A comprehensive analysis of the year's new malware
Trois ordonnances d’exécution de la loi fédérale sur la surveillance de la correspondance par poste et télécommunication (LSCPT) sont modifiées pour répondre à l’évolution technologique, et notamment à l’arrivée de la 5G. Elles entreront en vigueur le 1er janvier 2024. L’objectif est d’éviter des lacunes dans la surveillance des télécommunications, de permettre une détermination plus précise de la position et de continuer de garantir l’efficacité de la poursuite pénale.
Les autorités suisses disposeront dès le 1er janvier de moyens élargis pour surveiller les données issues d'internet et de la téléphonie mobile. Elles pourront notamment plus facilement identifier qui se cache derrière un numéro usurpé ou inconnu.
New AI-generated digital replicas of real experts expose an unnerving policy gray zone. Washington wants to fix it, but it’s not clear how.
L’exploitation de vulnérabilités critiques revient en force sur le devant de la scène pour l’établissement d’un accès initial et le lancement de cyberattaques. Elles étaient nombreuses l'an dernier.
L’année qui s’achève a vu de nombreuses entreprises de services numériques frappées par des cyberattaques, en France et au-delà. Avec à chaque fois, un nombre conséquent d’organisations affectées indirectement.
Researchers have created a decryptor that exploits a flaw in Black Basta ransomware, allowing victims to recover their files for free.
Le Centre hospitalier cantonal de St-Gall a attribué un contrat de 2,2 millions de francs suisses pour un service de centre opérationnel de sécurité SOC.
Cloud Atlas spear-phishing attacks hit an agro-industrial enterprise and a state-owned research company.
Ukraine's Computer Emergency Response Team (CERT) is warning of a new phishing campaign that allowed Russia-linked hackers to deploy previously unseen malware on a network in under one hour.
In response to Russia's invasion, Ukraine called for support from volunteers operating in cyberspace. Since then, hackers have helped Kyiv's war effort. But this new phenomenon also draws criticism.
A full of spectrum of infringment
The cat is out of the bag:
Generative AI systems like DALL-E and ChatGPT have been trained on copyrighted materials;
OpenAI, despite its name, has not been transparent about what it has been trained on.
Generative AI systems are fully capable of producing materials that infringe on copyright.
They do not inform users when they do so.
They do not provide any information about the provenance of any of the images they produce.
Users may not know when they produce any given image whether they are infringing.
Chinese threat actors exploited a new zero-day vulnerability in Barracuda's Email Security Gateway (ESG) appliances.
A new Python project called 'Wall of Flippers' detects Bluetooth spam attacks launched by Flipper Zero and Android devices.
Data shows hackers stole around $2 billion in crypto this year, according to data analyzed by blockchain security firms.
Apple's warnings in late October that Indian journalists and opposition figures may have been targeted by state-sponsored attacks prompted a forceful Behind closed doors, senior officials from Modi's administration demanded that Apple soften the political impact of the state-sponsored warnings, according to Washington Post.
German hospital network Katholische Hospitalvereinigung Ostwestfalen (KHO) has confirmed that recent service disruptions were caused by a Lockbit ransomware attack where the threat actors gained access to IT systems and encrypted devices on the network.
Downfall, a fan expansion for the popular Slay the Spire indie strategy game, was breached on Christmas Day to push Epsilon information stealer malware using the Steam update system.
Researchers at Ukraine's computer emergency response team said that during attacks in December, Russian hackers deployed novel malware via a phishing campaign.
