What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-10-03 06:14:35 | Windows Activator Bundles Banker with C2 in YouTube Description (lien direct) | In their effort to hide the command and control (C2) server addresses, operators of a banking trojan placed them in fake websites and in descriptions for YouTube videos. [...] | |||
|
2019-10-03 04:15:38 | Police Seize Bot Farm Behind Potentially Fatal Scam Messages (lien direct) | The cyber division of the Ukrainian police took to pieces an operation that made money by registering accounts used to send spam through various services, including email and social networks. [...] | Spam | ||
|
2019-10-03 02:05:31 | FTCode PowerShell Ransomware Resurfaces in Spam Campaign (lien direct) | An old PowerShell ransomware has resurfaced with a vengeance in a spam distribution aimed at Italian recipients. This ransomware is called FTCode and is completely PowerShell based, which means it can encrypt the computer without downloading any additional components. [...] | Ransomware Spam | ||
|
2019-10-02 17:39:27 | FBI Warns U.S. Organizations About High Impact Ransomware (lien direct) | The U.S. Federal Bureau of Investigation (FBI) Internet Crime Complaint Center (IC3) issued a public service announcement today regarding the increasing number of high-impact ransomware attacks against public and private U.S. organizations. [...] | Ransomware | ||
|
2019-10-02 15:45:00 | (Déjà vu) Microsoft 365 To Get Tenant-Wide Feature Preventing Info Exposure (lien direct) | Microsoft is working on including a new tenant-wide idle session timeout feature for Microsoft 365 web apps designed to prevent information exposure that might stem from unauthorized access to systems left unattended. [...] | |||
|
2019-10-02 15:45:00 | Microsoft 365 To Get Tenant-Wide Idle Session Timeout Feature (lien direct) | Microsoft is working on including a new tenant-wide idle session timeout feature for Microsoft 365 web apps to prevent information exposure that might stem from unauthorized access to systems left unattended. [...] | |||
|
2019-10-02 15:10:05 | Microsoft Launches New Dual-Screen Surface Devices (lien direct) | At today's Surface event in New York City, Microsoft unveiled the Surface Laptop 3, Surface Pro 7, Surface Pro X and two dual-screen devices. [...] | |||
|
2019-10-02 13:43:40 | Windows 10X: Microsoft\'s New Windows OS for Dual-Screen PCs (lien direct) | At the Surface event in New York City, Microsoft announced Windows 10X, a new version of Windows 10 designed for dual-screen folding-screen devices. [...] | |||
|
2019-10-02 12:59:59 | Zendesk Security Breach May Impact Orgs Like Uber, Slack, and FCC (lien direct) | Customer service software company Zendesk is sending users notifications regarding a security incident that might have impacted roughly 10,000 Zendesk Support and Chat accounts activated prior to November 1, 2016. [...] | Uber | ||
|
2019-10-02 12:24:15 | Sodinokibi Ransomware Builds An All-Star Team of Affiliates (lien direct) | The Sodinokibi Ransomware (REvil) has been making news lately as they target the enterprise, MSPs, and government entities through their hand-picked team of all-star affiliates. These affiliates appear to have had a prior history with the GandCrab RaaS and use similar distribution methods. [...] | Ransomware | ||
|
2019-10-02 10:02:13 | Threat Group Uses Bit.ly, BlogSpot, Pastebin to Deliver Trojans, RATs (lien direct) | A malicious campaign targeting corporations from all over the world was observed while using a combination of pages hosted on Bit.ly, BlogSpot, and Pastebin to deliver Azorult and RevengeRAT malware. [...] | Threat | ||
|
2019-10-02 08:35:27 | American Express Customer Info Accessed by Employee for Possible Fraud (lien direct) | An American Express employee is being investigated for accessing card holder information and potentially using it to open accounts at other financial institutions. [...] | |||
|
2019-10-02 07:48:02 | New Silent Starling Gang Targets 500+ Vendors in BEC Scam Twist (lien direct) | In a variation of the classic business email compromise (BEC) scam, a cyber gang managed to compromise email accounts of more than 700 employees from over 500 companies in 14 countries. [...] | |||
|
2019-10-02 06:29:00 | Google Expands Privacy Controls Across Youtube, Maps, and Assistant (lien direct) | Google has announced new privacy and security features that allow you to use incognito mode in more properties, monitor your saved passwords for compromises, and manage how your data is used on YouTube. [...] | |||
|
2019-10-02 06:00:00 | Google\'s Password Manager Now Warns About Compromised Accounts (lien direct) | Google's Password Checkup feature is now integrated directly into your Google Account and will warn you if your saved passwords have security issues such as weak strength or have been compromised through data breaches. [...] | |||
|
2019-10-02 05:43:32 | Of All State-Backed Hackers, the Chinese Hit Most Industries (lien direct) | Hackers working for the Chinese government deployed attacks against the largest number of industry verticals in the first half of the year. [...] | |||
|
2019-10-02 02:00:15 | Fake Browser Updates Infect Enterprises with Ransomware, Bankers (lien direct) | Attackers are utilizing hacked web sites that promote fake browser updates to infect targets with banking trojans. In some cases, post exploitation toolkits are later executed to encrypt the compromised network with ransomware. [...] | |||
|
2019-10-01 17:54:06 | Microsoft Edge Dev Channel Updated With Media Autoplay Blocking (lien direct) | A new update is now available for Microsoft Edge Insiders within the Dev channel and the main focus of today's update is the introduction of dark mode for the new tab page (NTP) and media autoplay blocking settings. There are a host of stability improvements, fixes and enhancement as well. [...] | |||
|
2019-10-01 16:15:11 | WhatsApp to Soon Let you Send Self-Destructing Messages (lien direct) | WhatsApp is working on a new feature that will allow users to send self-destructing messages. This feature is currently in development and has been spotted in the WhatsApp beta for Android 2.19.275. [...] | |||
|
2019-10-01 15:58:01 | (Déjà vu) Microsoft Releases October 2019 Office Updates With Fixes, Improvements (lien direct) | Microsoft released the October 2019 non-security Microsoft Office updates that fix issues and add improvements to Windows Installer (MSI) editions of Office 2013 2010, Office 2013, and Office 2016. [...] | |||
|
2019-10-01 15:10:00 | Microsoft To Offer Windows 7 Extended Security Updates to SMBs (lien direct) | Microsoft announced that Windows 7 Extended Security Updates (ESU) will also be made available for small and midsize businesses (SMBs) to allow them to stay secure during the Windows 10 migration process. [...] | |||
|
2019-10-01 14:38:06 | Singapore\'s GovTech Launches Vulnerability Disclosure Program (lien direct) | Singapore's Government Technology Agency (GovTech) has launched a new vulnerability disclosure program on HackerOne so researchers can disclose vulnerabilities in government sites. [...] | Vulnerability | ||
|
2019-10-01 13:08:03 | Fake Office Activation Wizard Docs Used to Spread Emotet Trojan (lien direct) | The Emotet botnet has switched to a new template used by malicious attachments that pretend to be a Microsoft Office Activation Wizard. [...] | |||
|
2019-10-01 12:39:11 | U.S. and Australian Hospitals Targeted by New Ransomware Attacks (lien direct) | Several hospitals and health service providers from the U.S. and Australia were forced to completely close down or shut down some of their systems after being hit by ransomware attacks that affected and disrupted their IT systems. [...] | Ransomware | ||
|
2019-10-01 12:01:50 | Highway Advertisement Billboard Hacked to Play Porn Video (lien direct) | The police are looking for two individuals suspected of playing an adult video on a billboard on Interstate 75 near Michigan highway 59. [...] | |||
|
2019-10-01 09:31:20 | Windows 10 1903 KB4522016 Cumulative Update Breaks Printing (lien direct) | Microsoft acknowledged a new issue leading to intermittent issues when printing or completely breaking the printing capabilities of Windows devices after installing cumulative updates issued during late September. [...] | Guideline | ||
|
2019-10-01 09:00:00 | New Adwind RAT Variant Used Against the US Petroleum Sector (lien direct) | US petroleum industry entities are targeted by attackers with a new Adwind Remote Access Trojan (RAT) variant featuring multi-layer obfuscation and delivered via a malspam campaign designed to infect targets through malicious attachments or URL redirections to payloads. [...] | |||
|
2019-10-01 02:22:22 | Comodo Forums Breached, Data of Over 170,000 Users Up for Grabs (lien direct) | Account data belonging to more than half of all Comodo Forums users has been stolen and is now traded online. The breach was possible by exploiting a vulnerability in the software that powers the forum. [...] | Vulnerability | ||
|
2019-09-30 18:16:27 | Under-Detected ODT Files Deliver Common Remote Access Trojans (lien direct) | Security researchers noticed multiple cybercriminal operations using OpenDocument Text (ODT) files to distribute malware that is typically blocked by antivirus engines. The campaigns target English and Arabic-speaking users. [...] | Malware | ||
|
2019-09-30 17:25:23 | Free Ouroboros Ransomware (Zeropadypt NextGen) Decryption Available (lien direct) | Victims of the Ouroboros Ransomware, otherwise known as Zeropadypt NextGen, can get their files decrypted for free with the help of a security researcher and a decryptor that has been made for different variants. [...] | Ransomware | ||
|
2019-09-30 14:20:48 | Microsoft Adds \'Disable Legacy TLS\' Feature to Windows Server 2019 (lien direct) | Microsoft announced the addition of a new Windows Server 2019 feature that will enable admins to enforce Transport Layer Security (TLS) versions by blocking legacy ones via certificate binding. [...] | |||
|
2019-09-30 12:45:55 | New Exim Vulnerability Exposes Servers to DoS Attacks, RCE Risks (lien direct) | A new critical vulnerability in the Exim mail transfer agent (MTA) software was patched to prevent denial of service (DoS) or possibly remote code execution attacks. [...] | Vulnerability | ||
|
2019-09-30 10:21:34 | eGobbler Malvertiser Uses WebKit Exploit to Infect Over 1 Billion Ads (lien direct) | Roughly 1.16 billion ad impressions have been hijacked in a malvertising campaign operated by a threat group dubbed eGobbler to redirect potential victims to malicious payloads, between August 1 and September 23. [...] | Threat | ||
|
2019-09-30 03:23:14 | Bulletproof Hosting Service in Former NATO Bunker Goes Down (lien direct) | Authorities in Germany this week shut down the services of a bulletproof hosting provider set up in a former NATO bunker that went five floors underground. [...] | |||
|
2019-09-29 14:01:09 | Windows 10 1903 on ARM Gets a Virtualization-based Security Feature (lien direct) | Windows 10 version 1903 on ARM has gotten an additional virtualization-based security feature that creates secured regions of memory that are isolated from the operating system. These secured and isolated regions of memory can then be used by security solutions so that they are better protected from vulnerabilities in the operating s [...] | |||
|
2019-09-29 11:11:45 | Cloudflare Now Blocks the vBulletin RCE CVE-2019-16759 Exploit (lien direct) | This week a zero-day vBulletin remote code execution vulnerability and exploit was publicly disclosed and is being used by bad actors to attack vBulletin forums. Cloudflare has now created a special rule that will prevent this exploit from working on vBulletin sites behind Cloudflare's service. [...] | Vulnerability | ||
|
2019-09-28 17:10:17 | Windows 10 1909 Coming Soon, Here Are the New Features (lien direct) | The Windows 10 1909 Feature Update is around the corner and is expected to be released sometime next week. Unlike previous Feature Updates, Windows 10 1909, codenamed 19H2, is more like a larger-than-normal cumulative update or service pack, but does contain some new features that we describe below. [...] | |||
|
2019-09-27 19:08:00 | Cyber-Attacks Hit Defense Contractors in Europe and North America (lien direct) | Defense contractors Rheinmetall AG and Defence Construction Canada (DCC) were hit this month by cyber-attacks that impacted and disrupted their information technology systems. [...] | |||
|
2019-09-27 17:47:11 | The Week in Ransomware - September 27th 2019 - Quiet Before the Storm? (lien direct) | It is another week of small variants and minor ransomware being released, with no major ransomware attacks being publicized or new large scale ransomware attacks. [...] | Ransomware | ||
|
2019-09-27 17:23:11 | US Senate Passes Bill in Response to Rampant Ransomware, CyberAttacks (lien direct) | The U.S. Senate passed the 'DHS Cyber Hunt and Incident Response Teams Act' (S.315) to authorize the Department of Homeland Security (DHS) to maintain cyber hunt and incident response teams to help private and public entities defend against cyber-attacks. [...] | |||
|
2019-09-27 15:27:14 | New Masad Stealer Malware Exfiltrates Crypto Wallets via Telegram (lien direct) | A new and actively distributed malware strain dubbed Masad Stealer steals files, browser information, and cryptocurrency wallet data from infected computers that get sent back to its masters using Telegram as a communication channel. [...] | Malware | ||
|
2019-09-27 13:21:44 | Microsoft Wants Your Feedback on the Edge Browser for Linux (lien direct) | The Microsoft Edge Team is looking for Linux developers to provide feedback on how they use web browsers in their development environment. This feedback will then be used to flesh out the requirements for Microsoft Edge on Linux. [...] | |||
|
2019-09-27 12:50:42 | Office 365 to Get Automated Incident Response for Hacked Accounts (lien direct) | Microsoft is currently working on adding a new Automated Incident Response playbook to Office 365 Advanced Threat Protection (ATP) to allow Security Operations (SecOps) teams to automatically investigate and remediate hacked accounts. [...] | Threat | ||
|
2019-09-27 11:47:30 | Windows 10 Version 1903 Now in Broad Deployment, Available to Everyone (lien direct) | Microsoft has announced that Windows 10 version 1903 has now been added to the broad deployment channel and will be available to everyone via Windows Update. [...] | |||
|
2019-09-27 11:14:13 | Fake Apps Sneak Gambling Into iOS and Android App Stores (lien direct) | Gambling apps double-crossed the review systems in Google Play and the App Store by posing as a policy-abiding app. After bypassing the verification, the infringing functionality became available to users. [...] | |||
|
2019-09-27 06:05:31 | Adobe and Google Open Redirects Abused by Phishing Campaigns (lien direct) | Google and Adobe open redirects are being used by phishing campaigns in order to add legitimacy to the URLs used in the spam emails. [...] | Spam | ||
|
2019-09-27 03:30:11 | Microsoft Removes CCleaner Ban From Their Community Forums (lien direct) | Microsoft has decided to roll back their decision to add CCleaner to a blacklist that would prevent the software's official site, www.ccleaner.com, from be posted in the Microsoft Community Forums. [...] | CCleaner | ||
|
2019-09-26 18:15:00 | New WhiteShadow Downloader Uses MSSQL Servers for Malware Delivery (lien direct) | A new malware downloader delivered via multiple campaigns uses detection evasion techniques and Microsoft SQL queries to drop malicious payloads onto compromised machines. [...] | Malware | ||
|
2019-09-26 17:48:00 | Windows 10 1903 Cumulative Update KB4517211 Fixes Game Audio Issues (lien direct) | Microsoft has released the KB4517211 cumulative update for Windows 10 1903 (May 2019 Update) that introduces a variety of quality improvements and bug fixes. [...] | |||
|
2019-09-26 17:07:12 | DoorDash Data Breach Exposes Info of Roughly 5 Million Users (lien direct) | DoorDash has announced a data breach where an unauthorized user was able to gain access to the personal information of 4.9 million consumers, Dashers, and merchants. [...] | Data Breach |
To see everything:
Our RSS (filtrered)
