Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-06 16:10:03 |
Russia Blocks 50 VPNs and Proxy Services Providing Access to Telegram (lien direct) |
Roskomnadzor, Russia's telecommunications watchdog, blocked last week, on Thursday, May 3, 2018, access to over 50 VPN and proxy services. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-05 18:46:04 |
Chrome Users Reporting Freezes & Timeouts After Windows 10 April Update (lien direct) |
Windows 10 users who have installed the April 2018 Update (build 1803)Â are reporting freezes or connection problems when using Chrome or Chromium based applications. When these freezes occur, it turns the screen black and Windows becomes completely unresponsive until the user reboots the computer or restarts their graphic driver. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-05 12:13:02 |
New Service Blocks EU Users So Companies Can Save Thousands on GDPR Compliance (lien direct) |
A new service called GDPR Shield is making the rounds this week and for all the wrong reasons. The service, advertised as a piece of JavaScript that webmasters embed on their sites, blocks EU-based users from accessing a website, just so the parent company won't have to deal with GDPR compliance. [...] |
|
APT 19
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-05 11:42:00 |
Knox County Tennessee Election Site Hit With DDOS Attack During Primary (lien direct) |
On Tuesday the web site used to display the voting results for the Knox County, Tennessee mayoral primary was taken offline by a distributed denial-of-service attack. This prevented voters from being able to access the site and view the results of the primary. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-04 19:43:03 |
Firefox 60 to Show Sponsored Content for US Users (lien direct) |
Mozilla announced this week plans to show sponsored content to US users starting with the release of Firefox 60. The sponsored content will appear as suggested stories inside Firefox New Tab page. The stories will be pulled from Pocket's recommendation list. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-04 17:56:05 |
Google Says Chrome Now Blocks "About Half of Unwanted Autoplays" (lien direct) |
Google said this week that Chrome 66 now blocks "about half" of the videos that feature auto-playing sound. Engineers added this feature in Chrome 66, released in mid-April. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-04 15:15:00 |
Kaspersky Details New ZooPark APT Targeting Android Users (lien direct) |
Security researchers from Kaspersky Lab published yesterday a report detailing the operations of a new cyber-espionage group that's been active in the Middle East region for the past three years. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-04 14:14:01 |
GandCrab Version 3 Released With Autorun Feature and Desktop Background (lien direct) |
GandCrab version 3 was released earlier this week with a few noticeable changes. The most noticeable change is the addition of a desktop background and an autorun that causes the ransomware to start automatically when you reboot the computer. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-04 04:18:04 |
Vulnerabilities Affecting Over One Million Dasan GPON Routers Are Now Under Attack (lien direct) |
Two vulnerabilities affecting over one million routers, and disclosed earlier this week, are now under attack by botnet herders, who are trying to gather the vulnerable devices under their control. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-04 01:00:00 |
Chinese Cyberspies Appear to be Preparing Supply-Chain Attacks (lien direct) |
Chinese cyberspies are evolving their tactics, focusing on IT staffers, relying more and more on spear-phishing instead of malware, and gathering code signing certificates from hacked software companies in the preparation of future supply-chain attacks. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 18:50:00 |
Windows Insider Build 17661 Introduces a Modern Screenshot Feature (lien direct) |
Today Microsoft released Windows 10 Insider Preview Build 17661 to insiders in the fast and skip-ahead rings. In this build, Microsoft renamed Windows Defender Security Center to Windows Security, introduced a new screenshot feature, and continued with the Sets experiment. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 17:46:02 |
Microsoft Released Hyper-V Debug Symbols for the Hyper-V Bug Bounty Program (lien direct) |
Microsoft has released debugging symbols for many of the core components of Hyper-V. Using these debugging symbols, security researchers can analyze them for vulnerabilities in order to submit them to the Hyper-V bug bounty program. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 17:15:05 |
Twitter Admits Recording Plaintext Passwords in Internal Logs, Just Like GitHub (lien direct) |
Following an internal audit, Twitter admitted today that due to a bug in its password storage mechanism it accidentally logged some users' passwords in internal logs. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 14:35:04 |
Facebook\'s Phishing Detection Tool Now Recognizes Homograph Attacks (lien direct) |
Facebook has updated a phishing detection toolkit it developed two years ago. The update now allows webmasters who sign up for the tool to detect homograph (Unicode-based lookalike) domains created for their websites. [...] |
|
APT 19
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 12:25:04 |
GLitch Technique Enrolls Graphics Cards in Rowhammer Attacks on Android Phones (lien direct) |
A team of academics from the Vrije University in Amsterdam has developed a new hacking technique that uses embedded graphics processing units (GPUs) and support for WebGL to carry out a Rowhammer attack. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 06:15:04 |
Somebody Tried to Hide a Backdoor in a Popular JavaScript npm Package (lien direct) |
The Node Package Manager (npm) team avoided a disaster today when it discovered and blocked the distribution of a cleverly hidden backdoor mechanism inside a popular âalbeit deprecatedâ JavaScript package. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-03 00:30:00 |
Pretty Serious Security Flaw Fixed in Popular ICS Software (lien direct) |
Schneider Electric, one of the largest makers of hardware and software products used across critical industry verticals has patched a vulnerability in two software products âInduSoft Web Studio and InTouch Machine Edition. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 17:26:03 |
Microsoft Is No Longer Providing Offline MSI Symbol Packages (lien direct) |
Microsoft has stated that they are no longer offering offline symbol packages as a downloadable MSI. For those who need to download symbols to debug their applications or Windows, you will now need to connect directly to their symbol server or use the symchk utility to download them. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 15:46:01 |
Newark\'s New Mass Surveillance Program Criticized by Civil Liberties Org (lien direct) |
A network of surveillance cameras in various locations throughout Newark, NJ will enable people to monitor these locations for criminal activity. The program, the Citizen Virtual Patrol, has been described by local leaders as "a block watch on steroids". [...] |
Guideline
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 14:27:01 |
(Déjà vu) Microsoft Working on a Fix for Windows 10 Meltdown Patch Bypass (lien direct) |
Microsoft's patches for the Meltdown vulnerability have had a fatal flaw all these past months, according to Alex Ionescu, a security researcher with cyber-security firm Crowdstrike. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 14:27:01 |
Researcher Finds a Way to Bypass Meltdown Patches on Windows 10 (lien direct) |
Microsoft's patches for the Meltdown vulnerability have had a fatal flaw all these past months, according to Alex Ionescu, a security researcher with cyber-security firm Crowdstrike. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 13:31:02 |
VirusTotal Releases VTZilla 2.0 Extension For Firefox Quantum (lien direct) |
VirusTotal has released version 2.0 of their VTZilla Firefox extension so that it now supports Mozilla Quantum and includes additional features. With this release, VirusTotal added new features such as the ability to scan downloaded files automatically, scan links or pages, or enter a hash to pull up an existing report. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 10:52:02 |
New MassMiner Malware Targets Web Servers With an Assortment of Exploits (lien direct) |
Security researchers have detected a new wave of cryptocurrency-mining malware infecting servers across the web, and this one is using multiple exploits to gain access to vulnerable and unpatched systems to install a Monero miner. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 09:22:05 |
DDoS Attacks Go Down 60% Across Europe Following WebStresser\'s Takedown (lien direct) |
Link11, a DDoS mitigation firm, says that DDoS attacks fell 60% across Europe following the takedown of WebStresser, the largest DDoS-for-hire portal on the market. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 07:51:04 |
Microsoft Releases a "Windows Command Reference" For Over 250 Console Commands (lien direct) |
Microsoft released a 948 page PDF titled the "Windows Command Reference" that contains documentation on over 250 Windows console commands. For each command, Microsoft has included a detailed description of the command, their command line arguments,.and for some commands, what operating system the documentation applies. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 06:17:05 |
APT28 Hackers Caught Hijacking Legitimate LoJack Software (lien direct) |
Security researchers have found tainted versions of the legitimate LoJack software that appeared to have been sneakily modified to allow hackers inside companies that use it. [...] |
|
APT 28
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-02 00:45:00 |
New Hacking Tool Lets Users Access a Bunch of DVRs and Their Video Feeds (lien direct) |
An Argentinian security researcher named Ezequiel Fernandez has published a powerful new tool yesterday that can easily extract plaintext credentials for various DVR brands and grant attackers access to those systems, and inherently the video feeds they're supposed to record. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 19:55:01 |
Facebook Announces "Clear History" Tool (lien direct) |
At the F8 Developer Conference today, Facebook CEO Mark Zuckerberg announced an upcoming platform feature entitled "Clear History." [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 18:23:03 |
GitHub Accidentally Recorded Some Plaintext Passwords in Its Internal Logs (lien direct) |
In an email sent out today, GitHub has warned a select number of users that a bug in its password reset functionality has recorded users' passwords in plaintext format inside the company's internal logs. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 17:12:05 |
Facebook Announces Dating Feature (lien direct) |
At the F8 Developer Conference that's taking place these days in San Jose, California, Facebook CEO Mark Zuckerberg announced a new product called Facebook Dating. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 16:28:04 |
4 ‘Smart’ Apps That Could Be Smarter (And 4 to Use Instead) (lien direct) |
The developers of apps built with artificial intelligence (AI) often promise that they'll make life easier and help us in ways we hadn't thought possible, all thanks to their impressive knowledge. However, sometimes they fall short of the mark. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 13:22:03 |
Unicef\'s TheHopepage May Be the First Good Use of In-Browser Mining (lien direct) |
With the launch of Unicef AU's TheHopepage.org, we may have seen the first good use for CoinHive's in-browser mining. Using an opt-in CoinHive in-browser mining page, Unicef is hoping that users will sacrifice some of their CPU for charities and it looks like it is paying off. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 11:51:03 |
Amazon Follows Google in Banning "Domain Fronting" (lien direct) |
Two of today's biggest cloud service providers are now blocking a technique called "domain fronting" that has been used by websites and applications to avoid government-based censorship, but also by malware to secretly siphon stolen data to covert servers. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 10:54:03 |
Fortnite Season 4 Is Here With Hoppin\' Hop Rocks and a Redesigned Map (lien direct) |
A new season of Fornite Battle Royale has arrived and the mysterious Comet has finally laid waste to the region. While Tilted Towers survived the impact for the most part, the map is now littered with impact craters and industrial sites that are collecting the powerful shards left behind by the Comet's destruction. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 07:43:01 |
Starting Today, Google Chrome Will Show Warnings for Non-Logged SSL Certificates (lien direct) |
Starting today, the Google Chrome browser will show a full-page warning whenever users are accessing an HTTPS website that's using an SSL certificate that has not been logged in a public Certificate Transparency (CT) log. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 04:35:03 |
Chinese Police Arrest 15 People Who Hid Malware Inside PUBG Cheat Apps (lien direct) |
Chinese authorities have arrested 15 people on suspicion of developing, selling or promoting game-cheating apps for the PUBG (PlayerUnknown's BattleGrounds) game. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-05-01 00:10:00 |
Chinese Authorities Accidentally Admit to Accessing Deleted WeChat Messages (lien direct) |
Chinese government officials have accidentally admitted over the weekend that they can access deleted WeChat messages, a Chinese news site has reported. The admission came over the weekend from an anti-graft commission from the Chinese province of Anhui investigating reports of corruption among government officials. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 22:03:04 |
How to Download and Install the Windows 10 April 2018 Update Now (lien direct) |
In this article we will provide two methods that you can use to download and install the Windows 10 April 2018 Update so that you can start using all the new features such as Timeline, Nearby Share, Focus Assist, and some new Linux command line tools ! [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 18:57:04 |
Microsoft Wants to Secure IoT and ICS Devices With New TCPS Project (lien direct) |
Microsoft engineers have started working on a new project codenamed TCPS âshort for Trusted Cyber Physical Systemsâ that is intended to provide a hardened system for securing Internet of Things (IoT) and Industrial Control Systems (ICS) devices. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 14:41:00 |
Rapidly Emerging Smart Cities & The Associated Risks (lien direct) |
A smart city can be described as a city that incorporates the capabilities of web connectivity, analytics, mobile solutions, sensors, data collection and other technology. This can include surveillance systems utilized by law enforcement, smart congestion-mitigating traffic systems, LED streetlights, and smart grids. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 14:19:05 |
FacexWorm Spreads via Facebook Messenger, Malicious Chrome Extension (lien direct) |
Facebook, Chrome, and cryptocurrency users should be on the lookout for a new malware strain named FacexWorm that infects victims for the purpose of stealing passwords, stealing cryptocurrency funds, running cryptojacking scripts, and spamming Facebook users. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 13:11:03 |
(Déjà vu) The Windows 10 April 2018 Update Arrives Today: Here\'s Whats New (lien direct) |
The next feature update for Windows 10, called the April 2018 Update, is being released today and with it comes a lot of new features. Many of these features focus on enabling you to use Windows 10 in a more efficient manner so that you can get your tasks done quicker and easier. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 13:11:03 |
Windows 10\'s April 2018 Update Arrives Today: Here\'s Whats New (lien direct) |
The next feature update for Windows 10, called the April 2018 Update, is being released today and with it comes a lot of new features. Many of these features focus on enabling you to use Windows 10 in a more efficient manner so that you can get your tasks done quicker and easier. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 10:27:00 |
Volkswagen and Audi Cars Vulnerable to Remote Hacking (lien direct) |
A Dutch cyber-security firm has discovered that in-vehicle infotainment (IVI) systems deployed with some car models from the Volkswagen Group are vulnerable to remote hacking. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 04:42:02 |
Hackers Scan the Web for Vulnerable WebLogic Servers After Oracle Botches Patch (lien direct) |
For more than a week hackers have started scanning the Internet, searching for machines running Oracle WebLogic servers. Scans started after April 17, when Oracle published its quarterly Critical Patch Update (CPU) security advisory. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-30 00:20:00 |
UK Health Agency Switches to Windows 10 Citing WannaCry Ransomware Outbreak (lien direct) |
The UK Department of Health and Social Care has announced that it will transition all National Health Service (NHS) computer systems to Windows 10. [...] |
|
Wannacry
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-28 16:57:04 |
Long Prison Sentence for Man Who Hacked Jail Computer System to Bust Out Friend (lien direct) |
A judge sentenced a Michigan man to 87 months â7 years 3 monthsâ in prison for hacking into a county jail's computer system and modifying prisoner records in an attempt to get an inmate released early. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-27 19:56:02 |
PoC Code Published for Triggering an Instant BSOD on All Recent Windows Versions (lien direct) |
A Romanian hardware expert has published proof-of-concept code on GitHub that will crash most Windows computers within seconds, even if the computer is in a locked state. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-27 19:02:03 |
The Week in Ransomware - April 27th 2018 - iLO, KCW, and VevoLocker (lien direct) |
This was an interesting week for ransomware with various government servers being infected with VevoLocker, a new ransomware attack again HP iLO remote management interfaces, and the KCW Ransomware targeting web sites in Pakistan. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2018-04-27 17:30:05 |
KCW Ransomware Encrypting Web Sites in Pakistan (lien direct) |
Team Kerala Cyber Warriors, a hacking group based out of India, have begun to install ransomware on web sites based out of Pakistan. This ransomware, called KCW Ransomware, encrypts the files on a web site and then demands a ransom payment in order to get the files back. [...] |
|
|
|