What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-03-27 15:39:03 | Microsoft Retaliates Against APT35 Hacker Group by Seizing 99 Domains (lien direct) | Court documents unsealed today show how Microsoft's Digital Crimes Unit was able to block some of the cyber attacks conducted by an Iranian-backed advanced persistence threat (APT) group by taking over domains used as part of their core operations. [...] | Threat | APT 35 | |
|
2019-03-27 14:34:03 | Microsoft Releases Windows 10 Build 18865 (20H1) With Narrator Fixes (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18865 for Insiders in the Skip Ahead ring. This 20H1 build focuses heavily on fixing bugs in Narrator. Other than that, no new features were added. [...] | |||
|
2019-03-27 14:21:03 | 20% of Industrial Control Systems Affected by Critical Vulnerabilities (lien direct) | Over half of the 415 vulnerabilities found in industrial control systems (ICS) were assigned CVSS v.3.0 base scores over 7 which are designated to security issues of high or critical risk levels, with 20% of vulnerable ICS devices being impacted by critical security issues. [...] | |||
|
2019-03-27 13:04:03 | Microsoft Plans to Add Native Caret Browsing to Chrome (lien direct) | Developers from Microsoft are aiming to implement native Caret Browsing in Chromium, which if implemented, would bring it to Chrome and the upcoming Microsoft Edge browser. [...] | |||
|
2019-03-27 05:31:02 | Microsoft\'s Application Guard Extension Protects Chrome and Firefox Users (lien direct) | Microsoft has released a browser extension called Application Guard that protect Chrome and Firefox enterprise users from untrusted sites by opening them in a sandboxed Edge environment that cannot interact with the rest of the computer. [...] | |||
|
2019-03-26 18:08:02 | U.S. Federal Reserve System Exposed to Increased Risk of Unauthorized Access (lien direct) | Federal Reserve Bank (FRB) systems are exposed to an increased risk of unauthorized access because of security weaknesses found in the U.S. Treasury Department's computing systems according to a management report issued by the U.S. Government Accountability Office (GAO). [...] | |||
|
2019-03-26 16:01:00 | NVIDIA Patches High Severity GeForce Experience Vulnerability (lien direct) | NVIDIA released a security update for the NVIDIA GeForce Experience software for Windows to patch a vulnerability that could allow potential local attackers with basic user privileges to elevate privileges, trigger code execution, and perform denial-of-service (DoS) attacks. [...] | Vulnerability | ||
|
2019-03-26 14:12:02 | UC Browser for Android, Desktop Exposes 500+ Million Users to MiTM Attacks (lien direct) | The extremely popular UC Browser and UC Browser Mini Android applications with a total of over 600 million installs expose their users to MiTM attacks by downloading and installing extra modules from their own servers using unprotected channels and bypassing Google Play's servers altogether. [...] | |||
|
2019-03-26 11:55:01 | ASUS Admits Its Live Update Utility Was Backdoored by APT Group (lien direct) | Asus confirmed today that its Live Update utility has been indeed infected with malicious code by an advanced persistent threat (APT) group as part of a supply chain attack which managed to compromise some of its servers. [...] | Threat | ||
|
2019-03-26 10:48:04 | (Déjà vu) Microsoft\'s Leaked Edge Insider Browser Works on Windows 7 (lien direct) | While a leaked support page has stated that the new Microsoft Edge browser will only work on 64 bit versions of Windows 10, tests show that the leaked build also run on Windows 7. [...] | |||
|
2019-03-26 10:48:04 | (Déjà vu) New Chromium Edge Works on WIndows 7, Will Microsoft Let It? (lien direct) | While a leaked support page has stated that the new Microsoft Edge browser will only work on 64 bit versions of Windows 10, tests show that the leaked build also run on Windows 7. [...] | |||
|
2019-03-25 21:11:03 | iOS 12.2 Patches Over 50 Security Vulnerabilities (lien direct) | Apple released today security updates for iOS, fixing 51 vulnerabilities in version 12.2 of the operating system. The products impacted are iPhone 5s and later, iPad Air and newer, 6th generation iPods. [...] | |||
|
2019-03-25 16:54:01 | Skype Experiencing Global Instant Messaging Delays (lien direct) | Skype's Instant Messaging service is currently experiencing delays in syncing and sending messages in multiple countries and regions according to Microsoft and a multitude of user reports. [...] | |||
|
2019-03-25 16:29:02 | Firefox to Import Windows Root Certs To Avoid Antivirus SSL Scanning Issues (lien direct) | In order to prevent future errors caused by the SSL scanning feature of many antivirus programs, Mozilla is performing a test that imports the Windows root certificates into Firefox. [...] | |||
|
2019-03-25 15:08:02 | Apple Introduces New Products During \'It\'s Show Time\' Event (lien direct) | During the Apple Special Event held today at the Steve Jobs Theater, Cupertino, CA, Apple announced new ways through which its customers can experience news and magazines, TV shows, and games, as well as a new type of credit card. [...] | |||
|
2019-03-25 13:05:00 | Emsisoft has Released a Decryptor for the Hacked Ransomware (lien direct) | A decryptor for the Hacked Ransomware was released today by Emsisoft that allows victims to recover their files for free. This ransomware was active in 2017 and targeted English, Turkish, Spanish, and Italian users. [...] | Ransomware | ||
|
2019-03-25 12:35:01 | ASUS Live Update Infected with Backdoor in Supply Chain Attack (lien direct) | A new advanced persistent threat (APT) campaign detected by Kaspersky Lab in January 2019 and estimated to have run between June and November 2018 has allegedly impacted over 57,000 users who have downloaded the ASUS Live Update Utility on their computers. [...] | Threat | ||
|
2019-03-25 10:18:02 | Tesla Model 3 Hacked on the Last Day of Pwn2Own (lien direct) | During the last day, Fluoroacetate's Amat Cama and Richard Zhu successfully targeted and successfully hacked their way into a Tesla Model 3's Chromium-based infotainment system as part of their automotive category demo, using "a JIT bug in the renderer to display their message." [...] | Tesla | ||
|
2019-03-25 03:04:00 | The AZORult Legacy Lives On. Hello AZORult++! (lien direct) | Earlier this month, malware researchers noticed a new variant of the infamous information stealer AZORult that indicates a transition to a new developer and carries the promise of a more dangerous threat. [...] | Malware | ||
|
2019-03-24 17:15:05 | Telegram Now Lets You Delete a Received Message From Sender\'s Device (lien direct) | To further increase privacy, Telegram announced today that they have added a feature that allows users to delete any message in a one-on-one chat and have it be removed from both chat user's devices [...] | |||
|
2019-03-24 16:03:00 | Microsoft\'s Leaked Edge Browser Should Make Google Worried (lien direct) | Over the weekend, a leaked build for the Chromium-based Edge browser has been released that is providing users with their first look at the upcoming browser from Microsoft. If you are a Chrome user, reports indicate that this browser feels, performs, and has basically the same features as Google Chrome. [...] | |||
|
2019-03-23 14:32:02 | VirusTotal Goes Retro with New ASCII Site for Older Browsers (lien direct) | VirusTotal has quietly launched a new retro site this week that is designed for visitors using older browsers, who want a minimalist experience, or wish to feel the nostalgia of how it felt connecting to a console in the past. Due to its reduced page size, this new interface is also ideal for mobile browsers. with slower connections. [...] | |||
|
2019-03-23 11:20:03 | Chrome 74 Dark Mode Now Syncs with Windows 10 Color Settings (lien direct) | Google has released Chrome 74 into the beta channel and with it comes the browser's highly anticipated Dark Mode feature for Windows 10. In Chrome 74, Google has finally made it possible for Chrome to detect when dark mode is enabled in Windows 10 and switch to dark mode in the browser. [...] | |||
|
2019-03-22 19:54:03 | FEMA Data Leak Exposes Personal Info of 2.3M Disaster Survivors (lien direct) | The Office for the Inspector General for the DHS issued a report today that detailed how FEMA did not appropriately safeguard the personal information of 2.3 million survivors of hurricanes Harvey, Irma, and Maria and the California wildfires in 2017. [...] | |||
|
2019-03-22 18:41:05 | 70% of Ransomware Attacks Targeted SMBs, BEC Attacks Increased by 130% (lien direct) | Beazley Breach Response (BBR) Services found that 71% of ransomware attacks targeted small businesses, with an average ransom demand of $116,324 and a median of $10,310, after analyzing 3,300 incidents involving its clients in 2018 [...] | Ransomware | ||
|
2019-03-22 16:59:02 | The Week in Ransomware - March 22nd 2019 - LOCKERGOGA! (lien direct) | This week has been dominated by the news of aluminum producer Norsk Hydro being crippled by the LockerGoga Ransomware. Since then, it has been constant news coverage regarding the ransomware and more in-depth analysis. [...] | Ransomware | ||
|
2019-03-22 14:41:04 | Microsoft is Adding a Graphing Mode to the Windows 10 Calculator (lien direct) | In a new feature tracking post for the Microsoft's Calculator GitHub project, Microsoft has stated that they plan on adding a graphing mode to the Windows 10 calculator. [...] | |||
|
2019-03-22 14:12:00 | Zero-Day WordPress Plugin Vulnerability Used to Add Malicious Redirects (lien direct) | WordPress websites using unpatched Social Warfare installations (v3.5.1 and v3.5.2) are exposed to attacks abusing a zero-day stored Cross-Site Scripting (XSS) vulnerability fixed in the 3.5.3 version of the plugin. [...] | Vulnerability | ||
|
2019-03-22 11:29:04 | Mozilla Firefox and Microsoft Edge Hacked on Second Day of Pwn2Own (lien direct) | During the second day of Pwn2Own Vancouver 2019, competitors successfully pwned the Mozilla Firefox and Microsoft Edge web browsers, as well as VMware's Workstation client, earning a total of $270,000 in cash awards. [...] | |||
|
2019-03-22 09:53:05 | 2 Million Emails of 350K+ Clients Possibly Exposed in Oregon DHS Data Breach (lien direct) | The Oregon Department of Human Services (DHS) announced that roughly 2 million emails with Protected Health Information from more than 350,000 customers have been potentially exposed after 9 employee mailboxes were compromised in a spear phishing attack. [...] | Data Breach | ||
|
2019-03-21 17:54:03 | Windows 7 Gets an Extra Life With Windows Virtual Desktop (lien direct) | Microsoft announced today that their new Windows Virtual Desktop product is now available for public preview. This technology allows the enterprise to move their desktops and applications into Azure and be hosted on Windows 10 and Windows 7 operating systems that are always secured with the latest updates. [...] | |||
|
2019-03-21 16:55:00 | 13-Year-Old Allegedly Hacked Teacher Account to Create Student \'Hit List\' (lien direct) | A 13-year-old is currently under investigation after he allegedly used a teacher's credentials to hack into his school district's computing system to steal fellow students' personal information and create a "hit list." [...] | Hack | ||
|
2019-03-21 15:39:05 | An Outage is Bad for Facebook, but Great for PornHub (lien direct) | One site's outage is another site's gain, which is exactly what PornHub discovered during the recent extended outage experienced by Facebook, WhatsApp, and Instagram. [...] | |||
|
2019-03-21 14:21:03 | Safari, Virtualbox, VMware Get Hacked During First Day of Pwn2Own 2019 (lien direct) | During the first day of Pwn2Own Vancouver 2019, contestants were able to successfully hack into the Apple Safari web browser, Oracle's VirtualBox, and VMware Workstation, earning a total of $240,000 in cash awards. [...] | Hack | ||
|
2019-03-21 13:36:04 | Cisco Fixes High-Severity Vulnerabilities in IP Phone 77800, 8800 (lien direct) | Cisco released on Wednesday security patches for vulnerabilities present in its IP Phone 7800 and 8800 series. An attacker could exploit most of the flaws remotely without being authenticated [...] | |||
|
2019-03-21 12:38:02 | Facebook Employees Could Access Unencrypted Passwords for Millions of Users (lien direct) | As part of a seemingly never-ending stream of security blunders, Facebook disclosed today that the passwords of hundreds of millions of Facebook and Instagram users were stored in plain text for years on internal data storage systems. [...] | |||
|
2019-03-21 11:24:01 | Microsoft Defender ATP Brings Enterprise Protection to Macs (lien direct) | Microsoft announced that the Windows Defender Advanced Threat Protection (ATP) enterprise platform is now available for macOS as part of a limited preview starting today and rebranded as Microsoft Defender ATP to reflect its new cross-platform support. [...] | Threat | ||
|
2019-03-21 06:01:00 | Fake CDC Emails Warning of Flu Pandemic Push Ransomware (lien direct) | A new malspam campaign is being conducted that is pretending to be from the Centers for Disease Control and Prevention (CDC) about a new Flu pandemic. Attached to the emails are a malicious attachment that when opened will install the GandCrab v5.2 Ransomware on the target's computer. [...] | Ransomware | ||
|
2019-03-20 19:18:01 | Instagram Testing Anti-Squatting Feature that Locks Old Usernames (lien direct) | Instagram is currently testing a new feature designed to automatically lock usernames for 14 days after the owners switch to a new handle, as discovered by mobile researcher Jane Manchun Wong in an Alpha version of the platform's Android app. [...] | |||
|
2019-03-20 18:02:00 | Putty 0.71 Fixes Weakness That Allows Fake Login Prompts (lien direct) | The latest version of PuTTY SSH and Telnet client adds protection against spoofing the terminal authentication prompt to steal login info. Recently released, the update comes after a 20-month hiatus and fixes a total of eight security issues. [...] | |||
|
2019-03-20 16:31:01 | Lithuanian Pleads Guilty to Stealing $100 Million From Google, Facebook (lien direct) | A Lithuanian man pleaded guilty to wire fraud, aggravated identity theft, and three counts of money laundering, and faces a maximum of 30 years in jail after tricking Google and Facebook employees into wiring over $100 million into bank accounts he controlled. [...] | Guideline | ||
|
2019-03-20 15:48:05 | KB4493132 Update Notifies Windows 7 Users of End of Support Date (lien direct) | A new Windows 7 update called KB4493132 has been released and is used to display notifications that remind users that Windows 7 will reach its end of life starting on January 14th, 2020. These notifications contain a link that goes to a Microsoft page suggesting that users upgrade to Windows 10. [...] | |||
|
2019-03-20 14:25:03 | Windows 10 Insider Preview Build 18362 (19H1) Fixes Autoupdate of Apps (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18362 (19H1) to Insiders in the Fast ring. This was released to offer a quick fix for a bug that was preventing the Microsoft Store from automatically updating installed apps. [...] | |||
|
2019-03-20 13:58:01 | 1,600 Hotel Guests Secretly Live Streamed to 4,000+ Subscribers (lien direct) | Four individuals from South Korea were detained for secretly recording, live streaming, and selling spycam videos of 1600 motel guests between November 24 and March 2, with two of them being arrested and facing a maximum of five years in jail. [...] | |||
|
2019-03-20 13:38:02 | Microsoft Releases Windows 10 Build 18860 (20H1) With Swiftkey Enhancements (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18860 for Insiders in the Skip Ahead ring. This 20H1 build is mostly bug fixes, but does add support for 39 languages in Switfkey. [...] | |||
|
2019-03-20 11:30:00 | Google Fined $1.7 Billion for Anti-Competitive Practices in Online Advertising (lien direct) | Google was fined €1.494.459.000 ($1.698.064.094) or 1.29% of Google's 2018 turnover for abusing its market dominance to block rival advertising companies from displaying search ads on publisher search results pages says a European Commission statement published today. [...] | |||
|
2019-03-20 11:07:03 | Payment Card Thieves Slip into MyPillow and AmeriSleep Bedding Sites (lien direct) | One of the biggest threats facing online retailers are malicious scripts that attackers add to checkout pages in order to steal customer payment information. A new report released today details how the bedding sites MyPillow.com and Amerisleep.com were targeted with these types of of attacks. [...] | |||
|
2019-03-20 09:43:00 | Google Photos Bug Exposed the Location & Time of Your Pictures (lien direct) | A vulnerability in the web version of Google Photos allowed websites to learn a user's location history based on the images they stored in the account. [...] | Vulnerability | ||
|
2019-03-20 05:30:00 | Fake eBay Ad in Google Search Led to Tech Support Scams (lien direct) | A fake advertisement in the Google search results has been running for the past week that looked just like a legitimate ad for eBay. When you clicked on it, though, instead of being brought to the auction site you would be shown an incredibly annoying tech support scam that would try to lock up your browser. [...] | |||
|
2019-03-20 03:27:03 | KDE Connect Kicked From Google Play, Returns Less the App It Was (lien direct) | Google today temporarily removed KDE Connect from Play store because it violated a newly-imposed policy for SMS and Call Logs permissions, which the companion app needs in order to offer a full-featured experience. [...] |
To see everything:
Our RSS (filtrered)
