Malicious Apps Use Sneaky Versioning Technique to Bypass Google Play Store Scanners
Threat actors are leveraging a technique called versioning to evade Google Play Store’s malware detections and target Android users. « Campaigns using versioning commonly target users’ credentials, data, and finances, » Google Cybersecurity Action Team (GCAT) said in its August 2023 Threat Horizons Report shared with The Hacker News. While versioning is not a new phenomenon, it’s sneaky and […]
Les jeunes Sud-Coréens préfèreraient désormais l’iPhone !
Décidément, voici une autre information du jour que Tim Cook se fera un malin plaisir à glisser lors de l’appel des résultats de ce soir ! En effet, d’après Counter Point, un grand nombre de Sud-Coréens de moins de trente ans finissent par troquer leur Android contre un iPhone !
New Version of Rilide Data Theft Malware Adapts to Chrome Extension Manifest V3
Cybersecurity researchers have discovered a new version of malware called Rilide that targets Chromium-based web browsers to steal sensitive data and steal cryptocurrency. « It exhibits a higher level of sophistication through modular design, code obfuscation, adoption to the Chrome Extension Manifest V3, and additional features such as the ability to exfiltrate stolen data to a Telegram channel
Hundreds of Citrix NetScaler ADC and Gateway Servers Hacked in Major Cyber Attack
Hundreds of Citrix NetScaler ADC and Gateway servers have been breached by malicious actors to deploy web shells, according to the Shadowserver Foundation. The non-profit said the attacks take advantage of CVE-2023-3519, a critical code injection vulnerability that could lead to unauthenticated remote code execution. The flaw, patched by Citrix last month, carries a CVSS score of 9.8. […]
Plus de 10 milliards placés sur le compte d’épargne d’Apple !
A quelques heures de la présentation des résultats, il semble qu’Apple laisse passer quelques informations pour rassurer ses investisseurs et peut-être pour calmer la polémique sur une éventuelle discorde avec Goldman Sachs.
Microsoft Flags Growing Cybersecurity Concerns for Major Sporting Events
Microsoft is warning of the threat malicious cyber actors pose to stadium operations, warning that the cyber risk surface of live sporting events is « rapidly expanding. » « Information on athletic performance, competitive advantage, and personal information is a lucrative target, » the company said in a Cyber Signals report shared with The Hacker News. « Sports teams, major […]
« Mysterious Team Bangladesh » Targeting India with DDoS Attacks and Data Breaches
A hacktivist group known as Mysterious Team Bangladesh has been linked to over 750 distributed denial-of-service (DDoS) attacks and 78 website defacements since June 2022. « The group most frequently attacks logistics, government, and financial sector organizations in India and Israel, » Singapore-headquartered cybersecurity firm Group-IB said in a report shared with The Hacker News. « The group is
Ce malware en vente sur le net s’attaque aux Mac
Une équipe de chercheurs en sécurité a mis en lumière un nouveau malware vendu sur le net et permettant de prendre le contrôle des machines visées, que ce soit des Mac ou des PC sous Windows.
Voici comment tester Safari 17 sur macOS Ventura et Monterey
Il est désormais possible d’essayer la bêta de la prochaine itération de Safari sur des Mac tournant sous Ventura et Monterey.
Microsoft Exposes Russian Hackers’ Sneaky Phishing Tactics via Microsoft Teams Chats
Microsoft on Wednesday disclosed that it identified a set of highly targeted social engineering attacks mounted by a Russian nation-state threat actor using credential theft phishing lures sent as Microsoft Teams chats. The tech giant attributed the attacks to a group it tracks as Midnight Blizzard (previously Nobelium). It’s also called APT29, BlueBravo, Cozy Bear, Iron Hemlock, […]