What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-08-27 10:46:01 | Lyceum/Hexane Threat Group Uses Common Hacking Tactics (lien direct) | A recently reported threat group focusing on critical infrastructure organizations in the Middle East uses simple techniques to compromise victims and deploy post-intrusion tools. [...] | Threat | ||
|
2019-08-27 09:26:05 | Microsoft Starts Testing Throttled Rollout of Windows 10 19H2 (lien direct) | Microsoft has started testing the throttled delivery system with Windows Insiders in the Release Preview Ring and Windows 10 19H2 Build 18363.327 is now rolling out to a small number of users today. [...] | |||
|
2019-08-27 03:35:01 | Google Chrome is Losing the \'Close Other Tabs\' Option (lien direct) | In order to reduce the "clutter" in the Chrome tabs context menus, Google has decided to remove the "Close other tabs" option as well as other features because they are not commonly used. [...] | |||
|
2019-08-26 17:06:01 | Microsoft\'s Your Phone Is Down, Users Getting Connection Errors (lien direct) | Microsoft's Your Phone service has been down throughout the day according to the Microsoft 365 Service health portal, with users experiencing connection issues and errors since 7 AM UTC. [...] | |||
|
2019-08-26 14:59:05 | Apple Releases iOS 12.4.1 to Patch Security Flaw Behind Jailbreak (lien direct) | Apple released iOS 12.4.1 today to fix a security flaw reintroduced with the release of iOS 12.4, and used by security researcher Pwn20wnd to develop and release a jailbreak tool for up-to-date iOS devices. [...] | Tool | ||
|
2019-08-26 13:26:05 | Phishing Campaign Delivers Quasar RAT Payloads via Fake Resumes (lien direct) | A new phishing campaign uses fake resume attachments designed to deliver Quasar Remote Administration Tool (RAT) malicious payloads onto the Windows computers of unsuspecting targets. [...] | Tool | ||
|
2019-08-26 11:12:02 | Microsoft Warns of Windows 10 1703 End of Life for Enterprise (lien direct) | Microsoft warns the users of Windows 10, version 1703 Enterprise and Education editions to take action since this Windows 10 version will reach end of life on October 9, 2019. [...] | |||
|
2019-08-26 03:29:02 | New Nemty Ransomware May Spread via Compromised RDP Connections (lien direct) | A new ransomware has been spotted over the weekend, carrying references to the Russian president and antivirus software. The researchers call is Nemty. [...] | Ransomware | ||
|
2019-08-25 16:00:01 | (Déjà vu) Hostinger Data Breach Affects Almost 14 Million Customers (lien direct) | Hosting provider Hostinger today announced that it reset the login passwords of 14 million of its customers following a recent security breach that enabled unauthorized access to a client database. [...] | Data Breach | ||
|
2019-08-25 16:00:01 | Up to 14 Million Hostinger Clients Impacted by Security Incident (lien direct) | Hosting provider Hostinger today announced that it reset the login passwords of 14 million of its customers following a recent security breach that enabled unauthorized access to a client database. [...] | |||
|
2019-08-24 12:00:00 | Microsoft Blocks Windows 10 1903 Update on Zebra Rugged Tablets (lien direct) | Microsoft introduced a new compatibility hold to block users of Zebra XSLATE B10 rugged tablets from installing or updating to Windows 10, version 1903 or Windows 10, version 1809. [...] | |||
|
2019-08-23 15:32:01 | IRS Warns Taxpayers of New Scam Campaign Distributing Malware (lien direct) | The Internal Revenue Service (IRS) issued today a warning to alert taxpayers and tax professionals of an active IRS impersonation scam campaign sending spam emails to deliver malicious payloads. [...] | Spam Malware | ||
|
2019-08-23 14:18:04 | Windows 10 KB4505903 Update Breaks Bluetooth Speakers Connectivity (lien direct) | Microsoft says that Bluetooth speakers will stop connecting to devices running Windows 10, version 1903 after installing the KB4505903 cumulative update released on July 26, 2019. [...] | |||
|
2019-08-23 12:42:04 | Mastercard Reports Data Breach to German and Belgian DPAs (lien direct) | Mastercard disclosed a data breach to the German and Belgian Data Protection Authorities (DPA) involving customer data from the company's Priceless Specials loyalty program. [...] | Data Breach | ||
|
2019-08-23 12:05:05 | Instagram Phishing Emails Use Fake Login Warning Baits (lien direct) | Instagram users are currently targeted by a new phishing campaign that uses login attempt warnings coupled with what looks like two-factor authentication (2FA) codes to make the scam more believable. [...] | |||
|
2019-08-23 08:31:03 | Emotet Botnet Is Back, Servers Active Across the World (lien direct) | Command and control (C2) servers for the Emotet botnet appear to have resumed activity and deliver binaries once more. This comes after being inert since the beginning of June. [...] | |||
|
2019-08-23 06:30:00 | Google Chrome to Warn If Logins Are Found in a Data Breach (lien direct) | Google is adding a built-in data breach notification service to the Chrome browser that will alert users when they are logging into sites with credentials that have been exposed by breaches. [...] | Data Breach | ||
|
2019-08-23 03:00:00 | Microsoft Forms to Add Enterprise Automatic Phishing Detection (lien direct) | Microsoft is working on also adding automatic phishing to enterprise in-org forms after previously rolling out Microsoft Forms proactive phishing prevention for public forms in July. [...] | |||
|
2019-08-22 17:56:03 | Steam Patches LPE Vulnerabilities in Beta Version Update (lien direct) | Almost 48 hours after security researcher Vasily Kravets (PsiDragon) released his proof of concept (PoC) for a second vulnerability in Steam client for Windows leading to privilege escalation, Valve released a beta update that allegedly fixes the bugs. [...] | Vulnerability Guideline | ||
|
2019-08-22 16:22:05 | Cisco Warns of Public Exploit Code for Critical Switch Flaws (lien direct) | Cisco updated the security advisories for three vulnerabilities patched in early August warning customers that its Product Security Incident Response Team (PSIRT) team is aware of public exploit code being available. [...] | |||
|
2019-08-22 14:19:05 | Unpatched Squid Servers Exposed to DoS, Code Execution Attacks (lien direct) | Multiple versions of the Squid web proxy cache server built with Basic Authentication features are currently vulnerable to code execution and denial-of-service (DoS) attacks triggered by the exploitation of a heap buffer overflow security flaw. [...] | |||
|
2019-08-22 10:33:01 | Google Twice Misses Android App with Open-Source Spyware Code (lien direct) | One Android app with spyware capabilities based on an open-source remote access tool (RAT) has twice thwarted the security of Google Play over a period of two weeks. [...] | Tool | ||
|
2019-08-22 08:36:01 | GitHub Experienced Widespread Major Services Outage (lien direct) | The GitHub Git repository hosting platform experienced a widespread and major services outage impacting the Issues, PRs, Dashboard, Projects, and Notifications features. [...] | |||
|
2019-08-22 03:00:00 | Portland Public Schools Recovers $2.9 Million Lost in BEC Scam (lien direct) | Oregon urban school district Portland Public Schools is on track to recover roughly $2.9 million wired by district employees to a BEC scammer, after discovering the fraudulent transactions before the money left the fraudster's accounts. [...] | |||
|
2019-08-22 00:53:02 | Bitdefender Fixes Privilege Escalation Bug in Free Antivirus 2020 (lien direct) | A vulnerability in the free version of Bitdefender Antivirus could be exploited by an attacker to get SYSTEM-level permissions, reserved for the most privileged account on a Windows machine. [...] | Vulnerability | ||
|
2019-08-21 19:44:03 | npm Pulls Malicious Package that Stole Login Passwords (lien direct) | A malicious package was removed today from the npm repository after it was discovered that stole login information from the computers it was installed on. [...] | |||
|
2019-08-21 15:28:05 | (Déjà vu) Second Steam Zero-Day Impacts Over 96 Million Windows Users (lien direct) | A second Steam Windows client zero-day privilege escalation vulnerability affecting over 96 million users has been publicly disclosed today by Russian researcher Vasily Kravets. [...] | Vulnerability | ||
|
2019-08-21 13:56:01 | Windows 10 Insider Build 18965 Adds Restart Apps Sign-In Option (lien direct) | Microsoft is rolling out Windows 10 Insider Preview Build 18965 (20H1) to Insiders in the Fast ring, a build that now makes it possible to enable restarting apps at Windows sign-in. [...] | |||
|
2019-08-21 13:06:05 | Phishing Attacks Scrape Branded Microsoft 365 Login Pages (lien direct) | An unusual new phishing campaign is probing email inboxes via attacks using the targets' company-branded Microsoft 365 tenant login pages to add more legitimacy to the scam. [...] | |||
|
2019-08-21 10:36:01 | Hackers Want $2.5 Million Ransom for Texas Ransomware Attacks (lien direct) | The threat actor that hit multiple Texas local governments with file-encrypting malwarelast week may have done it by compromising a managed service provider. The attacker demanded a collective ransom of $2.5 million, the mayor of a municipality says. [...] | Ransomware Threat | ||
|
2019-08-21 03:33:03 | PokerTracker.com Hacked to Inject Payment Card Stealing Script (lien direct) | A curious case of web-based card skimming activity revealed that the Poker Tracker website had been compromised and loaded JavaScript that stole payment information from customers. [...] | |||
|
2019-08-21 00:25:00 | Silence Advanced Hackers Attack Banks All Over the World (lien direct) | The activity of the advanced hacker group the researchers call Silence has increased significantly over the past year. Victims in the financial sector are scattered across more than 30 countries and financial losses have quintupled. [...] | |||
|
2019-08-20 17:11:05 | Visa Adds New Threat Detection to Prevent Payment Fraud (lien direct) | Visa announced the addition of new fraud threat detection and blocking tech designed to boost transaction security and, implicitly, the integrity of its payments ecosystem. [...] | Threat | ||
|
2019-08-20 16:30:04 | Microsoft Fixes Corrupted Windows Defender Files When Using SFC (lien direct) | Microsoft has released a new Windows Defender update that fixes an issues with SFC /scannow detecting corrupted Windows Defender PowerShell files. [...] | |||
|
2019-08-20 14:14:00 | Microsoft Releases First Chromium-Based Microsoft Edge Beta (lien direct) | The first Beta release of the new Chromium-based Microsoft Edge web browser is now available for Windows and macOS users after having already been downloaded over one million times while distributed through the Dev and Canary preview channels. [...] | |||
|
2019-08-20 12:51:05 | Microsoft Patches Vulnerable Android Remote Desktop App (lien direct) | Microsoft updated the security advisory for an information disclosure vulnerability that previously impacted only Windows Remote Desktop Protocol clients to also include the Microsoft Remote Desktop for Android app. [...] | Vulnerability | ||
|
2019-08-20 12:00:04 | Exposed Sphinx Servers Are No Challenge for Hackers (lien direct) | Attackers can take advantage of Sphinx web servers exposed on the internet to access, alter, or remove data in the database, warns CERT-Bund, Germany's computer emergency response team. [...] | |||
|
2019-08-20 11:15:02 | Severe Flaws in Kubernetes Expose All Servers to DoS Attacks (lien direct) | Two high severity security flaws impacting the Kubernetes open-source system for handling containerized apps can allow an unauthorized attacker to trigger a denial of services state remotely, without user interaction. [...] | Uber | ||
|
2019-08-20 03:34:03 | Scammer Tricks City Into $1 Million Wire Transfer (lien direct) | A scammer was able to successfully fooled the City of Saskatoon into transferring them a little over $1 million. They may not enjoy the wealth, though. [...] | |||
|
2019-08-19 18:08:01 | Adwind Remote Access Trojan Hits Utilities Sector (lien direct) | Attackers are targeting entities from the utility industry with the Adwind Remote Access Trojan (RAT) malware via a malspam campaign that uses URL redirection to malicious payloads. [...] | Malware | ||
|
2019-08-19 15:22:00 | Gmail Is Down, Displays "Something Went Wrong" Errors (lien direct) | Google's free Gmail email service is currently experiencing a worldwide outage which prevents users from logging in and displays "Something went wrong" errors when they're trying to sign in to their accounts. [...] | |||
|
2019-08-19 14:16:04 | iOS 12.4 Jailbreak Released After Apple Unpatches Older Bug (lien direct) | iOS security researcher Pwn20wnd released a public jailbreak for the latest stable iOS version after Apple reintroduced a vulnerability patched in iOS 12.3, previously exploited to jailbreak iOS 12.2. [...] | Vulnerability | ||
|
2019-08-19 13:54:00 | Windows 10 Notepad Added to Microsoft Store, Only for Insiders (lien direct) | The popular text editor Notepad would be updateable through the Microsoft Store with Windows 10 20H1 and the app has just landed in the Store, but there's a catch. [...] | |||
|
2019-08-19 13:10:04 | VLC Media Player 3.0.8 Released with 13 Security Fixes (lien direct) | VideoLan has released VLC Media Player 3.0.8 and it is now available for Windows, Mac, and Linux. This release fixed 13 security vulnerabilities as well as providing improvements to video playback. [...] | |||
|
2019-08-19 10:49:05 | (Déjà vu) $11M Email Scam at Caterpillar Pinned to Nigerian Businessman (lien direct) | A Nigerian national that was on Forbes' list of the most promising entrepreneurs in Africa stands accused of business email compromise fraud that stole $11 million from one victim alone. [...] | |||
|
2019-08-19 10:49:05 | $11M Email Scam at Caterpillar Sales Office Pinned to Nigerian Man (lien direct) | A Nigerian national that was on Forbe's list of the most promising entrepreneurs in Africa stands accused of business email compromise fraud that stole $11 million from one victim alone. [...] | |||
|
2019-08-19 10:26:01 | Hackers Use Fake NordVPN Website to Deliver Banking Trojan (lien direct) | The attackers who previously breached and abused the website of free multimedia editor VSDC to distribute the Win32.Bolik.2 banking Trojan have now switched their tactics. [...] | |||
|
2019-08-18 13:14:01 | Router Network Isolation Broken By Covert Data Exfiltration (lien direct) | Software-based network isolation provided by routers is not as efficient as believed, as hackers can smuggle data between the networks for exfiltration. [...] | |||
|
2019-08-18 10:29:03 | Steam Accounts Being Stolen Through Elaborate Free Game Scam (lien direct) | An elaborate scam is underway that pretends to be a free game giveaway site, but instead hacks a user's Steam account, takes control over it, and then uses it to target other players. [...] | |||
|
2019-08-18 09:41:01 | Windows 10 v1809 KB4512534 Update Released With VB Fix and More (lien direct) | KB4512534 advances the system to Windows 10 Build 17763.720 and fixes Visual Basics issues that Microsoft acknowledged on August 15, shortly after the rollout of Patch Tuesday security updates. [...] |
To see everything:
Our RSS (filtrered)
