What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-03-28 19:47:01 | Proxy Emerges From Stealth with $13.6 Million in Funding (lien direct) | Universal identity provider Proxy came out of stealth while announcing $13.6 million in Series A funding, which brings the company's total funding to $16.6 million to date. The company also introduced Proxy Signal, a smartphone-powered universal identity signal aimed at bringing frictionless access and personalized experiences for employees. | |||
|
2019-03-28 17:42:04 | Critical Flaw Allows Hackers to Take Control of PowerFlex AC Drives (lien direct) | Rockwell Automation's Allen Bradley PowerFlex 525 AC drives are affected by a critical denial-of-service (DoS) vulnerability that allows hackers to take control of devices. | Vulnerability | ||
|
2019-03-28 15:41:02 | New Shodan Service Keeps Track of Internet-Exposed Systems (lien direct) | 
The popular IoT search engine Shodan this week announced the launch of Monitor, a new service designed to help organizations keep track of systems connected to the Internet.
|
|||
|
2019-03-28 15:36:03 | Android Trojan Targets Banks, Crypto-Currencies, e-Commerce (lien direct) | A recently discovered Android Trojan is targeting the users of a broad range of services, including international banks, crypto-currency services, and e-commerce websites, Group-IB reports. | |||
|
2019-03-28 14:47:03 | Ex-NSA Contractor Expected to Plead Guilty in Document Theft (lien direct) | A former National Security Agency contractor accused in a massive theft of classified information is expected to plead guilty Thursday in what U.S. prosecutors had once portrayed as a “breathtaking” breach at the nation's biggest spy shop. | Guideline | ||
|
2019-03-28 14:34:02 | UK Identifies Fresh Huawei Risks to Telecom Networks (lien direct) | Britain has identified "significant" issues in Huawei's engineering processes that pose "new risks" for the nation's telecommunications, a government report found Thursday amid lingering global suspicion over the Chinese technology giant. | |||
|
2019-03-28 13:36:01 | WinRAR Vulnerability Exploited to Deliver New Malware (lien direct) | A recently patched vulnerability affecting the popular archiver utility WinRAR has been increasingly exploited by malicious actors, including to deliver new malware to targeted users. | Malware Vulnerability | ||
|
2019-03-28 06:57:04 | Microsoft Takes Control of 99 Domains Used by Iranian Cyberspies (lien direct) | Microsoft on Wednesday announced that it had taken control of 99 domains used by an Iran-linked cyberespionage group it tracks as Phosphorus. | Conference | APT 35 | |
|
2019-03-27 17:43:00 | (Déjà vu) NVIDIA Patches Serious Flaw in GeForce Experience Software (lien direct) | A security update released recently by NVIDIA for its GeForce Experience software patches a potentially serious vulnerability that could lead to arbitrary code execution, a denial-of-service (DoS) condition, or privilege escalation. | Vulnerability Guideline | ||
|
2019-03-27 15:55:03 | Nearly Half of ICS Devices Protected by Kaspersky Targeted in 2018 (lien direct) | Nearly half of the industrial control system (ICS) computers protected by Kaspersky Lab were targeted by malware and other threats in 2018, according to the company's latest industrial threat landscape report. | Malware Threat | ||
|
2019-03-27 15:00:02 | North Korea-Linked Hackers Target macOS Users (lien direct) | New Lazarus Operation Targets Windows, macOS Systems The North Korea-linked Lazarus group has been leveraging PowerShell to target both Windows and macOS machines as part of an attack campaign that has been ongoing since at least November 2018, Kaspersky Lab reports. | Medical | APT 38 | |
|
2019-03-27 14:30:04 | How Stumbling Onto Great Findings Can Improve Your Security Program (lien direct) | We all have our favorite places, whether they be restaurants, stores, parks, museums, or something else entirely. One question I sometimes ask myself is how I originally learned of a particular place. Sometimes, it is because a friend or colleague recommended it. Other times, I spent some time researching and came to the conclusion that a given place was worth a shot. And yet, in some cases, I simply stumbled onto a great place accidentally. | |||
|
2019-03-27 14:18:01 | Hackers Are Loving PowerShell, Study Finds (lien direct) | Threat Actors Prefer PowerShell over Other ATT&CK Techniques, Report Shows | |||
|
2019-03-27 14:00:02 | Iran-Linked Cyberspy Group APT33 Continues Attacks on Saudi Arabia, U.S. (lien direct) | An Iran-linked cyberespionage group tracked as Elfin and APT33 continues targeting organizations in Saudi Arabia and the United States, Symantec reported on Wednesday. | APT33 APT 33 | ||
|
2019-03-27 13:32:02 | ASUS Patches Hijacked System Update Utility (lien direct) | ASUS says it has released a fix for the Live Update utility that threat actors abused in Operation ShadowHammer supply chain attack to deliver malware to hundreds of users. | Malware Threat | ||
|
2019-03-27 06:14:03 | EU Presents Plan for Safe 5G Amid Huawei Suspicions (lien direct) | The European Commission on Tuesday presented its plan to ensure the secure introduction of 5G telecoms networks, with suspicions hanging over Chinese giant Huawei. | |||
|
2019-03-26 20:48:02 | AZORult Variant Can Establish RDP Connections (lien direct) | A recently observed C++ version of the AZORult data stealer includes the ability to establish a remote desktop connection compromised devices, Kaspersky Lab's security researchers have discovered. | |||
|
2019-03-26 19:30:00 | Norsk Hydro May Have Lost $40M in First Week After Cyberattack (lien direct) | Norwegian aluminum giant Norsk Hydro estimates that it may have lost more than $40 million in the first week following the ransomware attack that disrupted its operations. | |||
|
2019-03-26 16:11:03 | (Déjà vu) Apple Patches Vulnerabilities in iOS, macOS, Safari (lien direct) | Apple this week released new security updates for iOS, macOS, tvOS, Safari, and iCloud and iTunes for Windows, addressing tens of vulnerabilities in these products. | |||
|
2019-03-26 15:54:05 | The Consumerization of Industrial Cyber Security (lien direct) | Just as internet security was a relative unknown concern 20 years ago, public awareness of threats to the electric grid, water supplies, etc. is mounting | |||
|
2019-03-26 14:37:04 | Cyber Risk Assessment Firm Sayata Labs Emerges From Stealth (lien direct) | Sayata Labs, an Israel-based company that provides risk assessment solutions for the cyber insurance industry, on Tuesday announced that it emerged from stealth mode with $6.5 million in seed funding. | |||
|
2019-03-26 13:59:02 | Facebook Blocks More Accounts Over Influence Campaigns (lien direct) | Facebook said Tuesday it shut down more than 2,600 fake accounts linked to Iran, Russia, Macedonia and Kosovo and aiming to influence political sentiment in various parts of the world. | |||
|
2019-03-26 10:35:05 | Are We Beyond Peak Buzzword? (lien direct) | It's Refreshing to See the Industry Hyping Security Concepts That Actually Work | |||
|
2019-03-26 09:55:00 | New Settings Help Hackers Test Facebook Mobile Apps (lien direct) | Facebook last week announced that it introduced new settings designed to make it easier for white hat hackers to test the security of its mobile applications. | |||
|
2019-03-26 07:03:02 | LockerGoga Ransomware Neutralized by Shortcut Files (lien direct) | At least some variants of the LockerGoga ransomware, a piece of malware involved in several recent high profile attacks, do not encrypt files on a compromised device if a certain type of shortcut file is found in a specific Windows folder, researchers discovered. | Ransomware Malware | ||
|
2019-03-25 19:17:00 | Microsoft Finds Privilege Escalation, Code Execution Flaws in Huawei Tool (lien direct) | Microsoft researchers have identified potentially serious privilege escalation and arbitrary code execution vulnerabilities in a tool from Huawei. The vendor has released updates that should patch the flaws. | Tool | ||
|
2019-03-25 18:55:05 | Researchers Uncover Vulnerabilities in LTE Wireless Protocol (lien direct) | Researchers from the Korea Advanced Institute of Science and Technology Constitution (KAIST) say they have discovered 36 previously undisclosed vulnerabilities in the Long Term Evolution (LTE) protocol used by most mobile carriers. | |||
|
2019-03-25 17:16:05 | Supply-Chain Attack Used to Install Backdoors on ASUS Computers (lien direct) | Hijacked Software Update Utility Could Have Impacted Over 1 Million ASUS Users Over 1 million ASUS users may have been impacted after attackers managed to inject a backdoor in the ASUS Live Update utility, Kaspersky Lab reports. | |||
|
2019-03-25 16:16:02 | Major U.S. Chemical Firms Hit by Cyberattack (lien direct) | Operations at two major US-based chemical companies, Hexion and Momentive, were disrupted recently by a cyberattack reportedly involving LockerGoga, the ransomware that recently hit Norwegian aluminum giant Norsk Hydro. | Ransomware | ||
|
2019-03-25 14:16:05 | DHS Warns of Vulnerabilities in Medtronic Defibrillators (lien direct) | The Department of Homeland Security (DHS) has issued an alert to warn of critical vulnerabilities impacting numerous Medtronic devices, which are exploitable with low skill level. | |||
|
2019-03-25 09:11:05 | Second Critical Crypto Flaw Found in Swiss E-Voting System (lien direct) | 
|
|||
|
2019-03-24 14:37:05 | Watchdog: FEMA Wrongly Released Personal Data of Victims (lien direct) | The Federal Emergency Management Agency wrongly released to a contractor the personal information of 2.3 million survivors of devastating 2017 hurricanes and wildfires, potentially exposing the victims to identity fraud and theft, a government watchdog reported Friday. | |||
|
2019-03-23 17:39:00 | Cisco Patches High Severity Vulnerabilities in IP Phones (lien direct) | Cisco this week released security patches to address high severity vulnerabilities in its IP Phone 8800 Series and IP Phone 7800 Series. A total of five vulnerabilities were addressed, all impacting the web-based management interface of Session Initiation Protocol (SIP) Software of IP Phone 8800 Series. | |||
|
2019-03-23 06:02:01 | Pwn2Own 2019: Researchers Win Tesla After Hacking Its Browser (lien direct) | 
|
Tesla | ||
|
2019-03-22 17:12:02 | UK Police Federation Hit by Ransomware (lien direct) | The UK Police Federation of England & Wales (PFEW) website was subject to a malware attack that it discovered on March 9, 2019. It appears that this was a ransomware attack; but the strain has not been announced. | Ransomware Malware | ||
|
2019-03-22 17:08:03 | Russian Hackers Target European Governments Ahead of Elections: FireEye (lien direct) | Hackers believed to be sponsored by the Russian government are targeting European governments for cyber-espionage purposes ahead of the upcoming European elections, FireEye reports. | |||
|
2019-03-22 16:37:05 | Industry Reactions to Norsk Hydro Breach: Feedback Friday (lien direct) | Norwegian aluminum giant Norsk Hydro has been hit by a serious ransomware attack that caused disruptions at some of its plants and forced the company to turn to manual processes to fulfill customer orders. | Ransomware | ||
|
2019-03-22 15:43:03 | Microsoft Launches Defender ATP Endpoint Security for macOS (lien direct) | Microsoft Brings Defender Advanced Threat Protection to macOS | Threat | ||
|
2019-03-22 14:58:04 | D.C. Attorney General Introduces New Data Security Bill (lien direct) | Karl A. Racine, the attorney general for the District of Columbia, on Thursday announced the introduction of a new bill that aims to expand data breach notification requirements and improve the way personal information is protected by organizations. | Data Breach | ||
|
2019-03-22 11:00:03 | Observations From RSA Conference 2019 (lien direct) | The RSA Conference is one of the premier events in the cybersecurity world. At times, it can be an overwhelming experience for vendors and attendees alike because of its massive scale and fast pace; however, it's also a great opportunity for people like me to get insight into trends in the industry. | |||
|
2019-03-22 06:30:00 | Researchers Earn $270,000 for Firefox, Edge Hacks at Pwn2Own 2019 (lien direct) | White hat hackers earned a total of $270,000 on the second day of the Pwn2Own hacking competition for demonstrating exploits against the Mozilla Firefox and Microsoft Edge web browsers. | |||
|
2019-03-21 19:33:02 | Threat Hunting Tips to Improve Security Operations (lien direct) | From Ferdinand Magellan to Lewis and Clark to Neil Armstrong – humans have an innate desire to understand the unknown. In security operations, we see this phenomenon every day in several forms, one of which is threat hunting. Threat hunting is not triggered by an event, but by the unknown. It is the practice of proactively and iteratively searching for abnormal indications within networks and systems. | Threat | ||
|
2019-03-21 17:48:00 | Global Security Spend Set to Grow to $133.8 Billion by 2022: IDC (lien direct) | Global spending on security-related hardware software and services will grow at a compound annual growth rate (CAGR) of 9.2% between 2018 and 2022, to a total of $133.8 billion in 2022. The figures come from the latest Worldwide Semiannual Security Spending Guide compiled by IDC. | |||
|
2019-03-21 16:53:03 | Facebook Stored Passwords of Hundreds of Millions Users in Plain Text (lien direct) | Facebook today admitted to have stored the passwords of hundreds of millions of its users in plain text, including the passwords of Facebook Lite, Facebook, and Instagram users. | |||
|
2019-03-21 16:38:01 | How Three of 2018\'s Critical Threats Used Email to Execute Attacks (lien direct) | History Tends to Repeat Itself - Attackers Repurpose Tried and Tested Methods to Launch Attacks | |||
|
2019-03-21 16:27:01 | Multiple Vulnerabilities Patched in PuTTY and LibSSH2 (lien direct) | PuTTY, an SSH and Telnet client program, and LibSSH2, a client-side C library for the SSH2 protocol, have both received updates fixing multiple vulnerabilities. Eight vulnerabilities have been fixed in version 0.71 of PuTTY, and nine vulnerabilities fixed in version 1.8.1 of LibSSH2. | |||
|
2019-03-21 16:18:03 | Facebook Pays Big Bounty for DoS Flaw in Fizz TLS Library (lien direct) | While Facebook's bug bounty program does not typically cover denial-of-service (DoS) vulnerabilities, the social media giant has decided to award a significant bounty for a serious flaw affecting Fizz, its open source TLS library. | |||
|
2019-03-21 16:16:01 | FIN7 Hackers Use New Malware in Recent Attacks (lien direct) | The financially-motivated hacking group FIN7 has used new malware samples in a recent attack campaign, Flashpoint security researchers warn. | Malware | ||
|
2019-03-21 15:26:01 | Finland to Investigate Suspected Nokia Chinese Data Breach (lien direct) | Finnish authorities will launch an investigation into claims that Nokia phones have been transmitting users' personal data to China, the country's data protection ombudsman announced on Thursday. | Data Breach | ||
|
2019-03-21 15:15:02 | Securing Industrial IoT in the Modern World (lien direct) | Manufacturing arguably offers the largest attack surface of almost any industry with regards to cybersecurity threats, and has long been a prime target for 'everyday' attacks like phishing, ransomware, data-theft – you name it, they've seen it. But these 'everyday' attacks and the associated losses are only the tip of the iceberg when it comes to what could potentially happen in the future. |
To see everything:
Our RSS (filtrered)
