Latest CyberSec News by @thecyberpicker

Latest CyberSec News by @thecyberpicker

31297 bookmarks
Custom sorting
Faille Microsoft SharePoint, une affaire d鈥檈spionnage chinois ?
Faille Microsoft SharePoint, une affaire d鈥檈spionnage chinois ?
L'茅cosyst猫me cyber est en alerte depuis la d茅couverte de deux vuln茅rabilit茅s 芦 zero-day 禄 affectant la c茅l猫bre solution de gestion collaborative SharePoint de Microsoft. Toujours activement exploit茅es, ces failles sont au c艙ur d鈥檜ne large campagne de piratage men茅e, selon de nombreux experts, par des groupes de
numerama.com
Faille Microsoft SharePoint, une affaire d鈥檈spionnage chinois ?
Major European healthcare network discloses security breach
Major European healthcare network discloses security breach
AMEOS Group, an operator of a massive healthcare network in Central Europe, has announced it has suffered a security breach that may have exposed customer, employee, and partner information.
bleepingcomputer.com
Major European healthcare network discloses security breach
CISA and FBI warn of escalating Interlock ransomware attacks
CISA and FBI warn of escalating Interlock ransomware attacks
CISA and the FBI warned on Tuesday of increased Interlock ransomware activity targeting businesses and critical infrastructure organizations in double extortion attacks.
bleepingcomputer.com
CISA and FBI warn of escalating Interlock ransomware attacks
UK moves to ban public sector organizations from making ransom payments | CyberScoop
UK moves to ban public sector organizations from making ransom payments | CyberScoop
The British government announced plans to prohibit public sector organizations and critical infrastructure operators from paying ransoms to cybercriminals, marking a significant shift in the nation's approach to combating ransomware attacks.
cyberscoop.com
UK moves to ban public sector organizations from making ransom payments | CyberScoop
Cisco: Maximum-severity ISE RCE flaws now exploited in attacks
Cisco: Maximum-severity ISE RCE flaws now exploited in attacks
Cisco is warning that three recently patched聽critical remote code execution vulnerabilities in Cisco Identity Services Engine (ISE) are now being actively exploited in attacks.
bleepingcomputer.com
Cisco: Maximum-severity ISE RCE flaws now exploited in attacks
Disrupting active exploitation of on-premises SharePoint vulnerabilities
Disrupting active exploitation of on-premises SharePoint vulnerabilities
Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities targeting internet-facing SharePoint servers. In addition, we have observed another China-based threat actor, tracked as Storm-2603, exploiting these vulnerabilities. Microsoft has released new comprehensive security updates for all supported versions of SharePoint Server (Subscription Edition, 2019, and 2016) that protect customers against these new vulnerabilities. Customers should apply these updates immediately to ensure they are protected.
microsoft.com
Disrupting active exploitation of on-premises SharePoint vulnerabilities
UK to ban public sector orgs from paying ransomware gangs
UK to ban public sector orgs from paying ransomware gangs
The United Kingdom's government is planning to ban public sector and critical infrastructure organizations from paying ransoms after ransomware attacks.
bleepingcomputer.com
UK to ban public sector orgs from paying ransomware gangs
How Mature Is Your IaC Strategy? | CSA
How Mature Is Your IaC Strategy? | CSA
Unlock faster, safer deployments by leveling up your IaC maturity. Reduce misconfig risk, alert fatigue, and cloud costs鈥攈ere鈥檚 how.
cloudsecurityalliance.org
How Mature Is Your IaC Strategy? | CSA
How to Advance from SOC Manager to CISO?
How to Advance from SOC Manager to CISO?
Learn what it takes to move from SOC to CISO鈥攕kills, challenges, and strategic steps for advancement.
thehackernews.com
How to Advance from SOC Manager to CISO?
Microsoft Sharepoint ToolShell attacks linked to Chinese hackers
Microsoft Sharepoint ToolShell attacks linked to Chinese hackers
Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft SharePoint zero-day vulnerability chain.
bleepingcomputer.com
Microsoft Sharepoint ToolShell attacks linked to Chinese hackers