Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-04 12:07:46 |
Hacking group also used an IE zero-day against security researchers (lien direct) |
An Internet Explorer zero-day vulnerability has been discovered used in recent North Korean attacks against security and vulnerability researchers. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-04 10:54:53 |
Plex Media servers actively abused to amplify DDoS attacks (lien direct) |
Plex Media Server systems are actively being abused by DDoS-for-hire services as a UDP reflection/amplification vector in Distributed Denial of Service (DDoS) attacks. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-04 09:17:03 |
Microsoft fixes PowerPoint crashes in Office February updates (lien direct) |
Microsoft released the February 2021 non-security Microsoft Office updates with improvements and fixes for issues and crashes impacting Windows Installer (MSI) editions of Office 2016, Office 2013, and Office 2010 products. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-04 03:21:00 |
(Déjà vu) Ransomware attacks increasingly destroy victims\' data by mistake (lien direct) |
More and more ransomware victims are resisting the extortionists and refuse to pay when they can recover from backups, despite hackers' threats to leak the data stolen before encryption. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-04 03:21:00 |
Rise in ransomware attacks mistakenly causing data destruction (lien direct) |
More and more ransomware victims are resisting the extortionists and refuse to pay when they can recover from backups, despite hackers' threats to leak the data stolen before encryption. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 22:30:08 |
Oxfam Australia investigates data breach after database sold online (lien direct) |
Oxfam Australia investigates a suspected data breach after a threat actor claimed to be selling their database belonging on a hacker forum. [...] |
Data Breach
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 17:55:34 |
New Fonix ransomware decryptor can recover victim\'s files for free (lien direct) |
Kaspersky has released a decryptor for the Fonix Ransomware (XONIF) that allows victims to recover their encrypted files for free. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 15:28:42 |
SonicWall fixes actively exploited SMA 100 zero-day vulnerability (lien direct) |
SonicWall has released a patch for the zero-day vulnerability used in attacks against the SMA 100 series of remote access appliances. [...] |
Vulnerability
|
|
★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 14:12:30 |
Microsoft fixes issue causing Windows 10 apps to forget passwords (lien direct) |
Microsoft has addressed a known issue impacting multiple Windows 10 apps and causing them to forget users' passwords after upgrading devices to certain Windows 10, version 2004 builds. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 12:24:31 |
Cisco fixes critical code execution bugs in SMB VPN routers (lien direct) |
Cisco has addressed multiple pre-auth remote code execution (RCE) vulnerabilities affecting several small business VPN routers and allowing attackers to execute arbitrary code as root on successfully exploited devices. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 11:17:57 |
Microsoft Defender ATP detects Chrome updates as PHP backdoors (lien direct) |
Microsoft Defender for Endpoint is currently detecting at least two Chrome updates as malware, tagging the Slovenian localization file bundled with the Google Chrome installer as a malicious file. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 10:54:07 |
Twitter now autoswitches to dark mode based on your OS settings (lien direct) |
If Twitter is suddenly using a dark mode theme, you are not alone. Starting yesterday, Twitter automatically switched to a dark or light theme based on your operating system settings. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 10:08:32 |
(Déjà vu) Windows 10 KB4598291 update fixes device deactivation, freezing issues (lien direct) |
Microsoft has released the KB4598291 release preview cumulative update for all editions of Windows 10 and Windows Server versions 2004 and 20H2, with fixes for device deactivation issues and unresponsiveness while playing games in full-screen. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 10:08:32 |
Windows 10 KB4598291 update fixes device deactivation, responsiveness issues (lien direct) |
Microsoft has released the KB4598291 release preview cumulative update for all editions of Windows 10 and Windows Server versions 2004 and 20H2, with fixes for device deactivation issues and unresponsiveness while playing games in full-screen. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 06:19:32 |
SolarWinds patches critical vulnerabilities in the Orion platform (lien direct) |
Even with the security updates prompted by the recent SolarWinds Orion supply-chain attack, researchers still found some glaring vulnerabilities affecting the platform, one of them allowing code execution with top privileges. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 06:00:39 |
Latest macOS Big Sur also has SUDO root privilege escalation flaw (lien direct) |
Recently discovered Linux SUDO privilege escalation vulnerability, CVE-2021-3156 (aka Baron Samedit) also impacts the latest Apple macOS Big Sur with no patch available yet. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-03 03:03:03 |
Female escort review site data breach affects 470,000 members (lien direct) |
An online community promoting female escorts and reviews of their services has suffered a data breach after a hacker downloaded the site's database. [...] |
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 16:39:20 |
US federal payroll agency hacked using SolarWinds software flaw (lien direct) |
The FBI has discovered that the National Finance Center (NFC), a U.S. Department of Agriculture (USDA) federal payroll agency, was compromised by exploiting a SolarWinds Orion software flaw, according to a Reuters report. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 14:02:02 |
Babyk Ransomware won\'t hit charities, unless they support LGBT, BLM (lien direct) |
The Babyk ransomware operation has launched a new data leak site used to publish victim's stolen data as part of a double extortion strategy. Included is a list of targets they wont attack with some exclusions that definitely stand out. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 13:46:24 |
(Déjà vu) Microsoft Defender now detects macOS system, app vulnerabilities (lien direct) |
Microsoft announced that Defender for Endpoint will now also help admins discover OS and software vulnerabilities affecting macOS devices on their organization's network. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 13:46:24 |
Microsoft Defender now helps secure enterprise macOS devices (lien direct) |
Microsoft announced that Defender for Endpoint will now also help admins discover OS and software vulnerabilities affecting macOS devices on their organization's network. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 12:52:19 |
Trickbot malware now maps victims\' networks using Masscan (lien direct) |
The Trickbot malware has been upgraded with a network reconnaissance module designed to survey local networks after infecting a victim's computer. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 11:00:00 |
Malicious script steals credit card info stolen by other hackers (lien direct) |
A threat actor has infected an e-commerce store with a custom credit card skimmer designed to siphon data stolen by a previously deployed Magento card stealer. [...] |
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 10:25:21 |
Apple pulls iCloud 12 for Windows 10 with Keychain sync feature (lien direct) |
Apple has pulled iCloud 12 for Windows 10 from the Microsoft Store for what is believed to be issues with their new Chrome iCloud Keychain password synchronization feature. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 07:09:31 |
New Linux malware steals SSH credentials from supercomputers (lien direct) |
A new backdoor has been targeting supercomputers across the world, often stealing the credentials for secure network connections by using a trojanized version of the OpenSSH software. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-02 03:32:00 |
Netgain ransomware incident impacts local governments (lien direct) |
The ransomware incident that Netgain, a provider of managed IT services, had late last year rippled onto its customers. Now, Ramsey County, Minnesota, is informing clients of the Family Health Division program that the hackers may have accessed personal data. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 16:15:30 |
Data breach exposes 1.6 million Washington unemployment claims (lien direct) |
Washington's State Auditor office has suffered a data breach that exposed the personal information in 1.6 million employment claims. [...] |
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 15:10:57 |
US govt: Number of identity theft reports doubled last year (lien direct) |
The U.S. Federal Trade Commission (FTC) said today that the number of identity theft reports has doubled during 2020 when compared to 2019, reaching a record 1.4 million reports within a single year. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 14:15:30 |
Phishing campaign lures US businesses with fake PPP loans (lien direct) |
Threat actors are sending phishing emails impersonating a Small Business Administration (SBA) lender to prey on US business owners who want to apply for a PPP loan to keep their business going during the COVID-19 crisis. [...] |
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 12:37:18 |
SonicWall SMA 100 zero-day exploit actively used in the wild (lien direct) |
A SonicWall SMA 100 zero-day vulnerability is being actively exploited in the wild, according to a tweet by cybersecurity firm NCC Group. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 10:45:03 |
(Déjà vu) Exposed Azure bucket leaked passports, IDs of volleyball reporters (lien direct) |
A publicly exposed cloud storage bucket was found to contain images of hundreds of passports and identity documents belonging to journalists and volleyball players from around the world. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 10:45:03 |
European volleyball org\'s Azure bucket exposed reporter passports (lien direct) |
A publicly exposed cloud storage bucket was found to contain images of hundreds of passports and identity documents belonging to journalists and volleyball players from around the world. [...] |
|
|
★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 10:24:06 |
Scammers posing as FBI agents threaten targets with jail time (lien direct) |
The U.S. Federal Bureau of Investigation (FBI) is warning scammers actively posing as FBI representatives and threatening targets with fines and jail time unless they don't hand out personal and/or financial information. [...] |
|
|
★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-02-01 08:04:01 |
Android emulator supply-chain attack targets gamers with malware (lien direct) |
ESET researchers have discovered that an unknown threat actor has compromised the updating mechanism of NoxPlayer, an Android emulator for Windows and macOS, made by Hong Kong-based company BigNox. [...] |
Malware
Threat
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-31 18:29:44 |
SpamCop anti-spam service suffers an outage after its domain expired (lien direct) |
Cisco's SpamCop anti-spam service suffered an outage Sunday after a its domain mistakenly was allowed to expire. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-31 13:15:02 |
Windows 10 features that boost your PC\'s security and privacy (lien direct) |
Like almost all operating systems these days, Windows 10 is vulnerable to security and privacy issues, and researches have proved that Microsoft can track a lot of your activities to improve their products and enable personalized ads and promotions. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-30 12:49:14 |
Beware: Malicious Home Depot ad gets top spot in Google Search (lien direct) |
A malicious Home Depot advertising campaign is redirect Google search visitors to tech support scams. [...] |
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-30 10:12:00 |
UK Research and Innovation (UKRI) suffers ransomware attack (lien direct) |
The UK Research and Innovation (UKRI) is dealing with a ransomware incident that encrypted data and impacted two of its services that offer information to subscribers and the platform for peer review of various parts of the agency. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 21:20:42 |
Fonix ransomware shuts down and releases master decryption key (lien direct) |
The Fonix Ransomware operators have shut down their operation and released the master decryption allowing victims to recover their files for free. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 17:27:19 |
The Week in Ransomware - January 29th 2021 - Striking back (lien direct) |
It has been a hectic week, with law enforcement conducting two successful law enforcement operations that will significantly impact ransomware. [...] |
Ransomware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 16:04:57 |
(Déjà vu) Here\'s how law enforcement\'s Emotet malware module works (lien direct) |
New research released today provides greater insight into the Emotet module created by law enforcement that will uninstall the malware from infected devices in April. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 16:04:57 |
Here\'e how law enforcement\'s Emotet malware module works (lien direct) |
New research released today provides greater insight into the Emotet module created by law enforcement that will uninstall the malware from infected devices in April. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 14:25:12 |
Vovalex is likely the first ransomware written in D (lien direct) |
A new ransomware called Vovalex is being distributed through fake pirated software that impersonates popular Windows utilities, such as CCleaner. [...] |
Ransomware
|
CCleaner
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 14:06:49 |
New Pro-Ocean malware worms through Apache, Oracle, Redis servers (lien direct) |
The financially-motivated Rocke hackers are using a new piece of cryptojacking malware called Pro-Ocean to target vulnerable instances of Apache ActiveMQ, Oracle WebLogic, and Redis. [...] |
Malware
|
APT 32
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 11:20:38 |
Perl.com domain stolen, now using IP address tied to malware (lien direct) |
The domain name perl.com was stolen this week and is now points to an IP address associated with malware campaigns. [...] |
Malware
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-29 03:33:33 |
Windows Installer zero-day vulnerability gets free micropatch (lien direct) |
A vulnerability in the Windows Installer component, which Microsoft attempted to fix several times to no avail, today received a micropatch to deny hackers the option of gaining the highest privileges on a compromised system. [...] |
Vulnerability
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-28 18:41:34 |
USCellular hit by a data breach after hackers access CRM software (lien direct) |
Mobile network operator USCellular suffered a data breach after hackers gained access to its CRM and viewed customers' accounts. [...] |
Data Breach
|
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-28 16:37:36 |
Microsoft: 8 trillion daily signals power our cybersecurity services (lien direct) |
Microsoft's security services grew by $10 billion in 2020, as more companies began utilizing their cloud-based security services. [...] |
|
|
★★★★★
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-28 14:47:45 |
Microsoft: DPRK hackers \'likely\' hit researchers with Chrome exploit (lien direct) |
Today, Microsoft disclosed that they have also been monitoring the targeted attacks against vulnerability researchers for months and have attributed the attacks to a DPRK group named 'Zinc.' [...] |
Vulnerability
Medical
|
APT 38
|
|
![bleepingcomputer.webp](./Ressources/img/bleepingcomputer.webp) |
2021-01-28 13:42:16 |
Hezbollah hackers attack unpatched Atlassian servers at telcos, ISPs (lien direct) |
Volatile Cedar, an advanced hacker group believed to be connected to the Lebanese Hezbollah Cyber Unit, has been silently attacking companies around the world in espionage operations. [...] |
|
|
|