Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 19:37:35 |
The Week in Ransomware - December 10th 2021 - Project CODA (lien direct) |
This week has quite a bit of ransomware news, including arrests, a new and sophisticated ransomware, and an attack bringing down 300 supermarkets in England. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 14:10:05 |
Phishing attacks use QR codes to steal banking credentials (lien direct) |
A new phishing campaign that targets German e-banking users has been underway in the last couple of weeks, involving QR codes in the credential-snatching process. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 13:07:13 |
Volvo Cars discloses security breach leading to R&D data theft (lien direct) |
Swedish carmaker Volvo Cars has disclosed that unknown attackers have stolen research and development information after hacking some of its servers. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 11:20:06 |
Minecraft rushes out patch for critical Log4j vulnerability (lien direct) |
Swedish video game developer Mojang Studios has released an emergency Minecraft security update to address a critical bug in the Apache Log4j Java logging library used by the game's Java Edition client and multiplayer servers. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 09:12:25 |
Australian govt raises alarm over Conti ransomware attacks (lien direct) |
The Australian Cyber Security Centre (ACSC) says Conti ransomware attacks have targeted multiple Australian organizations from various industry verticals since November. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 06:00:00 |
New \'Karakurt\' hacking group focuses on data theft and extortion (lien direct) |
A sophisticated cybercrime group known as 'Karakurt' who has been quietly working from the shadows has had its tactics and procedures exposed by researchers who tracked recent cyberattacks conducted by the hackers. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 05:17:35 |
Data breach impacts 80,000 South Australian govt employees (lien direct) |
The South Australian government has admitted that the personal details of tens of thousands of its employees were compromised following a cyber-attack on an external payroll software provider. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 04:59:23 |
New zero-day exploit for Log4j Java library is an enterprise nightmare (lien direct) |
Proof-of-concept exploits for a critical zero-day vulnerability in the ubiquitous Apache Log4j Java-based logging library are currently being shared online, exposing home users and enterprises alike to remote code execution attacks. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-10 03:29:43 |
Massive attack against 1.6 million WordPress sites underway (lien direct) |
Wordfence analysts report having detected a massive wave of attacks in the last couple of days, originating from 16,000 IPs and targeting over 1.6 million WordPress sites. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 17:58:02 |
Kali Linux 2021.4 released with 9 new tools, further Apple M1 support (lien direct) |
Kali Linux 2021.4 was released today by Offensive Security and includes further Apple M1 support, increased Samba compatibility, nine new tools, and an update for all three main desktop. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 16:47:28 |
ALPHV BlackCat - This year\'s most sophisticated ransomware (lien direct) |
The new ALPHV ransomware operation, aka BlackCat, launched last month and could be the most sophisticated ransomware of the year, with a highly-customizable feature set allowing for attacks on a wide range of corporate environments. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 12:34:17 |
Malicious Notepad++ installers push StrongPity malware (lien direct) |
The sophisticated hacking group known as StrongPity is circulating laced Notepad++ installers that infect targets with malware. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 12:14:16 |
Dark Mirai botnet targeting RCE on popular TP-Link router (lien direct) |
The botnet known as Dark Mirai (aka MANGA) has been observed exploiting a new vulnerability on the TP-Link TL-WR840N EU V5, a popular inexpensive home router released in 2017. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 11:21:47 |
Microsoft, Google OAuth flaws can be abused in phishing attacks (lien direct) |
Researchers have discovered a set of previously unknown methods to launch URL redirection attacks against weak OAuth 2.0 implementations. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 10:36:36 |
Microsoft previews new endpoint security solution for SMBs (lien direct) |
Microsoft Defender for Business, a new endpoint security solution specially built for small and medium-sized businesses (SMBs), is now rolling out in preview worldwide. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 08:58:50 |
Cox discloses data breach after hacker impersonates support agent (lien direct) |
Cox Communications has disclosed a data breach after a hacker impersonated a support agent to gain access to customers' personal information. [...] |
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 08:40:09 |
SanDisk SecureAccess bug allows brute forcing vault passwords (lien direct) |
Western Digital has fixed a security vulnerability that enabled attackers to brute force SanDisk SecureAccess passwords and access the users' protected files. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 07:47:15 |
Fujitsu pins Japanese govt data breach on stolen ProjectWEB accounts (lien direct) |
Fujitsu says the attackers behind the May data breach used a vulnerability in the company's ProjectWEB information-sharing tool to steal accounts from legitimate users and access proprietary data belonging to multiple Japanese government agencies. [...] |
Data Breach
Tool
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 06:00:00 |
Hundreds of thousands of MikroTik devices still vulnerable to botnets (lien direct) |
Approximately 300,000 MikroTik routers are vulnerable to critical vulnerabilities that malware botnets can exploit for cryptomining and DDoS attacks. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-09 03:22:11 |
Windows \'InstallerFileTakeOver\' zero-day bug gets free micropatch (lien direct) |
An unofficial patch is available for a zero-day vulnerability that is actively exploited in the wild to gain administrator privileges. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 17:17:19 |
Amazon is shutting down web ranking site Alexa.com (lien direct) |
Amazon announced on Wednesday plans to shut down its global website ranking system and competitor analysis tool "Alexa.com", which has been available for 25 years. [...] |
Tool
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 15:43:36 |
New Windows 11 Voice Access lets you control the OS with your voice (lien direct) |
Windows 11 is getting a new "Voice Access" feature to control the operating system using your voice and a microphone. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 15:18:44 |
Windows 11 can now install WSL from the Microsoft Store (lien direct) |
Microsoft has added the Windows Subsystem for Linux (WSL) as a separate app to the Microsoft Store with the release of Windows 11 Insider Preview Build 22518 to the Dev Channel. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 14:25:26 |
Microsoft: Secured-core servers help prevent ransomware attacks (lien direct) |
Microsoft says the first Secured-core certified Windows Server and Microsoft Azure Stack HCI devices are now available to protect customers' networks from security threats, including ransomware attacks. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 13:11:55 |
Hackers infect random WordPress plugins to steal credit cards (lien direct) |
Credit card swipers are being injected into random plugins of e-commerce WordPress sites, hiding from detection while stealing customer payment details. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 10:12:35 |
XE Group exposed for eight years of hacking, credit card theft (lien direct) |
A relatively unknown group of Vietnamese hackers calling themselves 'XE Group' has been linked to eight years of for-profit hacking and credit card skimming. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 08:57:30 |
Tor\'s main site blocked in Russia as censorship widens (lien direct) |
The Tor Project's main website, torproject.org, is actively blocked by Russia's largest internet service providers, and sources from the country claim that the government is getting ready to conduct an extensive block of the project. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 08:11:50 |
SonicWall \'strongly urges\' customers to patch critical SMA 100 bugs (lien direct) |
SonicWall 'strongly urges' organizations using SMA 100 series appliances to immediately patch them against multiple security flaws rated with CVSS scores ranging from medium to critical. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 07:08:58 |
Telegram adds content protection support for groups and channels (lien direct) |
Telegram has added content protection support to enable users to block others from saving or forwarding posts shared in groups and channels. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-08 03:27:54 |
Moobot botnet spreading via Hikvision camera vulnerability (lien direct) |
A Mirai-based botnet called 'Moobot' is spreading aggressively via exploiting a critical command injection flaw in the webserver of many Hikvision products. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 18:21:46 |
Emotet now drops Cobalt Strike, fast forwards ransomware attacks (lien direct) |
In a concerning development, the notorious Emotet malware now installs Cobalt Strike beacons directly, giving immediate network access to threat actors and making ransomware attacks imminent. [...] |
Ransomware
Malware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 17:46:58 |
Grafana fixes zero-day vulnerability after exploits spread over Twitter (lien direct) |
Open-source analytics and interactive visualization solution Grafana received an emergency update today to fix a high-severity, zero-day vulnerability that enabled remote access to local files. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 16:28:55 |
AWS outage impacts Ring, Netflix, and Amazon deliveries (lien direct) |
Amazon AWS in the US-EAST-1 Region is suffering an outage that affected numerous online services, including Ring, Netflix, and Amazon Prime Video, and Roku. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 15:37:57 |
Alleged ransomware affiliate arrested for healthcare attacks (lien direct) |
A 31-year old Canadian national has been charged in connection to ransomware attacks against organizations in the United States and Canada, a federal indictment unsealed today shows. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 15:23:12 |
(Déjà vu) US universities targeted by Office 365 phishing attacks (lien direct) |
US universities are being targeted in multiple phishing attacks designed to impersonate college login portals to steal valuable Office 365 credentials. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 14:22:58 |
Microsoft starts rolling out redesigned Notepad for Windows 11 (lien direct) |
Microsoft has started rolling out the new and completely redesigned Notepad for Windows 11 to all Windows Insiders in the Dev Channel. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 13:19:53 |
New Cerber ransomware targets Confluence and GitLab servers (lien direct) |
Cerber ransomware is back, as a new ransomware family adopts the old name and targets Atlassian Confluence and GitLab servers using remote code execution vulnerabilities. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 11:57:23 |
Google disrupts massive Glupteba botnet, sues Russian operators (lien direct) |
Google has taken action to disrupt the Glupteba botnet that now controls more than 1 million Windows PCs around the world, growing by thousands of new infected devices each day. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 10:15:44 |
27 flaws in USB-over-network SDK affect millions of cloud users (lien direct) |
Researchers have discovered 27 vulnerabilities in Eltima SDK, a library used by numerous cloud providers to remotely mount a local USB device. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 10:06:39 |
STOP Ransomware vaccine released to block encryption (lien direct) |
German security software company G DATA has released a vaccine that will block STOP Ransomware from encrypting victims' files after infection. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 08:53:43 |
QNAP warns users of bitcoin miner targeting their NAS devices (lien direct) |
QNAP warned customers today of ongoing attacks targeting their NAS (network-attached storage) devices with cryptomining malware, urging them to take measures to protect them immediately. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 04:04:02 |
(Déjà vu) Twitter bots pose as support staff to steal your cryptocurrency (lien direct) |
Scammers monitor every tweet containing requests for support on MetaMask, TrustWallet, and other popular crypto wallets, and respond to them with scam links in just seconds. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 04:04:02 |
Twitter bots monitor every tweet to push cryptocurrency scams (lien direct) |
Scammers monitor every tweet containing requests for support on MetaMask, TrustWallet, and other popular crypto wallets, and respond to them with scam links in just seconds. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-07 02:39:46 |
Nordic Choice Hotels hit by Conti ransomware, no ransom demand yet (lien direct) |
Nordic Choice Hotels has now confirmed a cyber attack on its systems from the Conti ransomware group. Although there is no indication of card or payment information being affected, information pertaining to guest bookings was potentially leaked. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-06 16:53:08 |
Microsoft seizes sites used by APT15 Chinese state hackers (lien direct) |
Microsoft seized today dozens of malicious sites used by the Nickel China-based hacking group to target organizations in the US and 28 other countries worldwide. [...] |
|
APT 15
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-06 14:25:41 |
Eurostar tests facial recognition system on London train station (lien direct) |
Eurostar is testing a new biometric facial recognition technology on passengers traveling from London's St Pancras International station to continental Europe. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-06 13:46:47 |
France warns of Nobelium cyberspies attacking French orgs (lien direct) |
The French national cyber-security agency ANSSI said today that the Russian-backed Nobelium hacking group behind last year's SolarWinds hack has been targeting French organizations since February 2021. [...] |
Hack
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-06 12:22:00 |
Hundreds of SPAR stores shut down, switch to cash after cyberattack (lien direct) |
Approximately 330 SPAR shops in North East England face severe operational problems following a weekend cyberattack, forcing many stores to close or switch to cash-only payments. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-06 11:17:11 |
WhatsApp adds default disappearing messages for new chats (lien direct) |
WhatsApp announced today that it had expanded the privacy control features with the addition of default disappearing messages for all newly initiated chats. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-12-06 10:30:11 |
Microsoft offers 50% subscription discounts to Office pirates (lien direct) |
Microsoft is offering discounts of up to 50% on Microsoft 365 subscriptions to those using pirated versions of Microsoft Office willing to switch to a genuine version. [...] |
|
|
|