What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-03-09 13:20:03 | Ransomware Attack on Jackson County Gets Cybercriminals $400,000 (lien direct) | A ransomware attack hit the computers of Jackson County, Georgia, reducing government activity to a crawl until officials decided to pay cybercriminals $400,000 in exchange for the file decryption key. [...] | Ransomware | ||
|
2019-03-09 10:51:00 | Cookie Walls Do Not Comply with the GDPR According to Dutch Watchdog (lien direct) | Cookie walls used by websites, app, and services to force their visitors to accept tracking cookies before being able to gain access do not comply with EU's GDPR said the Dutch Data Protection Authority in a statement published on Thursday. [...] | |||
|
2019-03-08 18:09:03 | Smart Car Alarms Ironically Expose Millions of Vehicles to Remote Hijacking (lien direct) | Aftermarket car alarm systems developed by Pandora and Viper have been found to be vulnerable to remote exploitation, enabling potential attackers to hijack the vehicles they're installed on and to spy on their owners. [...] | |||
|
2019-03-08 15:33:03 | The Week in Ransomware - March 8th 2019 - OpJerusalem, Jokeroo, and More (lien direct) | This week we had some interesting stories, with the two biggest being an alleged new Ransomware-as-a-Service called Jokeroo and the #OpJerusalem attack conducted against Israeli sites. [...] | Ransomware | ||
|
2019-03-08 14:17:05 | Citrix Learns About Internal Network Security Breach from FBI (lien direct) | Citrix found out from the FBI on March 6, 2019, about a security breach into its internal network which led to the cybercriminals behind the attack being able to access and steal a set of business documents. No Citrix products or services were impacted by the attack. [...] | |||
|
2019-03-08 13:35:05 | 1.8 Million Users Attacked by Android Banking Malware, 300% Increase Since 2017 (lien direct) | The number of Android users attacked by banking malware saw an alarming 300% increase in 2018, with 1.8 million of them being impacted by at least one such attack during the last year. [...] | Malware | ||
|
2019-03-08 13:13:05 | (Déjà vu) Windows 10 Insider Preview Build 18353 Released With Sandbox Improvements (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18353 (19H1) to Insiders in the Fast ring. This release is mostly bug fixes, but does include improvements to the Windows Sandbox. [...] | |||
|
2019-03-08 11:51:01 | Insecure Database Leads to Over 800 Million Records Data Breach (lien direct) | An unprotected 140+ GB MongoDB database led to the discovery of a huge collection of 808,539,939 email records, with many of them also containing detailed personally identifiable information (PII). [...] | Data Breach | ||
|
2019-03-07 19:01:03 | Google Advises Upgrade to Windows 10 to Fix Windows 7 Zero-Day Bug (lien direct) | Google recommends users of Windows 7 to give it up and move to Microsoft's latest operating system if they want to keep systems safe from a zero-day vulnerability exploited in the wild. [...] | Vulnerability | ||
|
2019-03-07 17:48:02 | What We Know About Microsoft\'s Chromium-Based Edge Browser (lien direct) | Screenshots for the Chromium-based Microsoft Edge browser were leaked online this week. With these screenshots, others found more information that was not previously confirmed by Microsoft. [...] | |||
|
2019-03-07 17:24:03 | Russia Passes Bill That Outlaws Disrespecting Russian Officials Online (lien direct) | The Russian State Duma passed a new and controversial bill which allows the authorities to jail people who disrespect the government and state officials online. [...] | |||
|
2019-03-07 14:58:01 | Facebook Removes Campaigns Used to Sow Discord in UK and Romania (lien direct) | Facebook stated that they have discovered and removed content related to two coordinated campaigns used to sow political discord in the UK and Romania. Facebook is categorizing these campaigns as inauthentic behavior as they misrepresented themselves and are being used to mislead visitors. [...] | Guideline | ||
|
2019-03-07 14:22:01 | Notepad++ No Longer Code Signed, Dev Won\'t Support Overpriced Cert Industry (lien direct) | The developer of the highly popular open source Notepad++ text and source code editor for Windows announced that the program will drop code signing support starting with the 7.6.4 release. [...] | |||
|
2019-03-07 11:54:02 | New SLUB Backdoor Uses Slack, GitHub as Communication Channels (lien direct) | A new backdoor was observed while using the Github Gist service and the Slack messaging system as communication channels with its masters, as well as targeting a very specific type of victim using a watering hole attack. [...] | |||
|
2019-03-07 09:44:01 | Windows 10 KB4482887 Cumulative Update Causing Major Stuttering in Games (lien direct) | The February KB4482887 Cumulative Update for Windows 10 Version 1809 is causing major graphics performance issues in multiple games, from FPS drops and mouse input lag to severe stuttering and lag spikes according to numerous user reports. [...] | |||
|
2019-03-07 06:51:03 | FTC Issue PSA on Social Security Number Scams (lien direct) | Scammers pretending to be employees of the Social Security Administrations (SSA) have caused last year losses of at least $16.6 million. [...] | |||
|
2019-03-07 04:48:05 | #Opfail: Phisher Attaches Powershell Exec Instead of Malware (lien direct) | The security community has seen its share of mistakes made by cybercriminals, and quickly took advantage of them to stop the threat. But some of them have reached blooper level. [...] | Malware | ||
|
2019-03-06 20:36:03 | 12,449 Data Breaches Confirmed in 2018, a 424% Increase Over the Previous Year (lien direct) | The number of confirmed data breaches during 2018 reached 12,449, a 424% increase when compared with 2017, 47% of all compromised identity records having been exposed in breaches experienced by organizations from the United States and China. [...] | |||
|
2019-03-06 17:47:02 | Unpatched UPnP-Enabled Devices Left Exposed to Attacks (lien direct) | Outdated software on UPnP-enabled devices exposes them to attacks designed to exploit a wide range of vulnerabilities found in UPnP libraries used by various daemons and servers reachable over the Internet. [...] | |||
|
2019-03-06 15:11:02 | StealthWorker Malware Uses Windows, Linux Bots to Hack Websites (lien direct) | Hackers are running a new campaign which drops the StealthWorker brute-force malware on Windows and Linux machines that end up being used to brute force other computers in a series of distributed brute force attacks. [...] | Malware Hack | ||
|
2019-03-06 14:42:05 | Microsoft Releases Windows 10 Build 18850 (20H1) to Skip Ahead Users (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18850 for Insiders in the Skip Ahead ring. This 20H1 build includes a new version of Snip and Sketch (v10.1901.10521.0) and various bug fixes [...] | ★★★ | ||
|
2019-03-06 14:03:03 | Microsoft Open Sources the Windows 10 Calculator on GitHub (lien direct) | Have you ever wanted to know exactly how the Windows 10 Calculator works or want to extend its functionality? Now you can, as Microsoft has open-sourced their Windows Calculator so that anyone can play with it. [...] | |||
|
2019-03-06 12:58:05 | Google Chrome Update Patches Zero-Day Actively Exploited in the Wild (lien direct) | Google updated the release announcement for the Chrome web browser version 72.0.3626.121 with a warning that the 0day patched in the release is being actively exploited in the wild. [...] | ★★★ | ||
|
2019-03-06 10:35:01 | NSA\'s Ghidra Reverse Engineering Framework Stirs Up Malware Researchers (lien direct) | The National Security Agency released a free, public version of Ghidra, a set of tools developed internally for software reverse engineering. The agency will also release Ghidra's source code, allowing users to improve the framework's feature set and turn it into a more effective tool. [...] | Malware | ||
|
2019-03-06 08:00:00 | Hackers Revive Microsoft Office Equation Editor Exploit (lien direct) | Hackers used specially-crafted Microsoft Word documents during the last few months to abuse an Integer Overflow bug that helped them bypass sandbox and anti-malware solutions and exploit the Microsoft Office Equation Editor vulnerability patched 15 months ago. [...] | Vulnerability | ||
|
2019-03-06 03:33:03 | Adware Apps in Google Play Simulate Uninstall for Persistence (lien direct) | Three adware apps discovered in Google Play use a special trick to ensure they stay on the victim device for a longer time. They pose as camera-related utilities and have recorded over 700,000 installations, combined. [...] | |||
|
2019-03-05 19:15:02 | Cloudflare Deploys Firewall Rule to Block New Drupal Exploits (lien direct) | Exploitation attempts of a highly critical vulnerability discovered in the Drupal content management software (CMS) on February 20 were blocked by Cloudfare using Web Application Firewall (WAF) rules designed to protect its customers' websites from being compromised. [...] | |||
|
2019-03-05 17:45:00 | Malicious Mobile Software Attacks Almost Doubled in 2018 (lien direct) | Mobile users have been targeted by almost twice as many attacks using malicious software during 2018, going up from 66.4 million in 2017 events detected during 2017 to 116.5 million until the end of last year according to a report by Kaspersky Lab. [...] | |||
|
2019-03-05 17:16:01 | Jokeroo Ransomware-as-a-Service Offers Multiple Membership Packages (lien direct) | A new Ransomware-as-a-Service called Jokeroo is being promoted on underground hacking sites and via Twitter that allows affiliates to allegedly gain access to a fully functional ransomware and payment server. [...] | |||
|
2019-03-05 13:33:05 | Microsoft Releases Windows 10 Build 18351 (19H1) With Only Bug Fixes (lien direct) | Microsoft has released Windows 10 Insider Preview Build 18351 for Insiders in the Fast ring. As the 19H1 builds move closer to being released, we should expect to see only bug fixes and no new major features being added to this development branch. [...] | |||
|
2019-03-05 13:20:00 | Screenshots of Microsoft\'s Chromium-Based Edge Browser Leaked Online (lien direct) | Screenshots of Microsoft's in-house Edge Chromium-based web browser have leaked online, showing the large amounts of user interface DNA the two browsers share with each other and providing details on a future Microsoft Edge Store. [...] | |||
|
2019-03-05 10:48:03 | Boost Windows 10 Performance with Retpoline Spectre Mitigation (lien direct) | If you are using older Intel processors or AMD processors, you can boost the performance of Windows 10 by enabling the Retpoline Spectre mitigations that were recently ported to Windows 10 October 2018 Update build 1809. [...] | |||
|
2019-03-05 04:30:00 | CryptoMix Clop Ransomware Says It\'s Targeting Networks, Not Computers (lien direct) | A new CryptoMix Ransomware variant has been discovered that appends the .CLOP or .CIOP extension to encrypted files. Of particular interest, is that this variant is now indicating that the attackers are targeting entire networks rather than individual computers. [...] | Ransomware | ★★★ | |
|
2019-03-04 20:37:05 | Vulnerable Docker Hosts Actively Abused in Cryptojacking Campaigns (lien direct) | Hundreds of vulnerable and exposed Docker hosts are being abused in cryptojacking campaigns after being compromised with the help of exploits designed to take advantage of the CVE-2019-5736 runc vulnerability discovered last month. [...] | Vulnerability | ||
|
2019-03-04 18:33:01 | Windows 10 May Soon Run on the Nintendo Switch (lien direct) | Using a custom UEFI firmware, a Windows driver and UEFI developer is getting closer to installing Windows 10 on a Nintendo Switch. [...] | |||
|
2019-03-04 18:20:05 | Microsoft Sees 250% Phishing Increase, Malware Decline by 34% (lien direct) | Phishing attacks have seen an impressive 250% increase between January and December 2018, with attackers moving to multiple points of attacks during the same campaign, switching between malicious URLs, domains, and malware ridden attachments. [...] | Malware | ||
|
2019-03-04 16:48:02 | #OpJerusalem Targeted Israeli Windows Users with JCry Ransomware (lien direct) | Over the weekend, hundreds of popular Israeli sites were targeted by an attack called #OpJerusalem whose goal was to infect Windows users with the JCry ransomware. Thankfully, a mistake in the attacker's code caused the page to show a defacement rather than causing the ransomware to be distributed. [...] | Ransomware | ||
|
2019-03-04 16:01:00 | Alphabet\'s Backstory Helps Enterprises Hunt Down Security Threats (lien direct) | Alphabet company Chronicle announced the release of Backstory, a cloud-powered data analysis platform designed to allow security professionals to analyze their enterprise's internal telemetry data to detect potential cyber threats. [...] | |||
|
2019-03-04 14:13:05 | Windows 10 IoT Core Test Interface Lets Attackers Take Over Devices (lien direct) | Embedded and IoT cable-connected devices running Microsoft's Windows 10 IoT Core are exposed to remote command execution attacks with SYSTEM privileges that require no authentication, with the help of an open source RAT tool released on GitHub. [...] | Tool | ||
|
2019-03-04 03:06:00 | Open MongoDB Databases Expose Chinese Surveillance Data (lien direct) | 18 MongoDB databases with information generated by accounts on several online social services in China have been sitting on the web ready for plucking by anyone knowing where to look. [...] | |||
|
2019-03-03 23:30:04 | Op \'Sharpshooter\' Connected to North Korea\'s Lazarus Group (lien direct) | After analyzing a command and control (C2) server used in the global cyber-espionage campaign dubbed 'Sharpshooter', security researcher found more evidence linking it to North Korea's Lazarus threat actor. [...] | Threat | APT 38 | |
|
2019-03-03 12:36:03 | Windows 10 Update KB4482887 Released With Performance Fix for Spectre Bug (lien direct) | Microsoft has released the Windows 10 KB4482887 cumulative update for build 1809 that includes numerous fixes including Retpoline Spectre mitigation, a fix for an annoying Action Center bug, and numerous other bug fixes. [...] | |||
|
2019-03-02 13:56:03 | Ransomware Pretends to Be Proton Security Team Securing Data From Hackers (lien direct) | A recent variant of the GarrantyDecrypt ransomware has been found that pretends to be from the security team for Proton Technologies, the company behind ProtonMail and ProtonVPN. [...] | Ransomware | ||
|
2019-03-01 18:45:01 | The Week in Ransomware - March 1st 2019 - Cr1ptT0r, B0r0nt0K, and More (lien direct) | Over the past two weeks, there has been some interesting ransomware news regarding a new GandCrab decryptor and two new ransomware infections. [...] | Ransomware | ||
|
2019-03-01 18:30:04 | Update ColdFusion Now, Critical Zero-Day Bug Exploited in the Wild (lien direct) | Adobe today released emergency updates that fix a critical vulnerability for the ColdFusion web app development platform. The bug can lead to arbitrary code execution and has been exploited in the wild. [...] | Vulnerability Guideline | ||
|
2019-03-01 15:54:05 | Phisher Announces More Attacks Against Hedge Funds and Financial Firms (lien direct) | A new phishing campaign called "Beyond the Grave" targeted international hedge funds on January 9th, 2019. In a statement posted to BleepingComputer, the attackers have stated that they will continue to target banking and financial institutions in the future. [...] | |||
|
2019-03-01 13:56:04 | Chrome and Firefox Can Take Screenshots of Sites From the Command Line (lien direct) | Both Chrome and Firefox have the ability to take screenshots of web sites directly from the command line. This allows you to create scripts or scheduled tasks that automatically take screenshots of web sites at various intervals. [...] | |||
|
2019-03-01 11:28:01 | First Hacker Millionaire on HackerOne (lien direct) | At 19, Santiago Lopez is already counting earnings totaling over USD 1 million from reporting security vulnerabilities through vulnerability coordination and bug bounty program HackerOne. He's the first to make this kind of money on the platform. [...] | Vulnerability | ||
|
2019-02-28 19:25:02 | Kaspersky AV Having Certificate Conflicts with Google Chromecast (lien direct) | Users of Kaspersky Antivirus have been complaining since the end of January that when they open Chrome Kaspersky displays numerous alerts stating that there is a problem with a self-signed certificate. It turns out this is being caused by a conflict with a Chromecast device on their network that they may not know even existed. [...] | |||
|
2019-02-28 18:28:02 | Wireshark 3 Released with New Npcap Windows Packet Capturing Driver (lien direct) | Wireshark 3.0.0 was released today, replacing the no longer maintained WinPcap packet capture library with the Npcap packet sniffing and sending library for Windows, created by Gordon Lyon the founder of the Nmap project. [...] |
To see everything:
Our RSS (filtrered)
