Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-11-01 14:15:00 |
LinkedIn introduces new security features to combat fake accounts (lien direct) |
>Categories: NewsTags: fake accounts
Tags: social media platform
Tags: LinkedIn
Tags: AI
Tags: deep learning
Tags: reporting
After a deluge of fake or bot accounts these past few months, LinkedIn says it is starting to roll out some new security features.
(Read more...)
|
|
|
|
|
2022-11-01 14:00:00 |
Malware on the Google Play store leads to harmful phishing sites (lien direct) |
>Categories: AndroidCategories: NewsA family of malicious apps from developer Mobile apps Group are on Google Play infected with HiddenAds.
(Read more...)
|
Guideline
|
|
|
|
2022-11-01 11:00:00 |
Police warn of fake law enforcement arrest warrant calls (lien direct) |
>Categories: NewsTags: fake
Tags: fraud
Tags: police
Tags: cops
Tags: call
Tags: warrant
Tags: arrest
Tags: payment
We take a look at fake law enforcement calls leading to demands for money from victims.
(Read more...)
|
Guideline
|
|
|
|
2022-11-01 09:00:00 |
Raccoon Stealer admin will be extradited to the US, charged for computer crimes (lien direct) |
>Categories: NewsTags: Raccoon Stealer
Tags: Mark Sokolovsky
Tags: FBI
Tags:
Mark Sokolovsky, known online as “raccoonstealer”, was indicted by the US government for being an admin of a malware-as-a-service (MaaS) provider for the Raccoon Stealer malware.
(Read more...)
|
|
|
|
|
2022-10-31 20:00:00 |
Raspberry Robin worm used as ransomware prelude (lien direct) |
>Categories: NewsCategories: RansomwareTags: Raspberry Robin
Tags: FakeUpdates
Tags: LockBit
Tags: Clop
Tags: ransomware
Microsoft warns that the Raspberry Robin worm has triggered payload alerts on devices of almost 1,000 organizations in the past 30 days and is used to introduce ransomware.
(Read more...)
|
Ransomware
|
|
|
|
2022-10-28 21:45:00 |
A Chrome fix for an in-the-wild exploit is out-Check your version (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsGoogle has issued an update for Chrome to fix an issue in the V8 JavaScript engine
(Read more...)
|
|
|
|
|
2022-10-27 18:45:00 |
What is ransomware-as-a-service and how is it evolving? (lien direct) |
>Categories: BusinessDiving into how RaaS works, why it poses a unique threat to businesses, and how small-and-medium-sized (SMBs) businesses can prepare for the next generation of RaaS attacks.
(Read more...)
|
Threat
|
|
|
|
2022-10-27 17:30:00 |
Dormant Colors browser hijackers could be used for more nefarious tasks, report says (lien direct) |
>Categories: NewsTags: Dormant Colors
Tags: Guardio
Tags: browser hijacking
Tags: affiliate hijacking
Tags: search hijacking
Tags: malicious browser extension
Dormant Colors, a browser extension campaign, was spotted stealing browser data and hijacking search results and affiliation to thousands of sites.
(Read more...)
|
|
|
|
|
2022-10-27 17:15:00 |
Medibank customers\' personal data compromised by cyber attack (lien direct) |
>Categories: NewsTags: Medibank
Tags: data breach
Australian health care insurance company Medibank confirmed that the threat actor behind the cyberattack on the company had access to the data of at least 4 million customers
(Read more...)
|
Threat
|
|
|
|
2022-10-27 17:00:00 |
Maintenance Mode aims to keep phone data private during repairs (lien direct) |
>Categories: NewsTags: Samsung
Tags: mobile
Tags: cellphone
Tags: device
Tags: maintenance mode
Tags: privacy
Tags: security
Tags: data
Tags: snooping
Tags: repairs
Tags: fix
We take a look at a new mode developed by Samsung which aims to keep data safe during a repair.
(Read more...)
|
|
|
|
|
2022-10-27 16:45:00 |
Fake Proof-of-Concepts used to lure security professionals (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsTags: PoC
Tags: PoCs
Tags: Leiden
Tags: GitHub
Tags: VirusTotal
Tags: AbuseIPDB
Researchers from Leiden University analyzed many thousands of Proof-of-Concepts and found that 10 percent of those they found on GitHub are malicious
(Read more...)
|
|
|
|
|
2022-10-27 16:30:00 |
New streaming ad technology plays hide-and-seek with gamers (lien direct) |
>Categories: NewsTags: Amazon
Tags: Twitch
Tags: Prime
Tags: streaming
Tags: gamer
Tags: gaming
Tags: advert
Tags: advertising
Tags: in-game
We take a look at new form of ad tech for Twitch streaming viewers, but not players. How does it work? Can it even be successful?
(Read more...)
|
|
|
|
|
2022-10-27 15:00:00 |
Critical OpenSSL fix due Nov 1-what you need to know (lien direct) |
>Categories: NewsTags: fix
Tags: bug
Tags: vulnerability
Tags: exploit
Tags: attack
Tags: patch
Tags: update
Tags: OpenSSL
Tags: v3
Tags: v1
Tags: 3.0.5.
Version 3.0.7 of OpenSSL will fix the software's first critical issue for six years.
(Read more...)
|
|
|
|
|
2022-10-27 13:00:00 |
Chrome users, you have 3 months to say goodbye to Windows 7 and 8.1 (lien direct) |
>Categories: NewsTags: Google Chrome
Tags: Chrome 110
Tags: Windows 7
Tags: Windows 10
Tags: Windows 11
Tags: Windows 8.1
Tags: Windows Subsystem for Android
Tags: WSA
Chrome will not be there for you when Microsoft ends its Extended Security Updates program for legacy Windows versions early next year.
(Read more...)
|
|
|
|
|
2022-10-26 23:45:00 |
US agencies issue warning about DAIXIN Team ransomware (lien direct) |
>Categories: NewsCategories: RansomwareTags: DAIXIN
Tags: FBI
Tags: CISA
Tags: HHS
Tags: ransomware team
Tags: DAIXIN Team
Tags: ransomware
The FBI, CISA, and HSH have issued a joint advisory about a new threat to healthcare organizations
(Read more...)
|
Threat
Ransomware
|
|
★★
|
|
2022-10-26 22:30:00 |
Point-of-sale malware used to steal 167,000 credit cards (lien direct) |
>Categories: NewsTags: POS
Tags: malware
Tags: credit card
Tags: credit identity theft
Tags: C2
Tags: MajikPOS
Tags: Treasure Hunter
Researchers have discovered the theft of 167,000 sets of credit card detials by MajikPOS and Treasure Hunter POS malware
(Read more...)
|
Malware
|
|
★★
|
|
2022-10-26 17:15:00 |
iPhone zero-day. Update your devices now! (lien direct) |
>Categories: NewsTags: iPhone
Tags: iPad
Tags: Apple
Tags: zero day
Tags: exploit
Tags: bug
Tags: threat
Tags: CVE-2022-42847
A zero-day bug that affects iPhones and iPads is being exploited in the wild
(Read more...)
|
|
|
|
|
2022-10-26 14:00:00 |
Malformed signature trick can bypass Mark of the Web (lien direct) |
>Categories: NewsTags: MOTW
Tags: mark of the web
Tags: signature
Tags: malformed
Tags: malware
Tags: ransomware
Tags: bypass
Tags: SmartScreen
We take a look at reports that malware authors are using what appears to be a years-old bug to bypass Mark of the Web alerts.
(Read more...)
|
Malware
|
|
|
|
2022-10-25 04:00:00 |
An interview with cyber threat hunter Hiep Hinh (lien direct) |
>Categories: BusinessHiep Hinh is a Principal MDR Analyst at Malwarebytes, where he supports 24/7/365 Managed Detection and Response (MDR) efforts. In this post, we talk to Hiep about what he's learned about threat hunting over his 16+ year career.
(Read more...)
|
Threat
|
|
|
|
2022-10-24 20:00:00 |
Cisco warns of ISE vulnerability with no fixed release or workaround (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsTags: Cisco
Tags: Identity Services Engine
Tags: AnyConnect VPN server
Tags: CVE-2022-20822
Tags: CVE-2022-20959
Tags: CVE-2022-20933
Tags: input validation
Cisco's latest security advisory includes a vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) that could allow an attacker to read and delete files.
(Read more...)
|
Vulnerability
|
|
|
|
2022-10-24 15:30:00 |
A gym heist in London goes cyber (lien direct) |
>Categories: PodcastThis past summer, a woman's bag was stolen from her gym locker in London. Just hours later, thousands of pounds had been drained from her bank.
(Read more...)
|
|
|
|
|
2022-10-24 14:30:00 |
An odd kind of cybercrime: Gift vouchers, medical records, and...food (lien direct) |
>Categories: NewsTags: food
Tags: medical
Tags: nhs
Tags: gousto
Tags: compromise
Tags: laptop
Tags: vouchers
Peter Foy racked up a peculiar list of compromises before being brought to justice
(Read more...)
|
|
|
|
|
2022-10-24 11:15:00 |
Healthcare site leaks personal health information via Google and Meta tracking pixels (lien direct) |
>Categories: NewsCategories: PrivacyTags: personal health information
Tags: Advocate Aurora Health
Tags: tracking pixels
Tags: privacy
Tags: browser guard
Advocate Aurora Health has disclosed that its websites may have shared visitor's identity and personal health information with Google and Meta.
(Read more...)
|
|
|
|
|
2022-10-21 16:30:00 |
Former cop abused unrevoked system access to extort women (lien direct) |
>Categories: NewsCategories: PrivacyTags: Snapchat
Tags: Bryan Wilson
Tags: LMPD
Tags: Louisville Metropolitan Police Department
Tags: cyberstalking
Tags: sextortion
Details of a cyberstalking and sextortion case involving a former cop and his Snapchat victims have come to light.
(Read more...)
|
|
|
|
|
2022-10-21 15:30:00 |
Looking for student debt relief? Watch out for scammers says the FBI (lien direct) |
>Categories: NewsCategories: ScamsTags: One-Time Federal Student Loan Debt Relief
Tags: FBI
Tags: student loan relief scam
The FBI has warned that scammers are likely to target people looking for student loan relief now that applications have opened.
(Read more...)
|
|
|
|
|
2022-10-21 13:00:00 |
Gas, a positive social network for teens (no, really) (lien direct) |
>Categories: NewsTags: Gas
Tags: social network
Tags: poll
Tags: polls
Tags: mobile
Tags: iPhone
Tags: app
Tags: schools
Tags: kids
Tags: teens
Tags: teenagers
Tags: fun
We take a look at a fairly exclusive app designed for teens which claims to come with none of the nastiness found elsewhere online.
(Read more...)
|
|
|
|
|
2022-10-20 16:00:00 |
Third-party application patching: Everything you need to know for your business (lien direct) |
>Categories: BusinessIn this post, we cover the importance of third-party application patching and the challenges it can solve for your organization.
(Read more...)
|
Patching
|
|
|
|
2022-10-20 13:30:00 |
Suspected LAPSUS$ group member arrested in Brazil (lien direct) |
>Categories: CybercrimeCategories: NewsTags: Brasil
Tags: Lapsus$
Tags: Telegram
Tags: Dark Web
Tags: data exfiltration
Tags: SIM jacking
Tags: arrests
A person suspected of being a member of hacking group Lapsus$ has been arrested by Brazilian police
(Read more...)
|
|
|
|
|
2022-10-20 13:00:00 |
Microsoft breach reveals some customer data (lien direct) |
>Categories: NewsTags: Microsoft
Tags: breach
Tags: data
Tags: exposed
Tags: exposure
Tags: endpoint
We take a look at word of accidental data exposure leading to a reveal of Microsoft customer data.
(Read more...)
|
Guideline
|
|
|
|
2022-10-20 12:00:00 |
New PHP-based Ducktail infostealer is now after crypto wallets (lien direct) |
>Categories: NewsCategories: ThreatsTags: Ducktail
Tags: infosteal
Tags: information stealer
Tags: Zscaler
Tags: Trojan
Tags: Facebook Business
Tags: Facebook API graph
Tags: Facebook Ads Manager
Tags: PHP malware
An information stealer known to go after the Facebook accounts of businesses is now after crypto wallets, too.
(Read more...)
|
|
|
|
|
2022-10-20 11:15:00 |
Venus ransomware targets remote desktop services (lien direct) |
>Categories: NewsTags: Venus Ransomware
Tags: RDP
Tags: remote desktop services
Tags: encrypt
Tags: fraud
Tags: ransom
We take a look at reports of Venus ransomware targeting remote desktop services/RDP.
(Read more...)
|
Ransomware
|
|
|
|
2022-10-20 11:00:00 |
Microsoft fixes driver blocklist placing users at risk from BYOVD attacks (lien direct) |
>Categories: NewsTags: BYOVD
Tags: bring your own vulnerable driver
Tags: blocklist
Tags: microsoft
Tags: windows updates
We take a look at reports that Microsoft's driver blocklist hadn't been updated for three years, leaving people at risk from BYOVD attacks.
(Read more...)
|
|
|
|
|
2022-10-20 05:00:00 |
5 essential security tips for SMBs (lien direct) |
>Categories: BusinessFive things that every business can do (and should be paying attention to).
(Read more...)
|
|
|
|
|
2022-10-19 20:00:00 |
Man scammed IRL for a phone he sold online (lien direct) |
>Categories: NewsTags: scam
Tags: fake
Tags: fraud
Tags: sale
Tags: selling
Tags: bank transfer
Tags: app
Tags: phone
Tags: mobile
Tags: social media
We take a look at reports of scammers using fake bank transfer apps to make it look as though they've bought your for-sale item.
(Read more...)
|
|
|
|
|
2022-10-19 19:45:00 |
Ransomware attack freezes newspaper printing system (lien direct) |
>Categories: NewsCategories: RansomwareStimme Mediengruppe, a German media group, halted production of printed newspapers after a ransomware attack on Friday.
(Read more...)
|
Ransomware
|
|
|
|
2022-10-19 19:00:00 |
Why Log4Text is not another Log4Shell (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsTags: Log4Text
Tags: Apache
Tags: Commons Text
Tags: CVE-2022-42889
Tags: Log4j
Tags: Log4Shell
Tags: interpolators
Log4Text is a recently found vulnerability in Apache Commons. Log4Text provoked a knee jerk reaction because it reminds us of Log4Shell. So should we worry?
(Read more...)
|
Vulnerability
|
|
|
|
2022-10-19 11:00:00 |
DeadBolt ransomware gang tricked into giving victims free decryption keys (lien direct) |
>Categories: NewsCategories: RansomwareTags: Dutch
Tags: law enforcement
Tags: DeadBolt
Tags: ransomware
Tags: decryption keys
Tags: responders.nu
With the idea provided by an incident response company, Dutch police used a clever trick to get 150 DeadBolt ransomware decryption keys for free.
(Read more...)
|
Ransomware
|
|
|
|
2022-10-18 14:45:00 |
How to spot a scam (lien direct) |
>Categories: NewsCategories: PersonalIn every scam no matter how sophisticated or how amateur, there are two red flags.
(Read more...)
|
|
|
|
|
2022-10-18 14:00:00 |
Warning: "FaceStealer" iOS and Android apps steal your Facebook login (lien direct) |
>Categories: AwarenessCategories: NewsTags: FaceStealer
Tags: Facebook stealer
Tags: Facebook
Tags: Nathan Collier
Tags: Meta
Tags: fake Android apps
Tags: fake iOS apps
FaceStealer is back. As a seasoned threat to legitimate app stores, expect it to be gone and then back again.
(Read more...)
|
Threat
|
|
|
|
2022-10-18 11:00:00 |
Criminal group busted after stealing hundreds of keyless cars (lien direct) |
>Categories: NewsTags: Europol
Tags: Eurojust
Tags: French cars
Tags: key-less entry
Europol says it's helped bust an organized crime gang that specialized in stealing French keyless cars.
(Read more...)
|
|
|
|
|
2022-10-18 10:00:00 |
Fake tractor fraudsters plague online transactions (lien direct) |
>Categories: NewsTags: Tractors
Tags: Australia
Tags: scam
Tags: fake
Tags: escrow
Tags: advert
Tags: advertising
Tags: advertisement
We take a look at reports of the agriculture sector increasingly running into fake online adverts for tractors, at great cost to unfortunate buyers.
(Read more...)
|
|
|
|
|
2022-10-18 09:00:00 |
Thermal cameras could help reveal your password (lien direct) |
>Categories: NewsCategories: ThreatsTags: ThermoSecure
Tags: University of Glasgow
Tags: Dr. Mohamed Khamis
Tags: Dr. John Williamson
Tags: Norah Alotaibi
Tags: thermal attack
ThermoSecure, a system developed by researchers at the University of Glasgow demonstrated how thermal cameras and AI can steal credentials from, literally, under our noses.
(Read more...)
|
|
|
|
|
2022-10-16 22:00:00 |
Android and iOS leak some data outside VPNs (lien direct) |
>Categories: NewsTags: VPN
Tags: iOS
Tags: Android
Tags: tunnel
Tags: captive portal
Tags: leak
Tags: anonymity
“Block connections without VPN” doesn't block all connections without a VPN and “Always on VPN” isn't always on.
(Read more...)
|
|
|
★★★
|
|
2022-10-15 18:00:00 |
FBI, CISA warn of disinformation ahead of midterms (lien direct) |
>Categories: NewsTags: 2022 US midterm election
Tags: US election
Tags: FBI
Tags: CISA
Tags:
With the US midterm elections in sight, federal agencies are warning Americans that foreign actors are likely to use information manipulation tactics
(Read more...)
|
|
|
|
|
2022-10-13 21:30:00 |
Introducing Malwarebytes Managed Detection and Response (MDR) (lien direct) |
>Categories: BusinessWith Malwarebytes MDR, our team of cybersecurity professionals acts as an extension to your security team.
(Read more...)
|
|
|
|
|
2022-10-13 20:45:00 |
Android and Chrome start showing passwords the door (lien direct) |
>Categories: NewsTags: Google
Tags: passkeys
Tags: Android
Tags: Chrome
Tags: public key
Tags: private key
Tags: authenticator
Tags: WebAuthn
Passwords won't disappear any time soon, but a viable alternative is taking shape
(Read more...)
|
|
|
|
|
2022-10-13 16:15:00 |
Chinese APT\'s favorite vulnerabilities revealed (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsTags: Chinese APT
Tags: advanced persistent threat
Tags: APT
Tags: CISA
Tags: NSA
Tags: FBI
Tags: security advisory
CISA, the NSA and the FBI have compiled a list of the vulnerabilities targeted by state-sponsorted threat actors from China.
(Read more...)
|
Threat
|
|
|
|
2022-10-13 13:15:00 |
Only half of teens agree they "feel supported online" by parents (lien direct) |
>Categories: NewsCategories: PrivacyOnly one in two teens agree that they " feel supported online" by their parents, according to new research from Malwarebytes and 1Password on growing up and raising children online
(Read more...)
|
|
|
|
|
2022-10-12 22:00:00 |
UK government sounds alarm on tax scams (lien direct) |
>Categories: NewsTags: HMRC
Tags: UKGOV
Tags: tax
Tags: return
Tags: phish
Tags: fake
Tags: scam
Tags: refund
Tags: rebate
Be on your guard for scammers offering fake rebates
(Read more...)
|
|
|
|
|
2022-10-12 17:45:00 |
Update now! October patch Tuesday fixes actively used zero-day...but not the one you expected (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsTags: Microsoft
Tags: Apple
Tags: Google
Tags: Android
Tags: Samsung
Tags: Xiaomi
Tags: Adobe
Tags: SAP
Tags: VMWare
Tags: Fortinet
Tags: CVE-2022-41033
Tags: CVE-2022-41040
Tags: zero-day
No fix for ProxyNotShell
(Read more...)
|
|
|
|