What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-12-12 08:18:47 | MoneyTaker Hacker Group Steals Millions from US and Russian Banks (lien direct) | A cyber-criminal group believed to be operating out of Russian-speaking territories has hit at least 20 banks and financial companies and stolen millions of US dollars in the process. [...] | |||
|
2017-12-12 03:30:36 | Google Security Expert Releases Proof-Of-Concept Code for iOS Jailbreak (lien direct) | Google security researcher Ian Beer has published proof-of-concept code for a rooting exploit that works both iOS and macOS devices. [...] | |||
|
2017-12-11 21:44:55 | File Spider Ransomware Targeting the Balkans With Malspam (lien direct) | A new ransomware called File Spider is being distributed through spam that targets victims in Bosnia and Herzegovina, Serbia, and Croatia.ÂÂ These spam emails contains malicious Word documents that will download and install the File Spider ransomware onto a victims computer. [...] | |||
|
2017-12-11 19:35:31 | BrickerBot Author Retires Claiming to Have Bricked over 10 Million IoT Devices (lien direct) | The author of the BrickerBot malware has announced his retirement in an email to Bleeping Computer, also claiming to have bricked over 10 million devices since he started the "Internet Chemotherapy" project in November 2016. [...] | |||
|
2017-12-11 18:02:11 | How to Check Your HP Laptop for the Synaptic Keylogger and Remove It (lien direct) | With that said, if you have an HP laptop, you may be wondering if your laptop has the driver installed that contains this debug trace, or keylogging, feature. This article will tell you how to check if you have the affected driver installed on your laptop and how to update it to the latest version. [...] | |||
|
2017-12-11 16:44:41 | Day 6 of Microsoft\'s 12 Days of Deals: - Up to $70 off Xbox One + 2 free games (lien direct) | Today is Day 6 of Microsoft's 12 Days of Deals and the current deal is up to $70 off an Xbox One + 2 free games. For the full $70 off,ÂÂ you would need to purchase the Xbox One S 1TB Console - Minecraft Limited Edition Bundle, while the rest of the bundles will give you $50 off. [...] | |||
|
2017-12-11 15:01:00 | Tech Support Scammers Invade Spotify Forums to Rank in Search Engines (lien direct) | Over the past few months, Tech Support scammers have been using the Spotify forums to inject their phone numbers into the first page of the Google & Bing search results. They do this by submittingÂÂ a constant stream of spam posts to the Spotify forums, whose pages tend to rank well in Google.ÂÂ [...] | |||
|
2017-12-11 14:14:01 | ProxyM Botnet Used as Relay Point for SQLi, XSS, LFI Attacks (lien direct) | A botnet made up of IoT devices is helping hackers mask attacks on web applications, acting as a relay point for SQL injection (SQLi), cross-site scripting (XSS), and local file inclusion (LFI) attempts. [...] | |||
|
2017-12-11 08:22:54 | Script Recovers Event Logs Doctored by NSA Hacking Tool (lien direct) | Security researchers have found a way to reverse the effects of an NSA hacking utility that deletes event logs from compromised machines. [...] | |||
|
2017-12-11 00:15:00 | Phishing Attacks on Bitcoin Wallets Intensify as Price Goes Higher and Higher (lien direct) | It was only natural that the Internet's cyber-criminal element would turn its gaze towards the Bitcoin ecosystem after the cryptocurrency's price has surged from $11,000 on Monday to almost $17,500 earlier today. [...] | |||
|
2017-12-09 13:15:54 | India Tells Troops to Delete Chinese Apps From Phones Amidst Tracking Fears (lien direct) | The Indian Defence Ministry has advised troops stationed on the Chinese border to uninstall Chinese-made apps from their smartphones. [...] | |||
|
2017-12-09 03:00:00 | Android Vulnerability Lets Malware Bypass App Signatures (lien direct) | Google's December 2017 Android Security Bulletin contains a fix for a vulnerability that allows malicious actors to bypass app signatures and inject malicious code into Android apps. [...] | |||
|
2017-12-08 15:40:07 | Keylogger Found in HP Notebook Keyboard Driver (lien direct) | HP has released driver updates for hundreds of notebook models to remove debugging code that an attacker could have abused as a keylogger component. [...] | |||
|
2017-12-08 11:17:56 | The Week in Ransomware - December 8th 2017 - StorageCrypt, HC7, and LockCrypt (lien direct) | This week was mostly about small ransomwareÂÂ variants being released, but we did have some big stories. First, we have HC7, which is targeting entire networks through hacked remote desktop services, then we had StorageCrypt being installed on NAS devices, and finally the county computers ofÂÂ Mecklenburg County were hit by LockCrypt. [...] | |||
|
2017-12-08 09:45:18 | Secure Apps Exposed to Hacking via Flaws in Underlying Programming Languages (lien direct) | Research presented this week at the Black Hat Europe 2017 security conference has revealed that several popular interpreted programming languages are affected by severe vulnerabilities that expose apps built on these languages to attacks. [...] | |||
|
2017-12-08 05:06:06 | Microsoft Fixes Malware Protection Engine Bug Discovered by British Intelligence (lien direct) | On Wednesday, Microsoft started rolling out an update to all Windows products that rely on the Malware Protection Engine for security scans. [...] | |||
|
2017-12-08 03:00:00 | Wp-Vcd WordPress Malware Spreads via Nulled WordPress Themes (lien direct) | A WordPress malware campaign that recently picked up steam last month is now using nulled (pirated) premium themes to infect new victims. [...] | |||
|
2017-12-08 01:00:00 | But of Course This Bluetooth-Enabled Gun Safe Got Hacked. Are You Surprised? (lien direct) | Researchers find three vulnerabilities in an IoT safe that can be exploited to acquire the safe's PIN code, pair with the device, and open the safe. [...] | |||
|
2017-12-07 16:58:37 | Here\'s How to Enable Chrome "Strict Site Isolation" Experimental Security Mode (lien direct) | Google Chrome 63, which shipped yesterday evening, arrived with a new experimental feature called Strict Site Isolation that according to Google engineers is an additional security layer on top of Chrome's built-in sandboxing technology. [...] | |||
|
2017-12-07 13:40:05 | Apps Can Track Users Even When GPS Is Turned Off (lien direct) | Princeton researchers have developed a proof-of-concept app that can be used to reliably track users even if an app does not access a phone's GPS data, and the user has purposely turned off GPS services. [...] | |||
|
2017-12-07 05:45:36 | Google Chrome 63 Released for Android, Linux, Mac, and Windows (lien direct) | Google has started rolling out version 63 of its Chrome browser for Windows, Mac, Linux, and Android users. Most changes in this version address under-the-hood features and bring speed improvements and better support for web standards. [...] | |||
|
2017-12-07 04:15:00 | "Process Doppelgänging" Attack Works on All Windows Versions (lien direct) | Today, at the Black Hat Europe 2017 security conference in London, two security researchers from cyber-security firm enSilo have described a new code injection technique called "Process Doppelgänging." [...] | |||
|
2017-12-06 20:10:45 | Keylogger Found on Nearly 5,500 Infected WordPress Sites (lien direct) | Nearly 5,500 WordPress sites are infected with a malicious script that logs keystrokes and sometimes loads an in-browser cryptocurrency miner. [...] | |||
|
2017-12-06 18:25:12 | Ethiopian Cyber-Spies Left Spyware Operational Logs on Public Web Folder (lien direct) | The Ethiopian government used spyware acquired from an Israeli company to spy on dissidents living in the country and abroad, but government operatives have failed when configuring their command and control (C&C) server, exposing a list of all their targets. [...] | |||
|
2017-12-06 16:44:07 | Largest Cryptocurrency Mining Market NiceHash Hacked (lien direct) | In a statement published on social media, NiceHash, a crypto-mining marketplace, said hackers breached its site and stole all the Bitcoin from its main wallet. [...] | |||
|
2017-12-06 16:01:41 | HC7 GOTYA Ransomware Installed via Remote Desktop Services. Spread with PsExec (lien direct) | A new ransomware called HC7 is infecting victims by hacking into Windows computersÂÂ that are running publicly accessible Remote Desktop services. Once the developers gain access to the hacked computer, the HC7 ransomware is then installed on all accessible computers on the network. [...] | |||
|
2017-12-06 14:20:07 | Apple Issues Security Updates for MacOS, iOS, TvOS, WatchOS, and Safari (lien direct) | The most relevant security update is thOver the course of the last four days, Apple has released updates to address security issues for several products, such as macOS High Sierra, Safari, watchOS, tvOS, and iOS.e one to macOS, as it also permanently fixes the bug that allowed attackers to access macOS root accounts without having to [...] | |||
|
2017-12-06 10:00:00 | Microsoft Kicks off their 12 Days of Deals on Surface, Xbox, Virtual Reality, and More (lien direct) | Starting today and through December 17th, Microsoft has kicked off their annual 12 Days of Deals event where you can get savings on various Microsoft products. [...] | |||
|
2017-12-06 08:02:40 | 74% of All Bitcoin-Related Sites Suffered a DDoS Attack (lien direct) | Almost three out of four Bitcoin exchanges and related cryptocurrency sites have suffered a DDoS attack in the third quarter of 2017, said DDoS mitigation firm Imperva Incapsula in a report released yesterday afternoon. [...] | |||
|
2017-12-06 04:45:40 | HBO Hacker Was Part of Iran\'s "Charming Kitten" Elite Cyber-Espionage Unit (lien direct) | Behzad Mesri, the Iranian national the US has accused of hacking HBO this year, is part of an elite Iranian cyber-espionage unit known in infosec circles as Charming Kitten, according to a report released yesterday by Israeli firm ClearSky Cybersecurity. [...] | Conference | APT 35 | |
|
2017-12-06 00:25:00 | ICO Cryptocurrency Gold Rush Is Over as SEC Charges 3rd Company (lien direct) | The US Securities and Exchange Commission (SEC) has taken action against the fourth Initial Coin Offering (ICO) in the past four months, effectively signaling the end of an era on the cryptocurrency market where shady ICOs have dominated this year's news cycle. [...] | |||
|
2017-12-05 18:09:53 | StorageCrypt Ransomware Infecting NAS Devices Using SambaCry (lien direct) | Recently BleepingComputer has receivedÂÂ a flurry of support requests for a new ransomwareÂÂ being named StorageCrypt that is targeting NAS devices such as the Western DigitalÂÂ My Cloud. Victims have been reporting that their files have been encrypted and a note left with a ransom demand of between .4 and 2 bitcoins. [...] | |||
|
2017-12-05 14:10:37 | Satori Botnet Has Sudden Awakening With Over 280,000 Active Bots (lien direct) | Security researchers are raising the alarm in regards to a new botnet named Satori that has been seen active on over 280,000 different IPs in the past 12 hours. [...] | Satori | ||
|
2017-12-05 09:48:44 | Mailsploit Lets Attackers Send Spoofed Emails on Over 33 Email Clients (lien direct) | German security researcher Sabri Haddouche has discovered a set of vulnerabilities that he collectively refers to as Mailsploit, and which allow an attacker to spoof email identities, and in some cases, run malicious code on the user's computer. [...] | |||
|
2017-12-05 09:00:00 | Android App Developers at Risk of Attacks via ParseDroid Vulnerability (lien direct) | A vulnerability codenamed ParseDroid affects development tools used by Android app developers and allows attackers to steal files and execute malicious code on vulnerable machines. [...] | |||
|
2017-12-05 05:00:38 | DHS: Drone Maker "Likely" Helping China Spy on US (lien direct) | The US Department of Homeland Security (DHS) has sent out a memo to US law enforcement and private businesses warning that Chinese drone maker Da-Jiang Innovations (DJI) has been spying on the US at the behest of China. [...] | |||
|
2017-12-05 03:18:54 | Germany Preparing Law for Backdoors in Any Type of Modern Device (lien direct) | German authorities are preparing a law that will force device manufacturers to include backdoors within their products that law enforcement agencies could use at their discretion for legal investigations. The law would target all modern devices, such as cars, phones, computers, IoT products, and more. [...] | |||
|
2017-12-04 17:40:30 | Google to Crack Down on Android Apps That Collect User Data Without Consent (lien direct) | Google announced plans to crack down on Android applications that fail to warn users when they are collecting personal data. The OS maker is giving app developers 60 days to fix their issues and update apps with notifications of their full practices. In case app developers fail to comply, Google will take it upon itself to warn users [...] | ★★★ | ||
|
2017-12-04 16:23:12 | Windows 7 Update giving a 80248015 Error? Here\'s Why and How to Fix It. (lien direct) | If you try to search for new Windows updates on Windows 7, you are most likely getting aÂÂ 80248015ÂÂ error. This error is beingÂÂ reported in our forums, the Microsoft forums, and other sites so it appears to be a problem affecting all Windows 7 users.ÂÂ [...] | ★★★★★ | ||
|
2017-12-04 15:25:41 | World Police Shut Down Andromeda (Gamarue) Botnet (lien direct) | Law enforcement agencies across the globe and members of the private sector announced today they shut down the Andromeda (Gamarue or Wauchos) botnet. [...] | ★★ | ||
|
2017-12-04 13:05:15 | Man Hacks Jail Computer Network to Get Friend Released Early (lien direct) | A Michigan man pleaded guilty last week to hacking the computer network of the Washtenaw County Jail, where he modified inmate records in an attempt to have an inmate released early. [...] | Guideline | ||
|
2017-12-04 11:05:50 | Leakbase.pw Hacked Password Service Goes Dark (lien direct) | Over the weekend, Leakbase.pw, a web site that sold subscriptions to usernames and passwords leaked in data breaches at other companies, suddenly discontinued their service. [...] | |||
|
2017-12-03 19:41:37 | Dell, Other Vendors Start Shipping Laptops With Intel ME Firmware Disabled (lien direct) | Some hardware vendors are reacting to the recent revelation that some of Intel's core CPU technology is riddled with security holes. [...] | |||
|
2017-12-03 18:00:37 | Student Hacks High School, Changes Grades, and Sends College Applications (lien direct) | Tenafly High School has informed parents earlier this month that a student has gained access to its internal IT systems, changed grades to improve his GPA, and sent out college applications immediately after. [...] | |||
|
2017-12-03 10:07:01 | Former Sysadmin Caught Hacking His Ex-Employer by His Replacement (lien direct) | On Wednesday, November 29, a Kansas City court sentenced a Missouri man to six years in federal prison without parole for hacking his former employer, stealing trade secrets, and for accessing child pornography. [...] | |||
|
2017-12-03 09:05:26 | PayPal Says 1.6 Million Customer Details Stolen in Breach at Canadian Subsidiary (lien direct) | PayPal says that one of the companies it recently acquired suffered a security incident during which an attacker appears to have accessed servers that stored information for 1.6 million customers. [...] | |||
|
2017-12-02 20:14:06 | UK\'s NCSC Warns Government Agencies About Russian Antivirus Products (lien direct) | A branch of the UK intelligence forces has sent out a letter to UK government departments and agencies about the use of Russian antivirus software to protect computers that store classified information. [...] | |||
|
2017-12-02 04:06:49 | NSA Employee at the Middle of the Kaspersky Saga Admits Taking Files Home (lien direct) | The US Department of Justice (DOJ) has formally charged a former NSA employee for taking classified documents home. The man, Nghia Hoang Pho, 67, of Ellicott City, Maryland, pleaded guilty today, according to court documents released by the DOJ. [...] | Guideline | ||
|
2017-12-01 21:45:38 | The Week in Ransomware - December 1st 2017 - Decryptors, BTCWare, and More (lien direct) | It has been a busy ransomware week with lots of small and some bigger variants released. This week we had a new CryptoMix, a new BTCWare, and a few new malspamÂÂ campaigns for GlobeImposter and Sigma. Even better, we had a few new and updated decryptorsÂÂ released so that people can recover their files for free. [...] | |||
|
2017-12-01 19:37:54 | Halloware Ransomware on Sale on the Dark Web for Only $40 (lien direct) | A malware author by the name of Luc1F3R is peddling a new ransomware strain called Halloware for the lowly price of $40. [...] |
To see everything:
