What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-09-21 11:24:30 | Netgear fixes dangerous code execution bug in multiple routers (lien direct) | Netgear has fixed a high severity remote code execution (RCE) vulnerability found in the Circle parental control service, which runs with root permissions on almost a dozen modern Small Offices/Home Offices (SOHO) Netgear routers. [...] | Vulnerability | ||
|
2021-09-21 03:25:06 | Marketron marketing services hit by Blackmatter ransomware (lien direct) | BlackMatter ransomware gang over the weekend hit Marketron, a business software solutions provider that serves more than 6,000 customers in the media industry. [...] | Ransomware | ||
|
2021-09-20 19:03:16 | How to fix the Windows 0x0000011b network printing error (lien direct) | A Windows security update released in January and now fully enforced this month is causing Windows users to experience 0x0000011b errors when printing to network printers. [...] | |||
|
2021-09-20 16:15:36 | Hacked sites push TeamViewer using fake expired certificate alert (lien direct) | Threat actors are compromising Windows IIS servers to add expired certificate notification pages that prompt visitors to download a malicious fake installer. [...] | Threat | ||
|
2021-09-20 14:07:54 | US farmer cooperative hit by $5.9M BlackMatter ransomware attack (lien direct) | U.S. farmers cooperative NEW Cooperative has suffered a BlackMatter ransomware attack demanding $5.9 million not to leak stolen data and provide a decryptor. [...] | Ransomware | ||
|
2021-09-20 13:34:57 | Microsoft investigates Outlook issues with security keys, search (lien direct) | Microsoft is investigating several issues impacting Outlook customers and leading to problems related to security keys, search results, and more. [...] | Guideline | ||
|
2021-09-20 11:39:25 | VoIP.ms phone services disrupted by DDoS extortion attack (lien direct) | Threat actors are targeting voice-over-Internet provider VoIP.ms with a DDoS attack and extorting the company to stop the assault that's severely disrupting the company's operation. [...] | Threat | ||
|
2021-09-20 09:43:58 | Republican Governors Association email server breached by state hackers (lien direct) | The Republican Governors Association (RGA) revealed in data breach notification letters sent last week that its servers were breached during an extensive Microsoft Exchange hacking campaign that hit organizations worldwide in March 2021. [...] | Data Breach | ★★ | |
|
2021-09-20 09:37:45 | EventBuilder misconfiguration exposes Microsoft event registrant data (lien direct) | Personal details of registrants to virtual events available through the EventBuilder platform have stayed accessible over the public internet, open to indexing by various engines. [...] | ★★★ | ||
|
2021-09-20 08:41:14 | Europol links Italian Mafia to million-dollar phishing scheme (lien direct) | In collaboration with Europol and Eurojust, European law enforcement dismantled an extensive network of cybercriminals linked to the Italian Mafia that was able to defraud their victims of roughly €10 million ($11.7 million) last year alone. [...] | |||
|
2021-09-19 12:58:30 | New "Elon Musk Club" crypto giveaway scam promoted via email (lien direct) | A new Elon Musk-themed cryptocurrency giveaway scam called the "Elon Musk Mutual Aid Fund" or "Elon Musk Club" is being promoted through spam email campaigns that started over the past few weeks. [...] | Spam | ||
|
2021-09-19 10:00:00 | AT&T lost $200M in seven years to illegal phone unlocking scheme (lien direct) | A Pakistani fraudster was sentenced earlier this week to 12 years in prison after AT&T, the world's largest telecommunications company, lost over $200 million after he and his co-conspirators coordinated a seven year scheme that led to the fraudulent unlocking of almost 2 million phones. [...] | |||
|
2021-09-18 13:59:06 | Windows 11 is no longer compatible with Oracle VirtualBox VMs (lien direct) | Windows 11 is no longer compatible with the immensely popular Oracle VirtualBox virtualization platform after Microsoft changed its hardware requirement policies for virtual machines. [...] | |||
|
2021-09-18 10:00:00 | Researchers compile list of vulnerabilities abused by ransomware gangs (lien direct) | Security researchers are working on compiling an easy to follow list of initial access attack vectors ransomware gangs and their affiliates are using to breach victims' networks. [...] | Ransomware | ||
|
2021-09-17 18:16:43 | The Week in Ransomware - September 17th 2021 - REvil decrypted (lien direct) | It has been an interesting week with decryptors released, ransomware gangs continuing to rail against negotiators, and the US government expected to sanction crypto exchanges next week. [...] | Ransomware | ||
|
2021-09-17 17:49:30 | U.S. to sanction crypto exchanges, wallets used by ransomware (lien direct) | The Biden administration is expected to issue sanctions against crypto exchanges, wallets, and traders used by ransomware gangs to convert ransom payments into fiat money. [...] | Ransomware | ||
|
2021-09-17 15:48:39 | Admin of DDoS service behind 200,000 attacks faces 35yrs in prison (lien direct) | At the end of a nine-day trial, a jury in California this week found guilty the administrator of two distributed denial-of-service (DDoS) operations. [...] | |||
|
2021-09-17 13:40:30 | Mozilla tests Microsoft Bing as the default Firefox search engine (lien direct) | Mozilla is running a study to test users' responses to changing the default Firefox search engine to Microsoft Bing. [...] | |||
|
2021-09-17 13:00:00 | Billions more Android devices will reset risky app permissions (lien direct) | Google announced today that support for a recently released Android privacy protection feature would be backported to billions of devices running older Android versions later this year. [...] | |||
|
2021-09-17 11:23:14 | OMIGOD: Microsoft Azure VMs exploited to drop Mirai, miners (lien direct) | Threat actors started actively exploiting the critical Azure OMIGOD vulnerabilities two days after Microsoft disclosed them during this month's Patch Tuesday. [...] | Threat | ||
|
2021-09-17 08:06:28 | Microsoft asks Azure Linux admins to manually patch OMIGOD bugs (lien direct) | Microsoft has issued additional guidance on securing Azure Linux machines impacted by recently addressed critical OMIGOD vulnerabilities. [...] | |||
|
2021-09-17 06:52:35 | How to fix printers asking for admins creds after PrintNightmare patch (lien direct) | Some printers will request administrator credentials every time users try to print in Windows Point and Print environments due to a known issue caused by KB5005033 or later security updates addressing the PrintNightmare vulnerability. [...] | |||
|
2021-09-17 06:11:17 | US govt sites showing porn, viagra ads share a common software vendor (lien direct) | Multiple U.S. government sites using .gov and .mil domains have been seen hosting porn and spam content, such as Viagra ads, in the last year. A security researcher noticed all of these sites share a common software vendor, Laserfiche. [...] | Spam | ||
|
2021-09-16 15:08:33 | Microsoft rolls out Office LTSC 2021 for Windows and Mac (lien direct) | Microsoft today started rolling out Office LTSC (Long Term Servicing Channel) for Windows and macOS, the non-subscription Office version for commercial and government customers. [...] | |||
|
2021-09-16 14:11:42 | FBI and CISA warn of state hackers exploiting critical Zoho bug (lien direct) | The FBI, CISA, and the Coast Guard Cyber Command (CGCYBER) today warned that state-backed advanced persistent threat (APT) groups are likely among those exploiting a critical flaw in a Zoho single sign-on and password management solution since early August 2021. [...] | Threat | ||
|
2021-09-16 13:33:25 | New malware uses Windows Subsystem for Linux for stealthy attacks (lien direct) | Security researchers have discovered malicious Linux binaries created for the Windows Subsystem for Linux (WSL), indicating that hackers are trying out new methods to compromise Windows machines. [...] | Malware | ||
|
2021-09-16 12:54:27 | FBI: $113 million lost to online romance scams this year (lien direct) | The FBI warned today that a massive spike of online romance scams this year caused Americans to lose more than $113 million since the start of 2021. [...] | |||
|
2021-09-16 12:08:27 | New Windows security updates break network printing (lien direct) | Windows administrators report wide-scale network printing problems after installing this week's September 2021 Patch Tuesday security updates. [...] | |||
|
2021-09-16 11:16:15 | Microsoft: Windows MSHTML bug now exploited by ransomware gangs (lien direct) | Microsoft says multiple threat actors, including ransomware affiliates, are targeting the recently patched Windows MSHTML remote code execution security flaw. [...] | Ransomware Threat | ||
|
2021-09-16 09:00:00 | Free REvil ransomware master decrypter released for past victims (lien direct) | A free master decryptor for the REvil ransomware operation has been released, allowing all victims encrypted before the gang disappeared to recover their files for free. [...] | Ransomware | ||
|
2021-09-15 19:22:27 | Former U.S. intel operatives to pay $1.6M for hacking for foreign govt (lien direct) | The U.S. government has entered a Deferred Prosecution Agreement (DPA) with three former intelligence operatives to resolve criminal charges relating to their offering of hacking services to a foreign government. [...] | |||
|
2021-09-15 17:05:13 | Microsoft fixes critical bugs in secretly installed Azure Linux app (lien direct) | Microsoft has addressed four critical vulnerabilities collectively known as OMIGOD, found in the Open Management Infrastructure (OMI) software agent silently installed on Azure Linux machines accounting for more than half of Azure instances. [...] | |||
|
2021-09-15 15:35:17 | Ransomware encrypts South Africa\'s entire Dept of Justice network (lien direct) | The justice ministry of the South African government is working on restoring its operations after a recent ransomware attack encrypted all its systems, making all electronic services unavailable both internally and to the public. [...] | Ransomware | ||
|
2021-09-15 14:57:49 | MikroTik shares info on securing routers hit by massive Mēris botnet (lien direct) | Latvian network equipment manufacturer MikroTik has shared details on customers can secure and clean routers enslaved by the massive Mēris DDoS botnet over the summer. [...] | |||
|
2021-09-15 14:22:16 | Ransomware gang threatens to wipe decryption key if negotiator hired (lien direct) | The Grief ransomware gang is threatening to delete victim's decryption keys if they hire a negotiation firm, making it impossible to recover encrypted files. [...] | Ransomware | ||
|
2021-09-15 12:52:00 | Microsoft shares fix for \'camera upload is paused\' Android OneDrive error (lien direct) | Microsoft says a OneDrive issue prevents some Android users from uploading photos and videos from their camera roll to the cloud. [...] | |||
|
2021-09-15 11:30:15 | Kali Linux 2021.3 released with new pentest tools, improvements (lien direct) | Kali Linux 2021.3 was released yesterday by Offensive Security and includes a new set of tools, improved virtualization support, and a new OpenSSL configuration that increases the attack surface. [...] | |||
|
2021-09-15 10:49:49 | Microsoft rolls out passwordless login for all Microsoft accounts (lien direct) | Microsoft is rolling out passwordless login support over the coming weeks, allowing customers to sign in to Microsoft accounts without using a password. [...] | |||
|
2021-09-14 16:43:14 | Microsoft fixes remaining Windows PrintNightmare vulnerabilities (lien direct) | Microsoft has released a security update to fix the last remaining PrintNightmare zero-day vulnerabilities that allowed attackers to gain administrative privileges on Windows devices quickly. [...] | |||
|
2021-09-14 16:20:05 | Microsoft fixes Windows CVE-2021-40444 MSHTML zero-day bug (lien direct) | Microsoft today fixed a high severity zero-day vulnerability actively exploited in targeted attacks against Microsoft Office and Office 365 on Windows 10 computers. [...] | Vulnerability | ||
|
2021-09-14 14:50:50 | Google Chromebook bug causes black screens after login (lien direct) | Google is investigating reports of black screens showing up on users' Chromebooks when trying to log into their Chrome OS accounts. [...] | |||
|
2021-09-14 13:56:06 | (Déjà vu) Microsoft September 2021 Patch Tuesday fixes 2 zero-days, 60 flaws (lien direct) | Today is Microsoft's September 2021 Patch Tuesday, and with it comes fixes for two zero-day vulnerabilities and a total of 61 flaws. [...] | |||
|
2021-09-14 13:33:16 | Windows 10 KB5005565 & KB5005566 cumulative updates released (lien direct) | Microsoft released the Windows 10 KB5005565 and KB5005566 cumulative updates as part of the September 2021 Patch Tuesday. These updates fix bugs and vulnerabilities in the Windows 10 May 2021 Update (version 21H1), October 2020 Update (version 20H2), and May 2020 Update (version 2004). [...] | |||
|
2021-09-14 12:59:26 | Microsoft: Windows 10 2004 reaches end of service in December (lien direct) | Microsoft has reminded customers today that Windows 10 2004 (all editions) and Windows Server 2004 (Datacenter, Standard editions) will reach the end of servicing on December 14, 2021. [...] | |||
|
2021-09-14 11:02:43 | New Zloader attacks disable Windows Defender to evade detection (lien direct) | An ongoing Zloader campaign uses a new infection chain to disable Microsoft Defender Antivirus (formerly Windows Defender) on victims' computers to evade detection. [...] | |||
|
2021-09-14 07:00:00 | Millions of HP OMEN gaming PCs impacted by driver vulnerability (lien direct) | Millions of HP OMEN laptop and desktop gaming computers are exposed to attacks by a high severity vulnerability that can let threat actors trigger denial of service states or escalate privileges and disable security solutions. [...] | Vulnerability Threat | ||
|
2021-09-13 18:12:23 | Google patches 10th Chrome zero-day exploited in the wild this year (lien direct) | Google has released Chrome 93.0.4577.82 for Windows, Mac, and Linux to fix eleven security vulnerabilities, two of them being zero-days exploited in the wild. [...] | |||
|
2021-09-13 17:00:07 | Firefox now bypasses Windows 11\'s messy default browser settings (lien direct) | Fed up with the new Windows 11 default apps interface, Mozilla has bypassed Microsoft's policies to make it easier for users to switch their default browser. [...] | |||
|
2021-09-13 15:10:06 | Apple fixes iOS zero-day used to deploy NSO iPhone spyware (lien direct) | Apple has released security updates to fix two zero-day vulnerabilities that have been seen exploited in the wild to attack iPhones and Macs. One is known to be used to install the Pegasus spyware on iPhones. [...] | |||
|
2021-09-13 12:08:20 | FTC warns of extortionists targeting LGBTQ+ community on dating apps (lien direct) | The US Federal Trade Commission (FTC) warns of extortion scammers targeting the LGBTQ+ community via online dating apps such as Grindr and Feeld. [...] |
To see everything:
Our RSS (filtrered)
