Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation
Gouvernance & RégulationInfosecurity Magazineil y a 12 jours
Hastalamuerte leaks The Gentlemen RaaS ops: FortiGate exploits, BYOVD evasion, Qilin split tactics
Flux RSS
— Sources secondaires403articles RSS
ReinitialiserCommunication regarding management notifications and de-notifications with a European passport for Luxembourg-domiciled IFMs
GénéralCSSF Publicationsil y a 12 jours
Financial Brands Targeted in Global Mobile Banking Malware Surge
Malware & RansomwareInfosecurity Magazineil y a 12 jours
Mobile banking malware targets over 1200 financial apps globally, shifting fraud to user devices
FCA Updates Cyber Incident and Third-Party Reporting Rules
Outils & RechercheInfosecurity Magazineil y a 12 jours
The UK’s financial regulator has issued new rules to make incident and third-party reporting clearer
AWS Warns Hackers Have Abused Cisco Firewall Zero-Day Since January
Gouvernance & RégulationInfosecurity Magazineil y a 12 jours
Notorious ransomware group Interlock has been exploiting a Cisco zero-day bug since January, AWS says
Notification form for updating payment institutions/electronic money institutions information
GénéralCSSF Publicationsil y a 12 jours
UK: Regulation Drives Cyber Spending for Critical Infrastructure Orgs
Gouvernance & RégulationInfosecurity Magazineil y a 12 jours
35% of security leaders working in the UK’s critical infrastructure said regulatory requirements are the primary influence on their security programs
EU Sanctions Companies in China, Iran for Cyberattacks
GénéralDark Readingil y a 12 jours
These rulings prohibit the entities from entering or doing business in the European Union.
Legal department - Consumer protection / financial crime (Updated)
GénéralCSSF Publicationsil y a 12 jours
Out-of-court consumer complaint resolution
C2 Implant 'SnappyClient' Targets Crypto Wallets
Gouvernance & RégulationDark Readingil y a 12 jours
In addition to enabling remote access, the malware supports a wide range of capabilities, including data theft and spying.
DarkSword: iPhone Exploit Kit Serves Spies & Thieves Alike
Gouvernance & RégulationDark Readingil y a 13 jours
A sophisticated iOS exploit chain leverages multiple zero-day vulnerabilities and is targeting users in Saudi Arabia, Turkey, Malaysia, and Ukraine.
New Ubuntu Flaw Enables Local Attackers to Gain Root Access
Gouvernance & RégulationInfosecurity Magazineil y a 13 jours
CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit
'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft
Gouvernance & RégulationDark Readingil y a 13 jours
A prompt injection vulnerability paired with other flaws can turn a Google search into a full attack chain that could threaten enterprise networks.
Crypto Scam "ShieldGuard" Dismantled After Malware Discovery
Malware & RansomwareInfosecurity Magazineil y a 13 jours
ShieldGuard Chrome extension posed as a crypto security tool but stole wallets and drained user data
Researchers: Meta, TikTok Steal Personal & Financial Info When Users Click Ads
Outils & RechercheDark Readingil y a 13 jours
Tracking pixels let social media companies spy on their users even after they click over to advertiser sites, gleaning credit card info, geolocations, and more, according to an analysis.
SideWinder Espionage Campaign Expands Across Southeast Asia
Threat IntelligenceDark Readingil y a 13 jours
The suspected India-linked threat group targets governments, telecom, and critical infrastructure using spear-phishing, old vulnerabilities, and rapidly rotating infrastructure to maintain persistent access.
AI-Enabled Adversaries Compress Time-to-Exploit Following Vulnerability Disclosure
Gouvernance & RégulationInfosecurity Magazineil y a 13 jours
Rapid7 says median time from publication to CISA KEV inclusion dropped to five days
Vidar Stealer 2.0 Exploits GitHub, Reddit to Deliver Malware via Fake Game Cheats
Gouvernance & RégulationInfosecurity Magazineil y a 13 jours
The Vidar 2.0 infostealers is deployed through fake free game cheats on GitHub and Reddit
Circular letter
GénéralCSSF Publicationsil y a 13 jours
Latest update on the AML/CFT standardised data collection
AI Issues Will Drive Half of Incident Response Efforts by 2028, Says Gartner
Gouvernance & RégulationInfosecurity Magazineil y a 13 jours
Gartner has urged security teams to get involved in AI projects from the start to avoid costly incident response