Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2017-07-11 20:38:40 |
Kaspersky under scrutiny after Bloomberg story claims close links to FSB (lien direct) |
CEO: “This story is BS brewed on political agenda.†|
|
|
|
|
2017-07-08 13:00:05 |
How I learned to stop worrying (mostly) and love my threat model (lien direct) |
Reducing privacy and security risks starts with knowing what the threats really are. |
|
|
|
|
2017-07-07 03:20:25 |
FBI-DHS “amber†alert warns energy industry of attacks on nuke plant operators (lien direct) |
Spear-phishing e-mails with malicious fake resumes targeted plant engineers. |
|
|
|
|
2017-07-05 21:48:52 |
Backdoor built in to widely used tax app seeded last week\'s NotPetya outbreak (lien direct) |
Operation that hit thousands was “thoroughly well-planned and well-executed.†|
|
NotPetya
|
|
|
2017-07-03 12:00:49 |
HTTPS Certificate Revocation is broken, and it\'s time for some new tools (lien direct) |
Certificate Transparency and OCSP Must-Staple can't get here fast enough. |
|
|
|
|
2017-06-30 14:13:24 |
NotPetya developers may have obtained NSA exploits weeks before their public leak [Updated] (lien direct) |
Clues may tie people behind massive malware attack to mysterious Shadow Brokers group. |
|
NotPetya
|
|
|
2017-06-28 20:30:45 |
Tuesday\'s massive ransomware outbreak was, in fact, something much worse (lien direct) |
Payload delivered in mass attack destroys data, with no hope of recovery. |
|
|
|
|
2017-06-27 19:47:31 |
Microsoft bringing EMET back as a built-in part of Windows 10 (lien direct) |
The built-in exploit mitigations are getting stronger and easier to configure. |
|
|
|
|
2017-06-27 19:05:38 |
Ohio Gov. Kasich\'s website, dozens of others defaced using year-old exploit (lien direct) |
"High risk" exploit patch was issued in May of 2016. |
|
|
|
|
2017-06-27 16:53:21 |
A new ransomware outbreak similar to WCry is shutting down computers worldwide (lien direct) |
Like earlier ransomware worm, new attacks use potent exploit stolen from the NSA. |
|
|
|
|
2017-06-27 00:10:23 |
This Windows Defender bug was so gaping its PoC exploit had to be encrypted (lien direct) |
Is there a fuzzer in the house? |
|
|
|
|
2017-06-26 17:05:26 |
Some beers, anger at former employer, and root access add up to a year in prison (lien direct) |
Ex-tech pleads guilty to smart meter network attack; changed a password to "f***you." |
Guideline
|
|
|
|
2017-06-23 20:51:52 |
Obama reportedly ordered implants to be deployed in key Russian networks (lien direct) |
Covert program draws on the NSA, CIA, and US Cyber Command. |
|
|
|
|
2017-06-23 12:00:44 |
Check Point says Fireball malware hit 250 million; Microsoft says no (lien direct) |
Either way, Microsoft assures us that Windows 10 S would have been immune. |
|
|
|
|
2017-06-22 23:55:57 |
How the CIA infects air-gapped networks (lien direct) |
Sprawling “Brutal Kangaroo“ spreads malware using booby-trapped USB drives. |
|
|
|
|
2017-06-21 17:46:59 |
Honda shuts down factory after finding NSA-derived Wcry in its networks (lien direct) |
Automaker briefly stops making cars to contain worm that first struck in May. |
|
|
|
|
2017-06-20 21:36:55 |
More Android apps from dangerous Ztorg family sneak into Google Play (lien direct) |
Almost 100 such apps, with >1 million downloads, found so far (but not by Google). |
|
|
|
|
2017-06-19 22:52:59 |
Web host agrees to pay $1m after it\'s hit by Linux-targeting ransomware (lien direct) |
Windfall payment by poorly secured host is likely to inspire new ransomware attacks. |
|
|
|
|
2017-06-19 17:50:06 |
Serious privilege escalation bug in Unix OSes imperils servers everywhere (lien direct) |
“Stack Clash†poses threat to Linux, FreeBSD, OpenBSD, and other OSes. |
|
|
|
|
2017-06-19 12:52:23 |
How to install Linux on a Chromebook (and why you should) (lien direct) |
Crouton and Gallium OS turn Chromebooks into Linux laptops. |
|
|
|
|
2017-06-16 19:30:05 |
Google Play is fighting an uphill battle against Android adware (lien direct) |
Google hasn't yet removed all of the apps, which have as many as 6 million downloads. |
|
|
|
|
2017-06-15 22:39:01 |
Advanced CIA firmware has been infecting Wi-Fi routers for years (lien direct) |
Latest Vault7 release exposes network-spying operation CIA kept secret since 2007. |
|
|
|
|
2017-06-15 13:49:33 |
Login-stealing phishing sites conceal their evil with lots of hyphens in URL (lien direct) |
Compromised domains target Android users with fake login pages for cloud services.
|
|
|
|
|
2017-06-15 00:37:52 |
Georgia\'s lax voting security exposed just in time for crucial special election (lien direct) |
Report uncovers a litany of lapses in voting system used state wide. |
|
|
|
|
2017-06-14 14:21:21 |
Fileless malware targeting US restaurants went undetected by most AV (lien direct) |
Ongoing campaign shows more hackers are adopting sneaky attack technique. |
|
|
|
|
2017-06-14 02:20:12 |
Microsoft\'s decision to patch Windows XP is a mistake (lien direct) |
There will always be one more emergency. |
|
|
|
|
2017-06-13 19:55:11 |
Win XP patched to avert new outbreaks spawned by NSA-leaking Shadow Brokers (lien direct) |
Company warns of “destructive cyberattacks†as it tries to prevent another WCry. |
|
|
|
|
2017-06-13 14:51:46 |
Russia struck at election systems and data of 39 US states (lien direct) |
Investigators find evidence attackers tried to modify voter data, reports Bloomberg. |
|
|
|
|
2017-06-13 10:45:26 |
Facing limits of remote hacking, Army cybers up the battlefield (lien direct) |
Army prepares for a less friendly electronic battlespace, embeds cyber in units. |
|
|
|
|
2017-06-12 21:05:20 |
Found: “Crash Override†malware that triggered Ukrainian power outage (lien direct) |
Attack tools can be used against a broad range of electric grids around the world. |
|
|
|
|
2017-06-09 18:25:57 |
Banking trojan executes when targets hover over link in PowerPoint doc (lien direct) |
Novel infection method doesn't require link to be clicked. |
|
|
|
|
2017-06-09 00:11:09 |
Sneaky hackers use Intel management tools to bypass Windows firewall (lien direct) |
Serial ports don't have firewalls. |
|
|
|
|
2017-06-08 21:03:18 |
Al-Jazeera claims to be victim of cyber attack as Qatar crisis continues (lien direct) |
Broadcaster targeted after hackers planted “fake news†on Qatar's state news service. |
|
|
|
|
2017-06-08 11:20:31 |
Task force tells Congress health IT security is in critical condition (lien direct) |
Report warns lack of security talent, glut of legacy hardware pose imminent threat. |
|
|
|
|
2017-06-07 22:10:15 |
Internet cameras have hard-coded password that can\'t be changed (lien direct) |
Cameras with multiple brand names are wide open to remote hacking. |
|
|
|
|
2017-06-06 22:40:54 |
You\'ll never guess where Russian spies are hiding their control servers (lien direct) |
Turla uses social media and clever programming techniques to cover its tracks. |
|
|
|
|
2017-06-06 15:00:46 |
How a few yellow dots burned the Intercept\'s NSA leaker (lien direct) |
By providing copy of leak, Intercept likely accelerated ID of contractor. |
|
|
|
|
2017-06-05 22:00:02 |
Leaked NSA report says Russians tried to hack state election officials (lien direct) |
Alleged source of leak arrested by FBI after Intercept provided copy to NSA. |
|
|
|
|
2017-06-01 21:06:52 |
Putin: “Patriotic†Russian hackers may have interfered in US election (lien direct) |
Comparing hackers to artists, Putin says they may have been inspired by patriotism. |
|
|
|
|
2017-06-01 20:08:08 |
WikiLeaks says CIA\'s “Pandemic†turns servers into infectious Patient Zero (lien direct) |
Latest Vault 7 release exposes operation that infects PCs inside targeted networks. |
|
|
|
|
2017-06-01 12:59:25 |
OneLogin suffers breach-customer data said to be exposed, decrypted (lien direct) |
Customer account-only support page warns of "ability to decrypt encrypted data." |
|
|
|
|
2017-05-31 20:00:14 |
Defense contractor stored intelligence data in Amazon cloud unprotected [Updated] (lien direct) |
Booz Allen Hamilton engineer posted geospatial intelligence to Amazon S3 bucket. |
|
|
|
|
2017-05-30 20:36:16 |
New Shadow Brokers 0-day subscription forces high-risk gamble on whitehats (lien direct) |
Mysterious group with cache of NSA exploits promises new release to those who pay. |
|
|
|
|
2017-05-26 17:55:12 |
Radio-controlled pacemakers aren\'t as hard to hack as you (may) think (lien direct) |
The four major makers aren't properly securing critical cardiac devices, report says. |
|
|
|
|
2017-05-26 15:10:35 |
Trump has an iPhone with one app: Twitter (lien direct) |
Trump retired his trademark Samsung device in March after taunting Schwarzenegger. |
|
|
|
|
2017-05-26 12:00:47 |
How to build your own VPN if you\'re (rightfully) wary of commercial options (lien direct) |
While not perfect, either, cloud hosting providers have a better customer data record. |
|
|
|
|
2017-05-26 00:05:16 |
E-mails phished from Russian critic were “tainted†before being leaked (lien direct) |
Campaign targeting more than 200 people also spread disinformation, report says. |
|
|
|
|
2017-05-25 22:29:45 |
Florida GOP consultant admits he worked with Guccifer 2.0, analyzing hacked data (lien direct) |
Voting models and other leaked data were “worth millions,†consultant told Guccifer 2.0. |
|
|
|
|
2017-05-24 23:30:46 |
A wormable code-execution bug has lurked in Samba for 7 years. Patch now! (lien direct) |
Comparisons to the Windows flaw WCry exploited are exaggerated, but only a little. |
|
|
|
|
2017-05-23 21:10:10 |
Breaking the iris scanner locking Samsung\'s Galaxy S8 is laughably easy (lien direct) |
The “future standard for phone authentication†is not ready for mainstream use. |
|
|
|