Cyberveille

Microsoft AI Employee Accidentally Leaks 38TB of Data https://www.pcmag.com/news/microsoft-ai-employee-accidentally-leaks-38tb-of-data

18/09/2023 20:01:03

A software repository on GitHub dedicated to supplying open-source code and AI models for image recognition was left open to manipulation by bad actors thanks to an insecure URL.

New Python NodeStealer Goes Beyond Facebook Credentials, Now Stealing All Browser Cookies and Login Credentials https://www.netskope.com/blog/new-python-nodestealer-goes-beyond-facebook-credentials-now-stealing-all-browser-cookies-and-login-credentials

18/09/2023 11:48:47

Netskope Threat Labs is tracking a campaign that uses malicious Python scripts to steal Facebook users’ credentials and browser data. This campaign targets Facebook business accounts with bogus Facebook messages with a malicious file attached. The attacks are reaching victims mainly in Southern Europe and North America across different segments, led by the manufacturing services and technology sectors.

BlackCat ransomware hits Azure Storage with Sphynx encryptor https://www.bleepingcomputer.com/news/security/blackcat-ransomware-hits-azure-storage-with-sphynx-encryptor/

17/09/2023 15:32:31

The BlackCat (ALPHV) ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets' Azure cloud storage.

Ransomware flingers hit Manchester cops in the supply chain • The Register https://www.theregister.com/2023/09/15/greater_manchester_police_breach_demonstrates/

17/09/2023 15:27:24

The UK's Greater Manchester Police (GMP) has admitted that crooks have got their mitts on some of its data after a third-party supplier responsible for ID badges was attacked.

According to the Manchester Evening News the stolen data included the names and pictures of police officers held by the supplier for use on thousands of ID badges.

TikTok fined €345M by Irish DPC for violating children’s privacy https://securityaffairs.com/150918/breaking-news/tiktok-fined-e345m-irish-dpc.html

17/09/2023 11:29:10

The Irish Data Protection Commission (DPC) fined TikTok €345 million ($368 million) for violating the privacy of children.

When MFA isn't actually MFA https://retool.com/blog/mfa-isnt-mfa/

16/09/2023 12:22:57

Due to a recent Google change, MFA isn't truly MFA.

How Google Authenticator made one company’s network breach much, much worse https://arstechnica.com/security/2023/09/how-google-authenticator-gave-attackers-one-companys-keys-to-the-kingdom

16/09/2023 12:21:15

Google's app for generating MFA codes syncs to user accounts by default. Who knew?

Can't Be Contained: Finding a Command Injection Vulnerability in Kubernetes https://www.akamai.com/blog/security-research/kubernetes-critical-vulnerability-command-injection

15/09/2023 16:34:42

Akamai researchers discover a critical vulnerability in Kubernetes that can lead to remote code execution.

Update Adobe Acrobat and Reader to Patch Actively Exploited Vulnerability https://thehackernews.com/2023/09/update-adobe-acrobat-and-reader-to.html

14/09/2023 22:37:37

Adobe's September 2023 update addresses a new zero-day vulnerability (CVE-2023-26369) in Acrobat and Reader that attackers are exploiting in the wild.

Argent russe: la place financière suisse rattrapée par une fuite de données https://www.rts.ch/info/economie/14313737-argent-russe-la-place-financiere-suisse-rattrapee-par-une-fuite-de-donnees.html

14/09/2023 14:58:16

Un ancien ministre de Vladimir Poutine et la famille du patron d'une entreprise publique russe, impliquée dans l'effort de guerre, se retrouvent dans les données inédites repérées par la RTS. Des liens avec la place financière suisse sont mis en lumière.
Ces révélations proviennent des documents confidentiels de la société de gestion de fortune zurichoise Finaport. Tout commence en janvier 2023 lorsque l'entreprise, sponsor officiel de l'Open de tennis de Zoug, est victime d'un piratage, comme le révélait le site Watson.

macOS MetaStealer | New Family of Obfuscated Go Infostealers Spread in Targeted Attacks https://www.sentinelone.com/blog/macos-metastealer-new-family-of-obfuscated-go-infostealers-spread-in-targeted-attacks/

14/09/2023 14:48:30

The rise of macOS infostealers continues with the latest entrant aiming to compromise business environments with targeted social engineering lures.

CVE-2023-38146: Arbitrary Code Execution via Windows Themes https://exploits.forsale/themebleed/

14/09/2023 12:31:15

This is a fun bug I found while poking around at weird Windows file formats. It's a kind of classic Windows style vulnerability featuring broken signing, sketchy DLL loads, file races, cab files, and Mark-of-the-Web silliness. It was also my first experience submitting to the MSRC Windows bug bounty since leaving Microsoft in April of 2022.

Trojanized Free Download Manager found to contain a Linux backdoor https://securelist.com/backdoored-free-download-manager-linux-malware/110465/

14/09/2023 12:20:50

Kaspersky researchers analyzed a Linux backdoor disguised as Free Download Manager software that remained under the radar for at least three years.

Threat actor leaks sensitive data belonging to Airbus https://securityaffairs.com/150794/data-breach/airbus-investigates-data-leak.html?amp=1

14/09/2023 07:19:41

The multinational aerospace corporation Airbus has launched an investigation into the recent leak of information allegedly stolen from the company.
The multinational aerospace corporation Airbus announced that it is investigating a data leak after cybersecurity firm Hudson Rock reported that a hacker posted information on thousands of the company’s vendors to the dark web.

Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks https://www.bleepingcomputer.com/news/security/mozilla-patches-firefox-thunderbird-against-zero-day-exploited-in-attacks/

14/09/2023 06:48:51

Mozilla released emergency security updates today to fix a critical zero-day vulnerability exploited in the wild, impacting its Firefox web browser and Thunderbird email client.

Critical WebP bug: many apps, not just browsers, under threat https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/

14/09/2023 06:48:15

The heap buffer overflow (CVE-2023-4863) vulnerability in the WebP Codec is being actively exploited in the wild.

With 0-days hitting Chrome, iOS, and dozens more this month, is no software safe? | Ars Technica https://arstechnica.com/security/2023/09/with-0-days-hitting-chrome-ios-and-dozens-more-this-month-is-no-software-safe/

14/09/2023 00:26:45

With 70 zero-days uncovered so far this year, 2023 is on track to set a new record.

PSA: Ongoing Webex malvertising campaign drops BatLoader https://www.malwarebytes.com/blog/threat-intelligence/2023/09/ongoing-webex-malvertising-drops-batloader

13/09/2023 22:03:09

A new malvertising campaign is targeting corporate users who are downloading the popular web conferencing software Webex. Threat actors have bought an advert that impersonates Cisco's brand and is displayed first when performing a Google search.

Attacker combines phone, email lures into believable, complex attack chain https://news.sophos.com/en-us/2023/08/10/image-spam-attack/

13/09/2023 21:44:02

A social engineering phone call lends authenticity to the attacker’s malicious email

Ransomware crew hits Save The Children, steals 7TB of data https://www.theregister.com/2023/09/11/bianlian_save_the_children/

13/09/2023 14:14:35

Cybercrime crew BianLian says it has broken into the IT systems of a top nonprofit and stolen a ton of files, including what the miscreants claim is financial, health, and medical data.

As highlighted by VX-Underground and Emsisoft threat analyst Brett Callow earlier today, BianLian bragged on its website it had hit an organization that, based on the gang's description of its unnamed victim, looks to be Save The Children International. The NGO, which employs about 25,000 people, says it has helped more than a billion kids since it was founded in 1919.

Liens par page

Filtres