Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-10-20 11:17:06 |
Black market traders cash in on fake COVID-19 vaccination records (lien direct) |
The EU vaccine passport and CDC certifications are hot ticket items. |
|
|
|
|
2021-10-19 11:05:14 |
FCC mulls over new rules demanding carriers block spam robot texts at network level (lien direct) |
The proposal hones in on rising rates of robot texts. |
Spam
|
|
★★★★
|
|
2021-10-19 09:25:47 |
Twitter accounts linked to cyberattacks against security researchers suspended (lien direct) |
North Korean hackers are luring professionals with "zero-day vulnerability hype." |
Vulnerability
|
|
|
|
2021-10-18 11:43:08 |
BlackByte ransomware decryptor released (lien direct) |
The "odd" malware avoids systems based on Russian and ex-USSR languages. |
Ransomware
Malware
|
|
|
|
2021-10-15 14:30:02 |
Critical infrastructure security dubbed \'abysmal\' by researchers (lien direct) |
Researchers find that lax ICS security is putting critical services at risk of exploitation. |
|
|
|
|
2021-10-13 12:30:00 |
International cryptocurrency scam ring targets European dating app users (lien direct) |
You might lose your money as well as your heart. |
|
|
|
|
2021-10-13 12:07:00 |
Apple: Forcing app sideloading would turn iPhones into virus-prone \'pocket PCs\' (lien direct) |
Apple says that sideloading would undermine the "privacy and security protections" of iPhones. |
|
|
|
|
2021-10-13 10:00:08 |
Bugs allowing malicious NFT uploads uncovered in OpenSea marketplace (lien direct) |
Malicious NFTs could have become an attack vector for hackers trying to steal digital wallet funds. |
|
|
|
|
2021-10-11 09:53:45 |
FontOnLake malware strikes Linux systems in targeted attacks (lien direct) |
The malware is accompanied by a rootkit to sink its claws firmly into vulnerable machines. |
Malware
|
|
|
|
2021-10-11 08:54:01 |
FBI arrests engineer for flogging nuclear warship data hidden in peanut butter sandwich (lien direct) |
A husband and wife team tried to sell critical information on US submarine nuclear reactors. |
|
|
|
|
2021-10-08 12:16:00 |
BrewDog exposed data of 200,000 shareholders for over a year (lien direct) |
The beer's on BrewDog, too. |
|
|
|
|
2021-10-07 16:07:57 |
No honor among thieves: One in five targets of FIN12 hacking group is in healthcare (lien direct) |
The group strikes big game targets with annual revenues of over $6 billion. |
|
|
|
|
2021-10-07 07:57:46 |
Former Kent police officer sentenced for downloading child sex abuse material (lien direct) |
The disgraced officer has avoided jail. |
|
|
|
|
2021-10-06 17:32:20 |
Becoming a new chief information security officer today: The steps for success (lien direct) |
It's no easy ride -- but here are some tips from an experienced CISO. |
|
|
|
|
2021-10-06 12:03:29 |
(Déjà vu) Apache HTTP Server Project patches exploited zero-day vulnerability (lien direct) |
The critical vulnerability is being actively exploited in the wild. |
Vulnerability
|
|
|
|
2021-10-06 11:06:47 |
Meet ESPecter: a new UEFI bootkit for cyber spying (lien direct) |
The bootkit is able to load unsigned drivers to hijack the ESP. |
|
|
|
|
2021-10-05 15:38:00 |
Facebook whistleblower: \'Morally bankrupt\' social giant will have to \'hook kids\' to grow (lien direct) |
The whistleblower has accused Facebook of putting its "astronomical profits before people." |
|
|
|
|
2021-10-05 13:00:02 |
New Python ransomware targets virtual machines, ESXi hypervisors to encrypt disks (lien direct) |
By targeting ESXi, encryption was achieved in less than three hours on a corporate network. |
Ransomware
|
|
|
|
2021-10-05 10:42:39 |
Atom Silo ransomware operators target vulnerable Confluence servers (lien direct) |
A weaponized exploit used by the cybercriminals was only disclosed in August. |
Ransomware
|
|
|
|
2021-10-05 09:31:18 |
Misconfigured, old Airflow instances leak Slack, AWS credentials (lien direct) |
Unprotected instances are exposing secrets across industries including IT, health, and cybersecurity. |
|
|
|
|
2021-10-04 11:50:29 |
Fraudster jailed for stealing US military health records, millions in benefits (lien direct) |
Military benefit fraud was the goal of a transnational criminal ring. |
|
|
|
|
2021-10-01 11:30:33 |
Chief exec of cybersecurity Group-IB arrested on treason charge (lien direct) |
Group-IB maintains the CEO is innocent. |
|
|
|
|
2021-10-01 09:55:31 |
Android, Java bug bunting tool Mariana Trench goes open source (lien direct) |
Mariana Trench originated as an internal Facebook tool. |
Tool
|
|
|
|
2021-09-30 15:30:00 |
Proxy Phantom: Fraud rings flood online merchants with credential stuffing attacks (lien direct) |
Over 1.5 million stolen credential sets are being used by one fraud operation. |
|
|
|
|
2021-09-30 12:00:14 |
Fears surrounding Pegasus spyware prompt new Trojan campaign (lien direct) |
Criminals hope that the lure of a promise to protect you from spyware will make you click that link. |
|
|
|
|
2021-09-29 23:01:02 |
Researchers discover bypass \'bug\' in iPhone Apple Pay, Visa to make contactless payments (lien direct) |
The security issue relates to Visa and Apple's transmit mode. |
|
|
|
|
2021-09-29 15:17:28 |
Tomiris backdoor discovery linked to Sunshuttle, DarkHalo hackers (lien direct) |
Another backdoor has been tentatively linked to the hackers behind SolarWinds. |
|
|
|
|
2021-09-29 13:00:02 |
This dangerous mobile Trojan has stolen a fortune from over 10 million victims (lien direct) |
Researchers say the infections are generating millions of dollars a month in recurring revenue. |
|
|
|
|
2021-09-29 10:49:12 |
Akamai acquires cybersecurity firm Guardicore for $600 million (lien direct) |
Guardicore's zero-trust solutions brought it to the attention of the CDN. |
|
|
|
|
2021-09-29 10:29:45 |
Google launches new reward program for Tsunami Security Scanner (lien direct) |
The program offers up to $3,133 in financial rewards. |
|
|
|
|
2021-09-29 09:00:02 |
Telegram bots are trying to steal your one-time passwords (lien direct) |
The tokens can be used to shred second-stage account verification. |
|
|
|
|
2021-09-28 15:09:00 |
FinSpy surveillance malware is now spreading through UEFI bootkits (lien direct) |
The spyware had previously been associated with malicious installers and MBR bootkits. |
Malware
|
|
|
|
2021-09-28 08:00:02 |
Scalper bots are now targeting graphics card vendors (lien direct) |
Concert tickets are no longer the most coveted items on a reseller's list. |
|
|
|
|
2021-09-24 09:45:00 |
FBI arrests 75-year-old for allegedly placing pipe bombs outside phone, carrier stores (lien direct) |
The suspect was reportedly upset over handsets being used to spread "immoral content." |
|
|
|
|
2021-09-23 09:36:00 |
New advanced hacking group targets governments, engineers worldwide (lien direct) |
The APT was one of many groups that took part in the Microsoft Exchange Server hacks. |
|
|
|
|
2021-09-22 13:16:42 |
This cryptocurrency miner is exploiting the new Confluence remote code execution bug (lien direct) |
It didn't take long for CVE-2021-26084 to be added to exploit kits. |
|
|
|
|
2021-09-22 13:15:33 |
Microsoft Autodiscover abused to collect web requests, credentials (lien direct) |
Researchers were able to exploit a protocol design feature on a vast scale. |
|
|
|
|
2021-09-21 13:00:09 |
HackerOne expands Internet Bug Bounty project to tackle open source bugs (lien direct) |
Open source code is used by most companies. It's time to improve its security. |
|
|
|
|
2021-09-21 12:00:00 |
Turla hacking group launches new backdoor in attacks against US, Afghanistan (lien direct) |
The Russian cyberattackers are using the new module to become more stealthy. |
|
|
|
|
2021-09-21 10:00:02 |
Siemens launches AI solution to fight industrial cybercrime (lien direct) |
Eos.ii will monitor for threats against industrial IoT endpoints and platforms. |
|
|
|
|
2021-09-20 11:04:48 |
Facebook rebukes WSJ over investigation on the platform\'s ability to harm, \'toxic\' impact (lien direct) |
Facebook says the series contains "deliberate mischaracterizations." |
|
|
|
|
2021-09-17 10:10:00 |
This banking Trojan abuses YouTube to manage remote settings (lien direct) |
The spam-spread malware is another headache for Latin America in the cybersecurity realm. |
Malware
|
|
|
|
2021-09-17 09:06:46 |
Cyberattacks against the aviation industry linked to Nigerian threat actor (lien direct) |
The investigation began after a Microsoft tweet concerning AsyncRAT. |
Threat
|
|
|
|
2021-09-16 13:00:15 |
New Go malware Capoae targets WordPress installs, Linux systems (lien direct) |
Capoae highlights the increase of cyberattacks designed to deploy cryptocurrency-mining payloads. |
Malware
|
|
|
|
2021-09-15 10:55:11 |
Cybercriminals recreate Cobalt Strike in Linux (lien direct) |
The new malware strain has gone unnoticed by detection tools. |
Malware
|
|
|
|
2021-09-15 10:00:02 |
Two-thirds of cloud attacks could be stopped by checking configurations, research finds (lien direct) |
IBM says that over half of cloud security breaches are caused by issues simple to rectify. |
|
|
|
|
2021-09-15 09:27:30 |
Meris botnet assaults KrebsOnSecurity (lien direct) |
The botnet appears to be made up of compromised routers. |
|
|
|
|
2021-09-14 12:00:05 |
The state of ransomware: national emergencies and million-dollar blackmail (lien direct) |
Banks, however, have experienced the highest volume of ransomware attacks this year. |
Ransomware
|
|
|
|
2021-09-14 11:06:46 |
HP patches severe OMEN driver privilege escalation vulnerability (lien direct) |
The bug can be used to achieve kernel-mode permissions. |
Vulnerability
|
|
|
|
2021-09-14 11:00:02 |
Close to half of on-prem databases contain vulnerabilities, with many critical flaws (lien direct) |
The Microsoft Exchange attack wave revealed the risks, but patching isn't always straightforward. |
Patching
|
|
★★★
|