Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-16 03:24:22 |
Customer-Owned Bank Informs 100k of Breach Exposing Account Balance, PII (lien direct) |
P&N Bank in West Australia (WA) is informing its customers that hackers may have accessed personal information stored on its systems following a cyber attack. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-11 13:05:27 |
The Week in Ransomware - January 10th 2020 - Now Data Breaches (lien direct) |
This week we have seen new ransomware operators targeting businesses, stolen data published, and the Sodinokibi Ransomware being confirmed as behind the Travelex cyber attack. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-11 10:00:00 |
Android Trojan Kills Google Play Protect, Spews Fake App Reviews (lien direct) |
An Android malware strain camouflaged as a system app is used by threat actors to disable the Google Play Protect service, generate fake reviews, install malicious apps, show ads, and more. [...] |
Malware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-11 03:01:00 |
Citrix ADC CVE-2019-19781 Exploits Released, Fix Now! (lien direct) |
Numerous working exploits for the Citrix ADC (NetScaler) CVE-2019-1978 vulnerability are finally here and have been publicly posted in numerous locations. There is no patch available for this vulnerability, but Citrix has provided mitigations, which should be applied now! [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 19:17:48 |
Australia Bushfire Donors Affected by Credit Card Skimming Attack (lien direct) |
Attackers have compromised a website collecting donations for the victims of the Australia bushfires and injected a malicious script that steals the payment information of the donors. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 17:13:07 |
Maze Ransomware Publishes 14GB of Stolen Southwire Files (lien direct) |
The Maze Ransomware operators have released an additional 14GB of files that they claim were stolen from one of their victims for not paying a ransomware demand. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 15:27:00 |
Sodinikibi Ransomware Hits New York Airport Systems (lien direct) |
Albany International Airport staff announced that the New York airport's administrative servers were hit by Sodinokibi Ransomware following a cyberattack that took place over Christmas. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 15:08:37 |
Beware of Amazon Prime Support Scams in Google Search Ads (lien direct) |
A malicious ad campaign is underway in Google Search results that lead users to fake Amazon support sites and tech support scams. [...] |
Guideline
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 13:15:12 |
US Govt Warns of Attacks on Unpatched Pulse VPN Servers (lien direct) |
The US Cybersecurity and Infrastructure Security Agency (CISA) today alerted organizations to patch their Pulse Secure VPN servers as a defense against ongoing attacks trying to exploit a known remote code execution (RCE) vulnerability. [...] |
|
|
★★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 12:52:25 |
VVVVVV Source Code Released to Mark 10th Anniversary (lien direct) |
Distractionware has released the source code for their VVVVVV platform game to mark its 10th anniversary. You can now download the game engine to make your own modifications or get a better understanding of how the game works. [...] |
|
|
★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 11:49:08 |
Microsoft Enables Security Defaults in Azure Active Directory (lien direct) |
Microsoft introduced new secure default settings dubbed 'Security Defaults' to Azure Active Directory (Azure AD), now available for all license levels, including trial tenants. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 11:08:14 |
Google Chrome Will Support Windows 7 After End of Life (lien direct) |
Google has officially stated that they will continue to support the Chrome browser in Windows 7 to give businesses more time to migrate to Windows 10. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 06:00:01 |
Ako Ransomware: Another Day, Another Infection Attacking Businesses (lien direct) |
Like moths to a flame, new ransomware targeting businesses keep appearing every day as their enticed by the prospects of million-dollar ransom payments. An example of this is a new ransomware called Ako that is targeting the entire network rather than just individual workstations. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-10 03:33:33 |
Card-Stealing Scripts Infect Perricone\'s European Skin Care Sites (lien direct) |
Multiple European websites for the Perricone MD anti-aging skin-care brand have been compromised with scripts that steal customer payment card info when making a purchase. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-09 19:10:16 |
Google Removed Over 1.7K Joker Malware Infected Apps from Play Store (lien direct) |
Roughly 1,700 applications infected with the Joker Android malware (also known as Bread) have been detected and removed by Google's Play Protect from the Play Store since the company started tracking it in early 2017. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-09 17:21:54 |
KDE Plasma Welcomes Windows 7 Refugees to the Linux Side (lien direct) |
The KDE Community wants Windows 7 users to migrate to the Plasma desktop environment after Microsoft's 10-year-old OS will reach end of support next week and stops receiving security and bug fixes. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-09 13:41:05 |
Windows 10 Feature Updates Stop Including Drivers Needing Approval (lien direct) |
Microsoft says that drivers requiring approval will no longer be released during and around Windows 10 feature update rollouts and Patch Tuesdays (Monthly Quality and Security updates issued on the second Tuesday of each month). [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-09 12:19:32 |
Sodinokibi Ransomware Says Travelex Will Pay, One Way or Another (lien direct) |
The attackers behind the Sodinokibi Ransomware are applying pressure on Travelex to pay a multi-million dollar ransom by stating they will release or sell stolen data that allegedly contains customer's personal information. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-09 06:00:00 |
TrickBot Gang Created a Custom Post-Exploitation Framework (lien direct) |
Instead of relying on premade and well-known toolkits, the threat actors behind the TrickBot trojan decided to develop a private post-exploitation toolkit called PowerTrick to spread malware laterally throughout a network. [...] |
Malware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-08 15:50:14 |
Cryptojacking Drops by 78% in Southeast Asia After INTERPOL Action (lien direct) |
The number of routers infected with coin miners dropped by 78% in countries of the ASEAN (Association of Southeast Asian Nations) region following a five-month-long operation coordinated by the INTERPOL. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-08 14:03:33 |
Windows 10 Insider Build 19541 Warns If Apps Are Using Your Location (lien direct) |
Microsoft has released Windows 10 Insider Preview Build 19541 to Insiders in the Fast ring, which now allows you to list the architecture of processes listed in Task Manager and Windows will now notify you when an application is using location services. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-08 13:35:16 |
Mozilla Firefox 72.0.1 Patches Actively Exploited Zero-Day (lien direct) |
Mozilla released Firefox 72.0.1 and Firefox ESR 68.4.1 to patch a critical and actively exploited severity vulnerability that could potentially allow attackers to execute code or trigger crashes on machines running vulnerable Firefox versions. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-08 12:59:41 |
Attackers Are Scanning for Vulnerable Citrix Servers, Secure Now (lien direct) |
Security researchers have observed ongoing scans for Citrix Application Delivery Controller (NetScaler ADC) and Citrix Gateway (NetScaler Gateway) servers vulnerable to attacks exploiting CVE-2019-19781 during the last week. [...] |
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-08 05:00:00 |
TikTok Flaws Allowed Hackers to Delete Videos, Steal User Info (lien direct) |
Security researchers found several vulnerabilities within TikTok's infrastructure that made it possible for potential attackers to hijack accounts to manipulate users' videos and steal their personal information. [...] |
|
|
★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-08 03:30:00 |
SNAKE Ransomware Is the Next Threat Targeting Business Networks (lien direct) |
Since network administrators didn't already have enough on their plate, they now have to worry about a new ransomware called SNAKE that is targeting their networks and aiming to encrypt all of the devices connected to it [...] |
Ransomware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 16:58:58 |
Tails 4.2 Fixes Numerous Security Flaws, Improves Direct Upgrades (lien direct) |
The Tails Project released a new version of the security-focused Tails Linux distribution and advises users to upgrade as soon as possible to fix multiple security vulnerabilities impacting the previous Tails 4.1.1 version. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 15:18:00 |
Microsoft Releases January 2020 Office Updates With Crash Fixes (lien direct) |
Microsoft released the January 2020 non-security Microsoft Office updates that come with crash and memory leak fixes, as well as performance and stability improvements for Windows Installer (MSI) editions of Office 2016. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 14:00:00 |
Medical Info of Roughly 50K Exposed in Minnesota Hospital Breach (lien direct) |
The personal and medical information of 49,351 patients was exposed following a security incident involving two employees' email accounts as disclosed by Minnesota-based Alomere Health. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 13:31:41 |
Go-Based LiquorBot Adapts Cryptomining Payload to Infected Host (lien direct) |
A cryptomining botnet has been attacking unpatched routers since at least May 2019. It exploits a small set of critical vulnerabilities and targets multiple CPU architectures. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 12:50:56 |
Microsoft Phishing Scam Exploits Iran Cyberattack Scare (lien direct) |
An attacker is attempting to take advantage of the recent warnings about possible Iranian cyberattacks by using it as a theme for a phishing attack that tries to collect Microsoft login credentials. [...] |
|
|
★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 10:24:18 |
Firefox 72 Out With Fingerprinter Blocking, Hidden Notification Prompts (lien direct) |
Mozilla has officially released Firefox 72 for Windows, Mac, and Linux and with it comes hidden browser notification prompts and fingerprinter blocking enabled by default in Enhanced Tracking Protection. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 06:15:00 |
MageCart Attackers Steal Card Info from Focus Camera Shoppers (lien direct) |
The website of popular photography and imaging retailer Focus Camera got hacked late last year by MageCart attackers to inject malicious code that stole customer payment card details. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-07 03:30:00 |
MP Says Austria Unprepared After Cyberattack on Foreign Ministry (lien direct) |
The Austrian State Department' IT systems were under a 'serious attack' suspected to be carried out by a state-backed threat group according to a joint statement from the Foreign Ministry (BMEIA) and the Ministry of the Interior (BMI). [...] |
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-06 18:05:12 |
Fake Windows 10 Desktop Used in New Police Browser Lock Scam (lien direct) |
Scammers have taken an old browser scam and invigorated it using a clever and new tactic that takes advantage of your web browser's full-screen mode to show a fake Windows 10 desktop stating your computer is locked. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-06 16:43:42 |
InfoTrax Gets Slap on The Wrist After Being Breached 20+ Times (lien direct) |
The Federal Trade Commission (FTC) finalized a settlement with a Utah-based tech company that got hacked and had the personal info of over a million clients stolen following a series of more than 20 undetected network intrusions. [...] |
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-06 16:09:21 |
Nvidia CES Game Ready Driver Adds a Maximum Frame Rate Setting (lien direct) |
At CES 2020, Nvidia has released GeForce Game Ready Driver 441.87 and with it comes a few new features, including one that allows you to set a maximum frame rate that will be used by 3D games and applications. [...] |
|
|
★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-06 14:00:00 |
IT Executive Steals $6 Million, Busted by Word Doc Metadata (lien direct) |
A former corporate executive for integrated marketing solutions firm Rakuten Marketing swindled roughly $6 million between August 2015 and at least May 2019 using a shell company named Interactive Systems. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-06 13:48:55 |
Sodinokibi Ransomware Hits Travelex, Demands $3 Million (lien direct) |
It's been more than six days since a cyber attack took down the services of the international foreign currency exchange company Travelex and BleepingComputer was able to confirm that the company systems were infected with Sodinokibi ransomware. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-06 11:34:41 |
US Govt Says Iran\'s Cyberattacks Can Disrupt Critical Infrastructure (lien direct) |
The U.S. Department of Homeland Security (DHS) warned in a terrorism threat alert issued through the National Terrorism Advisory System (NTAS) that potential cyberattacks carried out by Iranian-backed actors against the U.S. have the potential to disrupt critical infrastructure. [...] |
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-05 12:01:30 |
How to Stop Microsoft From Testing New Features in Edge (lien direct) |
Edge will not be tied to Windows 10 releases and updates will be shipped regularly through its own channels. Microsoft also plans to use 'Experimentation and Configuration Service (ECS)' in Edge to request and receive different kinds of configurations, feature rollouts and experiments. [...] |
|
|
★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-04 13:05:56 |
BusKill Cable Starts a Self-Destruct Routine on Stolen Laptops (lien direct) |
A USB cable and some scripting can save sensitive data on your laptop from grab-and-go thieving situations when working in a public place. [...] |
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 20:44:23 |
Linux Gamers Banned in Battlefield V if Using Wine and DXVK (lien direct) |
Linux users who are running Battlefield V under Wine with DXVK are being permanently banned from Electronic Art's Battlefield V because the anti-cheat system is mistakenly detecting them as cheating. [...] |
|
|
★★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 18:59:06 |
The Week in Ransomware - January 3rd 2020 - Busy Holiday Season (lien direct) |
Normally ransomware activity slows down over the December break, but this year was an exception with a quite a few interesting, and sad, stories such as FBI alerts being issued, companies being shut down, and organizations being encrypted by a variety of ransomware, and stolen data being released. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 16:45:01 |
Clop Ransomware Now Kills Windows 10 Apps and 3rd Party Tools (lien direct) |
The Clop Ransomware continues to evolve with a new and integrated process killer that targets some interesting processes belonging to Windows 10 apps, text editors, programming IDEs and languages, and office applications. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 15:50:29 |
Microsoft Products Reaching End of Life in 2020 (lien direct) |
Several major Microsoft products will reach their end of support during 2020, with Office 2010, Visual Studio 2010, Windows 7, Windows Server 2008 (including 2008R2), and multiple Windows 10 versions including 1803 and 1903 being some of the most important ones. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 14:29:00 |
FBI Warns of Maze Ransomware Focusing on U.S. Companies (lien direct) |
Organizations in the private sector received an alert from the F.B.I. about operators of the Maze ransomware focusing on companies in the U.S. to encrypt information on their systems after stealing it first. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 13:28:34 |
U.S. Government Issues Warning About Possible Iranian Cyberattacks (lien direct) |
Christopher C. Krebs, Director of Cybersecurity and Infrastructure Security Agency issued a warning about a potential new wave of Iranian cyber-attacks targeting U.S. assets after Maj. Gen. Qassim Suleimani was killed by a U.S. airstrike at the Baghdad airport in Iraq. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-03 12:03:11 |
Colorado Town Wires Over $1 Million to BEC Scammers (lien direct) |
Colorado Town of Erie lost more than $1 million to a business email compromise scam (BEC) that ended with the town's employees sending the funds to a bank account controlled by scammers. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-02 16:32:43 |
Maze Ransomware Sued for Publishing Victim\'s Stolen Data (lien direct) |
The anonymous operators behind the Maze Ransomware are being sued by a victim for illegally accessing their network, stealing data, encrypting computers, and publishing the stolen data after a ransom was not paid. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2020-01-02 08:15:00 |
Popular U.S. Restaurant Owner Hit by Credit Card Stealing Malware (lien direct) |
Landry's, a U.S. restaurant chain and property owner has disclosed that they were infected with a point-of-sale (POS) malware that allowed attackers to steal customer's credit card information. [...] |
Malware
|
|
|