Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2016-10-27 16:29:32 |
That Botnet-of-Things malware is getting a nasty makeover (lien direct) |
Arbor Networks reports improved attacks being added; about 500k "old" bots still active. |
|
|
|
|
2016-10-27 00:47:58 |
There\'s a new way to take down drones, and it doesn\'t involve shotguns (lien direct) |
Not a jammer, device lets hackers fly drones and lock out original pilot. |
|
|
|
|
2016-10-25 23:36:31 |
Nuclear plants leak critical alerts in unencrypted pager messages (lien direct) |
A surprising number of critical infrastructure participants do, too, study finds. |
|
|
|
|
2016-10-25 20:45:38 |
How one rent-a-botnet army of cameras, DVRs caused Internet chaos (lien direct) |
Attacks that took down Dyn appear to have been "rented" from multiple botnets. |
|
|
|
|
2016-10-24 19:26:11 |
Android phones rooted by “most serious†Linux escalation bug ever (lien direct) |
New rooting technique is believed to work against every version. |
|
|
|
|
2016-10-23 23:03:14 |
Using Rowhammer bitflips to root Android phones is now a thing (lien direct) |
Permission-less apps take only seconds to root phones from LG, Samsung and Motorola. |
|
|
|
|
2016-10-21 21:17:42 |
Double-dip Internet-of-Things botnet attack felt across the Internet (lien direct) |
Massive attack combining compromised IoT devices, other bots cripples many sites. |
|
|
|
|
2016-10-21 13:59:27 |
DoS attack on major DNS provider brings Internet to morning crawl (lien direct) |
Dyn's US East region hit hardest in attack that affected Twitter, Reddit. |
|
|
|
|
2016-10-20 22:40:26 |
Russia-linked phishing campaign behind the DNC breach also hit Podesta, Powell (lien direct) |
Bit.ly-based phishing links targeted former Sec. of State, Clinton campaign chair. |
|
|
|
|
2016-10-20 22:20:26 |
Is Russia using journalists as weapons? Does it matter? (lien direct) |
What obligations does a journalist have when he knows he's being used by a "state actor"? |
|
|
|
|
2016-10-20 20:20:22 |
“Most serious†Linux privilege-escalation bug ever is under active exploit (lien direct) |
Lurking in the kernel for nine years, flaw gives untrusted users unfettered root access. |
|
|
|
|
2016-10-19 19:31:26 |
LinkedIn says hacking suspect is tied to breach that stole 117M passwords (lien direct) |
Russian man drove luxury car, then collapsed after being apprehended, police say. |
|
|
|
|
2016-10-19 11:00:52 |
Flaw in Intel chips could make malware attacks more potent (lien direct) |
“Side channel†in Haswell CPUs lets researchers bypass protection known as ASLR. |
|
|
|
|
2016-10-18 15:00:04 |
Trump Organization uses really, really insecure e-mail servers. Sad! (lien direct) |
TrumpOrg.com servers use unpatched, unsupported Windows Server 2003, IIS 6. |
|
|
|
|
2016-10-17 21:25:43 |
Judicial Watch hired infosec specialist to search for hacked Clinton, Blumenthal files (lien direct) |
Newt Gingrich brokered deal for moonlighting contractor to hunt for potential breach. |
|
|
|
|
2016-10-17 19:00:04 |
Hacked Republican website skimmed donor credit cards for 6 months (lien direct) |
People who donated to Senate Republicans may want to check their bank statements. |
|
|
|
|
2016-10-14 19:37:18 |
Beware of all-powerful DDoS malware infecting cellular gateways, feds warn (lien direct) |
Sierra Wireless confirms that devices it manufactures were infected by Mirai. |
|
|
|
|
2016-10-13 19:10:55 |
Clinton campaign chief\'s iPhone was hacked and wiped, photos suggest (lien direct) |
Podesta's iPhone reportedly wiped within hours of his Twitter account being hacked. |
|
|
|
|
2016-10-12 19:29:59 |
Breach exposes at least 58 million accounts, includes names, jobs, and more (lien direct) |
With 2 months left, more than 2.2 billion records dumped so far in 2016. |
|
|
|
|
2016-10-11 21:39:27 |
Emboldened by $1B Bangladesh hackers, new group targets SWIFT users (lien direct) |
Malicious tools can cause infected computers to self destruct. |
|
|
|
|
2016-10-11 11:30:10 |
NSA could put undetectable “trapdoors†in millions of crypto keys (lien direct) |
Technique allows attackers to passively decrypt Diffie-Hellman protected data. |
|
|
|
|
2016-10-10 13:00:30 |
Apple Watch banned from UK cabinet meetings over Russian hacker fears (lien direct) |
Smartphones and tablets were already barred in fear of foreign eavesdroppers.
|
|
|
|
|
2016-10-07 21:23:31 |
US government: Russia behind hacking campaign to disrupt US elections (lien direct) |
DHS, Intelligence officials formally accuse Russian government of DNC hack, others. |
|
|
|
|
2016-10-06 21:55:23 |
Researchers find fake data in Olympic anti-doping, Guccifer 2.0 Clinton dumps (lien direct) |
This time, some athlete data was altered by the "Fancy Bear" group. |
|
APT 28
|
|
|
2016-10-04 23:29:00 |
Guccifer 2.0 posts DCCC docs, says they\'re from Clinton Foundation (lien direct) |
Files appear to be from Democratic Congressional Campaign Committee and DNC hacks. |
|
|
|
|
2016-10-04 17:59:23 |
Yahoo\'s CISO resigned in 2015 over secret e-mail search tool ordered by feds (lien direct) |
Reuters: Yahoo "complied with a classified US government directive." |
|
Yahoo
|
|
|
2016-10-03 19:25:36 |
Making a DVR join a DDoS botnet is a piece of cake-and that\'s just sad (lien direct) |
Successful compromises come "a couple times an hour," researcher finds. |
|
|
|
|
2016-10-03 17:45:23 |
Security company finds five “zero-day†flaws in EMC management console (lien direct) |
Unisphere for VMAX used insecured Flash-to-Java interfaces, leaving door open to attacks. |
|
|
|
|
2016-10-02 22:39:42 |
Brace yourselves-source code powering potent IoT DDoSes just went public (lien direct) |
Release could allow smaller and more disciplined Mirai botnet to go mainstream. |
|
|
|
|
2016-10-01 00:05:03 |
More than 400 malicious apps infiltrate Google Play (lien direct) |
“DressCode†apps turned phones into listening posts that could bypass firewalls. |
|
|
|
|
2016-09-29 23:30:16 |
iPhone exploit bounty surges to an eye-popping $1.5 million (lien direct) |
Zerodium triples price for iOS exploits, doubles Android bounties to $200,000. |
|
|
|
|
2016-09-29 00:50:24 |
Botnet of >145k cameras reportedly deliver Internet\'s biggest DDoS ever (lien direct) |
Once unthinkable, 1 terabit attacks may soon be the new normal. |
|
|
|
|
2016-09-27 17:14:16 |
Firefox ready to block certificate authority that threatened Web security (lien direct) |
Mozilla says it has lost confidence in WoSign's ability to protect HTTPS system. |
|
|
|
|
2016-09-27 15:21:22 |
Microsoft launches “fuzzing-as-a-service†to help developers find security bugs (lien direct) |
Project Springfield, Microsoft's "million-dollar bug detector" now available in cloud. |
|
|
|
|
2016-09-27 12:57:32 |
Unsafe at any clock speed: Linux kernel security needs a rethink (lien direct) |
Ars reports from the Linux Security Summit-and finds much work that needs to be done. |
|
|
|
|
2016-09-26 18:20:16 |
As we speak, teen social site is leaking millions of plaintext passwords (lien direct) |
i-Dressup operators fail to fix bug that exposes up to 5.5 million credentials. |
|
|
|
|
2016-09-23 20:58:37 |
Why the silencing of KrebsOnSecurity opens a troubling chapter for the \'Net (lien direct) |
“Free speech in the age of the Internet is not really free,†journalist warns. |
|
|
|
|
2016-09-23 18:38:16 |
“Hacked†e-mail account of White House worker exposed in 2013 password breach (lien direct) |
Ian Mellul used Gmail (exposed in Adobe breach) to plan travel for First Lady, Biden.
|
|
|
|
|
2016-09-22 20:21:43 |
Yahoo says half a billion accounts breached by nation-sponsored hackers (lien direct) |
One of the biggest compromises ever exposes names, e-mail addresses, and much more. |
|
Yahoo
|
|
|
2016-09-22 15:42:11 |
Purported data from 200 million Yahoo accounts may be legit (lien direct) |
Supposedly hacked data surfaced on underground website for sale in August. |
|
Yahoo
|
|
|
2016-09-21 20:39:03 |
Bug that hit Firefox and Tor browsers was hard to spot-now we know why (lien direct) |
The curious case of Firefox's (now fixed) certificate pinning failure. |
|
|
|
|
2016-09-21 16:11:54 |
Thanks, Internet! Messing with elections not just for the CIA anymore (lien direct) |
Former Justice official: US' own electoral meddling leaves little room for complaint.
|
|
|
|
|
2016-09-20 21:15:00 |
Researchers wirelessly hit the brakes in a Model S, Tesla patches quickly (lien direct) |
Exploiting in-car Web browser, researchers gained access to car's control network. |
|
Tesla
|
|
|
2016-09-20 13:21:14 |
iPhone passcode bypassed with NAND mirroring attack (lien direct) |
FBI says it's impossible but Cambridge computer security expert proves them wrong. |
|
|
|
|
2016-09-20 12:46:35 |
SWIFT hopes to thwart fraudsters with detection system in wake of bank heist (lien direct) |
Bank messaging network beefs up fight against fraud after accusations of lax security. |
|
|
|
|
2016-09-16 19:38:29 |
Mozilla checks if Firefox is affected by same malware vulnerability as Tor (lien direct) |
Weakness in certificate pinning protections may open users to MitM attacks. |
|
|
|
|
2016-09-15 20:00:38 |
Teenager uncovers route to free Web surfing on T-Mobile network (lien direct) |
Jacob Ajit got free Web access just by putting "/speedtest" into a proxy site's address. |
|
|
|
|
2016-09-15 19:45:26 |
Signal bug lets attackers tamper with encrypted messages-patch now (lien direct) |
Signal may be the most trusted messaging app, but it's not perfect. |
|
|
|
|
2016-09-15 15:10:33 |
Alibaba fires employees for hacking their way to free mooncakes (lien direct) |
Hundreds of holiday cakes were purloined through weakness in internal website. |
|
|
|
|
2016-09-14 19:10:40 |
New batch of leaked Colin Powell e-mails lambasts Trump and Clinton (lien direct) |
Who hacked the former secretary of state's e-mails-and how? |
|
|
|