News

Researchers Find New Evidence Linking Kwampirs Malware to Shamoon APT Hackers

Researchers Find New Evidence Linking Kwampirs Malware to Shamoon APT Hackers,

New findings released last week showcase the overlapping source code and techniques between the operators of Shamoon and Kwampirs, indicating that they « are the same group or really close collaborators. »
« Research evidence shows identification of co-evolution between both Shamoon and Kwampirs malware families during the known timeline, » Pablo Rincón Crespo of Cylera Labs said.
« If Kwampirs is

,

New findings released last week showcase the overlapping source code and techniques between the operators of Shamoon and Kwampirs, indicating that they « are the same group or really close collaborators. »
« Research evidence shows identification of co-evolution between both Shamoon and Kwampirs malware families during the known timeline, » Pablo Rincón Crespo of Cylera Labs said.
« If Kwampirs is

, ,
https://thehackernews.com/2022/03/researchers-find-new-evidence-linking.html

• 14 mars, 2022
• Non classé
• More

Multiple Security Flaws Discovered in Popular Software Package Managers

Multiple Security Flaws Discovered in Popular Software Package Managers,

Multiple security vulnerabilities have been disclosed in popular package managers that, if potentially exploited, could be abused to run arbitrary code and access sensitive information, including source code and access tokens, from compromised machines.
It’s, however, worth noting that the flaws require the targeted developers to handle a malicious package in conjunction with one of the affected

,

Multiple security vulnerabilities have been disclosed in popular package managers that, if potentially exploited, could be abused to run arbitrary code and access sensitive information, including source code and access tokens, from compromised machines.
It’s, however, worth noting that the flaws require the targeted developers to handle a malicious package in conjunction with one of the affected

, ,
https://thehackernews.com/2022/03/multiple-security-flaws-discovered-in.html

• 11 mars, 2022
• Non classé
• More

Les Russes se ruent sur les VPN pour échapper à la censure

Les Russes se ruent sur les VPN pour échapper à la censure,

Le téléchargement d’applis mobiles de VPN a été multiplié par dix depuis que le gouvernement russe a mis une chape de plomb sur la diffusion d’informations.

,

Le téléchargement d’applis mobiles de VPN a été multiplié par dix depuis que le gouvernement russe a mis une chape de plomb sur la diffusion d’informations.

, ,
https://www.01net.com/actualites/les-russes-se-ruent-sur-les-vpn-pour-echapper-a-la-censure-2055498.html

• 11 mars, 2022
• Non classé
• More

Russian Pushing New State-run TLS Certificate Authority to Deal With Sanctions

Russian Pushing New State-run TLS Certificate Authority to Deal With Sanctions,

The Russian government has established its own TLS certificate authority (CA) to address issues with accessing websites that have arisen in the wake of sanctions imposed by the west following the country’s unprovoked military invasion of Ukraine.
According to a message posted on the Gosuslugi public services portal, the Ministry of Digital Development is expected to provide a domestic

,

The Russian government has established its own TLS certificate authority (CA) to address issues with accessing websites that have arisen in the wake of sanctions imposed by the west following the country’s unprovoked military invasion of Ukraine.
According to a message posted on the Gosuslugi public services portal, the Ministry of Digital Development is expected to provide a domestic

, ,
https://thehackernews.com/2022/03/russian-pushing-its-new-state-run-tls.html

• 11 mars, 2022
• Non classé
• More

Here’s How to Find if WhatsApp Web Code on Your Browser Has Been Hacked

Here’s How to Find if WhatsApp Web Code on Your Browser Has Been Hacked

,

Meta Platforms’ WhatsApp and Cloudflare have banded together for a new initiative called Code Verify to validate the authenticity of the messaging service’s web app on desktop computers.
Available in the form of a Chrome and Edge browser extension, the open-source add-on is designed to « automatically verif[y] the authenticity of the WhatsApp Web code being served to your browser, » Facebook said 

,

Meta Platforms’ WhatsApp and Cloudflare have banded together for a new initiative called Code Verify to validate the authenticity of the messaging service’s web app on desktop computers.
Available in the form of a Chrome and Edge browser extension, the open-source add-on is designed to « automatically verif[y] the authenticity of the WhatsApp Web code being served to your browser, » Facebook said 

, ,
https://thehackernews.com/2022/03/heres-how-to-find-if-whatsapp-web-code.html

• 11 mars, 2022
• Non classé
• More

Iranian Hackers Targeting Turkey and Arabian Peninsula in New Malware Campaign

Iranian Hackers Targeting Turkey and Arabian Peninsula in New Malware Campaign,

The Iranian state-sponsored threat actor known as MuddyWater has been attributed to a new swarm of attacks targeting Turkey and the Arabian Peninsula with the goal of deploying remote access trojans (RATs) on compromised systems.
« The MuddyWater supergroup is highly motivated and can use unauthorized access to conduct espionage, intellectual property theft, and deploy ransomware and destructive

,

The Iranian state-sponsored threat actor known as MuddyWater has been attributed to a new swarm of attacks targeting Turkey and the Arabian Peninsula with the goal of deploying remote access trojans (RATs) on compromised systems.
« The MuddyWater supergroup is highly motivated and can use unauthorized access to conduct espionage, intellectual property theft, and deploy ransomware and destructive

, ,
https://thehackernews.com/2022/03/iranian-hackers-targeting-turkey-and.html

• 10 mars, 2022
• Non classé
• More

New Exploit Bypasses Existing Spectre-v2 Mitigations in Intel, AMD, Arm CPUs

New Exploit Bypasses Existing Spectre-v2 Mitigations in Intel, AMD, Arm CPUs,

Researchers have disclosed a new technique that could be used to circumvent existing hardware mitigations in modern processors from Intel, AMD, and Arm and stage speculative execution attacks such as Spectre to leak sensitive information from host memory.
Attacks like Spectre are designed to break the isolation between different applications by taking advantage of an optimization technique 

,

Researchers have disclosed a new technique that could be used to circumvent existing hardware mitigations in modern processors from Intel, AMD, and Arm and stage speculative execution attacks such as Spectre to leak sensitive information from host memory.
Attacks like Spectre are designed to break the isolation between different applications by taking advantage of an optimization technique 

, ,
https://thehackernews.com/2022/03/new-exploit-bypasses-existing-spectre.html

• 10 mars, 2022
• Non classé
• More

Ukrainian Hacker Linked to REvil Ransomware Attacks Extradited to United States

Ukrainian Hacker Linked to REvil Ransomware Attacks Extradited to United States,

Yaroslav Vasinskyi, a Ukrainian national, linked to the Russia-based REvil ransomware group has been extradited to the U.S. to face charges for his role in carrying out the file-encrypting malware attacks against several companies, including Kaseya last July.
The 22-year-old had been previously arrested in Poland in October 2021, prompting the U.S. Justice Department (DoJ) to file charges of

,

Yaroslav Vasinskyi, a Ukrainian national, linked to the Russia-based REvil ransomware group has been extradited to the U.S. to face charges for his role in carrying out the file-encrypting malware attacks against several companies, including Kaseya last July.
The 22-year-old had been previously arrested in Poland in October 2021, prompting the U.S. Justice Department (DoJ) to file charges of

, ,
https://thehackernews.com/2022/03/ukrainian-hacker-linked-to-revil.html

• 10 mars, 2022
• Non classé
• More

Emotet Botnet’s Latest Resurgence Spreads to Over 100,000 Computers

Emotet Botnet’s Latest Resurgence Spreads to Over 100,000 Computers

,

The insidious Emotet botnet, which staged a return in November 2021 after a 10-month-long hiatus, is once again exhibiting signs of steady growth, amassing a swarm of over 100,000 infected hosts for perpetrating its malicious activities.
« While Emotet has not yet attained the same scale it once had, the botnet is showing a strong resurgence with a total of approximately 130,000 unique bots

,

The insidious Emotet botnet, which staged a return in November 2021 after a 10-month-long hiatus, is once again exhibiting signs of steady growth, amassing a swarm of over 100,000 infected hosts for perpetrating its malicious activities.
« While Emotet has not yet attained the same scale it once had, the botnet is showing a strong resurgence with a total of approximately 130,000 unique bots

, ,
https://thehackernews.com/2022/03/emotet-botnets-latest-resurgence.html

• 10 mars, 2022
• Non classé
• More

Voici les principales cybermenaces auxquelles les Français sont confrontés au quotidien

Voici les principales cybermenaces auxquelles les Français sont confrontés au quotidien,

L’hameçonnage figure, sans surprise, en tête des malveillances rencontrées par les internautes français. Parmi les scénarios les plus fréquents figurent la fausse infraction pédopornographique et le support technique bidon.

,

L’hameçonnage figure, sans surprise, en tête des malveillances rencontrées par les internautes français. Parmi les scénarios les plus fréquents figurent la fausse infraction pédopornographique et le support technique bidon.

, ,
https://www.01net.com/actualites/voici-les-principales-cybermenaces-auxquelles-les-francais-sont-confrontes-au-quotidien-2055460.html

• 10 mars, 2022
• Non classé
• More