Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-01-11 12:00:08 |
KCodes NetUSB kernel remote code execution flaw impacts millions of devices (lien direct) |
The vulnerability is present in software licensed to multiple router vendors. |
Vulnerability
|
|
|
|
2022-01-10 13:55:00 |
Indian Patchwork hacking group infects itself with remote access Trojan (lien direct) |
Researchers pounced on the opportunity the mistake created. |
|
|
|
|
2022-01-10 13:00:02 |
Abcbot botnet has now been linked to Xanthe cryptojacking group (lien direct) |
Researchers believe the focus is moving from cryptocurrency to traditional botnet attacks. |
|
|
|
|
2022-01-07 11:08:48 |
NoReboot attack fakes iOS phone shutdown to spy on you (lien direct) |
The PoC malware can be used to hijack microphone and camera functions. |
Malware
|
|
|
|
2022-01-07 10:04:58 |
Chinese scientist pleads guilty to stealing US agricultural tech (lien direct) |
US prosecutors have labeled his actions as "economic espionage." |
|
|
|
|
2022-01-05 12:16:00 |
Purple Fox rootkit discovered in malicious Telegram installers (lien direct) |
Slicing up files allows the malware to stay under the radar. |
Malware
|
|
|
|
2022-01-05 11:19:41 |
Morgan Stanley agrees to $60 million settlement in data breach lawsuit (lien direct) |
Customer data was held on legacy equipment that was later sold on without being wiped. |
Data Breach
|
|
★★★★
|
|
2022-01-05 11:03:43 |
Malsmoke hackers abuse Microsoft signature verification in ZLoader cyberattacks (lien direct) |
Malware exploits the system to steal credentials and other data. |
Malware
|
|
|
|
2022-01-04 10:30:03 |
Cyberattack against UK Ministry of Defence training academy revealed (lien direct) |
The attack had a "significant" impact on operations last year. |
|
|
|
|
2021-12-31 14:02:50 |
The biggest data breaches, hacks of 2021 (lien direct) |
As COVID-19 continues to cause disruption, cyberattacks haven't let up, either. |
|
|
|
|
2021-12-31 13:53:18 |
Copycat and fad hackers will be the bane of supply chain security in 2022 (lien direct) |
Experts explain why the supply chain is now a top target for cybercriminals -- and what we should expect to see in 2022. |
|
|
|
|
2021-12-17 17:01:58 |
Security firm Blumira discovers major new Log4j attack vector (lien direct) |
A basic Javascript WebSocket connection can trigger a local Log4j remote code attack via a drive-by compromise. Wonderful. Truly wonderful. |
|
|
|
|
2021-12-16 11:19:18 |
Suspected Iranian hackers target airline with new backdoor (lien direct) |
The attack was performed by abusing the Slack workspace application. |
|
|
|
|
2021-12-16 06:34:58 |
Victims awarded $18 million in GirlsDoPorn online video case, boss on the run (lien direct) |
The sex trafficking case impacts hundreds of victims, including young women seeking modeling work. |
|
|
|
|
2021-12-15 17:00:02 |
Meta targets user information, database scraping in bug bounty expansion (lien direct) |
Meta's Facebook came under fire for a scraping incident earlier this year. |
|
|
|
|
2021-12-15 16:33:48 |
Ransomware in 2022: We\'re all screwed (lien direct) |
Security experts tell us what to expect in the cybercriminal landscape as we head into the new year. It's not good. |
|
|
|
|
2021-11-30 13:00:02 |
Printing Shellz: Critical bugs impacting 150 HP printer models patched (lien direct) |
"Cross-site printing attacks" feature in the research. |
|
|
|
|
2021-11-23 08:41:24 |
Suspect arrested in \'ransom your employer\' criminal scheme (lien direct) |
The man at the heart of the 'business' allegedly wanted cash to fund a new social network project. |
|
|
|
|
2021-11-23 07:55:21 |
Code execution bug patched in Imunify360 Linux server security suite (lien direct) |
The vulnerability could be used to hijack web servers. |
Vulnerability
|
|
|
|
2021-11-22 17:24:51 |
Over a million WordPress sites breached (lien direct) |
WordPress site owners hosted by GoDaddy woke this morning to find that their sites had been cracked open. |
|
|
|
|
2021-11-18 12:30:02 |
Cloud security firm Lacework secures $1.3 billion in new funding round (lien direct) |
New investors including Liberty Global have joined the fray. |
|
|
|
|
2021-11-17 12:00:02 |
Why are you still using QWERTY? 2021\'s most common passwords revealed (lien direct) |
Research reveals we are yet to adopt strong passwords, let alone more robust security measures. |
|
|
|
|
2021-11-16 16:50:02 |
Belarus government accused of \'partial responsibility\' for Ghostwriter campaigns (lien direct) |
Mandiant says the government is likely to blame for anti-NATO campaigns, and more. |
|
|
|
|
2021-11-16 11:44:00 |
MosesStaff attacks organizations with encryption malware - no payment demand made (lien direct) |
Israeli firms are being targeted for purely political and destructive purposes. |
Malware
|
|
|
|
2021-11-16 09:59:10 |
New banking Trojan SharkBot makes waves across Europe, US (lien direct) |
The malware specializes in infiltrating Android handsets. |
Malware
|
|
|
|
2021-11-11 17:00:01 |
Google debuts ClusterFuzzLite security tool for CI, CD workflows (lien direct) |
The fuzzing solution is set to bolster software supply chain security. |
Tool
|
|
|
|
2021-11-11 12:30:02 |
(Déjà vu) BazarBackdoor now abuses Windows 10 apps feature in \'call me back\' attack (lien direct) |
AppInstaller.exe has been twisted in a new form of phishing attack. |
|
|
|
|
2021-11-11 12:30:00 |
BazarBackdoor now abuses Windows 10 app feature in \'call me back\' attack (lien direct) |
AppInstaller.exe has been twisted in a new form of phishing attack. |
|
|
|
|
2021-11-11 08:00:02 |
EU pharmaceutical giants run old, vulnerable apps and fail to use encryption in login forms (lien direct) |
New research highlights hundreds of companies that are at risk of cyberattacks. |
|
|
|
|
2021-11-10 22:00:02 |
North Korean hackers target the South\'s think tanks through blog posts (lien direct) |
Responsibility for new attacks has been laid at the feet of the Kimsuky threat group. |
Threat
|
|
|
|
2021-11-10 14:00:00 |
A stalker\'s wishlist: PhoneSpy malware destroys Android privacy (lien direct) |
A new surveillance campaign has revealed widespread infection on Android devices. |
Malware
|
|
|
|
2021-11-09 11:00:01 |
Meet Lyceum: Iranian hackers targeting telecoms, ISPs (lien direct) |
The criminals climb up communication chains with the aim of reaching executives. |
|
|
|
|
2021-11-08 07:58:13 |
Cybersecurity firms provide threat intel for Clop ransomware group arrests (lien direct) |
The crackdown was codenamed Operation Cyclone. |
Ransomware
Threat
|
|
|
|
2021-11-05 10:29:43 |
SSL certificate research highlights pitfalls for company data, competition (lien direct) |
Analysis reveals hidden risks for organizations that do not monitor their certificate usage. |
|
|
|
|
2021-11-04 12:44:50 |
US indicts UK resident \'PlugwalkJoe\' for cryptocurrency theft (lien direct) |
The UK national is accused of stealing $784,000 in cryptocurrency. |
|
|
|
|
2021-11-04 11:00:00 |
Remote code execution flaw patched in Linux Kernel TIPC module (lien direct) |
The bug was spotted within a year of introduction to the codebase. |
|
|
|
|
2021-11-03 13:00:02 |
Almost half of rootkits are used for cyberattacks against government organizations (lien direct) |
Research institutes are also in the firing line. |
|
|
|
|
2021-11-03 12:00:05 |
Medical school exposes personal data of thousands of students (lien direct) |
ID cards, academic records, and more were open and accessible on the internet. |
|
|
|
|
2021-11-03 10:00:01 |
Arrests were made, but the Mekotio Trojan lives on (lien direct) |
Law enforcement cut off tails, but not the head of the cybercriminal operation. |
|
|
|
|
2021-11-02 10:35:46 |
Squid Game cryptocurrency creators pull the rug from under investors, steal millions (lien direct) |
The coin has crashed in what appears to be an exit scam. |
|
|
|
|
2021-11-02 09:00:02 |
Cybercriminals flog access to international shipping, logistics giants (lien direct) |
The underground hosts initial access brokers with entry to companies key in global supply chains. |
|
|
|
|
2021-10-27 13:09:38 |
Weeks early: Adobe dumps massive security patch update (lien direct) |
The security update targets 14 products. |
|
|
|
|
2021-10-27 11:30:00 |
Meet Balikbayan Foxes: a threat group impersonating the Philippine gov\'t (lien direct) |
The gang is also taking advantage of COVID-19 to propagate Trojan malware. |
Threat
|
|
|
|
2021-10-26 10:00:02 |
Nearly all US execs have experienced a cybersecurity threat, but some say there\'s still no plan (lien direct) |
A new survey suggests the disruption, share price drops, and theft are common consequences of attacks. |
|
|
|
|
2021-10-26 08:21:01 |
Schools put the brakes on facial recognition scheme for kids buying lunch (lien direct) |
UK regulators swooped in before the program gained full momentum. |
|
|
|
|
2021-10-26 07:19:40 |
Mozilla Firefox cracks down on malicious add-ons used by 455,000 users (lien direct) |
The troublesome add-ons misused an API that controlled how Firefox connected to the internet. |
|
|
|
|
2021-10-25 09:35:24 |
SolarWinds hackers, Nobelium, once again strike global IT supply chains, Microsoft warns (lien direct) |
The APT is probing potential new technology supply chain victims. |
|
|
|
|
2021-10-22 11:24:46 |
Ex-carrier employee sentenced for role in SIM-swapping scheme (lien direct) |
He was paid a daily fee to route victim numbers to handsets controlled by other criminals. |
|
|
|
|
2021-10-22 10:33:25 |
South African police arrest eight men suspected of targeting widows in romance scams (lien direct) |
The gang concocted "sob stories" to lure their victims into parting with cash. |
|
|
|
|
2021-10-21 07:37:31 |
US judge sentences duo for roles in running bulletproof hosting service (lien direct) |
The hosting service was used to deploy malware payloads including Zeus and the Blackhole exploit kit. |
Malware
|
|
|