What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-12-20 13:37:26 | Meta sues people behind Facebook and Instagram phishing (lien direct) | Meta (formerly known as Facebook) has filed a federal lawsuit in California court to disrupt phishing attacks targeting Facebook, Messenger, Instagram, and WhatsApp users. [...] | |||
|
2021-12-20 13:06:53 | FBI: State hackers exploiting new Zoho zero-day since October (lien direct) | The Federal Bureau of Investigation (FBI) says a zero-day vulnerability in Zoho's ManageEngine Desktop Central has been under active exploitation by state-backed hacking groups (also known as APTs or advanced persistent threats) since at least October. [...] | Vulnerability | ||
|
2021-12-20 12:49:11 | UK govt shares 585 million passwords with Have I Been Pwned (lien direct) | The United Kingdom's National Crime Agency has contributed more than 585 million passwords to the Have I Been Pwned service that lets users check if their login information has leaked online. [...] | |||
|
2021-12-20 11:33:11 | Log4j vulnerability now used to install Dridex banking malware (lien direct) | Threat actors now exploit the critical Apache Log4j vulnerability named Log4Shell to infect vulnerable devices with the notorious Dridex banking trojan or Meterpreter. [...] | Malware Vulnerability Threat | ||
|
2021-12-20 10:46:02 | T-Mobile says it blocked 21 billion scam calls this year (lien direct) | T-Mobile says it blocked 21 billion scam, spam, and unwanted robocalls this year through its free Scam Shield robocall and scam protection service, amounting to an average of 1.8 billion scam calls identified or blocked every month. [...] | |||
|
2021-12-20 06:00:00 | Phishing attacks impersonate Pfizer in fake requests for quotation (lien direct) | Threat actors are conducting a highly targeted phishing campaign impersonating Pfizer to steal business and financial information from victims. [...] | Threat | ||
|
2021-12-19 11:02:01 | New stealthy DarkWatchman malware hides in the Windows Registry (lien direct) | A new malware named 'DarkWatchman' has emerged in the cybercrime underground, and it's a lightweight and highly-capable JavaScript RAT (Remote Access Trojan) paired with a C# keylogger. [...] | Malware | ||
|
2021-12-18 10:36:18 | Western Digital warns customers to update their My Cloud devices (lien direct) | Western Digital is urging customers to update their WD My Cloud devices to the latest available firmware to keep receiving security updates on My Cloud OS firmware reaching the end of support. [...] | |||
|
2021-12-18 05:29:24 | Upgraded to log4j 2.16? Surprise, there\'s a 2.17 fixing DoS (lien direct) | Yesterday, BleepingComputer summed up all the log4j and logback CVEs known thus far. Ever since the critical log4j zero-day saga began last week, security experts have time and time again recommended version 2.16 as the safest release to be on. That changes today with version 2.17.0 out that fixes CVE-2021-45105, a DoS vulnerability. [...] | ★★★ | ||
|
2021-12-17 18:37:23 | The Week in Ransomware - December 17th 2021 - Enter Log4j (lien direct) | A critical Apache Log4j vulnerability took the world by storm this week, and now it is being used by threat actors as part of their ransomware attacks. [...] | Ransomware Vulnerability Threat | ||
|
2021-12-17 15:25:06 | TellYouThePass ransomware revived in Linux, Windows Log4j attacks (lien direct) | Threat actors have revived an old and relatively inactive ransomware family known as TellYouThePass, deploying it in attacks against Windows and Linux devices targeting a critical remote code execution bug in the Apache Log4j library. [...] | Ransomware Threat | ||
|
2021-12-17 14:06:08 | Credit card info of 1.8 million people stolen from sports gear sites (lien direct) | Four affiliated online sports gear sites have disclosed a cyberattack where threat actors stole credit cards for 1,813,224 customers. [...] | Threat | ||
|
2021-12-17 13:32:30 | CISA urges VMware admins to patch critical flaw in Workspace ONE UEM (lien direct) | CISA has asked VMware admins and users today to patch a critical security vulnerability found in the Workspace ONE UEM console that threat actors could abuse to gain access to sensitive information. [...] | Vulnerability Threat | ||
|
2021-12-17 12:35:43 | (Déjà vu) US orders federal govt agencies to patch critical Log4j bug (lien direct) | US Federal Civilian Executive Branch agencies have been ordered to patch the critical and actively exploited Log4Shell security vulnerability in the Apache Log4j library within the next six days. [...] | Vulnerability | ||
|
2021-12-17 12:35:43 | US emergency directive orders govt agencies to patch Log4j bug (lien direct) | US Federal Civilian Executive Branch agencies have been ordered to patch the critical and actively exploited Log4Shell security vulnerability in the Apache Log4j library within the next six days. [...] | Vulnerability | ||
|
2021-12-17 11:28:39 | Logistics giant warns of BEC emails following ransomware attack (lien direct) | Hellmann Worldwide is warning customers of an increase in fraudulent calls and emails regarding payment transfer and bank account changes after a recent ransomware attack. [...] | Ransomware | ||
|
2021-12-17 10:00:00 | Conti ransomware uses Log4j bug to hack VMware vCenter servers (lien direct) | Conti ransomware operation is using the critical Log4Shell exploit to gain rapid access to internal VMware vCenter Server instances and encrypt virtual machines. [...] | Ransomware Hack | ||
|
2021-12-17 07:20:07 | All Log4j, logback bugs we know so far and why you MUST ditch 2.15 (lien direct) | Everyone's heard of the critical log4j zero-day by now. Dubbed 'Log4Shell' and 'Logjam,' the vulnerability has set the internet on fire. Below we summarize the four or more CVEs identified thus far, and pretty good reasons to ditch log4j version 2.15.0 for 2.16.0. [...] | |||
|
2021-12-17 02:56:38 | This image looks very different on Apple devices - see for yourself (lien direct) | This image appears starkly different when viewed in Apple iOS and Mac devices as opposed to others. BleepingComputer explains why. [...] | |||
|
2021-12-16 16:12:45 | Log4j attackers switch to injecting Monero miners via RMI (lien direct) | Some threat actors exploiting the Apache Log4j vulnerability have switched from LDAP callback URLs to RMI or even used both in a single request for maximum chances of success. [...] | Vulnerability Threat | ||
|
2021-12-16 15:52:18 | Facebook disrupts operations of seven surveillance-for-hire firms (lien direct) | Facebook has disrupted the operations of seven different spyware-making companies, blocking their Internet infrastructure, sending cease and desist letters, and banning them from its platform. [...] | |||
|
2021-12-16 15:48:04 | McMenamins breweries hit by a Conti ransomware attack (lien direct) | Portland brewery and hotel chain McMenamins suffered a Conti ransomware attack over the weekend that disrupted the company's operations. [...] | Ransomware | ||
|
2021-12-16 15:46:51 | Cloudflare is experiencing widespread latency and timeouts (lien direct) | Cloudflare is experiencing "wide-spread" latency issues with their network and services, causing websites to load slowly and customers to experience performance issues accessing the customer dashboard. [...] | |||
|
2021-12-16 13:39:13 | Google Calendar now lets you block invitation phishing attempts (lien direct) | Google now makes it easy to block unwanted calendar invitations, commonly used by threat actors in phishing and malicious campaigns, from being added to your Google Calendar. [...] | Threat | ||
|
2021-12-16 12:20:59 | Microsoft: Khonsari ransomware hits self-hosted Minecraft servers (lien direct) | Microsoft urges admins of self-hosted Minecraft servers to upgrade to the latest release to defend against Khonsari ransomware attacks exploiting the critical Log4Shell security vulnerability. [...] | Ransomware | ||
|
2021-12-16 11:20:10 | Gumtree classifieds site leaked personal info via the F12 key (lien direct) | British classifieds site Gumtree.com suffered a data leak after a security researcher revealed that he could access sensitive personally identifiable data of advertisers simply by pressing F12 on the keyboard. [...] | |||
|
2021-12-16 10:56:29 | Lenovo laptops vulnerable to bug allowing admin privileges (lien direct) | Lenovo laptops, including ThinkPad and Yoga models, are vulnerable to a privilege elevation bug in the ImControllerService service allowing attackers to execute commands with admin privileges. [...] | |||
|
2021-12-16 06:00:00 | Phorpiex botnet returns with new tricks making it harder to disrupt (lien direct) | The previously shutdown Phorpiex botnet has re-emerged with new peer-to-peer command and control infrastructure, making the malware more difficult to disrupt. [...] | Malware | ||
|
2021-12-16 03:15:13 | Firefox users can\'t reach Microsoft.com - here\'s what to do (lien direct) | Those using the Mozilla Firefox web browser are left unable to access Microsoft.com domain. Tests by BleepingComputer confirm the issue relates to SSL certificate validation errors. Below we explain what can you do to remedy the issue. [...] | |||
|
2021-12-15 16:59:27 | Emotet starts dropping Cobalt Strike again for faster attacks (lien direct) | Right in time for the holidays, the notorious Emotet malware is once again directly installing Cobalt Strike beacons for rapid cyberattacks. [...] | Malware | ||
|
2021-12-15 15:19:53 | Microsoft to set Windows Terminal as default console in Windows 11 (lien direct) | Microsoft is working on making Windows Terminal the default terminal emulator program in Windows 11 instead of the Windows Console Host, starting next year. [...] | |||
|
2021-12-15 14:24:41 | Large-scale phishing study shows who bites the bait more often (lien direct) | A large-scale phishing study involving 14,733 participants over a 15-month experiment has produced some surprising findings that contradict previous research results that formed the basis for popular industry practices. [...] | |||
|
2021-12-15 13:47:39 | CISA warns critical infrastructure to stay vigilant for ongoing threats (lien direct) | The Cybersecurity and Infrastructure Security Agency (CISA) warned critical infrastructure organizations today to strengthen their cybersecurity defenses against potential and ongoing threats. [...] | |||
|
2021-12-15 12:32:55 | State-sponsored hackers abuse Slack API to steal airline data (lien direct) | A suspected Iranian state-supported threat actor is deploying a newly discovered backdoor named 'Aclip' that abuses the Slack API for covert communications. [...] | Threat | ||
|
2021-12-15 11:19:14 | AWS down again, outage impacts Twitch, Zoom, PSN, Hulu, others (lien direct) | Amazon AWS is experiencing an outage that has impacted numerous online services, including Twitch, Zoom, PSN, Xbox Live, Doordash, Quickbooks Online, and Hulu. [...] | |||
|
2021-12-15 11:09:21 | Log4j vulnerability now used by state-backed hackers, access brokers (lien direct) | As expected, nation-state hackers of all kinds have jumped at the opportunity to exploit the recently disclosed critical vulnerability (CVE-2021-44228) in the Log4j Java-based logging library. [...] | Vulnerability | ||
|
2021-12-15 10:45:08 | Microsoft fixes bug blocking Defender for Endpoint on Windows Server (lien direct) | Microsoft has addressed a known issue that plagued Windows Server customers for weeks, preventing the Defender for Endpoint enterprise security platform from launching on some systems. [...] | |||
|
2021-12-15 10:28:32 | Sites hacked with credit card stealers undetected for months (lien direct) | Threat actors are gearing up for the holidays with credit card skimming attacks remaining undetected for months as payment information is stolen from customers. [...] | Threat | ||
|
2021-12-14 18:32:26 | Telecom operators targeted in recent espionage hacking campaign (lien direct) | Researchers have spotted a new espionage campaign targeting telecommunication and IT service providers in the Middle East and Asia. [...] | |||
|
2021-12-14 17:02:25 | New ransomware now being deployed in Log4Shell attacks (lien direct) | The first public case of the Log4j Log4Shell vulnerability used to download and install ransomware has been discovered by researchers. [...] | Ransomware Vulnerability | ||
|
2021-12-14 15:38:35 | DHS announces \'Hack DHS\' bug bounty program for vetted researchers (lien direct) | The Department of Homeland Security (DHS) has launched a new bug bounty program dubbed "Hack DHS" that allows vetted cybersecurity researchers to find and report security vulnerabilities in external DHS systems. [...] | |||
|
2021-12-14 14:12:20 | (Déjà vu) Windows 11 KB5008215 update released with application, VPN fixes (lien direct) | Microsoft has released the Windows 11 KB5008215 cumulative update to fix security vulnerabilities and bugs introduced in previous versions. [...] | |||
|
2021-12-14 14:09:44 | Microsoft fixes Windows AppX Installer zero-day used by Emotet (lien direct) | Microsoft has patched a high severity Windows zero-day vulnerability exploited in the wild to deliver Emotet malware payloads. [...] | Malware Vulnerability | ||
|
2021-12-14 13:41:43 | (Déjà vu) Microsoft December 2021 Patch Tuesday fixes 6 zero-days, 67 flaws (lien direct) | Today is Microsoft's December 2021 Patch Tuesday, and with it comes fixes for six zero-day vulnerabilities and a total of 67 flaws. These updates include a fix for an actively exploited Windows Installer vulnerability used in malware distribution campaigns. [...] | Malware Vulnerability | ||
|
2021-12-14 13:37:24 | Windows 10 KB5008212 & KB5008206 updates released (lien direct) | Like the November release, this month's security updates include security fixes for November 2021 Update, May 2021 Update, October 2020 Update (version 20H2), and May 2020 Update (version 2004). It's also the last security update for version 2004, which has been retired today. [...] | |||
|
2021-12-14 13:01:29 | Microsoft rolls out end-to-end encryption for Teams calls (lien direct) | Microsoft announced today the general availability of end-to-end encryption (E2EE) support for one-to-one Microsoft Teams calls. [...] | |||
|
2021-12-14 12:16:08 | Hackers steal Microsoft Exchange credentials using IIS module (lien direct) | Threat actors are installing a malicious IIS web server module named 'Owowa' on Microsoft Exchange Outlook Web Access servers to steal credentials and execute commands on the server remotely. [...] | Threat | ||
|
2021-12-14 11:51:27 | EU Parliament adopts Digital Services Act, but concerns persist (lien direct) | The European Parliament's Internal Market and Consumer Protection Committee has adopted the Digital Services Act (DSA) proposal by 36 votes to 7 and 2 abstentions. [...] | |||
|
2021-12-14 11:25:04 | Anubis Android malware returns to target 394 financial apps (lien direct) | The Anubis Android banking malware is now targeting the customers of nearly 400 financial institutions in a new malware campaign. [...] | Malware | ||
|
2021-12-14 10:35:32 | Cyberattack on BHG opioid treatment network disrupts patient care (lien direct) | Opioid treatment network Behavioral Health Group suffered a cyberattack that led to an almost week-long disruption of IT systems and patient care. [...] |
To see everything:
Our RSS (filtrered)
