What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-05-28 10:22:10 | Bank of America Breach (lien direct) | Bank of America Corporation has disclosed a data breach affecting clients who have applied for the Paycheck Protection Program (PPP). Client information was exposed on April 22 when the bank uploaded PPP applicants’ details onto the US Small Business Administration’s test platform. The platform was designed to give lenders the opportunity to test the PPP […] | Data Breach | ||
|
2020-05-28 10:21:05 | Hackers use old code to build new malware (lien direct) | A well-known hacking group, previously linked to the Chinese government, has developed new malware by merging features and source code from older projects. These are the findings of an investigation conducted by cybersecurity researchers at Intezer, who dubbed the new malware Ketrum because it is a patchwork of code from older Ketrican and Okrum backdoors. […] | Malware | ||
|
2020-05-28 10:19:56 | Governments targeted with revamped malware (lien direct) | Turla, a sophisticated hacking group with suspected ties to the Russian government, recently used a revamped version of its malware to target government entities in Eastern Europe, according to new research from the security firm ESET. Recent attacks using the revised malware have targeted two ministries of foreign affairs in Eastern Europe as well as […] | Malware | ||
|
2020-05-28 10:18:51 | (Déjà vu) PonyFinal ransomware warning issued by Microsoft (lien direct) | Microsoft’s security team has issued an advisory today warning organizations around the globe to deploy protections against a new strain of ransomware that has been in the wild over the past two months. “PonyFinal is a Java-based ransomware that is deployed in human-operated ransomware attacks,” Microsoft said in a series of tweets published today. Human-operated […] | Ransomware | ||
|
2020-05-27 11:24:13 | UK Fears Cybercriminals Will Use NHSX COVID-19 Tracing App to Launch Cyber Attacks (lien direct) | Nearly half (48%) of the UK public surveyed about the NHSX COVID-19 tracing app do not trust the UK government to keep their information safe from hackers. This is according to a study carried out by Censuswide on behalf of Anomali, a leader in intelligence-driven cybersecurity solutions. The nation-wide survey, released today, examined consumer attitudes to the proposed tracing app, particularly their confidence and wider trust in the […] | Guideline | ||
|
2020-05-27 09:47:32 | Stormont investigate data breach of victims of historical abuse (lien direct) | Stormont’s Department of Finance is conducting an investigation into a data breach involving the identities of hundreds of historical abuse survivors, the first minister has said. It comes after BBC News NI revealed a letter had been sent without the names of 250 recipients being anonymised. It was sent on behalf of Interim Victims’ Advocate […] | Data Breach | ||
|
2020-05-27 09:46:40 | Backdoor into Windows computers opened my malware (lien direct) | A new version of the Sarwent malware can open the Remote Desktop Protocol (RDP) port on target Windows computers to make sure that crooks can find their way back into the system through the backdoor. Whether that access is used later by the same crooks or sold to ransomware gangs or cyber espionage groups is […] | Ransomware Malware | ||
|
2020-05-27 09:45:20 | (Déjà vu) Android bug, Strandhogg 2.0, allows malware to steal data (lien direct) | Security researchers have found a major vulnerability in almost every version of Android, which lets malware imitate legitimate apps to steal app passwords and other sensitive data. The vulnerability, dubbed Strandhogg 2.0 (named after the Norse term for a hostile takeover) affects all devices running Android 9.0 and earlier. It's the “evil twin” to an […] | Malware Vulnerability | ||
|
2020-05-27 09:44:23 | £18 billion class-action lawsuit filed against EasyJet after data breach (lien direct) | UK budget airline easyJet is facing an £18 billion class-action lawsuit filed on behalf of customers impacted by a recently-disclosed data breach. Made public on May 19, easyJet said that information belonging to nine million customers may have been exposed in a cyberattack, including over 2,200 credit card records. The “highly sophisticated” attacker to blame […] | Data Breach | ||
|
2020-05-27 09:43:36 | Monero Mining Malware infects corporate systems (lien direct) | The Blue Mockingbird malware gang has infected more than 1000 business systems with Monero mining malware since December 2019. The global scale of the hacker group's operations was revealed by cloud security firm Red Canary on May 26. The report outlined the group's methodology. The malware attacks servers running ASP.NET applications and exploits a vulnerability […] | Malware Vulnerability | ||
|
2020-05-26 11:02:32 | (Déjà vu) Computers scanned for remote access programs when on eBay website (lien direct) | When visiting the eBay.com site, a script will run that performs a local port scan of your computer to detect remote support and remote access applications. Many of these ports are related to remote access/remote support tools such as the Windows Remote Desktop, VNC, TeamViewer, Ammy Admin, and more. As the port scan is only looking for Windows […] | |||
|
2020-05-26 10:50:08 | Blue Mockingbird malware gang infect enterprise systems (lien direct) | Thousands of enterprise systems are believed to have been infected with a cryptocurrency-mining malware operated by a group tracked under the codename of Blue Mockingbird. Discovered earlier this month by malware analysts from cloud security firm Red Canary, the Blue Mockingbird group is believed to have been active since December 2019. Researchers say Blue Mockingbird […] | Malware | ||
|
2020-05-26 10:47:03 | (Déjà vu) Databases of online shops sold by hackers if ransom not paid (lien direct) | More than two dozen SQL databases stolen from online shops in various countries are being offered for sale on a public website. In total, the seller provides over 1.5 million rows of records but the amount of stolen data is much larger. The attacker is hacking into insecure servers that are reachable over the public […] | |||
|
2020-05-26 10:42:00 | Stealthy Malware Steals Your Discord Password And Attacks Your Friends (lien direct) | In just five short years, Discord's popularity with gamers has soared. Today, Discord has 250 million registered users and around 15 million of them active on any given day… which is why it's become a popular target for cybercriminals. One persistent threat that has plagued Discord for some time is AnarchyGrabber. It's a particularly stealthy […] | Malware Threat | ||
|
2020-05-22 15:33:05 | Cybersecurity Experts Comment on Phishing Campaign That Can Bypass MFA (lien direct) | Cofence Phishing Defence Center have discovered yet the latest of cybercriminals’ tricks: a phishing campaign that bypasses MFA. Different from other credential harvesting attacks, the scam attempts to trick users into granting permissions to an application that then proceeds to bypass multifactor authentication. Leveraging the OAuth2 framework and OpenID Connect protocol, this campaign’s main goal […] | |||
|
2020-05-22 14:50:33 | Securing Docker with CIS Controls (lien direct) | Containers, along with orchestrators such as Kubernetes, have ushered in a new era of application development methodology, enabling microservices architectures as well as continuous development and delivery. Docker is by far the most dominant container runtime engine, with a 91% penetration according to the State of the Container and Kubernetes Security Report. Containerization has many […] | Uber | ||
|
2020-05-22 10:24:22 | New Phishing tactic using Google Firebase (lien direct) | Cybercriminals are taking advantage of the Google name and the cloud to convince victims into handing over their login details. A series of phishing campaigns using Google Firebase storage URLs have surfaced, showing that cybercriminals continue to leverage the reputation of Google's cloud infrastructure to dupe victims and skate by secure email gateways. Google Firebase […] | ★★ | ||
|
2020-05-22 10:23:12 | Unemployment claimants suffer data breach (lien direct) | The social security numbers and home addresses of thousands of unemployment applicants inadvertently were exposed this week in three states that had contracted with Deloitte to build unemployment portals. In Ohio, Illinois and Colorado, thousands who applied for Pandemic Unemployment Assistance, or PUA, a type of unemployment newly available to the self-employed and gig workers, […] | Data Breach | Deloitte | ★★★★ |
|
2020-05-22 10:22:26 | Critical flaw in Cisco\'s Unified CCX (lien direct) | Cisco has fixed a critical remote code-execution flaw in its popular customer interaction management solution. Cisco has hurried out a fix out for a critical remote code-execution flaw in its customer interaction management solution, Cisco Unified Contact Center Express (CCX). Cisco's Unified CCX software is touted as a “contact center in a box” that allows […] | ★★★ | ||
|
2020-05-22 10:20:40 | Hackers try to exploit vulnerability in Sophos firewalls (lien direct) | UK cyber-security vendor Sophos published today an update on its investigation into a recent series of attacks that tried to exploit a zero-day vulnerability in its XG firewall product. Sophos said that after they learned of the incident and issued a hotfix, the attackers panicked and modified their attack routine to replace their original data-stealing […] | Vulnerability | ||
|
2020-05-22 10:19:46 | (Déjà vu) Banking Malware ZLoader spotted in over 100 email campaigns (lien direct) | A banking malware called ZLoader, last seen in early 2018, has been spotted in more than 100 email campaigns since the beginning of the year. The trojan is under active development with 25 versions seen in the wild since its comeback in December 2019, the latest one observed this month. The malicious email campaigns target […] | Malware | ||
|
2020-05-21 15:43:32 | Case study: Softcat Prevails Over Cybercrime With KnowBe4 (lien direct) | With a multitude of awards, ranging from CRN's 'Public Sector Reseller of the Year' to Great Places to Work and Best Managed IT Provider, Softcat is one of the largest and most reputable resellers of technology solutions and services in the United Kingdom. Its team of over 1,300 employees in offices across Britain and Ireland, […] | |||
|
2020-05-21 14:05:05 | Corelight Co-founders Receive Prestigious IEEE Test of Time Award (lien direct) | Corelight, provider of the most powerful network traffic analysis (NTA) solutions for cybersecurity, today announced two of its founders, Dr. Vern Paxson and Dr. Robin Sommer, have received the distinguished IEEE Security and Privacy “Test of Time” award for their work entitled “Outside the Closed World: On Using Machine Learning For Network Intrusion Detection” published in 2010. The […] | |||
|
2020-05-21 13:53:12 | Securonix Insider Threat Report: (lien direct) | A brand-new Insider Threat Report authored by Shareth Ben, director of insider threat and cyber threat analytics at Securonix has found that employees deemed “flight risks” are linked to around 60% of the insider threat incidents detected. Ben explained in the report that flight risks are those employees about to terminate employment with the company […] | Threat | ||
|
2020-05-21 09:43:49 | Home Chef Announces Data Breach (lien direct) | Meal kit delivery service Home Chef announced a data breach Wednesday, two weeks after reports that its customer information was for sale on the dark web. Home Chef, which was acquired by Kroger Co. in 2018, said it was notifying customers of the breach but didn't say how many customers were affected. In a statement, […] | Data Breach | ||
|
2020-05-21 09:43:06 | Web security flaws in QNAP storage devices (lien direct) | A security researcher has published details of how a series of web security flaws in QNAP network attached storage (NAS) devices leave many systems open to pwnage. Multiple vulnerabilities in QNAP Photo Station and CGI programs can be chained together to achieve a pre-authentication remote code execution attack, Henry Huang from CyCarrier CSIRT discovered. Huang […] | |||
|
2020-05-21 09:42:07 | 40 million user Wishbone records for sale (lien direct) | A hacker has put up for sale today the details of 40 million users registered on Wishbone, a popular mobile app that lets users compare two items in a simple voting poll. The data is being advertised across multiple hacking forums and being sold for 0.85 bitcoin (~$8000), according to ads seen by ZDNet. According […] | |||
|
2020-05-21 09:41:26 | Stolen data on \'dark web\' after Toll Group ransomware attack (lien direct) | Toll Group has provided an update on the ransomware attack it suffered following a January infection. The Australian transport giant said, after revealing the extent of data theft it suffered earlier this month, that the stolen information has found its way onto the “dark web”. “Following our announcement last week that a ransomware attacker had […] | Ransomware | ||
|
2020-05-21 09:40:44 | BEC Gang Earn Millions from Fraudulent COVID-19 Claims (lien direct) | The business email compromise (BEC) gang Scattered Canary has filed more than 200 fraudulent claims for unemployment benefits and for COVID-19 relief funds. An infamous business email compromise (BEC) gang has submitted hundreds of fraudulent claims with state-level U.S. unemployment websites and coronavirus relief funds. Researchers who tracked the fraudulent activity said cybercriminals may have […] | |||
|
2020-05-20 15:48:45 | Expert Insight: easyJet data breach (lien direct) | By now I'm sure that you have heard about the easyJet data breach. More than 9 million customers suffered breached personally identifiable information (PII), and some 2,000 customers had their card details “viewed”. Hugo van den Toorn, manager of offensive security at Outpost 24 warned that “often after such a breach, information will be sold […] | Data Breach | ||
|
2020-05-20 15:41:10 | Commitment to strong security leads to business benefit, AT&T Cybersecurity and ESG Report Suggests (lien direct) | As organisations rapidly adapt to a virtual business model and remote workforce, as a result of COVID-19, it has become even more challenging to identify and mitigate cyber threats. Therefore, the survival of a business, and its wider industry, could depends on its overall cybersecurity maturity and alignment to security best practises. AT&T Cybersecurity partnered with […] | |||
|
2020-05-20 09:57:55 | Android apps targeted by WolfRAT trojan (lien direct) | A new Trojan has been caught targeting Thai users of Whatsapp, Facebook Messenger, and Line messaging apps on the Android mobile platform. On Tuesday, Cisco Talos researchers said the malware, dubbed WolfRAT, is a new variant of DenDroid, a mobile Remote Access Trojan (RAT) that had its source code leaked in 2015. At the time, […] | |||
|
2020-05-20 09:57:06 | Animator App RCE Flaw patched by Adobe (lien direct) | A critical remote code execution flaw in Adobe Character Animator was fixed in an out-of-band Tuesday patch. Adobe has issued an out-of-band patch for a critical flaw in Adobe Character Animator, its application for creating live motion-capture animation videos. The flaw can be exploited by a remote attacker to execute code on affected systems. The […] | |||
|
2020-05-20 09:56:09 | Nationwide Study Finds that the Old and Vulnerable Could Be Excluded from Benefits of Contact-Tracing Apps (lien direct) | A newly commissioned study conducted by Censuswide on behalf of Anomali, a leader in intelligence-driven cybersecurity solutions, provides insight into public sentiment towards the NHSX COVID-19 tracing app. Surveying a thousand respondents across the United Kingdom, the results reveal that a significant proportion of the population are not prepared to download the app. Indeed, half of respondents (50%) know at least one person […] | Guideline | ||
|
2020-05-20 09:56:01 | Rich clients could be extorted after BlockFi breach (lien direct) | BlockFi disclosed a data breach that potentially leaked the physical addresses and account activity of its customers, highlighting the risks of KYC finance platforms. Crypto lending provider BlockFi reported on Tuesday that it suffered a data breach that may put some of its clients in physical danger. According to its incident report, some of the […] | Data Breach | ||
|
2020-05-20 09:55:09 | Unpatched bugs allow attacks on bluetooth chips (lien direct) | A host of unpatched security bugs that allow BIAS attacks affects Bluetooth chips from Apple, Intel, Qualcomm, Samsung and others. Academic researchers have uncovered security vulnerabilities in Bluetooth Classic that allows attackers to spoof paired devices: They found that the bugs allow an attacker to insert a rogue device into an established Bluetooth pairing, masquerading […] | |||
|
2020-05-20 09:53:06 | EasyJet Data Breach impacts nine million customers (lien direct) | A cyber attack on budget airline EasyJet has resulted in the exposure of the email addresses and flight details of nine million of its customers, and the credit card details of 2,208 of them says the airline. A cyber attack on budget airline EasyJet has resulted in the exposure of the email addresses and flight […] | Data Breach | ||
|
2020-05-19 15:38:21 | Untangling the Verizon Data Breach Investigation Report 2020 (lien direct) | Verizon published today its yearly Data Breach Investigation Report, based on real-world data from 41,686 security incidents and 2,013 data breaches provided by 73 data sources, both public and private entities, spanning 86 countries worldwide. The report provides a most useful snapshot of the current state of the fight against cybercrime, and highlights not only […] | Data Breach | ||
|
2020-05-19 15:25:26 | Cyber-burnout: The hidden cost of a security career (lien direct) | by Corin Imai, senior security advisor at DomainTools Cybercrime and mental health issues are both rampant. This article will look at how mental health issues can leave organisations more at risk to cybercrime, and how combatting cybercrime can affect mental health. Professional burnout is defined as a work-related condition of stress causing exhaustion, a sense of […] | |||
|
2020-05-19 10:32:17 | Hackers exploiting Magento vulnerability, FBI warns (lien direct) | The FBI says hackers are exploiting a three-year-old vulnerability in a Magento plugin to take over online stores and plant a malicious script that records and steals buyers’ payment card data. This type of attack is known as web skimming, e-skimming, or Magecart, and the FBI previously warned about a rise in attacks in October, […] | Vulnerability | ||
|
2020-05-19 10:31:36 | iOS bug on Edison Mail app exposes emails (lien direct) | A bug introduced in an iOS software update on the Edison Mail app allowed emails to be viewed by strangers. Edison Mail, a popular third-party email app, has warned thousands of iOS users that their emails may have been compromised after a security flaw exposed emails to complete strangers. Edison Mail, owned by Edison Software […] | |||
|
2020-05-19 10:30:52 | Hackers threaten to release Trump\'s “dirty laundry” (lien direct) | The hacker group behind last week’s REvil (Sodinokibi) ransomware attack on New York-based law firm Grubman Shire Meiselas & Sacks is now demanding $42 million and threatening to release controversial information on U.S. President Donald Trump. Last week, the hacker group infiltrated the law firm’s network and stole personal data and contractual information belonging to […] | Ransomware | ||
|
2020-05-19 10:30:03 | QakBot Trojan and ProLock Ransomware join up to attack (lien direct) | ProLock is relatively new, but already the ransomware is making waves by using QakBot infections to access networks, gain persistence and avoid detection. A relatively new ransomware, ProLock, has paired up with the QakBot banking trojan to access victims' networks. ProLock's leveraging of QakBot gives it bolstered persistence, anti-detection and credential-dumping techniques. ProLock ransomware first […] | Ransomware | ||
|
2020-05-19 10:28:34 | Unsecured cloud storage allows attacks according to Verizon data breach report (lien direct) | The plague of enterprises leaving cloud storage holding private data unprotected is starting to show up in the security statistics and is one of the few attacks on the rise, according to the Verizon Data Breach Investigation Report for 2020. That reality is both good and bad, said Gabe Bassett, senior information security data scientist […] | Data Breach | ||
|
2020-05-19 08:35:36 | What Does the Public Really Think About the NHSX COVID-19 Application? (lien direct) | The topic of the NHSX COVID-19 contact tracing app has been at the centre of many security debates lately. The discussion has been fuelled by security professionals, conspiracy theorists, and everyone in-between. However, many of the voices have not represented the British population that the application is designed to protect. With this in mind, Anomali, […] | ★★★★ | ||
|
2020-05-18 13:45:11 | It\'s Official! How You Present Yourself on Video Conferencing Could Have an Impact on Your Career (lien direct) | A new nationwide study commissioned by Eskenzi PR, a Queen's award-winning Tech PR agency and carried out by OnePoll, examined how video conferencing has changed workers' perception of their colleagues. The results, announced today, have found that nearly half (40%) of UK workers judge their colleagues on how their house looks over video conferencing. Fortunately, of those who […] | |||
|
2020-05-18 10:12:06 | (Déjà vu) European supercomputers hacked to mine cryptocurrency (lien direct) | Multiple supercomputers across Europe have been infected this week with cryptocurrency mining malware and have shut down to investigate the intrusions. Security incidents have been reported in the UK, Germany, and Switzerland, while a similar intrusion is rumored to have also happened at a high-performance computing center located in Spain. The first report of an […] | Malware | ||
|
2020-05-18 10:11:16 | (Déjà vu) ProLock ransomware decryptor branded ineffective by FBI (lien direct) | Multiple actors in the ransomware business saw the new coronavirus pandemic as the perfect opportunity to focus on an already overburdened healthcare sector. ProLock is yet another threat to the list. The FBI issued a flash alert at the beginning of the month to alert organizations of the new threat actor, saying that its targets […] | Ransomware Threat | ||
|
2020-05-18 10:10:20 | Toll Group hacker stole employee data (lien direct) | Australian transport giant Toll Group has revealed the extent of data theft it has suffered after its second bout of ransomware this year, following a January infection. “Our ongoing investigations have established that the attacker has accessed at least one specific corporate server. This server contains information relating to some past and present Toll employees, […] | Ransomware | ||
|
2020-05-18 10:09:37 | Hacking crew arrested in Romania (lien direct) | The Romanian law enforcement authorities arrested four cybercriminals that were planning to launch ransomware attacks on health care organizations in Romania. Three hackers were arrested in Romania and the fourth one was arrested in the Republic of Moldova. The hackers were charged for committing crimes of illegal operations with computer devices and programs, illegal access […] | Ransomware |
To see everything:
Our RSS (filtrered)
