Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-05-28 08:08:16 |
Microsoft: SolarWinds hackers target govt agencies from 24 countries (lien direct) |
The Microsoft Threat Intelligence Center (MSTIC) has discovered that the Russian-based SolarWinds hackers are behind an ongoing phishing campaign targeting government agencies worldwide. [...] |
Threat
|
|
|
|
2021-05-28 00:05:55 |
FBI to share compromised passwords with Have I Been Pwned (lien direct) |
The FBI will soon begin to share compromised passwords with Have I Been Pwned's 'Password Pwned' service that were discovered during law enforcement investigations. [...] |
|
|
|
|
2021-05-27 15:14:26 |
Google Chrome now 23% faster after JavaScript engine improvements (lien direct) |
Google says the latest Google Chrome release comes with a significant performance boost due to newly added improvements to the open-source V8 JavaScript and WebAssembly engine. [...] |
|
|
|
|
2021-05-27 14:08:26 |
Canada Post hit by data breach after supplier ransomware attack (lien direct) |
Canada Post has informed 44 of its large commercial customers that a ransomware attack on a third-party service provider exposed shipping information for their customers. [...] |
Ransomware
Data Breach
|
|
|
|
2021-05-27 14:00:05 |
FBI: APT hackers breached US local govt by exploiting Fortinet bugs (lien direct) |
The Federal Bureau of Investigation (FBI) says the webserver of a US municipal government was breached by state-sponsored attackers after hacking a Fortinet appliance. [...] |
|
|
|
|
2021-05-27 13:37:01 |
(Déjà vu) New BazaFlix attack pushes BazarLoader malware via fake movie site (lien direct) |
Security researchers found a new BazarCall email phishing campaign that manages to bypass automated threat detection systems to deliver the BazarLoader malware used by the TrickBot gang. [...] |
Malware
Threat
|
|
|
|
2021-05-27 13:37:01 |
New BazaFlix phishing delivers BazarLoader malware via call center (lien direct) |
Security researchers found a new BazarCall email phishing campaign that manages to bypass automated threat detection systems to deliver the BazarLoader malware used by the TrickBot gang. [...] |
Malware
Threat
|
|
|
|
2021-05-27 11:22:24 |
Klarna mobile app bug let users log into other customers\' accounts (lien direct) |
Klarna Bank suffered a severe technical issue this morning that allowed mobile app users to log into other customers' accounts and see their stored information. [...] |
|
|
|
|
2021-05-27 09:48:37 |
US announces new security directive after critical pipeline hack (lien direct) |
The US Department of Homeland Security (DHS) has announced new pipeline cybersecurity requirements after the largest fuel pipeline in the United States was forced to shut down operations in early May following a ransomware attack. [...] |
Ransomware
Hack
|
|
|
|
2021-05-27 09:15:51 |
HPE fixes critical zero-day vulnerability disclosed in December (lien direct) |
Hewlett Packard Enterprise (HPE) has released a security update to address a zero-day remote code execution vulnerability disclosed last year, in December. [...] |
Vulnerability
|
|
|
|
2021-05-27 03:21:17 |
Japanese government agencies suffer data breaches after Fujitsu hack (lien direct) |
Offices of multiple Japanese agencies were breached via Fujitsu's "ProjectWEB" information sharing tool. Fujitsu states that attackers gained unauthorized access to projects that used ProjectWEB, and stole some customer data. [...] |
Hack
|
|
|
|
2021-05-26 19:57:36 |
Microsoft reveals the redesigned Windows 10 Task Manager icon (lien direct) |
Microsoft revealed today the redesigned icon for the Windows 10 Task Manager program as part of a user interface refresh coming in the upcoming Sun Valley feature update. [...] |
|
|
|
|
2021-05-26 18:23:55 |
Windows Terminal can now be the default Windows 10 console (lien direct) |
Windows 10 will soon let you configure Windows Terminal as the default terminal application to launch console and PowerShell programs. [...] |
|
|
|
|
2021-05-26 17:45:15 |
Office 365 bug: Exchange Online, Outlook emails sent to junk folder (lien direct) |
Microsoft is investigating an Office 365 issue causing Outlook and Exchange Online emails to skip recipients' inboxes and being sent their junk folders instead. [...] |
|
|
|
|
2021-05-26 15:10:15 |
Microsoft releases first Windows 10 package manager stable version (lien direct) |
Microsoft has released the first stable version of the native Winget Windows 10 package manager that helps you manage applications directly from the command line. [...] |
|
|
|
|
2021-05-26 13:35:14 |
Google Chrome now lets you run more commands via the address bar (lien direct) |
Google has added a new batch of Chrome Actions for early testing in the latest Google Chrome web browser releases before the feature's worldwide rollout later this year. [...] |
|
|
|
|
2021-05-26 10:53:06 |
Microsoft fixes Windows 10 \'News and Interests\' annoyances (lien direct) |
Microsoft has addressed some of the annoyances reported by users of the newly released Windows 10 'News and Interests' feature in the latest preview update released for Windows 10 2004, 20H2, and 21H1. [...] |
|
|
|
|
2021-05-25 18:32:46 |
Google Chrome 91 released with new features, security improvements (lien direct) |
Google has released Chrome 91 today, May 25th, 2021, to the Stable desktop channel, and it includes security improvements, the ability to copy and paste files into web pages, and new developer features. [...] |
|
|
|
|
2021-05-25 17:15:48 |
(Déjà vu) Windows 10 KB5003214 Cumulative Update Preview Released (lien direct) |
Microsoft has released the optional KB5003214 Preview cumulative update for Windows 10 2004, Windows 10 20H2, and Windows 10 21H1. [...] |
|
|
|
|
2021-05-25 16:17:00 |
Microsoft fixes new Windows 10 bug corrupting FLAC music files (lien direct) |
Microsoft has fixed a known Windows 10 issue that would lead to FLAC encoded music files becoming corrupted when changing their title, artist, or other metadata in File Explorer. [...] |
Guideline
|
|
|
|
2021-05-25 16:02:39 |
How to password-protect your Google activity history (lien direct) |
Google now allows you to password-protect your Google account's My Activity page so that others sharing your device can't snoop on your online activity. [...] |
|
|
|
|
2021-05-25 14:37:16 |
Domino\'s India discloses data breach after hackers sell data online (lien direct) |
Domino's India has disclosed a data breach after a threat actor hacked their systems and sold their stolen data on a hacking forum. [...] |
Data Breach
Threat
|
|
|
|
2021-05-25 14:21:39 |
VMware warns of critical bug affecting all vCenter Server installs (lien direct) |
VMware urges customers to patch a critical remote code execution (RCE) vulnerability in the Virtual SAN Health Check plug-in and impacting all vCenter Server deployments. [...] |
Vulnerability
|
|
|
|
2021-05-25 13:49:26 |
Microsoft: Windows 10 Insiders can now can run Linux GUI apps (lien direct) |
Microsoft announced today at the Build 2021 developer conference that support for running Linux GUI apps is now available via Windows Subsystem for Linux (WSL). [...] |
|
|
|
|
2021-05-25 11:00:29 |
Iranian hacking group targets Israel with wiper disguised as ransomware (lien direct) |
An Iranian hacking group has been observed camouflaging destructive attacks against Israeli targets as ransomware attacks while maintaining access to victims' networks for months in what looks like an extensive espionage campaign. [...] |
Ransomware
|
|
|
|
2021-05-25 09:49:15 |
Walmart apologizes for offensive, racist registration emails (lien direct) |
Walmart apologizes for a burst of offensive and racist Walmart.com registration emails sent to thousands of people yesterday. [...] |
|
|
|
|
2021-05-24 19:47:00 |
Audio maker Bose discloses data breach after ransomware attack (lien direct) |
Bose Corporation (Bose) has disclosed a data breach following a ransomware attack that hit the company's systems in early March. [...] |
Ransomware
Data Breach
|
|
|
|
2021-05-24 18:12:11 |
\'Dearthy Star\' pleads guilty to selling info of 65K health care employees (lien direct) |
Justin Sean Johnson, a 30-year-old from Detroit, Michigan, has pleaded guilty to stealing the personally identifiable information (PII) of 65,000 employees of health care provider and insurer University of Pittsburgh Medical Center (UPMC) and selling it on the dark web. [...] |
Guideline
|
|
|
|
2021-05-24 17:08:32 |
The new group policies coming to Windows 10 21H2 (lien direct) |
As Microsoft continues to develop the Windows 10 21H2 feature update, we can use the preview builds to get a glimpse of the upcoming features, changes, and new group policies coming to the operating system this fall. [...] |
|
|
|
|
2021-05-24 15:40:31 |
(Déjà vu) Apple fixes three zero-days, one abused by XCSSET macOS malware (lien direct) |
Apple has released security updates to patch three macOS and tvOS zero-day vulnerabilities attackers exploited in the wild, with the former being abused by the XCSSET malware to bypass macOS privacy protections. [...] |
Malware
|
|
|
|
2021-05-24 15:40:31 |
Apple fixes three macOS, tvOS zero-day bugs exploited in the wild (lien direct) |
Apple has released security updates to patch three zero-day vulnerabilities that attackers might have exploited in the wild. [...] |
|
|
|
|
2021-05-24 14:43:43 |
Bluetooth flaws allow attackers to impersonate legitimate devices (lien direct) |
Attackers could abuse vulnerabilities discovered in the Bluetooth Core and Mesh Profile specifications to impersonate legitimate devices during the pairing process and launch man-in-the-middle (MitM) attacks. [...] |
|
|
|
|
2021-05-24 11:21:31 |
Indonesian govt blocks access to RaidForums hacking forum after data leak (lien direct) |
The Indonesian government is blocking access to the RaidForums hacking forum after the alleged personal information of Indonesian citizens was posted online. [...] |
|
|
|
|
2021-05-24 10:02:03 |
North Korean hackers behind CryptoCore multi-million dollar heists (lien direct) |
Security researchers piecing together evidence from multiple attacks on cryptocurrency exchanges, attributed to a threat actor they named CryptoCore have established a strong connection to the North Korean state-sponsored group Lazarus. [...] |
Threat
|
APT 38
|
|
|
2021-05-24 03:22:23 |
Zeppelin ransomware comes back to life with updated versions (lien direct) |
The developers of Zeppelin ransomware have resumed their activity after a period of relative silence that started last Fall and started to advertise new versions of the malware. [...] |
Ransomware
|
|
|
|
2021-05-23 17:03:57 |
(Déjà vu) Windows 10X on hold, features coming to Windows 10 instead (lien direct) |
Microsoft has officially confirmed that it has paused the development of Windows 10X, its Chrome OS competitor for single-screen and dual-screen devices. [...] |
|
|
|
|
2021-05-23 16:44:59 |
Google Chrome fix released for worldwide crashes on Windows 10, Linux (lien direct) |
Google has released a minor Google Chrome update that fixes the worldwide browser crashes occurring since Thursday on Windows 10 and Linux. [...] |
|
|
|
|
2021-05-23 15:21:39 |
Microsoft Exchange admin portal blocked by expired SSL certificate (lien direct) |
The Microsoft Exchange admin portal is currently inaccessible from some browsers after Microsoft forgot to renew the SSL certificate for the website. [...] |
|
|
|
|
2021-05-23 10:00:00 |
Amex fined £90,000 for sending 4 million spam emails in a year (lien direct) |
The UK data regulator has fined American Express (Amex) £90,000 for sending over 4 million spam emails to customers within one year. [...] |
Spam
|
|
|
|
2021-05-22 12:15:00 |
How to disable Windows 10\'s News and Interests taskbar newsfeed (lien direct) |
As part of the May 2021 Patch Tuesday updates, Microsoft introduced a new feature to Windows 10 called 'News and Interests.' If you are not a fan of the new widget, this article will explain how you can disable it, so it doesn't appear on the Windows 10 taskbar. [...] |
|
|
|
|
2021-05-22 11:02:22 |
(Déjà vu) Bizarro banking malware targets 70 banks in Europe and South America (lien direct) |
A banking trojan named Bizarro that originates from Brazil has crossed the borders and started to target customers of 70 banks in Europe and South America. [...] |
Malware
|
|
|
|
2021-05-22 10:00:00 |
Wormable Windows HTTP vulnerability also affects WinRM servers (lien direct) |
A wormable remote code execution (RCE) vulnerability in the Windows IIS server can also be used to attack unpatched Windows 10 and Server systems publicly exposing the WinRM (Windows Remote Management) service. [...] |
Vulnerability
|
|
|
|
2021-05-21 15:18:19 |
The Week in Ransomware - May 21st 2021 - Healthcare under attack (lien direct) |
This week's ransomware news has been dominated by the attack on Ireland's Health Service Executive (HSE) that has severely disrupted Ireland's healthcare system. [...] |
Ransomware
|
|
|
|
2021-05-21 14:48:50 |
Air India data breach impacts 4.5 million customers (lien direct) |
Air India disclosed a data breach after personal information belonging to roughly 4.5 million of its customers was leaked two months following the hack of Passenger Service System provider SITA in February 2021. [...] |
Data Breach
Hack
|
|
|
|
2021-05-21 13:52:45 |
Microsoft releases first Windows 10 build without Internet Explorer (lien direct) |
Microsoft has released the first Windows 10 build without the Internet Explorer web browser to Windows Insiders in the Dev Channel. [...] |
|
|
|
|
2021-05-21 12:24:21 |
FBI: Conti ransomware attacked 16 US healthcare, first responder orgs (lien direct) |
The Federal Bureau of Investigation (FBI) says the Conti ransomware gang has attempted to breach the networks of over a dozen US healthcare and first responder organizations. [...] |
Ransomware
|
|
|
|
2021-05-21 11:27:03 |
QNAP confirms Qlocker ransomware used HBS backdoor account (lien direct) |
QNAP is advising customers to update the HBS 3 disaster recovery app to block Qlocker ransomware attacks targeting their Internet-exposed Network Attached Storage (NAS) devices. [...] |
Ransomware
|
|
|
|
2021-05-21 10:16:55 |
Google Chrome is crashing worldwide on Windows 10 PCs, how to fix (lien direct) |
Google Chrome has suddenly started crashing yesterday for many Windows users worldwide making the browser unusable. [...] |
|
|
|
|
2021-05-21 05:26:06 |
E-commerce giant suffers major data breach in Codecov incident (lien direct) |
E-commerce platform Mercari has disclosed a major data breach incident that occurred due to exposure from the Codecov supply-chain attack. Mercari is a Japanese public company and an online marketplace that has recently expanded its operations to the United States and United Kingdom. [...] |
Data Breach
|
|
|
|
2021-05-21 03:29:00 |
(Déjà vu) DarkSide affiliates claim gang\'s bitcoin deposit on hacker forum (lien direct) |
Since the DarkSide ransomware operation shut down a week ago, multiple affiliates have complained about not getting paid for past services and issued a claim for bitcoins in escrow at a hacker forum. [...] |
Ransomware
|
|
|