Vidar Stealer 2.0 Exploits GitHub, Reddit to Deliver Malware via Fake Game Cheats
Gouvernance & RégulationInfosecurity Magazineil y a 13 jours
The Vidar 2.0 infostealers is deployed through fake free game cheats on GitHub and Reddit
Flux RSS
— Sources secondaires330articles RSS
ReinitialiserCircular letter
GénéralCSSF Publicationsil y a 13 jours
Latest update on the AML/CFT standardised data collection
AI Issues Will Drive Half of Incident Response Efforts by 2028, Says Gartner
Gouvernance & RégulationInfosecurity Magazineil y a 13 jours
Gartner has urged security teams to get involved in AI projects from the start to avoid costly incident response
Android OS-Level Attack Bypasses Mobile Payment Security
GénéralInfosecurity Magazineil y a 14 jours
Android’s LSPosed-based attack hijacks payment apps via runtime manipulation and SIM-binding bypass
'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment
GénéralInfosecurity Magazineil y a 14 jours
CursorJack shows how malicious MCP deeplinks in Cursor IDE can trigger user-approved code execution
Surge in Nation State Attacks on UK Firms Amid Cyber Warfare Fears
GénéralInfosecurity Magazineil y a 14 jours
Armis reveals that “mutually assured disruption” is no longer preventing state-backed attacks
Average Number of Daily API Attacks Up 113% Annually
GénéralInfosecurity Magazineil y a 14 jours
Akamai says 87% of organizations suffered an API-related security incident last year
UK Cyber Monitoring Centre Sets Its Sights on US Expansion One Year After Launch
Gouvernance & RégulationInfosecurity Magazineil y a 14 jours
The US Cyber Monitoring Center should be operational in 2027, said the UK CMC leadership
Free parking in Russia after Distributed Denial-of-Service attack knocks city’s parking system offline
GénéralGraham Cluleyil y a 15 jours
Drivers in the Russian city of Perm have been enjoying an unexpected bonus this week: free parking. Not because the city council suddenly decided to embrace generosity - but rather because hackers succeeded in knocking the city's payment system offline. Read more in my article on the Hot for Security blog.
Researchers Warn of Global Surge in Fake Shipment Tracking Scams
Threat IntelligenceInfosecurity Magazineil y a 15 jours
Some of these campaigns are linked to Darcula, a Chinese-language phishing-as-a-service platform
CrackArmor Flaws Expose Linux Systems to Privilege Escalation
Gouvernance & RégulationInfosecurity Magazineil y a 15 jours
CrackArmor AppArmor flaws let local Linux users gain root, break containers and enable DoS attacks
Security Flaw in AWS Bedrock Code Interpreter Raises Alarms
Gouvernance & RégulationInfosecurity Magazineil y a 15 jours
DNS-based attack in AWS Bedrock AgentCore lets AI sandboxes exfiltrate cloud data
FBI Calls for Help to Track Steam Malware Campaign
Malware & RansomwareInfosecurity Magazineil y a 15 jours
The FBI wants to hear from gamers who have downloaded Steam titles containing malware
UK: Companies House Web Glitch Exposes Corporate Details to Fraudsters
GénéralInfosecurity Magazineil y a 15 jours
An issue with the Companies House website has put the personal and corporate information of millions at risk
Interpol's 'Operation Synergia III' Nets 94 Arrests in Major Cybercrime Sweep
Gouvernance & RégulationInfosecurity Magazineil y a 18 jours
A new law enforcement operation against phishing and ransomware operators led to the takedown of 45,000 malicious IP addresses
Law Enforcement Dismantles SocksEscort Proxy Network in Operation Lightning
Gouvernance & RégulationInfosecurity Magazineil y a 18 jours
Operation Lightning sees international law enforcement partners shut down ‘SocksEscort,’ a major malicious proxy service used by cybercriminals worldwide
Fraudsters are using public planning records to target permit applicants
Gouvernance & RégulationGraham Cluleyil y a 19 jours
If you're in the middle of applying for a planning or zoning permit, there is some unwelcome news: cyber-criminals have found a way to exploit the bureaucratic tedium of the process against you. Read more in my article on the Fortra blog.
PixRevolution Malware Hijacks Brazil's PIX Transfers in Real Time
Malware & RansomwareInfosecurity Magazineil y a 19 jours
PixRevolution Android trojan hijacks Brazil’s PIX payments in real time using accessibility abuse
Critical Zero-Click Flaw in n8n Allows Full Server Compromise
Gouvernance & RégulationInfosecurity Magazineil y a 19 jours
The critical vulnerability affecting both cloud and self-hosted n8n instances requires no authentication or even n8n account to be exploited
CISA Issues Emergency Directive Over Exploited Cisco SD-WAN Flaws
Gouvernance & RégulationInfosecurity Magazineil y a 19 jours
CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks