pas encore confirmé publiquement qu'une violation de données avait eu lieu, a déclaré en

MediaWorks, a company based in New Zealand, says it is investigating an alleged security incident after a hacker claimed to have stolen the data of just over 2.4 million people and began targeting individuals for extortion payments. The company, which has not yet publicly confirmed that a data breach has taken place, said in]]> 2024-03-18T11:49:47+00:00 https://therecord.media/mediaworks-new-zealand-data-breach-extortion www.secnews.physaphae.fr/article.php?IdArticle=8465999 False Data Breach None 2.0000000000000000 HackRead - Chercher Cyber NIST NVD Halt laisse des milliers de vulnérabilités NIST NVD Halt Leaves Thousands of Vulnerabilities Untagged Par deeba ahmed 40% de 2024 CVE INFORMATION CLÉ MANQUE: L'espace de données NVD augmente les risques de sécurité! Ceci est un article de HackRead.com Lire le post original: NIST NVD HALT laisse des milliers de vulnérabilités intacturées

>By Deeba Ahmed 40% of 2024 CVEs Missing Key Info: NVD Data Gap Raises Security Risks! This is a post from HackRead.com Read the original post: NIST NVD Halt Leaves Thousands of Vulnerabilities Untagged]]> 2024-03-18T11:38:35+00:00 https://www.hackread.com/nist-nvd-halt-leaves-vulnerabilities-untagged/ www.secnews.physaphae.fr/article.php?IdArticle=8466001 False Vulnerability None 2.0000000000000000 Intigrity - Blog Pourquoi les entreprises SaaS doivent repenser leur approche de test de pénétration Why SaaS businesses need to rethink their penetration testing approach Chaque année, les entreprises comptent de plus en plus sur des plates-formes logicielles en tant que service (SAAS) pour gérer une variété de tâches, telles que l'analyse du site Web, la comptabilité, la paie et l'automatisation des e-mails.La dépendance à l'égard du SaaS est inévitable.Mais il présente des risques et des problèmes de sécurité, ce qui rend les tests de sécurité encore plus critiques.Dans cet article de blog, nous explorerons pourquoi les tests de sécurité pour les entreprises SaaS [& # 8230;]

>Every year, companies increasingly rely on software-as-a-service platforms (SaaS) to handle a variety of tasks, such as website analysis, accounting, payroll, and email automation. Reliance on SaaS is unavoidable. But it introduces risks and security issues, making security testing even more business critical. In this blog post, we’ll explore why security testing for SaaS businesses […] ]]> 2024-03-18T11:36:56+00:00 https://blog.intigriti.com/2024/03/18/saas-businesses-need-rethink-penetration-testing-approach/ www.secnews.physaphae.fr/article.php?IdArticle=8465997 False Cloud None 3.0000000000000000 Silicon - Site de News Francais Luc Julia : " L\'IA générative n\'est pas une révolution des IA, mais une révolution des usages " 2024-03-18T11:36:39+00:00 https://www.silicon.fr/luc-julia-lia-generative-nest-pas-une-revolution-des-ia-mais-une-revolution-des-usages-476902.html www.secnews.physaphae.fr/article.php?IdArticle=8466002 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Groupe de pirates APT28 ciblant l'Europe, les Amériques, l'Asie dans un schéma de phishing généralisé APT28 Hacker Group Targeting Europe, Americas, Asia in Widespread Phishing Scheme The Russia-linked threat actor known as APT28 has been linked to multiple ongoing phishing campaigns that employ lure documents imitating government and non-governmental organizations (NGOs) in Europe, the South Caucasus, Central Asia, and North and South America. "The uncovered lures include a mixture of internal and publicly available documents, as well as possible actor-generated]]> 2024-03-18T11:29:00+00:00 https://thehackernews.com/2024/03/apt28-hacker-group-targeting-europe.html www.secnews.physaphae.fr/article.php?IdArticle=8465853 False Threat APT 28 3.0000000000000000 Recorded Future - FLux Recorded Future Les États-Unis poursuivent toujours des éléments d'opération de piratage chinois, dit le responsable de la NSA US is still chasing down pieces of Chinese hacking operation, NSA official says

FORT Meade, Maryland - Le gouvernement américain n'a pas encore appris l'étendue d'une campagne d'espionnage chinoise massive qui ciblait les infrastructures critiques américaines, selon un haut responsable de l'agence de sécurité nationale.Les agences fédérales ne sont «pas faites avec des efforts pour découvrir ou éradiquer» les menaces créées par le groupe de piratage chinois connu sous le nom

FORT MEADE, MARYLAND - The U.S. government has yet to learn the full extent of a massive Chinese espionage campaign that targeted American critical infrastructure, according to a senior National Security Agency official. Federal agencies are “not done with efforts to uncover or eradicate” the threats created by the Chinese hacking group known as]]> 2024-03-18T11:17:59+00:00 https://therecord.media/china-hacking-volt-typhoon-response-nsa-rob-joyce www.secnews.physaphae.fr/article.php?IdArticle=8466000 False None None 3.0000000000000000 Schneier on Security - Chercheur Cryptologue Américain Drones et l'US Air Force Drones and the US Air Force analyse de l'utilisation de drones sur un champ de bataille moderne & # 8212; Le F-35A reste une plate-forme importante pour la guerre conventionnelle à haute intensité.Mais l'Air Force prévoit d'acheter 1 763 de l'avion, qui restera en service jusqu'en 2070.I> Coûts d'opportunité pour le service dans son ensemble.Dans un ensemble de commentaires Publié sur LinkedIn...

Fascinating analysis of the use of drones on a modern battlefield—that is, Ukraine—and the inability of the US Air Force to react to this change. The F-35A certainly remains an important platform for high-intensity conventional warfare. But the Air Force is planning to buy 1,763 of the aircraft, which will remain in service through the year 2070. These jets, which are wholly unsuited for countering proliferated low-cost enemy drones in the air littoral, present enormous opportunity costs for the service as a whole. In a set of comments posted on LinkedIn...]]> 2024-03-18T11:03:14+00:00 https://www.schneier.com/blog/archives/2024/03/drones-and-the-us-air-force.html www.secnews.physaphae.fr/article.php?IdArticle=8465967 False None None 3.0000000000000000 BBC - BBC News - Technology Apex Legends Esports final retardé par les réclamations de piratage Apex Legends esports final delayed by hack claims A major tournament is postponed after unwanted cheats appear during matches in the online shooter.]]> 2024-03-18T10:50:38+00:00 https://www.bbc.co.uk/news/newsbeat-68596055 www.secnews.physaphae.fr/article.php?IdArticle=8465994 False Hack None 2.0000000000000000 Silicon - Site de News Francais Grok est-il vraiment un LLM " ouvert " ? 2024-03-18T10:31:15+00:00 https://www.silicon.fr/xai-grok-open-476893.html www.secnews.physaphae.fr/article.php?IdArticle=8465969 False None None 3.0000000000000000 Global Security Mag - Site de news francais unyc renforce sa gamme de cybersécurité avec Fortinet Business]]> 2024-03-18T10:29:06+00:00 https://www.globalsecuritymag.fr/unyc-renforce-sa-gamme-de-cybersecurite-avec-fortinet.html www.secnews.physaphae.fr/article.php?IdArticle=8465982 False None None 2.0000000000000000 SecurityWeek - Security News Opérateur moldave du marché des conférences condamné à la prison américaine Moldovan Operator of Credential Marketplace Sentenced to US Prison Sandu Diaconu a été condamné à 42 mois de prison pour avoir exploité un marché pour les titres de compétences compromises.

>Sandu Diaconu has been sentenced to 42 months in prison for operating a marketplace for compromised credentials. ]]> 2024-03-18T10:15:00+00:00 https://www.securityweek.com/moldovan-operator-of-credential-marketplace-sentenced-to-us-prison/ www.secnews.physaphae.fr/article.php?IdArticle=8465966 False Legislation None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine NHS Dumfries et Galloway mettent en garde contre le vol de données «significatif» NHS Dumfries and Galloway Warns of “Significant” Data Theft Scottish NHS trust reveals patient and staff data may have been taken in security breach]]> 2024-03-18T10:15:00+00:00 https://www.infosecurity-magazine.com/news/nhs-dumfries-galloway-significant/ www.secnews.physaphae.fr/article.php?IdArticle=8465968 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Fujitsu a trouvé des logiciels malveillants sur les systèmes informatiques, confirme la violation des données Fujitsu found malware on IT systems, confirms data breach Japanese tech giant Fujitsu discovered that several of its systems were infected by malware and warns that the hackers stole customer data. [...]]]> 2024-03-18T10:01:07+00:00 https://www.bleepingcomputer.com/news/security/fujitsu-found-malware-on-it-systems-confirms-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8466060 False Data Breach,Malware None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC Explorer les risques de la technologie de suivi des yeux dans la sécurité VR Exploring the risks of eye-tracking technology in VR security biometric verification, it also raises privacy concerns. This technology, though handy, could be exploited by cybercriminals. For instance, a recent paper by Rutgers University shows that hackers could use common virtual reality (AR/VR) headsets with motion sensors to capture facial movements linked to speech. This could lead to the theft of sensitive data communicated through voice commands, like credit card numbers and passwords. ]]> 2024-03-18T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/exploring-the-risks-of-eye-tracking-technology-in-vr-security www.secnews.physaphae.fr/article.php?IdArticle=8466101 False Tool,Cloud None 3.0000000000000000 Korben - Bloger francais Sécurisez votre surface d\'attaque avec cette fonctionnalité de Cloudflare 2024-03-18T09:57:14+00:00 https://korben.info/securisez-surface-attaque-cloudflare-security-center.html www.secnews.physaphae.fr/article.php?IdArticle=8465970 False None None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Le FMI enquête sur une grave violation de la cybersécurité IMF Investigates Serious Cybesecurity Breach The International Monetary Fund says it is still looking into a recent compromise of multiple email accounts]]> 2024-03-18T09:30:00+00:00 https://www.infosecurity-magazine.com/news/imf-investigates-serious/ www.secnews.physaphae.fr/article.php?IdArticle=8465939 False None None 4.0000000000000000 Securonix - Siem Securonix Threat Research Security Advisory: Analyse de la nouvelle campagne d'attaque de la nouvelle # GOSU probablement associée au nord-coréen Kimsuky ciblant les victimes avec des logiciels malveillants furtifs Securonix Threat Research Security Advisory: Analysis of New DEEP#GOSU Attack Campaign Likely Associated with North Korean Kimsuky Targeting Victims with Stealthy Malware The Securonix Threat Research team has uncovered an elaborate multi-stage attack campaign dubbed DEEP#GOSU likely associated with the North Korean Kimsuky group.]]> 2024-03-18T09:00:49+00:00 https://www.securonix.com/blog/securonix-threat-research-security-advisory-new-deepgosu-attack-campaign/ www.secnews.physaphae.fr/article.php?IdArticle=8466086 False Malware,Threat None 3.0000000000000000 Korben - Bloger francais Incogni et les différents leaks du milieu de l\'automobile Suite]]> 2024-03-18T08:53:39+00:00 https://korben.info/incogni-et-les-differents-leaks-du-milieu-de-lautomobile.html www.secnews.physaphae.fr/article.php?IdArticle=8465940 False None None 3.0000000000000000 Global Security Mag - Site de news francais Le CSIRT de Bourgogne-Franche-Comté intègre l\'association InterCERT France Business

Le CSIRT de Bourgogne-Franche-Comté est le premier des centres régionaux de cybersécurité à faire son entrée dans l\'association InterCERT France - Business]]> 2024-03-18T08:11:42+00:00 https://www.globalsecuritymag.fr/le-csirt-de-bourgogne-franche-comte-integre-l-association-intercert-france.html www.secnews.physaphae.fr/article.php?IdArticle=8465921 False None None 2.0000000000000000 Global Security Mag - Site de news francais Etude Checkmarx : lLes vulnérabilités des applications développées en interne sont à l\'origine des violations dans 92% des cas Investigations]]> 2024-03-18T08:07:59+00:00 https://www.globalsecuritymag.fr/etude-checkmarx-lles-vulnerabilites-des-applications-developpees-en-interne.html www.secnews.physaphae.fr/article.php?IdArticle=8465922 False None None 2.0000000000000000 Global Security Mag - Site de news francais Tenable étend les capacités génératrices de l'IA Tenable Expands Generative AI Capabilities revues de produits

Tenable Expands Generative AI Capabilities for Faster Attack Path Analysis and Mitigation Guidance Enhancements to Tenable One platform enable customers to directly query AI engine and quickly reduce risk - Product Reviews]]> 2024-03-18T08:03:29+00:00 https://www.globalsecuritymag.fr/tenable-expands-generative-ai-capabilities.html www.secnews.physaphae.fr/article.php?IdArticle=8465893 False None None 2.0000000000000000 Silicon - Site de News Francais Les 5 start-up retenues pour le programme PROQCIMA 2024-03-18T08:00:59+00:00 https://www.silicon.fr/proqcima-5-start-up-informatique-quantique-476881.html www.secnews.physaphae.fr/article.php?IdArticle=8465880 False None None 2.0000000000000000 Korben - Bloger francais Ice – Maîtriser votre barre de menus macOS comme un champion 2024-03-18T08:00:00+00:00 https://korben.info/ice-gestion-personnalisation-barre-menus-mac.html www.secnews.physaphae.fr/article.php?IdArticle=8465909 False None None 2.0000000000000000 Global Security Mag - Site de news francais InterCERT France passe le cap des 100 membres ! Business]]> 2024-03-18T07:58:47+00:00 https://www.globalsecuritymag.fr/intercert-france-passe-le-cap-des-100-membres.html www.secnews.physaphae.fr/article.php?IdArticle=8465894 False None None 2.0000000000000000 The Register - Site journalistique Anglais Les équipes de l'INFOSEC doivent être autorisées à échouer, soutient Gartner Infosec teams must be allowed to fail, argues Gartner But failing to recover from incidents is unforgivable because \'adrenalin does not scale\' Zero tolerance of failure by information security professionals is unrealistic, and makes it harder for cyber security folk to do the essential part of their job: recovering fast from inevitable attacks, according to Gartner analysts Chris Mixter and Dennis Xiu.…]]> 2024-03-18T07:29:14+00:00 https://go.theregister.com/feed/www.theregister.com/2024/03/18/gartner_infosec_failure_advice/ www.secnews.physaphae.fr/article.php?IdArticle=8465881 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Les données de retraite du gouvernement sud-africain crainsent les craintes de l'étincelle South African Government Pension Data Leak Fears Spark Probe LockBit ransomware gang claims 668GB of data it dumped online was stolen from South Africa\'s pension agency.]]> 2024-03-18T07:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/south-african-government-pension-data-leak-fears-spark-probe www.secnews.physaphae.fr/article.php?IdArticle=8465854 False Ransomware None 2.0000000000000000 Dark Reading - Informationweek Branch 3 façons dont les entreprises peuvent surmonter la pénurie de compétences en cybersécurité 3 Ways Businesses Can Overcome the Cybersecurity Skills Shortage With budget constraints and a limited supply of skilled talent, businesses need to get creative to defend against rampant cybersecurity threats.]]> 2024-03-18T05:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/3-ways-businesses-can-overcome-cybersecurity-skills-shortage www.secnews.physaphae.fr/article.php?IdArticle=8465804 False None None 3.0000000000000000 AhnLab - Korean Security Firm Techniques d'évasion de défense détectées par Ahnlab EDR Defense Evasion Techniques Detected by AhnLab EDR Généralement, des organisations telles que les instituts et les entreprises utilisent divers produits de sécurité pour prévenir les menaces de sécurité.Pour les seuls systèmes de point de terminaison, il n'y a pas seulement des solutions anti-malware, mais aussi des pare-feu, des solutions de défense appropriées et des produits tels que EDR.Même dans les environnements utilisateur généraux sans organisation distincte responsable de la sécurité, la plupart d'entre elles ont des produits de sécurité de base installés.Par exemple, la plupart des utilisateurs avec le dernier système d'exploitation Windows ont automatiquement un produit anti-malware tel que Microsoft Defender installé.Comme la plupart des utilisateurs ont de nos jours la sécurité ...

Generally, organizations such as institutes and companies use various security products to prevent security threats. For endpoint systems alone, there are not only anti-malware solutions, but also firewalls, APT defense solutions and products such as EDR. Even in general user environments without separate organization responsible for security, most of them have basic security products installed. For example, most of the users with latest Windows OS automatically have anti-malware product such as Microsoft Defender installed. As most users nowadays have security... ]]> 2024-03-18T04:50:37+00:00 https://asec.ahnlab.com/en/63145/ www.secnews.physaphae.fr/article.php?IdArticle=8465803 False None None 2.0000000000000000 The State of Security - Magazine Américain La surveillance du micrologiciel n'est qu'à un instantané Firmware Monitoring is Just a Snapshot Away Any time the television news presents a story about cybersecurity, there is always a video of a large data center with thousands of blinking lights. Even most cybersecurity blogs will include an image of many lights on the front panels of servers, routers, and other hardware. However, most people don\'t notice that the lights are usually green or some shade of blue. Rarely are those lights yellow or red, signaling a problem. Firmware problems Just as a red traffic light is the signal to stop, few things raise the blood pressure of a sysadmin faster than a hardware, or worse, a firmware problem...]]> 2024-03-18T04:21:06+00:00 https://www.tripwire.com/state-of-security/firmware-monitoring-just-snapshot-away www.secnews.physaphae.fr/article.php?IdArticle=8465937 False None None 3.0000000000000000 The State of Security - Magazine Américain Apprentissage fédéré pour la cybersécurité: intelligence collaborative pour la détection des menaces Federated Learning for Cybersecurity: Collaborative Intelligence for Threat Detection The demand for innovative threat detection and intelligence approaches is more pressing than ever. One such paradigm-shifting technology gaining prominence is Federated Learning (FL). This emerging concept harnesses the power of collaborative intelligence, allowing disparate entities to pool their insights without compromising sensitive data. A report by Apple suggests that the number of data breaches nearly tripled between 2013 and 2022, compromising 2.6 billion records over the course of just two years, a trend that is only getting worse. A Review of Basic Concepts Organizations have rapidly...]]> 2024-03-18T04:20:51+00:00 https://www.tripwire.com/state-of-security/federated-learning-cybersecurity-collaborative-intelligence-threat-detection www.secnews.physaphae.fr/article.php?IdArticle=8465938 False Threat,Prediction None 3.0000000000000000 The Register - Site journalistique Anglais L'attaque du canal latéral Chatgpt a une solution facile: obscurcissement des jetons ChatGPT side-channel attack has easy fix: token obfuscation ALSO: Roblox-themed infostealer on the prowl, telco insider pleads guilty to swapping SIMs, and some crit vulns in brief Almost as quickly as a paper came out last week revealing an AI side-channel vulnerability, Cloudflare researchers have figured out how to solve it: just obscure your token size.…]]> 2024-03-18T02:31:10+00:00 https://go.theregister.com/feed/www.theregister.com/2024/03/18/chatgpt_sidechannel_attack_has_easy/ www.secnews.physaphae.fr/article.php?IdArticle=8465754 False Vulnerability ChatGPT 3.0000000000000000 TrendLabs Security - Editeur Antivirus La menace dynamique DOS The Dynamic DoS Threat ENISA Report Unveils a Complex Cyber Landscape]]> 2024-03-18T00:00:00+00:00 https://www.trendmicro.com/en_us/research/24/c/enisa-report-dos-attack-classifications.html www.secnews.physaphae.fr/article.php?IdArticle=8466732 False Threat None 2.0000000000000000 TrendLabs Security - Editeur Antivirus Earth Krahang exploite la confiance intergouvernementale pour lancer des attaques croisées Earth Krahang Exploits Intergovernmental Trust to Launch Cross-Government Attacks Since early 2022, we have been monitoring an APT campaign that targets several government entities worldwide, with a strong focus in Southeast Asia, but also seen targeting Europe, America, and Africa.]]> 2024-03-18T00:00:00+00:00 https://www.trendmicro.com/en_us/research/24/c/earth-krahang.html www.secnews.physaphae.fr/article.php?IdArticle=8465877 False None None 2.0000000000000000 ComputerWeekly - Computer Magazine UK \\'s Ai Ambitions inutile tandis que la cybersécurité est toujours négligée UK\\'s AI ambitions pointless while cyber security is still neglected 2024-03-17T20:01:00+00:00 https://www.computerweekly.com/news/366573872/UKs-AI-ambitions-pointless-while-cyber-security-is-still-neglected www.secnews.physaphae.fr/article.php?IdArticle=8465908 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain AT&T dit que les données divulguées de 70 millions de personnes ne proviennent pas de ses systèmes AT&T says leaked data of 70 million people is not from its systems AT&T says a massive trove of data impacting 71 million people did not originate from its systems after a hacker leaked it on a cybercrime forum and claimed it was stolen in a 2021 breach of the company. [...]]]> 2024-03-17T19:24:32+00:00 https://www.bleepingcomputer.com/news/security/att-says-leaked-data-of-70-million-people-is-not-from-its-systems/ www.secnews.physaphae.fr/article.php?IdArticle=8465681 False None None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial Besoin croissant de relever les défis de la cybersécurité dans le secteur américain de la santé pour une amélioration de la résilience Growing need to address cybersecurity challenges across US healthcare sector for improved resilience Le secteur américain de la santé continue de faire face à des défis de cybersécurité, à risquer les données et les infrastructures des patients.Les problèmes incluent ...

>The U.S. healthcare sector continues to grapple with cybersecurity challenges, risking patient data and infrastructure. Issues include outdated... ]]> 2024-03-17T18:28:53+00:00 https://industrialcyber.co/features/growing-need-to-address-cybersecurity-challenges-across-us-healthcare-sector-for-improved-resilience/ www.secnews.physaphae.fr/article.php?IdArticle=8465560 False Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain Une nouvelle attaque acoustique détermine les frappes des modèles de frappe New acoustic attack determines keystrokes from typing patterns Researchers have demonstrated a new acoustic side-channel attack on keyboards that can deduce user input based on their typing patterns, even in poor conditions, such as environments with noise. [...]]]> 2024-03-17T10:22:43+00:00 https://www.bleepingcomputer.com/news/security/new-acoustic-attack-determines-keystrokes-from-typing-patterns/ www.secnews.physaphae.fr/article.php?IdArticle=8465463 False None None 3.0000000000000000 Korben - Bloger francais Jami – L\'alternative décentralisée et sécurisée à Zoom, Teams…etc 2024-03-17T08:00:00+00:00 https://korben.info/jami-logiciel-communication-decentralise-securise-vie-privee.html www.secnews.physaphae.fr/article.php?IdArticle=8465324 False None None 2.0000000000000000 HexaCorn - Blog de recherche Farmagez le Windir Env.var.avec l'espace Stuffing up the WINDIR env. var. with THE SPACE Continuer la lecture & # 8594;

I love revisiting the ‘there is nothing else to be found there anymore’ cases and I described this process here. Recently, I’ve been thinking of the WINDIR environment variable. I have already covered a few cases where WoW executables could … Continue reading →]]> 2024-03-16T23:40:35+00:00 https://www.hexacorn.com/blog/2024/03/16/stuffing-up-the-windir-env-var-with-the-space/ www.secnews.physaphae.fr/article.php?IdArticle=8465124 False None None 3.0000000000000000 HexaCorn - Blog de recherche Lolbin wow ltd x 2 I have already covered cases where I abused WINDIR environment variable to LOLBINize some WoW executables. I thought I covered w32tm.exe before, but looking at my blog history I can’t find any reference to it. So, here it is:]]> 2024-03-16T22:18:38+00:00 https://www.hexacorn.com/blog/2024/03/16/lolbin-wow-ltd-x-2/ www.secnews.physaphae.fr/article.php?IdArticle=8465099 False Technical None 3.0000000000000000 HackRead - Chercher Cyber Les pirates affirment accéder à 740 Go de données de l'application de messagerie Viber Hackers Claim Accessing 740GB of Data from Viber Messaging App Par waqas Les pirates prétendent avoir violé la vibre, volant 740 Go de données, y compris le code source, et exigent désormais une rançon de 8 Bitcoin. Ceci est un article de HackRead.com Lire le post original: Les pirates affirment accéder à 740 Go de données de l'application de messagerie Viber

>By Waqas Hackers claim to have breached Viber, stealing 740GB of data, including source code, and are now demanding ransom of 8 Bitcoin. This is a post from HackRead.com Read the original post: Hackers Claim Accessing 740GB of Data from Viber Messaging App]]> 2024-03-16T18:15:42+00:00 https://www.hackread.com/hackers-claim-740gb-of-data-viber-messaging-app/ www.secnews.physaphae.fr/article.php?IdArticle=8465010 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Les pirates utilisant un logiciel fissuré sur GitHub pour répandre le voleur d'informations Risepro Hackers Using Cracked Software on GitHub to Spread RisePro Info Stealer Cybersecurity researchers have found a number of GitHub repositories offering cracked software that are used to deliver an information stealer called RisePro. The campaign, codenamed gitgub, includes 17 repositories associated with 11 different accounts, according to G DATA. The repositories in question have since been taken down by the Microsoft-owned subsidiary. "The repositories look]]> 2024-03-16T18:01:00+00:00 https://thehackernews.com/2024/03/hackers-using-cracked-software-on.html www.secnews.physaphae.fr/article.php?IdArticle=8464901 False None None 2.0000000000000000 Korben - Bloger francais Raspberry Pi NAS – Du stockage réseau DIY performant et économique ! 2024-03-16T08:00:00+00:00 https://korben.info/raspberry-pi-nas-guide-creer-stockage-reseau-personnalise-economique.html www.secnews.physaphae.fr/article.php?IdArticle=8464798 False None None 3.0000000000000000 Korben - Bloger francais Top 50 des IA génératives à découvrir absolument en 2024 2024-03-16T07:00:00+00:00 https://korben.info/top-50-apps-ia-generatives-a-decouvrir-absolument-2024.html www.secnews.physaphae.fr/article.php?IdArticle=8464775 False Tool,Mobile None 3.0000000000000000 Korben - Bloger francais LLM4Decompile – Quand l\'IA se met à décompiler du binaire 2024-03-16T01:15:45+00:00 https://korben.info/llm4decompile-modele-decompilation-open-source-revolutionnaire.html www.secnews.physaphae.fr/article.php?IdArticle=8464669 False None None 3.0000000000000000 Korben - Bloger francais GhostRace – Nouvelle attaque de type Spectre / Meltdown contre les processeurs 2024-03-16T00:57:01+00:00 https://korben.info/ghostrace-nouvelle-attaque-spectre-processeurs.html www.secnews.physaphae.fr/article.php?IdArticle=8464647 False None None 3.0000000000000000 Resecurity - cyber risk firms Les secteurs de l'aviation et de l'aérospatiale sont confrontés à des cyber-menaces en flèche The Aviation and Aerospace Sectors Face Skyrocketing Cyber Threats 2024-03-16T00:00:00+00:00 https://www.resecurity.com/blog/article/the-aviation-and-aerospace-sectors-face-skyrocketing-cyber-threats www.secnews.physaphae.fr/article.php?IdArticle=8465011 False None None 2.0000000000000000 Resecurity - cyber risk firms Rapport d'évaluation de la cybersécurité de l'aéroport Airport Cybersecurity Assessment Report 2024-03-16T00:00:00+00:00 https://www.resecurity.com/blog/article/airport-cybersecurity-assessment-report www.secnews.physaphae.fr/article.php?IdArticle=8464776 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Ghostrace & # 8211;La nouvelle vulnérabilité des fuites de données affecte les processeurs modernes GhostRace – New Data Leak Vulnerability Affects Modern CPUs A group of researchers has discovered a new data leakage attack impacting modern CPU architectures supporting speculative execution. Dubbed GhostRace (CVE-2024-2193), it is a variation of the transient execution CPU vulnerability known as Spectre v1 (CVE-2017-5753). The approach combines speculative execution and race conditions. "All the common synchronization primitives implemented]]> 2024-03-15T23:16:00+00:00 https://thehackernews.com/2024/03/ghostrace-new-data-leak-vulnerability.html www.secnews.physaphae.fr/article.php?IdArticle=8464467 False Vulnerability None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Les groupes de soins de santé résistent aux règles de cybersécurité dans le sillage d'une violation historique Health care groups resist cybersecurity rules in wake of landmark breach Une attaque de ransomware contre un processeur de paiement a paralysé le système de soins de santé américain, créant une nouvelle dynamique pour les réglementations de cybersécurité.

>A ransomware attack on a payment processor has crippled the U.S. health care system, creating new momentum for cybersecurity regulations. ]]> 2024-03-15T21:41:32+00:00 https://cyberscoop.com/health-care-groups-resist-cybersecurity-rules-in-wake-of-landmark-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8464558 False Ransomware None 3.0000000000000000 Korben - Bloger francais Le support des cartes AMD débarque sur Ollama 2024-03-15T21:38:51+00:00 https://korben.info/support-des-cartes-graphiques-amd-sur-ollama-une-grande-nouvelle-pour-les-fans-dapplications-ia.html www.secnews.physaphae.fr/article.php?IdArticle=8464583 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Le district scolaire de Scranton de Pennsylvania \\ traitant des attaques de ransomwares Pennsylvania\\'s Scranton School District dealing with ransomware attack

Les écoles de Scranton, en Pennsylvanie, ont affaire à une attaque de ransomware, a confirmé le district dans un message du vendredi aux étudiants.Sur Facebook, le district scolaire de Scranton a averti qu'il faisait face à des pannes technologiques généralisées à la suite de l'attaque. & NBSP;«L'attaque provoque une perturbation temporaire à certains de nos systèmes informatiques et

Schools in Scranton, Pennsylvania, are dealing with a ransomware attack, the district confirmed in a Friday message to students. On Facebook, the Scranton School District warned that it is dealing with widespread technology outages as a result of the attack. “The attack is causing a temporary disruption to some of our computer systems and]]> 2024-03-15T21:24:29+00:00 https://therecord.media/pennsylvania-scranton-school-district-ransomware-attack www.secnews.physaphae.fr/article.php?IdArticle=8464560 False Ransomware None 2.0000000000000000 Recorded Future - FLux Recorded Future Meta perd une offre de tribunal visant à empêcher la FTC de rouvrir l'ordonnance de confidentialité Meta loses court bid seeking to stop FTC from reopening privacy order

Un juge fédéral a rejeté la demande de Meta \\ d'empêcher la Federal Trade Commission (FTC) de réouverture un règlement de confidentialité en 2020 avec le géant des médias sociaux sur des allégations selon lesquelles il a bafoué les termes de l'accord. & Nbsp;Les défenseurs de la vie privée ont qualifié la décision une victoire significative dans une affaire qui pourrait avoir de grandes implications pour les autorités de la FTC \\

A federal judge rejected Meta\'s request to stop the Federal Trade Commission (FTC) from reopening a 2020 privacy settlement with the social media giant over allegations that it flouted the terms of the agreement. Privacy advocates called the ruling a significant victory in a case that could have grave implications for the FTC\'s authorities]]> 2024-03-15T21:16:49+00:00 https://therecord.media/meta-loses-court-bid-ftc-privacy-settlement www.secnews.physaphae.fr/article.php?IdArticle=8464561 False None None 3.0000000000000000 Dark Reading - Informationweek Branch \\ 'ghostrace \\' L'attaque d'exécution spéculative a un impact \\'GhostRace\\' Speculative Execution Attack Impacts All CPU, OS Vendors Like Spectre, the new GhostRace exploit could give attackers a way to access sensitive information from system memory and take other malicious actions.]]> 2024-03-15T21:09:49+00:00 https://www.darkreading.com/cyber-risk/ghostrace-speculative-execution-attack-cpu-os-vendors www.secnews.physaphae.fr/article.php?IdArticle=8464559 False Vulnerability,Threat None 4.0000000000000000 Schneier on Security - Chercheur Cryptologue Américain Vendredi Blogging Squid: Operation Squid Friday Squid Blogging: Operation Squid 1,3 tonnes de cocaïne Hidden chez Frozenpoisson. Comme d'habitude, vous pouvez également utiliser ce post de calmar pour parler des histoires de sécurité dans les nouvelles que je n'ai pas couvertes. . Lisez mes directives de publication de blog ici .

Operation Squid found 1.3 tons of cocaine hidden in frozen fish. As usual, you can also use this squid post to talk about the security stories in the news that I haven\'t covered. Read my blog posting guidelines here.]]> 2024-03-15T21:08:32+00:00 https://www.schneier.com/blog/archives/2024/03/friday-squid-blogging-operation-squid.html www.secnews.physaphae.fr/article.php?IdArticle=8464557 False None None 2.0000000000000000 Dark Reading - Informationweek Branch BRESSE NHS, HSE BUG EXPOSE DONNÉES DE SANTÉES DANS LES ISLES BRITANNIQUES NHS Breach, HSE Bug Expose Healthcare Data in the British Isles Whoopsies in Ireland and Scotland speak to a tenuousness of cyber protections for sensitive private healthcare data.]]> 2024-03-15T20:37:49+00:00 https://www.darkreading.com/cyberattacks-data-breaches/nhs-breach-hse-bug-expose-healthcare-data-british-isles www.secnews.physaphae.fr/article.php?IdArticle=8464534 False Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future Le FMI dit que la cyberattaque de février impliquait un compromis de 11 comptes de messagerie IMF says February cyberattack involved compromise of 11 email accounts

Une cyberattaque en février a entraîné le compromis de 11 comptes de messagerie au Fonds monétaire international (FMI), a annoncé vendredi l'organisation. & NBSP;Dans une brève déclaration, le FMI a déclaré que le cyber-incident avait été détecté le 16 février. & NBSP;«Une enquête ultérieure, avec l'aide d'experts indépendants de la cybersécurité, a déterminé la nature de la violation,

A cyberattack in February led to the compromise of 11 email accounts at the International Monetary Fund (IMF), the organization said on Friday. In a brief statement, the IMF said the cyber incident was detected on February 16. “A subsequent investigation, with the assistance of independent cybersecurity experts, determined the nature of the breach,]]> 2024-03-15T20:28:25+00:00 https://therecord.media/imf-february-cyberattack-email-accounts-compromised www.secnews.physaphae.fr/article.php?IdArticle=8464535 False None None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Confronté à la menace de piratage chinois, les pros de la cybersécurité industrielle Demandent: Quoi de neuf? Confronted with Chinese hacking threat, industrial cybersecurity pros ask: What else is new? Lors de la plus grande conférence sur la cybersécurité industrielle du monde \\, les opérations de Pékin \\ ciblant l'infrastructure critique américaine n'étaient qu'une préoccupation parmi beaucoup.

>At the world\'s largest industrial cybersecurity conference, Beijing\'s operations targeting U.S. critical infrastructure was just one concern among many. ]]> 2024-03-15T20:23:25+00:00 https://cyberscoop.com/s4x24-volt-typhoon-critical-infrastructure/ www.secnews.physaphae.fr/article.php?IdArticle=8464533 False Threat,Industrial,Conference None 3.0000000000000000 Recorded Future - FLux Recorded Future Les pirates de groupe de Lazarus semblent retourner à la tornade en espèces pour le blanchiment d'argent Lazarus Group hackers appear to return to Tornado Cash for money laundering

Le groupe de piratage de Lazarus de la Corée du Nord aurait repris un ancien service afin de laver 23 millions de dollars volés lors d'une attaque en novembre. & NBSP;Les enquêteurs de la société de recherche Blockchain, Elliptic, ont déclaré vendredi qu'au dernier jour où ils avaient & nbsp;vu les fonds - une partie des 112,5 millions de dollars volés au HTX

North Korea\'s Lazarus hacking group allegedly has turned back to an old service in order to launder $23 million stolen during an attack in November. Investigators at blockchain research company Elliptic said on Friday that in the last day they had seen the funds - part of the $112.5 million stolen from the HTX]]> 2024-03-15T18:33:59+00:00 https://therecord.media/lazarus-group-north-korea-tornado-cash-money-laundering www.secnews.physaphae.fr/article.php?IdArticle=8464489 False None APT 38 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Les plugins tiers Chatgpt pourraient conduire à des prises de contrôle des comptes Third-Party ChatGPT Plugins Could Lead to Account Takeovers Cybersecurity researchers have found that third-party plugins available for OpenAI ChatGPT could act as a new attack surface for threat actors looking to gain unauthorized access to sensitive data. According to new research published by Salt Labs, security flaws found directly in ChatGPT and within the ecosystem could allow attackers to install malicious plugins without users\' consent]]> 2024-03-15T17:04:00+00:00 https://thehackernews.com/2024/03/third-party-chatgpt-plugins-could-lead.html www.secnews.physaphae.fr/article.php?IdArticle=8464322 False Threat ChatGPT 2.0000000000000000 IT Security Guru - Blog Sécurité # MIWIC2024: Andrea Cullen, co-fondatrice de Capslock Education Ltd. #MIWIC2024: Andrea Cullen, Co-Founder of CAPSLOCK Education Ltd. # miwic2024: anreaCullen, co-fondatrice de Capslock Education Ltd. est apparue pour la première fois sur gourou de la sécurité informatique .

Organised by Eskenzi PR in media partnership with the IT Security Guru, the Most Inspiring Women in Cyber Awards aim to shed light on the remarkable women in our industry. The following is a feature on one of 2024\'s Top 20 women selected by an esteemed panel of judges. Presented in a Q&A format, the nominee\'s answers are […] The post #MIWIC2024: Andrea Cullen, Co-Founder of CAPSLOCK Education Ltd. first appeared on IT Security Guru. ]]> 2024-03-15T16:55:26+00:00 https://www.itsecurityguru.org/2024/03/15/miwic2024-andrea-cullen-co-founder-of-capslock-education-ltd/?utm_source=rss&utm_medium=rss&utm_campaign=miwic2024-andrea-cullen-co-founder-of-capslock-education-ltd www.secnews.physaphae.fr/article.php?IdArticle=8464444 False None None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine La perturbation de la base de données de la vulnérabilité nationale du NIST voit l'enrichissement de CVE en attente NIST National Vulnerability Database Disruption Sees CVE Enrichment on Hold Vulnerability data has stopped being added to the most widely used software vulnerability database for over a month, putting organizations at risk – and nobody knows why]]> 2024-03-15T16:46:00+00:00 https://www.infosecurity-magazine.com/news/nist-vulnerability-database/ www.secnews.physaphae.fr/article.php?IdArticle=8464445 False Vulnerability None 3.0000000000000000 Recorded Future - FLux Recorded Future Les pannes de réseau à Birmingham persistent alors que les responsables de la ville restent serrés Network outages in Birmingham persist as city officials stay tight-lipped

La ville de Birmingham, en Alabama, connaît toujours des pannes limitant les services gouvernementaux plus d'une semaine après qu'un réseau «perturbe» a forcé les responsables à passer aux transactions en espèces et à prendre d'autres mesures temporaires.Dans une brève mise à jour publiée sur les réseaux sociaux jeudi soir, la ville a déclaré que ses bureaux «restent ouverts et que le personnel est

The city of Birmingham, Alabama, is still experiencing outages limiting government services more than a week after a network “disruption” forced officials to switch to cash transactions and to take other temporary actions. In a brief update posted to social media on Thursday evening, the city said its offices “remain open and staff is]]> 2024-03-15T16:34:33+00:00 https://therecord.media/network-outage-birmingham-alabama-ongoing-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8464447 False None None 2.0000000000000000 Recorded Future - FLux Recorded Future Tiktok a condamné à une amende de près de 11 millions de dollars par le régulateur italien TikTok fined nearly $11 million by Italian regulator

Les autorités italiennes ont condamné à une amende de 10,9 millions de dollars TIKTOK jeudi pour avoir alimenté la propagation des vidéos susceptibles de nuire à la «sécurité psycho physique» des utilisateurs, selon un communiqué de presse de l'autorité de compétition du pays \\ (AGCM).L'amende, le résultat d'une enquête d'un an, est venue un jour après que la Chambre des représentants des États-Unis a voté efficacement

Italian authorities fined TikTok $10.9 million on Thursday for fueling the spread of videos likely to harm the “psycho physical safety” of users, according to a press release from the country\'s Competition Authority (AGCM). The fine, the result of a year-long investigation, came a day after the U.S. House of Representatives voted to effectively]]> 2024-03-15T16:08:53+00:00 https://therecord.media/tiktok-italy-fine-regulator www.secnews.physaphae.fr/article.php?IdArticle=8464448 False None None 3.0000000000000000 HackRead - Chercher Cyber Nouveau malware «Bunnyloader 3.0» vole des informations d'identification et de la crypto New Malware “BunnyLoader 3.0” Steals Credentials and Crypto waqas Un autre jour, une autre menace de cybersécurité frappe les utilisateurs insoupdises! Ceci est un article de HackRead.com Lire la publication originale: Nouveau malware & # 8220; BunnyLoader 3.0 & # 8221;Vole des informations d'identification et de la crypto

By Waqas Another day, another cybersecurity threat hits unsuspected users! This is a post from HackRead.com Read the original post: New Malware “BunnyLoader 3.0” Steals Credentials and Crypto]]> 2024-03-15T16:06:31+00:00 https://www.hackread.com/bunnyloader-3-0-malware-steals-credentials-crypto/ www.secnews.physaphae.fr/article.php?IdArticle=8464421 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Comptes de messagerie internationaux du Fonds monétaire piraté en cyberattaque International Monetary Fund email accounts hacked in cyberattack The International Monetary Fund (IMF) disclosed a cyber incident on Friday after unknown attackers breached 11 IMF email accounts earlier this year. [...]]]> 2024-03-15T15:48:22+00:00 https://www.bleepingcomputer.com/news/security/international-monetary-fund-email-accounts-hacked-in-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8464511 False None None 2.0000000000000000 TechRepublic - Security News US Sophos: L'épuisement professionnel de la cybersécurité est répandu, créant un risque pour les organisations APAC Sophos: Cyber Security Professional Burnout Is Widespread, Creating Risk for APAC Organisations Burnout and fatigue among cyber professionals are leading to flow-on consequences like more data breaches, employee apathy to cyber duties and turnover of cyber workforces during a skills crisis.]]> 2024-03-15T15:47:16+00:00 https://www.techrepublic.com/article/sophos-report-cybersecurity-burnout-apac/ www.secnews.physaphae.fr/article.php?IdArticle=8464418 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Moldavan National condamné dans un cas de marché de la cybercriminalité en ligne E-ROOT Moldovan national sentenced in E-Root cybercrime marketplace case

Un ressortissant de 31 ans de 31 ans a été condamné à 42 mois dans la prison fédérale américaine pour avoir exploité une série de sites Web utilisés pour vendre l'accès à des ordinateurs compromis dans le monde entier, a annoncé jeudi le ministère de la Justice américain.Selon des documents judiciaires, Sandu Boris Diaconu était administrateur du marché de la racine électronique, qui a énuméré plus de 350 000

A 31-year-old Moldovan national was sentenced to 42 months in U.S. federal prison for operating a series of websites used to sell access to compromised computers worldwide, the U.S. Department of Justice said on Thursday. According to court documents, Sandu Boris Diaconu was an administrator for the E-Root Marketplace, which listed more than 350,000]]> 2024-03-15T15:10:03+00:00 https://therecord.media/moldovan-sentenced-eroot-cybercrime-market www.secnews.physaphae.fr/article.php?IdArticle=8464422 False Legislation None 3.0000000000000000 Global Security Mag - Site de news francais Élise Lucet au cœur d\'une vaste arnaque sur les réseaux sociaux, France 2 et Le Monde portent plainte Malwares]]> 2024-03-15T15:05:17+00:00 https://www.globalsecuritymag.fr/elise-lucet-au-coeur-d-une-vaste-arnaque-sur-les-reseaux-sociaux-france-2-et-le.html www.secnews.physaphae.fr/article.php?IdArticle=8464423 False None None 2.0000000000000000 Fortinet - Fabricant Materiel Securite Ransomware Roundup & # 8211;Monde RA Ransomware Roundup – RA World The RA World ransomware, which debuted late last year, claims to be holding more than 20 organizations worldwide hostage for financial gain. Learn more.]]> 2024-03-15T15:00:00+00:00 https://www.fortinet.com/blog/threat-research/ransomware-roundup-ra-world www.secnews.physaphae.fr/article.php?IdArticle=8464420 False Ransomware None 2.0000000000000000 knowbe4 - cybersecurity services Sophos: plus de 75% des cyber-incidents ciblent les petites entreprises Sophos: Over 75% of Cyber Incidents Target Small Businesses

]]> 2024-03-15T14:31:48+00:00 https://blog.knowbe4.com/sophos-over-75-of-cyber-incidents-target-small-businesses www.secnews.physaphae.fr/article.php?IdArticle=8464394 False None None 3.0000000000000000 Global Security Mag - Site de news francais Recrudescence de l\'usurpation d\'identité dans les cyberattaques Malwares]]> 2024-03-15T14:24:06+00:00 https://www.globalsecuritymag.fr/recrudescence-de-l-usurpation-d-identite-dans-les-cyberattaques.html www.secnews.physaphae.fr/article.php?IdArticle=8464396 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future La Russie cible des centaines d'Américains avec de nouvelles sanctions, y compris les cyber-journalistes Russia targets hundreds of Americans with new sanctions, including cyber journalists

La Russie a interdit l'entrée à 227 citoyens américains, notamment des journalistes, des chercheurs et des représentants du gouvernement dans le cadre d'une nouvelle série de sanctions ciblant les Américains soutenant les «politiques russes de Washington», a déclaré le ministère russe des Affaires étrangères.Parmi les journalistes ciblés, il y a une poignée qui fait rapport sur les questions de cybersécurité.Le ministère a déclaré que les sanctions sont une réponse

Russia has banned entry to 227 U.S. citizens, including prominent journalists, researchers, and government officials as part of a new spate of sanctions targeting Americans supporting Washington\'s “Russophobic policies,” the Russian Foreign Ministry said. Among the targeted journalists are a handful who report on cybersecurity issues. The ministry said the sanctions are a response]]> 2024-03-15T14:21:31+00:00 https://therecord.media/russia-new-sanctions-on-cyber-journalists-americans www.secnews.physaphae.fr/article.php?IdArticle=8464395 False None None 3.0000000000000000 Global Security Mag - Site de news francais Jusqu'au 31 mai 2024, dans le centre d'exposition italien, Piacenza Expo New Cyber Security Mass est dédiée à la menace croissante des infrastructures crrestiques bis 31. Mai 2024 im italienischen Messezentrum Piacenza Expo Neue Cybersicherheitsmesse widmet sich der zunehmenden bedrohung krstischer infrastrukturen conférences et webinaires

29. - 31. Mai im italienischen Messezentrum Piacenza Expo : Neue Cybersicherheitsmesse widmet sich der zunehmenden bedrohung krstischer infrastrukturen - Konferenzen und Webinare]]> 2024-03-15T14:07:40+00:00 https://www.globalsecuritymag.fr/bis-31-mai-2024-im-italienischen-messezentrum-piacenza-expo-neue.html www.secnews.physaphae.fr/article.php?IdArticle=8464370 False None None 3.0000000000000000 Global Security Mag - Site de news francais 29 à 31 mai 2024 à Piacenza Expo en Italie: nouvelle exposition de cybersécurité pour faire face aux menaces croissantes des infrastructures critiques 29th-31st May 2024 at Piacenza Expo in Italy: New Cybersecurity exhibition to address growing threats to critical infrastructure événements

New Cybersecurity exhibition to address growing threats to critical infrastructure 29th-31st May 2024 at Piacenza Expo in Italy - EVENTS]]> 2024-03-15T14:01:47+00:00 https://www.globalsecuritymag.fr/29th-31st-may-2024-at-piacenza-expo-in-italy-new-cybersecurity-exhibition-to.html www.secnews.physaphae.fr/article.php?IdArticle=8464371 False None None 2.0000000000000000 Netskope - etskope est une société de logiciels américaine fournissant une plate-forme de sécurité informatique De la livraison à l'exécution: une campagne évasive Azorult a été introduite en contrebande via Google Sites From Delivery To Execution: An Evasive Azorult Campaign Smuggled Through Google Sites Résumé de Netskope Threat Labs a observé une campagne d'évasive Azorult dans la nature qui utilise de multiples techniques d'évasion de défense de la livraison à l'exécution pour voler sous le radar du défenseur \\ car il vole des données sensibles.Azorult est un voleur d'informations découvert pour la première fois en 2016 qui vole des informations sensibles, y compris les informations d'identification des utilisateurs, les informations du navigateur et le portefeuille crypto [& # 8230;]

>Summary Netskope Threat Labs has observed an evasive Azorult campaign in the wild that employs multiple defense evasion techniques from delivery through execution to fly under the defender\'s radar as it steals sensitive data. Azorult is an information stealer first discovered in 2016 that steals sensitive information including user credentials, browser information, and crypto wallet […] ]]> 2024-03-15T14:00:00+00:00 https://www.netskope.com/blog/from-delivery-to-execution-an-evasive-azorult-campaign-smuggled-through-google-sites www.secnews.physaphae.fr/article.php?IdArticle=8464367 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch Chatgpt vs Gemini: Quel est le meilleur pour 10 tâches Infosec courantes? ChatGPT vs. Gemini: Which Is Better for 10 Common Infosec Tasks? Compare how well OpenAI\'s and Google\'s generative AI products handle infosec professionals\' top 10 tasks.]]> 2024-03-15T14:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/chatgpt-vs-gemini-which-is-better-for-10-common-infosec-tasks- www.secnews.physaphae.fr/article.php?IdArticle=8463366 False None ChatGPT 2.0000000000000000 Dark Reading - Informationweek Branch ChatGPT vs. Gemini: Which Is Better for 10 Common Infosec Tasks? Compare how well OpenAI\'s and Google\'s generative AI products handle infosec professionals\' top 10 tasks.]]> 2024-03-15T14:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/chatgpt-vs-gemini-which-is-better-for-10-common-infosec-tasks www.secnews.physaphae.fr/article.php?IdArticle=8464368 False None ChatGPT 3.0000000000000000 Recorded Future - FLux Recorded Future Exclusif: après le démontage de Lockbit \\, son prétendu leader promet de pirater Exclusive: After LockBit\\'s takedown, its purported leader vows to hack on

Cette semaine, le podcast Click Here a décroché une entrevue rare avec le prétendu leader du groupe Ransomware Lockbit - il porte le nom LockbitsUpp.Il est sous pression parce que le mois dernier, une opération de police internationale a infiltré le groupe et a saisi non seulement leur plate-forme, mais aussi leurs outils de piratage, les comptes de crypto-monnaie et le code source

This week, the Click Here podcast landed a rare interview with the purported leader of the LockBit ransomware group - he goes by the name LockBitSupp. He\'s under pressure because last month an international police operation infiltrated the group and seized not just their platform, but their hacking tools, cryptocurrency accounts and source code]]> 2024-03-15T13:45:16+00:00 https://therecord.media/after-lockbit-takedown-its-purported-leader-vows-to-hack-on www.secnews.physaphae.fr/article.php?IdArticle=8464369 False Ransomware,Hack,Tool,Legislation None 3.0000000000000000 CyberSecurityVentures - cybersecurity services Quand changer votre mot de passe Wi-Fi.Mieux vaut prévenir que désolé. When To Change Your Wi-Fi Password. Better Safe Than Sorry. Cette semaine à Cybersecurity des éditeurs du magazine Cybercrime & # 8211; lisez l'histoire complète à Newsweek Sausalito, Californie & # 8211;15 mars 2024 Newsweek Rapports & # 160; qu'en règle générale, vous devriez changer votre mot de passe Wi-Fi & # 160; tous les trois mois.De cette façon, si votre mot de passe est saisi lors d'une données

>This week in cybersecurity from the editors at Cybercrime Magazine –Read the Full Story in Newsweek Sausalito, Calif. – Mar. 15, 2024 Newsweek reports that as a general rule, you should change your Wi-Fi password every three months. That way, if your password is grabbed during a data ]]> 2024-03-15T13:36:39+00:00 https://cybersecurityventures.com/when-to-change-your-wi-fi-password-better-safe-than-sorry/ www.secnews.physaphae.fr/article.php?IdArticle=8464364 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Google introduit une protection URL en temps réel améliorée pour les utilisateurs de Chrome Google Introduces Enhanced Real-Time URL Protection for Chrome Users Google on Thursday announced an enhanced version of Safe Browsing to provide real-time, privacy-preserving URL protection and safeguard users from visiting potentially malicious sites. “The Standard protection mode for Chrome on desktop and iOS will check sites against Google\'s server-side list of known bad sites in real-time,” Google\'s Jonathan Li and Jasika Bawa said. “If we]]> 2024-03-15T13:20:00+00:00 https://thehackernews.com/2024/03/google-introduces-enhanced-real-time.html www.secnews.physaphae.fr/article.php?IdArticle=8464251 False None None 3.0000000000000000 HackRead - Chercher Cyber Escroqueries alimentées par l'IA, Trafficking Human Trafficking Fuel Global Cybercrime Surge: Interpol AI-Powered Scams, Human Trafficking Fuel Global Cybercrime Surge: INTERPOL Par waqas La nouvelle évaluation de la fraude financière Interpol révèle comment la cybercriminalité est alimentée par l'abus de l'IA et d'autres technologies. Ceci est un article de HackRead.com Lire le post original: Ascroqueries alimentées par AI, Trafficking Human Trafficking Fuel Cybercrime Surge: Interpol

>By Waqas New INTERPOL Financial Fraud assessment reveals how cybercrime is being fueled by the abuse of AI and other technologies. This is a post from HackRead.com Read the original post: AI-Powered Scams, Human Trafficking Fuel Global Cybercrime Surge: INTERPOL]]> 2024-03-15T12:39:34+00:00 https://www.hackread.com/ai-powered-scams-human-trafficking-cybercrime-interpol/ www.secnews.physaphae.fr/article.php?IdArticle=8464344 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 6 plats à retenir CISO des directives de la NSA \\ 6 CISO Takeaways From the NSA\\'s Zero-Trust Guidance All companies - not just federal agencies - should aim to adopt the "network and environment" pillar of the National Security Agency\'s zero-trust guidelines.]]> 2024-03-15T12:25:35+00:00 https://www.darkreading.com/cybersecurity-operations/6-ciso-takeaways-nsa-zero-trust-guidance www.secnews.physaphae.fr/article.php?IdArticle=8464446 False None None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Publicités malveillantes ciblant les utilisateurs chinois avec un faux bloc-notes ++ et des installateurs VNote Malicious Ads Targeting Chinese Users with Fake Notepad++ and VNote Installers Chinese users looking for legitimate software such as Notepad++ and VNote on search engines like Baidu are being targeted with malicious ads and bogus links to distribute trojanized versions of the software and ultimately deploy Geacon, a Golang-based implementation of Cobalt Strike. “The malicious site found in the notepad++ search is distributed through an advertisement block,” Kaspersky]]> 2024-03-15T11:48:00+00:00 https://thehackernews.com/2024/03/malicious-ads-targeting-chinese-users.html www.secnews.physaphae.fr/article.php?IdArticle=8464205 False None None 3.0000000000000000 Recorded Future - FLux Recorded Future Scottish Health Service dit que la cyberattaque axée et en cours \\ 'peut perturber les services Scottish health service says \\'focused and ongoing cyber attack\\' may disrupt services

Scottish Health Service dit que la cyberattaque concentrée et en cours \\ 'peut perturber les services NHS Dumfries et Galloway, qui fait partie du système de santé écossais, a annoncé vendredi qu'il était la cible «d'une cyberattaque ciblée et en cours».La nature de l'incident n'a pas encore été divulguée, bien que le Conseil de santé y annonçait «May B

Scottish health service says \'focused and ongoing cyber attack\' may disrupt services NHS Dumfries and Galloway, part of the Scottish healthcare system, announced on Friday it was the target “of a focused and ongoing cyber attack.” The nature of the incident has not yet been disclosed, although the health board announced there “may b]]> 2024-03-15T11:30:03+00:00 https://therecord.media/scottish-nhs-cyberattack-healthcare-dumfries-galloway www.secnews.physaphae.fr/article.php?IdArticle=8464321 False Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine La mauvaise configuration du HSE a exposé plus d'un million de citoyens irlandais \\ 'Statut de vaccination HSE Misconfiguration Exposed Over a Million Irish Citizens\\' Vaccine Status An AppOmni researcher detailed a misconfiguration in the HSE COVID Vaccination Portal, exposing the health and personal data of over a million Irish citizens]]> 2024-03-15T11:30:00+00:00 https://www.infosecurity-magazine.com/news/hse-exposed-irish-vaccine-status/ www.secnews.physaphae.fr/article.php?IdArticle=8464320 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain L'ancien directeur des télécommunications admet avoir fait des échanges SIM pour 1 000 $ Former telecom manager admits to doing SIM swaps for $1,000 A former manager at a telecommunications company in New Jersey pleaded guilty to conspiracy charges for accepting money to perform unauthorized SIM swaps that enabled an accomplice to hack customer accounts. [...]]]> 2024-03-15T11:26:17+00:00 https://www.bleepingcomputer.com/news/security/former-telecom-manager-admits-to-doing-sim-swaps-for-1-000/ www.secnews.physaphae.fr/article.php?IdArticle=8464419 False Hack None 3.0000000000000000 We Live Security - Editeur Logiciel Antivirus ESET Les soins de santé sont toujours une cible principale pour les gangs de cybercriminalité & # 8211;Semaine en sécurité avec Tony Anscombe Healthcare still a prime target for cybercrime gangs – Week in security with Tony Anscombe Healthcare organizations remain firmly in attackers\' crosshairs, representing 20 percent of all victims of ransomware attacks among critical infrastructure entities in the US in 2023]]> 2024-03-15T11:20:38+00:00 https://www.welivesecurity.com/en/videos/healthcare-target-cybercrime-week-security-tony-anscombe/ www.secnews.physaphae.fr/article.php?IdArticle=8464943 False Ransomware,Medical None 2.0000000000000000 HackRead - Chercher Cyber Une violation de données massive expose des informations de 43 millions de travailleurs français Massive Data Breach Exposes Info of 43 Million French Workers Par deeba ahmed Un autre jour, une autre violation de données massive! Ceci est un article de HackRead.com Lire le post original: Une violation de données massive expose des informations de 43 millions de travailleurs français

>By Deeba Ahmed Another day, another massive data breach! This is a post from HackRead.com Read the original post: Massive Data Breach Exposes Info of 43 Million French Workers]]> 2024-03-15T11:07:41+00:00 https://www.hackread.com/massive-data-breach-43-million-french-workers/ www.secnews.physaphae.fr/article.php?IdArticle=8464298 False Data Breach None 2.0000000000000000 Schneier on Security - Chercheur Cryptologue Américain Amélioration du C ++ Improving C++ écrit sur la façon dont nous pouvons améliorer le langage de programmation pour une meilleure sécurité. Le problème immédiat & # 8220; est & # 8221;qu'il est trop facile par défaut ™ pour rédiger des vulnérabilités de sécurité et de sécurité en C ++ qui auraient été capturées par une application plus stricte de règles connues pour le type , les limites, l'initialisation et Lifetime Sécurité linguistique. sa conclusion: Nous devons améliorer la sécurité des logiciels et la sécurité des logiciels dans l'industrie, en particulier en améliorant la sécurité du langage de programmation en C et C ++, et en C ++, une amélioration de 98% dans les quatre problèmes les plus courants est réalisable à moyen terme.Mais si nous nous concentrons uniquement sur la sécurité du langage de programmation, nous pouvons nous retrouver à combattre hier \\ et manquer des dangers de sécurité passés et futurs qui affectent les logiciels écrits dans n'importe quelle langue ...

C++ guru Herb Sutter writes about how we can improve the programming language for better security. The immediate problem “is” that it\'s Too Easy By Default™ to write security and safety vulnerabilities in C++ that would have been caught by stricter enforcement of known rules for type, bounds, initialization, and lifetime language safety. His conclusion: We need to improve software security and software safety across the industry, especially by improving programming language safety in C and C++, and in C++ a 98% improvement in the four most common problem areas is achievable in the medium term. But if we focus on programming language safety alone, we may find ourselves fighting yesterday\'s war and missing larger past and future security dangers that affect software written in any language...]]> 2024-03-15T11:05:41+00:00 https://www.schneier.com/blog/archives/2024/03/improving-c.html www.secnews.physaphae.fr/article.php?IdArticle=8464295 False Vulnerability,Legislation None 2.0000000000000000 ComputerWeekly - Computer Magazine Le bureau du maire de Londres \\ est réprimandé sur la violation des données London Mayor\\'s Office reprimanded over data breach 2024-03-15T10:45:00+00:00 https://www.computerweekly.com/news/366573912/London-Mayors-Office-reprimanded-over-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8464393 False Data Breach None 3.0000000000000000 SecurityWeek - Security News 43 millions éventuellement affectés par la violation de données de l'agence gouvernementale française 43 Million Possibly Impacted by French Government Agency Data Breach Une violation de données récente à l'agence de chômage France Travail (P & OCIRC; LE EMPLOI) pourrait avoir un impact sur 43 millions de personnes.

>Recent data breach at unemployment agency France Travail (Pôle Emploi) could impact 43 million people. ]]> 2024-03-15T10:25:19+00:00 https://www.securityweek.com/43-million-possibly-impacted-by-french-government-agency-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8464296 False Data Breach None 4.0000000000000000 IndustrialCyber - cyber risk firms for industrial Le sondage Mitre-Harris révèle les préoccupations publiques américaines concernant les infrastructures critiques et les risques perçus MITRE-Harris poll reveals US public\\'s concerns over critical infrastructure and perceived risks A MITRE-Harris poll revealed that a significant portion of the U.S. population, especially homeowners, urban residents, and individuals... ]]> 2024-03-15T09:59:42+00:00 https://industrialcyber.co/critical-infrastructure/mitre-harris-poll-reveals-us-publics-concerns-over-critical-infrastructure-and-perceived-risks/ www.secnews.physaphae.fr/article.php?IdArticle=8464273 False None None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial Mitsubishi Electric, Nozomi pour développer l'activité de sécurité OT pour une sécurité et une disponibilité améliorées du système Mitsubishi Electric, Nozomi to expand OT security business for enhanced system security and availability Mitsubishi Electric Corporation announced Thursday that it has reached an agreement with Nozomi Networks Inc., a developer and... ]]> 2024-03-15T09:53:56+00:00 https://industrialcyber.co/news/mitsubishi-electric-nozomi-to-expand-ot-security-business-for-enhanced-system-security-and-availability/ www.secnews.physaphae.fr/article.php?IdArticle=8464274 False Industrial None 3.0000000000000000 Global Security Mag - Site de news francais Cryptographie post-Quantum: six cyber-joueurs français unissent leurs forces pour concevoir les réseaux de communication sécurisés de demain Post-quantum cryptography: six French cyber players join forces to design the secure communication networks of tomorrow nouvelles commerciales

Post-quantum cryptography: six French cyber players join forces to design the secure communication networks of tomorrow - Business News]]> 2024-03-15T09:27:31+00:00 https://www.globalsecuritymag.fr/post-quantum-cryptography-six-french-cyber-players-join-forces-to-design-the.html www.secnews.physaphae.fr/article.php?IdArticle=8464275 False None None 3.0000000000000000 Global Security Mag - Site de news francais Micro-segmentation et partitionnement de données Points de Vue]]> 2024-03-15T08:31:47+00:00 https://www.globalsecuritymag.fr/micro-segmentation-et-partitionnement-de-donnees.html www.secnews.physaphae.fr/article.php?IdArticle=8464248 False None None 2.0000000000000000 Global Security Mag - Site de news francais Micro-segmentation et partitionnement des données Micro-segmentation and data partitioning opinion

Micro-segmentation and data partitionning #segmentation #micro-segmentation #data # security #cybersecurity # SYDECO #PTSYDECO #partitioning - Opinion]]> 2024-03-15T08:31:31+00:00 https://www.globalsecuritymag.fr/micro-segmentation-and-data-partitioning.html www.secnews.physaphae.fr/article.php?IdArticle=8464397 False None None 3.0000000000000000 Global Security Mag - Site de news francais Lancement de Microsoft Copilot for Security - Analyste Forrester en amont Points de Vue]]> 2024-03-15T08:26:43+00:00 https://www.globalsecuritymag.fr/lancement-de-microsoft-copilot-for-security-analyste-forrester-en-amont.html www.secnews.physaphae.fr/article.php?IdArticle=8464250 False None None 2.0000000000000000