Search cyberveille.decio.ch

Found 5714 bookmarks

Newest

District of Puerto Rico | Russian and Moldovan National Pleads Guilty to Operating Illegal Botnet Proxy Service that Infected Tens of Thousands of Internet-Connected Devices Around the World | United States Department of Justice

A Russian and Moldovan national pled guilty to three counts of violating 18 U.S.C. § 1030(a)(5)(A) Fraud and Related Activity in Connection with Computers. The FBI today revealed US law enforcement’s dismantlement of a botnet proxy network and its infrastructure associated with the IPStorm malware. According to online reports, the botnet infrastructure had infected Windows systems then further expanded to infect Linux, Mac, and Android devices, victimizing computers and other electronic devices around the world, including in Asia, Europe, North America and South America.

#justice.gov #EN #2023 #IPStorm #botnet #proxy #arrested

·justice.gov·Nov 14, 2023

Microsoft Patch Tuesday November 2023

Today, Microsoft released patches for 64 different vulnerabilities in Microsoft products, 14 vulnerabilities in Chromium affecting Microsoft Edge, and five vulnerabilities affecting Microsoft's Linux distribution, Mariner. Three of these vulnerabilities are already being exploited, and three have been made public before the release of the patches.

#isc.sans.edu #EN #2023 #Microsoft #Patch #patch-tuesday #November2023

·isc.sans.edu·Nov 14, 2023

Microsoft Patch Tuesday November 2023

Reptar

We have a CPU mystery! We found a way to cause some processors to enter a glitch state where the normal rules don’t apply, but what does that mean…? If you’re interested what can go wrong inside modern CPUs, read on!

#cmpxchg8b #EN #CPU #2023 #Intel #IceLake

·lock.cmpxchg8b.com·Nov 14, 2023

Reptar

Cyberattaque contre l’entreprise Concevis: l’administration fédérale est également concernée

Informations actuelles de l'administration. Tous les communiqués de l'administration fédérale, des départements et des offices.

#admin.ch #FR #CH #Communiqué #ransomware #Concevis

·admin.ch·Nov 14, 2023

Cyberattaque contre l’entreprise Concevis: l’administration fédérale est également concernée

La loi actuelle sur la protection des données est directement applicable à l’IA

En Suisse aussi, l’intelligence artificielle (IA) investit de plus en plus la vie économique et sociale de la population. Dans ce contexte, le PFPDT rappelle que la loi sur la protection des données en vigueur depuis le 1er septembre 2023 est directement applicable aux traitements de données basés sur l’IA.

#admin.ch #FR #CH #Suisse #IA #intelligence #artificielle #PFPDT #2023 #loi

·edoeb.admin.ch·Nov 14, 2023

La loi actuelle sur la protection des données est directement applicable à l’IA

La nLPD est directement applicable à l’intelligence artificielle

Selon le Préposé fédéral à la protection des données (PFPDT), la nouvelle loi sur la protection des données en vigueur depuis septembre s'applique également aux outils d'intelligence artificielle. Le traitement des données des utilisateurs doit être signalé, même s'il est effectué par une IA.

#ictjournal #FR #CH #2023 #nLPD #PFPDT #intelligence #artificielle #ia

·ictjournal.ch·Nov 14, 2023

La nLPD est directement applicable à l’intelligence artificielle

The $2,000 Phones that Let Anyone Make Robocalls

Videos collected by 404 Media over months give a peep inside the world of spoofing numbers, automated call scripts, and a specific seller of the phones.

#404media #EN #2023 #vishing #robocalls #phone #scammers

·404media.co·Nov 14, 2023

The $2,000 Phones that Let Anyone Make Robocalls

Child sexual abuse online: effective measures, no mass surveillance

On Tuesday, the Civil Liberties Committee adopted its position on new measures to protect children online by preventing and stopping child sexual abuse.

#europarl.europa.eu #EN #European #Parliament #Civil #Liberties #Committee #CSAM

·europarl.europa.eu·Nov 14, 2023

Child sexual abuse online: effective measures, no mass surveillance

Nothing new, still broken, insecure by default since then: Python's e-mail libraries and certificate verification

Python’s e-mail libraries smtplib, imaplib, and poplib do not verify server certificates unless a proper SSL context is passed to the API. This leads to security problems.

#pentagrid #EN #Python #e-mail #libraries #smtplib #imaplib #poplib #SSL #insecure #analysis

·pentagrid.ch·Nov 14, 2023

Nothing new, still broken, insecure by default since then: Python's e-mail libraries and certificate verification

GameOver(lay) - Local Privilege Escalation in Ubuntu Kernel

GameOver(lay) encompasses two significant vulnerabilities within the Ubuntu kernel, CVE-2023-2640, and CVE-2023-32629, each carrying a high-severity rating with CVSS scores of 7.8. These vulnerabilities pose a critical threat, potentially affecting around 40% of Ubuntu users. The vulnerability lies within the OverlayFS module of the Ubuntu kernel, enabling a

#projectdiscovery #EN #2023 #Ubuntu #kernel #CVE-2023-2640 #CVE-2023-32629

·blog.projectdiscovery.io·Nov 14, 2023

GameOver(lay) - Local Privilege Escalation in Ubuntu Kernel

Rançongiciel Phobos : arrestation de deux Russes, soupçonnés d’une dizaine d’attaques en France

Le couple, arrêté en Italie, est soupçonné de travailler depuis au moins 2020 avec ce groupe. Peu médiatique, Phobos compte tout de même près de deux cents victimes répertoriées sur le territoire.

#lemonde #FR #2023 #Phobos #Rançongiciel #Russes #arrêté

·lemonde.fr·Nov 13, 2023

Rançongiciel Phobos : arrestation de deux Russes, soupçonnés d’une dizaine d’attaques en France

Malaysian Police Dismantle “BulletProftLink” Phishing Operation

Several arrested and servers seized

#infosecurity-magazine #EN #2023 #BulletProftLink #Dismantle #phishing-as-a-service #police #Malaysia

·infosecurity-magazine.com·Nov 13, 2023

Malaysian Police Dismantle “BulletProftLink” Phishing Operation

Bitter Pill: Third-Party Pharmaceutical Vendor Linked to Pharmacy and Health Clinic Cyberattack

Huntress has uncovered a series of unauthorized access, revealing a threat actor using ScreenConnect to infiltrate multiple healthcare organizations.

#huntress #EN #2023 #Pharmaceutical #Vendor #Health #Clinic #Cyberattack #IoCs

·huntress.com·Nov 13, 2023

Bitter Pill: Third-Party Pharmaceutical Vendor Linked to Pharmacy and Health Clinic Cyberattack

Cybersécurité: plus de trois mois pour colmater une faille

Malgré une alerte lancée en juillet, Berne n’a rebouché qu’en novembre un accès à la maquette d’un portail destiné aux entreprises, EasyGov.

#20min #FR #CH #EasyGov #dataleak #maquette #SECO #Xplain

·20min.ch·Nov 13, 2023

Cybersécurité: plus de trois mois pour colmater une faille

Ivanti EPMM CVE-2023-39335/39337

We have discovered two new vulnerabilities in Ivanti Endpoint Manager Mobile. We are reporting these vulnerabilities as CVE-2023-39335 and CVE-2023-39337.

#ivanti #EN #2023 #EPMM #CVE-2023-39335 #CVE-2023-39337

·ivanti.com·Nov 13, 2023

Ivanti EPMM CVE-2023-39335/39337

Détournement de Microsoft et Cloudflare au cours d’une nouvelle attaque de QRishing

Une récente attaque de QRishing a été détectée par Vade. Découvrez l’attaque en détail et les mesures à prendre pour protéger votre entreprise.

#vadesecure #FR #2023 #QR #phishing #Microsoft

·vadesecure.com·Nov 13, 2023

Détournement de Microsoft et Cloudflare au cours d’une nouvelle attaque de QRishing

Here’s How Violent Extremists Are Exploiting Generative AI Tools

Experts are finding thousands of examples of AI-created content every week that could allow terrorist groups and other violent extremists to bypass automated detection systems. #algorithms #censorship #content #disinformation #israel-hamas #moderation #terrorism #war

#wired #EN #2023 #content #censorship #moderation #war #israel-hamas #algorithms #terrorism #disinformation

·wired.com·Nov 13, 2023

Here’s How Violent Extremists Are Exploiting Generative AI Tools

DP World: Australian ports to remain closed as AFP investigates cybersecurity breach

DP World: Australian ports to remain closed as AFP investigates cybersecurity breach"

#smh #EN #2023 #cybersecurity #breach #Australia #DPWorld

·smh.com.au·Nov 12, 2023

DP World: Australian ports to remain closed as AFP investigates cybersecurity breach

Boeing breach: LockBit leaks 50 GB of data

The Boeing Company, a jetliner manufacturer and US defense contractor, had the company’s data leaked by the LockBit ransomware gang. So far, around 50 gigabytes of compressed data was uploaded LockBit's dark web blog. LockBit has allegedly started leaking data that the gang stole from Boeing in late October. The Cybernews research team noted there's around of 50 GB of supposedly Boeing's data. Bulk of the data appears to be various backups.

#cybernews #EN #LockBit #Boeing #DataLeak #ransomware

·cybernews.com·Nov 11, 2023

Boeing breach: LockBit leaks 50 GB of data

Apple neglects to patch multiple critical vulnerabilities in macOS

Apple is neglecting to patch high-severity vulnerabilities in open-source components of macOS Sonoma, including curl and LibreSSL.

#intego #EN #2023 #Apple #patch #high-severity #macOS #Sonoma #curl #open-source

·intego.com·Nov 11, 2023

Apple neglects to patch multiple critical vulnerabilities in macOS

CVE-2023-38548

On November 6, 2023, Veeam published an advisory for several vulnerabilities affecting Veeam ONE, an IT monitoring and analytics platform for enterprises. One …

#attackerkb #CVE-2023-38548 #EN #2023 #VeeamONE #Veeam #vulnerability

·attackerkb.com·Nov 10, 2023

CVE-2023-38548

Le Conseil fédéral fixe l’entrée en vigueur de la loi sur la sécurité de l’information

Informations actuelles de l'administration. Tous les communiqués de l'administration fédérale, des départements et des offices.

#admin.ch #FR #CH #2023 #Conseilfédéral #loi #securité #information #canton #Confédération #LSI

·admin.ch·Nov 10, 2023

Le Conseil fédéral fixe l’entrée en vigueur de la loi sur la sécurité de l’information

Detecting “Effluence”, an Unauthenticated Confluence Web Shell

Discovering Effluence, a unique web shell accessible on every page of an infected Confluence

#aon #EN #2023 #Effluence #Confluence #webshell #CVE-2023-22515

·aon.com·Nov 10, 2023

Detecting “Effluence”, an Unauthenticated Confluence Web Shell

ICBC hit by ransomware impacting global trades

China's largest bank, ICBC, was hit by ransomware that resulted in disruption of financial services (FS) systems on Thursday Beijing time, according to a notice on its website

#theregister #EN #2023 #ICBC #Bank #China

·theregister.com·Nov 10, 2023

ICBC hit by ransomware impacting global trades

Dozens of npm Packages Caught Attempting to Deploy Reverse Shell

On October 27, Phylum’s automated risk detection platform began alerting us to a series of suspicious publications on npm. Over the course of the following few days, we discovered a campaign involving at least 48 different publications. These packages, deceptively named to appear legitimate, contained obfuscated JavaScript designed to

#phylum #EN #2023 #npm #Reverse #Shell #Supply-chain-attack

·blog.phylum.io·Nov 10, 2023

Dozens of npm Packages Caught Attempting to Deploy Reverse Shell

Nude “before and after” photos stolen from plastic surgeon, posted online, and sent to victims' family and friends

The FBI is investigating a data breach where cybercriminals were able to steal patients’ records from a Las Vegas plastic surgeon's office and then publish them online.

#malwarebytes #EN #2023 #FBI #plastic #surgeon #DataLeak #US #photos #nudes #online

·malwarebytes.com·Nov 10, 2023

Nude “before and after” photos stolen from plastic surgeon, posted online, and sent to victims' family and friends

Ransomware attack on ICBC disrupts trades in US Treasury market

Chinese bank says it has contained a hack that affected some fixed income and equities transactions

#ft #EN #2023 #ICBC #Chinese #Industrial #and #Commercial #Bank #of #China #ransomware

·ft.com·Nov 10, 2023

Ransomware attack on ICBC disrupts trades in US Treasury market

Cloudflare website downed by DDoS attack claimed by Anonymous Sudan

Cloudflare is investigating an ongoing outage causing 'We're sorry

#bleepingcomputer #EN #2023 #Cloudflare #Google #Outage #Technology

·bleepingcomputer.com·Nov 10, 2023

Cloudflare website downed by DDoS attack claimed by Anonymous Sudan

Microsoft Temporarily Blocked Internal Access to ChatGPT, Citing Data Concerns

The company later restored access to the chatbot, which is owned by OpenAI.

#wsj #EN #2023 #Microsoft #Temporarily #Blocked #ChatGPT #OpenAI

·wsj.com·Nov 10, 2023

Microsoft Temporarily Blocked Internal Access to ChatGPT, Citing Data Concerns

SysAid On-Prem Software CVE-2023-47246 Vulnerability Disclosure

On Nov 2nd, our security team received reports regarding a potential vulnerability in our on-premise software which was being actively exploited. We immediately initiated our incident response protocol and began proactively communicating with our on-premise customers to ensure they could implement a mitigation solution we had identified. We engaged Profero, a cyber security incident response company, to assist us in our investigation. The investigation determined that there was a zero-day vulnerability in the SysAid on-premises software. We urge all customers with SysAid on-prem server installations to ensure that your SysAid systems are updated to version 23.3.36, which remediates the identified vulnerability, and conduct a comprehensive compromise assessment of your network to look for any indicators further discussed below. Should you identify any indicators, take immediate action and follow your incident response protocols.

#profero #EN #2023 #CVE-2023-47246 #disclosure #vulnerability #SysAid

·profero.io·Nov 10, 2023

SysAid On-Prem Software CVE-2023-47246 Vulnerability Disclosure