Vue normale

Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
Aujourd’hui — 14 février 2026Securité

Louis Vuitton, Dior, and Tiffany fined $25 million over data breaches

✇BleepingComputer
Par : Bill Toulas
13 février 2026 à 19:35
South Korea has fined luxury fashion brands Louis Vuitton, Christian Dior Couture, and Tiffany $25 million for failing to implement adequate security measures, which facilitated unauthorized access and the exposure of data belonging to more than 5.5 million customers. [...]

Google Ties Suspected Russian Actor to CANFAIL Malware Attacks on Ukrainian Orgs

✇The Hacker News
Par : [email protected] (The Hacker News)
13 février 2026 à 18:27
A previously undocumented threat actor has been attributed to attacks targeting Ukrainian organizations with malware known as CANFAIL. Google Threat Intelligence Group (GTIG) described the hacking group as possibly affiliated with Russian intelligence services. The threat actor is assessed to have targeted defense, military, government, and energy organizations within the Ukrainian regional and

Google Links China, Iran, Russia, North Korea to Coordinated Defense Sector Cyber Operations

✇The Hacker News
Par : [email protected] (The Hacker News)
13 février 2026 à 17:23
Several state-sponsored actors, hacktivist entities, and criminal groups from China, Iran, North Korea, and Russia have trained their sights on the defense industrial base (DIB) sector, according to findings from Google Threat Intelligence Group (GTIG). The tech giant's threat intelligence division said the adversarial targeting of the sector is centered around four key themes: striking defense

Hier — 13 février 2026Securité

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

✇The Hacker News
Par : [email protected] (The Hacker News)
13 février 2026 à 16:23
A previously unknown threat actor tracked as UAT-9921 has been observed leveraging a new modular framework called VoidLink in its campaigns targeting the technology and financial services sectors, according to findings from Cisco Talos. "This threat actor seems to have been active since 2019, although they have not necessarily used VoidLink over the duration of their activity," researchers Nick

Turning IBM QRadar Alerts into Action with Criminal IP

✇BleepingComputer
Par : Sponsored by Criminal IP
13 février 2026 à 16:05
Criminal IP now integrates with IBM QRadar SIEM and SOAR to bring external IP-based threat intelligence directly into detection and response workflows. See how risk scoring and automated enrichment help SOC teams prioritize high-risk IPs and accelerate investigations without leaving QRadar. [...]

Apple Pay : Caisse d’Épagne et Banque Populaire passent au réseau CB, l’alternative française à Visa et Mastercard

✇Cyberguerre
Par : Nicolas Lellouche
13 février 2026 à 12:37

Dans une interview aux Échos, le groupe BPCE annonce qu'il compte tout faire pour privilégier le réseau français CB au lieu de VISA et Mastercard, les leaders américains. Dès la fin du mois de février, les paiements Apple Pay des clients Banque Populaire et Caisse d'Épargne transiteront par défaut via le réseau français CB.

« Un agent IA a publié un article à charge contre moi », un développeur raconte la folle histoire qui a failli nuire à sa réputation

✇Cyberguerre
Par : Amine Baba Aissa
13 février 2026 à 12:21

Dans un article de blog publié le 12 février 2026, Scott Shambaugh, mainteneur bénévole de Matplotlib raconte comment un agent IA a tenté de mettre à mal sa réputation en publiant un billet de blog après le refus d'une contribution de code.

Malicious Chrome Extensions Caught Stealing Business Data, Emails, and Browsing History

✇The Hacker News
Par : [email protected] (The Hacker News)
13 février 2026 à 12:25
Cybersecurity researchers have discovered a malicious Google Chrome extension that's designed to steal data associated with Meta Business Suite and Facebook Business Manager. The extension, named CL Suite by @CLMasters (ID: jkphinfhmfkckkcnifhjiplhfoiefffl), is marketed as a way to scrape Meta Business Suite data, remove verification pop-ups, and generate two-factor authentication (2FA) codes.

npm’s Update to Harden Their Supply Chain, and Points to Consider

✇The Hacker News
Par : [email protected] (The Hacker News)
13 février 2026 à 11:45
In December 2025, in response to the Sha1-Hulud incident, npm completed a major authentication overhaul intended to reduce supply-chain attacks. While the overhaul is a solid step forward, the changes don’t make npm projects immune from supply-chain attacks. npm is still susceptible to malware attacks – here’s what you need to know for a safer Node community. Let’s start with the original

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

✇The Hacker News
Par : [email protected] (The Hacker News)
13 février 2026 à 09:34
Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) products, according to watchTowr. "Overnight we observed first in-the-wild exploitation of BeyondTrust across our global sensors," Ryan Dewhurst, head of threat intelligence at watchTowr, said in a post on X. "Attackers are abusing

❌
❌