This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-08T23:22:14+00:00 www.secnews.physaphae.fr Bleeping Computer - Magazine Américain Malwarebytes\' is running a Black Friday 2023 deal now through Cyber Monday, offering a 50% discount to the Malwarebytes Premium + Privacy VPN bundle until November 30th. [...]]]> 2023-11-21T08:27:54+00:00 https://www.bleepingcomputer.com/news/security/black-friday-deal-get-50-percent-off-malwarebytes-premium-plus-privacy-vpn/ www.secnews.physaphae.fr/article.php?IdArticle=8415439 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A recently discovered worm that researchers call LittleDrifter has been spreading over USB drives infecting systems in multiple countries as part of a campaign from the Gamaredon state-sponsored espionage group. [...]]]> 2023-11-20T17:32:01+00:00 https://www.bleepingcomputer.com/news/security/gamaredons-littledrifter-usb-malware-spreads-beyond-ukraine/ www.secnews.physaphae.fr/article.php?IdArticle=8415074 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new Phobos ransomware variant frames the popular VX-Underground malware-sharing collective, indicating the group is behind attacks using the encryptor. [...]]]> 2023-11-20T15:42:54+00:00 https://www.bleepingcomputer.com/news/security/vx-underground-malware-collective-framed-by-phobos-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8415030 False Ransomware,Malware,Technical None 4.0000000000000000 Bleeping Computer - Magazine Américain The Canadian government says two of its contractors have been hacked, exposing sensitive information belonging to an undisclosed number of government employees.  [...]]]> 2023-11-20T12:23:08+00:00 https://www.bleepingcomputer.com/news/security/canadian-government-discloses-data-breach-after-contractor-hacks/ www.secnews.physaphae.fr/article.php?IdArticle=8414965 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The Kinsing malware operator is actively exploiting the CVE-2023-46604 critical vulnerability in the Apache ActiveMQ open-source message broker to compromise Linux systems. [...]]]> 2023-11-20T11:54:44+00:00 https://www.bleepingcomputer.com/news/security/kinsing-malware-exploits-apache-activemq-rce-to-plant-rootkits/ www.secnews.physaphae.fr/article.php?IdArticle=8414942 False Malware,Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain Learn more from Specops Software about the benefits of self-service password resets and ways to accomplish this with on-premises Active Directory. [...]]]> 2023-11-20T10:02:04+00:00 https://www.bleepingcomputer.com/news/security/how-to-boost-security-with-self-service-password-resets/ www.secnews.physaphae.fr/article.php?IdArticle=8414921 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain The Lumma information-stealing malware is now using an interesting tactic to evade detection by security software - the measuring of mouse movements using trigonometry to determine if the malware is running on a real machine or an antivirus sandbox. [...]]]> 2023-11-20T09:40:21+00:00 https://www.bleepingcomputer.com/news/security/lumma-stealer-malware-now-uses-trigonometry-to-evade-detection/ www.secnews.physaphae.fr/article.php?IdArticle=8414887 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain After Sandworm and APT28 (known as Fancy Bear), another state-sponsored Russian hacker group, APT29, is leveraging the CVE-2023-38831 vulnerability in WinRAR for cyberattacks. [...]]]> 2023-11-19T11:14:25+00:00 https://www.bleepingcomputer.com/news/security/russian-hackers-use-ngrok-feature-and-winrar-exploit-to-attack-embassies/ www.secnews.physaphae.fr/article.php?IdArticle=8414888 False Vulnerability,Threat APT 29,APT 28 3.0000000000000000 Bleeping Computer - Magazine Américain Ransomware gangs target exposed Citrix Netscaler devices using a publicly available exploit to breach large organizations, steal data, and encrypt files. [...]]]> 2023-11-17T18:26:29+00:00 https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-november-17th-2023-citrix-in-the-crosshairs/ www.secnews.physaphae.fr/article.php?IdArticle=8413639 False Ransomware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The official Twitter account for Bloomberg Crypto was used earlier today to redirect users to a deceptive website that stole Discord credentials in a phishing attack. [...]]]> 2023-11-17T18:01:50+00:00 https://www.bleepingcomputer.com/news/security/bloomberg-crypto-x-account-snafu-leads-to-discord-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8413660 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Yamaha Motor\'s Philippines motorcycle manufacturing subsidiary was hit by a ransomware attack last month, resulting in the theft and leak of some employees\' personal information. [...]]]> 2023-11-17T11:45:27+00:00 https://www.bleepingcomputer.com/news/security/yamaha-motor-confirms-ransomware-attack-on-philippines-subsidiary/ www.secnews.physaphae.fr/article.php?IdArticle=8413479 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The British Library confirmed that a ransomware attack is behind a major outage that is still affecting services across several locations. [...]]]> 2023-11-17T08:37:26+00:00 https://www.bleepingcomputer.com/news/security/british-library-ongoing-outage-caused-by-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8413402 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain MySQL servers are being targeted by the \'Ddostf\' malware botnet to enslave them for a DDoS-as-a-Service platform whose firepower is rented to other cybercriminals. [...]]]> 2023-11-16T15:11:49+00:00 https://www.bleepingcomputer.com/news/security/mysql-servers-targeted-by-ddostf-ddos-as-a-service-botnet/ www.secnews.physaphae.fr/article.php?IdArticle=8413061 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Toyota Financial Services (TFS) has confirmed that it detected unauthorized access on some of its systems in Europe and Africa after Medusa ransomware claimed an attack on the company. [...]]]> 2023-11-16T14:02:02+00:00 https://www.bleepingcomputer.com/news/security/toyota-confirms-breach-after-medusa-ransomware-threatens-to-leak-data/ www.secnews.physaphae.fr/article.php?IdArticle=8413014 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The ALPHV/BlackCat ransomware operation has taken extortion to a new level by filing a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack. [...]]]> 2023-11-15T21:02:47+00:00 https://www.bleepingcomputer.com/news/security/ransomware-gang-files-sec-complaint-over-victims-undisclosed-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8412641 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Samsung Electronics is notifying some of its customers of a data breach that exposed their personal information to an unauthorized individual. [...]]]> 2023-11-15T18:07:50+00:00 https://www.bleepingcomputer.com/news/security/new-samsung-data-breach-impacts-uk-store-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8412932 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain The Toronto Public Library (TPL) confirmed that the personal information of employees, customers, volunteers, and donors was stolen from a compromised file server during an October ransomware attack. [...]]]> 2023-11-15T14:20:45+00:00 https://www.bleepingcomputer.com/news/security/toronto-public-library-confirms-data-stolen-in-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8412506 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new software-based fault injection attack, CacheWarp, can let threat actors hack into AMD SEV-protected virtual machines by targeting memory writes to escalate privileges and gain remote code execution. [...]]]> 2023-11-14T15:34:15+00:00 https://www.bleepingcomputer.com/news/security/new-cachewarp-amd-cpu-attack-lets-hackers-gain-root-in-linux-vms/ www.secnews.physaphae.fr/article.php?IdArticle=8412075 False Hack,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The Lockbit ransomware attacks use publicly available exploits for the Citrix Bleed vulnerability (CVE-2023-4966) to breach the systems of large organizations, steal data, and encrypt files. [...]]]> 2023-11-14T15:03:21+00:00 https://www.bleepingcomputer.com/news/security/lockbit-ransomware-exploits-citrix-bleed-in-attacks-10k-servers-exposed/ www.secnews.physaphae.fr/article.php?IdArticle=8412057 False Ransomware,Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain Postmeds, doing business as \'Truepill,\' is sending notifications of a data breach informing recipients that threat actors accessed their sensitive personal information. [...]]]> 2023-11-14T12:36:32+00:00 https://www.bleepingcomputer.com/news/security/pharmacy-provider-truepill-data-breach-hits-23-million-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8411979 False Data Breach,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers found a Windows equivalent for the recently discovered BiBi-Linux, a data-wiping malware used in attacks to destroy data on systems at Israeli companies. [...]]]> 2023-11-13T11:53:42+00:00 https://www.bleepingcomputer.com/news/security/israel-warns-of-bibi-wiper-attacks-targeting-linux-and-windows/ www.secnews.physaphae.fr/article.php?IdArticle=8411132 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain The Criminal IP threat intelligence search engine by AI SPERA has recently integrated with Cisco SecureX/XDR, empowering organizations to stay ahead of malicious actors. Learn more about this integration from Criminal IP in this article. [...]]]> 2023-11-13T10:02:01+00:00 https://www.bleepingcomputer.com/news/security/criminal-ip-and-cisco-securex-xdr-enhanced-cyber-threat-analysis/ www.secnews.physaphae.fr/article.php?IdArticle=8411133 False Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers have tracked a new campaign from Imperial Kitten targeting transportation, logistics, and technology firms. [...]]]> 2023-11-12T10:30:15+00:00 https://www.bleepingcomputer.com/news/security/iranian-hackers-launch-malware-attacks-on-israels-tech-sector/ www.secnews.physaphae.fr/article.php?IdArticle=8410367 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Mr. Cooper, the largest home loan servicer in the United States, says it found evidence of customer data exposed during a cyberattack disclosed last week, on October 31. [...]]]> 2023-11-10T16:57:31+00:00 https://www.bleepingcomputer.com/news/security/mortgage-giant-mr-cooper-says-customer-data-exposed-in-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8409322 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Microsoft warns that the BlueNoroff North Korean hacking group is setting up new attack infrastructure for upcoming social engineering campaigns on LinkedIn. [...]]]> 2023-11-10T15:40:58+00:00 https://www.bleepingcomputer.com/news/security/microsoft-bluenoroff-hackers-plan-new-crypto-theft-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8409299 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Security researchers are warning that hackers are targeting multiple healthcare organizations in the U.S. by abusing the ScreenConnect remote access tool. [...]]]> 2023-11-10T14:57:04+00:00 https://www.bleepingcomputer.com/news/security/hackers-breach-healthcare-orgs-via-screenconnect-remote-access/ www.secnews.physaphae.fr/article.php?IdArticle=8409273 False Tool,Vulnerability None 2.0000000000000000 Bleeping Computer - Magazine Américain The State of Maine has announced that its systems were breached after threat actors exploited a vulnerability in the MOVEit file transfer tool and accessed personal information of about 1.3 million, which is close to the state\'s entire population. [...]]]> 2023-11-10T11:21:23+00:00 https://www.bleepingcomputer.com/news/security/maine-govt-notifies-13-million-people-of-moveit-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8409199 False Data Breach,Vulnerability,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain McLaren Health Care (McLaren) is notifying nearly 2.2 million people of a data breach that occurred between late July and August this year, exposing sensitive personal information. [...]]]> 2023-11-10T10:28:12+00:00 https://www.bleepingcomputer.com/news/security/mclaren-health-care-says-data-breach-impacted-22-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8409170 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Kyocera AVX Components Corporation (KAVX) is sending notices of a data breach exposing personal information of 39,111 individuals following a ransomware attack. [...]]]> 2023-11-09T16:43:23+00:00 https://www.bleepingcomputer.com/news/security/kyocera-avx-says-ransomware-attack-impacted-39-000-individuals/ www.secnews.physaphae.fr/article.php?IdArticle=8408745 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Cloudflare is investigating an ongoing outage causing \'We\'re sorry" Google errors to be shown on the company\'s website. [...]]]> 2023-11-09T16:25:14+00:00 https://www.bleepingcomputer.com/news/technology/cloudflare-website-downed-by-ddos-attack-claimed-by-anonymous-sudan/ www.secnews.physaphae.fr/article.php?IdArticle=8408771 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Industrial & Commercial Bank of China (ICBC) is restoring systems and services following a ransomware attack that disrupted the U.S. Treasury market, causing equities clearing issues. [...]]]> 2023-11-09T14:52:23+00:00 https://www.bleepingcomputer.com/news/security/worlds-largest-commercial-bank-icbc-confirms-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8409097 False Ransomware,Industrial,Commercial None 3.0000000000000000 Bleeping Computer - Magazine Américain A threat actor has been abusing Google Ads to distribute a trojanized version of the CPU-Z tool to deliver the Redline info-stealing malware. [...]]]> 2023-11-09T11:09:38+00:00 https://www.bleepingcomputer.com/news/security/google-ads-push-malicious-cpu-z-app-from-fake-windows-news-site/ www.secnews.physaphae.fr/article.php?IdArticle=8408601 False Malware,Tool,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques that enable reaching the final stage of the attack quicker and with less resources [...]]]> 2023-11-09T06:12:26+00:00 https://www.bleepingcomputer.com/news/security/russian-hackers-switch-to-lotl-technique-to-cause-power-outage/ www.secnews.physaphae.fr/article.php?IdArticle=8408436 False Industrial None 2.0000000000000000 Bleeping Computer - Magazine Américain Security and data analytics company Sumo Logic disclosed a security breach after discovering that its AWS (Amazon Web Services) account was compromised last week. [...]]]> 2023-11-08T13:31:24+00:00 https://www.bleepingcomputer.com/news/security/sumo-logic-discloses-security-breach-advises-api-key-resets/ www.secnews.physaphae.fr/article.php?IdArticle=8408018 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Russian financial organization Sberbank states in a press release that two weeks ago it faced the most powerful distributed denial of service (DDoS) attack in recent history. [...]]]> 2023-11-08T13:14:53+00:00 https://www.bleepingcomputer.com/news/security/russian-state-owned-sberbank-hit-by-1-million-rps-ddos-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8408019 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Federal Bureau of Investigation is warning that ransomware threat actors are targeting casino servers and use legitimate system management tools to increase their permissions on the network. [...]]]> 2023-11-08T11:44:35+00:00 https://www.bleepingcomputer.com/news/security/fbi-ransomware-gangs-hack-casinos-via-3rd-party-gaming-vendors/ www.secnews.physaphae.fr/article.php?IdArticle=8407960 False Ransomware,Hack,Tool,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain WhatsApp is rolling out a new privacy feature that helps Android and iOS users hide their location during calls by relaying the connection through WhatsApp servers. [...]]]> 2023-11-08T09:00:00+00:00 https://www.bleepingcomputer.com/news/security/whatsapp-now-lets-users-hide-their-location-during-calls/ www.secnews.physaphae.fr/article.php?IdArticle=8407901 False Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain The operator of the Nokoyawa ransomware-as-a-service (RaaS), a threat actor known as \'farnetwork\', built experience over the years by helping the JSWORM, Nefilim, Karma, and Nemty affiliate programs with malware development and operation management. [...]]]> 2023-11-08T04:32:39+00:00 https://www.bleepingcomputer.com/news/security/russian-speaking-threat-actor-farnetwork-linked-to-5-ransomware-gangs/ www.secnews.physaphae.fr/article.php?IdArticle=8407758 False Ransomware,Malware,Threat None 4.0000000000000000 Bleeping Computer - Magazine Américain Shared service provider TransForm has published an update on the cyberattack that recently impacted operations in multiple hospitals in Ontario, Canada, clarifying that it was a ransomware attack. [...]]]> 2023-11-07T18:37:51+00:00 https://www.bleepingcomputer.com/news/security/transform-says-ransomware-data-breach-affects-267-000-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8407539 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The North Korean-backed BlueNorOff threat group targets Apple customers with new macOS malware tracked as ObjCShellz that can open remote shells on compromised devices. [...]]]> 2023-11-07T15:26:39+00:00 https://www.bleepingcomputer.com/news/security/bluenoroff-hackers-backdoor-macs-with-new-objcshellz-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8407462 False Malware,Threat None 2.0000000000000000 Bleeping Computer - Magazine Américain The Marina Bay Sands (MBS) luxury resort and casino in Singapore has disclosed a data breach that impacts personal data of 665,000 customers. [...]]]> 2023-11-07T09:37:07+00:00 https://www.bleepingcomputer.com/news/security/marina-bay-sands-discloses-data-breach-impacting-665-000-customers/ www.secnews.physaphae.fr/article.php?IdArticle=8407288 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The operators of the Kinsing malware are targeting cloud environments with systems vulnerable to "Looney Tunables," a Linux security issue identified as CVE-2023-4911 that allows a local attacker to gain root privileges on the system. [...]]]> 2023-11-06T15:26:17+00:00 https://www.bleepingcomputer.com/news/security/hackers-exploit-looney-tunables-linux-bug-steal-cloud-creds/ www.secnews.physaphae.fr/article.php?IdArticle=8406806 False Malware,Threat,Cloud None 2.0000000000000000 Bleeping Computer - Magazine Américain A new dropper-as-a-service (DaaS) named \'SecuriDropper\' has emerged, using a method that bypasses Android 13\'s \'Restricted Settings\' to install malware on devices and grant them access to the Accessibility Services. [...]]]> 2023-11-06T07:00:00+00:00 https://www.bleepingcomputer.com/news/security/cybercrime-service-bypasses-android-security-to-install-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8406532 False Malware,Mobile None 2.0000000000000000 Bleeping Computer - Magazine Américain A proxy botnet called \'Socks5Systemz\' has been infecting computers worldwide via the \'PrivateLoader\' and \'Amadey\' malware loaders, currently counting 10,000 infected devices. [...]]]> 2023-11-05T10:17:34+00:00 https://www.bleepingcomputer.com/news/security/socks5systemz-proxy-service-infects-10-000-systems-worldwide/ www.secnews.physaphae.fr/article.php?IdArticle=8406293 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Discord will switch to temporary file links for all users by the end of the year to block attackers from using its CDN (content delivery network) for hosting and pushing malware. [...]]]> 2023-11-04T11:16:19+00:00 https://www.bleepingcomputer.com/news/security/discord-will-switch-to-temporary-file-links-to-block-malware-delivery/ www.secnews.physaphae.fr/article.php?IdArticle=8405917 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Allied Pilots Association (APA), a labor union representing 15,000 American Airlines pilots, disclosed a ransomware attack that hit its systems on Monday. [...]]]> 2023-11-03T13:45:07+00:00 https://www.bleepingcomputer.com/news/security/american-airlines-pilot-union-hit-by-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8405440 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Google Play, Android\'s official app store, is now tagging VPN apps with an \'independent security reviews\' badge if they conducted an independent security audit of their software and platform. [...]]]> 2023-11-03T12:48:58+00:00 https://www.bleepingcomputer.com/news/security/google-play-adds-security-audit-badges-for-android-vpn-apps/ www.secnews.physaphae.fr/article.php?IdArticle=8405416 False Mobile None 3.0000000000000000 Bleeping Computer - Magazine Américain Okta says attackers who breached its customer support system last month gained access to files belonging to 134 customers, five of them later being targeted in session hijacking attacks with the help of stolen session tokens. [...]]]> 2023-11-03T10:18:26+00:00 https://www.bleepingcomputer.com/news/security/okta-breach-134-customers-exposed-in-october-support-system-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8405351 False Hack None 2.0000000000000000 Bleeping Computer - Magazine Américain A new macOS malware dubbed \'KandyKorn\' has been spotted in a campaign attributed to the North Korean Lazarus hacking group, targeting blockchain engineers of a cryptocurrency exchange platform. [...]]]> 2023-11-02T15:22:01+00:00 https://www.bleepingcomputer.com/news/security/new-macos-kandykorn-malware-targets-cryptocurrency-engineers/ www.secnews.physaphae.fr/article.php?IdArticle=8404890 False Malware APT 38,APT 38 3.0000000000000000 Bleeping Computer - Magazine Américain The BlackCat (ALPHV) ransomware gang claims it breached the network of healthcare giant Henry Schein and stole dozens of terabytes of data, including payroll data and shareholder information. [...]]]> 2023-11-02T14:55:47+00:00 https://www.bleepingcomputer.com/news/security/blackcat-ransomware-claims-breach-of-healthcare-giant-henry-schein/ www.secnews.physaphae.fr/article.php?IdArticle=8404867 False Ransomware None 3.0000000000000000 Bleeping Computer - Magazine Américain Okta is warning nearly 5,000 current and former employees that their personal information was exposed after a third-party vendor was breached. [...]]]> 2023-11-02T10:09:13+00:00 https://www.bleepingcomputer.com/news/security/okta-hit-by-third-party-data-breach-exposing-employee-information/ www.secnews.physaphae.fr/article.php?IdArticle=8404822 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain Password reuse is a difficult vulnerability for IT teams to get full visibility over. Learn more from Specops Software on how to mitigate the risk of compromised credentials. [...]]]> 2023-11-02T10:01:02+00:00 https://www.bleepingcomputer.com/news/security/your-end-users-are-reusing-passwords-thats-a-big-problem/ www.secnews.physaphae.fr/article.php?IdArticle=8404727 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain Russia\'s security agency published a press release on Tuesday saying that its officers detained two hackers who either assisted or joined Ukraine\'s hackers in cyber operations. [...]]]> 2023-11-01T19:20:40+00:00 https://www.bleepingcomputer.com/news/legal/fsb-arrests-russian-hackers-working-for-ukrainian-cyber-forces/ www.secnews.physaphae.fr/article.php?IdArticle=8404407 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The Toronto Public Library is experiencing ongoing technical outages due to a Black Basta ransomware attack. [...]]]> 2023-11-01T16:25:55+00:00 https://www.bleepingcomputer.com/news/security/toronto-public-library-outages-caused-by-black-basta-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8404306 False Ransomware,Technical None 2.0000000000000000 Bleeping Computer - Magazine Américain Mozi malware botnet activity faded away in August after a mysterious unknown party sent a payload on September 27, 2023, that triggered a kill switch to deactivate all bots. [...]]]> 2023-11-01T13:21:21+00:00 https://www.bleepingcomputer.com/news/security/mozi-malware-botnet-goes-dark-after-mysterious-use-of-kill-switch/ www.secnews.physaphae.fr/article.php?IdArticle=8404216 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Czech cybersecurity company Avast confirmed that its antivirus SDK has been flagging a Google Android app as malware on Huawei, Vivo, and Honor smartphones since Saturday. [...]]]> 2023-10-31T16:23:05+00:00 https://www.bleepingcomputer.com/news/security/avast-confirms-it-tagged-google-app-as-malware-on-android-phones/ www.secnews.physaphae.fr/article.php?IdArticle=8403727 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Recent Flipper Zero Bluetooth spam attacks have now been ported to an Android app, allowing a much larger number of devices to implement these annoying spam alerts. [...]]]> 2023-10-31T16:06:19+00:00 https://www.bleepingcomputer.com/news/security/flipper-zero-bluetooth-spam-attacks-ported-to-new-android-app/ www.secnews.physaphae.fr/article.php?IdArticle=8403700 False Spam None 2.0000000000000000 Bleeping Computer - Magazine Américain Samsung has unveiled a new security feature called \'Auto Blocker\' as part of the One UI 6 update, offering enhanced malware protection on Galaxy devices. [...]]]> 2023-10-31T12:20:50+00:00 https://www.bleepingcomputer.com/news/security/samsung-galaxy-gets-new-auto-blocker-anti-malware-feature/ www.secnews.physaphae.fr/article.php?IdArticle=8403583 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A new NuGet typosquatting campaign pushes malicious packages that abuse Visual Studio\'s MSBuild integration to execute code and install malware stealthily. [...]]]> 2023-10-31T10:23:46+00:00 https://www.bleepingcomputer.com/news/security/malicious-nuget-packages-abuse-msbuild-to-install-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8403523 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Public exploit code is now available for the critical Cisco IOS XE vulnerability tracked as CVE-2023-20198 that was leveraged as a zero-day to hack tens of thousands of devices. [...]]]> 2023-10-30T23:09:43+00:00 https://www.bleepingcomputer.com/news/security/exploit-released-for-critical-cisco-ios-xe-flaw-many-hosts-still-hacked/ www.secnews.physaphae.fr/article.php?IdArticle=8403268 False Hack,Vulnerability,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain Hackers have stolen $4.4 million in cryptocurrency on October 25th using private keys and passphrases stored in stolen LastPass databases, according to research by crypto fraud researchers who have been researching similar incidents. [...]]]> 2023-10-30T18:46:52+00:00 https://www.bleepingcomputer.com/news/security/lastpass-breach-linked-to-theft-of-44-million-in-crypto/ www.secnews.physaphae.fr/article.php?IdArticle=8403169 False None LastPass,LastPass 4.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Securities and Exchange Commission (SEC) today charged SolarWinds with defrauding investors by allegedly concealing cybersecurity defense issues before a December 2020 linked to APT29, the Russian Foreign Intelligence Service (SVR) hacking division. [...]]]> 2023-10-30T17:54:13+00:00 https://www.bleepingcomputer.com/news/security/sec-sues-solarwinds-for-misleading-investors-before-2020-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8403150 False Hack APT 29,Solardwinds 3.0000000000000000 Bleeping Computer - Magazine Américain The U.S. Federal Trade Commission (FTC) has amended the Safeguards Rules, mandating that all non-banking financial institutions report data breach incidents within 30 days. [...]]]> 2023-10-30T15:57:54+00:00 https://www.bleepingcomputer.com/news/security/ftc-orders-non-bank-financial-firms-to-report-breaches-in-30-days/ www.secnews.physaphae.fr/article.php?IdArticle=8403071 False Data Breach,Legislation None 3.0000000000000000 Bleeping Computer - Magazine Américain A new malware wiper known as BiBi-Linux is being used to destroy data in attacks targeting Linux systems belonging to Israeli companies. [...]]]> 2023-10-30T12:53:04+00:00 https://www.bleepingcomputer.com/news/security/new-bibi-linux-wiper-malware-targets-israeli-orgs-in-destructive-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8402898 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain Huawei, Honor, and Vivo smartphones and tablets are displaying strange \'Security threat\' alerts urging the deletion of the Google app, warning that it is detected as the \'TrojanSMS-PA\' malware. [...]]]> 2023-10-30T10:47:00+00:00 https://www.bleepingcomputer.com/news/security/huawei-vivo-phones-tag-google-app-as-trojansms-pa-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8402852 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain HackerOne has announced that its bug bounty programs have awarded over $300 million in rewards to ethical hackers and vulnerability researchers since the platform\'s inception. [...]]]> 2023-10-28T11:17:34+00:00 https://www.bleepingcomputer.com/news/security/hackerone-paid-ethical-hackers-over-300-million-in-bug-bounties/ www.secnews.physaphae.fr/article.php?IdArticle=8402024 False Vulnerability,Studies None 4.0000000000000000 Bleeping Computer - Magazine Américain The North Korean Lazarus hacking group repeatedly compromised a software vendor using flaws in vulnerable software despite multiple patches and warnings being made available by the developer. [...]]]> 2023-10-27T12:15:29+00:00 https://www.bleepingcomputer.com/news/security/lazarus-hackers-breached-dev-repeatedly-to-deploy-signbt-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8401514 False Malware APT 38,APT 38 3.0000000000000000 Bleeping Computer - Magazine Américain Microsoft has released the optional KB5031445 Preview cumulative update for Windows 10 22H2 with nine improvements or fixes, including a fix for a memory leak in ctfmon.exe. [...]]]> 2023-10-26T19:37:35+00:00 https://www.bleepingcomputer.com/news/microsoft/windows-10-kb5031445-preview-update-fixes-ctfmonexe-memory-leak-9-issues/ www.secnews.physaphae.fr/article.php?IdArticle=8401135 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain Several malicious Google Play Android apps installed over 2 million times push intrusive ads to users while concealing their presence on the infected devices. [...]]]> 2023-10-26T15:01:30+00:00 https://www.bleepingcomputer.com/news/security/android-adware-apps-on-google-play-amass-two-million-installs/ www.secnews.physaphae.fr/article.php?IdArticle=8401099 False Studies None 2.0000000000000000 Bleeping Computer - Magazine Américain A sophisticated cross-platform malware platform named StripedFly flew under the radar of cybersecurity researchers for five years, infecting over a million Windows and Linux systems during that time. [...]]]> 2023-10-26T10:47:54+00:00 https://www.bleepingcomputer.com/news/security/stripedfly-malware-framework-infects-1-million-windows-linux-hosts/ www.secnews.physaphae.fr/article.php?IdArticle=8400892 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Academic researchers created a new speculative side-channel attack they named iLeakage that works on all recent Apple devices and can extract sensitive information from the Safari web browser. [...]]]> 2023-10-26T07:26:48+00:00 https://www.bleepingcomputer.com/news/security/new-ileakage-attack-steals-emails-passwords-from-apple-safari/ www.secnews.physaphae.fr/article.php?IdArticle=8400796 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A custom Flipper Zero firmware called \'Xtreme\' has added a new feature to perform Bluetooth spam attacks on Android and Windows devices. [...]]]> 2023-10-25T14:54:44+00:00 https://www.bleepingcomputer.com/news/security/flipper-zero-can-now-spam-android-windows-users-with-bluetooth-alerts/ www.secnews.physaphae.fr/article.php?IdArticle=8400549 False Spam None 2.0000000000000000 Bleeping Computer - Magazine Américain Japanese watchmaker Seiko has confirmed it suffered a Black Cat ransomware attack earlier this year, warning that the incident has led to a data breach, exposing sensitive customer, partner, and personnel information. [...]]]> 2023-10-25T12:40:43+00:00 https://www.bleepingcomputer.com/news/security/seiko-says-ransomware-attack-exposed-sensitive-customer-data/ www.secnews.physaphae.fr/article.php?IdArticle=8400201 False Ransomware None 2.0000000000000000 Bleeping Computer - Magazine Américain The Winter Vivern Russian hacking group has been exploiting a Roundcube Webmail zero-day since at least October 11 to attack European government entities and think tanks. [...]]]> 2023-10-25T07:00:00+00:00 https://www.bleepingcomputer.com/news/security/european-govt-email-servers-hacked-using-roundcube-zero-day/ www.secnews.physaphae.fr/article.php?IdArticle=8400147 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain French professional basketball team LDLC ASVEL (ASVEL) has confirmed that data was stolen after the NoEscape ransomware gang claimed to have attacked the club. [...]]]> 2023-10-24T11:07:21+00:00 https://www.bleepingcomputer.com/news/security/asvel-basketball-team-confirms-data-breach-after-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8399764 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain 1Password, a popular password management platform used by over 100,000 businesses, suffered a security breach after hackers gained access to its Okta ID management tenant. [...]]]> 2023-10-23T18:34:52+00:00 https://www.bleepingcomputer.com/news/security/1password-discloses-security-incident-linked-to-okta-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8399482 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain The University of Michigan says in a statement today that they suffered a data breach after hackers broke into its network in August and accessed systems with information belonging to students, applicants, alumni, donors, employees, patients, and research study participants. [...]]]> 2023-10-23T15:34:41+00:00 https://www.bleepingcomputer.com/news/security/university-of-michigan-employee-student-data-stolen-in-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8399428 False Data Breach,Studies None 2.0000000000000000 Bleeping Computer - Magazine Américain Cisco has addressed the two vulnerabilities (CVE-2023-20198 and CVE-2023-20273) that hackers exploited to compromise tens of thousands of IOS XE devices over the past week. [...]]]> 2023-10-23T10:08:05+00:00 https://www.bleepingcomputer.com/news/security/cisco-patches-ios-xe-zero-days-used-to-hack-over-50-000-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8399320 False Hack,Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain The City of Philadelphia is investigating a data breach after attackers "may have gained access" to City email accounts containing personal and protected health information five months ago, in May. [...]]]> 2023-10-23T05:25:58+00:00 https://www.bleepingcomputer.com/news/security/city-of-philadelphia-discloses-data-breach-after-five-months/ www.secnews.physaphae.fr/article.php?IdArticle=8399233 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain A new sophisticated threat tracked as \'TetrisPhantom\' has been using compromised secure USB drives to target government systems in the Asia-Pacific region. [...]]]> 2023-10-22T11:18:36+00:00 https://www.bleepingcomputer.com/news/security/new-tetrisphantom-hackers-steal-data-from-secure-usb-drives-on-govt-systems/ www.secnews.physaphae.fr/article.php?IdArticle=8398998 False Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain This was a bad week for ransomware, with the Trigona ransomware suffering a data breach and law enforcement disrupting the RagnarLocker ransomware operation. [...]]]> 2023-10-21T11:05:10+00:00 https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-october-20th-2023-fighting-back/ www.secnews.physaphae.fr/article.php?IdArticle=8398686 False Ransomware,Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain The International Criminal Court provided additional information about the cyberattack five weeks ago, saying that it was a targeted operation for espionage purposes. [...]]]> 2023-10-21T10:01:10+00:00 https://www.bleepingcomputer.com/news/security/international-criminal-court-systems-breached-for-cyber-espionage/ www.secnews.physaphae.fr/article.php?IdArticle=8398687 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Cisco disclosed a new high-severity zero-day (CVE-2023-20273) today, actively exploited to deploy malicious implants on IOS XE devices compromised using the CVE-2023-20198 zero-day unveiled earlier this week. [...]]]> 2023-10-20T18:12:28+00:00 https://www.bleepingcomputer.com/news/security/cisco-discloses-new-ios-xe-zero-day-exploited-to-deploy-malware-implant/ www.secnews.physaphae.fr/article.php?IdArticle=8398420 False Malware None 3.0000000000000000 Bleeping Computer - Magazine Américain A threat actor is using fake LinkedIn posts and direct messages about a Facebook Ads specialist position at hardware maker Corsair to lure people into downloading info-stealing malware like DarkGate and RedLine. [...]]]> 2023-10-20T08:48:20+00:00 https://www.bleepingcomputer.com/news/security/fake-corsair-job-offers-on-linkedin-push-darkgate-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8398245 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain More than 40,000 Cisco devices running the IOS XE operating system have been compromised after hackers exploited a recently disclosed maximum severity vulnerability tracked as CVE-2023-20198. [...]]]> 2023-10-19T21:08:47+00:00 https://www.bleepingcomputer.com/news/security/over-40-000-cisco-ios-xe-devices-infected-with-backdoor-using-zero-day/ www.secnews.physaphae.fr/article.php?IdArticle=8397991 False Vulnerability None 3.0000000000000000 Bleeping Computer - Magazine Américain Sandu Diaconu, the operator of the E-Root marketplace, has been extradited to the U.S. to face a maximum imprisonment penalty of 20 years for selling access to compromised computers. [...]]]> 2023-10-19T18:42:04+00:00 https://www.bleepingcomputer.com/news/security/e-root-admin-faces-20-years-for-selling-stolen-rdp-ssh-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8397919 False None None 3.0000000000000000 Bleeping Computer - Magazine Américain Microsoft is extending Purview Audit log retention as promised after the Chinese Storm-0558 hacking group breached dozens of Exchange and Microsoft 365 corporate and government accounts in July. [...]]]> 2023-10-19T16:21:25+00:00 https://www.bleepingcomputer.com/news/security/microsoft-extends-purview-audit-log-retention-after-july-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8397864 False None None 2.0000000000000000 Bleeping Computer - Magazine Américain A Google Ads campaign was found pushing a fake KeePass download site that used Punycode to appear as the official domain of the KeePass password manager to distribute malware. [...]]]> 2023-10-19T14:17:19+00:00 https://www.bleepingcomputer.com/news/security/fake-keepass-site-uses-google-ads-and-punycode-to-push-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8397827 False Malware,Threat None 3.0000000000000000 Bleeping Computer - Magazine Américain The Ragnar Locker ransomware operation\'s Tor negotiation and data leak sites were seized Thursday morning as part of an international law enforcement operation. [...]]]> 2023-10-19T10:39:39+00:00 https://www.bleepingcomputer.com/news/security/ragnar-locker-ransomwares-dark-web-extortion-sites-seized-by-police/ www.secnews.physaphae.fr/article.php?IdArticle=8397737 False Ransomware None 1.00000000000000000000 Bleeping Computer - Magazine Américain Japanese electronics manufacturer Casio disclosed a data breach impacting customers from 149 countries after hackers gained to the servers of its ClassPad education platform. [...]]]> 2023-10-19T07:37:48+00:00 https://www.bleepingcomputer.com/news/security/casio-discloses-data-breach-impacting-customers-in-149-countries/ www.secnews.physaphae.fr/article.php?IdArticle=8397668 False Data Breach None 3.0000000000000000 Bleeping Computer - Magazine Américain A group of cyber activists under the Ukrainian Cyber Alliance banner has hacked the servers of the Trigona ransomware gang and wiped them clean after copying all the information available. [...]]]> 2023-10-18T19:17:43+00:00 https://www.bleepingcomputer.com/news/security/ukrainian-activists-hack-trigona-ransomware-gang-wipe-servers/ www.secnews.physaphae.fr/article.php?IdArticle=8397477 False Ransomware,Hack None 4.0000000000000000 Bleeping Computer - Magazine Américain Microsoft says that the North Korean Lazarus and Andariel hacking groups are exploiting the CVE-2023-42793 flaw in TeamCity servers to deploy backdoor malware, likely to conduct software supply chain attacks. [...]]]> 2023-10-18T18:33:02+00:00 https://www.bleepingcomputer.com/news/security/north-korean-hackers-exploit-critical-teamcity-flaw-to-breach-networks/ www.secnews.physaphae.fr/article.php?IdArticle=8397455 False Vulnerability APT 38 3.0000000000000000 Bleeping Computer - Magazine Américain Google has announced new, real-time scanning features for Google Play Protect that make it harder for malicious apps employing polymorphism to evade detection. [...]]]> 2023-10-18T12:00:00+00:00 https://www.bleepingcomputer.com/news/security/google-play-protect-adds-real-time-scanning-to-fight-android-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8397355 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain An updated version of the MATA backdoor framework was spotted in attacks between August 2022 and May 2023, targeting oil and gas firms and the defense industry in Eastern Europe. [...]]]> 2023-10-18T11:17:34+00:00 https://www.bleepingcomputer.com/news/security/mata-malware-framework-exploits-edr-in-attacks-on-defense-firms/ www.secnews.physaphae.fr/article.php?IdArticle=8397356 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain One of the trends driving an increase is the compromise of enterprise single sign on (SSO) applications are info-stealer malware attacks. Learn more from Flare about this cybercrime ecosystem. [...]]]> 2023-10-18T10:02:04+00:00 https://www.bleepingcomputer.com/news/security/single-sign-on-and-the-cybercrime-ecosystem/ www.secnews.physaphae.fr/article.php?IdArticle=8397322 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Hackers are scanning for internet-exposed Jupyter Notebooks to breach servers and deploy a cocktail of malware consisting of a Linux rootkit, crypto miners, and password-stealing scripts. [...]]]> 2023-10-18T06:00:00+00:00 https://www.bleepingcomputer.com/news/security/qubitstrike-attacks-rootkit-jupyter-linux-servers-to-steal-credentials/ www.secnews.physaphae.fr/article.php?IdArticle=8397216 False Malware None 1.00000000000000000000 Bleeping Computer - Magazine Américain Security researchers found that IT administrators are using tens of thousands of weak passwords to protect access to portals, leaving the door open to cyberattacks on enterprise networks. [...]]]> 2023-10-17T17:47:32+00:00 https://www.bleepingcomputer.com/news/security/over-40-000-admin-portal-accounts-use-admin-as-a-password/ www.secnews.physaphae.fr/article.php?IdArticle=8396887 False Studies None 3.0000000000000000 Bleeping Computer - Magazine Américain Amazon has quietly added passkey support as a new passwordless login option for customers, offering better protection from information-stealing malware and phishing attacks. [...]]]> 2023-10-17T15:09:01+00:00 https://www.bleepingcomputer.com/news/security/amazon-adds-passkey-support-as-new-passwordless-login-option/ www.secnews.physaphae.fr/article.php?IdArticle=8396840 False Malware None 2.0000000000000000 Bleeping Computer - Magazine Américain Taiwanese networking equipment manufacturer D-Link confirmed a data breach linked to information stolen from its network and put up for sale on BreachForums earlier this month. [...]]]> 2023-10-17T14:48:47+00:00 https://www.bleepingcomputer.com/news/security/d-link-confirms-data-breach-after-employee-phishing-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8396841 False Data Breach None 2.0000000000000000 Bleeping Computer - Magazine Américain Android malware \'SpyNote\' was seen in an Italy-focused campaign that uses a phony \'IT-alert\' public alert service website to infect visitors. [...]]]> 2023-10-17T11:54:11+00:00 https://www.bleepingcomputer.com/news/security/spynote-android-malware-spreads-via-fake-volcano-eruption-alerts/ www.secnews.physaphae.fr/article.php?IdArticle=8396782 False Malware None 2.0000000000000000