Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2017-09-21 16:45:00 |
SEC Says Intruders May Have Accessed Insider Data for Illegal Trading (lien direct) |
2016 breach of the Securities and Exchange Commission's EDGAR database dents its reputation as a federal cybersecurity enforcer. |
|
|
|
|
2017-09-21 16:05:00 |
CCleaner Malware Targeted Tech Giants Cisco, Google, Microsoft (lien direct) |
The backdoor discovered in Avast's CCleaner targeted top tech companies including Google, Microsoft, Samsung, Sony, VMware, and Cisco. |
|
CCleaner
|
|
|
2017-09-21 09:23:00 |
OPM Data Breach Lawsuit Tossed, Fed Plaintiffs will Appeal (lien direct) |
A judge ruled federal employees cannot sue for damages from the 2015 Office of Personnel Management data breach. |
|
|
|
|
2017-09-20 16:15:00 |
Mobile Ransomware Hits Browsers with Old-School Techniques (lien direct) |
Several types of malware sold on the dark Web advertise the ability to spy on Android smartphones, encrypt files, and demand payment. |
|
|
|
|
2017-09-20 10:00:00 |
1.9 Billion Data Records Exposed in First Half of 2017 (lien direct) |
Every second, 122 records are exposed in breaches around the globe, a new report shows. And that's doesn't even include the new Equifax breach data. |
|
Equifax
|
|
|
2017-09-18 18:20:00 |
Equifax Exec Departures Raise Questions About Responsibility for Breach (lien direct) |
Disclosed details suggest a failure by the technology team but senior executives and the board are not above responsibility as well, experts say. |
|
Equifax
|
|
|
2017-09-18 17:20:00 |
(Déjà vu) Avast CCleaner Compromised Amid Rise in Supply Chain Threats (lien direct) |
Attackers somehow hacked the build system of Avast's CCleaner to deliver malware, potentially affecting millions of users. |
|
CCleaner
|
|
|
2017-09-16 08:30:00 |
OurMine Claims Vevo Hack, Releases 3.12TB of Data (lien direct) |
Group known for claiming responsibility for hacking Mark Zuckerberg's Twitter account and the WikiLeaks' DNS attack says it's behind the Vevo breach. |
|
|
|
|
2017-09-15 09:15:00 |
Attacks on Android Soared 40% in Q2 (lien direct) |
Despite a rise in attacks, the average number of malicious variants remains surprisingly limited, according to a report from Avast. |
|
|
|
|
2017-09-14 16:28:00 |
FTC Opens Probe into Equifax Data Breach (lien direct) |
Apache Struts flaw was known to be critical and should have been addressed, security researchers say. |
|
Equifax
|
|
|
2017-09-14 11:55:00 |
\'ExpensiveWall\' Attacks More Than 1 Million Android Users (lien direct) |
New Android malware variant registers users for paid services without their permission and sends bogus premium SMS messages. |
|
|
|
|
2017-09-13 18:30:00 |
\'Bashware\' Undermines Windows 10 Security Via Linux Subsystem (lien direct) |
New WSL feature in Windows 10 gives attackers a way to run malware without being detected by any current endpoint security tools, Check Point says. |
|
|
|
|
2017-09-11 18:30:00 |
Equifax Gets Slammed, Removes Forced Arbitration Clause from Credit Monitoring Offer (lien direct) |
Company's initial requirement that breach victims sign away their legal rights to get complimentary offer was one of several mistakes. |
|
Equifax
|
|
|
2017-09-11 12:30:00 |
7 Takeaways From The Equifax Data Breach (lien direct) |
The exposure of PII belonging to 143 million US consumers raises questions about the continued use of SSNs as identifiers, breach liability and app sec spending. |
|
Equifax
|
|
|
2017-09-08 13:57:00 |
Equifax Data Breach Prompts Calls For Tougher Security Requirements On Data Aggregators (lien direct) |
Credit report bureau discloses breach that exposed data on 143 million US consumers. |
|
Equifax
|
|
|
2017-09-08 12:15:00 |
New Android \'Toast\' Vuln Makes Overlay Attacks Easier (lien direct) |
The vast majority of Android devices are at risk of a 'Toast' overlay attack that builds on Cloak and Dagger exploits. The bug could lead to remote control of the device unless Google's latest security patch is applied. |
Guideline
|
|
|
|
2017-09-07 10:30:00 |
Sandbox-Aware Malware Foreshadows Potential Attacks (lien direct) |
For the continuous monitoring industry to remain relevant, it needs to match the vigor of sandbox vendors against targeted subversion. |
|
|
|
|
2017-09-05 19:30:00 |
Data Breach Costs Vary Significantly by Organization (lien direct) |
Don't use publicly reported breach costs at other organizations as an estimate for what you might end up paying for a breach, Forrester says. |
|
|
|
|
2017-09-05 14:10:00 |
Judge Rules that Yahoo Breach Victims Can Sue (lien direct) |
The 1 billion users who were victims in Yahoo's massive data breaches between 2013 to 2016 received court approval to move forward with their case. |
|
Yahoo
|
|
|
2017-09-01 09:30:00 |
Juniper Networks to Buy Cyphort for Threat Detection (lien direct) |
Company will integrate Cyphort into its Sky ATP platform to support more file types, and offer on- and off-premise support, analytics, and improved malware detection. |
|
|
|
|
2017-09-01 07:00:00 |
Automated Lateral Movement: Targeted Attack Tools for the Masses (lien direct) |
Tal Be'ery and Tal Maor explain that the most pervasive, worst defended tactic of sophisticated attackers will soon be ready for script kiddies, and release GoFetch: a new lateral movement automation tool. |
|
|
|
|
2017-08-31 10:20:00 |
US Debit Card Compromises Up 39%: FICO (lien direct) |
FICO reports an increase in the number of compromised debit cards, ATMs, and point-of-sale devices in the first six months of 2017. |
|
|
|
|
2017-08-29 13:40:00 |
FBI/IRS-Themed Email Scam Spreads Ransomware (lien direct) |
Fake IRS and FBI emails are circulating on the Internet that attempt to lure victims into downloading malware that will ultimately hold their data hostage. |
|
|
|
|
2017-08-29 10:30:00 |
How Hackers Hide Their Malware: The Basics (lien direct) |
Malware depends on these four basic techniques to avoid detection. |
|
|
|
|
2017-08-28 16:55:00 |
Massive Android DDoS Botnet Derailed (lien direct) |
WireX was being used to launch DDoS attacks against targets in multiple industries; Google removes 300 botnet-related apps from Play Store. |
|
|
|
|
2017-08-25 14:55:00 |
Chinese National with Possible Links to OPM Breach Arrested (lien direct) |
Charging documents reveal sophistication - and a surprising degree of sloppiness. |
|
|
|
|
2017-08-24 23:30:00 |
Apple iOS Exploit Takes Complete Control of Kernel (lien direct) |
Researcher demonstrates 'severe' ZIVA exploit at Hack in the Box. |
|
|
|
|
2017-08-24 13:41:00 |
Mac\'s Biggest Threats Lurk in the Apple App Store (lien direct) |
Mac malware is on the rise, especially adware and potentially unwanted programs in the App Store. |
|
|
|
|
2017-08-24 13:00:00 |
GoT & the Inside Threat: Compromised Insiders Make Powerful Adversaries (lien direct) |
What Game of Thrones' Arya Stark and the Faceless Men can teach security pros about defending against modern malware and identity theft.
|
|
|
|
|
2017-08-24 12:30:00 |
Insecure IoT Devices Pose Physical Threat to General Public (lien direct) |
At the car wash, look out for attack robots. Billy Rios discusses how IoT devices could be hacked to physically attack people -- not just on factory floors, but in everyday public settings. |
|
|
|
|
2017-08-23 18:35:00 |
Suspect in Yahoo Breach Pleads Not Guilty (lien direct) |
Karim Baratov enters his plea in US Courts today, after waiving his extradition hearing in Canada last week. |
|
Yahoo
|
|
|
2017-08-23 08:50:00 |
Google Removes 500 Android Apps Following Spyware Scare (lien direct) |
Android apps embedded with an advertising software development kit removed after researchers discover its potential for stealing users' caller data. |
|
|
|
|
2017-08-22 19:30:00 |
ROPEMAKER Attack Turns Benign Emails Hostile Post-Delivery (lien direct) |
The intersection of email and Web technologies has given attackers a way to mess with your email after it has been delivered to your inbox, Mimecast says.
|
|
|
|
|
2017-08-22 12:55:00 |
Yahoo Hack Suspect to be Extradited to US (lien direct) |
Karim Baratov, accused of working with Russian intelligence for the 2014 Yahoo breach, has waived an extradition hearing. |
|
Yahoo
|
|
|
2017-08-22 08:20:00 |
How to Hack a Robot (lien direct) |
Forget 'killer robots:' researchers demonstrate how collaborative robots, or 'cobots,' can be hacked and dangerous. |
|
|
|
|
2017-08-18 15:09:00 |
Russian-Speaking APT Engaged in G20 Themed Attack (lien direct) |
A newly discovered dropper for the KopiLuwak backdoor suggests that the Turla group is back at it again, Proofpoint says. |
|
|
|
|
2017-08-17 14:00:00 |
\'Pulse Wave\' DDoS Attacks Emerge As New Threat (lien direct) |
DDoS botnets are launching short but successive bursts of attack traffic to pin down multiple targets, Imperva says. |
|
|
|
|
2017-08-16 10:30:00 |
Discover a Data Breach? Try Compassion First (lien direct) |
The reactions to a big data breach often resemble the five stages of grief, so a little empathy is needed. |
|
|
|
|
2017-08-10 15:54:00 |
SonicSpy Authors Spin Out Over 1,000 Spyware Apps (lien direct) |
The actors behind this new malware family created a sizable selection of malicious apps in just over seven months, some of which appeared on Google Play. |
|
|
|
|
2017-08-09 14:15:00 |
Two Iranians Face Charges for Computer Hacking, Credit Card Fraud (lien direct) |
Federal prosecutors charged two Iranian nationals with identity theft and use of stolen credit card numbers as well as threatening to expose the breach to one of the victim's customers. |
|
|
|
|
2017-08-09 10:30:00 |
Uptick in Malware Targets the Banking Community (lien direct) |
A number of recent attacks, using tactics old and new, have made off with an astonishing amount of money. How can financial institutions fight back? |
|
|
|
|
2017-08-08 18:05:00 |
Konni Malware Campaign Targets North Korean Organizations (lien direct) |
For at least three years, an unknown threat actor has used the RAT to steal data and profile organizations in North Korea. |
|
|
|
|
2017-08-08 12:13:00 |
(Déjà vu) 67% of Malware Attacks Came via Phishing in Second Quarter (lien direct) |
During the second quarter, cyberattacks soared 24% worldwide with phishing attacks playing a large role and Adobe Flash one of the favorite attack targets. |
|
|
|
|
2017-08-08 12:13:00 |
67% of Malware Attacks Come by Way of Phishing in Second Quarter (lien direct) |
During the second quarter, cyberattacks soared 24% worldwide with phishing attacks playing a large role and Adobe Flash one of the favorite attack targets, according to a report released today by NTT Security. |
|
|
|
|
2017-08-08 10:30:00 |
Automating Defenses Against Assembly-Line Attacks (lien direct) |
A manual approach just won't cut it anymore. Here's a toolset to defeat automation and unify control across all attack vectors to stop automated attacks. |
|
|
|
|
2017-08-04 15:48:00 |
Steganography Use on the Rise Among Cyber Espionage, Cybercrime Groups (lien direct) |
At least three cyber espionage campaigns and several malware samples in recent months have employed ancient technique, Kaspersky Lab says. |
|
|
|
|
2017-08-04 11:15:00 |
HBO Breach Did Not Compromise Full Email System: CEO (lien direct) |
HBO's recent security breach likely did not compromise its entire email system as hacker(s) allegedly threaten to expose stolen data. |
|
|
|
|
2017-08-03 09:00:00 |
Fight \'Credential Stuffing\' with a New Approach to Authorization (lien direct) |
Token-based authorization that lets users prove their identity through Facebook, Google, or Microsoft credentials can dramatically reduce your attack surface and give enterprises a single point of control. |
|
|
|
|
2017-08-02 21:30:00 |
Can Machine Learning Help Organizations Improve Data Security? (lien direct) |
BitDefender's Malware Researcher Cristina Vatamanu talks about the opportunities and limitations of using machine-learning technology to identify security threats. |
|
|
|
|
2017-08-02 15:45:00 |
Chinese Telecom DDoS Attack Breaks Record (lien direct) |
A distributed denial of service siege spanning more than 11 days broke a DDoS record for the year, according to a report from Kaspersky Lab. |
|
|
|