What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-02-20 15:25:03 | JD Finance Android App Caught Storing Screenshots With Banking Info (lien direct) | JD Finance apologized to the users of its Android application on Sunday after one customer found out that screenshots taken of his account on the China Merchants Bank app were being added to the cache of the JD Finance app while it was running in the background. [...] | |||
|
2019-02-20 13:13:03 | Formjacking Surpasses Ransomware and Cryptojacking as Top Threat of 2018 (lien direct) | A new year in review report from Symantec shows that formjacking accompanied by supply chain attacks were the fastest growing threats of 2018, while living-off-the-land (LotL) attacks saw a large boost in adoption from threat actors, with PowerShell scripts usage, for example, seeing a formidable 1000% increase. [...] | Ransomware Threat | ||
|
2019-02-20 06:01:01 | Windows 10 Cumulative Update Build 17134.619 Released With Fixes (lien direct) | Windows 10 April 2018 Update Build 17134.619 is now rolling out to the general public with a bunch of new fixes and improvements. Windows 10 KB4487029 (Build 17134.619) includes fixes for Internet Explorer and other core components. [...] | |||
|
2019-02-20 03:00:00 | Flaw in mIRC App Allows Attackers to Execute Commands Remotely (lien direct) | A vulnerability was discovered in the mIRC application that could allow attackers to execute commands, such as the downloading and installation of malware, on a vulnerable computer. [...] | Vulnerability | ||
|
2019-02-19 18:10:00 | Cards Used at 137 Restaurants Exposed by Point-of-Sale Breach (lien direct) | North Country Business Products point-of-sale and security solutions provider with roughly 6500 customers around the Midwest has disclosed a data breach which led to the exposure of payment information for clients who used their credit and debit cards at 137 restaurants. [...] | Data Breach | ||
|
2019-02-19 16:15:01 | GitHub Updates Bug Bounty Program with Expanded Scope, Higher Rewards (lien direct) | To mark the fifth year of its Security Bug Bounty program, GitHub announced a number of updates, including an expanded scope with more GitHub products covered, increased reward amounts, and new Legal Safe Harbor terms for full legal protection for researchers. [...] | |||
|
2019-02-19 15:04:02 | Ukraine Announces Joint Exercises with EU to Fend Off Russian Cyber Threats (lien direct) | Ukraine will organize a number of joint exercises in the near future with the European Union (EU) to develop appropriate response models to possible Russian cyber threats designed to interfere in Ukrainian presidential elections that will be held on March 31 [...] | |||
|
2019-02-19 13:32:00 | North Korean APT Lazarus Targets Russian Entities with KEYMARBLE Backdoor (lien direct) | Bluenoroff, a subdivision of the North Korean sponsored APT group Lazarus, recently switched its sights to Russian entities as unveiled by a newly discovered campaign which uses malicious Office documents specifically crafted to target Russian organizations. [...] | APT 38 | ||
|
2019-02-19 11:17:01 | (Déjà vu) GandCrab Decrypter Available for v5.1, New 5.2 Variant Already Out (lien direct) | A free file decryption tool is available for users whose computers got infected with the latest confirmed versions of GandCrab. It can unlock data encrypted by versions 4 through 5.1 of the malware, and some earlier releases of the threat. [...] | Tool | ||
|
2019-02-19 11:17:01 | (Déjà vu) GandCrab Decrypter Available for v5.1, New Variant Already Out (lien direct) | A free file decryption tool is available for users whose computers got infected with the latest confirmed versions of GandCrab. It can unlock data encrypted by versions 4 through 5.1 of the malware, and some earlier releases of the threat. [...] | Tool | ||
|
2019-02-19 03:30:00 | Linux Subsystem Files Accessible via Explorer in Future Windows 10 Releases (lien direct) | The just-released Windows 10 20H1 Build to the Skip Ahead ring comes with a new feature designed to allow Insiders to access the Windows Subsystem for Linux (WSL) filesystem using the Windows Explorer. [...] | |||
|
2019-02-19 01:00:00 | Hackers Use Compromised Banks as Starting Points for Phishing Attacks (lien direct) | Cybercriminals attacking banks and financial organizations use their foothold in a compromised infrastructure to gain access to similar targets in other regions or countries. [...] | |||
|
2019-02-18 18:32:05 | Windows 7 and Server 2008 Updates to Require SHA-2 Support Starting July (lien direct) | Microsoft announced on its support website that future Windows 7 and Windows Server 2008 updates will require SHA-2 code signing support to be installed starting with July 16, 2019. [...] | |||
|
2019-02-18 15:55:02 | Multi-Stage Rietspoof Malware Drops Multiple Malicious Payloads (lien direct) | Rietspoof is a new malware family which uses a multi-stage delivery system, is designed to drop multiple payloads on the systems it infects, and that offers very little to no information on what audience it targets. [...] | Malware | ||
|
2019-02-18 13:21:03 | State Actor Behind Parliament Breach Says Australian Prime Minister (lien direct) | The computer network of Australia's Federal Parliament has been breached in a cyber attack which targeted the country's major political parties and carried out by a "sophisticated state actor" according to Prime Minister Scott Morrison. [...] | |||
|
2019-02-18 10:33:05 | 2.7 Million Health-Related Calls, Sensitive Info Exposed for Six Years (lien direct) | A server used to store real-time recordings of phone calls made to the 1177 Swedish Healthcare Guide service for health care information was found completely exposed to the Internet, with no user or password to protect it. [...] | |||
|
2019-02-17 11:45:01 | Mozilla Adding a Picture-in-Picture Mode to Firefox (lien direct) | Like Chrome, Mozilla Firefox is adding a Picture-in-Picture Mode that allows users to pop the video out of the web page in a stay on top video that they can watch while using other applications. [...] | |||
|
2019-02-16 14:36:01 | Google to Let you Link Directly to a Word or Phrase in Chrome (lien direct) | Chrome is adding a new feature to Chrome that lets you link directly to a word or phrase without the need of special markup on the web page. This will make it much easier to share a section of a page that is relevant to the person you are sending it to, rather than having them read the entire page. [...] | |||
|
2019-02-16 10:30:04 | The Week in Ransomware - February 15th 2019 - Attack on MSPs (lien direct) | It has been a really dead week with ransomware, which we are always happy to see. Not much new variants released, other than the standard ones such as Matrix and Dharma. The biggest news this week has been GandCrab affiliates targeting vulnerabilities in MSP software that allows them to infect all the clients they manage. [...] | Ransomware | ||
|
2019-02-15 18:57:05 | Apple Requiring 2-Factor Authentication on Developer Account Holders (lien direct) | Users who are part of the Apple Developer program have started receiving emails that state they need to add 2-factor authentication to their accounts by February 27th, 2019. Otherwise, they will be locked out of their Developer accounts and be unable to access their Certificates, Identifiers, and Profiles. [...] | |||
|
2019-02-15 18:12:01 | Google Fixing Chrome API to Prevent Incognito Mode Detection (lien direct) | When browsing the web with Google Chrome, some sites are using a method to determine if a visitor is in a regular browsing session or in incognito mode. As this can be considered a breach in privacy, Google will be changing how a particular API works so that web sites can no longer utilize this technique. [...] | |||
|
2019-02-15 17:44:00 | Brokerage Firms Warned by FINRA Regulator of New Phishing Attack (lien direct) | The Financial Industry Regulatory Authority (FINRA) has issued an information notice to brokerage firms regarding an ongoing phishing attack which currently targets member firms with malicious spam e-mails. [...] | Spam | ||
|
2019-02-15 13:16:02 | Ai-Powered Website Generates Realistic Human Faces On the Spot (lien direct) | A website created by Philip Wang, an Uber software engineer, and hosted at thispersondoesnotexist.com allows its visitors to generate realistic looking human faces of people that do NOT actually exist each time they hit the Refresh button. [...] | Uber | ||
|
2019-02-15 11:52:03 | 18,000 Android Apps Track Users by Violating Advertising ID Policies (lien direct) | 18K Android apps with tens or hundreds of millions of installs have been found to violate Google's Advertising ID policy guidance by collecting persistent device identifiers such as serial numbers, IMEI, WiFi MAC addresses, SIM card serial numbers, and sending them to mobile advertising related domains alongside ad IDs. [...] | |||
|
2019-02-15 07:15:04 | Cryptojacking Coinhive Miners Land on the Microsoft Store For the First Time (lien direct) | A batch of eight potentially unwanted applications (PUAs) were found on the Microsoft Store dropping malicious Monero (XMR) Coinhive cryptomining scripts, delivered with the help of Google's legitimate Google Tag Manager (GTM) library. [...] | |||
|
2019-02-14 19:31:02 | Collection of 127 Million Stolen Accounts Up for Sale on the Dark Web (lien direct) | A batch of 127 million records stolen in data breaches affecting eight companies was put up for sale on the Dream Market marketplace by a seller who goes by the name of "gnosticplayers" and asking the equivalent of $14,500 in bitcoin for the entire collection. [...] | |||
|
2019-02-14 17:48:04 | Google Rejected Roughly 55% More Android Apps in 2018, Still Not Enough (lien direct) | As revealed by Google in its 2018 Google Play Store yearly review, the company has rejected 55% more Android applications than it did in 2017, and also increased the app suspension rate by approximately 66 percent year-over-year. [...] | |||
|
2019-02-14 15:15:01 | Coffee Meets Bagel Dating App Discloses Data Breach on Valentine\'s Day (lien direct) | As a Valentine's Day gift to all its users, online dating app Coffee Meets Bagel disclosed a data breach that contained user's email addresses and names. This data breach was discovered as part of a compilation of leaked credentials that was being sold on criminal marketplaces. [...] | Data Breach | ||
|
2019-02-14 14:59:00 | Emotet Uses Camouflaged Malicious Macros to Avoid Antivirus Detection (lien direct) | A new Emotet Trojan variant has been observed in the wild with the added ability to hide from anti-malware software by embedding malicious macros used to drop the main payload inside XML files disguised as Word documents. [...] | |||
|
2019-02-14 13:44:00 | Microsoft Releases First Windows 10 20H1 Build 18836 To Skip Ahead Users (lien direct) | Microsoft has released the Windows 10 Insider Preview Build 18836, which is the first insider build in the 20H1 development branch. This build is available to Insiders in the Skip Ahead ring and is just a general bug fix without any new features. [...] | |||
|
2019-02-14 11:53:01 | Ransomware Attacks Target MSPs to Mass-Infect Customers (lien direct) | Ransomware distributors have started to target managed service providers (MSPs) in order to mass-infect all of their clients in a single attack. Recent reports indicate that multiple MSPs have been hacked recently, which has led to hundreds, if not thousands, of clients being infected with the GandCrab Ransomware. [...] | Ransomware | ||
|
2019-02-14 10:08:03 | Mozilla Adds Persistent Private Browsing to Firefox for iOS (lien direct) | Mozilla announced the addition of persistent private browsing in the Firefox web browser for iOS which will allow users to stay in Private Browsing mode at all times, even between browsing sessions. [...] | ★★★★ | ||
|
2019-02-13 18:19:01 | South Korea is Censoring the Internet by Snooping on SNI Traffic (lien direct) | South Korea has been blocking HTTP websites that are on their censor list for a while now and they have recently started using SNI filtering to block their counterparts served over HTTPS. [...] | |||
|
2019-02-13 14:26:05 | Shlayer Malware Disables macOS Gatekeeper to Run Unsigned Payloads (lien direct) | A new variant of the multi-stage Shlayer malware known to target macOS users has been observed in the wild, now being capable to escalate privileges using a two-year-old technique and to disable the Gatekeeper protection mechanism to run unsigned second stage payloads. [...] | Malware | ||
|
2019-02-13 11:07:01 | OpenOffice Zero-Day Code Execution Flaw Gets Free Micropatch (lien direct) | A micropatch is now available for a zero-day OpenOffice code execution vulnerability which can be triggered via automated macro execution following a mouseover event when viewing a maliciously crafted ODT document. [...] | Vulnerability | ||
|
2019-02-13 09:10:03 | Cisco Network Assurance Engine Bug Allows Login with Old Passwords (lien direct) | Cisco has issue a security advisory for Cisco Network Assurance Engine (NAE) Release 3.0(1) for a bug that causes password changes done via NAE to not be synchronized to the CLI of the associated device. This would allow a user to be able to gain access to a device via its CLI using the previous password. [...] | |||
|
2019-02-13 08:00:00 | New Astaroth Trojan Variant Exploits Anti-Malware Software to Steal Info (lien direct) | A new Astaroth Trojan campaign targeting Brazil and European countries is currently exploiting the Avast antivirus and security software developed by GAS Tecnologia to steal information and load malicious modules. [...] | |||
|
2019-02-13 04:15:00 | Canonical Snapd Vulnerability Gives Root Access in Linux (lien direct) | A researcher has discovered a new vulnerability called "Dirty_Sock" in the REST API for Canonical's snapd daemon that can allow attackers to gain root access on Linux machines. To illustrate how these vulnerabilities can be exploited, the researcher has released to PoCs that use different methods to elevate privileges. [...] | Vulnerability | ||
|
2019-02-13 00:01:00 | The Scarlet Widow Gang Entraps Victims Using Romance Scams (lien direct) | We often hear about sextortion, business email compromise (BEC), and inheritance scams, but the often overlooked "Romance Scams" could be the most insidious of them all. Not only do victims lose money, but the emotional entanglement ultimately leads to heartbreak. [...] | Guideline | ||
|
2019-02-12 20:00:00 | Microsoft Releases the February 2019 Updates for Office (lien direct) | Microsoft released the February 2019 Office Update containing a list of 19 security updates and 28 non-security updates, while also updating the Click-To-Run Office 2013 version to 15.0.5111.1001 in the process. [...] | |||
|
2019-02-12 17:29:05 | Weird Phishing Campaign Uses Links With Almost 1,000 Characters (lien direct) | A targeted phishing campaign is underway that states your email has been blacklisted and then asks you to confirm it by entering your credentials. For some reason, this campaign is using phishing links that can contain almost 1,000 characters, which is enough to make anyone suspicious. [...] | |||
|
2019-02-12 15:44:05 | Windows 7 KB4486563 and Windows 8.1 KB4487000 Released (lien direct) | The February 2019 patches are also rolling out to PCs with Windows 7 and 8.1. The new monthly rollups for Windows 7 and Windows 8.1 comes with general security fixes and improvements. [...] | |||
|
2019-02-12 15:18:01 | Microsoft February 2019 Patch Tuesday Includes Fixes for 70 Vulnerabilities (lien direct) | Today is Microsoft's February 2019 Patch Tuesday, which means it is time to get those security updates installed. Included in this month's security updates is one for an actively exploited Internet Explorer vulnerability and another remote code execution vulnerability in DHCP. [...] | Vulnerability | ||
|
2019-02-12 14:48:03 | Microsoft Patches PrivExchange Vulnerability in February Quarterly Updates (lien direct) | Microsoft patched the PrivExchange privilege escalation vulnerability which affected Microsoft Exchange Server 2010 and newer installations where Exchange Web Services (EWS) and Push Notifications were enabled. [...] | Vulnerability | ||
|
2019-02-12 13:58:00 | Windows 10 February 2019 Cumulative Updates Released With Fixes (lien direct) | It's Patch Tuesday and new cumulative updates are rolling out! The focus of Windows 10's February 2019 cumulative update is on addressing the security issues and the general issues reported in the past few weeks. [...] | |||
|
2019-02-12 13:28:01 | TrickBot Banking Trojan Now Steals RDP, VNC, and PuTTY Credentials (lien direct) | The infamous Trickbot banking Trojan's password stealer module has been recently upgraded to grab credentials used to authenticate to remote servers using VNC, PuTTY, and Remote Desktop Protocol (RDP).. [...] | |||
|
2019-02-12 12:53:02 | Dunkin\' Donuts Issues Alert for Credential Stuffing Attack, Passwords Reset (lien direct) | Dunkin' Donuts has issued a security notification alerting users of their DD Perks reward program that their accounts may have been involved in a credential stuffing attack. This attack may have allowed third-parties to gain access to some of their account information. [...] | |||
|
2019-02-12 10:59:02 | Windows Malware Runs on Macs, Bypasses Gatekeeper to Target Software Pirates (lien direct) | If it wasn't already obvious, pirating software is a risky business and this was again proven by a set of malicious executables targeting macOS users with info stealers and adware, and compiled as Windows EXE binaries with the help of the open source Mono framework. [...] | Malware | ||
|
2019-02-12 09:26:01 | Adobe Releases Security Fixes for Flash Player, ColdFusion, and More (lien direct) | Adobe has published their monthly Patch Tuesday updates for the month of February 2019. These updates are for Flash Player, Creative Cloud Desktop Application, and ColdFusion. [...] | |||
|
2019-02-12 09:06:00 | Hackers Wipe VFEmail Servers, May Shut Down After Catastrophic Data Loss (lien direct) | The U.S. servers of privacy-focused e-mail provider VFEmail were hacked into on February 11 and all the data was destroyed, on both the main and the backup systems. According to VFEmail's owner, the hackers did not leave a ransom note and, given the extent of the destruction, the service will most likely go offline to never return. [...] |
To see everything:
Our RSS (filtrered)
