Cyberveillecurated by Decio
Nuage de tags
Mur d'images
Quotidien
Quotidien Hebdomadaire Mensuel

Quotidien Shaarli

Tous les liens d'un jour sur une page.

Jour précédent
Jour suivant

March 20, 2024

Ivanti fixes critical Standalone Sentry bug reported by NATO

Ivanti warned customers to immediately patch a critical severity Standalone Sentry vulnerability reported by NATO Cyber Security Centre researchers.

22:40
bleepingcomputer, EN, 2024, Ivanti, NATO, Vulnerability, Security, InfoSec, Computer-Security
AceCryptor malware has surged in Europe, researchers say

Researchers at ESET say they spotted thousands of new infections with AceCryptor, which allows malware to slip into systems without being detected by anti-virus software.

22:39
therecord.media, EN, 2024, ESET, AceCryptor, malware
Microsoft Copilot for Security: General Availability details

Microsoft Copilot for Security will be generally available on April 1st. Read this blog to learn about new productivity research, product capabilities,..

22:33
techcommunity.microsoft, EN, 2024, AI, Microsoft, Copilot, for, Security, annonce, tool
Loop DoS: New Denial-of-Service attack targets application-layer protocols

A new Denial-of-Service (DoS) attack targets application-layer protocols that draw on the User Datagram Protocol (UDP) for end-to-end communication. The vulnerability affects both legacy and contemporary protocols. Discovered by Christian Rossow and Yepeng Pan, the attack puts an estimated 300,000 Internet hosts and their networks at risk.

15:26
cispa.de, EN, 2024, DoS, Denial-of-Service, UDP, vulnerability, Application-Layer
Cyberattaque contre France Travail : trois personnes mises en examen et incarcérées après le vol massif de données

Les suspects, âgés de 21, 22 et 23 ans, ont été arrêtés dimanche. L'attaque qu'ils sont soupçonnés d'avoir menée concerne potentiellement les données de 43 millions d'inscrits.

14:46
francetvinfo, FR, Cyberattaque, suspects, arrêtés, busted, vol, massif, France-Travail, France
Top 5 Russian-Speaking Dark Web Forums

...Among these, russian-speaking dark web forums hold a unique position due to their extensive user base and the intricate of their operations.

13:49
socradar, EN, 2024, Russian-Speaking, DarkWeb, Forums
Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762

Early this February, Fortinet released an advisory for an "out-of-bounds write vulnerability" that could lead to remote code execution. The issue affected the SSL VPN component of their FortiGate network appliance and was potentially already being exploited in the wild. In this post we detail the steps we took to identify the patched vulnerability and produce a working exploit.

11:55
assetnote, EN, 2024, exploitation, patch-diff, FortiGate, RCE, CVE-2024-21762
Tech Giant Linked to France’s Cybersecurity Tumbles in Value

The French government said it would seek “a national solution” to protect Atos, a debt-burdened company that serves nuclear programs and the military.

11:36
nytimes, EN, 2024, France, Atos, nuclear, Critical-infrastructure, government
Misconfigured Firebase instances leaked 19 million plaintext passwords

Three cybersecurity researchers discovered close to 19 million plaintext passwords exposed on the public internet by misconfigured instances of Firebase, a Google platform for hosting databases, cloud computing, and app development.

11:28
bleepingcomputer, EN, 2024, Data-Leak, Database, Firebase, Misconfiguration, Passwords, Plaintext-Password, User-Record
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms

The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an investigation into the history of onerep.com finds this company is operating out of Belarus and…

11:25
krebsonsecurity, EN, 2024, CEO, Onerep.com, People-Search, privacy