This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-04T00:03:03+00:00 www.secnews.physaphae.fr SecurityWeek - Security News Le CVE-2023-35078 du CVE-2023-35078, CVE-2023-35078, récemment corrigé, est exploité pour pirater le gouvernement norvégien depuis au moins avril 2023.

---

>The recently patched Ivanti EPMM zero-day CVE-2023-35078 has been exploited to hack the Norwegian government since at least April 2023. ]]> 2023-08-02T05:45:27+00:00 https://www.securityweek.com/ivanti-zero-day-exploited-by-apt-since-at-least-april-in-norwegian-government-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8364628 False Hack None 2.0000000000000000 SecurityWeek - Security News Une nouvelle attaque du canal latéral de puissance nommé Collide + Power peut permettre à un attaquant d'obtenir des informations sensibles et cela fonctionne contre presque tous les processeurs modernes

---

>A new power side-channel attack named Collide+Power can allow an attacker to obtain sensitive information and it works against nearly any modern CPU. ]]> 2023-08-01T17:00:00+00:00 https://www.securityweek.com/nearly-all-modern-cpus-leak-data-to-new-collidepower-side-channel-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8364377 False None None 4.0000000000000000 SecurityWeek - Security News SecurityWeek parle à Youssef Sammouda de l'utilisation de la recherche en cybersécurité et des primes de bug comme mode de vie et source de revenus.

---

>SecurityWeek speaks to Youssef Sammouda about using cybersecurity research and bug bounties as a way of life and source of income. ]]> 2023-08-01T12:00:00+00:00 https://www.securityweek.com/hacker-conversations-youssef-sammouda-bug-bounty-hunter/ www.secnews.physaphae.fr/article.php?IdArticle=8364271 False None None 2.0000000000000000 SecurityWeek - Security News China has implanted malware in key US power and communications networks in a "ticking time bomb" that could disrupt the military in event of a conflict ]]> 2023-08-01T08:31:00+00:00 https://www.securityweek.com/possible-chinese-malware-in-us-systems-a-ticking-time-bomb-report/ www.secnews.physaphae.fr/article.php?IdArticle=8364202 False Malware None 2.0000000000000000 SecurityWeek - Security News L'administration Biden a annoncé lundi une série d '«investissements générationnels» pour répondre aux besoins immédiats et à long terme de la cyber-travail.

---

>The Biden administration on Monday announced a series of “generational investments” to address immediate and long-term cyber workforce needs.  ]]> 2023-07-31T22:52:43+00:00 https://www.securityweek.com/us-gov-rolls-out-national-cyber-workforce-education-strategy/ www.secnews.physaphae.fr/article.php?IdArticle=8364068 False None None 2.0000000000000000 SecurityWeek - Security News CISA a partagé des rapports d'analyse sur trois familles de logiciels malveillants obtenues d'une organisation piratée via une récente vulnérabilité de Barracuda ESG.

---

>CISA has shared analysis reports on three malware families obtained from an organization hacked via a recent Barracuda ESG vulnerability. ]]> 2023-07-31T08:52:26+00:00 https://www.securityweek.com/cisa-analyzes-malware-used-in-barracuda-esg-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8363815 False Malware None 2.0000000000000000 SecurityWeek - Security News Roundup hebdomadaire des nouvelles de la cybersécurité qui fournit un résumé des histoires remarquables qui auraient pu glisser sous le radar pour la semaine du 24 juillet 2023.

---

>Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 24, 2023. ]]> 2023-07-28T14:38:20+00:00 https://www.securityweek.com/in-other-news-data-breach-cost-rises-russia-targets-diplomats-tracker-alerts-in-android/ www.secnews.physaphae.fr/article.php?IdArticle=8362819 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Several industry professionals comment on the SEC\'s new cybersecurity incident disclosure rules and their implications. ]]> 2023-07-28T13:00:25+00:00 https://www.securityweek.com/industry-reactions-to-new-sec-cyber-incident-disclosure-rules-feedback-friday/ www.secnews.physaphae.fr/article.php?IdArticle=8362778 False None None 2.0000000000000000 SecurityWeek - Security News Redmond est accusé de «pratiques de cybersécurité par négligence» qui ont permis un hack chinois réussi du gouvernement américain.

---

>Redmond is accused of “negligent cybersecurity practices” that enabled a successful Chinese hack of the United States government. ]]> 2023-07-27T19:17:51+00:00 https://www.securityweek.com/us-senator-wyden-accuses-microsoft-of-cybersecurity-negligence/ www.secnews.physaphae.fr/article.php?IdArticle=8362402 False Hack None 3.0000000000000000 SecurityWeek - Security News Une vulnérabilité du contrôleur de porte du réseau d'axe peut être exploitée aux installations cibles, en les exposant à la fois aux physiques et aux cyber-menaces.

---

>An Axis network door controller vulnerability can be exploited to target facilities, exposing them to both physical and cyber threats. ]]> 2023-07-27T12:18:17+00:00 https://www.securityweek.com/axis-door-controller-vulnerability-exposes-facilities-to-physical-cyber-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8362222 False Vulnerability,Industrial None 3.0000000000000000 SecurityWeek - Security News Maximus Inc says that the personal information of 8 to 11 million individuals was stolen in the MOVEit cyberattack. ]]> 2023-07-27T09:42:41+00:00 https://www.securityweek.com/up-to-11-million-people-hit-by-moveit-hack-at-government-services-firm-maximus/ www.secnews.physaphae.fr/article.php?IdArticle=8362200 False Hack None 2.0000000000000000 SecurityWeek - Security News Les chercheurs disent que 62% des environnements AWS peuvent être exposés à la nouvelle fuite AMD \\ 'Zenbleed \' Flaw.

---

>Researchers say a whopping 62 percent of AWS environments may be exposed to the newly documented AMD \'Zenbleed\' information leak flaw. ]]> 2023-07-26T23:57:48+00:00 https://www.securityweek.com/wiz-says-62-of-aws-environments-exposed-to-zenbleed-exploitation/ www.secnews.physaphae.fr/article.php?IdArticle=8361967 False None None 3.0000000000000000 SecurityWeek - Security News The Biden administration has nominated former Navy commander Harry Coker to replace the retired Chris Inglis. ]]> 2023-07-26T15:58:52+00:00 https://www.securityweek.com/ex-nsa-official-harry-coker-tapped-for-national-cyber-director-job/ www.secnews.physaphae.fr/article.php?IdArticle=8361833 False None None 1.00000000000000000000 SecurityWeek - Security News Fortinet a publié des détails sur une série de vulnérabilités critiques et de haute sévérité dans le service de file d'attente de messages Microsoft.

---

>Fortinet has published details on a series of critical- and high-severity vulnerabilities in the Microsoft Message Queuing service. ]]> 2023-07-26T14:21:03+00:00 https://www.securityweek.com/microsoft-message-queuing-vulnerabilities-allow-remote-code-execution-dos-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8361747 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Les opérateurs de ransomwares Akira prétendent avoir compromis 63 organisations depuis mars 2023, principalement des PME.

---

>The Akira ransomware operators claim to have compromised 63 organizations since March 2023, mostly SMBs. ]]> 2023-07-26T13:08:22+00:00 https://www.securityweek.com/dozens-of-organizations-targeted-by-akira-ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8361748 False Ransomware None 2.0000000000000000 SecurityWeek - Security News La LNH Stenden University of Applied Sciences aux Pays-Bas a lancé MCAD, la base de données maritime de cyber-attaque. .

---

>The NHL Stenden University of Applied Sciences in the Netherlands has launched MCAD, the Maritime Cyber Attack Database. ]]> 2023-07-25T15:59:29+00:00 https://www.securityweek.com/maritime-cyberattack-database-launched-by-dutch-university/ www.secnews.physaphae.fr/article.php?IdArticle=8361313 False None None 3.0000000000000000 SecurityWeek - Security News Une vulnérabilité ivanti EPMM Zero-day suivie comme CVE-2023-35078 a été exploitée dans une attaque destinée au gouvernement norvégien.

---

>An Ivanti EPMM product zero-day vulnerability tracked as CVE-2023-35078 has been exploited in an attack aimed at the Norwegian government. ]]> 2023-07-25T08:31:17+00:00 https://www.securityweek.com/ivanti-zero-day-vulnerability-exploited-in-attack-on-norwegian-government/ www.secnews.physaphae.fr/article.php?IdArticle=8361139 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Les experts pensent que le gang de ransomware CL0P pourrait gagner jusqu'à 100 millions de dollars du hack Moveit, avec le nombre de victimes confirmées approchant 400.

---

>Experts believe the Cl0p ransomware gang could earn as much as $100 million from the MOVEit hack, with the number of confirmed victims approaching 400. ]]> 2023-07-24T13:12:48+00:00 https://www.securityweek.com/moveit-hack-could-earn-cybercriminals-100m-as-number-of-confirmed-victims-grows/ www.secnews.physaphae.fr/article.php?IdArticle=8360776 False Ransomware,Hack None 2.0000000000000000 SecurityWeek - Security News Le chercheur à la sécurité du cloud avertit que la clé de signature de Microsoft volée était plus puissante et non limitée à Outlook.com et échange en ligne.

---

>Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online. ]]> 2023-07-21T16:39:28+00:00 https://www.securityweek.com/microsoft-cloud-hack-exposed-more-than-exchange-outlook-emails/ www.secnews.physaphae.fr/article.php?IdArticle=8359802 False Hack,Cloud None 3.0000000000000000 SecurityWeek - Security News Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 17, 2023.

---

>Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 17, 2023. ]]> 2023-07-21T14:50:53+00:00 https://www.securityweek.com/in-other-news-military-emails-leaked-google-restricts-internet-access-chinese-spyware/ www.secnews.physaphae.fr/article.php?IdArticle=8359746 False None None 2.0000000000000000 SecurityWeek - Security News Virustotal a apporté des clarifications sur la récente fuite de données qui a entraîné l'exposition d'informations sur 5 600 des clients du Service d'analyse des menaces.

---

>VirusTotal has provided clarifications on the recent data leak that resulted in the exposure of information on 5,600 of the threat analysis service\'s customers. ]]> 2023-07-21T11:45:21+00:00 https://www.securityweek.com/virustotal-provides-clarifications-on-data-leak-affecting-premium-accounts/ www.secnews.physaphae.fr/article.php?IdArticle=8359716 False Threat None 2.0000000000000000 SecurityWeek - Security News L'hôpital général de Tampa a commencé à informer les patients que leurs informations personnelles ont été volées dans une attaque de ransomware.

---

>Tampa General Hospital has started informing patients that their personal information was stolen in a ransomware attack. ]]> 2023-07-21T10:30:07+00:00 https://www.securityweek.com/tampa-general-hospital-says-patient-information-stolen-in-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8359698 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Est & eacute; e Lauder a confirmé avoir subi une violation de données, tout comme deux groupes de ransomwares prétendaient avoir ciblé l'entreprise, tous deux voler de grandes quantités d'informations.

---

>Estée Lauder has confirmed suffering a data breach just as two ransomware groups claimed to have targeted the company, both allegedly stealing vast amounts of information. ]]> 2023-07-20T14:11:43+00:00 https://www.securityweek.com/cosmetics-giant-estee-lauder-targeted-by-two-ransomware-groups/ www.secnews.physaphae.fr/article.php?IdArticle=8359369 False Ransomware,Data Breach None 2.0000000000000000 SecurityWeek - Security News Les deux sociétés étrangères sont sanctionnées pour «pour la traite des cyber exploits utilisés pour accéder aux systèmes d'information».

---

>The two foreign companies are being sanctioned for “for trafficking in cyber exploits used to gain access to information systems.”  ]]> 2023-07-18T21:47:23+00:00 https://www.securityweek.com/us-gov-mercenary-spyware-clampdown-hits-cytrox-intellexa/ www.secnews.physaphae.fr/article.php?IdArticle=8358487 False None None 2.0000000000000000 SecurityWeek - Security News A threat actor\'s real identity was uncovered after they infected their own computer with an information stealer. ]]> 2023-07-18T13:51:53+00:00 https://www.securityweek.com/black-hat-hacker-exposes-real-identity-after-infecting-own-computer-with-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8358302 False Malware,Threat None 1.00000000000000000000 SecurityWeek - Security News New US cyber program will label smart devices that are considered safer and less vulnerable to attacks. ]]> 2023-07-18T11:47:15+00:00 https://www.securityweek.com/white-house-unveils-cybersecurity-labeling-program-for-smart-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8358212 False None None 3.0000000000000000 SecurityWeek - Security News Daniel Kelley n'avait que 18 ans lorsqu'il a été arrêté et inculpé de trente chefs & # 8211;Le plus tristement célèbre pour le hack de la société de télécommunications britannique 2015, Talktalk.En 2019, il a été condamné et condamné à quatre ans de prison.

---

>Daniel Kelley was just 18 years old when he was arrested and charged on thirty counts – most infamously for the 2015 hack of UK telecoms firm TalkTalk. In 2019 he was convicted and sentenced to four years in prison.  ]]> 2023-07-18T11:00:00+00:00 https://www.securityweek.com/hacker-conversations-inside-the-mind-of-daniel-kelley-ex-blackhat/ www.secnews.physaphae.fr/article.php?IdArticle=8358213 False Hack None 3.0000000000000000 SecurityWeek - Security News Le nombre d'entités touchées par le hack Moveit - directement ou indirectement - dépasserait 340 organisations et 18 millions de personnes.

---

>The number of entities impacted by the MOVEit hack - either directly or indirectly - reportedly exceeds 340 organizations and 18 million individuals. ]]> 2023-07-17T11:48:57+00:00 https://www.securityweek.com/moveit-hack-number-of-impacted-organizations-exceeds-340/ www.secnews.physaphae.fr/article.php?IdArticle=8357722 False Hack None 3.0000000000000000 SecurityWeek - Security News Microsoft affirme qu'un groupe de cyberespionnage chinois a suivi la Storm-0558 a utilisé des jetons d'authentification forgés pour accéder aux e-mails du gouvernement.

---

>Microsoft says a Chinese cyberespionage group tracked as Storm-0558 has used forged authentication tokens to access government emails. ]]> 2023-07-12T13:27:16+00:00 https://www.securityweek.com/chinese-cyberspies-used-forged-authentication-tokens-to-hack-government-emails/ www.secnews.physaphae.fr/article.php?IdArticle=8355301 False Hack None 2.0000000000000000 SecurityWeek - Security News Le besoin de cyber-résilience découle de la prise de conscience croissante que les mesures de sécurité traditionnelles ne suffisent plus pour protéger les systèmes, les données et le réseau contre les compromis.

---

>The need for cyber resilience arises from the growing realization that traditional security measures are no longer enough to protect systems, data, and the network from compromise. ]]> 2023-07-12T11:06:06+00:00 https://www.securityweek.com/moveit-testing-the-limits-of-supply-chain-security/ www.secnews.physaphae.fr/article.php?IdArticle=8355230 False None None 3.0000000000000000 SecurityWeek - Security News L'ancien ingénieur de la sécurité Shakeb Ahmed a été arrêté pour des accusations liées à la fraude de la finance décentralisée de Crypto Exchange Crema.

---

>Former security engineer Shakeeb Ahmed has been arrested on charges related to the defrauding of decentralized crypto exchange Crema Finance. ]]> 2023-07-11T18:47:39+00:00 https://www.securityweek.com/former-security-engineer-arrested-for-9-million-crypto-exchange-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8354612 False Hack None 2.0000000000000000 SecurityWeek - Security News HCA Healthcare says the personal information of roughly 11 million patients was stolen in a data breach. ]]> 2023-07-11T11:56:07+00:00 https://www.securityweek.com/personal-information-of-11-million-patients-stolen-in-data-breach-at-hca-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8354405 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Une cyber-opération récente a ciblé les invités du sommet de l'OTAN et d'autres entités soutenant l'Ukraine.

---

>A recent RomCom cyber operation has been targeting NATO Summit guests and other entities supporting Ukraine. ]]> 2023-07-11T11:10:51+00:00 https://www.securityweek.com/russia-linked-romcom-hackers-targeting-nato-summit-guests/ www.secnews.physaphae.fr/article.php?IdArticle=8354406 False None None 2.0000000000000000 SecurityWeek - Security News En supposant que l'OTAN peut jouer un plus grand rôle dans la cybersécurité de ses membres, peut-être par le biais d'un cyber commandement plus formel, la question devient alors \\ 'que devons-nous espérer? \'

---

>Assuming NATO can play a greater part in the cybersecurity of its members, possibly through a more formal NATO Cyber Command, the question then becomes \'what should we hope for?\' ]]> 2023-07-10T13:13:13+00:00 https://www.securityweek.com/a-cybersecurity-wish-list-ahead-of-nato-summit/ www.secnews.physaphae.fr/article.php?IdArticle=8354011 False General Information None 2.0000000000000000 SecurityWeek - Security News Roundup hebdomadaire des nouvelles de la cybersécurité qui fournit un résumé des histoires remarquables qui auraient pu glisser sous le radar pour la semaine du 3 juillet 2023.

---

>Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of July 3, 2023. ]]> 2023-07-07T15:05:38+00:00 https://www.securityweek.com/in-other-news-healthcare-product-flaws-free-email-security-testing-new-attack-techniques/ www.secnews.physaphae.fr/article.php?IdArticle=8353398 False None None 2.0000000000000000 SecurityWeek - Security News En mai 2023, le groupe de cyberespionnage lié à l'Iran Charming Kitten a ciblé un groupe de réflexion basé aux États-Unis avec un nouveau malware macOS.

---

>In May 2023, Iran-linked cyberespionage group Charming Kitten targeted a US-based think tank with new macOS malware. ]]> 2023-07-07T13:42:29+00:00 https://www.securityweek.com/iranian-cyberspies-target-us-based-think-tank-with-new-macos-malware/ www.secnews.physaphae.fr/article.php?IdArticle=8353399 False Malware APT 35,APT 35 2.0000000000000000 SecurityWeek - Security News Les pirates liés aux logiciels malveillants TrueBot exploitent un défaut d'auditeur Netwrix vieux de an pour s'introduire dans des organisations aux États-Unis et au Canada.

---

>Hackers linked to the Truebot malware are exploiting a year-old Netwrix Auditor flaw to break into organizations in the U.S. and Canada. ]]> 2023-07-06T18:41:53+00:00 https://www.securityweek.com/cisa-fbi-warning-truebot-hackers-exploiting-netwrix-auditor-flaw/ www.secnews.physaphae.fr/article.php?IdArticle=8353123 False Malware None 2.0000000000000000 SecurityWeek - Security News Les mises à jour de sécurité de Google \\ en juillet 2023 pour les patchs Android 43 vulnérabilités, dont trois exploités dans la nature.

---

>Google\'s July 2023 security updates for Android patches 43 vulnerabilities, including three exploited in the wild. ]]> 2023-07-06T13:34:04+00:00 https://www.securityweek.com/android-security-updates-patches-3-exploited-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8352924 False None None 2.0000000000000000 SecurityWeek - Security News Les informations personnelles, financières et de santé de plus de 28 000 personnes volées en violation de données à Pepsi Bottling Ventures.

---

>The personal, financial, and health information of over 28,000 individuals stolen in data breach at Pepsi Bottling Ventures. ]]> 2023-07-06T12:09:12+00:00 https://www.securityweek.com/28000-impacted-by-data-breach-at-pepsi-bottling-ventures/ www.secnews.physaphae.fr/article.php?IdArticle=8352886 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Shell confirme que les informations personnelles des employés ont été volées après que le groupe de ransomwares CL0P a divulgué des données aurait volée au géant de l'énergie.

---

>Shell confirms that employee personal information has been stolen after the Cl0p ransomware group leaked data allegedly stolen from the energy giant. ]]> 2023-07-06T11:52:30+00:00 https://www.securityweek.com/shell-confirms-moveit-related-breach-after-ransomware-group-leaks-data/ www.secnews.physaphae.fr/article.php?IdArticle=8352887 False Ransomware None 4.0000000000000000 SecurityWeek - Security News Japan\'s Port of Nagoya this week suspended cargo loading and unloading operations following a ransomware attack. ]]> 2023-07-05T13:16:01+00:00 https://www.securityweek.com/japans-nagoya-port-suspends-cargo-operations-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8352476 False Ransomware None 2.0000000000000000 SecurityWeek - Security News CISA adds 6 Samsung mobile device flaws to its known exploited vulnerabilities catalog and they have likely been exploited by a spyware vendor. ]]> 2023-06-30T12:42:51+00:00 https://www.securityweek.com/samsung-phone-flaws-added-to-cisa-must-patch-list-likely-exploited-by-spyware-vendor/ www.secnews.physaphae.fr/article.php?IdArticle=8351019 False None None 2.0000000000000000 SecurityWeek - Security News Proton rend son gestionnaire de mot de passe Open Source Proton Pass à l'échelle mondiale pour les principaux navigateurs et appareils mobiles.

---

>Proton makes its open source Proton Pass password manager globally available for major browsers and mobile devices. ]]> 2023-06-30T09:28:55+00:00 https://www.securityweek.com/proton-launches-open-source-password-manager/ www.secnews.physaphae.fr/article.php?IdArticle=8350950 False None None 2.0000000000000000 SecurityWeek - Security News Lockbit Ransomware Group prétend avoir piraté TSMC et demande une rançon de 70 millions de dollars, mais le géant des puces dit qu'un fournisseur a été violé.

---

>LockBit ransomware group claims to have hacked TSMC and is asking for a $70 million ransom, but the chip giant says only a supplier was breached. ]]> 2023-06-30T09:00:39+00:00 https://www.securityweek.com/tsmc-says-supplier-hacked-after-ransomware-group-claims-attack-on-chip-giant/ www.secnews.physaphae.fr/article.php?IdArticle=8350951 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Ann Dunkin, CIO at the Department of Energy, is more concerned about cyberattack speed than attack type or source. ]]> 2023-06-29T13:13:42+00:00 https://www.securityweek.com/doe-cio-talks-to-securityweek-about-cybersecurity-digital-transformation/ www.secnews.physaphae.fr/article.php?IdArticle=8350651 False None None 2.0000000000000000 SecurityWeek - Security News Le cadre aide à évaluer l'efficacité des schémas d'atténuation des canaux latéraux par l'obscurcissement par rapport aux fuites de données.

---

>The framework helps evaluate the effectiveness of obfuscation side-channel mitigation schemes against data leaks. ]]> 2023-06-29T12:31:39+00:00 https://www.securityweek.com/new-mit-framework-evaluates-side-channel-attack-mitigations/ www.secnews.physaphae.fr/article.php?IdArticle=8350626 False None None 3.0000000000000000 SecurityWeek - Security News Plus de victimes du hack Moveit ont été révélées, avec un total de plus de 130 organisations et 15 millions de personnes qui auraient été touchées.

---

>More victims of the MOVEit hack have come to light, with a total of over 130 organizations and 15 million people believed to be affected. ]]> 2023-06-29T08:32:00+00:00 https://www.securityweek.com/over-130-organizations-millions-of-individuals-believed-to-be-impacted-by-moveit-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8350561 False Hack None 2.0000000000000000 SecurityWeek - Security News La startup de New York marque un financement en un stade précoce pour construire de nouvelles technologies pour remplacer l'infrastructure de bureau virtuelle.

---

>New York startup scores early stage financing to build new technology to replace virtual desktop infrastructure. ]]> 2023-06-28T18:09:50+00:00 https://www.securityweek.com/venn-software-snags-29m-to-build-mdm-for-laptops-technology/ www.secnews.physaphae.fr/article.php?IdArticle=8350279 False None None 2.0000000000000000 SecurityWeek - Security News Les e-mails, les numéros de téléphone, les journaux d'appels et les messages collectés volés en violation de données sur Android Stalkware LetMespy.

---

>Emails, phone numbers, calls logs, and collected messages stolen in data breach at Android stalkware LetMeSpy. ]]> 2023-06-28T10:55:34+00:00 https://www.securityweek.com/sensitive-information-stolen-in-letmespy-stalkerware-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8350121 False Data Breach,Hack None 2.0000000000000000 SecurityWeek - Security News Les géants de l'énergie Schneider Electric et Siemens Energy confirment d'être ciblés par le groupe de ransomware CL0P dans la campagne exploitant un movet zéro-day.

---

>Energy giants Schneider Electric and Siemens Energy confirm being targeted by the Cl0p ransomware group in the campaign exploiting a MOVEit zero-day. ]]> 2023-06-28T09:08:54+00:00 https://www.securityweek.com/siemens-energy-schneider-electric-targeted-by-ransomware-group-in-moveit-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8350081 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Malicious applications with over 30,000 installs in Google Play have infected Android devices with the Anatsa banking trojan. ]]> 2023-06-28T08:42:57+00:00 https://www.securityweek.com/anatsa-banking-trojan-delivered-via-google-play-targets-android-users-in-us-europe/ www.secnews.physaphae.fr/article.php?IdArticle=8350082 False None None 2.0000000000000000 SecurityWeek - Security News Google dit qu'il a remis 35 000 $ en récompenses de primes de bogue pour trois vulnérabilités de haute sévérité dans Chrome 114.

---

>Google says it handed out $35,000 in bug bounty rewards for three high-severity vulnerabilities in Chrome 114. ]]> 2023-06-27T11:27:44+00:00 https://www.securityweek.com/chrome-114-update-patches-high-severity-vulnerabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8349707 False None None 2.0000000000000000 SecurityWeek - Security News Les informations personnelles d'American Airlines et de Southwest Airlines Pilots ont été exposées dans une violation de données d'un fournisseur de services tiers.

---

>The personal information of American Airlines and Southwest Airlines pilots was exposed in a data breach at a third-party services provider. ]]> 2023-06-26T16:50:30+00:00 https://www.securityweek.com/american-airlines-southwest-airlines-impacted-by-data-breach-at-third-party-provider/ www.secnews.physaphae.fr/article.php?IdArticle=8349419 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Les dernières mises à jour de liaison abordent trois vulnérabilités exploitables à distance et à distance conduisant au déni de service (DOS).

---

>The latest BIND updates address three high-severity, remotely exploitable vulnerabilities leading to denial-of-service (DoS). ]]> 2023-06-26T10:32:17+00:00 https://www.securityweek.com/remotely-exploitable-dos-vulnerabilities-patched-in-bind/ www.secnews.physaphae.fr/article.php?IdArticle=8349332 False None None 2.0000000000000000 SecurityWeek - Security News Moveit Hack: des informations personnelles d'environ 769 000 employés de Californie à la retraite et 2,5 millions de gardes financiers de Genworth ont été exposés.

---

>MOVEit hack: Personal information of about 769,000 retired California employees and 2.5 million Genworth Financial policyholders were exposed. ]]> 2023-06-23T10:58:04+00:00 https://www.securityweek.com/2-5m-genworth-policyholders-and-769k-retired-california-workers-and-beneficiaries-affected-by-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8348450 False Hack None 2.0000000000000000 SecurityWeek - Security News L'armée américaine dit que les soldats affirment que des montres intelligentes non sollicitées et suspectes sont envoyées aux soldats, les exposant à des attaques de logiciels malveillants.

---

>The US army says soldiers says unsolicited, suspicious smartwatches are being sent to soldiers, exposing them to malware attacks. ]]> 2023-06-22T16:28:04+00:00 https://www.securityweek.com/us-military-personnel-receiving-unsolicited-suspicious-smartwatches/ www.secnews.physaphae.fr/article.php?IdArticle=8348180 False Malware None 2.0000000000000000 SecurityWeek - Security News Un groupe de piratage lié au gouvernement nord-coréen a été capturé à l'aide de nouveaux logiciels malveillants avec des capacités d'écoute électronique microphone.

---

>A hacking group linked to the North Korean government has been caught using new malware with microphone wiretapping capabilities. ]]> 2023-06-22T14:16:07+00:00 https://www.securityweek.com/north-korean-hackers-caught-malware-with-microphone-wiretapping-capabilities/ www.secnews.physaphae.fr/article.php?IdArticle=8348139 False Malware None 3.0000000000000000 SecurityWeek - Security News Le fournisseur anti-malware russe partage les détails techniques sur l'implant spyware déployé dans le cadre des récentes attaques d'iMessage zéro-clic.

---

>Russian anti-malware vendor shares technical details on spyware implant deployed as part of recent zero-click iMessage attacks. ]]> 2023-06-21T14:53:28+00:00 https://www.securityweek.com/kaspersky-dissects-spyware-used-in-ios-zero-click-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8347742 False None None 3.0000000000000000 SecurityWeek - Security News La nouvelle cyber-coupe de la sécurité nationale aidera les États-Unis à perturber et à poursuivre les acteurs de la menace nationale et les cybercriminels parrainés par l'État.

---

>New National Security Cyber Section will help the US disrupt and prosecute nation-state threat actors and state-sponsored cybercriminals. ]]> 2023-06-21T12:32:23+00:00 https://www.securityweek.com/doj-launches-cyber-unit-to-prosecute-nation-state-threat-actors/ www.secnews.physaphae.fr/article.php?IdArticle=8347690 False Threat None 2.0000000000000000 SecurityWeek - Security News Gen Digital, qui possède Avast, Avira, Avg, Norton et LifeLock, ont déclaré que les données des employés ont été compromises dans l'attaque de ransomware Moveit.

---

>Gen Digital, which owns Avast, Avira, AVG, Norton, and LifeLock, said employee data was compromised in the MOVEit ransomware attack. ]]> 2023-06-20T15:48:23+00:00 https://www.securityweek.com/norton-parent-says-employee-data-stolen-in-moveit-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8347415 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Bitdefender finds new malware capable of monitoring incoming RDP connections and infect the connecting clients that have client drive mapping enabled. ]]> 2023-06-20T14:34:53+00:00 https://www.securityweek.com/new-rdstealer-malware-targets-rdp-connections/ www.secnews.physaphae.fr/article.php?IdArticle=8347363 False Malware None 2.0000000000000000 SecurityWeek - Security News Nobody doubts the need to increase board level cyber expertise, but there is no single preferred route. ]]> 2023-06-20T12:00:00+00:00 https://www.securityweek.com/fulfilling-expected-sec-requirements-for-cybersecurity-expertise-at-board-level/ www.secnews.physaphae.fr/article.php?IdArticle=8347293 False None None 2.0000000000000000 SecurityWeek - Security News Le bureau du commissaire australien de l'information (OAIC) affirme que certains de ses dossiers ont été volés dans une attaque de ransomware contre le cabinet d'avocats HWL Ebsworth.

---

>The Office of the Australian Information Commissioner (OAIC) says some of its files were stolen in a ransomware attack on law firm HWL Ebsworth. ]]> 2023-06-20T10:55:19+00:00 https://www.securityweek.com/australian-government-says-its-data-was-stolen-in-law-firm-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8347294 False Ransomware None 2.0000000000000000 SecurityWeek - Security News A new information stealer malware named Mystic Stealer is gaining traction among cybercriminals on prominent underground forums. ]]> 2023-06-19T15:48:45+00:00 https://www.securityweek.com/new-information-stealer-mystic-stealer-rising-to-fame/ www.secnews.physaphae.fr/article.php?IdArticle=8347046 False Malware None 2.0000000000000000 SecurityWeek - Security News Le gang de ransomware Alphv / Blackcat a pris la responsabilité de la cyberattaque de février qui a frappé le site de médias sociaux Reddit.

---

>The Alphv/BlackCat ransomware gang has taken responsibility for the February cyberattack that hit social media site Reddit. ]]> 2023-06-19T13:42:57+00:00 https://www.securityweek.com/ransomware-gang-takes-credit-for-february-reddit-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8347014 False Ransomware,Hack None 2.0000000000000000 SecurityWeek - Security News Russia-linked hacking group Gamaredon is infecting USB drives for lateral movement within compromised Ukrainian networks. ]]> 2023-06-16T12:17:08+00:00 https://www.securityweek.com/russian-hackers-using-usb-spreading-malware-in-attacks-on-ukrainian-government-military/ www.secnews.physaphae.fr/article.php?IdArticle=8346179 False Malware None 2.0000000000000000 SecurityWeek - Security News Le gang de ransomware CL0P a répertorié plus de deux douzaines de victimes de l'attaque de Moveit Zero-Day sur son site Web de fuite.

---

>The Cl0p ransomware gang has listed more than two dozen victims of the MOVEit zero-day attack on its leak website. ]]> 2023-06-16T08:34:00+00:00 https://www.securityweek.com/ransomware-group-starts-naming-victims-of-moveit-zero-day-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8346087 False Ransomware None 2.0000000000000000 SecurityWeek - Security News La startup Cybersecurity Squarex lance un programme de prime de bogue temporaire pour sa solution de sécurité du navigateur basé sur le cloud.

---

>Cybersecurity startup SquareX launches a temporary bug bounty program for its cloud-based browser security solution. ]]> 2023-06-15T12:15:00+00:00 https://www.securityweek.com/squarex-launches-bug-bounty-program-for-browser-security-product/ www.secnews.physaphae.fr/article.php?IdArticle=8345762 False None None 2.0000000000000000 SecurityWeek - Security News Les faux comptes de chercheurs en sécurité vus distribuant des logiciels malveillants déguisés en chrome, signal, whatsapp, discorde et échange d'exploits zéro jour.

---

>Fake security researcher accounts seen distributing malware disguised as Chrome, Signal, WhatsApp, Discord and Exchange zero-day exploits. ]]> 2023-06-15T11:52:50+00:00 https://www.securityweek.com/fake-security-researcher-accounts-pushing-malware-disguised-as-zero-day-exploits/ www.secnews.physaphae.fr/article.php?IdArticle=8345763 False Malware None 3.0000000000000000 SecurityWeek - Security News Les opérateurs de ransomwares de verrouillage ont lancé 1 700 attaques aux États-Unis et ont reçu environ 91 millions de dollars de paiements de rançon.

---

>LockBit ransomware operators launched 1,700 attacks in the US and received roughly $91 million in ransom payments. ]]> 2023-06-15T10:55:07+00:00 https://www.securityweek.com/us-organizations-paid-91-million-to-lockbit-ransomware-gang/ www.secnews.physaphae.fr/article.php?IdArticle=8345764 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Microsoft exposent publiquement un groupe de piratage russe qui a travaillé sur des attaques de logiciels malveillants destructeurs qui frappent les organisations en Ukraine.

---

>Microsoft is publicly exposing a Russian hacking group that worked on destructive wiper malware attacks that hit organizations in Ukraine. ]]> 2023-06-14T17:46:44+00:00 https://www.securityweek.com/microsoft-outs-new-russian-apt-linked-to-wiper-attacks-in-ukraine/ www.secnews.physaphae.fr/article.php?IdArticle=8345447 False Malware None 3.0000000000000000 SecurityWeek - Security News Le malware ICS lié à la Russie nommé Cosmicenergy ne constitue pas une menace directe pour les systèmes OT car il contient des erreurs et manque de maturité.

---

>The Russia-linked ICS malware named CosmicEnergy does not pose a direct threat to OT systems as it contains errors and lacks maturity. ]]> 2023-06-13T15:30:40+00:00 https://www.securityweek.com/cosmicenergy-ics-malware-poses-no-immediate-threat-but-should-not-be-ignored/ www.secnews.physaphae.fr/article.php?IdArticle=8344880 False Malware,Threat CosmicEnergy ,CosmicEnergy 3.0000000000000000 SecurityWeek - Security News Un ressortissant roumain qui exploitait un service d'hébergement pare-balles utilisé par les opérateurs de logiciels malveillants a été condamné à la prison aux États-Unis.

---

>A Romanian national who operated a bulletproof hosting service used by malware operators was sentenced to prison in the US. ]]> 2023-06-13T13:21:57+00:00 https://www.securityweek.com/romanian-operator-of-bulletproof-hosting-service-sentenced-to-prison-in-us/ www.secnews.physaphae.fr/article.php?IdArticle=8344821 False Malware None 2.0000000000000000 SecurityWeek - Security News St. Margaret\'s Health in Illinois is shutting down hospitals partly due to a 2021 ransomware attack that caused serious payment system disruptions.

---

>St. Margaret\'s Health in Illinois is shutting down hospitals partly due to a 2021 ransomware attack that caused serious payment system disruptions. ]]> 2023-06-13T11:13:23+00:00 https://www.securityweek.com/ransomware-attack-played-major-role-in-shutdown-of-illinois-hospital/ www.secnews.physaphae.fr/article.php?IdArticle=8344775 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Intellihartx affirme que les informations personnelles d'environ 490 000 personnes ont été compromises dans l'attaque de Goanywhere Zero-Day plus tôt cette année.

---

>Intellihartx says the personal information of roughly 490,000 individuals was compromised in the GoAnywhere zero-day attack earlier this year. ]]> 2023-06-12T11:03:24+00:00 https://www.securityweek.com/intellihartx-informs-490k-patients-of-goanywhere-related-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8344385 False Data Breach None 2.0000000000000000 SecurityWeek - Security News Les chercheurs découvrent que de nouvelles vulnérabilités de Moveit liées au jour zéro, tout comme davantage d'organisations frappées par l'attaque se manifestent.

---

>Researchers discover new MOVEit vulnerabilities related to the zero-day, just as more organizations hit by the attack are coming forward. ]]> 2023-06-12T10:26:52+00:00 https://www.securityweek.com/new-moveit-vulnerabilities-found-as-more-zero-day-attack-victims-come-forward/ www.secnews.physaphae.fr/article.php?IdArticle=8344353 False None None 2.0000000000000000 SecurityWeek - Security News La Suisse a déclaré que les données opérationnelles du gouvernement pourraient avoir été volées dans une attaque de ransomware contre une entreprise technologique qui fournit des logiciels pour plusieurs départements.

---

>Switzerland said government operational data might have been stolen in a ransomware attack on a technology firm that provides software for several departments. ]]> 2023-06-12T09:59:16+00:00 https://www.securityweek.com/swiss-fear-government-data-stolen-in-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8344354 False Ransomware None 2.0000000000000000 SecurityWeek - Security News News de cybersécurité que vous avez peut-être manqué cette semaine: réglementation de l'IA, licenciements, attaques de logiciels malveillants aérospatiales américaines et cryptage post-quantum.

---

>Cybersecurity news that you may have missed this week: AI regulation, layoffs, US aerospace malware attacks, and post-quantum encryption. ]]> 2023-06-09T15:05:00+00:00 https://www.securityweek.com/in-other-news-ai-regulation-layoffs-us-aerospace-attacks-post-quantum-encryption/ www.secnews.physaphae.fr/article.php?IdArticle=8343711 False Malware None 2.0000000000000000 SecurityWeek - Security News Blackpoint Cyber raises $190 million in a growth funding round led by Bain Capital Tech Opportunities. ]]> 2023-06-09T12:45:00+00:00 https://www.securityweek.com/blackpoint-raises-190-million-to-help-msps-combat-cyber-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8343675 False None None 2.0000000000000000 SecurityWeek - Security News A SaaS ransomware attack against a company\'s Sharepoint Online was done without using a compromised endpoint. ]]> 2023-06-09T11:00:00+00:00 https://www.securityweek.com/saas-ransomware-attack-hit-sharepoint-online-without-using-a-compromised-endpoint/ www.secnews.physaphae.fr/article.php?IdArticle=8343655 False Ransomware,Cloud None 2.0000000000000000 SecurityWeek - Security News Japanese pharmaceutical company Eisai says it has taken systems offline after falling victim to a ransomware attack. ]]> 2023-06-08T12:58:10+00:00 https://www.securityweek.com/pharmaceutical-giant-eisai-takes-systems-offline-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8343345 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Le piratage de Cl0p Cyber-Extortion Gang \\ du programme de transfert de fichiers Moveit populaire auprès des entreprises pourrait avoir un impact global généralisé.

---

>The Cl0p cyber-extortion gang\'s hack of the MOVEit file-transfer program popular with enterprises could have widespread global impact. ]]> 2023-06-08T01:13:25+00:00 https://www.securityweek.com/bbc-british-airways-novia-scotia-among-first-big-name-victims-in-global-supply-chain-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8343210 False Hack None 2.0000000000000000 SecurityWeek - Security News The Clop ransomware gang issued "an ultimatum" companies targeted in a recent large-scale hack of payroll data ]]> 2023-06-07T13:27:56+00:00 https://www.securityweek.com/hackers-issue-ultimatum-over-payroll-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8343041 False Ransomware,Data Breach,Hack None 2.0000000000000000 SecurityWeek - Security News Google\'s June 2023 security update for Android patches more than 50 vulnerabilities, including an Arm Mali GPU flaw exploited by spyware vendors. ]]> 2023-06-07T11:44:43+00:00 https://www.securityweek.com/androids-june-2023-security-update-patches-exploited-arm-gpu-vulnerability/ www.secnews.physaphae.fr/article.php?IdArticle=8343008 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Blumira recueille 15 millions de dollars en financement de série B et lance une nouvelle plate-forme XDR pour les petites et moyennes entreprises (PME).

---

>Blumira raises $15 million in Series B funding and launches a new XDR platform for small and medium-sized businesses (SMBs). ]]> 2023-06-07T11:03:59+00:00 https://www.securityweek.com/blumira-raises-15-million-for-smb-tailored-xdr-platform/ www.secnews.physaphae.fr/article.php?IdArticle=8343009 False None None 2.0000000000000000 SecurityWeek - Security News Keepass 2.54 Patche une vulnérabilité permettant aux attaquants de récupérer le mot de passe maître ClearText à partir d'un vidage de mémoire

---

>KeePass 2.54 patches a vulnerability allowing attackers to retrieve the cleartext master password from a memory dump. ]]> 2023-06-06T14:01:00+00:00 https://www.securityweek.com/keepass-update-patches-vulnerability-exposing-master-password/ www.secnews.physaphae.fr/article.php?IdArticle=8342576 False Vulnerability None 2.0000000000000000 SecurityWeek - Security News Les grandes entreprises ont confirmé avoir été touchée par la récente attaque de Moveit zéro-jour, notamment BBC, British Airways et Zellis.

---

>Major companies have confirmed being impacted by the recent MOVEit zero-day attack, including BBC, British Airways and Zellis. ]]> 2023-06-06T11:29:07+00:00 https://www.securityweek.com/several-major-organizations-confirm-being-impacted-by-moveit-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8342532 False None None 2.0000000000000000 SecurityWeek - Security News Verizon\'s 16th annual Data Breach Investigations Report (DBIR) provides data on ransomware costs, the frequency of human error in breaches, and BEC trends.

---

>Verizon\'s 16th annual Data Breach Investigations Report (DBIR) provides data on ransomware costs, the frequency of human error in breaches, and BEC trends. ]]> 2023-06-06T10:52:48+00:00 https://www.securityweek.com/verizon-2023-dbir-human-error-involved-in-many-breaches-ransomware-cost-surges/ www.secnews.physaphae.fr/article.php?IdArticle=8342533 False Ransomware,Data Breach None 2.0000000000000000 SecurityWeek - Security News La récente attaque Moveit zéro-jour a été liée à un groupe de ransomwares connu, qui aurait volé des données de dizaines d'organisations.

---

>The recent MOVEit zero-day attack has been linked to a known ransomware group, which reportedly stole data from dozens of organizations. ]]> 2023-06-05T10:20:00+00:00 https://www.securityweek.com/ransomware-group-used-moveit-exploit-to-steal-data-from-dozens-of-organizations/ www.secnews.physaphae.fr/article.php?IdArticle=8342110 False Ransomware None 2.0000000000000000 SecurityWeek - Security News News Cybersecurity que vous avez peut-être manqué cette semaine: les logiciels espions utilisés par divers gouvernements, de nouvelles vulnérabilités, des produits de sécurité industrielle et des attaques de routeurs Linux.

---

>Cybersecurity news that you may have missed this week: the spyware used by various governments, new vulnerabilities, industrial security products, and Linux router attacks. ]]> 2023-06-03T11:00:00+00:00 https://www.securityweek.com/in-other-news-government-use-of-spyware-new-industrial-security-tools-japan-router-hack/ www.secnews.physaphae.fr/article.php?IdArticle=8341772 False Hack,Industrial None 2.0000000000000000 SecurityWeek - Security News La startup de Los Angeles Galvanick marque 10 millions de dollars de capital de semences pour construire une plate-forme de détection et de réponse industrielle moderne.

---

>Los Angeles startup Galvanick scores $10 million seed capital to build a modern industrial detection and response platform. ]]> 2023-06-02T16:40:10+00:00 https://www.securityweek.com/galvanick-banks-10-million-for-industrial-xdr-technology/ www.secnews.physaphae.fr/article.php?IdArticle=8341666 False Industrial None 2.0000000000000000 SecurityWeek - Security News Point32Health affirme que les informations de santé personnelles et protégées de 2,5 millions d'abonnés à la santé des pèlerins de Harvard ont été volées lors d'une récente attaque de ransomware.

---

>Point32Health says the personal and protected health information of 2.5 million Harvard Pilgrim Health Care subscribers was stolen in a recent ransomware attack. ]]> 2023-06-02T13:36:09+00:00 https://www.securityweek.com/information-of-2-5m-people-stolen-in-ransomware-attack-at-massachusetts-health-insurer/ www.secnews.physaphae.fr/article.php?IdArticle=8341503 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Enzo Biochem affirme que les informations de test clinique d'environ 2,47 millions d'individus ont été exposées lors d'une récente attaque de ransomware.

---

>Enzo Biochem says the clinical test information of roughly 2.47 million individuals was exposed in a recent ransomware attack. ]]> 2023-06-02T09:55:20+00:00 https://www.securityweek.com/enzo-biochem-ransomware-attack-exposes-information-of-2-5m-individuals/ www.secnews.physaphae.fr/article.php?IdArticle=8341451 False Ransomware None 2.0000000000000000 SecurityWeek - Security News Apple a nié avoir travaillé avec n'importe quel gouvernement pour ajouter des délais à ses produits après que la Russie a accusé la société d'avoir aidé les iPhones de piratage de la NSA.

---

>Apple has denied working with any government to add backdoors to its products after Russia accused the company of helping the NSA hack iPhones. ]]> 2023-06-02T09:47:24+00:00 https://www.securityweek.com/apple-denies-helping-us-government-hack-russian-iphones/ www.secnews.physaphae.fr/article.php?IdArticle=8341452 False Hack None 2.0000000000000000 SecurityWeek - Security News Une vulnérabilité zéro-jour dans le produit du logiciel de progression \\ Moveit Transfer a été exploitée pour pirater des organisations et voler leurs données.

---

>A zero-day vulnerability in Progress Software\'s MOVEit Transfer product has been exploited to hack organizations and steal their data. ]]> 2023-06-02T09:04:59+00:00 https://www.securityweek.com/zero-day-in-moveit-file-transfer-software-exploited-to-steal-data-from-organizations/ www.secnews.physaphae.fr/article.php?IdArticle=8341432 False Hack,Vulnerability None 3.0000000000000000 SecurityWeek - Security News Google offre une récompense de prime de bogue pouvant atteindre 180 000 $ pour un exploit en chaîne entière menant à une évasion de bac à sable dans le navigateur Chrome.

---

>Google is offering a bug bounty reward of up to $180,000 for a full chain exploit leading to a sandbox escape in the Chrome browser. ]]> 2023-06-02T03:59:12+00:00 https://www.securityweek.com/google-temporarily-offering-180000-for-full-chain-chrome-exploit/ www.secnews.physaphae.fr/article.php?IdArticle=8341385 False None None 2.0000000000000000 SecurityWeek - Security News Toyota says improper cloud configurations exposed vehicle and customer information in Japan and overseas for years. ]]> 2023-06-01T13:31:54+00:00 https://www.securityweek.com/toyota-discloses-new-data-breach-involving-vehicle-customer-information/ www.secnews.physaphae.fr/article.php?IdArticle=8341226 False Data Breach,Cloud None 3.0000000000000000 SecurityWeek - Security News Adobe invite des chercheurs en sécurité à rejoindre son programme privé Bount Bounty sur la plate-forme Hackerone.

---

>Adobe is inviting security researchers to join its private bug bounty program on the HackerOne platform. ]]> 2023-06-01T09:41:26+00:00 https://www.securityweek.com/adobe-inviting-researchers-to-private-bug-bounty-program/ www.secnews.physaphae.fr/article.php?IdArticle=8341168 False None None 2.0000000000000000 SecurityWeek - Security News Les chercheurs en sécurité ont découvert le code spyware dans 101 applications Android qui avaient plus de 421 millions de téléchargements dans Google Play.

---

>Security researchers have discovered spyware code in 101 Android applications that had over 421 million downloads in Google Play. ]]> 2023-05-31T11:22:04+00:00 https://www.securityweek.com/spyware-found-in-google-play-apps-with-over-420-million-downloads/ www.secnews.physaphae.fr/article.php?IdArticle=8340863 False None None 2.0000000000000000 SecurityWeek - Security News La vulnérabilité Barracuda zéro-jour récemment découverte CVE-2023-2868 a été exploitée pour fournir des logiciels malveillants et voler des données depuis au moins octobre 2022.

---

>The recently discovered Barracuda zero-day vulnerability CVE-2023-2868 has been exploited to deliver malware and steal data since at least October 2022. ]]> 2023-05-31T08:30:00+00:00 https://www.securityweek.com/barracuda-zero-day-exploited-to-deliver-malware-for-months-before-discovery/ www.secnews.physaphae.fr/article.php?IdArticle=8340818 False Malware,Vulnerability None 2.0000000000000000