What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-12-24 10:18:19 | (Déjà vu) Millions stolen from online bank accounts following large-scale fraud operation (lien direct) | RESEARCHERS FROM IBM Trusteer say they've uncovered a massive fraud operation that used a network of mobile device emulators to drain millions of dollars from online bank accounts in a matter of days, reported WIRED. The scale of the operation was unlike anything the researchers have seen before. In one case, crooks used about 20 […] | |||
|
2020-12-23 16:13:26 | A discount isn\'t just for Christmas – why data can hold the key to relationships that go beyond the festive season (lien direct) | The COVID-19 pandemic has accelerated years of change in just eight months, particularly in the way companies across the globe conduct business. Specifically, it has driven an unprecedented number of people online, to shop and perform numerous transactions which they can no longer do in person – and companies and industries, including retail, have responded […] | ★★★ | ||
|
2020-12-23 16:08:17 | The IT skills gap: flexible resourcing is the solution (lien direct) | The pandemic's effect on our relationship with technology is a profound one. Lockdown ushered in a sudden and wide-spread adoption of remote working, and the uncertainty brought with it a slew of opportunist cybercriminals. The result of this rapid rate of change highlighted that the UK's already glaring tech skills gap has been stretched to […] | |||
|
2020-12-18 18:29:58 | Why 2020 will be a bumper Christmas for cybercriminals – and what retailers can do about it (lien direct) | It may have had a negative impact on the UK economy, but COVID-19 doesn't appear to have dampened enthusiasm for Christmas shopping. More than 70 percent of consumers intend to spend at least as much on presents this year as they have in the past. But, while this may be good news for embattled retailers, […] | |||
|
2020-12-18 16:19:33 | The ambition for a \'made in Europe\' AI: the Why, the What and the How (lien direct) | The global race for Artificial Intelligence (AI) is on. The European Commission (EC) has developed an ambitious AI strategy and its implementation will require member states to join forces. Yet in the face of a pandemic, fractures among states have appeared to only be widening. What is at stake for Europe and how could it […] | |||
|
2020-12-18 16:19:29 | Bracing for the shopping surge: retailers ramp up security measures for 2020 holiday season (lien direct) | Tripwire, Inc., announced on Tuesday the results of a new research report that assessed retail cybersecurity programs in 2020. Conducted for Tripwire by Dimensional Research last month, the survey evaluated the opinions of 203 security professionals working in the retail industry. According to the survey, 78% of retail businesses have taken additional IT security precautions […] | |||
|
2020-12-18 16:16:52 | Channel updates: One Identity extends channel momentum as demand for identity-centric security accelerates (lien direct) | One Identity today announced the sustained momentum of its One Identity Partner Circle program, highlighting the importance of the identity-centric security market. The global program saw a 15% increase in year-over-year channel sales, with 67% of its global company sales and 81% of EMEA sales being linked to channel partners. A recent global One Identity […] | |||
|
2020-12-18 16:14:18 | Cyber Events that Rocked 2020 (lien direct) | To lean on the cliché, these unprecedented times have brought about significant challenges for everyone. Practically every organisation, person and industry has been forced to make unexpected changes and significant sacrifices in a variety of different forms. The rush to equip organisations and employees with the tools needed to work from home has greatly exacerbated […] | |||
|
2020-12-18 12:58:39 | US nuclear agency hit by cyberattack (lien direct) | The US Department of Energy, who is responsible for managing nuclear weapons, have been victim to a hacking campaign, thought to be executed by Russian hackers. A spokesperson for the department has confirmed that they are responding to the breach, and they have also said the security of the nuclear weapons are unaffected. “At this […] | |||
|
2020-12-18 12:52:31 | Fake Cyberpunk 2077 game installs malware (lien direct) | Cybercriminals have been distributing fake Android and Windows installers for Cyberpunk 2077 which installs ransomware called CoderWare onto devices. Malicious actors are distributing the game through installers, cracks for copyrighted software, and cheats. A Kaspersky analyst discovered the Android ransomware which was disguised as a mobile version of Cyberpunk 2077. The game was being distributed […] | Ransomware Malware | ||
|
2020-12-18 11:17:28 | COVID-19 vaccines for sale on the dark web (lien direct) | Coronavirus vaccines have been found for sale on the internet just days are the shot was first approved. One of the vaccines for offer was discovered by the cybersecurity company Check Point Software. The vaccines were priced at $250 with the vendor promising for fast and stealth-like delivers with double packaging and a courier delivery […] | |||
|
2020-12-18 11:04:55 | Microsoft identified over 40 SolarWinds hack victims (lien direct) | Microsoft has said that they have identified over 40 customers who were affected by the SolarWinds hack. These customers were affected as they installed trojanized versions of the SolarWinds Orion platform. Microsoft used their Microsoft Defender antivirus product, a built-in antivirus product for all Windows devices, to disorder the intrusions on their clients’ devices. Brad Smith, […] | Hack | ||
|
2020-12-17 13:24:22 | Egregor and Ryuk ransomware leverages SystemBC backdoor (lien direct) | Research has revealed that in recent months hundreds of attempts of SystemBC deployments have been made globally by the ransomware groups Egregor and Ryku. Commodity malware backdoor SystemBC is now able to automate a range of key activities, while also being able to use the anonymizing platform, Tor. These new evolutions in SystemBC will make […] | Ransomware Malware | ||
|
2020-12-17 13:15:28 | DoppelPaymer ransomware gang is harassing victims who don\'t pay (lien direct) | The US Federal Bureau of Investigations (FBI) reports that they are aware of a number of incidents in which the DoppelPaymer ransomware gang has begun to cold-calling victims who have not paid their ransoms, in order to intimidate them into paying the demands. The FBI has said in a PIN (private industry notification) alert that […] | Ransomware | ||
|
2020-12-17 13:07:58 | SolarWinds\' codebase hacked to inject backdoor (lien direct) | Although the investigation as to how SolarWinds’ was compromised by hackers and how these hackers poisoned the company’s software updates is still ongoing, new evidence reveals that it could have possibly been a meticulously planned, sophisticated supply chain attack. Today ReversingLabs published a report which revealed that the actors who attacked SolarWinds’ most likely do […] | |||
|
2020-12-17 11:41:41 | Business are tracking customers and not telling them (lien direct) | Although most companies claim that they have well-defined consumer data protection and privacy policies, research has found that three in five US and Canadian companies fail to inform customers that they allow third-party services to use tracking codes on their websites. Zoho, an Austin based productivity app surveyed 1,416 individuals across Canada and the United […] | |||
|
2020-12-16 18:14:12 | One Identity Research Highlights Barriers to Adoption of Zero Trust Framework (lien direct) | One Identity has found in its global survey that 37 percent of IT professionals rated rapid changes in their Active Directory (AD)/Azure Active Directory (AAD) environment as the key impact of COVID-19 on their organisation's identity management team. The company posits that given the unique challenges of the sudden shift to remote work amidst COVID-19, […] | |||
|
2020-12-16 17:56:16 | The top 5 known vulnerabilities that are a threat to your security posture (lien direct) | Every year, fullstack vulnerability management provider Edgescan releases its Vulnerability Statistics Report, which highlights the highest impact vulnerabilities still out there in the wild. As a teaser to their 2021 report, their team has compiled a useful list of the top 5 known, unpatched vulnerabilities leveraged by cybercriminals in order launch attacks on unsuspecting organisations. […] | Vulnerability Threat | ||
|
2020-12-16 13:38:49 | Organisations May Fail to Prepare Employees for Cybersecurity Threats (lien direct) | A recent survey conducted on behalf of KnowBe4, the provider of the world's largest security awareness training and simulated phishing platform, has found that of a thousand recently furloughed employees, 41% admitted that their company had never offered them a security awareness training course, while 14% have gone as far as to say that their […] | ★★★★ | ||
|
2020-12-16 12:45:46 | Gmail suffers two outages in one day (lien direct) | Gmail has suffered two outages in 24 hours, as users have been unable to send emails to other Gmail users, while others have experienced unexpected behaviour. However, users are still able to access their Gmail accounts. When Gmail users send an email to another Gmail address they will immediately receive a delivery failure message which […] | |||
|
2020-12-16 12:35:46 | Goontact spyware targets Android and iOS users (lien direct) | Security researchers at Lookout have discovered a new strain of malware called Goontact which has surveillance and spying capabilities. The Goontact spyware is currently available on Android and iOS, with the ability to collect data from infected victims. This data includes photos, SMS messages, location information, phone identifiers and contacts. Lookout has reported that the […] | Malware | ||
|
2020-12-16 11:57:19 | Face verification and multi-user SMS added to SingPass\'s 2FA (lien direct) | Users of SingPass, an account used in Singapore to access e-government services, can now use face verification as a two-factor authentication (2FA) method. They are also able to access their accounts using multi-user SMS one-time passwords (OTP) linked to another SingPass user’s mobile number. This option has been added to the platform in order to […] | |||
|
2020-12-15 16:59:21 | SASE: A beginner\'s guide (lien direct) | In what now seems like a lifetime ago, in late summer 2019 Gartner first coined the phrase Secure Access Service Edge. Since then, “SASE”, as it is now more commonly referred, has generated the kind of hype the industry hasn't witnessed since SD-WAN first emerged around 2014. The promise was simple enough: enable enterprises to […] | |||
|
2020-12-15 11:53:50 | Rumour has it that WhatsApp data can be hacked by spyware, but they deny these allegations (lien direct) | On Monday WhatsApp denied allegations in the U.S Supreme Court that it’s encrypted data can be hacked by Pegasus, an Israeli spyware. These allegations led to controversy in 2019, as it was thought that WhatsApp experienced a privacy breach after there were global claims by Indian journalists and human rights activists that they had been […] | |||
|
2020-12-15 11:48:52 | Over 45 Million Medical Images available online (lien direct) | CybelAngel, a world leader in digital risk protection, discovered over 45 million medical imaging files – such as CT scans and X-rays– which were accessible online on unprotected servers. These findings were released in CybelAngels’s report “Full Body Exposure”, which is the result of a six-month research investigation into Digital Imaging and Communications in Medicine […] | Guideline | ||
|
2020-12-15 11:40:21 | Dataset of 20 million malware samples exposed online (lien direct) | On Monday the cybersecurity firms ReversingLabs and Sophos joined forces in order to release the first-ever production-scale dataset of malware research to be available to the public. They released the dataset in a bid to drive industry-wide improvements in security detection, as well as build defences against attacks. The dataset is called SoReL-20M, which is […] | Malware | ||
|
2020-12-15 11:31:14 | Department of Homeland Security hacked in cyberattack (lien direct) | The Department of Homeland Security (DHS) was breached on Monday as part of an attack on U.S. federal agencies which many speculate to be done by Russian hackers. Alexei Woltornist, DHS spokesperson, said that they have not directly confirmed the breach, but Woltornist told The Hill that “the Department of Homeland Security is aware of […] | |||
|
2020-12-14 13:00:54 | Office 365\'s SharePoint infected with critical bug (lien direct) | Microsoft Office 365’s SharePoint has got a dangerous remote code execution flaw. On Tuesday, Office365 released their latest patches which addressed bugs affecting Microsoft Edge and Office apps, like Excel and Outlook. The recent Patch Tuesday release, and the last patch release for 2020, had over 58 overall fixes, with nine critical bug fixes. The […] | |||
|
2020-12-14 12:45:22 | Subway UK\'s marketing system hacked (lien direct) | Subway UK has revealed that their marketing campaign’s system was hacked, which resulted in malware-ridden phishing emails being sent to customers on Friday. As of Friday morning, Subway’s customers in the UK began to received emails from ‘Subcard’ about a Subway order that they had supposedly placed. The email included links to documents which claimed […] | |||
|
2020-12-14 12:33:27 | New \'Drive-By Attack\' Targets Edge, Chrome and Firefox Users (lien direct) | Microsoft has revealed that a well-organized threat campaign is distributing malware across web browsers, including Edge, Chrome, and Firefox. The attacks can result in users having malicious extensions added to their browser, malicious ads injected into search results, and users having their credentials stolen in the worst cases of the attack. In order to avoid […] | Malware Threat | ||
|
2020-12-14 12:24:34 | Russian hackers potentially spied on U.S. Treasury emails (lien direct) | It has been speculated that Russian hackers have been monitoring internal email traffic of U.S. Treasury and Commerce departments. Those who are involved in the matter are fearing that this specific hack is only a small part of a much larger attack. The hack has led a National Security Council meeting on Saturday to discuss […] | Hack | ||
|
2020-12-11 12:52:36 | Ledger cryptocurrency wallets stolen in fake data breach (lien direct) | Ledger wallet users have been targetted by a phishing scam which used a fake data breach notification in order to steal cryptocurrency. The wallets were secured using a 24-word recovery phrase and support 12, 18, or 24-word recovery phrases used by other wallets. If someone knows the recovery phrase then they are able to access […] | Data Breach | ||
|
2020-12-11 12:40:38 | Gamers can crash opponents computers with streaming flaw (lien direct) | Valve, a game developer, has recently fixed 4 critical bugs in its Stream game platform. If these flaws were exploited, they could have allowed users to attack their opponent remotely, crashing their opponent’s game client. The Stream service has over 25 million users, acting as a platform for popular games such as Counter Strike: Global […] | |||
|
2020-12-11 12:33:04 | Critical vulnerability found in Glassdoor\'s platform (lien direct) | Glassdoor, a platform for posting anonymous company reviews and job hunting, has recently fixed a critical issue that could have been exploited by bad actors to take over accounts. The bug bounty researcher “Tabahi (https://twitter.com/_tabahi) ” discovered the vulnerability and described it as a site-wide cross-site request forgery (CSRF) bug with an estimated severity score […] | Vulnerability | ||
|
2020-12-10 13:39:13 | AT&T Cybersecurity Insights Report: Fewer than 10% of security professionals feel prepared for 5G rollout (lien direct) | The dawn of 5G technology is upon us and this new wireless power promises to be a superior successor to 4G networks. With more devices connecting to more data, both enterprises and the general consumer will greatly benefit from 5G's arrival. But how ready are businesses for this new era in connectivity and how secure […] | |||
|
2020-12-09 12:09:54 | Netgain forced to take down data centre after ransomware attack (lien direct) | Netgain, the cloud hosting and IT services provider has been forced to take a number of their data centres offline following a ransomware attack in November. Netgain is a technology company that provides hosting and cloud IT solutions, such as desktop-as-a-service environments and managed IT services, to companies in accounting and healthcare sectors. In a […] | Ransomware | ||
|
2020-12-09 12:02:09 | Cybereason uncover Middle East malware attack via Dropbox and Facebook (lien direct) | The Israeli cybersecurity firm Cybereason has recently announced that it has uncovered an active effort to control the computers and steal data belonging to Facebook, Google Docs, Dropbox, and Simplenote users. Cybereason has attributed the campaign to the Arab group ‘Molerats’, who also go by the name 'The Gaza Cybergang,' who have been operating in […] | Malware | ||
|
2020-12-09 11:51:19 | Target\'s gift card page spoofed by scammers (lien direct) | The online fraud prevention company, Bolster, has reported that in November they saw an increase in new websites related to gift card fraud, with a rate of more than 220 fraud cases per day. The research team noted that Target’s balance checking page has been one of the most impersonated this holiday season. Some of […] | |||
|
2020-12-09 11:44:58 | Why a fear of cyber threats is not paranoia (lien direct) | Booking.com and Expedia recently made the headlines – and not because of the hotel deals they were offering as people eased out of lockdown. Instead, it had been discovered that one of their software providers had not stored sensitive data correctly, running the risk that the details of millions of hotel customers could have been […] | |||
|
2020-12-09 11:37:05 | FireEye hacked by a Nation-State (lien direct) | FireEye has been the go-to for protection against sophisticated attackers for government agencies and companies around the world for years. However, the cybersecurity firm has recently fallen victim to what they protect against, as FireEye have recently reported that they have been hacked by what are thought to be Russian intelligence agencies exacting revenge. On […] | |||
|
2020-12-08 14:24:11 | Shared power banks could transmit malware (lien direct) | In China, one of the most successful enterprises to come from their sharing economy has been power bank rentals. However, police in China are warning that mobile battery packs can be used to spread malware. On Sunday the Ministry of Public Security’s online security department published a warning on their official WeChat account which said […] | Malware | ||
|
2020-12-08 14:13:34 | Coronavirus vaccine side-effect tracker vulnerable to manipulation (lien direct) | A new smartphone tool which can track live side-effect of those vaccinated with the new American coronavirus vaccine is thought to be vulnerable to manipulation. This has raised concerns that malicious actors could access the tools system in order to undermine confidence in the shots, according to both federal and state health officials. The text-messaging […] | Tool | ||
|
2020-12-08 14:01:18 | PlayStation Now bugs spreads malicious code on Windows PCs (lien direct) | A security bug has been found on the PlayStation Now cloud gaming Windows application which has allowed malicious actors to put arbitrary code on Windows devices which are running vulnerable app versions. PlayStation Now has over 2.2 million subscribers in 2020, with this bug potentially harming a large number of users. A bug bounty hunter, […] | ★★ | ||
|
2020-12-08 13:52:21 | 2,732 PickPoint package lockers opened in Moscow by hacker (lien direct) | A hacker has forced open 2,732 package delivery lockers in Moscow using a cyber-attack. The attack by an unknown hacker too place on Friday afternoon, December 4, targeting PickPoint’s network, a local delivery service which looks after a network of over 8,000 package lockers in Moscow and Saint Petersburg. PickPoint’s service allows Russians to order products […] | |||
|
2020-12-08 12:21:41 | A Guide to Kubernetes Security (lien direct) | Organizations are bringing a variety of new technologies into their IT infrastructure as they continue to undergo their digital transformations. Many are embracing containers and Kubernetes, in particular. In a 2020 report, for instance, 56% of surveyed organizations expected their use of containers to increase within the next 12 months, wrote The Enterprisers Project. Another […] | Uber | ||
|
2020-12-07 13:02:55 | Kazakhstan government is catching HTTPS traffic (lien direct) | The government of Kazakhstan is forcing citizens in Nur-Sultan, the countries capital, to install digital certificates on their devices in order to access foreign internet services. The initiative is working under the guise of a “cybersecurity exercise”, however, once the certificate is installed it allows the government access to a users device in order to […] | |||
|
2020-12-07 12:48:39 | Middle East facing \'cyber pandemic\' (lien direct) | United Arab Emirates government's cyber security chief has said that the Middle East region is currently facing a “cyber pandemic” after a rise in COVID-19 related attacks. On Sunday Mohamed al-Kuwaiti, head of UAE Government Cyber Security said “As we moved into a full online life, we saw a huge increase in many of those […] | |||
|
2020-12-07 11:43:09 | MetaMask cryptocurrency wallets stolen via Google ads (lien direct) | Users of the MetaMask cryptocurrency wallet have been targetted by a phishing scam over the past week which has been luring in victims with Google search ads. MetaMask has a user base of over one million customers. They offer an Ethereum cryptocurrency wallet in the Google browser via an extension which allows distributed applications to […] | |||
|
2020-12-07 11:29:56 | (Déjà vu) Construction firm hit by cyber attack (lien direct) | The construction firm RMD Kwikform has been targeted by a cyber-attack. The company based in Walsall said that they are investigating the breach, which took place in November. RMD Kwikform provides engineering services globally for major infrastructure projects, with 1,400 employees, and around 300 of their employees are based in the UK. The incident was […] | |||
|
2020-12-04 16:32:18 | Furlough a testing time for UK employees – lack of support leads to less loyalty as many begin returning to work (lien direct) | New research has found that over a quarter (28%) of furloughed employees in the UK admitted to feeling less loyal to their employer upon returning to work. According to a recent survey of 1,000 people, conducted by Censuswide on behalf of KnowBe4, 70 percent stated they either did not feel supported by their employer, received […] |
To see everything:
Our RSS (filtrered)
