Cyberveillecurated by Decio
Nuage de tags
Mur d'images
Quotidien
Flux RSS
  • Flux RSS
  • Daily Feed
  • Weekly Feed
  • Monthly Feed
Filtres

Liens par page

  • 20 links
  • 50 links
  • 100 links

Filtres

Untagged links
page 3 / 4
78 résultats taggé theregister  ✕
HPE reveals Russian attackers accessed internal emails https://www.theregister.com/2024/01/25/hpe_russia_email_attack/
25/01/2024 10:06:48
QRCode
archive.org
thumbnail

Moscow-backed Cozy Bear may have had access to the green rectangular email cloud for six months

theregister EN 2024 HPE Russia CozyBear internal emails Data-Breach
Atlassian Confluence Server RCE attacks underway https://www.theregister.com/2024/01/22/atlassian_confluence_server_rce/
23/01/2024 10:04:43
QRCode
archive.org
thumbnail

If you're still running a vulnerable instance then 'assume a breach'

theregister en 2024 RCE mass-exploitation CVE-2023-22527 Atlassian Confluence
178,000 SonicWall firewalls are vulnerable to old DoS bugs https://www.theregister.com/2024/01/16/more_than_178000_sonicwall_firewalls/?is=e4f6b16c6de31130985364bb824bcb39ef6b2c4e902e4e553f0ec11bdbefc118
22/01/2024 11:21:46
QRCode
archive.org
thumbnail

Majority of public-facing devices still unpatched against critical vulns from as far back as 2022

theregister EN 2024 2022 CVE-2022-22274 CVE-2023-0656 SonicWall DoS
Weak password and infostealer blamed for Orange Spain outage https://www.theregister.com/2024/01/04/orange_spain_outage_breach/
05/01/2024 08:36:11
QRCode
archive.org
thumbnail

No 2FA or special characters to prevent database takeover and BGP hijack

theregister EN 2023 Orange Spain Weak password RIPE
One in four apps remain exposed to Log4Shell https://www.theregister.com/2023/12/11/log4j_vulnerabilities/
12/12/2023 19:58:36
QRCode
archive.org
thumbnail

Two years after the Log4Shell vulnerability in the open source Java-based Log4j logging utility was disclosed, circa one in four applications are dependent on outdated libraries, leaving them open to exploitation.

Research from security shop Veracode revealed that the vast majority of vulnerable apps may never have updated the Log4j library after it was implemented by developers as 32 percent were running pre-2015 EOL versions.

theregister EN 2023 Log4Shell Log4j Veracode outdated vulnerable
How to bypass Windows Hello, log into vulnerable laptops https://www.theregister.com/2023/11/22/windows_hello_fingerprint_bypass/
23/11/2023 06:48:12
QRCode
archive.org
thumbnail

Hardware security hackers have detailed how it's possible to bypass Windows Hello's fingerprint authentication and login as someone else – if you can steal or be left alone with their vulnerable device.

The research was carried out by Blackwing Intelligence, primarily Jesse D'Aguanno and Timo Teräs, and was commissioned and sponsored by Microsoft's Offensive Research and Security Engineering group. The pair's findings were presented at the IT giant's BlueHat conference last month, and made public this week. You can watch the duo's talk below, or dive into the details in their write-up here.

theregister EN 2023 biometric fingerprint bypass Windows Hello
Rhysida ransomware gang claims attack on British Library • The Register https://www.theregister.com/2023/11/20/rhysida_claims_british_library_ransomware/
21/11/2023 07:19:43
QRCode
archive.org
thumbnail

The Rhysida ransomware group says it's behind the highly disruptive October cyberattack on the British Library, leaking a snippet of stolen data in the process.

A low-res image shared to its leak site appears to show a handful of passport scans, along with other documents, some of which display the format of HMRC employment documents.

theregister EN 2023 Rhysida ransomware British Library, Data-theft
ICBC hit by ransomware impacting global trades https://www.theregister.com/2023/11/10/icbc_ransomware/
10/11/2023 11:06:21
QRCode
archive.org
thumbnail

China's largest bank, ICBC, was hit by ransomware that resulted in disruption of financial services (FS) systems on Thursday Beijing time, according to a notice on its website

theregister EN 2023 ICBC Bank China
Casio keyed up after data loss hits customers in 149 countries • The Register https://www.theregister.com/AMP/2023/10/19/casio_data_theft/
19/10/2023 23:22:00
QRCode
archive.org
thumbnail

Crooks broke into the ClassPad server and swiped online learning database

Japanese electronics giant Casio said miscreants broke into its ClassPad server and stole a database with personal information belonging to customers in 149 countries.

ClassPad is Casio's education web app, and in a Wednesday statement on its website, the firm said an intruder breached a ClassPad server and swiped hundreds of thousands of "items" belonging to individuals and organizations around the globe.

theregister EN 2023 data-loss databreach Casio ClassPad database
CIA exposed to intelligence interception due to X's URL bug https://www.theregister.com/2023/10/18/cia_x_url_bug/
19/10/2023 12:20:35
QRCode
archive.org
thumbnail

Musk's mega-app-in-waiting goes from chopping headlines to profile URLs
An ethical hacker has exploited a bug in the way X truncates URLs to take over a CIA Telegram channel used to receive intelligence.

Kevin McSheehan, who uses the online handle "Pad," spotted the issue after hovering over the link to the CIA's Telegram channel displayed on its X social media profile.

theregister EN 2023 X McSheehan Pad Telegram CIA URL bug Twitter
Routers have been rooted by Chinese spies US and Japan warn https://www.theregister.com/2023/09/27/us_japan_routers/
30/09/2023 00:51:22
QRCode
archive.org
thumbnail

BlackTech crew looking to steal sensitive data traffic

theregister EN 2023 Routers US Japan China BlackTech firmware
US-Canada water commission confirms 'cybersecurity incident" https://www.theregister.com/2023/09/15/ijc_noescape_ransomware/
20/09/2023 16:42:07
QRCode
archive.org
thumbnail

NoEscape promises 'colossal wave of problems' if IJC doesn't pay up

The International Joint Commission, a body that manages water rights along the US-Canada border, has confirmed its IT security was targeted, after a ransomware gang claimed it stole 80GB of data from the organization.

theregister EN 2023 IJC ransommware NoEscape US-Canada border water Critical-infrastructure
Ransomware flingers hit Manchester cops in the supply chain • The Register https://www.theregister.com/2023/09/15/greater_manchester_police_breach_demonstrates/
17/09/2023 15:27:24
QRCode
archive.org
thumbnail

The UK's Greater Manchester Police (GMP) has admitted that crooks have got their mitts on some of its data after a third-party supplier responsible for ID badges was attacked.

According to the Manchester Evening News the stolen data included the names and pictures of police officers held by the supplier for use on thousands of ID badges.

theregister EN 2023 Greater-Manchester-Police databreach ransomware police UK
Ransomware crew hits Save The Children, steals 7TB of data https://www.theregister.com/2023/09/11/bianlian_save_the_children/
13/09/2023 14:14:35
QRCode
archive.org
thumbnail

Cybercrime crew BianLian says it has broken into the IT systems of a top nonprofit and stolen a ton of files, including what the miscreants claim is financial, health, and medical data.

As highlighted by VX-Underground and Emsisoft threat analyst Brett Callow earlier today, BianLian bragged on its website it had hit an organization that, based on the gang's description of its unnamed victim, looks to be Save The Children International. The NGO, which employs about 25,000 people, says it has helped more than a billion kids since it was founded in 1919.

theregister EN 2023 BianLian exfiltration ONG SavetheChildren databreach
Attackers access military data through fencing supplier https://www.theregister.com/2023/09/04/zaun_breach_windows_7/
06/09/2023 14:21:44
QRCode
archive.org
thumbnail

Irony, not barbed wire, cuts the deepest

theregister EN 2023 Zaun breach windows-7 win7 military LockBit
Ransomware infection wipes all CloudNordic servers https://www.theregister.com/2023/08/23/ransomware_wipes_cloudnordic/
24/08/2023 15:22:16
QRCode
archive.org
thumbnail

IT outfit says it can't — and won't — pay the ransom demand

theregister EN 2023 Ransomware CloudNordic
Want to pwn a satellite? Turns out it's surprisingly easy https://www.theregister.com/2023/08/11/satellite_hacking_black_hat/
14/08/2023 07:18:41
QRCode
archive.org
thumbnail

A study into the feasibility of hacking low-Earth orbit satellites has revealed that it's worryingly easy to do.

In a presentation at the Black Hat security conference in Las Vegas, Johannes Willbold, a PhD student at Germany's Ruhr University Bochum, explained he had been investigating the security of satellites. He studied three types of orbital machinery and found that many were utterly defenseless against remote takeover because they lack the most basic security systems.

theregister EN 2023 satellite hacking blackhat-conf
Nearly every AMD CPU since 2017 vulnerable to Inception bug https://www.theregister.com/2023/08/09/amd_inception/
10/08/2023 09:59:43
QRCode
archive.org
thumbnail

AMD processor users, you have another data-leaking vulnerability to deal with: like Zenbleed, this latest hole can be to steal sensitive data from a running vulnerable machine.

theregister EN 2023 CVE-2023-20569 AMD CPU processor bug Inception
JumpCloud says 'nation state' gang hit some customers https://www.theregister.com/2023/07/18/jumpcloud_commands_hacking/?s=09
20/07/2023 19:56:43
QRCode
archive.org
thumbnail

JumpCloud says a "sophisticated nation-state" attacker broke into its IT systems and targeted some of its customers.

The identity and access management provider, particularly popular with sysadmins wrangling Macs on corporate networks, said it first discovered signs of an intrusion on June 27. The biz at the time determined persons unknown got "unauthorized access to a specific area of our infrastructure" using a "sophisticated spear-phishing campaign" that began five days prior.

theregister EN 2023 APT jumpcloud
Dump these Cisco phone adapters because it's not fixing them https://www.theregister.com/2023/05/05/cisco_phone_adapter_vulnerabilitty/
08/05/2023 07:16:38
QRCode
archive.org
thumbnail

There is a critical security flaw in a Cisco phone adapter, and the business technology giant says the only step to take is dumping the hardware and migrating to new kit.

In an advisory, Cisco this week warned about the vulnerability in the SPA112 2-Port Adapter that, if exploited, could allow a remote attacker to essentially take control of a compromised device by seizing full privileges and executing arbitrary code.

The flaw, tracked as CVE-2023-20126, is rated as "critical," with a base score o

theregister EN 2023 Cisco CVE-2023-20126 SPA112 2-Port phone adaptor
page 3 / 4
4497 links
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service par la communauté Shaarli - Theme by kalvn - Curated by Decio