What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-02-11 11:09:51 | Senators: CIA Has Secret Program That Collects American Data (lien direct) | The CIA has a secret, undisclosed data repository that includes information collected about Americans, two Democrats on the Senate Intelligence Committee said. While neither the agency nor lawmakers would disclose specifics about the data, the senators alleged the CIA had long hidden details about the program from the public and Congress. | |||
|
2022-02-11 09:47:55 | Vulnerabilities Found by Google Researchers in 2021 Got Patched on Average in 52 Days (lien direct) | Google's Project Zero has observed a decrease in the overall time vendors need to address vulnerabilities reported by the bug hunting team. Between 2019 and 2021, the team reported a total of 376 vulnerabilities and saw most of them (351) get patched. Of the remaining flaws, 14 are marked “WontFix” by the vendor and 11 remain unfixed. | |||
|
2022-02-10 22:22:00 | Alphabet\'s CapitalG Makes Big Bet on Salt Security (lien direct) | Salt Security is the latest addition to a growing list of cybersecurity startups boasting billion-dollar valuations. The Palo Alto, Calif.-based Salt Security on Thursday announced a new $140 million funding round that brings its valuation to $1.4 billion and signals heightened investor interest in the API security space. | |||
|
2022-02-10 20:27:37 | Apple Says WebKit Zero-Day Hitting iOS, macOS Devices (lien direct) | Apple's struggles with zero-day attacks on its iOS and macOS platforms are showing no signs of slowing down. For the second time in as many months, Cupertino released iOS, iPadOS and macOS updates to address a critical WebKit security defect (CVE-2022-22620) that exposes Apple devices to remote code execution attacks. | |||
|
2022-02-10 19:22:53 | Ransomware Recovery Startup Calamu Banks $16.5M Investment (lien direct) | Calamu, an early-stage cybersecurity startup building technology to help businesses recover from ransomware infections, has raised $16.5 million in venture capital funding. | Ransomware | ||
|
2022-02-10 18:54:55 | Data Protection and Privacy Firm Titaniam Raises $6 Million in Seed Funding (lien direct) | Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta Ventures and individual investors. Titaniam seeks to square the circle between data protection and data usability. | |||
|
2022-02-10 16:05:46 | 2021 Record Year for Cybersecurity M&A, Financing: Report (lien direct) | 2021 was a record year for the cybersecurity industry in terms of mergers and acquisitions, as well as funding activity, according to financial advisory firm Momentum Cyber. | |||
|
2022-02-10 13:59:51 | Meta Sues Two Nigerians Who Lured Facebook Users to Phishing Sites (lien direct) | Facebook parent company Meta this week announced it has taken legal action against two Nigerians for their alleged roles in financial scams targeting Facebook and Instagram users. | |||
|
2022-02-10 13:29:59 | New Vulnerabilities Can Allow Hackers to Remotely Crash Siemens PLCs (lien direct) | Siemens this week announced the availability of patches and mitigations for a series of severe vulnerabilities that can be exploited to remotely crash some of the company's SIMATIC products. | |||
|
2022-02-10 12:42:44 | Critical Code Execution Flaws Patched in \'PHP Everywhere\' WordPress Plugin (lien direct) | Thousands of WordPress websites were impacted by three remote code execution vulnerabilities that were identified in the PHP Everywhere plugin, the Wordfence team at WordPress security company Defiant warns. | |||
|
2022-02-10 11:59:02 | Ransomware Targeted 14 of 16 U.S. Critical Infrastructure Sectors in 2021 (lien direct) | US, UK and Australia Warn of Increase in Sophisticated Ransomware Attacks An increase in attack sophistication is proof of the growing threat that ransomware poses to all organizations, cybersecurity agencies from the United States, United Kingdom, and Australia said on Wednesday. | Ransomware Threat | ||
|
2022-02-10 11:45:19 | The SASE Conversation in 2022, a Resolution for the Future (lien direct) | SASE can be a game-changer to manage risk during the continuing journey to the cloud | |||
|
2022-02-10 11:37:14 | University Project Cataloged 1,100 Ransomware Attacks on Critical Infrastructure (lien direct) | A Temple University research project that tracks ransomware attacks on critical infrastructure has documented more than 1,100 incidents to date. | Ransomware | ||
|
2022-02-10 11:26:26 | Web Skimmer Injected Into Hundreds of Magento-Powered Stores (lien direct) | More than 500 online stores running the Magento 1 eCommerce platform were compromised with a digital skimmer, eCommerce security firm Sansec says. | |||
|
2022-02-09 16:42:13 | Canonic Software Emerges From Stealth With $6 Million and SaaS App Sandbox (lien direct) | Tel Aviv, Israel-based Canonic Security has emerged from stealth with $6 million seed funding from investors including First Round Capital, Elron Ventures, SV Angel and Operator Partners. The company provides a third-party app governance platform powered by an app sandbox. | |||
|
2022-02-09 16:14:55 | Russian Law Enforcement Take Down Several Cybercrime Forums (lien direct) | Russian authorities this week announced that they have seized Ferum Shop, Sky-Fraud, and Trump's Dumps, three well-known online shops for stolen payment card data. | |||
|
2022-02-09 15:49:22 | Hamas Cyberspies Return With New Malware After Exposure of Operations (lien direct) | A cyberespionage group linked in the past to the Palestinian terrorist organization Hamas took a break after its operations were exposed last summer and returned with new tools and techniques. | Malware | ||
|
2022-02-09 13:54:14 | Vulnerability Remediation Platform Vicarius Raises $24 Million (lien direct) | Vulnerability remediation platform Vicarius today announced it has raised $24 million in a Series A funding round led by AllegisCyber Capital, AlleyCorp, and JVP. The New York-based company's cloud-first, integrated platform – called Topia – helps organizations identify, prioritize and address software vulnerabilities before hackers can exploit them. | |||
|
2022-02-09 13:16:30 | Data Highlights Growing Threat From Intelligent Bots Operated at Scale by Cybercriminals (lien direct) | The intelligent bot revolution continues. Eighty-six percent of attacks against accounts are now driven by bots that have become 3 times more complex than those seen in earlier years – making it harder for security teams to detect bot signatures. | Threat | ||
|
2022-02-09 12:52:49 | FBI Received 1,600 SIM Swapping Complaints in 2021 (lien direct) | The Federal Bureau of Investigation (FBI) this week announced that between 2018 and 2021 its Internet Crime Complaint Center (IC3) received more than 1,900 complaints related to SIM swapping. | |||
|
2022-02-09 12:02:44 | Protecting Cryptocurrencies and NFTs - What\'s Old is New (lien direct) | Five steps that end-users can take to protect themselves against cryptocurrency losses | |||
|
2022-02-09 11:56:57 | (Déjà vu) ICS Patch Tuesday: Siemens, Schneider Electric Address Nearly 50 Vulnerabilities (lien direct) | Industrial giants Siemens and Schneider Electric released a total of 15 advisories on Tuesday to address nearly 50 vulnerabilities discovered in their products. Siemens | |||
|
2022-02-09 01:45:19 | Poland Launches Cybersecurity Military Unit (lien direct) | Poland's defense minister on Tuesday appointed an army general to head a new Cyber Defense Force to officially launch the unit's operation. | |||
|
2022-02-08 20:13:15 | SAP Customers Warned About Critical \'ICMAD\' Vulnerabilities (lien direct) | As part of its February 2022 Security Patch Day, German software maker SAP has announced the release of 13 new security notes and updates for five other security notes. | |||
|
2022-02-08 19:50:57 | Microsoft Patches for 51 Windows Security Defects (lien direct) | Microsoft's Patch Tuesday train rumbled into Windows networks with fixes for 51 documented security vulnerabilities, some serious enough to cause full computer takeover attacks. | |||
|
2022-02-08 18:42:59 | Adobe Patches 13 Vulnerabilities in Illustrator (lien direct) | Adobe's February Patch Tuesday updates address over a dozen vulnerabilities, most of which impact the company's Illustrator vector graphics software. | |||
|
2022-02-08 17:56:38 | Justice Dept. Announces $3.6B Crypto Seizure, 2 Arrests (lien direct) | The Justice Department announced Tuesday its largest-ever financial seizure - more than $3.5 billion - and the arrests of a New York couple accused of conspiring to launder billions of dollars in cryptocurrency stolen from the 2016 hack of a virtual currency exchange. | Hack | ||
|
2022-02-08 16:46:15 | Law Enforcement Blowback, Cyber Insurance Renewals Powering Anti-Ransomware Success (lien direct) | News analysis: SecurityWeek Editor-at-Large Ryan Naraine examines several factors driving success in the fight against data extortion attacks. | |||
|
2022-02-08 16:09:06 | Cyberattack Targets Vodafone Portugal, Disrupts Services (lien direct) | Vodafone Portugal, one of the country's leading telecommunications companies, said Tuesday it had been hacked though no confidential customer data was compromised. | Guideline | ||
|
2022-02-08 15:30:04 | Critical Flaws Expose Mimosa Wireless Broadband Devices to Remote Attacks (lien direct) | A researcher has discovered several critical vulnerabilities in wireless broadband products made by Mimosa Networks. The flaws can expose affected devices to remote attacks. Mimosa, a division of Airspan, provides wireless broadband solutions that can be used to connect dense urban homes, as well as hard-to-reach rural homes. | |||
|
2022-02-08 13:33:27 | Microsoft Ups Office Protections With Improved Blocking of Macros (lien direct) | Microsoft on Monday announced improved protections for users of its Office suite by no longer allowing them to enable macros with a single click. | |||
|
2022-02-08 13:17:39 | OT Security Firm Shift5 Raises $50M to Protect Planes, Trains, and Tanks From Cyberattacks (lien direct) | Arlington, VA-based OT security firm Shift5 has raised $50 million in a Series B funding round led by Insight Partners. The firm provides security for the OT within and used by critical vehicles – such as military combat vehicles and civilian airlines, locomotives and ships. | |||
|
2022-02-08 13:15:11 | Android\'s February 2022 Security Updates Patch 36 Vulnerabilities (lien direct) | Google on Monday announced that the Android security updates for February 2022 patch a total of 36 vulnerabilities. The first part of the update arrives on devices as the 2022-02-01 patch level and delivers fixes for 15 security holes in three components, namely Framework, Media framework, and System. | |||
|
2022-02-08 12:36:36 | SecurityWeek Study: Over 430 Cybersecurity Mergers & Acquisitions Announced in 2021 (lien direct) | 
|
|||
|
2022-02-08 11:11:42 | Data of Puma Employees Stolen in Kronos Ransomware Attack (lien direct) | Data of 6,632 Puma employees was stolen in a December 2021 ransomware attack that hit HR management platform Ultimate Kronos Group (UKG). | Ransomware | ||
|
2022-02-07 22:11:36 | High-Severity Flaw in Argo CD Is Information Leak Risk (lien direct) | A high-severity security vulnerability in Argo CD could allow an attacker to access sensitive information from target applications. | Vulnerability | ||
|
2022-02-07 22:02:01 | UpdateAgent macOS Malware Becoming Stealthier, More Menacing (lien direct) |
Type:
Story
Image:
Link:
UpdateAgent macOS Malware Becoming Stealthier, More Menacing
Microsoft Says "UpdateAgent" Mac Trojan Becoming Fully-Powered Spy Toolkit
|
Malware | ||
|
2022-02-07 22:01:44 | Google Cloud Gets Virtual Machine Threat Detection (lien direct) | Google on Monday announced the public preview of a new tool to help identify threats within virtual machines (VMs) running on its Google Cloud infrastructure. | Tool Threat | ||
|
2022-02-07 20:35:23 | IRS to End Use of Facial Recognition to Identify Taxpayers (lien direct) | The IRS said Monday it will suspend the use of facial recognition technology to authenticate people who create online accounts after the practice was criticized by privacy advocates and lawmakers. | |||
|
2022-02-07 18:40:14 | New Mexico Lawmakers Propose $45M School Cybersecurity Fund (lien direct) | Lawmakers in New Mexico are considering major investments in cybersecurity, following two serious cyberattacks against school districts in the state just last month, and increased vulnerability of information technology in K-12 schools nationally. | Vulnerability | ||
|
2022-02-07 17:46:48 | Microsoft Says Mac Trojan Becoming Stealthier, More Menacing (lien direct) | Malware hunters at Microsoft are calling attention to a nasty macOS malware family that has evolved quickly from a basic information-gathering trojan to a stealthy backdoor with more powerful capabilities. | Malware | ||
|
2022-02-07 16:13:15 | Microsoft Disables MSIX Protocol Due to Abuse by Malware (lien direct) | Microsoft announced on Friday that the ms-appinstaller protocol for MSIX has been disabled temporarily due to the fact that it has been abused by malware. | Malware | ||
|
2022-02-07 14:42:54 | Gaining and Retaining Security Staff in The Age of the Great Resignation (lien direct) | Cybersecurity employers need to adapt their recruitment and retention practices to gain from benefits and minimize detriments | |||
|
2022-02-07 14:11:47 | FBI Publishes IOCs for LockBit 2.0 Ransomware Attacks (lien direct) | The Federal Bureau of Investigation (FBI) on Friday released indicators of compromise (IOCs) associated with the LockBit 2.0 ransomware. LockBit 2.0, which is distributed as a Ransomware-as-a-Service (RaaS), makes detection and mitigation difficult, due to the use of a variety of tactics, techniques, and procedures (TTPs). | Ransomware | ||
|
2022-02-07 13:49:30 | FCC: Telecom Firms Requested $5.6 Billion to Replace Chinese Gear (lien direct) | The U.S. government has allocated $1.9 billion to help small telecom providers replace Chinese equipment in their networks, but the Federal Communications Commission (FCC) says these companies have requested $5.6 billion. | |||
|
2022-02-07 12:41:19 | UN Experts: North Korea Stealing Millions in Cyber Attacks (lien direct) | North Korea is continuing to steal hundreds of millions of dollars from financial institutions and cryptocurrency firms and exchanges, illicit money that is an important source of funding for its nuclear and missile programs, U.N. experts said in a report quoting cyber specialists. | |||
|
2022-02-07 11:55:33 | New Report Alleges Widespread Pegasus Spying by Israel Police (lien direct) | Police used Pegasus spyware to hack phones of dozens of prominent Israelis, including a son of former premier Benjamin Netanyahu, activists and senior government officials, an Israeli newspaper reported Monday. | Hack | ||
|
2022-02-07 11:34:18 | Ransomware Attack on Aviation Services Firm Swissport Leads to Flight Delays (lien direct) | Aviation services company Swissport on Friday said it was targeted in a cyberattack that has caused some disruption to its operations. | |||
|
2022-02-07 11:06:55 | CISA Urges Organizations to Patch Exploited Windows Vulnerability (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its list of vulnerabilities known to be exploited in malicious attacks with a recently addressed Windows zero-day flaw. | Vulnerability | ||
|
2022-02-06 21:20:51 | Breach of Washington State Database May Expose Personal Information (lien direct) | The Washington State Department of Licensing said the personal information of potentially millions of licensed professionals may have been exposed after it detected suspicious activity on its online licensing system. |
To see everything:
Our RSS (filtrered)
