Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-06-01 06:31:04 |
Around 75% of Open Redis Servers Are Infected With Malware (lien direct) |
The vast majority of Redis servers left open on the Internet without any authentication system in place are most likely harboring malware, an Imperva spokesperson said. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-06-01 03:35:00 |
Sigrun Ransomware Author Decrypting Russian Victims for Free (lien direct) |
The author of the Sigrun Ransomware is providing decryption for Russian victims for free, while asking for a ransom payment of $2,500 in Bitcoin or Dash for everyone else. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-06-01 00:20:00 |
Google Adds New Firmware Integrity Protection System to Pixel Smartphones (lien direct) |
Google has announced today a new security mechanism for Pixel 2 smartphones, for which, in the near future, it would be impossible to update or replace the phone's firmware without entering the user's password. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 21:12:00 |
Windows 10 Insider Build 17682 Released. Here\'s whats new (lien direct) |
Today Microsoft released Windows 10 Insider Preview Build 17682 (Redstone 5) to insiders in the fast and skip ahead rings. This build introduces improvements to Sets, updates to the wireless projection experience, Microsoft Edge improvements, adds RSAT to the optional features, and displays a new post-upgrade screen. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 18:25:02 |
Ticketfly Temporarily Shuts Down to Investigate Hack (lien direct) |
Eventbrite-owned Ticket distribution service Ticketfly has taken its website offline today after a hacker defaced its frontpage and stole a part of its customer database. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 14:37:02 |
Amazon Blocks Australian Shoppers From US Site Because of New Tax (lien direct) |
Amazon announced plans to block Australian users from ordering from its main US store (Amazon.com) and will redirect customers to its local Australian site (Amazon.com.au) instead. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 13:21:05 |
Microsoft Inches Past Google to Become the Third Most Valuable Company (lien direct) |
Microsoft has now officially become the third most valuable company in the world as it pushes Google's parent company Alphabet into fourth place. With Microsoft's current market cap at 766 billion compared to Alphabet's 766.5 billion, Microsoft is able to retain the third place spot at today's market prices. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 11:59:00 |
Intel Core i7-8086K 5Ghz Anniversary Edition CPUs Leaked Online (lien direct) |
For the past few months there have been rumors that Intel would be releasing a special edition Core i7-8086K processor to celebrate the 40th anniversary of the 8086 processor. Yesterday, retailers were found online that were advertising the special processor with a speeds of 4Ghz and 5Ghz. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 10:12:05 |
CSS Is So Overpowered It Can Deanonymize Facebook Users (lien direct) |
Some of the recent additions to the Cascading Style Sheets (CSS) web standard are so powerful that a security researcher has abused them to deanonymize visitors to a demo site and reveal their Facebook usernames, avatars, and if they liked a particular web page of Facebook. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 06:58:01 |
Valve Patches Security Bug That Existed in Steam Client for the Past Ten Years (lien direct) |
Valve developers have recently patched a severe security flaw that affected all versions of the Steam gaming client released in the past ten years.The vulnerability would have allowed an attacker to execute malicious code on any of Steam's 15 million gaming clients. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-31 05:05:00 |
ActiveX Zero-Day Discovered in Recent North Korean Hacks (lien direct) |
A North Korean cyber-espionage group has exploited an ActiveX zero-day to infect South Korean targets with malware or steal data from compromised systems, local media and security researchers have reported. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 18:31:05 |
ProtonMail Launches Free ProtonVPN VPN Service For Macs (lien direct) |
The creators of the encrypted email service, ProtonMail, have released a free version of their ProtonVPN VPN software for macOS. Even though the free version does not contain the full features that you would come to expect from a paid VPN service it is more than capable of obfuscating IP addresses and your location. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 17:35:05 |
Remote Code Execution Vulnerability Disclosed in Windows JScript Component (lien direct) |
A vulnerability exists in the Windows operating system's JScript component that can allow an attacker to execute malicious code on a user's computer. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 14:26:03 |
Hackers Increasingly Targeting Gas Stations & Credit Cards at the Pump (lien direct) |
Three years ago it was revealed that Automatic tank gauges at approximately 5,000 US gas stations were exposed on the Internet, without password protection.  Currently, according to a recent scan, 5,635 gas stations with the same vulnerability have been found. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 13:44:02 |
Bethesda Announces Fallout 76 With a Trailer Full of Clues (lien direct) |
After almost a day long tease showing a humourous Twitch stream of a Vault Boy bobble head and various developer cameos, Bethesda has finally revealed the next Fallout game called "Fallout 76". What little we know about the game is based on the Fallout 76 trailer. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 13:34:05 |
Contractor Exposes Credentials for Universal Music Group\'s IT Infrastructure (lien direct) |
Keys to the Universal Music Group's IT kingdom were made available online this month due to a forgetful IT contractor, Bleeping Computer has learned. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 11:37:02 |
New Backup Cryptomix Ransomware Variant Actively Infecting Users (lien direct) |
A new variant of the Cryptomix Ransomware has been discovered that appends the .BACKUP extension to encrypted files, changes the contact email, and provides a different ransom note message. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 10:55:00 |
Honda India Left Details of 50,000 Customers Exposed on an AWS S3 Server (lien direct) |
Honda Car India has left the personal details of over 50,000 users exposed on two public Amazon S3 buckets, according to a report published today Kromtech Security. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 04:46:00 |
Malicious Git Repository Can Lead to Code Execution on Remote Systems (lien direct) |
The developers behind Git and various companies providing Git repository hosting services have pushed out a fix to patch a dangerous vulnerability in the Git source code versioning software. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-30 00:15:00 |
Hacker Who Worked With FSB Agents in Email Hacks Gets 5 Years in Prison (lien direct) |
A 23-year-old Canadian man who hacked into Yahoo and Gmail accounts on behalf of Russian Secret Service (FSB) agents was sentenced to five years in prison and a fine of $250,000. [...] |
|
Yahoo
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 18:00:04 |
Google Chrome 67 Released for Windows, Mac, and Linux (lien direct) |
Google released earlier today Chrome 67, the latest stable release of its web browser. According to changelogs released with Chrome 67, this version adds support for a Generic Sensors API, improves AR and VR experiences, and deprecates the HTTP-Based Public Key Pinning (HPKP) security feature. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 16:45:00 |
Misconfigured EOS Blockchain Nodes Under Attack (lien direct) |
A mysterious attacker is scanning the Internet for EOS blockchain nodes that are accidentally exposing private keys through an API misconfiguration. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 16:17:05 |
Reboot Your Router to remove VPNFilter? Why It\'s Not Enough (lien direct) |
With the recent report about the VPNFilter router infection, the FBI has advised everyone to reboot their router. This article explains why this is not enough and that more steps are needed to fully remove the infection and protect your device. [...] |
|
VPNFilter
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 13:34:04 |
Microsoft Added An Address Bar to the Registry Editor (lien direct) |
With the release of the April 2018 Update, this has all changed as Microsoft finally introduced an address bar to the Registry Editor that you can paste a Registry key into and automatically open it. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 12:57:05 |
MnuBot Banking Trojan Tries to Hide Behind Seemingly Innocent MSSQL Traffic (lien direct) |
Security researchers have spotted a new banking trojan named MnuBot that uses some atypical tricks to avoid easy detection on compromised hosts. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 10:22:00 |
NPM Fails Worldwide With "ERR! 418 I\'m a Teapot" Error (lien direct) |
Users of the NPMJavaScript package manager were greeted by a weird error yesterday evening, as their consoles and applications spewed a message of "ERR! 418 I'm a teapot" whenever they tried to update or install a new JavaScript/Node.js package. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-29 05:37:01 |
Two Canadian Banks Announce Hacks Over the Weekend (lien direct) |
Two Canadian banks put out statements on Monday announcing separate cyber-incidents affecting their customers. The two are Simplii Financial, a subsidiary of CIBC, and the Bank of Montreal âtwo of Canada's biggest banks. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-28 17:53:04 |
Hacker Steals $1.35 Million From Cryptocurrency Trading App Taylor (lien direct) |
The creators of the Taylor cryptocurrency trading app claim that an unidentified hacker has stolen around $1.35 million worth of Ether from the company's wallets. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-28 14:10:01 |
Cobalt Hacking Group Still Active Despite Leader\'s Arrest (lien direct) |
Despite their leader's arrest in Spain two months ago, the Cobalt hacker group that's specialized in stealing money from banks and financial institutions has remained active, even launching a new campaign. [...] |
Guideline
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-28 08:58:03 |
Ghostery Tries to Comply With GDPR, but Ends Up Violating GDPR in the Process (lien direct) |
The company behind Ghostery, a privacy-focused browser and an ad-blocking browser extension, has apologized for a technical error that occurred last Friday when its staff was sending out GDPR-themed notification emails. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-28 05:22:01 |
Python May Let Security Tools See What Operations the Runtime Is Performing (lien direct) |
A new feature proposal for the Python programming language wants to add "transparency" to the runtime and let security and auditing tools view when Python may be running potentially dangerous operations. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-28 00:15:00 |
Oracle Plans to Drop Java Serialization Support, the Source of Most Security Bugs (lien direct) |
Oracle plans to drop support for data serialization/deserialization from the main body of the Java language, according to Mark Reinhold, chief architect of the Java platform group at Oracle. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-27 12:59:05 |
Windows Start Command Getting A /NewWindow Flag So Apps Don\'t Start in Tabs (lien direct) |
The Windows 10 "Start" command is getting a /newwindow argument that opens applications in a dedicated window rather than as a tab in Sets. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-26 18:35:01 |
FontCode Technique Can Hide Secret Messages Inside Font Glyphs (lien direct) |
Three researchers from Columbia University have created a technique named FontCode that can be used to embed hidden messages inside font glyphs (characters). [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-26 03:00:00 |
Researchers Bypass AMD’s SEV Virtual Machine Encryption (lien direct) |
Four researchers from the Fraunhofer Institute for Applied and Integrated Safety in Munich, Germany have published a research paper this week detailing a method of recovering data that is normally encrypted by AMD's Secure Encrypted Virtualization (SEV), a safety mechanism designed to encrypt the data of virtual machines running on s [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 18:45:00 |
Coca-Cola Suffers Breach at the Hands of Former Employee (lien direct) |
The Coca-Cola company announced a data breach incident this week after a former employee was found in possession of worker data on a personal hard drive. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 18:14:00 |
The Week in Ransomware - May 25th 2018 - Crypton and Small Variants (lien direct) |
This was a very quiet week with very few ransomware variants released and not much news at all, which we are always happy about. The biggest news has been the CryptON campaign that really picked up speed this month. As this ransomware is installed over hacked remote desktop services, everyone needs to tighten their RDP security. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 16:44:00 |
Vermont Entices Remote Workers To Relocate By Paying Their Expenses (lien direct) |
As if Ben and Jerry's, beautiful landscape, and legalized marijuana wasn't enough of an incentive, Vermont has passed legislation called the "New Remote Worker Grant Program" that will pay a remote worker's expenses if they move to Vermont. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 16:02:05 |
BackSwap Banking Trojan Uses Never-Before-Seen Techniques (lien direct) |
Security researchers have discovered a new banking trojan named BackSwap that uses never-before-seen techniques to facilitate the theft of online funds. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 14:40:03 |
Windows 10 Insider Build 17677 Changes Memory Reporting For Suspended UWP Apps (lien direct) |
Today Microsoft released Windows 10 Insider Preview Build 17677 (Redstone 5) to insiders in the fast and skip ahead rings. This build introduces new features to Microsoft Edge, Narrator improvements, Kernel debugging, Mobile Broadband (LTE) driver improvements, and changes to how Task Manager lists memory for suspended UWP apps. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 12:48:05 |
Windows 10 Gains Ground in Enterprise Environments While Windows 7 Crashes Out (lien direct) |
Statistics gathered from over 11 million enterprise users reveal that Windows 10 market share is growing, Windows 7 has been slowly phased out, and, unfortunately, a large number of users are still using outdated operating systems. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 05:08:00 |
Z-Shave Attack Could Impact Over 100 Million IoT Devices (lien direct) |
The Z-Wave wireless communications protocol used for some IoT/smart devices is vulnerable to a downgrade attack that can allow a malicious party to intercept and tamper with traffic between smart devices. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-25 01:00:00 |
Malware Found in the Firmware of 141 Low-Cost Android Devices (lien direct) |
Two years after being ousted, a criminal operation that has been inserting malware in the firmware of low-cost Android devices is still up and running, and has even expanded its reach. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 16:17:01 |
Amazon Alexa Recorded a Conversation and Sent It to a Contact Without Permission (lien direct) |
As much as people enjoy their virtual assistants, sometimes they do things that are downright creepy. Such is the case for a family in Portland who discovered that Amazon Alexa recorded a conversation without permission and sent it to a random person in their contact list. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 14:13:05 |
Microsoft Releases KB4100403 to Fix Windows 10 Intel & Toshiba SSD Issues (lien direct) |
Earlier today, Microsoft released cumulative update KB4100403 that fixes several bugs, including the issues some users reported with Intel and Toshiba solid-state drives (SSDs). [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 11:06:03 |
Firefox 63 to Get Improved Tracking Protection That Blocks In-Browser Miners (lien direct) |
Mozilla developers are working on an improved Tracking Protection system for the Firefox browser that will land in version 63, scheduled for release in mid-October. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 08:15:01 |
Microsoft Will Extend GDPR Privacy Protections to All Users, Not Just Europeans (lien direct) |
Microsoft said this week it plans to extend and enforce the new GDPR privacy protections to all of its customers, not just those based in EU countries. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 06:34:05 |
FBI Takes Control of APT28\'s VPNFilter Botnet (lien direct) |
The US Federal Bureau of Investigation (FBI) has obtained court orders and has taken control of the command and control servers of a massive botnet of over 500,000 devices, known as the VPNFilter botnet. [...] |
|
VPNFilter
APT 28
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 05:24:05 |
Hacker Makes Over $18 Million in Double-Spend Attack on Bitcoin Gold Network (lien direct) |
An unidentified hacker has mounted several "double spend" attacks on the infrastructure of the Bitcoin Gold cryptocurrency and has managed to amass over $18 million worth of BTG (Bitcoin Gold) coins in the process. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-24 00:15:00 |
Verge Cryptocurrency Network Falls Victim to Same Attack Even After Hard-Fork (lien direct) |
A hacker found a way around a previous patch in the Verge cryptocurrency source code and took advantage of the flaw to monopolize mining operations and create Verge coins (XVG) at a rapid pace. [...] |
|
|
|