Search cyberveille.decio.ch

Found 1498 bookmarks

Custom sorting

US-Canada water commission confirms 'cybersecurity incident"

NoEscape promises 'colossal wave of problems' if IJC doesn't pay up The International Joint Commission, a body that manages water rights along the US-Canada border, has confirmed its IT security was targeted, after a ransomware gang claimed it stole 80GB of data from the organization.

#theregister #EN #2023 #IJC #ransommware #NoEscape #US-Canada #border #water #Critical-infrastructure

·theregister.com·Sep 20, 2023

US-Canada water commission confirms 'cybersecurity incident"

[CVE-2023-42752] integer overflow in Linux kernel leading to exploitable memory access

I recently found an integer overflow in the Linux kernel, which leads to the kernel allocating skb_shared_info in the userspace, which is exploitable in systems without SMAP protection since skb_shared_info contains references to function pointers.

#seclists #EN #2023 #CVE-2023-42752 #integer #overflow #Linux #kernel

·seclists.org·Sep 19, 2023

[CVE-2023-42752] integer overflow in Linux kernel leading to exploitable memory access

Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT

A phony proof-of-concept (PoC) code for CVE-2023-40477 delivered a payload of VenomRAT. We detail our findings, including an analysis of the malicious code.

#unit42 #EN #2023 #PoC #fake #CVE-2023-40477 #VenomRAT #malicious

·unit42.paloaltonetworks.com·Sep 19, 2023

Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT

38TB of data accidentally exposed by Microsoft AI researchers | Wiz Blog

Wiz Research found a data exposure incident on Microsoft’s AI GitHub repository, including over 30,000 internal Microsoft Teams messages – all caused by one misconfigured SAS token

#wiz #EN #2023 #GitHub #Microsoft #leak

·wiz.io·Sep 19, 2023

38TB of data accidentally exposed by Microsoft AI researchers | Wiz Blog

Leaked Microsoft documents hint at new Doom and Dishonored games

Bethesda's roadmap for the fiscal years starting in 2020 and ending in 2024 has made its way online as part of the documents leaked from the FTC v. Microsoft case.

#engadget #EN #2023 #Bethesda #Microsoft #Microsoft-Gaming #Leak #Unredacted

·engadget.com·Sep 19, 2023

Leaked Microsoft documents hint at new Doom and Dishonored games

Microsoft AI Employee Accidentally Leaks 38TB of Data

A software repository on GitHub dedicated to supplying open-source code and AI models for image recognition was left open to manipulation by bad actors thanks to an insecure URL.

#pcmag #EN #2023 #DataLeak #GitHub #Microsoft #38TB

·pcmag.com·Sep 18, 2023

Microsoft AI Employee Accidentally Leaks 38TB of Data

New Python NodeStealer Goes Beyond Facebook Credentials, Now Stealing All Browser Cookies and Login Credentials

Netskope Threat Labs is tracking a campaign that uses malicious Python scripts to steal Facebook users’ credentials and browser data. This campaign targets Facebook business accounts with bogus Facebook messages with a malicious file attached. The attacks are reaching victims mainly in Southern Europe and North America across different segments, led by the manufacturing services and technology sectors.

#netskope #EN #2023 #analysis #Python #NodeStealer #Facebook #Credentials #Login

·netskope.com·Sep 18, 2023

New Python NodeStealer Goes Beyond Facebook Credentials, Now Stealing All Browser Cookies and Login Credentials

BlackCat ransomware hits Azure Storage with Sphynx encryptor

The BlackCat (ALPHV) ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets' Azure cloud storage.

#bleepingcomputer #EN #2023 #BlackCat #ALPHV #Sphynx #encryptor #Azure

·bleepingcomputer.com·Sep 17, 2023

BlackCat ransomware hits Azure Storage with Sphynx encryptor

Ransomware flingers hit Manchester cops in the supply chain • The Register

The UK's Greater Manchester Police (GMP) has admitted that crooks have got their mitts on some of its data after a third-party supplier responsible for ID badges was attacked. According to the Manchester Evening News the stolen data included the names and pictures of police officers held by the supplier for use on thousands of ID badges.

#theregister #EN #2023 #Greater-Manchester-Police #databreach #ransomware #police #UK

·theregister.com·Sep 17, 2023

Ransomware flingers hit Manchester cops in the supply chain • The Register

TikTok fined €345M by Irish DPC for violating children’s privacy

The Irish Data Protection Commission (DPC) fined TikTok €345 million ($368 million) for violating the privacy of children.

#securityaffairs #EN #2023 #TikTok #fines #Ireland #privacy #DPC #childrens

·securityaffairs.com·Sep 17, 2023

TikTok fined €345M by Irish DPC for violating children’s privacy

When MFA isn't actually MFA

Due to a recent Google change, MFA isn't truly MFA.

#retool #EN #2023 #incident #MFA #SMS-based #phishing #attack #GoogleAuthenticator

·retool.com·Sep 16, 2023

When MFA isn't actually MFA

How Google Authenticator made one company’s network breach much, much worse

Google's app for generating MFA codes syncs to user accounts by default. Who knew?

#arstechnica #EN #2023 #MFA #GoogleAuthenticator

·arstechnica.com·Sep 16, 2023

How Google Authenticator made one company’s network breach much, much worse

Can't Be Contained: Finding a Command Injection Vulnerability in Kubernetes

Akamai researchers discover a critical vulnerability in Kubernetes that can lead to remote code execution.

#akamai #EN #2023 #Kubernetes #command-injection #vulnerability #YAML #rce #remote-code-execution

·akamai.com·Sep 15, 2023

Can't Be Contained: Finding a Command Injection Vulnerability in Kubernetes

Update Adobe Acrobat and Reader to Patch Actively Exploited Vulnerability

Adobe's September 2023 update addresses a new zero-day vulnerability (CVE-2023-26369) in Acrobat and Reader that attackers are exploiting in the wild.

#TheHackersNews #2023 #EN #Adobe #Acrobat #CVE-2023-26369

·thehackernews.com·Sep 14, 2023

Update Adobe Acrobat and Reader to Patch Actively Exploited Vulnerability

Argent russe: la place financière suisse rattrapée par une fuite de données

Un ancien ministre de Vladimir Poutine et la famille du patron d'une entreprise publique russe, impliquée dans l'effort de guerre, se retrouvent dans les données inédites repérées par la RTS. Des liens avec la place financière suisse sont mis en lumière. Ces révélations proviennent des documents confidentiels de la société de gestion de fortune zurichoise Finaport. Tout commence en janvier 2023 lorsque l'entreprise, sponsor officiel de l'Open de tennis de Zoug, est victime d'un piratage, comme le révélait le site Watson.

#rts #FR #CH #2023 #Russie #Argent #exfiltration #journalisme #enquête #Finaport

·rts.ch·Sep 14, 2023

Argent russe: la place financière suisse rattrapée par une fuite de données

macOS MetaStealer | New Family of Obfuscated Go Infostealers Spread in Targeted Attacks

The rise of macOS infostealers continues with the latest entrant aiming to compromise business environments with targeted social engineering lures.

#sentinelone #EN #2023 #macOS #infostealer #MetaStealer

·sentinelone.com·Sep 14, 2023

macOS MetaStealer | New Family of Obfuscated Go Infostealers Spread in Targeted Attacks

CVE-2023-38146: Arbitrary Code Execution via Windows Themes

This is a fun bug I found while poking around at weird Windows file formats. It's a kind of classic Windows style vulnerability featuring broken signing, sketchy DLL loads, file races, cab files, and Mark-of-the-Web silliness. It was also my first experience submitting to the MSRC Windows bug bounty since leaving Microsoft in April of 2022.

#exploits.forsale #EN #2023 #CVE-2023-38146 #Arbitrary #Code #Execution #themebleed #Windows #Themes

·exploits.forsale·Sep 14, 2023

CVE-2023-38146: Arbitrary Code Execution via Windows Themes

Trojanized Free Download Manager found to contain a Linux backdoor

Kaspersky researchers analyzed a Linux backdoor disguised as Free Download Manager software that remained under the radar for at least three years.

#securelist #EN #2023 #Backdoor #Linux #Malware #Supply-chain-attack #Download-Manager

·securelist.com·Sep 14, 2023

Trojanized Free Download Manager found to contain a Linux backdoor

Threat actor leaks sensitive data belonging to Airbus

The multinational aerospace corporation Airbus has launched an investigation into the recent leak of information allegedly stolen from the company. The multinational aerospace corporation Airbus announced that it is investigating a data leak after cybersecurity firm Hudson Rock reported that a hacker posted information on thousands of the company’s vendors to the dark web.

#securityaffairs #EN #2023 #Airbus #leak #databreach

·securityaffairs.com·Sep 14, 2023

Threat actor leaks sensitive data belonging to Airbus

Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks

Mozilla released emergency security updates today to fix a critical zero-day vulnerability exploited in the wild, impacting its Firefox web browser and Thunderbird email client.

#bleepingcomputer #EN #2023 #CVE-2023-4863 #WebP #Firefox #patch

·bleepingcomputer.com·Sep 14, 2023

Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks

Critical WebP bug: many apps, not just browsers, under threat

The heap buffer overflow (CVE-2023-4863) vulnerability in the WebP Codec is being actively exploited in the wild.

#stackdiary.com #EN #2023 #CVE-2023-4863 #WebP #Codec

·stackdiary.com·Sep 14, 2023

Critical WebP bug: many apps, not just browsers, under threat

With 0-days hitting Chrome, iOS, and dozens more this month, is no software safe? | Ars Technica

With 70 zero-days uncovered so far this year, 2023 is on track to set a new record.

#arstechnica #EN #2023 #0-days #record

·arstechnica.com·Sep 13, 2023

With 0-days hitting Chrome, iOS, and dozens more this month, is no software safe? | Ars Technica

PSA: Ongoing Webex malvertising campaign drops BatLoader

A new malvertising campaign is targeting corporate users who are downloading the popular web conferencing software Webex. Threat actors have bought an advert that impersonates Cisco's brand and is displayed first when performing a Google search.

#malwarebytes #EN #2023 #Webex #malvertising #campaign #BatLoader

·malwarebytes.com·Sep 13, 2023

PSA: Ongoing Webex malvertising campaign drops BatLoader

Attacker combines phone, email lures into believable, complex attack chain

A social engineering phone call lends authenticity to the attacker’s malicious email

#sophos #EN #2023 #switzerland #phone #email #lures #phishing

·news.sophos.com·Sep 13, 2023

Attacker combines phone, email lures into believable, complex attack chain

Ransomware crew hits Save The Children, steals 7TB of data

Cybercrime crew BianLian says it has broken into the IT systems of a top nonprofit and stolen a ton of files, including what the miscreants claim is financial, health, and medical data. As highlighted by VX-Underground and Emsisoft threat analyst Brett Callow earlier today, BianLian bragged on its website it had hit an organization that, based on the gang's description of its unnamed victim, looks to be Save The Children International. The NGO, which employs about 25,000 people, says it has helped more than a billion kids since it was founded in 1919.

#theregister #EN #2023 #BianLian #exfiltration #ONG #SavetheChildren #databreach

·theregister.com·Sep 13, 2023

Ransomware crew hits Save The Children, steals 7TB of data

Microsoft to defend customers on AI copyright challenges

Microsoft will pay legal damages on behalf of customers using its artificial intelligence (AI) products if they are sued for copyright infringement for the output generated by such systems, the company said on Thursday.

·reuters.com·Sep 12, 2023

Microsoft to defend customers on AI copyright challenges

ChatGPT fails in languages like Tamil and Bengali

Outside of English, ChatGPT makes up words, fails logic tests, and can't do basic information retrieval.

#restofworld #EN #2023 #ChatGPT #fails #Tamil #Bengali

·restofworld.org·Sep 12, 2023

ChatGPT fails in languages like Tamil and Bengali

KNVB paid ransom to prevent cyber criminals from publishing footballers' passports

The Dutch football association KNVB paid the ransom demanded by cyber criminals in a ransomware attack in April. The hackers stole Dutch and other football players’ passports, ID cards, home addresses, and salary slips and threatened to publish the data if the football association didn’t pay the ransom, the KNVB said on Tuesday.

#nltimes #EN #2023 #Dutch #football #association #KNVB #paid #ransomware #LockBit

·nltimes.nl·Sep 12, 2023

KNVB paid ransom to prevent cyber criminals from publishing footballers' passports

Cybersecurity issue prompts computer shutdowns at MGM Resorts properties across US

Casino and hotel giant MGM Resorts International says a cybersecurity issue led to the shutdown of computer systems at its properties across the U.S.

#apnews #EN #2023 #Casino #MGM #Resorts #US #Cybersecurity

·apnews.com·Sep 12, 2023

Cybersecurity issue prompts computer shutdowns at MGM Resorts properties across US

TikTok : une analyse technique helvétique des risques de sécurité

Suite aux interdictions d’utilisation de TikTok à du personnel de l’UE, le nouvel Institut national suisse pour les tests de cybersécurité a publié les résultats de ses tests techniques sur l’application, recommandant de considérer son utilisation avec précaution.

#swissprivacy #FR #CH #2023 #legal #TikTok

·swissprivacy.law·Sep 12, 2023

TikTok : une analyse technique helvétique des risques de sécurité