What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-03-19 06:25:01 | Linux Foundation Announces ACRN —Open Source Hypervisor for IoT Devices (lien direct) | The Linux Foundation announced a new project called ACRN (pronounced "acorn") that will provide generic code for the creation of hypervisors for IoT devices. [...] | |||
|
2018-03-19 03:50:00 | Facebook Confirms Gross Misuse of User Data for US Election (lien direct) | Facebook has confirmed over the weekend reports that an app made by a team of academics had collected vasts amounts of user data, who then shared this information with Cambridge Analytica âa commercial data analytics firm that allegedly used this info to target US voters in the 2016 Presidential election. [...] | |||
|
2018-03-18 09:20:02 | Firefox Master Password System Has Been Poorly Secured for the Past 9 Years (lien direct) | For at past nine years, Mozilla has been using an insufficiently strong encryption mechanism for the "master password" feature. [...] | |||
|
2018-03-17 16:51:02 | Author of Polski, Vortex, and Flotera Ransomware Families Arrested in Poland (lien direct) | Polish law enforcement announced on Friday the arrest of Tomasz T., a well-known cyber-criminal believed to be the author of the Polski, Vortex, and Flotera ransomware strains. [...] | |||
|
2018-03-17 04:00:00 | Chrome Extension Protects Against JavaScript-Based CPU Side-Channel Attacks (lien direct) | A team of academics has created a Chrome extension that can block side-channel attacks that use JavaScript code to leak data from a computer's RAM or CPU. [...] | |||
|
2018-03-16 18:52:05 | Windows Insider Build 17123 Supports The High Efficiency Image File Format (HEIF) (lien direct) | Today Microsoft released Windows 10 Insider Preview Build 17123 for PC to insiders in the fast ring. While this release brings some bug fixes, it's main focus is the addition of the High Efficiency Image File Format (HEIF) to Windows 10 and continuing to resolve bugs in Windows Mixed Reality. [...] | |||
|
2018-03-16 18:23:00 | Zenis Ransomware Encrypts Your Data & Deletes Your Backups (lien direct) | A new ransomware was discovered this week called Zenis Ransomware. While it is currently unknown how Zenis is being distributed, multiple victims have already become infected with this ransomware. What is most disturbing about Zenis is that it not encrypts your files, but also purposely deletes your backups. [...] | |||
|
2018-03-16 17:43:00 | Android Malware Intercepts Phone Calls to Connect Banking Users to Scammers (lien direct) | A new variant of the FakeBank Android malware includes the ability to intercept phone calls victims are making to their banks, and redirecting users to scammers. [...] | |||
|
2018-03-16 15:40:00 | TDS Systems Are the Next Big Money Makers in the Land of Cybercrime (lien direct) | Traffic Distribution Systems âoften spelled just TDSâ are becoming the next big thing in the world of cybercrime operations. [...] | |||
|
2018-03-16 13:24:00 | Intro to Quick Assist, Window 10\'s Built-in TeamViewer-Like Remote Help Tool (lien direct) | With the release of the Windows 10 Fall Creators Update in October, Microsoft quietly slipped in the new Quick Assist program that many people I spoke to did not know about. Quick Assist is a remote assistance tool that allows Windows 10 users to receive and give assistance by taking control of a remote computer. [...] | |||
|
2018-03-16 12:52:02 | AMD Flaws Pose No Immediate Risk of Exploitation, Says Independent Reviewer (lien direct) | A third-party company that was paid to review the validity of the recent AMD flaws âRyzenFall, MasterKey, Fallout, and Chimeraâ has confirmed that these vulnerabilities are real, but that regular users shouldn't panic for the time being. [...] | |||
|
2018-03-16 09:25:03 | Hackers Target PostgreSQL DBs With Coinminer Hidden in Scarlett Johannsson Image (lien direct) | A new type of attack has been discovered targeting PostgreSQL databases, in which malware authors are using an image of Hollywood actress Scarlett Johansson to hide a cryptocurrency miner they intend to run on the DB's underlying server. [...] | |||
|
2018-03-16 06:35:02 | Firefox, Edge, and Safari Browsers Fall at Famous Pwn2Own Hacking Contest (lien direct) | Safari, Edge, and Firefox were the favorite targets that fell to white hat hackers at the world's most well-known competitive hacking competition âPwn2Own 2018â held over the past two days in Vancouver, Canada. [...] | |||
|
2018-03-15 18:50:01 | Intel Announces CPU Hardware Protections to Prevent Future Spectre-Like Flaws (lien direct) | Intel announced today that upcoming CPU models would include brand new hardware-level protections to prevent any future Meltdown and Spectre-like vulnerabilities. [...] | |||
|
2018-03-15 17:37:05 | Fortnite for iOS is Live and Invites Are Being Sent Out Now (lien direct) | The mobile iOS version of Fortnite is now live on the App Store and invites are on their way! Some of you who have already signed up will start receiving your invites via email, which contain a special link to iOS Fortnite on the App Store. [...] | |||
|
2018-03-15 14:35:02 | Apple Bans Iran from the App Store (lien direct) | Iranian users have not been able to access Apple's App Store all day today, in what appears to be a ban put in place by the US company. [...] | |||
|
2018-03-15 13:37:02 | US Sanctions Russia Over NotPetya Outbreak, Energy Grid Hacks, Election Meddling (lien direct) | The United States has imposed sanctions against Russian entities for the NotPetya ransomware outbreak, cyber-attacks on the US power grid, and their attempts to influence the 2016 US presidential election process. [...] | NotPetya | ||
|
2018-03-15 12:20:01 | Geographical Region With the Most Ransomware Encounters in 2017 Was Asia (lien direct) | In the land of IT security, there is no better source for malware statistics than Microsoft, the company that has an antivirus engine running on almost all recent Windows operating systems. [...] | |||
|
2018-03-15 08:12:05 | Chinese Crooks Assembling Massive Botnet of Nearly 5 Million Android Devices (lien direct) | A Chinese malware operation is currently building a massive botnet of nearly 5 million Android smartphones using a strain of malware named RottenSys. [...] | |||
|
2018-03-14 21:05:03 | Researchers Who Found AMD CPU Flaws Explain Chaotic Disclosure (lien direct) | Ilia Luk-Zilberman, the Chief Technical Officer (CTO) of CTS Labs, the company behind yesterday's disclosure of 13 vulnerabilities affecting AMD processors, has published an open letter today, explaining his company's controversial actions that managed to enrage almost the entire tech and security research communities. [...] | |||
|
2018-03-14 16:46:02 | PSA: Beware of Windows PowerShell Credential Request Prompts (lien direct) | A new PowerShell script was posted on Github recently that prompts a victim to enter their login credentials, checks if they are correct, and then sends the credentials to a remote server. This allows an attacker to distribute the script and harvest domain login credentials from their victims. [...] | |||
|
2018-03-14 12:15:00 | 400K Malware Outbreak Caused by Backdoored Russian Torrenting Client (lien direct) | A massive malware outbreak that attempted to infect over 400,000 users during a 12-hour period was caused by a backdoored Russian-based BitTorrent client named MediaGet. [...] | |||
|
2018-03-14 09:13:04 | A Bunch of Intel Microcode Patches Have Arrived on the Microsoft Update Catalog (lien direct) | Earlier this month, Microsoft announced it would be bundling Intel microcode (BIOS) updates meant to fix the graver version of the Spectre vulnerability as Windows Update packages made available via the Microsoft Update Catalog portal. Yesterday, Microsoft greatly expanded the number of such packages. [...] | |||
|
2018-03-14 08:00:00 | Let\'s Encrypts Now Offers Free Wildcard SSL Certificates Using ACMEv2 (lien direct) | Let's Encrypt announced yesterday that their ACMEv2 APIÂ is now live and with it comes the ability for users to get free wildcard certificates. This has been a long awaited feature as wildcard domain certificates are much more expensive then regular single host certificates and it also makes managing SSL certs for a domain much easier [...] | |||
|
2018-03-14 07:40:01 | Firefox 59 Released —Now Also Available for Amazon Fire TV (lien direct) | The Mozilla Foundation has released a new stable version of Firefox âversion 59â that comes with speed improvements, privacy-enhancing features, but also a new Firefox release dedicated to Amazon Fire TV users. [...] | |||
|
2018-03-14 06:56:04 | Google Bans Cryptocurrency-Related Ads (lien direct) | Google has decided to follow on Facebook's steps and ban cryptocurrency-related advertising. The ban will enter into effect starting June 2018, the company said today in a help page. [...] | |||
|
2018-03-14 00:20:00 | Microsoft Removes Antivirus Registry Key Check for Windows 10 Users (lien direct) | Microsoft has backtracked on a decision it took back in January when it conditioned that computers without a special registry key would not receive any more security updates. [...] | |||
|
2018-03-13 16:58:05 | Secunia Personal Software Inspector (PSI) Being Discontinued in April (lien direct) | In a post to their forums, Flexera has announced that the Secunia Personal Software Inspector, or PSI, will no longer be available after April 20th, 2018. While this may not come as a surprise to those who have been using it for a while, it does mark the end of useful piece of software that has helped protect countless people. [...] | |||
|
2018-03-13 15:30:04 | Windows Insider Build 17120 Let\'s You Download Files to Host in WDAG (lien direct) | Today Microsoft released Windows 10 Insider Preview Build 17120 for PC to insiders in the fast ring. While this release brings some bug fixes, but it's main focus is on improvements to Windows Defender Application Guard and Windows Mixed Reality. [...] | |||
|
2018-03-13 14:47:05 | (Déjà vu) Microsoft March Patch Tuesday Fixes 74 Security Issues (lien direct) | Microsoft has released its monthly security updates, and this month the company patched 74 vulnerabilities affecting products such as Internet Explorer, Microsoft Edge, Microsoft Windows, Microsoft Exchange Server, ASP.NET Core, .NET Core, PowerShell Core, ChakraCore, Microsoft Office, and Microsoft Office Services and Web Apps. [...] | |||
|
2018-03-13 13:48:02 | AMD Investigating RyzenFall, MasterKey, Fallout, and Chimera CPU Vulnerabilities (lien direct) | AMD is investigating a report published today by an Israeli security firm disclosing the presence of 13 security flaws affecting AMD Ryzen and EPYC processors. [...] | |||
|
2018-03-13 13:00:00 | CredSSP Vulnerability Affects RDP and WinRM on All Windows Versions (lien direct) | The March 2018 Patch Tuesday contains a fix for a severe vulnerability affecting the CredSSP protocol; a vulnerability that affects all Windows versions ever released. [...] | |||
|
2018-03-13 09:43:02 | Microsoft Admits It Incorrectly Upgraded Some Windows 10 Users to v1709 (lien direct) | Microsoft admitted last week that it incorrectly updated some Windows 10 users to the latest version of the Windows 10 operating system âversion 1709â despite users having specifically paused update operations in their OS settings. [...] | |||
|
2018-03-13 08:33:05 | Here\'s a List of 29 Different Types of USB Attacks (lien direct) | Researchers from the Ben-Gurion University of the Negev in Israel have identified 29 ways in which attackers could use USB devices to compromise users' computers. [...] | |||
|
2018-03-13 04:40:03 | Cyber-Espionage Group Steals Data From UK Government Contractor (lien direct) | A cyber-espionage group historically believed to be operating in the interests of the Chinese government is believed to have hacked a UK government contractor from where security researchers found evidence that attackers stole information related to UK government departments and military technology. [...] | |||
|
2018-03-12 19:52:05 | Data Exfiltration Technique Steals Data From PCs Using Speakers, Headphones (lien direct) | A well-established research team from the Ben-Gurion University of the Negev in Israel has detailed today a new method of extracting data from air-gapped computers using speakers, headphones, earphones, or earbuds. [...] | |||
|
2018-03-12 17:40:02 | Sigma Ransomware Being Distributed Using Fake Craigslist Malspam (lien direct) | Today one of our volunteers, Aura, told me about a new new malspam campaign pretending to be from Craigslist that is under way and distributing the Sigma Ransomware. These spam emails contain password protected Word or RTF documents that download the Sigma Ransomware executable from a remote site and install it on a recipients comput [...] | |||
|
2018-03-12 16:05:01 | Fake Fortnite Mobile iOS Invites Being Pushed On Social Sites (lien direct) | Whenever something newsworthy comes out there will always be people who try to take advantage of it. A perfect example of this is the Fortnite iOS mobile invite that launched today, where people are impatiently waiting for the invite codes to be released, while others try to trick them into purchasing fake ones. [...] | Threat | ||
|
2018-03-12 15:42:02 | Report: Three of Top Four Malware Threats Are In-Browser Cryptocurrency Miners (lien direct) | Three in-browser cryptocurrency mining scripts ranked first, second, and fourth in Check Point's most active malware top ten, outranking classic high-output malware distribution infrastructures such as spam botnets, malvertising, and exploit kit operations. [...] | |||
|
2018-03-12 12:27:00 | NSA Retreats From Targeted PCs If They\'re Already Infected by Other APT Malware (lien direct) | Hacking tools leaked last year and believed to belong to the US National Security Agency (NSA) contain an utility for detecting the presence of malware developed by other cyber-espionage groups. [...] | |||
|
2018-03-12 09:43:04 | Fortnite iOS Mobile Invite Event Signup Page Now Live (lien direct) | For those who have been anxiously awaiting Fortnite's iOS Mobile invite signup, it is now live! iOS users can now signup using a new account or by using their existing PC, Xbox, or Playstation accounts. [...] | |||
|
2018-03-12 09:43:04 | (Déjà vu) Fortnite iOS Mobile Invite Event Signup Page Now Live (UPDATED) (lien direct) | For those who have been anxiously awaiting Fortnite's iOS Mobile invite signup, it is now live! iOS users can now signup using a new account or by using their existing PC, Xbox, or Playstation accounts. [...] | |||
|
2018-03-12 09:43:04 | (Déjà vu) Fortnite iOS Mobile Invite Event Signup Page Now Live (Site Down for Maintenance) (lien direct) | For those who have been anxiously awaiting Fortnite's iOS Mobile invite signup, it is now live! iOS users can now signup using a new account or by using their existing PC, Xbox, or Playstation accounts. [...] | |||
|
2018-03-12 09:36:05 | Firefox Gets Privacy Boost By Disabling Proximity and Ambient Light Sensor APIs (lien direct) | Stating with Firefox 60 âexpected to be released in May 2018â websites won't be able to use Firefox to access data from sensors that provide proximity distances and ambient light information. [...] | |||
|
2018-03-12 05:20:04 | Necurs and Gamut Botnets Account for 97% of the Internet\'s Spam Emails (lien direct) | Just two botnets accounted for 97% of all spam emails in the last three months of 2017, according to a McAfee report released earlier today. [...] | |||
|
2018-03-10 09:10:00 | Coinminer Campaigns Target Redis, Apache Solr, and Windows Servers (lien direct) | Windows Server, Apache Solr, and Redis servers have been targeted this week by cyber-criminals looking to take over unpatched machines and install malware that mines cryptocurrency (known as a coinminer). [...] | |||
|
2018-03-10 04:00:00 | Chinese Intelligence Agencies Are Doctoring the Country\'s Vulnerability Database (lien direct) | Chinese intelligence agencies are doctoring the Chinese National Vulnerabilities Database (CNNVD) to hide security flaws that government hackers might have an interest in, according to a report released on Friday by US threat intelligence firm Recorded Future. [...] | |||
|
2018-03-09 19:01:03 | The Week in Ransomware - March 9th 2018 - GandCrab and Qwerty (lien direct) | It has been a pretty slow ransomware week as most of the malware developers have started pushing cryptominers. We did see the continued distribution of the GnuPG based Qwerty Ransomware and a new variant of the GandCrab ransomware that makes it secure again. [...] | |||
|
2018-03-09 18:27:02 | Qwerty Ransomware Utilizes GnuPG to Encrypt a Victims Files (lien direct) | A new ransomware has been discovered that utilizes the legitimate GnuPG, or GPG, encryption program to encrypt a victim's files. Currently in the wild, this ransomware is called Qwerty Ransomware and will encrypt a victims files, overwrite the originals, and the append the .qwerty extension to an encrypted file's name. [...] | |||
|
2018-03-09 18:02:00 | Turkish ISP Swapped Downloads of Popular Software with Spyware-Infected Apps (lien direct) | Türk Telekom, a Turkish Internet Service Provider (ISP), has deployed special hardware to intercept and alter Internet traffic, swapping legitimate software downloads with similar applications, but infected with spyware. [...] |
To see everything:
Our RSS (filtrered)
