Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 13:54:57 |
New Windows 11 build fixes Microsoft Installer issue breaking apps (lien direct) |
Microsoft has fixed a recently confirmed Windows 11 issue in a newly released build for Windows Insiders in the Beta and Release Preview channels. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 11:32:16 |
Fake TSA PreCheck sites scam US travelers with fake renewals (lien direct) |
There has been a surge in reports of people getting scammed after visiting TSA PreCheck, Global Entry, and NEXUS application service sites, being charged $140 only to get nothing in return. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 10:49:19 |
Microsoft Authenticator gets new enterprise security features (lien direct) |
Microsoft has added new security features for Microsoft Authenticator users that further secure the app and make it easier to roll out in enterprise environments. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 10:35:08 |
Utah medical center hit by data breach affecting 582k patients (lien direct) |
Utah Imaging Associates (UIA), a Utah-based radiology center, has announced a data breach affecting 582,170 people after their personal information was exposed. [...] |
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 09:57:57 |
Six million Sky routers exposed to takeover attacks for 17 months (lien direct) |
Around six million Sky Broadband customer routers in the UK were affected by a critical vulnerability that took over 17 months to roll out a fix to customers. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 08:05:29 |
(Déjà vu) US regulators order banks to report cyberattacks within 36 hours (lien direct) |
US federal bank regulatory agencies have approved a new rule requiring banks to notify their primary federal regulators of significant computer-security incidents within 36 hours. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 08:05:29 |
US regulators order banks to report cyberattacks within 3 days (lien direct) |
US federal bank regulatory agencies have approved a new rule requiring banks to notify their primary federal regulators of significant computer-security incidents within 36 hours. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-19 06:36:10 |
Microsoft: Windows Installer breaks apps after updates, repairs (lien direct) |
Microsoft has confirmed a new known issue impacting client and server Windows versions that breaks apps after updating or repairing them using the Windows Installer (previously known as Microsoft Installer). [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 16:19:09 |
Android malware BrazKing returns as a stealthier banking trojan (lien direct) |
The BrazKing Android banking trojan has returned with dynamic banking overlays and a new implementation trick that enables it to operate without requesting risky permissions. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 15:19:37 |
US indicts Iranian hackers for Proud Boys voter intimidation emails (lien direct) |
The U.S. Department of State is offering a $10 million reward for information about the activities of two Iranian nationals charged for cyber activity intended to "intimidate and influence" American voters during the 2020 U.S. presidential campaign. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 14:51:27 |
Winamp prepares a relaunch, new beta version almost ready (lien direct) |
Winamp is getting closer to release with a redesigned website, logo, and a new beta signup allowing users to soon test the upcoming version of the media player. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 13:28:32 |
(Déjà vu) Hackers deploy Linux malware, web skimmer on e-commerce servers (lien direct) |
Security researchers discovered that attackers are also deploying a Linux backdoor on compromised e-commerce servers after injecting a credit card skimmer into online shops' websites. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 13:28:32 |
Hackers deploy Linux malware, web skimmer on eCommerce servers (lien direct) |
Security researchers discovered that attackers are also deploying a Linux backdoor on compromised e-commerce servers after injecting a credit card skimmer into online shops' websites. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 11:57:31 |
Microsoft: Iranian state hackers increasingly target IT sector (lien direct) |
Microsoft says Iranian-backed hacking groups have increasingly attempted to compromise IT services companies this year to steal credentials they could use to breach the systems of downstream clients. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 11:42:58 |
New Memento ransomware switches to WinRar after failing at encryption (lien direct) |
A new ransomware group called Memento takes the unusual approach of locking files inside password-protected archives after their encryption method kept being detected by security software. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 11:07:32 |
Microsoft increases Windows 11 rollout pace to Windows 10 devices (lien direct) |
Microsoft has started rolling out the Windows 11 upgrade to more eligible Windows 10 devices faster after not detecting update experience issues during the first rollout phases. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 10:38:55 |
Glitch service abused to host short-lived phishing sites (lien direct) |
Phishing actors are now actively abusing the Glitch platform to host short-lived credential-stealing URLs for free while evading detection and takedowns. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 09:47:45 |
North Korean cyberspies target govt officials with custom malware (lien direct) |
A state-sponsored North Korean threat actor tracked as TA406 was recently observed deploying custom info-stealing malware in espionage campaigns. [...] |
Malware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 08:46:51 |
FBI warns of APT group exploiting FatPipe VPN zero-day since May (lien direct) |
The Federal Bureau of Investigation (FBI) warned of an advanced persistent threat (APT) compromising FatPipe router clustering and load balancer products to breach targets' networks. [...] |
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-18 06:32:33 |
RedCurl corporate espionage hackers resume attacks with updated tools (lien direct) |
A crew of highly-skilled hackers specialized in corporate espionage has resumed activity, one of their victims this year being a large wholesale company in Russia. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 14:34:39 |
Most SS7 exploit service providers on dark web are scammers (lien direct) |
The existence of Signaling System 7 (SS7) mobile telephony protocol vulnerabilities is something security researchers warned about in 2016, and it only took a year before the first attacks exploiting them were observed. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 13:31:23 |
Russian ransomware gangs start collaborating with Chinese hackers (lien direct) |
There's some unusual activity brewing on Russian-speaking cybercrime forums, where hackers appear to be reaching out to Chinese counterparts for collaboration. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 12:07:24 |
TikTok phishing threatens to delete influencers\' accounts (lien direct) |
Researchers have observed a new phishing campaign primarily targeting high-profile TikTok accounts belonging to influencers, brand consultants, production studios, and influencers' managers. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 11:02:43 |
Victims of $2 billion BitConnect fraud to get back $57 million (lien direct) |
U.S. law enforcement authorities will start liquidating roughly $57 million worth of cryptocurrency seized from the now-defunct BitConnect crypto exchange to provide some restitution to defrauded investors. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 09:44:24 |
US, UK warn of Iranian hackers exploiting Microsoft Exchange, Fortinet (lien direct) |
US, UK, and Australian cybersecurity agencies warned today of ongoing exploitation of Microsoft Exchange ProxyShell and Fortinet vulnerabilities linked to an Iranian-backed hacking group. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 08:00:00 |
CISA releases cybersecurity response plans for federal agencies (lien direct) |
The Cybersecurity and Infrastructure Security Agency (CISA) has released new cybersecurity response plans (known as playbooks) for federal civilian executive branch (FCEB) agencies. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 07:05:53 |
Microsoft starts rolling out a new Windows 11 media player (lien direct) |
Microsoft is now rolling out a new media player that matches Windows 11's look and feel as a replacement for the Windows 10 Groove Music and (in the future) the legacy Windows Media Player app. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 03:33:33 |
Threat actors offer millions for zero-days, developers talk of exploit-as-a-service (lien direct) |
While mostly hidden in private conversations, details sometimes emerge about the parallel economy of vulnerability exploits on underground forums, revealing just how fat of a wallet some threat actors have. [...] |
Vulnerability
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-17 03:23:17 |
Windows 11 issue with Intel audio drivers triggers blue screens (lien direct) |
Microsoft has confirmed a new known issue impacting Windows 11 customers and triggering to blue screens of death (BSODs) on affected systems. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 18:07:17 |
Here are the new Emotet spam campaigns hitting mailboxes worldwide (lien direct) |
The Emotet malware kicked into action yesterday after a ten-month hiatus with multiple spam campaigns delivering malicious documents to mailboxes worldwide. [...] |
Spam
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 13:58:23 |
Windows 10 21H2 is released, here are the new features (lien direct) |
Microsoft has released Windows 10 21H2, also known as the November 2021 Update, and it is available to users running Windows 10 2004 or later as an optional update in Windows Update. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 13:25:50 |
Google Chrome 96 breaks Twitter, Discord, video rendering and more (lien direct) |
Google Chrome 96 was released yesterday, and users are reporting problems with Twitter, Discord, and Instagram caused by the new version. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 13:11:31 |
Microsoft warns of the evolution of six Iranian hacking groups (lien direct) |
The Microsoft Threat Intelligence Center (MSTIC) has presented an analysis of the evolution of several Iranian threat actors at the CyberWarCon 2021, and their findings show increasingly sophisticated attacks. [...] |
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 12:35:50 |
WordPress sites are being hacked in fake ransomware attacks (lien direct) |
A new wave of attacks starting late last week has hacked close to 300 WordPress sites to display fake encryption notices, trying to trick the site owners into paying 0.1 bitcoin for restoration. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 12:01:36 |
These are the cryptomixers hackers use to clean their ransoms (lien direct) |
Cryptomixers have always been at the epicenter of cybercrime activity, allowing hackers to "clean" cryptocurrency stolen from victims and making it hard for law enforcement to track them. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 10:31:03 |
Microsoft adds AI-driven ransomware protection to Defender (lien direct) |
Microsoft has introduced an AI-driven ransomware attack detection system for Microsoft Defender for Endpoint customers that complements existing cloud protection by evaluating risks and blocking actors at the perimeter. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-16 07:43:30 |
NPM fixes private package names leak, serious authorization bug (lien direct) |
The largest software registry of Node.js packages, npm, has disclosed fixing multiple security flaws. The first flaw concerns leak of names of private npm packages on the npmjs.com's "replica" server. Whereas, the second flaw allows attackers to publish new versions of any existing npm package that they do not own or have rights to. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 17:27:28 |
New Rowhammer technique bypasses existing DDR4 memory defenses (lien direct) |
Researchers have developed a new fuzzing-based technique called 'Blacksmith' that revives Rowhammer vulnerability attacks against modern DRAM devices that bypasses existing mitigations. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 15:04:23 |
(Déjà vu) Emotet malware is back and rebuilding its botnet via TrickBot (lien direct) |
The Emotet malware was considered the most widely spread malware in the past, using spam campaigns and malicious attachments to distribute the malware. [...] |
Spam
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 15:04:23 |
The Emotet malware is back and rebuilding its botnet via TrickBot (lien direct) |
The Emotet malware was considered the most widely spread malware in the past, using spam campaigns and malicious attachments to distribute the malware. [...] |
Spam
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 14:15:27 |
Alibaba ECS instances actively hijacked by cryptomining malware (lien direct) |
Threat actors are hijacking Alibaba Elastic Computing Service (ECS) instances to install cryptominer malware and harness the available server resources for their own profit. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 12:15:37 |
High severity BIOS flaws affect numerous Intel processors (lien direct) |
Intel has released an advisory to confirm the existence of two high-severity vulnerabilities that affect a wide range of Intel processor families. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 10:52:48 |
7 million Robinhood user email addresses for sale on hacker forum (lien direct) |
The data for approximately 7 million Robinhood customers stolen in a recent data breach are being sold on a popular hacking forum and marketplace. [...] |
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 10:01:15 |
Moses Staff hackers wreak havoc on Israeli orgs with ransomless encryptions (lien direct) |
A new hacker group named Moses Staff has recently claimed responsibility for numerous attacks against Israeli entities, which appear politically motivated as they do not make any ransom payment demands. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-15 04:35:02 |
New Microsoft emergency updates fix Windows Server auth issues (lien direct) |
Microsoft has released out-of-band updates to address authentication failures related to Kerberos delegation scenarios impacting Domain Controllers (DC) running supported versions of Windows Server. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-14 10:00:00 |
US Education Dept urged to boost K-12 schools\' ransomware defenses (lien direct) |
The US Department of Education and Department of Homeland Security (DHS) were urged this week to more aggressively strengthen cybersecurity protections at K-12 schools across the nation to keep up with a massive wave of attacks. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-13 13:36:16 |
FBI system hacked to email \'urgent\' warning about fake cyberattacks (lien direct) |
The Federal Bureau of Investigation (FBI) email servers were hacked to distribute spam email impersonating FBI warnings that the recipients' network was breached and data was stolen. [...] |
Spam
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-13 11:12:06 |
Fake end-to-end encrypted chat app distributes Android spyware (lien direct) |
The GravityRAT remote access trojan is being distributed in the wild again, this time under the guise of an end-to-end encrypted chat application called SoSafe Chat. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-13 10:01:02 |
Surveillance firm pays $1 million fine after \'spy van\' scandal (lien direct) |
The Office of the Commissioner for Personal Data Protection in Cyprus has collected a $1 million fine from intelligence company WiSpear for gathering mobile data from various individuals arriving at the airport in Larnaca. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-11-13 08:00:00 |
New Windows 11 build fixes widespread printer issues, system freezes (lien direct) |
Microsoft has fixed a long list of issues impacting Windows 11 in a newly released build for Windows Insiders in the Beta and Release Preview Channels. [...] |
|
|
|