Cyberveillecurated by Decio
Nuage de tags
Mur d'images
Quotidien
Quotidien Hebdomadaire Mensuel

Quotidien Shaarli

Tous les liens d'un jour sur une page.

Jour précédent
Jour suivant

June 11, 2024

IcedID Brings ScreenConnect and CSharp Streamer to ALPHV Ransomware Deployment – The DFIR Report

Key Takeaways In October 2023, we observed an intrusion that began with a spam campaign, distributing a forked IcedID loader. The threat actor used Impacket’s wmiexec and RDP to install Scree…

21:34
thedfirreport, EN, 2024, analysis, IceID, ScreenConnect, incident, ALPHV, Ransomware
The New York Times source code leaked by a 4chan user

A user on the online forum 4chan has leaked a massive 270GB of data belonging to The New York Times. This leak includes the source code for the

20:54
stackdiary, EN, 2024, NewYorkTimes, Source-Code, leak, 4chan
Microsoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs

Today is Microsoft's June 2024 Patch Tuesday, which includes security updates for 51 flaws, eighteen remote code execution flaws, and one publicly disclosed zero-day vulnerability.
#Microsoft #Patch #Security #Tuesday #Update #Vulnerability #Windows

19:47
Vulnerability, Windows, Patch, Security, Tuesday, Microsoft, Update
CVE-2024-4577 RCE in PHP CGI: Everything you need to know | Wiz Blog

Detect and mitigate CVE-2024-4577, a critical remote code execution vulnerability in PHP CGI. Organizations are advised to patch urgently.

16:56
wiz, EN, 2024, CVE-2024-4577, PHP, CGI, php-cgi
Bypassing Veeam Authentication CVE-2024-29849

Veeam Backup Enterprise Manager Authentication Bypass

16:31
summoning.team, EN, 2024, Veeam, Backup, Enterprise, Manager, Authentication, Bypass, PoC, CVE-2024-29849
Switzerland notes increase in cyberattacks ahead of Ukraine peace summit

Russia, which hasn’t been invited to the summit, has repeatedly called it “meaningless and harmful.” Swiss officials did not provide more details about the reported cyberattacks.

16:21
therecord.media, EN, 2024, cyberattacks, Ukraine, Switzerland, Russia-Ukraine-war
UNC5537 Targets Snowflake Customer Instances for Data Theft and Extortion

A campaign targeting Snowflake customer database instances with the intent of data theft and extortion.

08:43
Mandiant, EN, 2024, UNC5537, Snowflake, report
Urgent call for O-type blood donations following London hospitals ransomware attack

As a result of the cyberattack “hospitals cannot currently match patients’ blood at the same frequency as usual,” announced NHS Blood and Transplant.

08:36
therecord.media, EN, 2024, O-type, blood, ransomware, NHS, health, London
Mandiant says hackers stole a 'significant volume of data' from Snowflake customers

The security firm said the attacks targeting Snowflake customers is "ongoing," suggesting the number of affected companies may rise.

06:43
techcrunch, EN, 2024, Mandiant, Snowflake, customers
Apple’s AI promise: “Your data is never stored or made accessible to Apple”

And publicly reviewable server code means experts can "verify this privacy promise."

06:42
arstechnica, EN, 2024, Apple, AI, data, privacy, WWDC
Private Cloud Compute: A new frontier for AI privacy in the cloud

Secure and private AI processing in the cloud poses a formidable new challenge. To support advanced features of Apple Intelligence with larger foundation models, we created Private Cloud Compute (PCC), a groundbreaking cloud intelligence system designed specifically for private AI processing. Built with custom Apple silicon and a hardened operating system, Private Cloud Compute extends the industry-leading security and privacy of Apple devices into the cloud, making sure that personal user data sent to PCC isn’t accessible to anyone other than the user — not even to Apple. We believe Private Cloud Compute is the most advanced security architecture ever deployed for cloud AI compute at scale.

06:41
apple, EN, 2024, WWDC, Apple, Security, Research, cloud, AI, PCC, privacy, architecture