What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-09-26 16:39:22 | Microsoft Explains Why Signed PowerShell Cmdlets May Run Slow (lien direct) | Microsoft issued an advisory that signed PowerShell cmdlets may run slower then unsigned cmdlets if Windows is having network connectivity problems. [...] | |||
|
2019-09-26 14:45:49 | Microsoft Spots Nodersok Malware Campaign That Zombifies PCs (lien direct) | A new fileless malicious campaign, dubbed Nodersok by Microsoft Defender ATP Research Team researchers who discovered it, drops its own LOLBins to infect Windows computers with a Node.js-based malware that will turn the devices into proxies. [...] | Malware | ||
|
2019-09-26 12:39:33 | REvil (Sodinokibi) Ransomware Targets Chinese Users with DHL Spam (lien direct) | A new spam campaign is underway that is targeting Chinese recipients to trick them into installing the REvil (Sodinokibi) Ransomware. [...] | Ransomware Spam | ||
|
2019-09-26 11:25:30 | Cisco Fixes Critical IOx Flaw Allowing Root Access to Guest OS (lien direct) | Cisco has released security updates to address a critical vulnerability in the IOx application environment for Cisco IOS Software that could enable authenticated remote attackers to access the Guest Operating System (Guest OS) as the root user. [...] | Vulnerability | ||
|
2019-09-26 10:32:26 | Microsoft Enables Tracking Prevention by Default in New Edge Beta (lien direct) | Microsoft released the first update to the Microsoft Edge Beta channel that brings the web browser to the 78.0.276.8 build, enables the tracking prevention feature by default, and adds new sign-in and sync features. [...] | |||
|
2019-09-26 07:29:04 | Outlook on the Web to Block File Extensions for PowerShell, Python, and More (lien direct) | Microsoft will soon be blocking an additional 38 file extension from being downloaded as attachments in Outlook on the Web in order to protect users from malicious files. These additional extensions includes files used by Java, PowerShell, Python, and various vulnerabilities. [...] | |||
|
2019-09-26 05:15:33 | Vodafone\'s Mobile App Briefly Exposed Customer Information (lien direct) | For a brief period on Wednesday morning, Vodafone customers in New Zealand using the mobile carrier's app could see details for other customers. [...] | |||
|
2019-09-26 03:00:00 | Botnet Uses Recent vBulletin Exploit to Block Other Hackers (lien direct) | A botnet has been detected utilizing the recently disclosed vBulletin exploit to secure vulnerable servers so that they cannot be used by other attackers. This allows the botnet to grow their army of compromised servers without fear that other attackers will utilize the same server. [...] | |||
|
2019-09-25 18:36:46 | Microsoft to Extend Office 365 ATP Safe Links to Office Online (lien direct) | Microsoft is currently working on extending the Office 365 Advanced Threat Protection (ATP) Safe Links protection to Office Online apps, with the new feature to be released in October. [...] | Threat | ||
|
2019-09-25 16:00:40 | Buggy Google Chrome Update Behind Recent Unbootable Macs (lien direct) | A wave of reported Macs being no longer able to boot was caused by a recent Google Chrome update that was corrupting a necessary operating system folder. Once the update was installed, affected users found they were no longer able to boot into macOS. [...] | |||
|
2019-09-25 15:05:01 | Ransomware Decryptors Released for Yatron, WannaCryFake, & FortuneCrypt (lien direct) | Security vendors released decryptors for three ransomware infections today that allow victims to recover their files for free. These decryptors are for the WannaCryFake, Yatron, and FortuneCrypt Ransomware infections. [...] | Ransomware | Wannacry | |
|
2019-09-25 14:22:34 | Microsoft Phishing Attack Uses Google Redirects to Evade Detection (lien direct) | A new phishing campaign uses Google search query redirects to send potential victims to a phishing landing page designed to collect Microsoft Office 365 credentials via encoded URLs. [...] | |||
|
2019-09-25 12:26:07 | Hackers Replace Windows Narrator to Get SYSTEM Level Access (lien direct) | Chinese hackers are replacing the legitimate Narrator app on targeted Windows systems with a trojanized version that gives them remote access with privileges of the most powerful account on the operating system. [...] | |||
|
2019-09-25 11:49:48 | CloudFlare\'s WARP Secures iOS and Android Web Traffic for Free (lien direct) | Cloudflare's WARP mobile app for iOS or Android designed to secure all the Internet traffic on one's mobile devices is now available for everyone. [...] | |||
|
2019-09-25 10:37:32 | vBulletin Zero-Day Exploited for Years, Gets Unofficial Patch (lien direct) | A zero-day exploit for the vBulletin forum platform was publicly disclosed and quickly used to attack affected versions of the forum software. It turns out, though, that this exploit has been known, utilized, and sold by researchers and attackers for years. [...] | |||
|
2019-09-25 06:01:00 | Adobe Fixes Critical Security Vulnerabilities in Coldfusion (lien direct) | Adobe released security updates for three vulnerabilities in ColdFusion. Two of these vulnerabilities are rated as Critical as they allow code execution and can bypass access controls. The other is an labeled critical as it allows information disclosure. [...] | |||
|
2019-09-25 03:34:35 | Hackers Exploit Unpatched Bug in Rich Reviews WordPress Plugin (lien direct) | Site administrators still using the Rich Reviews plugin for WordPress are easy targets as hackers are currently exploiting an unpatched vulnerability for malvertising campaigns. [...] | Vulnerability | ||
|
2019-09-24 22:51:44 | (Déjà vu) Windows 10 Insider Build 18990 Released With UWP App Autostart (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18990 (20H1) to Insiders in the Fast ring, which allows you to enable UWP apps to restart on sign-in and WSL improvements. [...] | |||
|
2019-09-24 22:51:44 | Windows 10 Build 18990 Insider Released With UWP App Autostart (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18990 (20H1) to Insiders in the Fast ring, which allows you to enable UWP apps to restart on sign-in and WSL improvements. [...] | |||
|
2019-09-24 17:17:21 | Apple to Fix iOS Bug Granting Full Access to 3rd Party Keyboards (lien direct) | After releasing iOS 13.1 to fix a long list of bugs left unpatched in iOS 13, Apple says in a support document published today that an issue is impacting third-party iOS 13 and iPadOS keyboard extensions. [...] | |||
|
2019-09-24 16:25:18 | Windows 10 to Boost Performance via Favored CPU Core Optimization (lien direct) | Windows 10 19H2 will include optimizations to how instructions are processed by the CPU in order to increase the performance and reliability of the operating system and its applications. [...] | |||
|
2019-09-24 15:52:21 | Microsoft Rolls Out Windows Terminal 1909 With Long List of Fixes (lien direct) | Microsoft is rolling out the September 2019 release (1909) of its multi-tabbed Windows Terminal console app with a new settings schema, a new font, stylus support, and Windows 20H1 Console Windows Host (conhost) bug fixes. [...] | |||
|
2019-09-24 14:55:15 | Shared Code Links Sodinokibi to GandCrab, Minus the Fun & Games (lien direct) | Hints of a connection between the defunct GandCrab and the Sodinokibi ransomware get stronger as researchers find code-level similarities and artifacts suggesting continued operations. [...] | Ransomware | ||
|
2019-09-24 13:52:10 | Windows 10 1809 Cumulative Update KB4516077 Released With Fixes (lien direct) | Microsoft has released a new cumulative update for Windows 10 version 1809 that fixes a huge amount of bugs and issues. Some of the highlighted issues that are fixes with this release are high CPU when switching apps, Calculator shutting down, incorrect file and folder properties in File Explorer, and Narrator not opening properly. [...] | |||
|
2019-09-24 13:30:00 | Instagram Phishing Attack Baits With Copyright Infringement Note (lien direct) | Instagram users are being targeted by a new phishing campaign that baits them into giving away their credentials using fake copyright infringement notices which implants a feeling of urgency designed to lower the users' guard. [...] | |||
|
2019-09-24 12:58:50 | Fake Employment Site Created to Target Veterans With Malware (lien direct) | A fake web site pretending to be an organization that offers job opportunities for U.S. veterans is distributing malware that let's the attackers gain full control over a victim's computer. [...] | Malware | ||
|
2019-09-24 11:23:41 | State-Backed Attackers Target US Entities with LookBack Malware (lien direct) | A spear-phishing campaign spanning more than five months has been targeting roughly 17 U.S. utility providers between April 5 and August 29 according to research from Proofpoint's Threat Insight Team. [...] | Malware Threat | ||
|
2019-09-24 10:34:38 | Gmail for Android and iOS Gets a Dark Theme (lien direct) | Google announced today that they are rolling out a Dark theme to Gmail for Android and iOS users. This feature is currently rolling out to users of both the Android and iOS versions of Gmail. [...] | |||
|
2019-09-24 08:13:07 | Avid Users Are Suddenly Finding That Their Macs Won\'t Boot (lien direct) | Avid video editors have started reported that when they shutdown their Macs, they will no longer boot up afterwards. It is not known exactly what is causing this issue, but it appears to be affecting older versions of Mac OS X who have the Avid Media Creator software installed. [...] | |||
|
2019-09-24 06:51:11 | Zebrocy Infects Targets with New Golang-Based Backdoor via Dropbox (lien direct) | A recently observed campaign from the Zebrocy APT operators relied on a revamped backdoor to maintain access to victim hosts and extract profiling information. [...] | |||
|
2019-09-24 03:30:00 | Emotet Tries to Infect You By Claiming It\'s Snowden\'s Book (lien direct) | Emotet has started a new spam campaign that pretends to be a scanned copy of Edward Snowden's new book. Unsuspecting users who open the attachment and enable its content will find that they have become infected with Emotet, most likely Trickbot, and possibly other malware. [...] | Spam | ||
|
2019-09-23 17:28:25 | Beware of Google Alert Links Leading to Malware and Scams (lien direct) | Google Alerts is s useful service that allows you to receive emails or an updated RSS feed when new pages appear in the Google search index that are related to specified keywords you are following. Unfortunately, whenever there is a good thing, people try to take advantage of them to push users towards scams and malware [...] | Malware | ||
|
2019-09-23 16:47:39 | Finnish Govt. Releases Guide on Securing Microsoft Office 365 (lien direct) | The National Cyber Security Centre Finland (NCSC-FI) which acts as Finland's National Communications Security Authority published today a detailed guide on how to secure Microsoft Office 365 against data breaches and credential phishing. [...] | |||
|
2019-09-23 14:15:11 | Microsoft Issues Windows Security Update for 0Day Vulnerability (lien direct) | Microsoft released two out of band security updates today for remote code execution (RCE) and denial of service (DoS) security vulnerabilities impacting Internet Explorer and Windows Defender, respectively. [...] | Vulnerability | ||
|
2019-09-23 12:28:17 | Windows 10 Task Manager Lets You Copy Performance Data as Text (lien direct) | The Windows 10 Task Manager Performance tab allows you to right-click on the various categories and copy the information into formatted text. This text can then be paste into online forums where you are receiving help, share it with others, or more easily copy down the hardware installed in your computer. [...] | |||
|
2019-09-23 11:52:18 | Microsoft to Force Modern Auth in Exchange Online to Enhance Security (lien direct) | Microsoft announced that Basic Authentication will be turned off in Exchange Online for Exchange ActiveSync (EAS), POP, IMAP, and Remote PowerShell starting October 13, 2020. [...] | |||
|
2019-09-23 09:59:46 | Malicious Android Apps Evade Google Play Protect via Remote Commands (lien direct) | More than two dozen malicious Android applications with over 2.1 million installs in total were observed by security researchers while displaying aggressive full-screen ads after downloading configuration files. [...] | |||
|
2019-09-23 04:30:04 | Microsoft Edge\'s Collection Feature Helps You Stay Organized (lien direct) | Microsoft recently updated Edge for Windows and MacOS with a new feature called 'Collections' to help users collect and compare shopping items, collect and combine information from platforms like Wikipedia, and put together your event or research information in a dedicated panel for later reference. [...] | |||
|
2019-09-21 15:15:24 | Microsoft Edge to Let You Block Potentially Unwanted Programs (lien direct) | Microsoft Edge is testing a new feature in their Canary build that allows you to block potentially unwanted programs (PUPs) from being downloaded by the browser. [...] | |||
|
2019-09-21 13:01:48 | Jira Server and Service Desk Fix Critical Security Bugs (lien direct) | Atlassian released updates for Jira Service Desk and Jira Service Desk Data Center to fix a critical-severity security bug that can be exploited by anyone with access to a vulnerable customer portal. [...] | |||
|
2019-09-21 09:45:04 | Microsoft Marks Two Windows 10 1903 Issues as Resolved (lien direct) | Microsoft has marked a Windows 10 Chinese IME issue and a Windows Desktop Search or Start Menu issue as resolved in the Windows 10 Health Dashboard. [...] | |||
|
2019-09-20 18:41:58 | The Week in Ransomware - September 20th 2019 - Fairly Quiet (lien direct) | This has been a fairly quiet week with no real big news other than further updates from Nemty, the introduction of TFlower, and another Ordinypt campaign targeting Germany. [...] | Ransomware | ||
|
2019-09-20 15:03:00 | Meet Stop Ransomware: The Most Active Ransomware Nobody Talks About (lien direct) | Have you ever heard of the STOP Ransomware? Probably not, as few write about it, most researchers don't cover it, and for the most part it targets consumers through cracked software, adware bundles, and shady sites. [...] | Ransomware | ||
|
2019-09-20 14:03:47 | Windows 7 Voting Systems to Get Free Security Updates Through 2020 Elections (lien direct) | Microsoft announced today that they will be providing free extended security updates for Windows 7 machines that are part of a federally certified voting system. [...] | |||
|
2019-09-20 13:30:24 | Windows 7 and Server 2008 Get 0patch Security Fixes After EoS (lien direct) | Microsoft ending support for Windows 7 and Server 2008 early next year will also stop delivery of security patches through the normal channel. But users have an alternative to get security fixes on a regular basis in the form of micropatches. [...] | |||
|
2019-09-20 10:17:50 | Twitter Removes State-backed Actors Conducting Information Campaigns (lien direct) | Twitter has removed another batch of state-sponsored actors performing information campaigns on Twitter. The detected operations announced today involved Qatar, Iran, Yemen, Ecuador, Saudi Arabia, Spain, China, and Hong Kong. [...] | |||
|
2019-09-20 09:50:00 | Forcepoint Fixes Privilege Escalation Bug in Windows VPN Client (lien direct) | A vulnerability affecting all versions of Forcepoint VPN Client for Windows, save the latest release, can be used to achieve persistence and evade detection. [...] | Vulnerability | ||
|
2019-09-20 08:49:56 | Windows 10 is Getting a New Optional Update Experience (lien direct) | Microsoft is changing the windows update experience in Windows 10 so that "optional" updates are shown in a dedicated screen that will allow you to pick which update you would like to install [...] | |||
|
2019-09-20 03:34:35 | Selfie Android Apps with 1.5M+ Installs Push Ads, Can Record Audio (lien direct) | A couple of Android apps found in Google Play included functionality that stealthy recording audio without user consent. The apps posed as selfie camera filters and had been installed over 1.5 million times. [...] | |||
|
2019-09-19 17:41:37 | Windows 10 Insider Build 18985 Released With Improved Bluetooth Pairing (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18985 (20H1) to Insiders in the Fast ring, which includes a new optional update experience, a Snip & Sketch update, and a new Bluetooth pairing experience. [...] |
To see everything:
Our RSS (filtrered)
