What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-01-20 12:17:04 | Hacker leaks full database of 77 million Nitro PDF user records (lien direct) | A stolen database containing the email addresses, names, and passwords of more than 77 million records of Nitro PDF service users was leaked today for free. [...] | |||
|
2021-01-20 05:05:05 | (Déjà vu) Hacker posts 1.9 million Pixlr user records for free on forum (lien direct) | A hacker has leaked 1.9 million Pixlr user records containing information that could be used to perform targeted phishing and credential stuffing attacks. [...] | |||
|
2021-01-20 05:05:05 | Hacker posts 1.4 million Pixlr user records for free on forum (lien direct) | A hacker has leaked 1.4 million Pixlr user records containing information that could be used to perform targeted phishing and credential stuffing attacks. [...] | |||
|
2021-01-20 02:00:00 | List of DNSpooq vulnerability advisories, patches, and updates (lien direct) | Yesterday, seven Dnsmasq vulnerabilities were disclosed, collectively known as DNSPooq, that attackers can use to launch DNS Cache Poisoning, denial of service, and possibly remote code execution attacks, on affected devices. In this article we list all the available security advisories related to these vulnerabilities. [...] | Vulnerability | ||
|
2021-01-19 16:45:08 | Bugs in Signal, Facebook, Google chat apps let attackers spy on users (lien direct) | Vulnerabilities found in multiple video conferencing mobile applications allowed attackers to listen to users' surroundings without permission before the person on the other end picked up the calls. [...] | |||
|
2021-01-19 15:46:37 | Google search bug freezes tabs when using a custom date range (lien direct) | A bug in Google Search is causing a browser tab to freeze when searching between a specified range of dates. [...] | |||
|
2021-01-19 15:03:33 | Malwarebytes says SolarWinds hackers accessed its internal emails (lien direct) | Cybersecurity firm Malwarebytes today confirmed that the threat actor behind the SolarWinds supply-chain attack were able to gain access to some company emails. [...] | Threat | ||
|
2021-01-19 14:09:38 | SolarWinds hackers used 7-Zip code to hide Raindrop Cobalt Strike loader (lien direct) | The ongoing analysis of the SolarWinds supply-chain attack uncovered a fourth malicious tool that researchers call Raindrop and was used for distribution across computers on the victim network. [...] | Tool | Solardwinds | |
|
2021-01-19 13:45:10 | Google Chrome 88 released: RIP Flash Player and FTP support (lien direct) | Google has released Chrome 88 today, January 19th, 2021, to the Stable desktop channel, and it includes security improvements and the long-awaited removal of Adobe Flash Player. [...] | |||
|
2021-01-19 13:10:54 | Interpol: Trading scammers lure love-struck victims via dating apps (lien direct) | The Interpol (International Criminal Police Organisation) warns of fraudsters targeting dating app users and attempting to trick them into investing through fake trading apps. [...] | |||
|
2021-01-19 11:27:26 | DNSpooq bugs let attackers hijack DNS on millions of devices (lien direct) | Israel-based security consultancy firm JSOF disclosed today seven Dnsmasq vulnerabilities, collectively known as DNSpooq, that can be exploited to launch DNS cache poisoning and remote code execution against millions of affected devices. [...] | |||
|
2021-01-19 07:48:51 | FreakOut malware exploits critical bugs to infect Linux hosts (lien direct) | An active malicious campaign is currently targeting Linux devices running software with critical vulnerabilities that is powering network-attached storage (NAS) devices or for developing web applications and portals. [...] | Malware | ||
|
2021-01-18 14:57:18 | (Déjà vu) IObit forums hacked to spread ransomware to its members (lien direct) | Windows utility developer IObit was hacked over the weekend to perform a widespread attack to distribute the strange DeroHE ransomware to its forum members. [...] | Ransomware | ||
|
2021-01-18 14:57:18 | IObit forums hacked in widespread DeroHE ransomware attack (lien direct) | Windows utility developer IObit was hacked over the weekend to perform a widespread attack to distribute the strange DeroHE ransomware to its forum members. [...] | Ransomware | ||
|
2021-01-18 13:30:00 | Microsoft Defender to enable full auto-remediation by default (lien direct) | Microsoft will enable fully automated threat remediation by default for Microsoft Defender for Endpoint customers who have opted into public previews starting next month, on February 16, 2021. [...] | Threat | ||
|
2021-01-18 13:23:34 | OpenWRT Forum user data stolen in weekend data breach (lien direct) | The administrators of the OpenWRT forum, a large community of enthusiasts of alternative, open-source operating systems for routers, announced a data breach. [...] | Data Breach | ||
|
2021-01-18 10:00:06 | FBI warns of vishing attacks stealing corporate accounts (lien direct) | The Federal Bureau of Investigation (FBI) has issued a notification warning of ongoing vishing attacks attempting to steal corporate accounts and credentials for network access and privilege escalation from US and international-based employees. [...] | |||
|
2021-01-17 15:41:33 | Windows 10X: A closer look at Microsoft\'s new operating system (lien direct) | Windows 10X was originally designed for dual-screen devices, such as the Surface Neo, Lenovo ThinkPad X1 Fold, and Intel prototypes. In 2020, Microsoft said that the plans have changed and the operating system will first debut on single-screen devices in 2021. [...] | |||
|
2021-01-17 15:21:27 | (Déjà vu) Windows 10 bug crashes your PC when you access this location (lien direct) | A bug in Windows 10 causes the operating system to crash with a Blue Screen of Death simply by opening a certain path in a browser's address bar or using other Windows commands. [...] | |||
|
2021-01-17 15:21:27 | Windows 10 bug causes a BSOD crash when opening a certain path (lien direct) | A bug in Windows 10 causes the operating system to crash simply by opening a particular path. [...] | |||
|
2021-01-17 11:39:59 | Privacy-focused search engine DuckDuckGo grew by 62% in 2020 (lien direct) | The privacy-focused search engine DuckDuckGo continues to grow rapidly as the company reached 102M daily search queries for the first time in January. [...] | |||
|
2021-01-16 15:46:03 | Pro-Trump \'Enemies of the People\' doxing site is still active (lien direct) | Enemies of the People, the website inciting violence against U.S. officials who refused to support the President's claims to voter fraud, is still active and continues to expose personal details from more individuals. [...] | |||
|
2021-01-16 13:40:48 | (Déjà vu) Stolen credit card shop Joker\'s Stash closes after making a fortune (lien direct) | The administrator of Joker's Stash, one of the longest-running marketplace for stolen credit cards, announced on Friday that they would permanently shut down the operation next month. [...] | |||
|
2021-01-16 13:40:48 | Massive stolen credit card shop Joker\'s Stash shuts down (lien direct) | The administrator of Joker's Stash, one of the longest-running marketplace for stolen credit cards, announced on Friday that they would permanently shut down the operation next month. [...] | |||
|
2021-01-15 17:37:47 | The Week in Ransomware - January 15th 2021 - Locking you up (lien direct) | It has been another quiet week for ransomware, though we did have some interesting stories come out this week. [...] | Ransomware | ||
|
2021-01-15 16:20:12 | Google to kill Chrome Sync feature in third-party browsers (lien direct) | Google says that it will block third-party Chromium web browsers from using private Google APIs after discovering that they were integrating them although they're intended to be used only in Chrome. [...] | |||
|
2021-01-15 14:34:59 | Windows Finger command abused by phishing to download malware (lien direct) | Attackers are using the normally harmless Windows Finger command to download and install a malicious backdoor on victims' devices. [...] | Malware | ||
|
2021-01-15 13:43:34 | Hackers leaked altered Pfizer data to sabotage trust in vaccines (lien direct) | The European Medicines Agency (EMA) today revealed that some of the stolen Pfizer/BioNTech vaccine candidate data was doctored by threat actors before being leaked online with the end goal of undermining the public's trust in COVID-19 vaccines. [...] | Threat | ||
|
2021-01-15 11:22:56 | Scotland environmental regulator hit by \'ongoing\' ransomware attack (lien direct) | The Scottish Environment Protection Agency confirmed on Thursday that some of its contact center, internal systems, processes and internal communications were affected following a ransomware attack that took place on Christmas Eve. [...] | Ransomware | ||
|
2021-01-15 10:58:36 | Signal down after getting flooded with new users (lien direct) | Signal users are currently experiencing issues around the world, with users unable to send and receive messages. When attempting to send messages via Signal, users are seeing loading screen and error message "502". [...] | |||
|
2021-01-15 09:51:59 | Microsoft warns of incoming Windows Zerologon patch enforcement (lien direct) | Microsoft today warned admins that updates addressing the Windows Zerologon vulnerability will transition into the enforcement phase starting next month. [...] | |||
|
2021-01-15 05:05:05 | Undisclosed Apache Velocity XSS vulnerability impacts GOV sites (lien direct) | An undisclosed XSS vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASA. [...] | Vulnerability | ||
|
2021-01-14 16:47:21 | Verified Twitter accounts hacked in $580k \'Elon Musk\' crypto scam (lien direct) | Threat actors are hacking verified Twitter accounts in an Elon Musk cryptocurrency giveaway scam that has recently become widely active. [...] | Threat | ||
|
2021-01-14 15:16:14 | Facebook sues makers of malicious Chrome extensions for scraping data (lien direct) | Facebook has taken legal action against the makers of malicious Chrome extensions used for scraping user-profiles and other information from Facebook's website and from users' systems without authorization. [...] | |||
|
2021-01-14 13:05:44 | NSA advises companies to avoid third party DNS resolvers (lien direct) | The US National Security Agency (NSA) says that companies should avoid using third party DNS resolvers to block threat actors' DNS traffic eavesdropping and manipulation attempts and to block access to internal network information. [...] | Threat | ||
|
2021-01-14 09:32:57 | Office January security updates fix remote code execution bugs (lien direct) | Microsoft addresses important severity remote code execution vulnerabilities affecting multiple Office products in the January 2021 Office security updates released during this month's Patch Tuesday. [...] | |||
|
2021-01-14 07:06:02 | Telegram-based phishing service Classiscam hits European marketplaces (lien direct) | Dozens of cybercriminal gangs are publishing fake ads on popular online marketplaces to lure interested users to fraudulent merchant sites or to phishing pages that steal payment data. [...] | |||
|
2021-01-14 05:05:05 | Windows 10 bug corrupts your hard drive on seeing this file\'s icon (lien direct) | An unpatched zero-day in Microsoft Windows 10 allows attackers to corrupt an NTFS-formatted hard drive with a one-line command. [...] | |||
|
2021-01-13 16:24:52 | CISA: Hackers bypassed MFA to access cloud service accounts (lien direct) | The US Cybersecurity and Infrastructure Security Agency (CISA) said today that threat actors bypassed multi-factor authentication (MFA) authentication protocols to compromise cloud service accounts. [...] | Threat | ||
|
2021-01-13 16:08:19 | It\'s finally over! Time to uninstall Adobe Flash Player (lien direct) | It's over, kaput, done. Adobe Flash Player is officially non-functional, and it's time to uninstall the program once and for all. [...] | |||
|
2021-01-13 12:14:58 | Microsoft addresses issue breaking Windows 10 \'Reset this PC\' (lien direct) | Microsoft has resolved a known issue that caused the Windows 10 "Reset this PC" feature to fail in some cases, on both client and server platforms. [...] | |||
|
2021-01-13 11:24:33 | Microsoft fixes Secure Boot bug allowing Windows rootkit installation (lien direct) | Microsoft has fixed a security feature bypass vulnerability in Secure Boot that allows attackers to compromise the operating system's booting process even when Secure Boot is enabled. [...] | Vulnerability | ★★★ | |
|
2021-01-13 09:48:32 | Skype is down worldwide - Microsoft working on issues (lien direct) | Skype users are currently experiencing issues around the world, with users reporting that they are getting signed out of their Skype account and company accounts automatically. [...] | |||
|
2021-01-13 08:51:07 | Google discloses hacking campaign targeting Windows, Android users (lien direct) | Project Zero, Google's 0day bug-hunting team, revealed a hacking campaign coordinated by "a highly sophisticated actor" and targeting Windows and Android users with zero-day and n-day exploits. [...] | |||
|
2021-01-12 18:57:52 | SolarLeaks site claims to sell data stolen in SolarWinds attacks (lien direct) | A website named 'SolarLeaks' is selling data they claim was stolen from companies confirmed to have been breached in the SolarWinds attack. [...] | |||
|
2021-01-12 16:37:31 | Capcom: 390,000 people may be affected by ransomware data breach (lien direct) | Capcom has released a new update for their data breach investigation and state that up to 390,000 people may now be affected by their November ransomware attack. [...] | Ransomware Data Breach | ||
|
2021-01-12 13:38:05 | Microsoft patches Defender antivirus zero-day exploited in the wild (lien direct) | Microsoft has addressed a zero-day vulnerability in the Microsoft Defender antivirus, exploited in the wild by threat actors before the patch was released. [...] | Vulnerability Threat | ||
|
2021-01-12 13:30:21 | Windows 10 Cumulative Updates KB4598229 & KB4598242 released (lien direct) | Today is first Patch Tuesday of 2021 and Microsoft is rolling out a new cumulative update for all supported version of Windows. The cumulative update with security fixes is rolling out to PCs with October 2020 Update, May 2020 Update, November 2019 Update, and May 2019 Update. [...] | |||
|
2021-01-12 13:27:35 | Microsoft January 2021 Patch Tuesday fixes 83 flaws, 1 zero-day (lien direct) | Today is Microsoft's January 2021 Patch Tuesday, and it is the first Microsoft security update release in 2021, so please be very nice to your Windows administrators today. [...] | |||
|
2021-01-12 12:28:43 | New Zealand Reserve Bank breached using bug patched on Xmas Eve (lien direct) | A recent data breach at the Reserve Bank of New Zealand, known as Te Pūtea Matua, was caused by attackers exploiting a critical vulnerability patched the same day. [...] | Data Breach Vulnerability |
To see everything:
Our RSS (filtrered)
