What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-10-27 09:48:28 | Medibank Admits That All Customer Data Was Exposed (lien direct) | As reported by Medibank, an Australian health insurance giant, every one of its customers had their personal information accessed by ransomware actors-which happened a few days after Medibank had downplayed the aftermath of a recent breach. In a newly issued statement, Medibank admitted that the threat actors might have compromised all of its customers' personal […] | Ransomware Threat | ||
|
2022-10-26 15:40:39 | Hive Group Admits to Leaking Data in Tata Power Ransomware Attack (lien direct) | Reports have said that the Hive ransomware-as-a-service (RaaS) group has claimed responsibility for the cyber-attack against Tata Power disclosed by the company on October 14 and believed to have occurred on October 3. “The company has taken steps to retrieve and restore the systems. All critical operational systems are functioning,” the Mumbai-based company said at the time. Security researcher […] | Ransomware | ||
|
2022-10-26 15:35:16 | See Tickets Notifies Customers of Major Card Data Breach (lien direct) | Earlier today, global ticketing giant See Tickets has begun notifying customers of a significant breach of their personal and financial information, which lasted for over two-and-a-half years. It appears that the company, owned by French media firm Vivendi, revealed the news in breach notification letters published by various US states. An official statement from either business […] | Data Breach | ||
|
2022-10-24 14:45:43 | Android-Clicker Malware Garners Reaches 20 Million Downloads (lien direct) | Earlier today, a so-called “clicker” malware designed to facilitate ad fraud has been found on 16 mobile apps in the Google Play store, according to McAfee. Once notified by the security vendor, Google has removed the offending apps, which are estimated to have garnered as many as 20 million downloads. Having been detected as Android/Clicker, […] | Malware | ||
|
2022-10-24 14:36:42 | (Déjà vu) CISA Warns Health Organisations of Targeted Ransomware Attack by Daixin Hackers (lien direct) | It was reported earlier today, the U.S. cybersecurity and intelligence agencies published a joint advisory warning of attacks perpetrated by a cybercrime gang known as the Daixin Team primarily targeting the healthcare sector in the country. “The Daixin Team is a ransomware and data extortion group that has targeted the HPH Sector with ransomware and data […] | Ransomware | ||
|
2022-10-21 11:00:36 | OldGremlin Ransomware Fierce Comeback Against Russian Targets (lien direct) | Earlier today. a ransomware group which unusually targets Russian organizations has upped its efforts this year, demanding larger ransoms from its victims and developing new malware for Linux, according to Group-IB. Yesterday, the security vendor released what it claimed was the first comprehensive report on the group known as “OldGremlin,” which was first spotted in 2020. […] | Ransomware Malware | ||
|
2022-10-19 10:17:16 | (Déjà vu) Sonatype Report Reveals Software Supply Chain Attacks Soar 742% in Three Years (lien direct) | Earlier today, experts have uncovered 88,000 malicious open source packages so far this year, a triple-digit increase on the same figure in 2019 and indicative of a fast-growing corporate attack surface. Sonatype's eighth annual State of the Software Supply Chain report, which was compiled from public and proprietary data analysis, has revealed the figures including 131 billion […] | |||
|
2022-10-17 10:11:49 | Hackney Council Ransomware Attack Recovery Update Costing £12m+ (lien direct) | Today it has been reported that a local government authority in London was forced to spend over £12m ($11.7m) in a single financial year to help it recover from a devastating ransomware attack, according to a local report. It appears that the October 2020 attack, traced to the Pysa/Mespinoza variant, resulted in sensitive data of […] | Ransomware | ||
|
2022-10-17 09:02:46 | In conversation with Chris Roberts, Business Development Manager at Fortinet (lien direct) | At the inaugural International Cyber Expo, The Guru team got the opportunity to chat with Chris Roberts, Business Development at Fortinet to better understand how the cybersecurity industry is using automation, whether there will come a point where human intervention is needed as well as hearing how it is helping security teams during the current skills […] | ★★★ | ||
|
2022-10-14 13:54:11 | Magniber Ransomware Uses JavaScript to Attack Individual Users (lien direct) | A recent analysis shows that Magniber ransomware has been targeting home users by masquerading as software updates. Reports have shown a ransomware campaign isolated by HP Wolf Security in September 2022 saw Magniber ransomware spread. The malware is known as a single-client ransomware family that demands $2,500 from victims. In previous news, Magniber was primarily spread through […] | Ransomware Malware | ||
|
2022-10-13 10:51:51 | Winners of the Security Serious Unsung Heroes Awards 2022 Revealed (lien direct) | The seventh annual Security Serious Unsung Heroes Awards winners were announced last night during a celebration at Balfour St Bart's in London. The annual awards celebrate the people, not products, of the cyber security industry. From the best ethical hackers, rising stars and educators to the best security awareness campaign, security team and the coveted Godparent of security, the categories recognised individuals […] | |||
|
2022-10-10 15:35:23 | German Cybersecurity Chief Accused of Russian Contact Faces Sacking (lien direct) | Last week, German Interior Minister Nancy Faeser could dismiss Arne Schoenbohm, president of the Federal Office for Information Security (BSI) due to possible contact with Russian security agents, German media reported on Sunday, October 9, 2022, citing government sources. Schoenbohm, a founder of the Cyber Security Council of Germany, an industrial consortium, is alleged to […] | |||
|
2022-10-10 14:45:11 | Finding the Sunshine in Cyber – In conversation with Stuart Avery (lien direct) | The Guru was lucky enough to sit down with Stuart Avery, Business Development Specialist at e2e-assure, at the inaugural International Cyber Expo to discuss key trends, how and why everyone should get involved in cyber, and the industry's image problem. According to Avery, cybersecurity has undergone a change over the past few years. The rise […] | |||
|
2022-10-07 13:40:36 | (Déjà vu) Newly Discovered Android Spyware \'RatMilad\' Targets Enterprise Devices in Iran (lien direct) | Earlier this week, a newly discovered Android spyware family dubbed ‘RatMilad’ has been observed trying to infect an enterprise device in the Middle East. It appears that the discovery comes from security researchers at Zimperium, who said the original variant of the previously unknown RatMilad spyware hid behind a VPN and phone number spoofing app […] | |||
|
2022-10-07 13:32:40 | Meta Law Suit Against Chinese Devs Over WhatsApp Malware Plot (lien direct) | Earlier today, WhatsApp parent company Meta announced that they are suing three Chinese developers for allegedly tricking users into downloading fake versions of the app that harvested their login details. It appears that WhatsApp and Meta are listed as plaintiffs in the case, filed in the US District Court for the Northern District of California […] | Malware | ||
|
2022-10-04 10:29:26 | KnowBe4 Launches Cybersecurity Awareness Month University Challenge (lien direct) | KnowBe4, the provider of the world's largest security awareness training platform, announced it is spearheading an initiative among UK universities that invites students with an interest in media/comms or cybersecurity to work collaboratively together to produce a security awareness video that addresses one of the themes from Cyber Security Awareness Month (CAM). Supported and judged […] | |||
|
2022-10-03 10:13:19 | LA Unified School District Warns Of Hackers Posting Stolen Data Online (lien direct) | Earlier today, the second largest school district in the US has warned that hackers have begun posting data they claim to have stolen from the institution last month In early September. the Los Angeles Unified School District (LAUSD), which serves over 600,000 students from kindergarten to twelfth grade, was compromised by the Vice Society group. For […] | |||
|
2022-10-03 10:06:39 | Lessons from the cyber front line (lien direct) | Very few weeks go by without news of another cyber attack or data breach and a quick scan of the BBC news website shows that in most months, there is at least one story that makes the national news headlines. While just a few years ago, many cyber attacks would go unnoticed by the public […] | Data Breach | ||
|
2022-09-30 13:25:06 | (Déjà vu) LeakBase Announces Swachhata Platform Breached, 16 Million User PII Records Exposed (lien direct) | Yesterday, data breach notification website Leakbase said someone allegedly hacked the Swachhata Platform in India and stole 16 million user records. Security researchers at CloudSEK , reported the news as they discovered a post by Leakbase sharing data samples containing personally identifiable information (PII), including email addresses, hashed passwords and user IDs. Earlier this week, […] | Data Breach | ||
|
2022-09-30 13:10:39 | (Déjà vu) Malicious Campaign Uses Government, Union-Themed Lures to Deliver Cobalt Strike Payloads (lien direct) | Earlier this week, researchers at security firm Cisco Talos discovered a malicious campaign in August 2022 that relied on modularized attack techniques to deliver Cobalt Strike beacons and used them in follow–on attacks. It was reported that the company published a new advisory about the campaign on Wednesday saying the threat actors behind it used a […] | Threat | ||
|
2022-09-28 10:09:20 | Optus telco data breach – what we know so far (lien direct) | Optus, an Australian telecoms provider, has become the latest high-profile victim of a data breach – with the alleged attacker demanding payment to buy back millions of customer records, having already made 10,000 public online. In the most recent developments, the attacker has now rescinded threats and deleted them from a data breach website. However, […] | Data Breach | ||
|
2022-09-26 10:42:01 | Collaboration in Cyber Security is the Key to Combatting the Growing Cyber Threat. Here\'s Why (lien direct) | Cyber security has never been so important and in a post-pandemic world it is more important than ever. According to a recent report by Kaspersky, the number of the number of Trojan-PSW (Password Stealing Ware) detections increased by almost a quarter globally – 4,003,323 in 2022 compared to 3,029,903 in 2021. In addition, internet attacks […] | |||
|
2022-09-23 09:55:30 | Twitter Password Reset Bug Uncovered User Accounts (lien direct) | Yesterday Twitter announced that they had remediated an issue that allowed accounts to stay logged in across multiple devices even after a voluntary password reset. In an update earlier this week, the social media company explained that the bug meant users who proactively changed their passwords on one device may have still been able to […] | |||
|
2022-09-21 08:55:04 | Experts Weigh in on Rockstar GTA Leak (lien direct) | Rockstar Games, the publishers behind the popular Grand Theft Auto (GTA) franchise, announced earlier this week that data from the latest instalment of the GTA series has been leaked online. The leak is being described as one of gaming’s biggest security breaches. The publishers were unable to clarify how the “network intrusion” happened, but confirmed […] | |||
|
2022-09-20 10:48:47 | American Airlines Announce Data Breach Exposing Customer and Staff Information (lien direct) | Earlier today, American Airlines became the latest big-name brand to announce a data breach, after an unauthorized actor compromised employee inboxes. A statement released from the aerospace giant confirmed that the source of the incident was a phishing attack which “led to the unauthorized access to a limited number of team-member mailboxes.” The airline explained that […] | Data Breach | ||
|
2022-09-16 11:03:12 | Cost of Living Crisis Impact on Online Activity (lien direct) | A new survey conducted amongst 600 parents across the UK by Censuswide on behalf of International Cyber Expo found that 40% of parents believe children will turn to cyber crime during the cost of living crisis. The survey also revealed that 40% of parents have fallen victim to at least one security breach as a […] | |||
|
2022-09-16 09:30:13 | Crypto Scams Skyrocket as Domains Surge 335% (lien direct) | It has been predicted that cryptocurrency scams are set to explode after researchers reported a triple-digit increase in registered domains in the first half of 2022, compared to the whole of last year. Cyber security service provider, Group-IB said that they had detected over 2000 domains registered to be used as fake promotion websites in the […] | |||
|
2022-09-14 09:19:51 | iOS 16 Launches With Advanced Cyber Protection (lien direct) | Earlier this week, Apple officially launched its new iOS 16 operating system update for iPhone devices. The update contains several security-focused and privacy features. iOS 16 was first unveiled in June at the WWDC 2022 conference. The update supports iPhone devices starting from iPhone 8, as well as second and third generation iPhone SE devices. […] | |||
|
2022-09-13 11:05:40 | Edinburgh\'s Adarma partners with The Princes Trust to support inclusivity in cybersecurity (lien direct) | Adarma, the UK's largest independent cyber threat management company, has today announced a new partnership with The Prince's Trust to launch a 'Get Started in Cybersecurity' programme aimed at empowering individuals between the ages of 21 and 30 with cyber skills training and driving greater inclusivity within the industry. Adarma's CEO, John Maynard, will join […] | Threat | ||
|
2022-09-12 11:23:19 | Policy Monitor to launch CSPM, an Information Security Management System, at the International Cyber Expo (lien direct) | Policy Monitor, the London-based cybersecurity and risk management experts, will launch Cyber Security Policy Monitor (CSPM) at this year’s International Cyber Expo in London. CSPM is a simple and cost-effective cloud-based solution that helps measure, manage and monitor an organisation's cyber security workflow and compliance. The information security management system gives cyber security peace of […] | |||
|
2022-09-05 14:23:38 | Learn About Alert Logic\'s New Intelligent Response Capabilities at International Cyber Expo (lien direct) | Alert Logic by HelpSystems launched general availability of its new intelligent response capabilities this year. The innovations, including simple mode and a mobile application, relieve IT and security departments of repetitive response tasks and the need for constant administration through human-guided and fully automated workflows. Seedrs, Europe's leading online private investment platform, is among the first […] | Guideline | ||
|
2022-09-05 09:50:57 | Samsung Hit By Data Breach (lien direct) | In Late July, an undisclosed number of Samsung customers in the US had their personal information accessed by an unauthorised user. Samsung, the Korean electronics giant, said that it discovered the breach on 4th August 2022. It has since secured the affected systems, engaged a third-party security firm and contacted law enforcement. A statement issued […] | Data Breach | ||
|
2022-09-02 10:10:28 | TikTok Vulnerability Discovered on Android (lien direct) | Researchers have discovered a critical vulnerability in the TikTok Android app which could allow hackers to hijack user accounts remotely. The vulnerability, CVE-2022-28799, was reported to the ByteDance owned company by Microsoft in February 2022. Tiktok quickly fixed the issue. It is estimated that the app has around 1.5billion downloads on the Play Store, however, […] | Vulnerability | ||
|
2022-09-01 09:55:06 | 1859 Apps Contain Hard-Coded AWS Credentials (lien direct) | Security researchers have identified 1,859 apps across Android and iOS containing hard-coded Amazon Web Services (AWS) credentials. This poses a huge security risk. Symantec’s Threat Hunter Team, a part of Broadcom Software, wrote in a report that “over three-quarters (77%) of the apps contained valid AWS access tokens allowing access to private AWS cloud services.” […] | Threat | ||
|
2022-09-01 09:06:43 | Over a Third of Parents Do Not Know What Online Accounts Their Children Use (lien direct) | A new survey by Censuswide and the International Cyber Expo found that over a third (34%) of parents are unaware of what online accounts their children are using, highlighting a worrying lack of awareness surrounding their children's online activity. The survey was conducted amongst 600 parents across the UK. The survey did find that over […] | |||
|
2022-08-30 13:22:03 | 3 Cybersecurity Trends for 2022 (lien direct) | As cyber criminals continue to employ increasingly sophisticated methods to breach security protocols within organizations, cybersecurity will remain a major concern for businesses of all sizes. As such, the cost of cybercrime is set to increase with the global cybersecurity market estimated to reach $403.01 billion by 2027 with a compound annual growth rate […] | |||
|
2022-08-30 09:47:38 | Akasa Air Suffers Data Leak on First Day of Operation (lien direct) | India’s newest commercial airline, Akasa Air, exposed personal data belonging to its customers. The company blamed these data leaks on technical configuration errors. Ashutosh Barot, a security researcher, added that this issue originated in the account registration process, leading to the exposure of personal information such as gender, email addresses, names, and phone numbers. The […] | Guideline | ||
|
2022-08-25 12:03:47 | (Déjà vu) Quantum Ransomware Attack Disrupts Government Agency in Dominican Republic (lien direct) | The Dominican Republic’s Instituto Agrario Dominicano (IAD) has suffered a Quantum ransomware attack. The attack encrypted multiple services and workstations throughout the government agency. The IAD is part of the Ministry of Agriculture and is responsible for executing Agrarian Reform programmes in the country. According to local media reports, the ransomware attack occurred on 18th […] | Ransomware | ||
|
2022-08-25 10:51:24 | EU Report Outlines Cyber Response to Ukraine Invasion (lien direct) | The EU’s Justice and Home Affairs Agencies’ Network (JHAAN) has released new details of its continued work to monitor and contain cyber-threats since Russia’s invasion of Ukraine. A recently published paper, Contributing to the EU’s Solidarity with Ukraine, outlines the work of nine EU agencies in this area. The list includes the European Union Agency […] | ★★★★ | ||
|
2022-08-24 14:01:16 | Fighting Cyber Attackers Earlier to Reduce Risk (lien direct) | We face an exciting evolution in the cybersecurity sector. Attackers are becoming both more efficient and intelligent at evaluating their targets and successfully carrying out their intended campaigns. Often money is at the forefront of their minds but, as we have seen recently, drivers may also be geo-political or activist views. Whatever their motivations, financial […] | ★★ | ||
|
2022-08-24 13:40:56 | Transatlantic Cyber Security Business Network (TCBN) partners with International Cyber Expo 2022 (lien direct) | Earlier this week it was announced that the Transatlantic Cyber Security Business Network (TCBN) have partnered with the International Cyber Expo 2022. The event, which runs from 27th-28th September at Olympia London, Kensington, will host 5000 delegates and over 100 leading cyber vendors. As part of the event, TCBN will host its own exhibit that […] | Guideline | ★★ | |
|
2022-08-23 11:12:43 | (Déjà vu) Counterfeit Phones Found to Contain Backdoor to Hack WhatsApp (lien direct) | Budget Android device models that are counterfeit versions associated with popular smartphone brands contain multiple hidden trojans designed to target WhatsApp and WhatsApp Business messaging app. Doctor Web first came across the malware in July 2022. It was discovered in the system partition of at least four different smartphones: radmi note 8, P48pro, Note30u, and […] | Malware Hack | ||
|
2022-08-19 11:21:50 | (Déjà vu) Ring App Vulnerability Urgently Patched by Amazon (lien direct) | Amazon have patched a high-severity security issue in its Ring app for Android in May that could have enabled a rogue application installed on a user’s device to access sensitive information and camera recordings. The Ring app for Android has over 10 million downloads. Application security firm Checkmarx explained that it identified a cross-site scripting […] | Vulnerability | ||
|
2022-08-17 12:32:01 | Securing OT That Can\'t Be Patched (lien direct) | As industrial organisations digitise their environments, this is exposing critical operational technology (OT) to security vulnerabilities, while presenting new windows of opportunity for cybercriminals. Since last year, there has been an 88% increase in OT vulnerabilities, which are used to attack critical infrastructure and expose vital systems to potentially devastating breaches.[i] With OT systems supporting […] | |||
|
2022-08-17 09:33:15 | (Déjà vu) Job Seekers Targeted in Lazarus Group Hack (lien direct) | The North Korea state-backed Lazarus Group has been observed to be targeting job seekers with malware capable of executing on Apple Macs with Intel and M1 chipsets. ESET, a Slovak cybersecurity firm, linked these events to a campaign dubbed “Operation In(ter)ception” that was first disclosed in June 2020 and involved using social engineering tactics to […] | Malware Hack Medical | APT 38 | |
|
2022-08-16 09:45:49 | (Déjà vu) Signal Confirms Roughly 1900 Users Affected by Twilio Breach (lien direct) | On Monday, popular end-to-end encrypted messaging service Signal disclosed the cyberattack aimed at Twilio earlier this month may have exposed the phone numbers of roughly 1900 users. Signal said, “for about 1,900 users, an attacker could have attempted to re-register their number to another device or learned that their number was registered to Signal. All users […] | |||
|
2022-08-16 08:47:21 | Are Cloud Environments Secure Enough for Today\'s Threats? (lien direct) | Cyber security is a major problem right now. Not only is it the highest priority of any given business to keep their own data but their customers' and clients' data secure, but changes in the workplace have had a knock-on effect on cyber security. The concept of working from home has forced businesses all around […] | |||
|
2022-08-15 09:56:43 | Google Fined A$60million in Penalties For Misleading Users on Location Data (lien direct) | Alphabet Inc’s Google Unit was ordered by Australia’s Federal Court to pay A$60million in penalties for misleading users on collection of their personal location data, according to Australia’s competition watchdog. The court found that Google mislead some customers about their personal location data that was being collected through their Android mobile devices between January 2017 […] | Guideline | ★★★★ | |
|
2022-08-12 10:14:24 | Recovery From NHS Attack Could Take Weeks (lien direct) | Last week, Advanced, a key NHS IT partner was hit by a ransomware attack. The IT company has said that it could take three to four weeks for systems to resume normal service. Advanced runs several key systems within the health service. One of its most important clients is the NHS 111 service. The UK […] | Ransomware | ||
|
2022-08-12 08:13:59 | Industry All-Stars Take Stage at International Cyber Expo\'s Global Cyber Summit (lien direct) | International Cyber Expo today announced the speaker line-up for its annual Global Cyber Summit sponsored this year by Snyk, and hosted at Olympia London on the 27th and 28th of September 2022. Introduced by former CEO of NCSC, Professor Ciaran Martin CB, the Summit endeavours to be an educational platform for IT professionals, C-Level executives […] |
To see everything:
Our RSS (filtrered)
