Cette entreprise peut géolocaliser 3 milliards de smartphones en permanence

Cette entreprise peut géolocaliser 3 milliards de smartphones en permanence,

En récoltant les données GPS envoyées par les applications mobiles, Anomaly Six s’est construit un réseau de surveillance mondial particulièrement impressionnant. Et probablement illégal.

,

En récoltant les données GPS envoyées par les applications mobiles, Anomaly Six s’est construit un réseau de surveillance mondial particulièrement impressionnant. Et probablement illégal.

, ,
https://www.01net.com/actualites/cette-entreprise-peut-geolocaliser-3milliards-de-smartphones-en-permanence-2056012.html

Gold Ulrick Hackers Still in Action Despite Massive Conti Ransomware Leak

Gold Ulrick Hackers Still in Action Despite Massive Conti Ransomware Leak,

The infamous ransomware group known as Conti has continued its onslaught against entities despite suffering a massive data leak of its own earlier this year, according to new research.
Conti, attributed to a Russia-based threat actor known as Gold Ulrick, is one of the most prevalent malware strains in the ransomware landscape, accounting for 19% of all attacks during the three-month-period

,

The infamous ransomware group known as Conti has continued its onslaught against entities despite suffering a massive data leak of its own earlier this year, according to new research.
Conti, attributed to a Russia-based threat actor known as Gold Ulrick, is one of the most prevalent malware strains in the ransomware landscape, accounting for 19% of all attacks during the three-month-period

, ,
https://thehackernews.com/2022/04/gold-ulrick-hackers-still-in-action.html

North Korean Hackers Target Journalists with GOLDBACKDOOR Malware

North Korean Hackers Target Journalists with GOLDBACKDOOR Malware,

A state-backed threat actor with ties to the Democratic People’s Republic of Korea (DRPK) has been attributed to a spear-phishing campaign targeting journalists covering the country with the ultimate goal of deploying a backdoor on infected Windows systems.
The intrusions, said to be the work of Ricochet Chollima, resulted in the deployment of a novel malware strain called GOLDBACKDOOR, an

,

A state-backed threat actor with ties to the Democratic People’s Republic of Korea (DRPK) has been attributed to a spear-phishing campaign targeting journalists covering the country with the ultimate goal of deploying a backdoor on infected Windows systems.
The intrusions, said to be the work of Ricochet Chollima, resulted in the deployment of a novel malware strain called GOLDBACKDOOR, an

, ,
https://thehackernews.com/2022/04/north-korean-hackers-target-journalists.html

Iranian Hackers Exploiting VMware RCE Bug to Deploy ‘Core Impact’ Backdoor

Iranian Hackers Exploiting VMware RCE Bug to Deploy ‘Core Impact’ Backdoor

,

An Iranian-linked threat actor known as Rocket Kitten has been observed actively exploiting a recently patched VMware vulnerability to gain initial access and deploy the Core Impact penetration testing tool on vulnerable systems.
Tracked as CVE-2022-22954 (CVSS score: 9.8), the critical issue concerns a case of remote code execution (RCE) vulnerability affecting VMware Workspace ONE Access and

,

An Iranian-linked threat actor known as Rocket Kitten has been observed actively exploiting a recently patched VMware vulnerability to gain initial access and deploy the Core Impact penetration testing tool on vulnerable systems.
Tracked as CVE-2022-22954 (CVSS score: 9.8), the critical issue concerns a case of remote code execution (RCE) vulnerability affecting VMware Workspace ONE Access and

, ,
https://thehackernews.com/2022/04/iranian-hackers-exploiting-vmware-rce.html

Cybersécurité : pourquoi la sécurisation du code source devient un nouveau champ de bataille

Cybersécurité : pourquoi la sécurisation du code source devient un nouveau champ de bataille,

Les programmes regorgent souvent de clés de chiffrement et autres codes d’accès. C’est pourquoi ils sont de plus en plus en ligne de mire des pirates. Explications.

,

Les programmes regorgent souvent de clés de chiffrement et autres codes d’accès. C’est pourquoi ils sont de plus en plus en ligne de mire des pirates. Explications.

, ,
https://www.01net.com/actualites/cybersecurite-pourquoi-la-securisation-du-code-source-devient-un-nouveau-champ-de-bataille-2055990.html

Researchers Report Critical RCE Vulnerability in Google’s VirusTotal Platform

Researchers Report Critical RCE Vulnerability in Google’s VirusTotal Platform

,

Security researchers have disclosed a security vulnerability in the VirusTotal platform that could have been potentially weaponized to achieve remote code execution (RCE).
The flaw, now patched, made it possible to « execute commands remotely within VirusTotal platform and gain access to its various scans capabilities, » Cysource researchers Shai Alfasi and Marlon Fabiano da Silva said in a report

,

Security researchers have disclosed a security vulnerability in the VirusTotal platform that could have been potentially weaponized to achieve remote code execution (RCE).
The flaw, now patched, made it possible to « execute commands remotely within VirusTotal platform and gain access to its various scans capabilities, » Cysource researchers Shai Alfasi and Marlon Fabiano da Silva said in a report

, ,
https://thehackernews.com/2022/04/researchers-report-critical-rce.html

Critical Bug in Everscale Wallet Could’ve Let Attackers Steal Cryptocurrencies

Critical Bug in Everscale Wallet Could’ve Let Attackers Steal Cryptocurrencies

,

A security vulnerability has been disclosed in the web version of the Ever Surf wallet that, if successfully weaponized, could allow an attacker to gain full control over a victim’s wallet.
« By exploiting the vulnerability, it’s possible to decrypt the private keys and seed phrases that are stored in the browser’s local storage, » Israeli cybersecurity company Check Point said in a report shared

,

A security vulnerability has been disclosed in the web version of the Ever Surf wallet that, if successfully weaponized, could allow an attacker to gain full control over a victim’s wallet.
« By exploiting the vulnerability, it’s possible to decrypt the private keys and seed phrases that are stored in the browser’s local storage, » Israeli cybersecurity company Check Point said in a report shared

, ,
https://thehackernews.com/2022/04/critical-bug-in-everscale-wallet.html

New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices

New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices,

A new variant of an IoT botnet called BotenaGo has emerged in the wild, specifically singling out Lilin security camera DVR devices to infect them with Mirai malware.
Dubbed « Lilin Scanner » by Nozomi Networks, the latest version is designed to exploit a two-year-old critical command injection vulnerability in the DVR firmware that was patched by the Taiwanese company in February 2020.
<!-

,

A new variant of an IoT botnet called BotenaGo has emerged in the wild, specifically singling out Lilin security camera DVR devices to infect them with Mirai malware.
Dubbed « Lilin Scanner » by Nozomi Networks, the latest version is designed to exploit a two-year-old critical command injection vulnerability in the DVR firmware that was patched by the Taiwanese company in February 2020.
<!-

, ,
https://thehackernews.com/2022/04/new-botenago-malware-variant-targeting.html

FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide

FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide,

The U.S. Federal Bureau of Investigation (FBI) is sounding the alarm on the BlackCat ransomware-as-a-service (RaaS), which it said victimized at least 60 entities worldwide between as of March 2022 since its emergence last November.
Also called ALPHV and Noberus, the ransomware is notable for being the first-ever malware written in the Rust programming language that’s known to be memory safe and

,

The U.S. Federal Bureau of Investigation (FBI) is sounding the alarm on the BlackCat ransomware-as-a-service (RaaS), which it said victimized at least 60 entities worldwide between as of March 2022 since its emergence last November.
Also called ALPHV and Noberus, the ransomware is notable for being the first-ever malware written in the Rust programming language that’s known to be memory safe and

, ,
https://thehackernews.com/2022/04/fbi-warns-of-blackcat-ransomware-that.html

T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code

T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code,

Telecom company T-Mobile on Friday confirmed that it was the victim of a security breach in March after the LAPSUS$ mercenary gang managed to gain access to its networks.
The acknowledgment came after investigative journalist Brian Krebs shared internal chats belonging to the core members of the group indicating that LAPSUS$ breached the company several times in March prior to the arrest of its

,

Telecom company T-Mobile on Friday confirmed that it was the victim of a security breach in March after the LAPSUS$ mercenary gang managed to gain access to its networks.
The acknowledgment came after investigative journalist Brian Krebs shared internal chats belonging to the core members of the group indicating that LAPSUS$ breached the company several times in March prior to the arrest of its

, ,
https://thehackernews.com/2022/04/t-mobile-admits-lapsus-hackers-gained.html