Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-05-14 10:37:45 |
(Déjà vu) DarkSide ransomware servers reportedly seized, operation shuts down (lien direct) |
The DarkSide ransomware operation has allegedly shut down after the threat actors lost access to servers and their cryptocurrency was transferred to an unknown wallet. [...] |
Ransomware
Threat
|
|
|
|
2021-05-14 10:37:45 |
DarkSide ransomware servers reportedly seized, REvil restricts targets (lien direct) |
The DarkSide ransomware operation has allegedly shut down after the threat actors lost access to servers and their cryptocurrency was transferred to an unknown wallet. [...] |
Ransomware
Threat
|
|
|
|
2021-05-14 08:49:34 |
QNAP warns of eCh0raix ransomware attacks, Roon Server zero-day (lien direct) |
QNAP warns customers of an actively exploited Roon Server zero-day bug and eCh0raix ransomware attacks targeting their Network Attached Storage (NAS) devices, just two weeks after alerting them of an ongoing AgeLocker ransomware outbreak. [...] |
Ransomware
|
|
|
|
2021-05-14 07:44:48 |
(Déjà vu) Irish healthcare shuts down IT systems after Conti ransomware attack (lien direct) |
Ireland's Health Service Executive(HSE), the country's publicly funded healthcare system, has shut down all IT systems after its network was breached in a ransomware attack. [...] |
Ransomware
|
|
|
|
2021-05-14 07:44:48 |
Irish healthcare shuts down IT systems after ransomware attack (lien direct) |
Ireland's Health Service Executive(HSE), the country's publicly funded healthcare system, has shut down all IT systems after its network was breached in a ransomware attack. [...] |
Ransomware
|
|
|
|
2021-05-14 03:30:11 |
Cross-browser tracking vulnerability tracks you via installed apps (lien direct) |
Researchers have developed a way to track a user across different browsers on the same machine by querying the installed applications on the device. [...] |
Vulnerability
|
|
|
|
2021-05-13 21:48:23 |
Popular Russian hacking forum XSS bans all ransomware topics (lien direct) |
One of the most popular Russian-speaking hacker forums, XSS, has banned all topics promoting ransomware to prevent unwanted attention. [...] |
Ransomware
|
|
|
|
2021-05-13 18:24:29 |
Chemical distributor pays $4.4 million to DarkSide ransomware (lien direct) |
Chemical distribution company Brenntag paid a $4.4 million ransom in Bitcoin to the DarkSide ransomware gang to receive a decryptor for encrypted files and prevent the threat actors from publicly leaking stolen data. [...] |
Ransomware
Threat
|
|
|
|
2021-05-13 15:56:43 |
Rapid7 source code, credentials accessed in Codecov supply-chain attack (lien direct) |
US cybersecurity firm Rapid7 has disclosed that some source code repositories were accessed in a security incident linked to the supply-chain attack that recently impacted customers of the popular Codecov code coverage tool. [...] |
|
|
|
|
2021-05-13 14:26:11 |
Windows 10 KB5003173 update fails with error 0x800f0922, how to fix (lien direct) |
The Windows 10 KB5003173 cumulative update may fail to install with an error 0x800f0922 if Microsoft Edge has been previously uninstalled. [...] |
|
|
|
|
2021-05-13 13:54:54 |
Colonial Pipeline restores operations, $5 million ransom demanded (lien direct) |
Colonial Pipeline Company has recovered quickly from the ransomware attack suffered less than a week ago and expects all its infrastructure to be fully operational today. [...] |
Ransomware
|
|
|
|
2021-05-13 13:00:00 |
(Déjà vu) Microsoft build tool abused to deliver password-stealing malware (lien direct) |
Threat actors are abusing the Microsoft Build Engine (MSBuild) to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. [...] |
Malware
Tool
Threat
|
|
|
|
2021-05-13 13:00:00 |
Attackers abuse Microsoft dev tool to deploy Windows malware (lien direct) |
Threat actors are abusing the Microsoft Build Engine (MSBuild) to deploy remote access tools and information-stealing malware filelessly as part of an ongoing campaign. [...] |
Malware
Tool
Threat
|
|
|
|
2021-05-13 12:54:13 |
Meet Lorenz - A new ransomware gang targeting the enterprise (lien direct) |
A new ransomware operation known as Lorenz targets organizations worldwide with customized attacks demanding hundreds of thousands of dollars in ransoms. [...] |
Ransomware
|
|
|
|
2021-05-13 12:14:47 |
Insurance giant CNA fully restores systems after ransomware attack (lien direct) |
Leading US-based insurance company CNA Financial has fully restored systems following a Phoenix CryptoLocker ransomware attack that hits its network during late March and disrupted online services and business operations. [...] |
Ransomware
Guideline
|
|
|
|
2021-05-13 10:31:19 |
Cisco fixes 6-month-old AnyConnect VPN zero-day with exploit code (lien direct) |
Cisco has fixed a six-month-old zero-day vulnerability found in the Cisco AnyConnect Secure Mobility Client VPN software, with publicly available proof-of-concept exploit code. [...] |
Vulnerability
|
|
★★★★
|
|
2021-05-13 06:36:08 |
Crypto exchange glitch causes duplicate purchases, delayed credits (lien direct) |
This week, recurring glitches on the popular cryptocurrency exchange Crypto.com caused multi-day delays for users in receiving their purchased assets. Moreover, those reattempting "declined" or "expired" transactions were charged multiple times for duplicate purchases. [...] |
|
|
|
|
2021-05-12 20:02:09 |
Biden issues executive order to increase U.S. cybersecurity defenses (lien direct) |
President Biden signed an executive order Wednesday to modernize the country's defenses against cyberattacks and give more timely access to information necessary for law enforcement to conduct investigations. [...] |
|
|
|
|
2021-05-12 17:13:53 |
Microsoft: Windows 10 1809 and 1909 have reached end of service (lien direct) |
Multiple editions of Windows 10 versions 1803, 1809, and 1909 have reached their End of Service (EOS) on this month's Patch Tuesday, as Microsoft reminded customers yesterday. [...] |
|
|
|
|
2021-05-12 16:17:25 |
Tor Project auctions off the first Onion URL ever created as an NFT (lien direct) |
The Tor Project is auctioning off the first Tor Onion domain ever created, duskgytldkxiuqc6.onion, as an NFT. [...] |
|
|
|
|
2021-05-12 13:52:25 |
Microsoft fixes WSUS bug blocking May Windows security updates (lien direct) |
Microsoft has resolved a known issue preventing managed devices from receiving the May 2021 Patch Tuesday security updates. [...] |
|
|
|
|
2021-05-12 12:49:16 |
Microsoft: Threat actors target aviation orgs with new malware (lien direct) |
Microsoft warns of an ongoing spear-phishing campaign targeting aerospace and travel organizations with multiple remote access trojans (RATs) deployed using a new and stealthy malware loader. [...] |
Malware
Threat
|
|
|
|
2021-05-12 12:36:49 |
Trust Wallet, MetaMask crypto wallets targeted by new support scam (lien direct) |
Trust Wallet and MetaMask wallet users are being targeted in ongoing and aggressive Twitter phishing attacks to steal cryptocurrency funds. [...] |
|
|
|
|
2021-05-12 11:09:26 |
Microsoft\'s new project ports Linux eBPF to Windows 10, Server (lien direct) |
Microsoft has launched a new open-source project that aims to add to Windows the benefits of eBPF, a technology first implemented in Linux that allows attaching programs in both kernel and user applications. [...] |
|
|
|
|
2021-05-12 09:24:44 |
All Wi-Fi devices impacted by new FragAttacks vulnerabilities (lien direct) |
Newly discovered Wi-Fi security vulnerabilities collectively known as FragAttacks (fragmentation and aggregation attacks) are impacting all Wi-Fi devices (including computers, smartphones, and smart devices) going back as far as 1997. [...] |
|
|
|
|
2021-05-11 17:01:02 |
Microsoft Outlook bug prevents viewing or creating email worldwide (lien direct) |
A Microsoft Outlook update released today for the desktop client introduced bugs that prevent users from creating or viewing mail. [...] |
|
|
|
|
2021-05-11 17:01:02 |
Microsoft Outlook bug prevents viewing or creating emails worldwide (lien direct) |
Microsoft Outlook is affected worldwide by a bug in the desktop client that prevents users from viewing mail or creating new ones. [...] |
|
|
|
|
2021-05-11 16:41:38 |
German watchdog bans Facebook from using WhatsApp users\' data (lien direct) |
Facebook was banned today from processing WhatsApp user data by the Hamburg Commissioner for Data Protection and Freedom of Information (HmbBfDI). [...] |
|
|
|
|
2021-05-11 14:02:01 |
(Déjà vu) Windows 10 cumulative updates KB5003169 & KB5003173 released (lien direct) |
As part of the May Patch cycle, Microsoft is rolling out a new cumulative update for all supported version of Windows. [...] |
|
|
|
|
2021-05-11 13:28:34 |
Microsoft May 2021 Patch Tuesday fixes 55 flaws, 3 zero-days (lien direct) |
Today is Microsoft's May 2021 Patch Tuesday, and with it comes three zero-day vulnerabilities, so Windows admins will be rushing to apply updates. [...] |
|
|
|
|
2021-05-11 13:01:55 |
Microsoft Defender ATP now secures networked Linux, macOS devices (lien direct) |
Microsoft has added support for identifying and assessing the security configurations of Linux and macOS endpoints on enterprise networks using Microsoft Defender for Endpoint (previously Microsoft Defender Advanced Threat Protection). [...] |
Threat
|
|
|
|
2021-05-11 12:28:38 |
Adobe fixes Reader zero-day vulnerability exploited in the wild (lien direct) |
Adobe has released a massive Patch Tuesday security update release that fixes vulnerabilities in twelve different applications, including one actively exploited vulnerability Adobe Reader. [...] |
Vulnerability
|
|
|
|
2021-05-11 11:29:14 |
Ransomware gang leaks data from Metropolitan Police Department (lien direct) |
Babuk ransomware operators have leaked what they claim are personal files belongin to police officers from the Metropolitan Police Department after negotiations went stale. [...] |
|
|
|
|
2021-05-11 10:08:23 |
VLC Media Player 3.0.14 fixes broken Windows automatic updater (lien direct) |
VideoLan has released VLC Media Player 3.0.14 to fix an issue affecting Window users and causing the software's auto-updater not to launch the new version's installer automatically. [...] |
|
|
|
|
2021-05-10 17:27:36 |
City of Tulsa\'s online services disrupted in ransomware incident (lien direct) |
The City of Tulsa, Oklahoma, has suffered a ransomware attack that forced the City to shut down its systems to prevent the further spread of the malware. [...] |
Ransomware
|
|
|
|
2021-05-10 13:48:16 |
Microsoft: Office 365 is blocking emails from Google, LinkedIn domains (lien direct) |
Microsoft is working on addressing an Office 365 issue that has resulted in legitimate emails sent from multiple domains (including Google and LinkedIn) getting tagged as malicious and quarantined. [...] |
|
|
|
|
2021-05-10 12:19:46 |
US and Australia warn of escalating Avaddon ransomware attacks (lien direct) |
The Federal Bureau of Investigation (FBI) and the Australian Cyber Security Centre (ACSC) are warning of an ongoing Avaddon ransomware campaign targeting organizations from an extensive array of sectors in the US and worldwide. [...] |
Ransomware
|
|
|
|
2021-05-10 11:40:13 |
(Déjà vu) DarkSide ransomware will now vet targets after pipeline cyberattack (lien direct) |
The DarkSide ransomware gang posted a new "press release" today stating that they are apolitical and will vet all targets before they are attacked. [...] |
Ransomware
|
|
|
|
2021-05-10 11:40:13 |
DarkSide ransomware will start vetting targets after pipeline cyberattack (lien direct) |
The DarkSide ransomware gang posted a new "press release" today stating that they are apolitical and will vet all targets before they are attacked. [...] |
Ransomware
|
|
|
|
2021-05-10 09:37:47 |
US declares state of emergency after ransomware hits largest pipeline (lien direct) |
After a ransomware attack on Colonial Pipeline forced the company to shut down 5,500 miles of fuel pipeline, the Federal Motor Carrier Safety Administration (FMCSA) issued a regional emergency declaration affecting 17 states and the District of Columbia. [...] |
Ransomware
|
|
|
|
2021-05-10 08:13:16 |
(Déjà vu) NatWest Bank scheduled payments bug may have cost you money (lien direct) |
Today, UK-based NatWest Bank has alerted multiple customers of a system error that may have caused many more payments to be debited from customer accounts than the originally agreed-upon amount. The issue impacts standing orders set up between 23rd March 2020 and 24th February 2021. [...] |
|
|
|
|
2021-05-10 08:13:16 |
NatWest Bank notifies customers of scheduled payments blunder (lien direct) |
Today, UK-based NatWest Bank has alerted multiple customers of a system error that may have caused many more payments to be debited from customer accounts than the originally agreed-upon amount. The issue impacts standing orders set up between 23rd March 2020 and 24th February 2021. [...] |
|
|
|
|
2021-05-09 19:30:26 |
Windows 10 Notepad will warn when you\'re running an old version (lien direct) |
The Windows 10 Notepad will soon include a built-in notification that alerts users when a new version is available. [...] |
|
|
|
|
2021-05-09 12:02:44 |
Google Chrome\'s new privacy feature restricts online user tracking (lien direct) |
In the latest move to improve the privacy of the Chrome browser, Google is adding support for a new HTML tag that prevents user tracking by isolating embedded content from the page embedding it. [...] |
|
|
|
|
2021-05-09 10:27:05 |
How to exclude files and folders from Windows Defender scans (lien direct) |
Sometimes legitimate programs or programs created by your organization may have false-positive detections in Windows Defender. Fortunately, Microsoft also offers an way to exclude files and processes from Defender scans. [...] |
|
|
|
|
2021-05-09 09:39:16 |
WhatsApp to restrict features if you refuse Facebook data sharing (lien direct) |
WhatsApp says that it will not delete or deactivate the accounts of users who oppose its latest privacy policy update that requires sharing data with Facebook companies. [...] |
|
|
|
|
2021-05-08 18:54:31 |
Twitter scammers impersonate SNL in Elon Musk cryptocurrency scams (lien direct) |
Twitter scammers are jumping on Elon Musk's hosting of Saturday Night Live to push cryptocurrency scams to steal people's Bitcoin, Ethereum, and Dogecoin. [...] |
|
|
|
|
2021-05-08 13:14:28 |
Microsoft pulls Windows 10 AMD driver causing PCs not to boot (lien direct) |
Microsoft has pulled an AMD driver from Windows Update after numerous people reported that it prevents Windows 10 from starting and displays an "INACCESSIBLE BOOT DEVICE" error. [...] |
|
|
|
|
2021-05-08 11:31:17 |
Largest U.S. pipeline shuts down operations after ransomware attack (lien direct) |
Colonial Pipeline, the largest fuel pipeline in the United States, has shut down operations after suffering what is reported to be a ransomware attack. [...] |
Ransomware
|
|
|
|
2021-05-08 10:23:05 |
Ransomware gangs have leaked the stolen data of 2,100 companies so far (lien direct) |
Since 2019, ransomware gangs have leaked the stolen data for 2,103 companies on dark web data leaks sites. [...] |
Ransomware
|
|
|