What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-02-26 13:13:02 | Huawei Says US Has \'No Evidence\' of 5G Spying Allegations (lien direct) | Huawei's chairman said Tuesday that the United States has "no evidence" that its equipment to build next-generation 5G wireless networks could be used as a vehicle for Chinese spy operations. | |||
|
2019-02-26 11:17:03 | Backdoor Targets U.S. Companies via LinkedIn (lien direct) | A malicious campaign attempting to infect business users in the United States with a backdoor has been ongoing for over half a year, Proofpoint reports. | |||
|
2019-02-26 08:00:00 | Drupal RCE Flaw Exploited in Attacks Days After Patch (lien direct) | A vulnerability patched recently in the Drupal content management system (CMS) has been exploited in the wild to deliver cryptocurrency miners and other payloads. The attacks started just three days after a fix was released. | Vulnerability | ||
|
2019-02-26 06:53:05 | Hackers Can Plant Backdoors on Bare Metal Cloud Servers: Researchers (lien direct) | Malicious actors could plant firmware backdoors on bare metal cloud servers and use them to disrupt applications, steal data, and launch ransomware attacks, firmware security company Eclypsium warned on Tuesday. | Ransomware | ||
|
2019-02-25 21:44:02 | Mozilla May Reject UAE Firm\'s Root Inclusion Request (lien direct) | Mozilla is considering rejecting a request by United Arab Emirates-based DarkMatter to be accepted as a top-level certificate authority in Mozilla's root certificate program. | |||
|
2019-02-25 17:07:01 | Serious Flaws in WibuKey DRM Impact Siemens Products (lien direct) | Siemens has informed customers that some of its products are affected by recently disclosed vulnerabilities affecting the WibuKey digital rights management (DRM) solution from Wibu Systems. | |||
|
2019-02-25 17:03:04 | The Truth about Business Risk Intelligence (lien direct) | Starting a business risk intelligence (BRI) program often requires overcoming challenges that involve resource allocation, operational bandwidth, or stakeholder support, to name a few. And occasionally, these challenges can be exacerbated by myths and misconceptions about what BRI is and can accomplish. | |||
|
2019-02-25 16:27:01 | European Telecommunications Standards Institute Publishes New IoT Security Standard (lien direct) | On February 19, the European Telecommunications Standards Institute (ETSI) published the ETSI TS 103 645 V1.1.1 -- or more simply, a high-level outcome-focused standard (PDF) for cybersecurity in the consumer-oriented Internet of Things (IoT). | |||
|
2019-02-25 15:29:02 | Support for FIDO2 Passwordless Authentication Added to Android (lien direct) | 
|
|||
|
2019-02-25 13:27:04 | Consumer Groups Protest Being Left Out of Senate Privacy Hearing (lien direct) | Consumer groups voiced dismay Friday after a US Senate panel considering privacy legislation scheduled a largely industry-packed witness list for an upcoming hearing. | |||
|
2019-02-25 13:22:05 | California Introduces New Data Breach Notification Law (lien direct) | California Attorney General Xavier Becerra and Assemblymember Marc Levine last week introduced a new piece of legislation that would require organizations to notify consumers if their passport or biometric information has been compromised in a data breach. | Data Breach | ||
|
2019-02-25 07:00:02 | Prosecutors Seek 3-Year Sentence in \'Celebgate\' Hacking Case (lien direct) | Federal prosecutors have recommended a sentence of nearly three years in prison for a former Virginia high school teacher convicted of hacking into private digital accounts of celebrities and others. | |||
|
2019-02-23 19:39:04 | New Service From Cisco\'s Duo Labs Analyzes Chrome Extensions (lien direct) | Duo Labs, part of Cisco-owned Duo Security, has launched a new service designed to analyze Chrome extensions and deliver security reports on them. | |||
|
2019-02-23 18:43:02 | Report: Apps Give Facebook Sensitive Health and Other Data (lien direct) | Several phone apps are sending sensitive user data, including health information, to Facebook without users' consent, according to a report by The Wall Street Journal. An analytics tool called "App Events" allows app developers to record user activity and report it back to Facebook, even if the user isn't on Facebook, according to the report . | Tool | ||
|
2019-02-23 02:29:01 | Warning Issued Over Attacks on Internet Infrastructure (lien direct) | Key parts of the internet infrastructure face large-scale attacks that threaten the global system of web traffic, the internet's address keeper warned Friday. | |||
|
2019-02-22 18:06:03 | Bug Allows Bypass of WhatsApp Face ID, Touch ID Protection (lien direct) | The Face ID and Touch ID authentication feature introduced recently to WhatsApp for iOS can be easily bypassed, but a patch has been released. | ★★★★★ | ||
|
2019-02-22 16:09:02 | Cybercriminals Promise Millions to Skilled Black Hats: Report (lien direct) | Cybercriminals say they are willing to pay over a million dollars per year to individuals with network management, penetration testing, and programming skills willing to put on a black hat, a new Digital Shadows report reveals. | ★★★★ | ||
|
2019-02-22 07:14:00 | Researcher Earns $10,000 for Another XSS Flaw in Yahoo Mail (lien direct) | A researcher says he has discovered yet another critical cross-site scripting (XSS) vulnerability in Yahoo Mail. The recently patched flaw could have been exploited to steal the targeted user's emails and attach malicious code to their outgoing messages. | Vulnerability | Yahoo | |
|
2019-02-22 05:57:02 | Mexican Privacy Watchdog Criticizes Government Over Spyware (lien direct) | Mexico's privacy watchdog said Wednesday that the federal Attorney General's Office stonewalled it for more than a year as it tried to investigate the government's use of powerful Israeli spyware against journalists, lawyers and activists. | |||
|
2019-02-21 17:46:03 | Google\'s Nest Hub Has a Microphone It Forgot to Mention (lien direct) | Google said Wednesday it forgot to mention that it included a microphone in its Nest Secure home alarm system, the latest privacy flub by one of the tech industry's leading collectors of personal information. | Guideline | ★★★★★ | |
|
2019-02-21 17:19:04 | Cisco Patches High Severity Flaws in HyperFlex, Prime Infrastructure (lien direct) | Cisco this week released patches for more than a dozen vulnerabilities across its product portfolio, including high severity flaws in HyperFlex, Prime Infrastructure, and Prime Collaboration Assurance. | |||
|
2019-02-21 16:53:05 | Adobe Releases Second Patch for Data Leakage Flaw in Reader (lien direct) | Adobe on Thursday released a second fix for the Reader vulnerability tracked as CVE 2019-7089 after the researcher who discovered the flaw managed to bypass the first patch. The security hole, identified by Alex Inführ from Cure53, allows a specially crafted PDF document to send SMB requests to the attacker's server when the file is opened. | Vulnerability | ||
|
2019-02-21 16:02:04 | Windows Servers Vulnerable to DoS Attacks, Microsoft Warns (lien direct) | Microsoft informed users on Wednesday that Windows servers running Internet Information Services (IIS) are vulnerable to denial-of-service (DoS) attacks that rely on malicious HTTP/2 requests. | |||
|
2019-02-21 15:18:03 | Roger Stone Allegedly Communicated With Mysterious Hacker Guccifer 2.0 (lien direct) | Latest Developments in Mueller and Russian Electoral Meddling | |||
|
2019-02-21 13:47:04 | WinRAR Vulnerability Exposes Millions of Users to Attacks (lien direct) | WinRAR, the popular data compression tool utilized by over 500 million users worldwide, is affected by a serious vulnerability that can allow arbitrary code execution through specially crafted ACE archives. | Tool Vulnerability | ||
|
2019-02-21 06:26:00 | Critical Drupal Vulnerability Allows Remote Code Execution (lien direct) | Security updates released on Wednesday for the Drupal content management system (CMS) patch a “highly critical” vulnerability that can be exploited for remote code execution. | Vulnerability | ||
|
2019-02-20 21:42:01 | Canada Helping Australia Determine \'Full Extent\' of Hack (lien direct) | Canada's electronic eavesdropping agency said Wednesday it is working with Canberra to try to determine the scale of computer hacking on Australia's parliament and political parties just months from an election. | Hack | ★★★★★ | |
|
2019-02-20 20:54:03 | WinPot ATM Malware Resembles a Slot Machine (lien direct) | A piece of malware targeting automated teller machines (ATMs) has an interface that looks like a slot machine, Kaspersky Lab reports. Dubbed WinPot, the malware was initially detected in March last year, targeting the ATMs of a popular vendor to make the devices automatically dispense all cash from their most valuable cassettes. | Malware | ||
|
2019-02-20 20:50:01 | Firms Moving Sensitive Data to Cloud, But Security Still a Problem: Oracle (lien direct) | Companies are increasingly moving sensitive data to the cloud, but cybersecurity, including the human factor and technology, is still a problem for many, according to a new report published on Wednesday by Oracle and KPMG. | |||
|
2019-02-20 19:25:01 | New GandCrab Ransomware Decryptor Released (lien direct) | The cat-and-mouse game between BitDefender and the GandCrab ransomware developers continues. On Tuesday (Feb. 19) BitDefender released a new version of its GandCrab decryptor able to decrypt versions of GandCrab 1, 4 and 5 up to the latest version 5.1. The decryptor is available from BitDefender and from the NoMoreRansom project. | Ransomware | ★★ | |
|
2019-02-20 19:05:03 | Blockchain Security Startup CipherTrace Emerges With $15M in Funding (lien direct) | Blockchain security company CipherTrace has fully emerged on Tuesday with $15 million in venture capital financing from Silicon Valley and New York venture capital firms. | ★★★ | ||
|
2019-02-20 18:29:01 | Online ATM-style Scam Puts Shoppers at Risk: Symantec (lien direct) | Online shoppers are at a growing risk from a scam which allows hackers to skim their payment details, cyber security firm Symantec warned on Wednesday. | ★★ | ||
|
2019-02-20 18:19:00 | As US Pushes to Ban Huawei, UK Considers Softer Approach (lien direct) | Britain can handle the security risks involved with using mobile networks made by China's Huawei, the cybersecurity chief said Wednesday, adding to a growing debate among countries on whether the company should be banned, as the U.S. wants. | ★★★★★ | ||
|
2019-02-20 15:05:01 | Armorblox Emerges From Stealth With Natural Language Understanding Platform (lien direct) | Armorblox emerged from stealth mode on Wednesday with a platform that uses natural language understanding (NLU) to detect cyber threats hidden in emails and documents. The company also announced a $16.5 million Series A funding round. | ★★★ | ||
|
2019-02-20 14:41:05 | Microsoft Says Russian Hackers Targeted Democratic Institutions in Europe (lien direct) | Microsoft says it has observed a group widely associated with the Russian government launching numerous cyberattacks on democratic institutions in Europe between September and December 2018. | ★★★★★ | ||
|
2019-02-20 14:31:05 | Cyber and Physical Convergence Opens Doors for Attackers: Report (lien direct) | 2018 saw the convergence of three separate threat trends -- two that have evolved over the last few years, and one that came to the fore during 2018. These are the merging of IoT botnets, destructive malware and cryptojacking. | Malware Threat | ★★★★★ | |
|
2019-02-20 13:59:02 | Got Critical Infrastructure? Then You Should Know How To Protect It (lien direct) | Both IT and OT Teams Should be Able to Quickly Access and Analyze all Data Relevant to Their Needs | ★★★★★ | ||
|
2019-02-20 13:36:04 | Rockwell Automation to Patch Publicly Disclosed Power Monitor Flaws (lien direct) | Rockwell Automation is working on patches for two vulnerabilities affecting its Allen-Bradley PowerMonitor 1000 products. Details of the flaws have been public since November 2018. | |||
|
2019-02-20 10:37:00 | Supply Chain Attacks Nearly Doubled in 2018: Symantec (lien direct) | The number of supply chain attacks observed last year was 78% higher compared to the previous year, a new Symantec report reveals. | |||
|
2019-02-20 02:55:03 | Potential Privacy Lapse Found in Americans\' 2010 Census Data (lien direct) | An internal team at the Census Bureau found that basic personal information collected from more than 100 million Americans during the 2010 head count could be reconstructed from obscured data, but with lots of mistakes, a top agency official disclosed Saturday. | |||
|
2019-02-19 20:07:05 | Breach at PoS Firm Hits Hundreds of U.S. Restaurants, Hotels (lien direct) | Point-of-sale (PoS) solutions provider North Country Business Products, whose products are used at over 6,500 locations across the United States, recently disclosed a data breach that resulted in the exposure of payment card data. | Data Breach | ||
|
2019-02-19 18:52:01 | 18,000 Android Apps Violate Google\'s Ad ID Policies: Analysis (lien direct) | Mobile privacy reasearch group AppCensus has discovered 18,000 Android applications that violate Google Play's advertising identifier (ad ID) policies and users' privacy. | ★★★ | ||
|
2019-02-19 18:52:00 | GitHub Increases Bug Bounty Program Rewards, Expands Scope (lien direct) | After paying out $250,000 in bug bounties in 2018, GitHub has decided to increase rewards and expand the scope of its bug bounty program. | |||
|
2019-02-19 18:25:04 | New Multi-Stage Malware Updated Daily (lien direct) | A recently detected multi-stage malware has been updated daily since the beginning of the year, Avast security researchers reveal. | Malware | ||
|
2019-02-19 18:00:02 | Palo Alto Networks to Acquire Security Automation Firm Demisto for $560 Million (lien direct) | Network security giant Palo Alto Networks (NYSE: PANW) said on Tuesday that it has agreed to acquire Demisto, a Security Orchestration, Automation and Response (SOAR) firm, in a deal valued at $560 million. The final price is subject to adjustment, and will be paid through a combination of cash and PANW stock. | |||
|
2019-02-19 16:16:04 | Micro Focus Acquires Cyber-Threat Protection Firm Interset (lien direct) | Software and information technology provider Micro Focus is expanding its cybersecurity portfolio with the acquisition of cyber-threat protection company Interset. | |||
|
2019-02-19 15:53:03 | North Korea\'s Lazarus Hackers Found Targeting Russian Entities (lien direct) | It has long been thought that Russia is a no-go area for North Korean hacking group Lazarus. Russia is one of North Korea's few friends, along with China. | APT 38 | ||
|
2019-02-19 15:28:05 | Russian State-Sponsored Hackers Are Fastest: CrowdStrike (lien direct) | It takes Russian state-sponsored hackers less than 20 minutes to start moving laterally within a targeted organization's network after the initial breach, according to CrowdStrike's 2019 Global Threat Report. | Threat | ||
|
2019-02-19 13:39:00 | Fintech Security Firm nsKnox Raises $15 Million (lien direct) | Fintech security firm nsKnox on Tuesday announced that it raised $15 million in a Series A funding round. The round was led by Microsoft's M12 venture fund and Viola Ventures, with participation from Discount Capital and previous seed investors. The company plans on using the money to expand its global customer base and improve its product. | |||
|
2019-02-19 06:27:05 | Offensive Security Releases Kali Linux 2019.1 (lien direct) | Offensive Security on Monday announced the immediate availability of Kali Linux 2019.1, the latest version of the Debian-based operating system designed specifically for penetration testing and forensics. |
To see everything:
Our RSS (filtrered)
