Matinale cyber du 09 août 2023
- romain
- 9 août 2023
Sources pour la matinale cyber du 09 août 2023
La UNE
Annonces
Annonces
Arrestations
Annonces
Industrie
Attaques et Piratages
Data Leaks
Threat Intel
Threat Intel
Menaces
Threat Intel
Malware
Threat Intel
APTs
Campagne et Exploitations
Vulnérabilités
Articles
Géopolitique
Data Sécu
Outils
Des échanges de cryptoactifs piratés ?
OSEF (USA)
A TRIER
- Curve Finance hacker returns funds: A hacker who stole more
- UK Electoral Commission breach: An unidentified threat acto
- Russian "hacktivism": After attacks on Spanish and Italian
- Bitfinex hack: A New York man arrested last year for launde
- NISC's Barracuda hack: Japan's cybersecurity agency NISC ha
- CDHE breach: The Colorado Department of Higher Education (C
A TRIER- 2
- Prospect Medical ransomware attack: Hospitals and clinics i
- LetMeSpy to shut down: Poland-based spyware company LetMeSp
- Russian "hacktivism," part I: Italy's cybersecurity agency
- Russian "hacktivism," part II: Totally-not Russian "hacktiv
- Voyager crypto-heist: Cryptocurrency platform Voyager has r
- Intel GPU telemetry collection: The latest version of the I
- Firefox update: Mozilla has updated Firefox to fix an issue
A TRIER- 3
- Chrome 116: Google has released version 116 of its Chrome b
- New Android 14 cellular security feature: The upcoming vers
- Discord and security keys: Discord says it has now rolled ou
- Chrome downloads redesign: Google has redesigned the Chrome
- Pixel Binary Transparency: Google has published a technical
- Chrome OS split: Google is getting close to shipping Lacros
- Twitter Blue update: Twitter now lets Blue users hide their
A TRIER- 4
- Veilid: The Cult of the Dead Cow plans to unveil a new proj
- WEI criticism: The Brave browser team has added its voice i
- Card PIN failures across the Netherlands: A network connect
- OpenUSD: Pixar, Adobe, Apple, Autodesk, and NVIDIA have uni
- Codecov goes open-source: The Codecov code coverage and cod
- SCARF: A team of academics from universities across the wor
- AMD fTPM: There's a high chance AMD's fTPM CPU security mod
A TRIER- 5
- Russia cracks down on "gray" SIM cards: Russian telecommuni
- MIA warning on Ukrainian scammers: Russia's Ministry of Int
- Iraq blocks Telegram over data leaks: The Iraqi government
- Senators want more info on DPRK crypto-thefts: A group of U
- DHS cybersecurity fund: The Department of Homeland Security
- K-12 cybersecurity: The Biden administration has announced
- US PRC IoT inquiry: The US House Select Committee on the Ch
A TRIER- 6
- Separate telco for RU state employees: The Russian governme
- Shin Bet warns of Iranian phishing: The Shin Bet security a
- Pakistan loves Cellebrite: An investigation has discovered
- UK's mad: The UK's privacy watchdog, the ICO, is mad becaus
- CISA calls for better UEFI security practices: CISA has ask
- CISA Cybersecurity Strategic Plan: CISA has released its st
- Nigeria's DDoS attack warning: Nigeria's cybersecurity agen
A TRIER- 7
- China calls on citizens to catch spies: China's Ministry of
- AIVD/MIVD hackathon : The Netherlands' civilian and military
- NSF cyber funding: The US National Science Foundation has re
- FCC record fine: The US Federal Communications Commission h
- Flipper Zero warnings: Police departments across the US hav
- 16Shop takedown: Interpol officials have shut down 16Shop,
- Yashma ransomware: A suspected Vietnamese threat actor has
A TRIER- 8
- Leaked ransomware code: A Cisco Talos investigation has fou
- Nigerian BEC scammer pleads guilty: A Nigerian man has plea
- Hacktivism financing: KELA looked at the various tactics em
- FBI's NFT warning: The FBI has published an official securi
- Adware on the Play Store: McAfee researchers have identifie
- Healthcare data leaks: Just like HDD/SDD storage devices, US
- New npm malware: Thirty-seven malicious npm packages were d
A TRIER- 9
- New PyPI malware: And since FOSS malware comes in pairs, th
- Cloudflare Tunnel abuse: Guide Point researchers describe h
- Team Bangladesh: Group-IB has a report on Team Bangladesh,
- CryptoRom scam apps return: Sophos researchers have uncover
- White Snake campaign: Russian security firm BI.ZONE says it
- DarkGate: Kaspersky says that a "well-known malware develop
- Google AMP phishing abuse: Cofense has spotted threat actor
A TRIER- 10
- Google Cloud Threat Horizons Report #7: In the seventh edit
- ICS vulnerabilities in 2023: A study from ICS security firm
- Freenom phishing domains go down: Netskope has observed a s
- QakBot: Team Cymru says that after exposing some of QakBot'
- OpenBullet: Kasada looks at a campaign spreading a RAT-lace
- TargetCompany ransomware: Trend Micro has a report on Targe
- Operation PhantomControl: eSentire analyzes Operation Phant
A TRIER- 11
- Batloader: Trend Micro looks at Batloader's recent campaign
- MerlinAgent: Ukraine's CERT team has posted IOCs on MerlinA
- DODO and Proton: Fortinet has a write-up on DODO and Proton
- XORDDOS: Chinese security firm NSFOCUS takes a look at the
- Reptile rootkit: AhnLab researchers have published a breakd
- Syssphinx's Sardonic backdoor: Darktrace researchers have a
- PyPI malware: Hacktive Security has published an analysis o
A TRIER- 12
- Rilide: Trustwave researchers say they've seen a new versio
- SkidMap botnet: Owners of Redis databases are advised to re
- Russian disinformation in Africa: A Reset investigation loo
- Ukraine thwarts Sandworm ops targeting military systems: Uk
- ScarCruft: North Korean cyber-espionage group ScarCruft has
- RedHotel: Cybersecurity firm RecordedFuture says that an AP
- Bitter=Mysterious Elephant: Chinese security firm KNOW Chua
A TRIER- 13
- HUI Loader: A security researcher named Morimolymoly has pu
- Midnight Blizzard: Microsoft says that a Russian cyber-espi
- BlueCharlie (ColdRiver, Callisto, SEABORGIUM, TA453): A Rus
- Mozilla VPN vulnerability: The OpenSUSE security team has d
- Office 2017 vulnerabilities: Kaspersky says that a 2017 Off
- Patch Tuesday: Yesterday was the August 2023 Patch Tuesday.
- Microsoft security updates: This month, Microsoft patched 8
A TRIER- 14
- Inception attack: ETH Zurich academics have discovered a ne
- Downfall attack: Sticking with CPU vulnerabilities, securit
- MSRC VRP: Microsoft has published the ranking for the top b
- Points.com vulnerabilities: A team of security researchers
- Incognito Chain vulnerability: Security firm Trail of Bits
- New LOLBAS binaries: Security researchers at Pentera have i
- Silent Pthon security patches: An academic study has found
A TRIER- 15
- New PaperCut vulnerability: Security firm Horizon3 has publ
- Zoho ManageEngine PoC: A technical write-up and PoC are now
- Microsoft patches Azure: Microsoft has patched an Azure Pow
- Top exploited vulnerabilities, per Cloudflare: After CISA p
- Microsoft Bug Bounty Program: Microsoft has awarded $13.8 m
- 2022 Top Routinely Exploited Vulnerabilities: A Fortinet bu
- Router vulnerabilities: Cisco Talos says that since 2018 wh
A TRIER- 16
- Tesla jailbreak: A team of researchers has revealed a new T
- QueueJumper analysis: IBM's X-Force team has published a ro
- Azure AD attack: Sygnia researchers have revealed a new att
- AWS SSM abuse: Mitiga has published new research this week
- New Ivanti/MobileCore vulnerability: Ivanti has released a s
- PhishForce: Threat actors have exploited zero-days in the S
- SBOM usage: A study carried out by DevSecOps company Sonaty
A TRIER- 17
- Tool update --Suricata: V7.0 of the Suricata network threat
- New tool --Mido: Security researcher Elliot Killick has rele
- New tool --RogueSliver: ACE Responder has released a tool na
- HackerOne layoffs: Bug bounty platform HackerOne has laid o
- TROOPERS23 videos: Talks from the TROOPERS23 security confe
- New tool --Steampipe plugin for OpenStack: German cybersecur
- New tool --RansomLord: Security researcher John "hyp3rlinx"