Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
Alors que la fin du premier quart du 21º siècle approche, tout le monde sait sûrement que les mots de passe des utilisateurs sont une mine d’or numérique et que leur protection est essentielle pour garantir la sécurité et la confidentialité des données. Pourtant, certaines entreprises ne conservent pas correctement les mots de passe. Cet […]
Continue Reading
En général, les grandes entreprises ne demandent pas à leurs employés quelles sont leurs aspirations professionnelles, quels sont leurs centres d’intérêt ou ce qu’ils savent faire en plus des compétences liées à leur poste. Cette situation change une fois par an, lors du bilan de performance. Pourtant, beaucoup d’employés aimeraient dire plus souvent ce qu’ils […]
Continue ReadingTrend Micro has fixed a critical zero-day vulnerability (CVE-2023-41179) in several of its endpoint security products for enterprises that has been spotted being exploited in the wild. About CVE-2023-41179 The nature of the flaw hasn’t been revealed, but we know it’s present in the third-party AV uninstaller module provided with the products, and can be […]
Continue Reading3 out of 4 workers use personal (and often unmanaged) phones and laptops for work and nearly half of companies let unmanaged devices access protected resources, a recent report by Kolide and Dimensional Research has revealed. When asked why they use personal devices to do company work, the 334 IT, security and business professionals polled […]
Continue Reading
De temps à autre, les utilisateurs et les administrateurs de Windows se demandent pourquoi l’heure et la date de leurs systèmes changent soudainement et a plusieurs semaines, mois ou années d’avance ou de retard. À quoi est-ce dû ? Les journalistes de Ars Technica ont fait quelques recherches et ont découvert que ça pourrait être lié […]
Continue ReadingYour security solutions might stave off a LockBit infection, but you might still end up with encrypted files: according to Symantec’s threat researchers, some affiliates are using the 3AM ransomware as a fallback option in case LockBit gets flagged and blocked. 3AM ransomware LockBit is a known ransomware family that has been unleashing havoc for […]
Continue ReadingEnterprise macOS users are being targeted by attackers slinging new information-stealing malware dubbed MetaStealer. The MetaStealer malware MetaStealer is delivered within malicious disk image format (.dmg) files. The names of the files – such as Advertising terms of reference (MacOS presentation).dmg and Brief_Presentation-Task_Overview-(SOW)-PlayersClub.dmg – and the inclusion of words such as “Official Brief Description” indicate […]
Continue ReadingThe mystery of how Chinese hackers managed to steal a crucial signing key that allowed them to breach Microsoft 365’s email service and access accounts of employees of 25 government agencies has been explained: they found it somewhere where it shouldn’t have been – Microsoft’s corporate environment. The theft of a Microsoft signing key In […]
Continue ReadingSince March 2023 (and possibly even earlier), affiliates of the Akira and LockBit ransomware operators have been breaching organizations via Cisco ASA SSL VPN appliances. “In some cases, adversaries have conducted credential stuffing attacks that leveraged weak or default passwords; in others, the activity we’ve observed appears to be the result of targeted brute-force attacks […]
Continue ReadingThe expansion of large language models (LLMs) in recent times has brought about a revolutionary change in machine learning processes and has introduced fresh perspectives on the potential of AI, according to Predibase. Based on survey data from organizations experimenting with LLMs, researchers have found that enterprises are looking for ways to customize and deploy […]
Continue Reading