Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2018-12-05 15:18:00 |
Adobe Patches Zero-Day Vulnerability in Flash Player (lien direct) |
The vulnerability could lead to arbitrary code execution. |
Guideline
Vulnerability
|
|
|
|
2018-12-05 04:34:02 |
Google Chrome 71 Touts 43 Fixes, Fights Ad Abuse (lien direct) |
The browser comes with a new set of protections to block pop-ups that could lead to 'abusive experiences.' |
Guideline
|
|
|
|
2018-11-20 20:49:03 |
Critical Adobe Flash Bug Impacts Windows, macOS, Linux and Chrome OS (lien direct) |
Adobe issues patch for a Flash Player vulnerability that could lead to an arbitrary code execution on targeted systems. |
Guideline
Vulnerability
|
|
|
|
2018-11-05 17:59:03 |
Newsmaker Interview: Tom Kellermann on Hacking the Midterm Elections (lien direct) |
Concerns over midterm election tampering reach a boiling point in the days leading up to actual voting. |
Guideline
|
|
|
|
2018-09-19 16:54:02 |
Critical Out-of-Band Patch Issued for Adobe Acrobat Reader (lien direct) |
Overall seven flaws were patched - including one critical vulnerability that could lead to arbitrary code execution. |
Guideline
Vulnerability
|
|
|
|
2018-06-28 13:02:03 |
Reality Winner, N.S.A. Contractor, Sentenced to 5+ Years in Leak Case (lien direct) |
A former National Security Agency contractor pleaded guilty Tuesday to espionage, becoming the first person to be prosecuted under the Trump administration for leaking classified information. |
Guideline
|
|
|
|
2018-06-20 19:43:04 |
New Phishing Scam Reels in Netflix Users to TLS-Certified Sites (lien direct) |
Researchers are warning of a new Netflix phishing scam that leads to sites with valid TLS certificates. |
Guideline
|
|
|
|
2018-05-30 20:12:04 |
Bug In Git Opens Developer Systems Up to Attack (lien direct) |
A serious vulnerability was patched by developers behind Git that closes the door on a flaw that could lead to arbitrary code execution on a developer's system. |
Guideline
|
|
★★★★
|
|
2018-05-29 18:04:02 |
Sonic Tone Attacks Damage Hard Disk Drives, Crashes OS (lien direct) |
Attack uses ultrasonic sound waves to disrupt HHD read/write operations, which could lead to a system crash. |
Guideline
|
|
|
|
2018-03-27 21:28:00 |
Alleged Mastermind Behind Carbanak Crime Gang Arrested (lien direct) |
The suspected leader behind the cyber crime group that targeted banks to rack up more than one billion Euros in damage over the past few years has been apprehended, according to the Spanish National Police. |
Guideline
|
|
|
|
2017-09-07 18:24:24 |
Microsoft Won\'t Fix Security Bypass Vulnerability in Edge (lien direct) |
Microsoft is opting to stand pat and not fix a content security bypass vulnerability in its Edge browser, something researchers warn could potentially lead to the disclosure of confidential information. |
Guideline
|
|
|
|
2017-08-07 20:45:14 |
Marcus Hutchins\' Only Certainty is Uncertainty (lien direct) |
WannaCry hero Marcus Hutchins pleaded not guilty last week could be freed today on $30,000 bond before the case moves to Wisconsin. |
Guideline
|
Wannacry
|
|
|
2017-06-21 15:14:36 |
OpenVPN Patches Critical Remote Code Execution Vulnerability (lien direct) |
OpenVPN patched four vulnerabilities privately disclosed by Dutch researcher Guido Vranken, including a critical issue that could lead to remote code execution. |
Guideline
|
|
|
|
2017-05-26 15:00:43 |
Pacemaker Ecosystem Fails its Cybersecurity Checkup (lien direct) |
Pacemakers and pacemaker programmers lack authentication and are plagued with thousands of software vulnerabilities across leading manufacturers. |
Guideline
|
|
|
|
2017-05-22 13:00:54 |
Jaya Baloo on WannaCry and Defending Against Advanced Attacks (lien direct) |
Jaya Baloo, CISO of KPN, the Netherlands' leading telecommunications provider, talks to Mike Mimoso about the WannaCry ransomware outbreak and how large network providers and enterprises must contend with advanced attacks. |
Guideline
|
Wannacry
|
|
|
2017-04-06 18:27:01 |
Chrome Security Team Tackles \'Friendly Fire\' To Keep Browser Safe (lien direct) |
Justin Schuh, lead engineer of Chrome Security, said ensuring browser security for Chrome users is a balancing act juggling OEM pressures, questionable certificate authorities and quashing third-party software incompatibility issues. |
Guideline
|
|
|
|
2017-03-14 16:39:13 |
Adobe Fixes Six Code Execution Bugs in Flash (lien direct) |
Adobe fixed seven vulnerabilities, six that could lead to code execution, in Flash Player on Tuesday. |
Guideline
|
|
|
|
2017-02-24 22:06:29 |
Researchers Uncover New Leads Behind Shamoon2 (lien direct) |
Researchers from Arbor Networks' Security Engineering and Response Team (ASERT) say they have unearthed fresh leads on the tools and techniques used in the most recent wave of Shamoon attacks. |
Guideline
|
|
|
|
2017-02-21 16:00:56 |
Rook Security on Online Extortion (lien direct) |
Mat Gangwer, CTO, and Tom Gorup, Security Operations Lead, at Rook Security talk to Mike Mimoso about the aggressive rise in online extortion and how it threatens not only data but physical safety. |
Guideline
|
|
|
|
2017-02-09 18:13:41 |
High Severity BIND Vulnerability Can Lead to A Crash (lien direct) |
The Internet Systems Consortium patched the BIND domain name system this week, addressing a remotely exploitable vulnerability it said could lead to a crash. |
Guideline
|
|
|
|
2017-01-30 21:48:28 |
Hundreds of Thousands of Netgear Routers Vulnerable to Password Bypass (lien direct) |
Hundreds of thousands–potentially more than one million–Netgear routers are susceptible to a pair of vulnerabilities that can lead to password disclosure. |
Guideline
|
|
|
|
2017-01-18 19:26:35 |
Docker Patches Container Escape Vulnerability (lien direct) |
Docker has patched a privilege escalation vulnerability that could lead to container escapes, allowing a hacker to affect operations of a host from inside a container. |
Guideline
|
|
|
|
2016-12-19 21:43:01 |
ShadowBrokers Dump Came from Internal Code Repository, Insider (lien direct) |
Researchers at Flashpoint said their analysis of the latest ShadowBrokers dump of NSA tools leads them to believe an insider with access to a code repository stole the data. |
Guideline
|
|
|
|
2016-12-15 18:46:02 |
Microsoft, Google to Block Flash by Default in Edge, Chrome (lien direct) |
Microsoft followed Google's lead and said it will soon block Flash Player by default in the Edge browser. |
Guideline
|
|
|
|
2016-11-02 18:02:10 |
Critical MySQL Vulnerabilities Can Lead to Server Compromise (lien direct) |
Critical vulnerabilities in MySQL and database servers MariaDB and PerconaDB can lead to arbitrary code execution, root privilege escalation, and server compromise. |
Guideline
|
|
|
|
2016-10-26 16:34:20 |
Remote Code Execution Vulnerabilities Plague LibTIFF Library (lien direct) |
Three vulnerabilities, all which can lead to remote code execution, exist in the LibTIFF library. |
Guideline
|
|
|
|
2016-10-24 18:30:04 |
Fake Microsoft Installer Leads to Malware, Support Call Scam (lien direct) |
An installer purporting to be Microsoft Security Essentials is malware that can lead to a support call scam. |
Guideline
|
|
|
|
2016-10-05 16:30:51 |
Yahoo Slams Email Surveillance Story: Experts Demand Details (lien direct) |
Yahoo calls a bombshell email surveillance story “misleading†as legal, civil liberties and security experts demand answers. |
Guideline
|
Yahoo
|
|
|
2016-09-28 17:18:40 |
Congressional Leaders Demand Answers on Yahoo Breach (lien direct) |
A number of Democratic Congressional leaders wrote Yahoo CEO Marissa Mayer a letter seeking answers about the breach of 500 million customer records. |
Guideline
|
Yahoo
|
|
|
2016-09-15 18:54:46 |
Attack Leverages Windows Safe Mode (lien direct) |
Researchers say a proof-of-concept attack using Windows Safe Mode can lead to credential theft and allow hackers to move laterally within a corporate network. |
Guideline
|
|
|
|
2016-09-07 17:57:23 |
Critical Flaws Found in Network Management Systems (lien direct) |
Four leading network management system providers patched nearly a dozen critical cross-site scripting vulnerabilities disclosed Wednesday by Rapid7. |
Guideline
|
|
|
|
2016-08-25 13:22:25 |
Tor Update Fixes ReachableAddresses Problem (lien direct) |
Tor updated its software to 0.2.8.7 and fixed a number of issues, including a bug in the ReachableAddresses option that possibly degrades anonymity. |
Guideline
|
|
|
|
2016-05-05 15:22:59 |
Diary of a Ransomware Victim (lien direct) |
A major online casino ran headfirst into a ransomware infection, and learned some lessons the hard way about how simple mistakes that can lead to complicated problems. |
Guideline
|
|
|
|
2016-04-27 16:49:26 |
Firefox 46 Patches Critical Memory Vulnerabilities (lien direct) |
Mozilla released Firefox 46, which includes patches for one critical and four high-severity vulnerabilities, all of which can lead to remote code execution. |
Guideline
|
|
★★★
|