27Mar 2024 by

Two Chinese APT Groups Ramp Up Cyber Espionage Against ASEAN Countries

Actualités
Two China-linked advanced persistent threat (APT) groups have been observed targeting entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN) as part of a cyber espionage campaign over the past three months. This includes the threat actor known as Mustang Panda, which has been recently linked to cyber attacks against Myanmar as well as
Read More
27Mar 2024 by

Recent ‘MFA Bombing’ Attacks Targeting Apple Users (Krebs on Security)

Actualités, Sécurité
Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. In this scenario, a target’s Apple devices are forced to display dozens of system-level prompts that prevent the devices from being used until the recipient responds “Allow” or “Don’t Allow” to each prompt. Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user’s account is under attack and that Apple support needs to “verify” a one-time code. Some of the many notifications Patel says he received from Apple all at once. Parth Patel is an entrepreneur who is trying to build a…
Read More
27Mar 2024 by

Recent ‘MFA Bombing’ Attacks Targeting Apple Users (Krebs on Security)

Actualités, Sécurité
Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. In this scenario, a target’s Apple devices are forced to display dozens of system-level prompts that prevent the devices from being used until the recipient responds “Allow” or “Don’t Allow” to each prompt. Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user’s account is under attack and that Apple support needs to “verify” a one-time code. Some of the many notifications Patel says he received from Apple all at once. Parth Patel is an entrepreneur who is trying to build a…
Read More
27Mar 2024 by

Recent ‘MFA Bombing’ Attacks Targeting Apple Users (Krebs on Security)

Actualités
Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. In this scenario, a target’s Apple devices are forced to display dozens of system-level prompts that prevent the devices from being used until the recipient responds “Allow” or “Don’t Allow” to each prompt. Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user’s account is under attack and that Apple support needs to “verify” a one-time code. Some of the many notifications Patel says he received from Apple all at once. Parth Patel is an entrepreneur who is trying to build a…
Read More
27Mar 2024 by

Recent ‘MFA Bombing’ Attacks Targeting Apple Users

Actualités
Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. In this scenario, a target’s Apple devices are forced to display dozens of system-level prompts that prevent the devices from being used until the recipient responds “Allow” or “Don’t Allow” to each prompt. Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user’s account is under attack and that Apple support needs to “verify” a one-time code. Some of the many notifications Patel says he received from Apple all at once. Parth Patel is an entrepreneur who is trying to build a…
Read More
26Mar 2024 by

Malicious NuGet Package Linked to Industrial Espionage Targets Developers

Actualités
Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing. The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded 
Read More
26Mar 2024 by

Crafting Shields: Defending Minecraft Servers Against DDoS Attacks

Actualités
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite the prevalence of DDoS attacks on the game, the majority of incidents go unreported, leaving a gap in awareness and protection. This article explains
Read More