What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-12-01 17:00:00 | PHP Adds Support for Next-Gen Password Hashing Algorithm Argon2 (lien direct) | PHP got a whole lot more secure this week with the release of the 7.2 branch, a version that improves and modernizes the programming language's support for cryptography and password hashing algorithms. [...] | |||
|
2017-12-01 15:59:59 | New Shadow BTCware Ransomware Variant Released (lien direct) | A new variant of the BTCWareÂÂ ransomwareÂÂ was discovered by Michael Gillespie, that appends the .[email]-id-id.shadowÂÂ extension to encrypted files.ÂÂ The BTCWareÂÂ family of ransomware infections targets its victims byÂÂ hacking into poorly protected remote desktop services and manually installing the ransomware. [...] | |||
|
2017-12-01 07:16:54 | New-But-Old US Bill Introduces Prison Time for Execs Who Conceal Data Breaches (lien direct) | Three US senators have introduced a bill on Thursday that will make it mandatory for companies to report breaches to customers within 30 days, but also carries fines and possible prison time for execs who conceal breaches from users and authorities. [...] | |||
|
2017-11-30 19:00:15 | Google Will Block Third-Party Software From Injecting Code Into Chrome (lien direct) | Google has laid out a plan for blocking third-party applications from injecting code into the Chrome browser. [...] | |||
|
2017-11-30 18:15:12 | Microsoft Edge Browser Exits Preview and Now Available for iOS and Android (lien direct) | In early October, Microsoft began offeringÂÂ Edge to iOS and Android users as part of earlyÂÂ preview. Today, Microsoft has officially released Edge and is now available to all iOS and Android usersÂÂ through the App Store and Google Play. [...] | |||
|
2017-11-30 17:30:26 | Google Bans Android Apps That Show Lockscreen Ads (lien direct) | Via an update to the Google Play Developer Policy Center, Google has banned apps from the Play Store that show ads on the lockscreen. [...] | |||
|
2017-11-30 16:20:15 | The EU Will Foot the Bill for VLC Player\'s Public Bug Bounty Program (lien direct) | The European Union has announced this week that it will foot the bill for a bug bounty program that will run for the benefit of VLC Media Player, an open source cross-platform multimedia player. [...] | |||
|
2017-11-30 10:45:40 | Russia Wants to Launch Backup DNS System by August 1, 2018 (lien direct) | The Russian government is currently discussing plans to build its own "independent internet infrastructure" that will be used by BRICS member states — Brazil, Russia, India, China, and South Africa. [...] | |||
|
2017-11-30 08:52:48 | Microsoft Working on Two Windows 10 Features Named Timeline and Sets (lien direct) | In an email sent to all Windows Insiders Program (WIP) participants, Terry Myerson, Executive Vice President of the Windows and Devices Group, gave a preview of two new features Microsoft will be testing in the next iteration of the Insiders Program (Windows 10 Redstone 4). [...] | |||
|
2017-11-30 05:48:53 | Even Highly Skilled Cyber-Thieves Make Stupid Mistakes, or Do They? (lien direct) | Cobalt, a highly-skilled group of hackers who target banks and financial institutions, may have committed a mistake and accidentally leaked a list of all their current targets, according to Yonathan Klijnsma, a security researcher with RiskIQ. [...] | |||
|
2017-11-29 19:00:17 | Judge Orders Coinbase to Hand Over Details of 14,355 US Users to the IRS (lien direct) | A federal judge in California has ruled today that US-based cryptocurrency exchange portal Coinbase must hand over details of over 14,000 users to the US Internal Revenue Service (IRS). [...] | |||
|
2017-11-29 17:49:40 | Fake Windows Troubleshooting Support Scam Uploads Screenshots & Uses Paypal (lien direct) | A new tech support scam has been discovered that shows a fakeÂÂ crash on the infected computer and displays an application that pretends to be a Windows Troubleshooter. This Troubleshooter states that your computer cannot be fixed, blocks you from using Windows, and prompts you to purchase a program using PayPal to fix the "problems". [...] | |||
|
2017-11-29 13:00:00 | Cryptojacking Script Continues to Operate After Users Close Their Browser (lien direct) | The operator of at least one website has been spotted using small windows hidden under the user's Windows taskbar to continue to operate an in-browser miner even after the user closed the main browser window. [...] | |||
|
2017-11-29 11:05:50 | Vivaldi Browser Adds Sync Support — Finally! (lien direct) | The developers of the Vivaldi browser have finally rolled out support for user data syncing in the browser's latest Snapshot version. [...] | |||
|
2017-11-29 07:48:19 | The Least Significant Pawn in the Yahoo Hack Pleads Guilty (lien direct) | Karim Baratov, a 22-year-old Canadian national, pleaded guilty to charges related to the FBI's investigation into the Yahoo 2014 data breach. [...] | Guideline | Yahoo | |
|
2017-11-29 05:12:38 | Recent Blu Update Locks Users out of Their Phones (lien direct) | An Android update that Blu shipped to Blu One Life X2 smartphones yesterday, November 28, has locked people out of their phones. [...] | |||
|
2017-11-29 03:00:00 | Android Cryptocurrency Wallet Apps Are a Security Disaster Waiting to Happen (lien direct) | The vast majority of Android mobile apps available on the official Google Play Store that are meant for the management of cryptocurrencies are vulnerable to the most common and well-known vulnerabilities, according to a report published today by Swiss cyber-security firm High-Tech Bridge. [...] | |||
|
2017-11-28 17:12:49 | MacOS Bug Lets You Create a Root Account by Repeatedly Pressing a Button (lien direct) | A bug in the latest versions of macOS High Sierra allows users to create a root account with no password by repeatedly pressing a button in the preferences panel. [...] | |||
|
2017-11-28 16:15:12 | PSA: Bitcoin Gold (BTG) Official Windows Wallet App Might Have Been Compromised (lien direct) | The team behind the Bitcoin Gold (BTG) cryptocurrency have issued a security alert warning all users about a security incident involving the official Windows wallet application offered for download via its official website. [...] | |||
|
2017-11-28 13:27:17 | Top Secret US Army and NSA Files Left Exposed Online on Amazon S3 Server (lien direct) | Ten days after an Amazon S3 server exposed data from the US Army's CENTCOM and PACOM divisions, security researchers have identified another S3 server instance that leaked files from INSCOM, a joint US Army and NSA agency tasked with conducting intelligence, security, and information operations. [...] | |||
|
2017-11-28 05:45:19 | Researchers Identify 44 Trackers in More Than 300 Android Apps (lien direct) | A collaborative effort between the Yale Privacy Lab and Exodus Privacy has shed light on dozens of invasive trackers that are embedded within Android applications and record user activity, sometimes without user consent. [...] | |||
|
2017-11-28 02:20:06 | Google Discovers New Tizi Android Spyware (lien direct) | Google's security team discovered a new strain of Android malware, named Tizi, and which has been used primarily to target users in African countries. [...] | |||
|
2017-11-28 01:00:00 | No Patch Available for RCE Bug Affecting Half of the Internet\'s Email Servers (lien direct) | A critical remote code execution flaw affects over half of the Internet's email servers, and there's no fix for it available, just yet. [...] | |||
|
2017-11-27 19:13:00 | Cyber Monday VPN Deals & Promos Roundup (lien direct) | Cyber Monday is here and we have a roundup of some of the best VPN promotions currently being offered. [...] | |||
|
2017-11-27 16:38:45 | US Charges Three Members of Elite Chinese Cyber-Espionage Unit (lien direct) | US authorities have acted on one of the worst-kept secrets in cyber-security and have filed official charges against three Chinese hackers part of one of China's elite cyber-espionage unit. [...] | |||
|
2017-11-27 11:00:00 | Edge May Soon Switch to Private Browsing Mode Automatically When on NSFW Sites (lien direct) | Last week, Microsoft filed a patent for a new browser technology that will detect when users are visiting NSFW, questionable, or unsafe websites and switch to Private Browsing mode automatically. [...] | |||
|
2017-11-27 10:58:58 | #AskACISO Interview with Youri Lammerts van Bueren, CISO of the BUCH (lien direct) | In this edition of #AskACISO,ÂÂ I interviewed Youri Lammerts van Bueren , the CISO of the BUCH, which manages the Bergen - Uitgeest - Castricum - Heiloo municipalities in the Netherlands. [...] | |||
|
2017-11-27 09:00:00 | Keybase Bug Might Have Backed up Your Private Encryption Key on Google\'s Servers (lien direct) | Keybase is notifying Android users of a bug in its mobile app that might have unintentionally included the users' private key —used to encrypt conversations and other private data— into the automatic backups created by the Android OS and uploaded on Google's servers. [...] | |||
|
2017-11-27 06:00:57 | Yahoo Groups Plagued by Downtime, Technical Issues for Almost a Week (lien direct) | Yahoo Groups were nonfunctional all last week, according to customers complaining on the company's support forum and Twitter. [...] | Yahoo | ||
|
2017-11-27 01:00:00 | Golden SAML Attack Lets Attackers Forge Authentication to Cloud Apps (lien direct) | A new technique called "Golden SAML" lets attackers forge authentication requests and access the cloud-based apps of companies that use SAML-compatible domain controllers (DCs) for the authentication of users against cloud services. [...] | |||
|
2017-11-25 07:45:09 | Imgur Suffered a Small Data Breach in 2014 (lien direct) | Late Friday night, Imgur came clean about a security breach that took place in 2014. During the incident, Imgur says an unknown attacker managed to steal details on 1.7 million users, representing about 1.13% of Imgur's total 150 million users. [...] | |||
|
2017-11-24 16:00:00 | The Week in Ransomware - November 24th 2017 - qkG, Scarab, Necurs, and More (lien direct) | Not much to report this week other than NecursÂÂ starting to push the Scarab Ransomware and a new office document infecting ransomware called qkG. Otherwise, it has been a week of small variants that are in various stages of development. [...] | |||
|
2017-11-24 15:00:06 | Mystery Surrounds Recent Cryptocurrency Wallet Hack (lien direct) | Users lost over $655,000 worth of Verge cryptocurrency this week, but nobody knows who to blame in an incident involving the maintainers of the CoinPouch wallet app and the Verge cryptocurrency. [...] | |||
|
2017-11-24 12:50:05 | A Hacking Group Is Already Exploiting the Office Equation Editor Bug (lien direct) | A week after details about a severe Microsoft Office vulnerability came to light, at least one criminal group is now using it to infect users. [...] | |||
|
2017-11-24 09:23:02 | Mirai Activity Picks up Once More After Publication of PoC Exploit Code (lien direct) | The publication of proof-of-concept (PoC) exploit code in a public vulnerabilities database has lead to increased activity from Mirai-based IoT botnets, Li Fengpei, a security researcher with Qihoo 360 Netlab, told Bleeping Computer today. [...] | Guideline | ||
|
2017-11-24 06:38:35 | Intel Plans to End Legacy BIOS Support by 2020 (lien direct) | Intel will drop support for the legacy BIOS technology in its modern client and server chipsets by 2020 when the company said its products would support only UEFI Class 3 or higher. [...] | |||
|
2017-11-24 02:00:00 | There\'s Some Intense Web Scans Going on for Bitcoin and Ethereum Wallets (lien direct) | With both Bitcoin and Ethereum price hitting all-time highs in the past seven days, cyber-criminals have stepped up efforts to search and steal funds stored in these two cryptocurrencies. [...] | |||
|
2017-11-23 19:30:40 | Cryptojacking Script Found in Live Help Widget, Impacts Around 1,500 Sites (lien direct) | Security is a round-the-clock affair. Instead of spending Thanksgiving with family and friends, Las Vegas-based security researcher Troy Mursch was busy all day digging into the code of hundreds of websites to discover the source of a massive cryptojacking campaign that was set in motion today. [...] | |||
|
2017-11-23 13:57:46 | Scarab Ransomware Pushed via Massive Spam Campaign (lien direct) | A ransomware strain known as Scarab, and detected for the first time in June, is now being pushed to millions of users via Necurs, the Internet's largest email spam botnet. [...] | |||
|
2017-11-23 10:33:56 | Acer, Dell, Fujitsu, HP, Lenovo, Panasonic Impacted by Intel ME Security Bugs (lien direct) | Acer, Dell, Fujitsu, HP, Lenovo, and Panasonic have officially confirmed that products incorporating Intel chipsets are affected by eight security flaws that allow hackers to take over devices. [...] | |||
|
2017-11-23 08:51:16 | AlphaBay "PR Guy" Trappy Charged in the US (lien direct) | Authorities in Atlanta, Georgia, have filed official charges against Ronald L. Wheeler, III, a 24-year-old Illinois man known mainly for his online persona of Trappy, or Trappy_AB (Reddit username), the official spokesperson for the AlphaBay Dark Web market. [...] | |||
|
2017-11-23 04:31:30 | Facebook Will Let Users See What Russian Propaganda Accounts They Followed (lien direct) | Facebook announced yesterday they would let users see what Facebook pages and Instagram accounts they followed that are linked to supposed Russian propaganda efforts. [...] | |||
|
2017-11-22 18:40:18 | Firefox Will Warn Users When Visiting Sites That Suffered a Data Breach (lien direct) | Mozilla engineers are working on a notifications system for Firefox that shows a security warning to users visiting sites that have suffered data breaches. [...] | |||
|
2017-11-22 17:26:16 | Windows 10 Insider Build 17046 Brings Emoji Updates and a Form Filler for Edge (lien direct) | Today MicrosoftÂÂ releasedÂÂ Insider Preview BuildÂÂ 17046ÂÂ for PC to insiders on the fast ring and to those who opted to Skip Ahead. In this release, Edge now has the ability to automatically fill in forms on web sites. easier access to UWP app options from an app's icon, and the touch keyboard was updated to have better emoji predictions. [...] | |||
|
2017-11-22 17:15:55 | Amazon Key Bug Lets Rogue Deliverymen Re-Enter Homes Without Being Recorded (lien direct) | A month after Amazon launched Amazon Key, security experts have already identified a flaw in the device's mode of operation that could allow rogue deliverymen to re-enter customer homes without being recorded. [...] | |||
|
2017-11-22 16:33:56 | Best Black Friday Antivirus, VPN, and Computer Security Deals (lien direct) | Below are the best Black Friday and Cyber Monday antivirus, VPN, and computer security deals being offered for the holiday. These promotions have deep discounts from various antivirus companies and deals on VPNs, Pastebin, and even Shodan! [...] | |||
|
2017-11-22 13:45:00 | Apple\'s Latest MacOS Security Update Contained Fix for Plug-n-Hack USB Attack (lien direct) | Details have emerged about one of the vulnerabilities patched by Apple in macOS on October 31, with the release of macOS High Sierra 10.13.1, Sierra 10.12.6, and El Capitan 10.11.6. [...] | |||
|
2017-11-22 09:22:04 | qkG Ransomware Encrypts Only Word Documents, Hides and Spreads via Macros (lien direct) | Security researchers have discovered a new ransomware strain named qkG that targets only Office documents for encryption and infects the Word default document template to propagate to new Word documents opened through the same Office suite on the same computer. [...] | |||
|
2017-11-22 06:45:13 | HP to Release Patch This Week for Printer Security Bugs (lien direct) | HP said it would release firmware patches later this week for several security bugs reported to the company by various cyber-security experts. [...] | |||
|
2017-11-22 01:00:00 | Hacker Breaches Sacramento Public Transportation System, Asks for 1 BTC Ransom (lien direct) | The Sacramento Regional Transit (SacRT) public transportation agency was forced to shut down its website due to a security breach that took place on Saturday, November 18. [...] |
To see everything:
Our RSS (filtrered)
