yaracroft @venom@nanao.cybtex.fr
- mnt-by
- @socat
Robot
sc(r)apy | full metal packets
> We Are the Borg
> You Will be Assimilated
> Resistance is Futile
Inscrit·e en mar. 2021
Abusing Microsoft Office - The OceanLotus group of state-sponsored hackers are now using the web archive file format (.MHT and .MHTML) to deploy #backdoors to compromised #Windows systems. Several techniques used by attackers to deliver #malware through infected #Microsoft #Office files. #cyber #threats #informatique
http://www.netskope.com/blog/abusing-microsoft-office-using-malicious-web-archive-files
KB5009543 & KB5009566 - After installing #Microsoft Updates, #Windows users find their L2TP VPN connections broken when attempting to connect using the Windows #VPN client. For the moment, it is not clear what caused the « bug ». #vuln #internet #informatique
#Nanocore, #Netwire & #AsyncRAT spreading campaign uses public cloud infrastructure - Threat actors are increasingly using #cloud #technologies to achieve their objectives without having to resort to hosting their own #infrastructure. These types of cloud #services like Microsoft Azure and Amazon AWS allow attackers to set up their infrastructure and connect to the #internet with minimal time or monetary commitments. It also makes it more difficult for defenders to track down the attackers' operations. This actor is using the DuckDNS dynamic DNS service to change domain names of the C2 hosts. #malware #cyber #email #threats #informatique
http://blog.talosintelligence.com/2022/01/nanocore-netwire-and-asyncrat-spreading.html
🇨🇦 The Canadian Security Intelligence Service (CSIS), for the first time, is warning individual MPs and senators from all major parties about #influence operations being carried out by China and other adversarial states. « This is different from « normal #diplomatic conduct » in that it's #clandestine or #deceptive and includes efforts such as exploitative relationships, gifts, free travel, blackmail, bribes, #disinformation, #cyber attacks and #espionage. » « We're dealing with increased hostile state activity targeting our democratic system » #canada #threats
🇺🇸 The U.S. State Department has announced a reward of up to $10 million for information about that leads to the identification or location of leaders of the #REvil/#DarkSide #ransomware groups. #usa #informatique
Who is the Network Access Broker Wazawaka ? According to their posts on Exploit, Wazawaka has worked with at least two different #ransomware affiliate programs, including #LockBit and #DarkSide. #cybercrime #malware #cyber #threats #informatique
L'attaque informatique qui a visé ministère de la Défense le 16 décembre 2022, semble plus grave qu'initialement diagnostiquée. Une partie des infrastructures militaires toujours déconnectées d'Internet. Pour la ministre en charge de la Défense, cette attaque illustre plus que jamais la nécessité de développer une cinquième composante au sein de l’armée belge. « Nous souhaitons toutefois insister sur le fait que l'attaque n'a eu aucun impact sur notre niveau opérationnel» #belgium #military #defense #government #digital #cyber #gouvernement #threats #internet #belgique #informatique
North Korean APT group « Konni » targeting Russian #diplomatic sector using a spear phishing theme #cyber #threats #informatique
https://cluster25.io/2022/01/03/konni-targets-the-russian-diplomatic-sector/
🇺🇸 For the second day in a row, schools within the Neenah Joint School District (neenah.k12.wi.us) will remain closed Wednesday due to a cyber security situation affecting the district. #usa #education #ransomware #cyber #threats #school #databreach #informatique
La plus grande plateforme de NFT sportifs Lympo (lympo.io) victime d'une attaque informatique. 165,2 millions de tokens LMT ($18.7 million) ont été volés suite à l'exploitation d'une faille de sécurité. #vuln #cryptocurrencies #threats #informatique
https://medium.com/lympo-official/community-update-2-85805b0555ce
⚔ U.S State Department spokesperson Ned Price holds a briefing after North Korea appeared to test-fire a ballistic #missile that South Korea's #military says may be more advanced than a #hypersonic one it launched less than a week ago. #usa #dprk #russia #ukraine #europe #germany #political #nato #crisis #disinformation #destabilization #falseflag #sabotage #otan #intel #economic #threats #cyber #diplomacy
La #police cantonale jurassienne lance une mise en garde après l'apparition de cas d'arnaques aux « faux techniciens #Microsoft ». Près d'une dizaine de personnes ont ainsi déposé plainte au cours des dernières semaines après avoir été victimes de cette #escroquerie au faux #support #informatique. L'escroc tente de s'emparer des données de la personne lésée pour ensuite accéder à ses comptes bancaires. #france #suisse #cyber #threats
https://www.rjb.ch/rjb/Actualite/Region/20220111-Cas-de-cyber-escroquerie-dans-le-Jura.html
🇧🇷 Le spécialiste brésilien dans la location de véhicules Localiza (localiza.com) victime d'une attaque informatique. #brazil #automotive #industries #ransomware #cyber #business #threats #databreach #bresil #informatique
🇨🇭 Une partie des systèmes informatiques du Groupe Emil Frey (emilfrey.ch), entreprise zurichoise spécialisée dans l'importation et le commerce d'automobiles, impactée par une attaque informatique. #swiss #automotive #industries #ransomware #cyber #business #threats #databreach #informatique
( CVE-2021-20038 | CVE-2021-20039 | CVE-2021-20040 | CVE-2021-20041 | CVE-2021-20042 ) - SonicWall SMA 100 Multiple Vulnerabilities. As these devices are designed to be exposed to the internet, the only effective remediation for these issues is to apply the vendor-supplied updates. #sonicwall #devices #vuln #software #threats #informatique
Microsoft today released updates to plug nearly 120 security holes in Windows and supported #software. The most severe flaw addressed today is 🔥 CVE-2022-21907, a critical, Remote Code Execution flaw in the « HTTP Protocol Stack » (HTTP.sys) Microsoft says the flaw affects Windows 10 and Windows 11, as well as Server 2019 and Server 2022.. #vuln #microsoft #windows #threats #informatique
https://krebsonsecurity.com/2022/01/wormable-flaw-leads-january-2022-patch-tuesday/
🇮🇳 Huhtamaki's (huhtamaki.com) Flexible Packaging business in India has been subjected to a data breach during a ransomware attack, which resulted in archived data being stolen. #india #business #ransomware #cyber #threats #databreach #inde #informatique
https://www.huhtamaki.com/en/highlights/recent/statement-data-breach-in-india/
🇺🇸 University of Florida Health (ufhealth.org) workers still waiting for pay after a #ransomware attack. #usa #jobs #cyber #payroll #threats #money #software #informatique
🇫🇷 La DGSI, actuellement installée à Levallois Perret, emménagera à Saint-Ouen en 2028 #france
APT35 (aka Charming Kitten, TA453, Phosphorus), which is suspected to be an Iranian nation-state actor, exploits Log4j vulnerability (CVE-2021-44228) to distribute new modular #Windows #PowerShell toolkit.
#usa #iran #cyber #microsoft #software #vuln #backdoor #malware #informatique
- mnt-by
- @socat
Robot
sc(r)apy | full metal packets
> We Are the Borg
> You Will be Assimilated
> Resistance is Futile
Inscrit·e en mar. 2021
yaracroft recommande :
