Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2018-12-20 14:30:01 |
(Déjà vu) Microsoft IE Zero Day Gets Emergency Patch (lien direct) |
Microsoft issued an out-of-band patch for a zero day bug in its Internet Explorer browser. |
|
|
|
|
2018-12-20 00:22:00 |
Facebook\'s Rough History of Failed User Revolts (lien direct) |
What will ultimately be the driving force for Facebook to value data privacy? |
|
|
|
|
2018-12-19 21:45:01 |
Cybersecurity and Privacy: 2018 Year in Review: Slideshow (lien direct) |
|
|
|
|
|
2018-12-19 19:48:01 |
Patched Click2Gov Flaw Still Afflicting Local Govs (lien direct) |
Local governments aren't updating the vulnerable systems. |
|
|
|
|
2018-12-19 16:47:04 |
Hackers Succeed in NASA Mission, Lifting Thousands of Employee Records (lien direct) |
Twelve years' worth of data has blasted off into the Dark Web. |
|
|
|
|
2018-12-19 15:15:03 |
Threatpost Poll: Do You Hate Facebook? (lien direct) |
Weigh in on Facebook and privacy in our short poll. |
|
|
|
|
2018-12-19 13:27:03 |
Facebook Fights Back on Secret Data-Sharing Partnerships (lien direct) |
Facebook is under fire again after a bombshell report claims it has broad data-sharing arrangements with Amazon, Apple, Netflix and others. |
|
|
|
|
2018-12-18 21:48:02 |
Russia-Linked Sofacy Debuts Fresh Zebrocy Malware Variant (lien direct) |
The group continues to evolve its custom malware in an effort to evade detection. |
Malware
|
|
|
|
2018-12-18 17:09:04 |
WordPress Targeted with Clever SEO Injection Malware (lien direct) |
The malware does its best to obfuscate SEO injection in WordPress and evade notice from web admins. |
Malware
|
|
|
|
2018-12-18 16:06:01 |
Hidden Code in Memes Instruct Malware via Twitter (lien direct) |
Analysts discover malicious code embedded in tweeted images. |
Malware
|
|
|
|
2018-12-18 14:50:01 |
WSJ Webpage Defaced to Support PewDiePie (lien direct) |
The hack comes on the heels of the PewDiePie-supporting printer attacks over the weekend. |
Hack
|
|
|
|
2018-12-18 14:33:03 |
Newsmaker Interview: Troy Mursch on Top Botnet Trends (lien direct) |
MikroTik, Hadoop clusters, legislation and more will mark the botnet space in 2019. |
|
|
|
|
2018-12-17 22:50:02 |
U.S. Ballistic Missile Defense System Rife with Security Holes (lien direct) |
Widespread, unpatched vulnerabilities are just one set of problems uncovered by a Department of Defense audit. |
|
|
|
|
2018-12-17 21:17:01 |
Twitter Draws Data Privacy Concerns with Two New Bugs (lien direct) |
The two flaws shed light on heightened concern around user data privacy when it comes to data. |
|
|
|
|
2018-12-17 17:29:00 |
Automotive Security: It\'s More Than Just What\'s Under The Hood (lien direct) |
True auto safety can only be achieved by knowing what every piece of code and hardware is that goes into the car. |
|
|
|
|
2018-12-17 16:42:04 |
Charming Kitten Iranian Espionage Campaign Thwarts 2FA (lien direct) |
The campaign targets politicians involved in economic and military sanctions against Iran, along with various journalists and human rights activists. |
|
APT 35
|
|
|
2018-12-17 14:28:02 |
PewDiePie Hackers Launch Second Printer Siege, According to Reports (lien direct) |
The hackers behind the attack said they have targeted 100,000 more printers in the latest attack dubbed #PrinterHack2. |
|
|
|
|
2018-12-14 21:41:05 |
Electric Vehicle Charging Stations Open to IoT Attacks (lien direct) |
Flaws could allow an attacker to stop or start a home charging station, or even change the current in order to start a fire. |
|
|
|
|
2018-12-14 18:16:00 |
WordPress 5.0 Patched to Fix Serious Bugs (lien direct) |
One bug accidentally allowed Google to index user passwords. |
|
|
|
|
2018-12-14 16:44:05 |
Facebook Flaw Exposes Private Photos for 6.8M Users (lien direct) |
The bug allowed 1,500 apps built by 876 developers to view users' unposted "draft" photos. |
|
|
|
|
2018-12-14 15:55:01 |
Logitech Keystroke Injection Flaw Went Unaddressed for Months (lien direct) |
The flaw allows a remote attacker to gain full access over a machine. |
|
|
|
|
2018-12-14 15:38:05 |
Save the Children Federation Duped in $1M Scam (lien direct) |
A business email compromise campaign cost the Save the Children Federation $1 million. |
|
|
|
|
2018-12-13 22:14:04 |
Bomb Threat Bitcoin Demands Cause Disruption, Evacuations (lien direct) |
An email campaign is demanding large sums of money in return for not blowing up schools, banks and businesses. |
Threat
|
|
|
|
2018-12-13 18:31:05 |
Grammarly Launches Public Bug Bounty Program (lien direct) |
The online spell check platform is taking its private bounty program public in hopes of outing more threats. |
|
|
|
|
2018-12-13 17:52:04 |
Secure Critical Infrastructure Top of Mind for U.S. (lien direct) |
Attacks targeting critical infrastructure system are ramping up - and defense has become a top priority for the U.S. government. |
|
|
|
|
2018-12-13 17:49:02 |
Google Beefs Up Android Key Security for Mobile Apps (lien direct) |
Changes to how data is encrypted can help developers ward off data leakage and exfiltration. |
|
|
|
|
2018-12-13 13:18:01 |
Shamoon Reappears, Poised for a New Wiper Attack (lien direct) |
One of the most destructive malware families ever seen is back, and researchers think its authors are gearing up to again take aim at the Middle East. |
Malware
|
|
|
|
2018-12-12 21:21:03 |
Android Trojan Targets PayPal Users (lien direct) |
The trojan purports to be a battery optimization app - and then steals up to 1,000 euro from victims' PayPal accounts. |
|
|
|
|
2018-12-12 17:26:02 |
ThreatList: Holiday Spam, the Perfect Seasonal Gift for Criminals (lien direct) |
Consumers are much more likely to fall for spam during the season of giving. |
Spam
|
|
|
|
2018-12-12 15:22:00 |
Operation Sharpshooter Takes Aim at Global Critical Assets (lien direct) |
Operation Sharpshooter uses a new implant to target mainly English-speaking nuclear, defense, energy and financial companies. |
|
|
|
|
2018-12-12 15:17:05 |
Super Micro Says Its Gear Wasn\'t Bugged By Chinese Spies (lien direct) |
The news comes amid reports that a Chinese intelligence-gathering effort was behind the massive Marriott hotel data breach. |
|
|
|
|
2018-12-12 13:36:03 |
Supply Chain Security: Managing a Complex Risk Profile (lien direct) |
Experts sound off on how companies can work with their third-party suppliers and partners to secure the end-to-end supply chain. |
|
|
|
|
2018-12-11 22:19:04 |
Facebook Fined $11.3M for Privacy Violations (lien direct) |
Italy's regulator found the social giant guilty of misleading consumers as to what it does with their data. |
Guideline
|
|
|
|
2018-12-11 22:02:00 |
Zero-Day Bug Fixed by Microsoft in December Patch Tuesday (lien direct) |
Microsoft patches nine critical bugs as part of December Patch Tuesday roundup. |
|
|
|
|
2018-12-11 18:51:02 |
Data Privacy Issues Trigger Soul Searching in Tech Industry (lien direct) |
Consumers are growing angry when it comes to data misuse - but the real change will need to come from the tech industry's culture when it comes to privacy. |
|
|
|
|
2018-12-11 18:40:00 |
Cobalt Group Pushes Revamped ThreadKit Malware (lien direct) |
Threat actors have updated their malware to include a macro-based delivery framework. |
Malware
Threat
|
|
|
|
2018-12-11 17:42:05 |
Adobe December 2018 Security Update Fixes Reader, Acrobat (lien direct) |
The update includes a raft of critical code-execution problems. |
|
|
|
|
2018-12-11 16:25:00 |
Biometrics: Security Solution or Issue? (lien direct) |
Issues still exist when it comes to securing biometrics. |
|
|
|
|
2018-12-07 22:25:03 |
ThreatList: Gift Card-Themed BEC Holiday Scams Spike (lien direct) |
Watch out for emails about gift cards and corporate donations, researcher warn. |
|
|
|
|
2018-12-07 18:57:05 |
Australia Anti-Encryption Law Triggers Sweeping Backlash (lien direct) |
A newly-passed Australian law could allow the government to force tech companies to create backdoors in their products. |
|
|
|
|
2018-12-07 18:35:03 |
TA505 Crooks are Now Targeting US Retailers with Personalized Campaigns (lien direct) |
Threat group moves away from “smash-and-grab” attacks and adopts a boutique approach to targeting victims. |
Threat
|
|
|
|
2018-12-07 15:59:00 |
Using Fuzzing to Mine for Zero-Days (lien direct) |
Infosec Insider Derek Manky discusses how new technologies and economic models are facilitating fuzzing in today's security landscape. |
|
|
|
|
2018-12-07 14:57:04 |
Microsoft Calls For Facial Recognition Tech Regulation (lien direct) |
Microsoft and the AI Now Institute are both calling for regulation as facial recognition software picks up popularity. |
|
|
|
|
2018-12-06 18:16:02 |
Infected WordPress Sites Are Attacking Other WordPress Sites (lien direct) |
Researchers identified a widespread campaign of brute force attacks against WordPress websites. |
|
|
|
|
2018-12-06 15:25:05 |
Facebook Defends Data Policies On Heels of Incriminating Internal Docs (lien direct) |
The company allegedly tried to hide away new policy changes that would collect Android app users' call and message logs. |
|
|
|
|
2018-12-05 19:34:02 |
White House Facial Recognition Pilot Raises Privacy Alarms (lien direct) |
The facial recognition pilot will identify “subjects of interest" around the White House. |
|
|
|
|
2018-12-05 16:00:04 |
Adobe Flash Zero-Day Leveraged Via Office Docs in Campaign (lien direct) |
Adobe issued a patch for the zero-day on Wednesday. |
|
|
|
|
2018-12-05 15:47:05 |
Kubernetes Flaw is a “Huge Deal,” Lays Open Cloud Deployments (lien direct) |
Hackers can steal data, sabotage cloud deployments and more. |
|
Uber
|
★★★
|
|
2018-12-05 15:18:00 |
Adobe Patches Zero-Day Vulnerability in Flash Player (lien direct) |
The vulnerability could lead to arbitrary code execution. |
Vulnerability
Guideline
|
|
|
|
2018-12-05 04:34:02 |
Google Chrome 71 Touts 43 Fixes, Fights Ad Abuse (lien direct) |
The browser comes with a new set of protections to block pop-ups that could lead to 'abusive experiences.' |
Guideline
|
|
|