Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-05-25 15:48:19 |
Massive increase in XorDDoS Linux malware in last six months (lien direct) |
>Malware attacks against Linux systems are on the rise. And when it comes to bot malware, XorDDoS is the frontrunner.
|
Malware
|
|
|
|
2022-05-25 12:46:33 |
How the Saitama backdoor uses DNS tunnelling (lien direct) |
>A walkthrough of one of the stealthy communication techniques employed in a recent attack using APT34's Saitama backdoor.
|
|
APT 34
|
|
|
2022-05-25 11:00:05 |
Update now! Multiple vulnerabilities patched in Google Chrome (lien direct) |
>Google has issued an update for the Chrome browser to patch 32 security issues . One of the vulnerabilities is rated as critical, so install that update as soon as you can.
|
|
|
|
|
2022-05-24 14:44:47 |
Instagram verification services: What are the dangers? (lien direct) |
>We take a look at services claiming to offer verification of Instagram accounts, along with the many ways it can go wrong.
|
|
|
|
|
2022-05-24 13:00:55 |
General Motors suffers credential stuffing attack (lien direct) |
>US car producer General Motors says its Rewards platform was the victim of a credential stuffing attack last month.
|
|
|
|
|
2022-05-24 09:55:59 |
Zero-day vulnerabilities in Chrome and Android exploited by commercial spyware (lien direct) |
>A spyware vendor called Cytrox was found to be using several zero-day vulnerabilities in Google's Chrome browser and the Android kernel component.
|
|
|
|
|
2022-05-24 08:39:01 |
Unknown APT group has targeted Russia repeatedly since Ukraine invasion (lien direct) |
>An in-depth look at the attack chain used by an unknown APT group that has launched four campaigns against Russian targets since February.
|
|
|
|
|
2022-05-23 15:27:11 |
Hunting down your data with Whitney Merrill: Lock and Code S03E11 (lien direct) |
>This week on Lock and Code, we speak with Whitney Merrill about why it is so difficult to get your own data from a company.
|
|
|
|
|
2022-05-23 13:35:15 |
Chicago students lose data to ransomware attackers (lien direct) |
>A recent breach notification has revealed some 490,000+ students were impacted by a ransomware attack last December.
|
Ransomware
|
|
|
|
2022-05-23 11:15:01 |
Update now! Nvidia released fixes for 10 flaws in Windows GPU drivers (lien direct) |
NVIDIA recently released patches to address multiple flaws in Windows. Four of them were rated high in severity.
|
|
|
|
|
2022-05-23 10:02:50 |
(Déjà vu) A week in security (May 16 – 22) (lien direct) |
The most important and interesting computer security stories from the last seven days.
|
|
|
|
|
2022-05-20 17:02:11 |
Why you should act like your CEO\'s password is “querty” (lien direct) |
We take a look at reports that CEOs and other executives are using weak passwords in their daily dealings. How do we fix this?
|
|
|
|
|
2022-05-19 15:16:00 |
How iPhones can run malware even when they\'re off (lien direct) |
Researchers have found there's a theoretical possibility that malware could run, even when an iPhone is off.
|
Malware
|
|
|
|
2022-05-19 13:07:27 |
Cardiologist moonlighted as successful ransomware developer (lien direct) |
>Moises Luis Zagala, cardiologist by day, ransomware developer by night, has been charged by the US government for computer crimes.
|
Ransomware
|
|
|
|
2022-05-19 12:42:13 |
VMWare vulnerabilities are actively being exploited, CISA warns (lien direct) |
>CISA has issued severe warnings about disclosed vulnerabilities in VMWare products that are actively being exploited, probably by APT threat actors.
|
Threat
|
|
|
|
2022-05-19 11:58:06 |
10 ways attackers gain access to networks (lien direct) |
>A joint multi-national cybersecurity advisory has revealed the top ten attack vectors most exploited by cybercriminals in order to gain access to organisation networks.
|
|
|
|
|
2022-05-18 12:55:00 |
Sysrv botnet is out to mine Monero on your Windows and Linux servers (lien direct) |
>The Sysrv botnet has been developing over the last years, and has become a multi-platform botnet that specializes in Monero cryptomining.
|
|
|
|
|
2022-05-17 20:16:22 |
Car owners warned of another theft-enabling relay attack (lien direct) |
We take a look at the latest report of relay attacks used to steal cars.
|
|
|
|
|
2022-05-17 19:37:25 |
Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs-now fixed (lien direct) |
A researcher has combined a chain of bugs into an attack method that makes it possible to take over Facebook accounts linked to Gmail.
|
|
|
|
|
2022-05-17 14:41:32 |
Long lost @ symbol gets new life obscuring malicious URLs (lien direct) |
A little-used feature of web addresses is being used to obfuscate malicious phishing URLs.
|
|
|
|
|
2022-05-17 14:12:25 |
AirTag stalking: What is it, and how can I avoid it? (lien direct) |
>AirTag stalking is in the news as bills look to close loopholes used by stalkers. What are AirTags, and how can they be used to track people?
|
|
|
|
|
2022-05-17 10:54:33 |
“Look what I found here” phish targets Facebook users (lien direct) |
A Facebook Messenger phish is asking would-be victims to "take a look". But what lies in wait for eager clickers?
|
|
|
|
|
2022-05-16 13:07:26 |
Why MRG-Effitas matters to SMBs (lien direct) |
>The 360° Assessment & Certification from MRG-Effitas can offer guidance to SMBs looking for a simple, effective cybersecurity product.
|
|
|
|
|
2022-05-16 12:28:53 |
How COVID-19 fuelled a surge in malware (lien direct) |
>Research from Malwarebytes reveals an enormous, coronavirus-fuelled surge in malware detections in 2021.
|
Malware
|
|
|
|
2022-05-16 11:54:12 |
Fake reCAPTCHA forms dupe users via compromised WordPress sites (lien direct) |
>Threat actors have launched a new campaign that starts with compromised WordPress sites and leads to fake reCAPTCHA sites designed to get visitors to accept web push notifications.
|
Guideline
|
|
|
|
2022-05-16 10:01:04 |
(Déjà vu) A week in security (May 9 – 15) (lien direct) |
The most important and interesting computer security stories from the last seven days.
|
|
|
|
|
2022-05-16 10:00:00 |
Custom PowerShell RAT targets Germans seeking information about the Ukraine crisis (lien direct) |
Malwarebytes Threat Intelligence has uncovered an attack using the lure of information about the war in Ukraine to target people in Germany.
|
Threat
|
|
|
|
2022-05-15 20:06:48 |
How to spot the signs of a virtual kidnap scam (lien direct) |
>Virtual kidnap attempts are big business for criminals. We offer some steps to minimise the risk of this awful attempt at fraud.
|
|
|
|
|
2022-05-12 15:38:26 |
Virtual credit cards coming to Chrome: What you need to know (lien direct) |
>Google are introducing virtual credit cards to the Chrome browser for users of their services in the US. We take a look at what's in store.
|
|
|
|
|
2022-05-12 15:22:23 |
Clearview AI banned from selling facial recognition data in the US (lien direct) |
>The facial recognition and surveillance company was sued for earning off the back of people's faceprints that were taken without consent.
|
|
|
|
|
2022-05-12 13:22:00 |
Cyberattacks on SATCOM networks attributed to Russian threat actors (lien direct) |
>CISA and the FBI are sharing information about the US attribution of cyberattacks on SATCOM networks that targeted Ukraine but spilled over into other European countries.
|
Threat
|
|
★★★★
|
|
2022-05-12 12:51:25 |
F5 BIG-IP vulnerability is now being used to disable servers (lien direct) |
>At least one group of threat actors is using the recently patched vulnerability in F5 BIG-IP to wipe the file system of vulnerable devices.
|
Threat
Vulnerability
|
|
|
|
2022-05-12 10:21:16 |
College closes down after ransomware attack (lien direct) |
>Lincoln College is the first US college or university ransomware affected so badly that it could not cope and had to close shop.
|
Ransomware
|
|
|
|
2022-05-11 14:36:23 |
Update now! Microsoft releases patches, including one for actively exploited zero-day (lien direct) |
May's Patch Tuesday includes one actively exploited zero-day vulnerability and some other interesting ones.
|
Vulnerability
|
|
|
|
2022-05-11 08:43:17 |
Canon printer owners: Be careful of bogus driver download sites (lien direct) |
We look at reports of scams involving fake Canon printer drivers, non-existent downloads, and tech support scams.
|
|
|
|
|
2022-05-10 20:49:30 |
APT34 targets Jordan Government using new Saitama backdoor (lien direct) |
A deep dive into a sophisticated attack that used the Saitama backdoor.
|
|
APT 34
|
|
|
2022-05-10 13:04:04 |
Client side scanning may cost more than it delivers (lien direct) |
>On May 11, 2022, the EU will publicize a proposal for a law on mandatory chat control. Privacy advocates aren't happy.
|
|
|
|
|
2022-05-10 12:04:27 |
“Chemical attack” email warnings deliver Jester Stealer malware (lien direct) |
An email warning of supposed chemical attacks that delivers Jester Stealer malware is being sent to people in Ukraine.
|
Malware
|
|
|
|
2022-05-09 15:54:15 |
Costa Rica continues defence against sustained Conti ransomware attacks (lien direct) |
Costa Rica is doing everything it can to ward off persistent and overwhelming attacks from the Conti Ransomware group.
|
Ransomware
|
|
|
|
2022-05-09 15:39:17 |
Update now! F5 BIG-IP vulnerability being actively exploited (lien direct) |
>Only a few days after the release of the patch for a vulnerability in F5 BIG-IP, exploits were developed and are now being deployed.
|
Vulnerability
|
|
|
|
2022-05-09 15:26:54 |
Recovering from romance scams with Cindy Liebes: Lock and Code S03E10 (lien direct) |
>This week on Lock and Code, we speak with Cindy Liebes about the financial and emotional damage caused by romance scams and how to spot them.
|
|
|
|
|
2022-05-09 14:35:14 |
How to remove Google from your life (lien direct) |
>Google and all its products can dominate the average person's life. Here's an in-depth guide on how to remove yourself from their ecosystem.
|
|
|
|
|
2022-05-09 12:09:04 |
A special browser designed for online banking. Good idea, or not so much? (lien direct) |
>A specialized banking browser was introduced by a major German bank. While that sounds like a good idea, it looks like they are overestimating what it can do.
|
|
|
|
|
2022-05-09 11:00:45 |
$600 a week to wrap your car? It\'s a scam (lien direct) |
We take a look at continued reports of fake car wrap scams sent by SMS, mail, and phonecall. How does this one work?
|
|
|
|
|
2022-05-09 10:49:02 |
A scanning tool for open-sourced software packages? Yes, please! (lien direct) |
OpenSSF recently introduced a dynamic analysis tool for all OSS packages when uploaded to open source repositories.
|
Tool
|
|
|
|
2022-05-09 10:20:30 |
A week in security (May 2 – 8) (lien direct) |
The most important and interesting stories in security from the last seven days.
|
|
|
|
|
2022-05-08 11:51:58 |
Google, Apple, and Microsoft step hand in hand into a passwordless future (lien direct) |
Three tech giants used World Password Day to announce their commitment to a passwordless future using FIDO Alliance standards.
|
|
|
|
|
2022-05-06 16:29:52 |
OpenSea warns of Discord channel compromise (lien direct) |
>We take a look at reports that the Discord channel for the OpenSea NFT marketplace has been compromised and used to send out rogue links.
|
|
|
|
|
2021-01-06 15:14:45 |
Retrohunting APT37: North Korean APT used VBA self decode technique to inject RokRat (lien direct) |
A North Korean threat group has swapped the usual Hangul Office lures for a cleverly packed Office macro.
Categories: Social engineeringThreat analysis
Tags: APT37HangulkoreaOfficerokratVBA
(Read more...)
|
Threat
Cloud
|
APT 37
|
|
|
2021-01-06 10:44:01 |
Adobe Flash Player reaches end-of-life (lien direct) |
Adobe Flash Player has reached end-of-life. Here's why you might want to uninstall it.
Categories: Awareness
Tags: Adobe Flash Playerbrowser gamesexploit kitsflashmacwindows
(Read more...)
|
|
|
|