This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-08T01:33:54+00:00 www.secnews.physaphae.fr Dark Reading - Informationweek Branch A spate of recent typosquatting attacks shows the scourge of this type of attack is still very much with us, even after decades of cyber defender experience with it.]]> 2024-03-11T20:55:12+00:00 https://www.darkreading.com/threat-intelligence/typosquatting-wave-shows-no-signs-of-abating www.secnews.physaphae.fr/article.php?IdArticle=8462316 False None None 2.0000000000000000 Dark Reading - Informationweek Branch With the final switchover to the latest version of the credit card standard, here\'s what all security professionals can draw from the changes.]]> 2024-03-11T20:31:15+00:00 https://www.darkreading.com/cybersecurity-operations/pci-dss-4-0-is-good-security-guidance-for-everyone www.secnews.physaphae.fr/article.php?IdArticle=8462294 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Rushing to onboard AI, companies and their developers are downloading a variety of pre-trained machine-learning models, but verifying security and integrity remains a challenge.]]> 2024-03-11T20:02:51+00:00 https://www.darkreading.com/cyber-risk/ai-models-take-off-leaving-security-behind www.secnews.physaphae.fr/article.php?IdArticle=8462619 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Working with countries and organizations in Africa, Asia, and the Middle East, the Tazama project aims to add affordable security and trust to the financial infrastructure.]]> 2024-03-11T17:24:46+00:00 https://www.darkreading.com/cyber-risk/anti-fraud-project-boosts-security-of-african-asian-financial-systems www.secnews.physaphae.fr/article.php?IdArticle=8462236 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The alarming number of cyber threats targeting Microsoft cloud applications shows cybersecurity needs an overhaul.]]> 2024-03-11T15:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/how-not-to-become-target-of-next-microsoft-hack www.secnews.physaphae.fr/article.php?IdArticle=8462143 False Hack,Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch Open-source software ecosystem compromise leaves developers in Asia and around the globe at risk.]]> 2024-03-11T00:00:00+00:00 https://www.darkreading.com/application-security/japan-blames-north-korea-for-pypi-supply-chain-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8461867 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Chinese national Linwei Ding is accused of pilfering more than 500 files containing Google IP while affiliating with two China-based startups at the same time.]]> 2024-03-08T21:56:55+00:00 https://www.darkreading.com/insider-threats/google-engineer-steals-ai-trade-secrets-chinese-companies www.secnews.physaphae.fr/article.php?IdArticle=8460993 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Burned-out cybersecurity professionals dealing with layoffs and stressful working conditions are increasingly finding a better way to earn a buck: cybercrime.]]> 2024-03-08T21:43:10+00:00 https://www.darkreading.com/cybersecurity-operations/broke-cyber-pros-cybercrime-side-hustles www.secnews.physaphae.fr/article.php?IdArticle=8460994 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps.]]> 2024-03-08T21:42:16+00:00 https://www.darkreading.com/cybersecurity-operations/ciso-corner-nsa-guidelines-utility-sbom-case-study-lava-lamps www.secnews.physaphae.fr/article.php?IdArticle=8460995 False Studies None 3.0000000000000000 Dark Reading - Informationweek Branch The nation\'s battle with political deepfakes may be a harbinger for what\'s to come in elections around the world this year.]]> 2024-03-08T20:06:07+00:00 https://www.darkreading.com/threat-intelligence/south-korean-police-deepfake-detection-tool-run-up-elections www.secnews.physaphae.fr/article.php?IdArticle=8460974 False Tool,Legislation None 3.0000000000000000 Dark Reading - Informationweek Branch The Midnight Blizzard APT is mounting a sustained, focused cyber campaign against the computing kahuna, using secrets it stole from emails back in January.]]> 2024-03-08T17:22:50+00:00 https://www.darkreading.com/cyberattacks-data-breaches/russia-sponsored-cyberattackers-infiltrate-microsoft-s-code-base www.secnews.physaphae.fr/article.php?IdArticle=8460913 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The proof-of-concept exploits for Atlassian Confluence would enable arbitrary code execution without requiring file system access.]]> 2024-03-08T16:46:09+00:00 https://www.darkreading.com/application-security/stealth-bomber-atlassian-confluence-exploits-drop-web-shells-in-memory www.secnews.physaphae.fr/article.php?IdArticle=8460889 False None None 3.0000000000000000 Dark Reading - Informationweek Branch How lava lamps, pendulums and suspended rainbows keep the internet safe.]]> 2024-03-08T15:00:46+00:00 https://www.darkreading.com/remote-workforce/creating-security-through-randomness www.secnews.physaphae.fr/article.php?IdArticle=8460890 False None None 2.0000000000000000 Dark Reading - Informationweek Branch A decade after Stuxnet, vulnerabilities in OT systems and programmable logic controllers remain exposed.]]> 2024-03-08T15:00:00+00:00 https://www.darkreading.com/ics-ot-security/ongoing-struggle-to-protect-plcs www.secnews.physaphae.fr/article.php?IdArticle=8460849 False Vulnerability,Industrial None 3.0000000000000000 Dark Reading - Informationweek Branch Zero-trust architectures are essential protective measures for the modern enterprise. The latest NSA guidance provides detailed recommendations on how to implement the networking angle of the concept.]]> 2024-03-08T13:00:00+00:00 https://www.darkreading.com/remote-workforce/nsa-s-zero-trust-guidelines-focus-on-segmentation www.secnews.physaphae.fr/article.php?IdArticle=8460802 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The defendant targeted victims, along with co-conspirators, to trick them into wiring funds to drop accounts using spoofed emails.]]> 2024-03-08T07:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/nigerian-national-pleads-guilty-conspiracy-bec-operation www.secnews.physaphae.fr/article.php?IdArticle=8460681 False None None 2.0000000000000000 Dark Reading - Informationweek Branch CISA and OpenSSF jointly published new guidance recommending technical controls to make it harder for developers to bring in malicious software components into code.]]> 2024-03-08T03:00:22+00:00 https://www.darkreading.com/application-security/how-to-ensure-open-source-pckages-are-not-landmines www.secnews.physaphae.fr/article.php?IdArticle=8460914 False Technical Bahamut 3.0000000000000000 Dark Reading - Informationweek Branch Just one day after disclosure, adversaries began targeting the vulnerabilities to take complete control of affected instances of the popular developer platform.]]> 2024-03-07T22:51:32+00:00 https://www.darkreading.com/cyberattacks-data-breaches/jetbrains-teamcity-mass-exploitation-underway-rogue-accounts-thrive www.secnews.physaphae.fr/article.php?IdArticle=8460536 False Vulnerability None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-03-07T22:44:26+00:00 https://www.darkreading.com/cyber-risk/silence-laboratories-raises-4-1m-funding-to-enable-privacy-preserving-collaborative-computing www.secnews.physaphae.fr/article.php?IdArticle=8460537 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-03-07T22:38:03+00:00 https://www.darkreading.com/cyber-risk/bipartisan-members-of-congress-introduce-enhanced-cybersecurity-for-snap-act-to-secure-food-benefits-against-hackers-and-thieves www.secnews.physaphae.fr/article.php?IdArticle=8460538 False None None 2.0000000000000000 Dark Reading - Informationweek Branch USBs are fetch again, as major APTs from Russia, China, and beyond are turning to them for BYOD cyberattacks.]]> 2024-03-07T21:16:13+00:00 https://www.darkreading.com/ics-ot-security/weirdest-trend-cybersecurity-nation-states-usb www.secnews.physaphae.fr/article.php?IdArticle=8460514 False Prediction None 4.0000000000000000 Dark Reading - Informationweek Branch Cyber risk quantification brings together the CISO\'s technical expertise and the CFO\'s focus on financial impact to develop a stronger and better understanding of cyber risk.]]> 2024-03-07T18:34:58+00:00 https://www.darkreading.com/cyber-risk/cyber-insurance-strategy-requires-ciso-cfo-collaboration www.secnews.physaphae.fr/article.php?IdArticle=8460778 False Technical None 3.0000000000000000 Dark Reading - Informationweek Branch Election cyber threats come from various places, including compromised voting machines, AI deepfakes, and potential physical harm to workers. But CISA has been working diligently with various public and private partners to stymie the risk.]]> 2024-03-07T17:49:12+00:00 https://www.darkreading.com/cybersecurity-operations/cisa-fights-cyber-threats-election-primary-season www.secnews.physaphae.fr/article.php?IdArticle=8460428 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Spike in new versions of an old Trojan - which mimic legitimate VMware domains - alarms security researchers.]]> 2024-03-07T15:41:02+00:00 https://www.darkreading.com/cloud-security/stealthy-bifrost-rat-linux-variants-use-typosquatting-to-evade-detection- www.secnews.physaphae.fr/article.php?IdArticle=8460377 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Handing over your business data to artificial intelligence companies comes with inherent risks.]]> 2024-03-07T15:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/dont-give-your-business-data-to-ai-companies www.secnews.physaphae.fr/article.php?IdArticle=8460403 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The nation-state group compromised the website of a Tibetan festival and a software application to target user systems in Asia.]]> 2024-03-07T10:30:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/china-linked-cyber-spies-blend-watering-hole-supply-chain-attacks www.secnews.physaphae.fr/article.php?IdArticle=8460260 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024 will redefine CISO leadership while acknowledging the management gap.]]> 2024-03-07T01:19:04+00:00 https://www.darkreading.com/cybersecurity-operations/ciso-sixth-sense-nist-csf-2-govern-function www.secnews.physaphae.fr/article.php?IdArticle=8460145 False None None 2.0000000000000000 Dark Reading - Informationweek Branch A Japanese ministry blames a shared Active Directory between merged tech companies Line and South Korea\'s Naver for a massive data breach last November.]]> 2024-03-06T23:15:18+00:00 https://www.darkreading.com/cybersecurity-operations/japan-line-breach-clean-up-post-merger-tech-sprawl www.secnews.physaphae.fr/article.php?IdArticle=8460057 False Data Breach None 2.0000000000000000 Dark Reading - Informationweek Branch "Spinning YARN" cyberattackers wielding a Linux webshell are positioning for broader cloud compromise by exploiting common misconfigurations and a known Atlassian Confluence bug.]]> 2024-03-06T22:36:53+00:00 https://www.darkreading.com/cloud-security/cloud-y-linux-malware-rains-apache-docker-redis-confluence www.secnews.physaphae.fr/article.php?IdArticle=8460038 False Malware,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch The private information of more than 28,000 people may have been accessed by unauthorized actors, thanks to a cyber incident at service provider Infosys McCamish - the same third party recently responsible for the Bank of America breach.]]> 2024-03-06T22:19:52+00:00 https://www.darkreading.com/cyberattacks-data-breaches/first-bofa-now-fidelity-same-vendor-third-party-breaches www.secnews.physaphae.fr/article.php?IdArticle=8460039 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-03-06T21:59:52+00:00 https://www.darkreading.com/cloud-security/veeam-launches-veeam-data-cloud www.secnews.physaphae.fr/article.php?IdArticle=8460016 False Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch A pair of critical bugs could open the door to complete system compromise, including access to location information, iPhone camera and mic, and messages. Rootkitted attackers could theoretically perform lateral movement to corporate networks, too.]]> 2024-03-06T19:15:07+00:00 https://www.darkreading.com/ics-ot-security/patch-now-apple-zero-day-exploits-bypass-kernel-security www.secnews.physaphae.fr/article.php?IdArticle=8459979 False Vulnerability,Threat,Mobile None 3.0000000000000000 Dark Reading - Informationweek Branch A Russian-language campaign aims to compromise corporate users on both Windows and Android devices by mimicking popular online collaboration applications.]]> 2024-03-06T18:25:34+00:00 https://www.darkreading.com/cyberattacks-data-breaches/spoofed-zoom-google-skype-meetings-spread-corporate-rats www.secnews.physaphae.fr/article.php?IdArticle=8459959 False Mobile None 2.0000000000000000 Dark Reading - Informationweek Branch The Cloud Security Alliance\'s "Pandemic 11" cloud security challenges can be addressed by putting the right processes in place.]]> 2024-03-06T15:00:00+00:00 https://www.darkreading.com/cyber-risk/10-essential-processes-for-reducing-top-11-cloud-risks www.secnews.physaphae.fr/article.php?IdArticle=8459861 False Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch By examining common social engineering tactics and four of the most devious threat groups, organizations can better defend themselves.]]> 2024-03-06T14:24:33+00:00 https://www.darkreading.com/cyberattacks-data-breaches/the-rise-of-social-engineering-fraud-in-business-email-compromise www.secnews.physaphae.fr/article.php?IdArticle=8459862 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The utility\'s software bill of materials (SBOM) experiment aims to establish stronger supply chain security – and tighter defenses against potential cyberattacks.]]> 2024-03-06T13:30:00+00:00 https://www.darkreading.com/ics-ot-security/southern-company-builds-a-power-substation-sbom www.secnews.physaphae.fr/article.php?IdArticle=8459817 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-03-05T23:54:00+00:00 https://www.darkreading.com/ics-ot-security/network-perception-introduces-rapid-verification-of-zone-to-zone-segmentation www.secnews.physaphae.fr/article.php?IdArticle=8459559 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-03-05T23:49:59+00:00 https://www.darkreading.com/cyberattacks-data-breaches/delinea-debuts-privilege-control-for-servers-thwarting-stolen-credentials-and-lateral-movement www.secnews.physaphae.fr/article.php?IdArticle=8459560 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-03-05T23:44:45+00:00 https://www.darkreading.com/cybersecurity-operations/boston-red-sox-choose-centripetal-as-cyber-network-security-partner www.secnews.physaphae.fr/article.php?IdArticle=8459561 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-03-05T23:41:19+00:00 https://www.darkreading.com/cybersecurity-operations/horizon3-ai-unveils-pentesting-services-for-compliance-ahead-of-pci-dss-v4-0-rollout www.secnews.physaphae.fr/article.php?IdArticle=8459562 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Security for AI is the Next Big Thing! Too bad no one knows what any of that really means.]]> 2024-03-05T23:31:12+00:00 https://www.darkreading.com/application-security/the-challenges-of-ai-security-begin-with-defining-it www.secnews.physaphae.fr/article.php?IdArticle=8459563 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The US Treasury Department sanctioned Intellexa Consortium commercial surveillance leaders in an effort to deter Predator proliferation.]]> 2024-03-05T23:05:35+00:00 https://www.darkreading.com/endpoint-security/global-commercial-spyware-operators-sanctioned-by-us www.secnews.physaphae.fr/article.php?IdArticle=8459538 False Commercial None 3.0000000000000000 Dark Reading - Informationweek Branch The wide availability of generative AI will make synthetic identity fraud even easier. Organizations need a multilayered defense to protect themselves.]]> 2024-03-05T22:30:30+00:00 https://www.darkreading.com/cyber-risk/why-criminals-like-ai-for-synthetic-identity-fraud www.secnews.physaphae.fr/article.php?IdArticle=8459539 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Source code fire sale, stiffing affiliates - are BlackCat admins intentionally burning their RaaS business to the ground? Experts say something\'s up.]]> 2024-03-05T22:20:20+00:00 https://www.darkreading.com/cyberattacks-data-breaches/blackcat-goes-dark-again-reportedly-rips-off-change-healthcare-ransom www.secnews.physaphae.fr/article.php?IdArticle=8459540 False Medical None 3.0000000000000000 Dark Reading - Informationweek Branch The retired US Army lieutenant colonel faces up to 10 years in prison if convicted of sharing secret information about the Russia-Ukraine war with a scammer posing as romantic connection.]]> 2024-03-05T21:55:11+00:00 https://www.darkreading.com/cyber-risk/air-force-employee-shares-classified-info-via-dating-app-charged-with-conspiracy www.secnews.physaphae.fr/article.php?IdArticle=8459520 False Legislation None 3.0000000000000000 Dark Reading - Informationweek Branch North Korea\'s latest espionage tool is tough to pin down, with random generators that throw detection mechanisms off its scent. The DPRK is using the recent critical bugs in ConnectWise ScreenConnect, a remote desktop tool, to deliver the bug.]]> 2024-03-05T19:46:08+00:00 https://www.darkreading.com/remote-workforce/north-korea-screenconnect-bugs-toddleshark-malware www.secnews.physaphae.fr/article.php?IdArticle=8459472 False Malware,Tool None 3.0000000000000000 Dark Reading - Informationweek Branch A newly developed PLC malware does not require physical access to target an ICS environment, is mostly platform neutral, and is more resilient than traditional malware aimed at critical infrastructure.]]> 2024-03-05T19:43:13+00:00 https://www.darkreading.com/ics-ot-security/improved-stuxnet-like-plc-malware-disrupt-critical-infrastructure www.secnews.physaphae.fr/article.php?IdArticle=8459473 False Malware,Industrial None 4.0000000000000000 Dark Reading - Informationweek Branch The rapidly evolving threat group uses high-impact tactics that include manipulating group policy to deploy payloads across environments.]]> 2024-03-05T18:04:52+00:00 https://www.darkreading.com/ics-ot-security/fast-growing-ra-ransomware-group-goes-global www.secnews.physaphae.fr/article.php?IdArticle=8459433 False Ransomware,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch The use of biometrics is increasingly common for authentication, and organizations must make sure their data security solutions protect what may be a new goldmine for hackers.]]> 2024-03-05T15:00:00+00:00 https://www.darkreading.com/cyber-risk/navigating-biometric-data-security-risks-digital-age www.secnews.physaphae.fr/article.php?IdArticle=8459352 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Ransomware cybercrime gangs GhostSec and Stormous have teamed up in widespread double-extortion attacks.]]> 2024-03-05T13:10:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/ghostlocker-two-threatens-businesses-across-middle-east-africa-asia www.secnews.physaphae.fr/article.php?IdArticle=8459326 False Ransomware None 2.0000000000000000 Dark Reading - Informationweek Branch The DPRK is using cyberattacks to steal designs and other data from South Korean microchip manufacturers, according to Seoul\'s National Intelligence Service.]]> 2024-03-04T23:30:09+00:00 https://www.darkreading.com/cyberattacks-data-breaches/seoul-spies-say-north-korea-hackers-stole-semiconductor-secrets www.secnews.physaphae.fr/article.php?IdArticle=8459046 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Customers should immediately patch critical vulnerabilities in on-prem deployments of the CI/CD pipeline tool JetBrains TeamCity that could allow threat actors to gain admin control over servers.]]> 2024-03-04T23:05:43+00:00 https://www.darkreading.com/application-security/critical-teamcity-bugs-endanger-software-supply-chain www.secnews.physaphae.fr/article.php?IdArticle=8459026 False Tool,Vulnerability,Threat None 2.0000000000000000 Dark Reading - Informationweek Branch 35 years after the Morris worm, we\'re still dealing with a version of the same issue: data overlapping with control.]]> 2024-03-04T22:51:02+00:00 https://www.darkreading.com/application-security/zero-click-genai-worm-malware-poisoning-models www.secnews.physaphae.fr/article.php?IdArticle=8459027 False Malware None 2.0000000000000000 Dark Reading - Informationweek Branch The breach occurred through a third-party service provider frequently used by the company\'s travel services division.]]> 2024-03-04T22:18:34+00:00 https://www.darkreading.com/cyberattacks-data-breaches/amex-customer-data-exposed-third-party-breach www.secnews.physaphae.fr/article.php?IdArticle=8459028 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Mercenary spyware operator has rebuilt its network infrastructure and now operates in 11 countries, with one of the newest additions, Botswana.]]> 2024-03-04T19:24:44+00:00 https://www.darkreading.com/remote-workforce/predator-mobile-spyware-alive-and-well-and-expanding www.secnews.physaphae.fr/article.php?IdArticle=8458970 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Yet challenges remain as many nation\'s policies for the email authentication protocol remain lax and could run afoul of Google\'s and Yahoo\'s restrictions.]]> 2024-03-04T19:22:10+00:00 https://www.darkreading.com/cyber-risk/middle-east-leads-in-dmarc-deployment www.secnews.physaphae.fr/article.php?IdArticle=8458971 False None Yahoo 2.0000000000000000 Dark Reading - Informationweek Branch Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.]]> 2024-03-04T16:06:23+00:00 https://www.darkreading.com/ics-ot-security/name-that-edge-toon-how-charming www.secnews.physaphae.fr/article.php?IdArticle=8458888 False None None 1.00000000000000000000 Dark Reading - Informationweek Branch By helping CISOs navigate the expectations being placed on their shoulders, CEOs can greatly benefit their companies.]]> 2024-03-04T15:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/what-cybersecurity-chiefs-need-from-their-ceos www.secnews.physaphae.fr/article.php?IdArticle=8458866 False None None 2.0000000000000000 Dark Reading - Informationweek Branch GitHub and cyberattackers are waging a quiet, automated war over malicious repos.]]> 2024-03-04T13:00:00+00:00 https://www.darkreading.com/application-security/millions-of-malicious-repositories-flood-github www.secnews.physaphae.fr/article.php?IdArticle=8458844 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Dark Reading\'s roundup of strategic cyber-operations insights for chief information security officers and security leaders. Also this week: SEC enforcement actions, biometrics regulation, and painful encryption changes in the pike.]]> 2024-03-01T22:22:49+00:00 https://www.darkreading.com/ics-ot-security/ciso-corner-operationalizing-nist-csf-ai-models-run-amok www.secnews.physaphae.fr/article.php?IdArticle=8457720 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Lack of AI model visibility and AI model insecurity puts the software supply chain security problem on steroids.]]> 2024-03-01T21:04:39+00:00 https://www.darkreading.com/cyber-risk/do-you-know-where-your-ai-models-are-tonight www.secnews.physaphae.fr/article.php?IdArticle=8457680 False None None 3.0000000000000000 Dark Reading - Informationweek Branch Stolen data from Chunghwa Telecom - including government-related details - are up for sale on the Dark Web, the Taiwanese defense ministry confirms.]]> 2024-03-01T20:21:40+00:00 https://www.darkreading.com/cyberattacks-data-breaches/taiwan-telco-breached-data-sold-on-dark-web www.secnews.physaphae.fr/article.php?IdArticle=8457681 False Hack None 4.0000000000000000 Dark Reading - Informationweek Branch A sophisticated threat actor using an MO similar to Scattered Spider is camouflaging itself with convincing impersonation techniques in targeted attacks.]]> 2024-03-01T18:27:49+00:00 https://www.darkreading.com/application-security/cryptochameleon-attackers-target-apple-okta-users-tech-support-gambit www.secnews.physaphae.fr/article.php?IdArticle=8457638 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch A growing thicket of privacy laws regulating biometrics is aimed at protecting consumers amid increasing cloud breaches and AI-created deepfakes. But for businesses that handle biometric data, staying compliant is easier said than done.]]> 2024-03-01T18:09:55+00:00 https://www.darkreading.com/application-security/biometrics-regulation-portending-compliance-headaches www.secnews.physaphae.fr/article.php?IdArticle=8457639 False Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch The National Institute of Standards and Technology (NIST) has revised the book on creating a comprehensive cybersecurity program that aims to help organizations of every size be more secure. Here\'s where to start putting the changes into action.]]> 2024-03-01T16:38:51+00:00 https://www.darkreading.com/ics-ot-security/nist-cybersecurity-framework-2-0-4-steps-get-started www.secnews.physaphae.fr/article.php?IdArticle=8457659 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The better a security team works together, the bigger the direct impact on how well it can protect the organization.]]> 2024-03-01T15:00:32+00:00 https://www.darkreading.com/cybersecurity-operations/tips-managing-diverse-security-teams www.secnews.physaphae.fr/article.php?IdArticle=8457551 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Convincing phishing emails, synthetic identities, and deepfakes all have been spotted in cyberattacks on the continent.]]> 2024-03-01T06:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/ai-powered-threats-cyberattacks-on-infrastructure-pummel-africa www.secnews.physaphae.fr/article.php?IdArticle=8457355 False None None 2.0000000000000000 Dark Reading - Informationweek Branch North Korean state actors Lazarus Group used a Windows AppLocker zero day, along with a new and improved rootkit, in a recent cyberattack, researchers report.]]> 2024-03-01T00:17:13+00:00 https://www.darkreading.com/vulnerabilities-threats/microsoft-zero-day-used-by-lazarus-in-rootkit-attack www.secnews.physaphae.fr/article.php?IdArticle=8457255 False Threat APT 38 3.0000000000000000 Dark Reading - Informationweek Branch Threat actors using the malware have infected systems within government, healthcare, and other critical infrastructure organizations since at least 2019.]]> 2024-02-29T22:49:41+00:00 https://www.darkreading.com/cyberattacks-data-breaches/fbi-cisa-release-iocs-for-phobos-ransomware www.secnews.physaphae.fr/article.php?IdArticle=8457209 False Ransomware,Malware,Threat None 3.0000000000000000 Dark Reading - Informationweek Branch More bad news for Ivanti customers: soon, even if you\'ve patched, you still might not be safe from relentless attacks from high-level Chinese threat actors.]]> 2024-02-29T22:36:31+00:00 https://www.darkreading.com/endpoint-security/chinese-apt-exploits-defeat-patched-ivanti-users www.secnews.physaphae.fr/article.php?IdArticle=8457210 False Threat None 3.0000000000000000 Dark Reading - Informationweek Branch The presidential move orders a variety of different departments and organizations to regulate personal data better and provide clear, high standards to prevent foreign access.]]> 2024-02-29T22:07:39+00:00 https://www.darkreading.com/cyber-risk/biden-administration-unveils-data-privacy-executive-order www.secnews.physaphae.fr/article.php?IdArticle=8457211 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-02-29T21:43:14+00:00 https://www.darkreading.com/cyberattacks-data-breaches/troutman-pepper-forms-incidents-and-investigations-team www.secnews.physaphae.fr/article.php?IdArticle=8457184 False None None 1.00000000000000000000 Dark Reading - Informationweek Branch 2024-02-29T21:36:40+00:00 https://www.darkreading.com/ics-ot-security/tenable-introduces-visibility-across-it-ot-and-iot-domains www.secnews.physaphae.fr/article.php?IdArticle=8457185 False Industrial None 4.0000000000000000 Dark Reading - Informationweek Branch 2024-02-29T21:19:10+00:00 https://www.darkreading.com/vulnerabilities-threats/cybersecurity-startup-morphisec-appoints-ron-reinfeld-as-ceo www.secnews.physaphae.fr/article.php?IdArticle=8457186 False None None 1.00000000000000000000 Dark Reading - Informationweek Branch 2024-02-29T20:56:02+00:00 https://www.darkreading.com/cybersecurity-operations/entro-extends-machine-secrets-and-identities-protection-with-machine-identity-lifecycle-management www.secnews.physaphae.fr/article.php?IdArticle=8457160 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Applications are increasingly distributed, expanding companies\' cloud attack surfaces, and requiring regular testing to find and fix vulnerabilities - else companies risk a growing sprawl of services.]]> 2024-02-29T20:48:36+00:00 https://www.darkreading.com/application-security/pentesting-as-a-service-cloud-applications www.secnews.physaphae.fr/article.php?IdArticle=8457256 False Vulnerability,Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch Goal is to give chip designers and security practitioners in the semiconductor space a better understanding of major microprocessor flaws like Meltdown and Spectre.]]> 2024-02-29T19:17:54+00:00 https://www.darkreading.com/endpoint-security/four-new-cwes-released-for-microprocessor-architectures www.secnews.physaphae.fr/article.php?IdArticle=8457137 False Technical None 4.0000000000000000 Dark Reading - Informationweek Branch The finding underscores the growing risk of weaponizing publicly available AI models and the need for better security to combat the looming threat.]]> 2024-02-29T15:58:35+00:00 https://www.darkreading.com/application-security/hugging-face-ai-platform-100-malicious-code-execution-models www.secnews.physaphae.fr/article.php?IdArticle=8457064 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Measuring and tracking your mean time to remediate shows whether vulnerability management is reducing risk and closing opportunities for adversaries.]]> 2024-02-29T15:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/mttr-most-important-security-metric www.secnews.physaphae.fr/article.php?IdArticle=8457001 False Vulnerability None 3.0000000000000000 Dark Reading - Informationweek Branch Experts advise organizations in the region to refuse to pay ransom demands.]]> 2024-02-29T14:24:35+00:00 https://www.darkreading.com/cyberattacks-data-breaches/ransomware-as-a-service-spawns-widespread-cyberattacks-in-mea www.secnews.physaphae.fr/article.php?IdArticle=8457002 False None None 2.0000000000000000 Dark Reading - Informationweek Branch User-friendly apps allow anybody to serve as traffickers for cybercrime syndicates.]]> 2024-02-29T13:30:00+00:00 https://www.darkreading.com/threat-intelligence/xhelper-all-in-one-android-app-global-money-laundering www.secnews.physaphae.fr/article.php?IdArticle=8456672 False Mobile None 3.0000000000000000 Dark Reading - Informationweek Branch A successor to the "Golden SAML" tactic used in the SolarWinds campaign, this new technique taps SAML response forgery to gain illegitimate access to apps and services.]]> 2024-02-29T11:00:00+00:00 https://www.darkreading.com/cyber-risk/researchers-release-details-on-new-silver-saml-attack-technique www.secnews.physaphae.fr/article.php?IdArticle=8456900 False None Solardwinds 3.0000000000000000 Dark Reading - Informationweek Branch The White House Office of the National Cyber Director puts software developers on notice, calling for a move to memory-safe programming languages and the development of security metrics.]]> 2024-02-28T23:03:41+00:00 https://www.darkreading.com/application-security/us-government-taking-bigger-role-in-software-security www.secnews.physaphae.fr/article.php?IdArticle=8456651 False None None 2.0000000000000000 Dark Reading - Informationweek Branch The China-backed APT that\'s been trying to set itself up inside US critical infrastructure for the purpose of disrupting physical processes is deploying a similar playbook in Africa.]]> 2024-02-28T21:45:24+00:00 https://www.darkreading.com/vulnerabilities-threats/voltzite-zaps-african-utilities-volt-typhoon-onslaught www.secnews.physaphae.fr/article.php?IdArticle=8456652 False None Guam 4.0000000000000000 Dark Reading - Informationweek Branch A targeted attack aiming to exploit geopolitical relations between India and Europe delivers previously undocumented, uniquely evasive backdoor malware.]]> 2024-02-28T18:07:30+00:00 https://www.darkreading.com/cyberattacks-data-breaches/cyberattackers-lure-eu-diplomats-wine-tasting-offers www.secnews.physaphae.fr/article.php?IdArticle=8456566 False Malware,Threat None 4.0000000000000000 Dark Reading - Informationweek Branch It\'s time for companies to look at what they\'re processing, what types of risk they have, and how they plan to mitigate that risk.]]> 2024-02-28T15:00:00+00:00 https://www.darkreading.com/cyber-risk/converging-state-privacy-laws-emerging-ai-challenge www.secnews.physaphae.fr/article.php?IdArticle=8456469 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Petty scammers have figured out how to leverage a core function of DNS in order to maintain scalable, stealthy, pliable malicious infrastructure.]]> 2024-02-28T14:00:00+00:00 https://www.darkreading.com/vulnerabilities-threats/savvy-seahorse-hackers-debut-novel-dns-cname-trick www.secnews.physaphae.fr/article.php?IdArticle=8456446 False None None 3.0000000000000000 Dark Reading - Informationweek Branch UNC1549, aka Smoke Sandstorm and Tortoiseshell, appears to be the culprit behind a cyberattack campaign customized for each targeted organization.]]> 2024-02-28T02:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/illusive-iranian-hacking-group-ensnares-israeli-uae-aerospace-and-defense-firms www.secnews.physaphae.fr/article.php?IdArticle=8456170 False None None 2.0000000000000000 Dark Reading - Informationweek Branch 2024-02-27T22:55:46+00:00 https://www.darkreading.com/endpoint-security/kaspersky-finds-attacks-on-mobile-devices-significantly-increased-in-2023 www.secnews.physaphae.fr/article.php?IdArticle=8456103 False Mobile None 3.0000000000000000 Dark Reading - Informationweek Branch In the notice letter sent out to affected individuals, U-Haul notes that credit card information was not accessed in the breach.]]> 2024-02-27T22:04:42+00:00 https://www.darkreading.com/cyberattacks-data-breaches/67k-customers-impacted-by-data-breach-according-to-u-haul www.secnews.physaphae.fr/article.php?IdArticle=8456104 False Data Breach None 2.0000000000000000 Dark Reading - Informationweek Branch CISA and its counterparts in the UK and other countries this week offered new guidance on how to deal with the threat actor\'s recent shift to cloud attacks.]]> 2024-02-27T21:49:18+00:00 https://www.darkreading.com/cloud-security/russia-s-midnight-blizzard-targeting-service-accounts-for-initial-cloud-access www.secnews.physaphae.fr/article.php?IdArticle=8456078 False Threat,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch Apple\'s PQ3 for securing iMessage and Signal\'s PQXH show how organizations are preparing for a future in which encryption protocols must be exponentially harder to crack.]]> 2024-02-27T21:20:56+00:00 https://www.darkreading.com/cyber-risk/as-quantum-resistant-encryption-emerges-so-do-worries-about-adoption-challenges www.secnews.physaphae.fr/article.php?IdArticle=8456079 False None None 2.0000000000000000 Dark Reading - Informationweek Branch A new infostealer spreading to organizations across Mexico heralds 2024\'s fresh season of tax-themed phishing attacks.]]> 2024-02-27T20:08:05+00:00 https://www.darkreading.com/ics-ot-security/mexico-timbre-stealer-campaign-heralds-2024-tax-season-threat www.secnews.physaphae.fr/article.php?IdArticle=8456056 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Developer-driven security programs place the development team at the center of reducing vulnerabilities.]]> 2024-02-27T18:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/4-ways-organizations-drive-demand-for-software-security-training www.secnews.physaphae.fr/article.php?IdArticle=8455990 False Vulnerability None 2.0000000000000000 Dark Reading - Informationweek Branch Trusted brands like The Economist are also among the 8,000 entities compromised by Operation SubdoMailing, which is at the heart of a larger operation of a single threat actor.]]> 2024-02-27T17:04:55+00:00 https://www.darkreading.com/application-security/ebay-vmware-mcafee-sites-hijacked-sprawling-phishing-operation www.secnews.physaphae.fr/article.php?IdArticle=8455991 False Threat None 2.0000000000000000 Dark Reading - Informationweek Branch Litigation and regulatory enforcement are increasing risks for companies and cybersecurity leaders. Something must be done to protect the profession.]]> 2024-02-27T15:00:00+00:00 https://www.darkreading.com/cyber-risk/what-companies-cisos-should-know-about-rising-legal-threats www.secnews.physaphae.fr/article.php?IdArticle=8455909 False None None 2.0000000000000000 Dark Reading - Informationweek Branch Government will provide additional cybersecurity training and recruit additional cybersecurity talent in an effort to better secure its industrial sector from attacks.]]> 2024-02-27T01:00:00+00:00 https://www.darkreading.com/cybersecurity-operations/china-rolls-out-strategy-to-prevent-hacking-from-foreign-entities www.secnews.physaphae.fr/article.php?IdArticle=8455634 False Industrial None 3.0000000000000000 Dark Reading - Informationweek Branch The Office of the National Cyber Director technical report focuses on reducing memory-safety vulnerabilities in applications and making it harder for malicious actors to exploit them.]]> 2024-02-27T00:12:58+00:00 https://www.darkreading.com/application-security/white-house-switch-memory-safe-languages www.secnews.physaphae.fr/article.php?IdArticle=8455963 False Vulnerability,Threat,Technical None 2.0000000000000000 Dark Reading - Informationweek Branch Is LockBit dead? Law enforcement and the group itself seem to be telling conflicting stories.]]> 2024-02-26T22:38:57+00:00 https://www.darkreading.com/threat-intelligence/lockbit-leak-site-reemerges-week-after-complete-compromise- www.secnews.physaphae.fr/article.php?IdArticle=8455593 False None None 3.0000000000000000 Dark Reading - Informationweek Branch 2024-02-26T22:20:45+00:00 https://www.darkreading.com/ics-ot-security/fortress-information-security-deploys-automated-patch-notification-and-authenticity-tool www.secnews.physaphae.fr/article.php?IdArticle=8455594 False Tool None 2.0000000000000000