Lockbit, champion incontesté des ransomwares ! Il chiffre vos données dix fois plus vite que la concurrence

Lockbit, champion incontesté des ransomwares ! Il chiffre vos données dix fois plus vite que la concurrence,

Ce logiciel malveillant peut verrouiller 17 000 fichiers par minute. C’est dix fois plus que la vitesse de chiffrement moyenne constatée au sein des rançongiciels.

,

Ce logiciel malveillant peut verrouiller 17 000 fichiers par minute. C’est dix fois plus que la vitesse de chiffrement moyenne constatée au sein des rançongiciels.

, ,
https://www.01net.com/actualites/lockbit-champion-inconteste-des-ransomwares-il-chiffre-vos-donnees-dix-fois-plus-vite-que-la-concurrence-2055628.html

VMware Issues Patches for Critical Flaws Affecting Carbon Black App Control

VMware Issues Patches for Critical Flaws Affecting Carbon Black App Control,

VMware on Wednesday released software updates to plug two critical security vulnerabilities affecting its Carbon Black App Control platform that could be abused by a malicious actor to execute arbitrary code on affected installations in Windows systems.
Tracked as CVE-2022-22951 and CVE-2022-22952, both the flaws are rated 9.1 out of a maximum of 10 on the CVSS vulnerability scoring system.

,

VMware on Wednesday released software updates to plug two critical security vulnerabilities affecting its Carbon Black App Control platform that could be abused by a malicious actor to execute arbitrary code on affected installations in Windows systems.
Tracked as CVE-2022-22951 and CVE-2022-22952, both the flaws are rated 9.1 out of a maximum of 10 on the CVSS vulnerability scoring system.

, ,
https://thehackernews.com/2022/03/vmware-issues-patches-for-critical.html

Chinese ‘Mustang Panda’ Hackers Spotted Deploying New ‘Hodur’ Malware

Chinese ‘Mustang Panda’ Hackers Spotted Deploying New ‘Hodur’ Malware

,

A China-based advanced persistent threat (APT) known as Mustang Panda has been linked to an ongoing cyberespionage campaign using a previously undocumented variant of the PlugX remote access trojan on infected machines.
Slovak cybersecurity firm ESET dubbed the new version Hodur, owing to its resemblance to another PlugX (aka Korplug) variant called THOR that came to light in July 2021.
« Most

,

A China-based advanced persistent threat (APT) known as Mustang Panda has been linked to an ongoing cyberespionage campaign using a previously undocumented variant of the PlugX remote access trojan on infected machines.
Slovak cybersecurity firm ESET dubbed the new version Hodur, owing to its resemblance to another PlugX (aka Korplug) variant called THOR that came to light in July 2021.
« Most

, ,
https://thehackernews.com/2022/03/chinese-mustang-panda-hackers-spotted.html

Okta : le mystère de son piratage s’éclaircit, mais des centaines de sociétés sont toujours menacées

Okta : le mystère de son piratage s’éclaircit, mais des centaines de sociétés sont toujours menacées

,

Microsoft et Okta ont confirmé le piratage qui, dans les deux cas, provient de la compromission d’un unique compte d’utilisateur. L’éditeur de Redmond minimise l’impact. Chez Okta, c’est une autre affaire.

,

Microsoft et Okta ont confirmé le piratage qui, dans les deux cas, provient de la compromission d’un unique compte d’utilisateur. L’éditeur de Redmond minimise l’impact. Chez Okta, c’est une autre affaire.

, ,
https://www.01net.com/actualites/okta-le-mystere-de-son-piratage-s-eclaircit-mais-des-centaines-de-societes-sont-toujours-menacees-2055615.html

New Variant of Chinese Gimmick Malware Targeting macOS Users

New Variant of Chinese Gimmick Malware Targeting macOS Users,

Researchers have disclosed details of a newly discovered macOS variant of a malware implant developed by a Chinese espionage threat actor known to strike attack organizations across Asia.
Attributing the attacks to a group tracked as Storm Cloud, cybersecurity firm Volexity characterized the new malware, dubbed Gimmick, a « feature-rich, multi-platform malware family that uses public cloud

,

Researchers have disclosed details of a newly discovered macOS variant of a malware implant developed by a Chinese espionage threat actor known to strike attack organizations across Asia.
Attributing the attacks to a group tracked as Storm Cloud, cybersecurity firm Volexity characterized the new malware, dubbed Gimmick, a « feature-rich, multi-platform malware family that uses public cloud

, ,
https://thehackernews.com/2022/03/new-variant-of-chinese-gimmick-malware.html

Use This Definitive RFP Template to Effectively Evaluate XDR solutions

Use This Definitive RFP Template to Effectively Evaluate XDR solutions,

A new class of security tools is emerging that promises to significantly improve the effectiveness and efficiency of threat detection and response.

Emerging Extended Detection and Response (XDR) solutions aim to aggregate and correlate telemetry from multiple detection controls and then synthesize response actions.

XDR has been referred to as the next step in the evolution of Endpoint

,

A new class of security tools is emerging that promises to significantly improve the effectiveness and efficiency of threat detection and response.

Emerging Extended Detection and Response (XDR) solutions aim to aggregate and correlate telemetry from multiple detection controls and then synthesize response actions.

XDR has been referred to as the next step in the evolution of Endpoint

, ,
https://thehackernews.com/2020/07/extended-detection-response.html

Over 200,000 MicroTik Routers Worldwide Are Under the Control of Botnet Malware

Over 200,000 MicroTik Routers Worldwide Are Under the Control of Botnet Malware,

Vulnerable routers from MikroTik have been misused to form what cybersecurity researchers have called one of the largest botnet-as-a-service cybercrime operations seen in recent years. 
According to a new piece of research published by Avast, a cryptocurrency mining campaign leveraging the new-disrupted Glupteba botnet as well as the infamous TrickBot malware were all distributed using the same

,

Vulnerable routers from MikroTik have been misused to form what cybersecurity researchers have called one of the largest botnet-as-a-service cybercrime operations seen in recent years. 
According to a new piece of research published by Avast, a cryptocurrency mining campaign leveraging the new-disrupted Glupteba botnet as well as the infamous TrickBot malware were all distributed using the same

, ,
https://thehackernews.com/2022/03/over-200000-microtik-routers-worldwide.html

La Russie préparerait des cyberattaques sur des infrastructures critiques, selon les Etats-Unis

La Russie préparerait des cyberattaques sur des infrastructures critiques, selon les Etats-Unis,

Les agences de renseignement américaines ont détecté des activités préparatoires qui laissent présager un passage à l’acte. Plusieurs centaines d’entreprises nord américaines ont d’ores et déjà été briefées.

,

Les agences de renseignement américaines ont détecté des activités préparatoires qui laissent présager un passage à l’acte. Plusieurs centaines d’entreprises nord américaines ont d’ores et déjà été briefées.

, ,
https://www.01net.com/actualites/la-russie-preparerait-des-cyberattaques-sur-des-infrastructures-critiques-selon-les-etats-unis-2055605.html

Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group

Microsoft and Okta Confirm Breach by LAPSUS$ Extortion Group,

Microsoft on Tuesday confirmed that the LAPSUS$ extortion-focused hacking crew had gained « limited access » to its systems, as authentication services provider Okta revealed that nearly 2.5% of its customers have been potentially impacted in the wake of the breach.
« No customer code or data was involved in the observed activities, » Microsoft’s Threat Intelligence Center (MSTIC) said, adding that

,

Microsoft on Tuesday confirmed that the LAPSUS$ extortion-focused hacking crew had gained « limited access » to its systems, as authentication services provider Okta revealed that nearly 2.5% of its customers have been potentially impacted in the wake of the breach.
« No customer code or data was involved in the observed activities, » Microsoft’s Threat Intelligence Center (MSTIC) said, adding that

, ,
https://thehackernews.com/2022/03/microsoft-and-okta-confirm-breach-by.html

Lapsus$ frappe Microsoft, LG et Okta, laissant planer la menace de nombreux autres vols de données

Lapsus$ frappe Microsoft, LG et Okta, laissant planer la menace de nombreux autres vols de données,

Le piratage d’Okta pourrait avoir des répercussions sur de multiples grands comptes, clients de ce fournisseur de services d’accès et d’authentification.

,

Le piratage d’Okta pourrait avoir des répercussions sur de multiples grands comptes, clients de ce fournisseur de services d’accès et d’authentification.

, ,
https://www.01net.com/actualites/lapsusdollar-frappe-microsoft-lg-et-okta-laissant-planer-la-menace-de-nombreux-autres-vols-de-donnees-2055607.html