Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-08-10 09:00:00 |
Update now! Microsoft fixes two zero-days in August\'s Patch Tuesday (lien direct) |
>Categories: Exploits and vulnerabilitiesCategories: NewsTags: Microsoft
Tags: patch Tuesday
Tags: MSDT
Tags: NFS
Tags: PPP
Tags: Exchange
Tags: CVE-2022-34713
Tags: CVE-2022-35743
Tags: DogWalk
Tags: CVE-2022-30134
Tags: CVE-2022-24477
Tags: CVE-2022-24516
Tags: CVE-2022-30133
Tags: CVE-2022-34715
Tags: Adobe
Tags: Cisco
Tags: Google
Tags: Android
Tags: SAP
Tags: VMWare
Patch Tuesday for August 2022 has come around. We take a look at the most important vulnerabilities that Microsoft's fixed and a brief look at what other vendors did.
(Read more...)
|
|
|
|
|
2022-08-10 08:00:00 |
5 cybersecurity tips for students going back to school (lien direct) |
>Categories: PersonalThe new school season is just around the corner. And while you are getting ready to go back to school, now is a good opportunity to check you are doing all you can to stay as safe as possible online.
(Read more...)
|
|
|
★★★★
|
|
2022-08-09 16:00:00 |
Education hammered by exploits and backdoors in 2021 and 2022 (lien direct) |
>Categories: NewsCategories: Threat IntelligenceTags: Education
Beyond spikes in detections, the education sector has dealt with an onslaught of attacks ranging from spyware and denial of service tools to ransomware.
(Read more...)
|
|
|
|
|
2022-08-09 16:00:00 |
Summer of exploitation leads to healthcare under fire (lien direct) |
>Categories: NewsCategories: Threat IntelligenceTags: Healthcare
Tags: Medical
Read about trends in cyberattacks in the Healthcare and Medical industry, as well as our recommendations for helping to secure your healthcare organization.
(Read more...)
|
Guideline
|
|
|
|
2022-08-09 12:45:00 |
Twilio breached after social engineering attack on employees (lien direct) |
>Categories: NewsCategories: Social engineeringTags: Twilio
Tags: text messages
Tags: sso
Tags: okta
Tags: linkedin
Twilio says it has fallen victim to a breach after an attacker sent text messages to a large number of employees.
(Read more...)
|
|
|
|
|
2022-08-09 12:00:00 |
Can your EDR handle a ransomware attack? 6-point checklist for an anti-ransomware EDR (lien direct) |
>Categories: BusinessIn this post, a cybersecurity expert gives his 6-point checklist of features your EDR should have to stop ransomware.
(Read more...)
|
Ransomware
|
|
|
|
2022-08-09 00:00:00 |
Twitter data breach affects 5.4M users (lien direct) |
>Categories: PrivacyTwitter has confirmed a data breach on July 2.
(Read more...)
|
Data Breach
|
|
|
|
2022-08-08 07:00:00 |
KMSpico explained: No, KMS is not "kill Microsoft" (lien direct) |
>Categories: ExplainedA hack tool called KMSPico is hailed as the go-to tool when it comes to activiating Windows. But is it safe?
(Read more...)
|
Hack
Tool
|
|
|
|
2022-08-07 11:14:14 |
Patch now! Cisco VPN routers are vulnerable to remote control (lien direct) |
>Cisco has released a security advisory about some serious security vulnerabilities in multiple Cisco small business VPN routers.
|
|
|
|
|
2022-08-07 09:41:12 |
Phishy calls and emails play on energy cost increase fears (lien direct) |
>We take a look at a wave of scams involving people's fears of increasing energy prices, and how to avoid being caught out.
|
|
|
|
|
2022-08-05 17:00:00 |
DHS says to update your Emergency Alert Systems immediately (lien direct) |
>Categories: NewsWe take a look at reports that EAS alerts could be issued by people without the correct authorisation.
(Read more...)
|
|
|
★★★★
|
|
2022-08-05 12:39:42 |
FCC warns of steep rise in phishing over SMS (lien direct) |
>Smishing attacks, or phishing attempts via SMS, are on the rise, and Americans are fighting off billions of spam messages each month.
|
Spam
|
|
|
|
2022-08-04 20:48:37 |
Ransomware review: July 2022 (lien direct) |
>BlackBasta lined up behind LockBit as the second most prevalent ransomware in July, a number of new gangs appeared, and an old one reappeared
|
Ransomware
|
|
|
|
2022-08-04 13:19:33 |
Ransomware protection with Malwarebytes EDR: Your FAQs, answered! (lien direct) |
>Malwarebytes security experts answer some of your most frequently asked questions about ransomware and how our EDR can help.
|
Ransomware
|
|
|
|
2022-08-03 21:25:52 |
Woody RAT: A new feature-rich malware spotted in the wild (lien direct) |
>The Malwarebytes Threat Intelligence team has discovered a new Remote Access Trojan that we dubbed Woody Rat used to target Russian entities.
|
Malware
Threat
|
|
|
|
2022-08-03 17:15:09 |
Bank fraud scammers trick victims with claims of bogus Zelle transfers (lien direct) |
We take a look at a scam attempt which makes great use of the fraudulent bank payment phone call. Here's what to look out for.
|
|
|
|
|
2022-08-03 16:48:37 |
NetStandard attack should make Managed Service Providers sit up and take notice (lien direct) |
The attack on MSP NetStandard reminds us once again that MSPs are a very attractive target for cybercriminals
|
|
|
|
|
2022-08-03 13:27:47 |
Update now! VMWare patches critical vulnerabilities in several products (lien direct) |
In a critical security advisory VMWare patches multiple RCE and EoP vulnerabilities in several affected products.
|
|
|
|
|
2022-08-03 12:25:38 |
For months, JusTalk messages were accessible to everyone on the Internet (lien direct) |
A security researcher found an open database belonging to JusTalk, a China-based video call and messaging app company.
|
|
|
|
|
2022-08-01 19:14:53 |
When a sextortion victim fights back (lien direct) |
>A college student fell victim to a Snapchat sextortion scheme. With a friend's help, she 'hacked back' and sent him to jail.
|
|
|
|
|
2022-08-01 17:31:40 |
Millions of Arris routers are vulnerable to path traversal attacks (lien direct) |
>A researcher has found a serious vulnerability in the muhttpd webserver that is used in millions of routers and modems. A patch is available but ISPs are often slow to push out firmware updates.
|
Vulnerability
|
|
★★★★★
|
|
2022-08-01 15:42:56 |
Have we lost the fight for data privacy? Lock and Code S03E16 (lien direct) |
>This week on Lock and Code, we talk with some of the team behind Malwarebytes Labs about whether we've lost the fight for data privacy.
|
|
|
|
|
2022-07-29 16:44:16 |
To settle with the DoJ, Uber must confess to a cover-up. And it did. (lien direct) |
The 2016 Uber data breach affected the personal information of 57 million people. And then the company covered it all up.
|
Data Breach
|
Uber
Uber
|
|
|
2022-07-29 16:33:28 |
The ransomware landscape changes as fewer victims decide to pay (lien direct) |
>A considerable drop in the median of ransom payments and several other circumstances are causing the ransomware landscape to change.
|
Ransomware
|
|
|
|
2022-07-29 16:04:26 |
Criminals using compromised social media accounts to “post indecent images of children” says UK cybercrime organization (lien direct) |
UK based Action Fraud is warning of hacked social media accounts posting indecent images of children. We dig into available information.
|
|
|
|
|
2022-07-29 15:49:14 |
Google delays Chrome third party cookie sunsetting…again (lien direct) |
We take a look at the second delay to Google's intended sunsetting of third party cookies in Chrome, along with the reason why.
|
|
|
|
|
2022-07-28 16:53:24 |
Radioactivity monitoring and warning system hacked, disabled by attackers (lien direct) |
Spain has arrested two suspects for disabling part of the country's gamma radiation detection and alert system.
|
|
|
|
|
2022-07-28 15:04:07 |
TikTok owner ByteDance pushed a pro-China agenda to Americans, say former employees (lien direct) |
We take a look at claims of both censorship and promotion related to various apps from the Bytedance stable.
|
|
|
★★★★★
|
|
2022-07-28 14:38:46 |
“Orwellian in the extreme” food store installs facial recognition cameras to stop crime, faces backlash (lien direct) |
A convenience shop chain is under fire and facing legal charges for installing cameras with facial recognition software in 35 of its branches across the UK.
|
|
|
|
|
2022-07-27 13:58:06 |
IIS extensions are on the rise as backdoors to servers (lien direct) |
>The Microsoft 365 Defender Research Team has warned that attackers are increasingly leveraging Internet Information Services (IIS) extensions as covert backdoors into servers.
|
|
|
|
|
2022-07-27 13:22:07 |
Anti-vaxxer dating site exposes user data (lien direct) |
>We take a look at a site running in debug mode, with predictable consequences for those registered on the portal.
|
|
|
|
|
2022-07-27 12:58:50 |
In post-Roe US, experts share how to keep your data private (lien direct) |
>As the US reconfigures its rules on abortion after the overturning of Roe v Wade, our podcast guests explain how to keep your data private.
|
|
|
★★★★
|
|
2022-07-27 12:02:59 |
PrestaShop warns of vulnerability: Update your stores now! (lien direct) |
>We take a look at a security advisory from PrestaShop which warns of compromised stores and redirected payment data.
|
|
|
|
|
2022-07-27 11:56:55 |
Simplifying the fight against ransomware: An expert explains (lien direct) |
>Fighting against ransomware can be difficult-especially if your organization has limited IT resources to begin with. But Adam Kujawa, security evangelist and director of Malwarebytes Labs, has a few tips for overburdened IT folks looking to simplify their fight against ransomware. In this post, we'll break down Kujawa's observations about ransomware and three tips on...
|
Ransomware
|
|
|
|
2022-07-27 10:32:19 |
T-Mobile agrees to pay customers $350 million in settlement over data breach (lien direct) |
>T-Mobile has proposed to settle its 2021 data breach by paying $350 million, along with an incremental spend of $150 million in security.
|
Data Breach
|
|
|
|
2022-07-26 15:57:20 |
SonicWall urges customers to patch critical SQL injection bug ASAP (lien direct) |
SonicWall GMS and Analytics are vulnerable to an SQL injection bug, tracked as CVE-2022-22280.
|
|
|
|
|
2022-07-26 15:37:05 |
Microsoft clamps down on RDP brute-force attacks in Windows 11 (lien direct) |
>Microsoft is taking RDP attacks to task in Windows 11, with default lockdowns for too many incorrect passwords entered.
|
|
|
|
|
2022-07-25 16:31:13 |
Lock down your Neopets account: Data breach being investigated (lien direct) |
>We take a look at claims that virtual pet favourite, Neopets, has had its user database breached, and what you can do about it.
|
Data Breach
|
|
|
|
2022-07-25 15:30:07 |
Malware spent months hoovering up credit card details from 300 US restaurants (lien direct) |
>MenuDrive, Harbortouch, and InTouchPOS fell victim to a long Magecart infection that started in January and only ended days ago.
|
|
|
|
|
2022-07-25 12:26:37 |
Lightning Framework, modular Linux malware (lien direct) |
>Researchers at Intezer have published an analysis of a modular and versatile malware targeting Linux systems called Lightning Framework
|
Malware
|
|
|
|
2022-07-25 11:39:51 |
Update Google Chrome now! New version includes 11 important security patches (lien direct) |
Google has issued an update for the Chrome browser that includes 11 security fixes, including 5 with a high severity
|
|
|
|
|
2022-07-21 17:57:00 |
The Wren Eleanor story: Why you should keep your kids off social media (lien direct) |
A 3-year old TikTok influencer has got parents talking about how to keep images of their kids away from online creeps.
|
|
|
|
|
2022-07-21 16:24:14 |
The Winding Road to Compliance (lien direct) |
>Governance, risk, and compliance (GRC) are top-of-mind for many cybersecurity decision-makers. Learn why GRC is important - and how it make it easier.
|
|
|
|
|
2022-07-21 14:27:14 |
Demo: Your data has been encrypted! Stopping ransomware attacks with Malwarebytes EDR (lien direct) |
>Malwarebytes Endpoint Detection and Response can fight-and defeat-advanced ransomware that other security solutions miss. In this post, we'll walk through what it looks like to deal with a ransomware attack using Malwarebytes EDR.
|
Ransomware
|
|
|
|
2022-07-21 09:57:08 |
Vulnerabilities in GPS tracker could have “life-threatening” implications (lien direct) |
Researchers have discovered six vulnerabilities in the MiCODUS MV720 GPS tracker, a popular automotive tracking device.
|
|
|
|
|
2022-07-20 20:10:47 |
Google ads lead to major malvertising campaign (lien direct) |
Scammers go mainstream by hijacking top Google searches and replacing them with malicious ads.
|
|
|
|
|
2022-07-20 15:50:14 |
Another ransomware payment recovered by the Justice Department (lien direct) |
>The Justice Department announced it was able to forfeit ransomware payments made by health care organizations in Kansas and Colorado.
|
Ransomware
|
|
|
|
2022-07-20 14:35:37 |
Facebook gets round tracking privacy measure by encrypting links (lien direct) |
>Facebook is reportedly switching out click identifiers for encryption, making it harder (if not impossible) to strip tracking from the URL.
|
|
|
|
|
2022-07-20 12:12:11 |
Ring shares data with police without consent (but it\'s in good faith), says Amazon (lien direct) |
Amazon's Ring is in hot water after revealing in a letter to Senator Ed Markey that it shared data without permission 11 times this year.
|
|
|
|
|
2022-07-19 13:29:47 |
Fraudulent cryptocurrency investment apps are duping investors (lien direct) |
The FBI has warned about fraudulent cryptocurrency investment apps that are defrauding victims.
|
|
|
|