Russian organizations are at the receiving end of cyber attacks that have been found to deliver a Windows version of a malware called Decoy Dog. Cybersecurity company Positive Technologies is tracking the activity cluster under the name Operation Lahat, attributing it to an advanced persistent threat (APT) group called HellHounds. "The Hellhounds group compromises organizations they select and

Progress Software has rolled out updates to address a critical security flaw impacting the Telerik Report Server that could be potentially exploited by a remote attacker to bypass authentication and create rogue administrator users. The issue, tracked as CVE-2024-4358, carries a CVSS score of 9.8 out of a maximum of 10.0. "In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or

A ransomware attack affecting pathology and diagnostic services provider Synnovis has impacted healthcare services at multiple major NHS hospitals in London. [...]

Microsoft has officially deprecated NTLM authentication on Windows and Windows servers, stating that developers should transition to Kerberos or Negotiation authentication to prevent problems in the future. [...]

Debt collection agency Financial Business and Consumer Solutions (FBCS) now says over 3.2 million people have been impacted by a data breach that occurred in February. [...]

Kaspersky a découvert un nouveau stratagème frauduleux visant des gérants et du personnel du secteur de l’hôtellerie, les cybercriminels cherchant ainsi à voler des identifiants et à infecter les ordinateurs concernés avec des logiciels malveillants. Dans les mails frauduleux relevés par Kaspersky, les arnaqueurs se font passer pour d’anciens ou de potentiels clients, exploitant l’importance […]

The post L’hôtellerie prise pour cible par de nouvelles campagnes de mails frauduleux first appeared on UnderNews.

Une organisation chinoise commande du matériel anti-drone pour la Russie. Les « clients » demandent des équivalents de matériel produits par l'armée russe.

The landscape of browser security has undergone significant changes over the past decade. While Browser Isolation was once considered the gold standard for protecting against browser exploits and malware downloads, it has become increasingly inadequate and insecure in today's SaaS-centric world. The limitations of Browser Isolation, such as degraded browser performance and inability to tackle

A new sophisticated cyber attack has been observed targeting endpoints geolocated to Ukraine with an aim to deploy Cobalt Strike and seize control of the compromised hosts. The attack chain, per Fortinet FortiGuard Labs, involves a Microsoft Excel file that carries an embedded VBA macro to initiate the infection, "The attacker uses a multi-stage malware strategy to deliver the notorious 'Cobalt

Cloud computing and analytics company Snowflake said a "limited number" of its customers have been singled out as part of a targeted campaign. "We have not identified evidence suggesting this activity was caused by a vulnerability, misconfiguration, or breach of Snowflake’s platform," the company said in a joint statement along with CrowdStrike and Google-owned Mandiant. "We have not identified

Le Mac a une image d’ordinateur à l’abri des virus. Et cette image est en partie fondée. Si les logiciels malveillants ont connu une explosion au début des années 2000, sur Windows, c’est notamment à cause de l’omniprésence de ce dernier. La part de marché de Windows est rapidement devenue massive alors que le Mac […]

The post Meilleur Antivirus pour Mac 2024 : Lequel choisir ? first appeared on UnderNews.

Depuis 2019, seule la région EMEA a connu une augmentation continue des attaques DDoS, dépassant aujourd’hui la menace constatée en l’Amérique du Nord. Rapport Akamai – Akamai Technologies, Inc., l’entreprise du cloud qui soutient et protège la vie en ligne, a publié aujourd’hui un nouveau rapport sur l’État  d’Internet, révélant que les attaques DDoS augmentent […]

The post Attaques DDoS : l’Europe sous une pression de plus en plus accrue first appeared on UnderNews.

Cyber attacks involving the DarkGate malware-as-a-service (MaaS) operation have shifted away from AutoIt scripts to an AutoHotkey mechanism to deliver the last stages, underscoring continued efforts on the part of the threat actors to continuously stay ahead of the detection curve. The updates have been observed in version 6 of DarkGate released in March 2024 by its developer RastaFarEye, who

L’année 2024 apporte de nouveaux défis pour les entreprises de toutes tailles et les cybermenaces ne cessent d’évoluer. En 2023 OpenText Cybersecurity a observé 824 000 tentatives d’attaques dont 76 % sur des ordinateurs à usage professionnel. Le dernier rapport Threat Report 2024 d’OpenText Cybersecurity met en lumière les principales préoccupations et les recommandations essentielles […]

The post OpenText Cybersecurity dévoile son rapport 2024 sur les menaces émergentes et la résilience cybernétique first appeared on UnderNews.

Password leaks are increasingly common and figuring out whether the keys to your own kingdom have been exposed might be tricky – unless you know where to look

Une étude révèle que 80 % des fausses informations sur Twitter pour l'élection présidentielle américaine de 2020 venaient de seulement 0,3 % des utilisateurs.

A former senior executive and former sales manager of Epsilon Data Management LLC (Epsilon) were convicted of selling data of millions of Americans to perpetrators of mail fraud schemes. [...]

The official Microsoft India account on Twitter, with over 211,000 followers, was hijacked by cryptocurrency scammers to impersonate Roaring Kitty, the handle used by notorious meme stock trader Keith Gill. [...]

​Cox Communications has fixed an authorization bypass vulnerability that enabled remote attackers to abuse exposed backend APIs to reset millions of modems' settings and steal customers' sensitive personal information. [...]