What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-01-17 14:51:50 | Microsoft: Edge will mitigate \'unforeseen active\' zero day bugs (lien direct) | Microsoft Edge has added a new feature to the Beta channel that will be able to mitigate future in-the-wild exploitation of unknown zero-day vulnerabilities. [...] | |||
|
2022-01-17 14:33:56 | (Déjà vu) Firefox Relay gets added to disposable email blocklist, angers users (lien direct) | The maintainers of a "disposable email service" blocklist have decided to add Firefox Relay to the list, leaving many users of the service upset. Firefox Relay is a privacy-centric email service that enables users to protect their real email addresses and hence limit spam. [...] | |||
|
2022-01-17 14:33:56 | Firefox Relay\'s addition to disposable email blocklist upsets users (lien direct) | The maintainers of a "disposable email service" blocklist have decided to add Firefox Relay to the list, leaving many users of the service upset. Firefox Relay is a privacy-centric email service that enables users to protect their real email addresses and hence limit spam. [...] | |||
|
2022-01-17 13:04:18 | (Déjà vu) Zoho plugs another critical security hole in Desktop Central (lien direct) | Zoho has addressed a new critical severity vulnerability found to affect the company's Desktop Central and Desktop Central MSP unified endpoint management (UEM) solutions. [...] | Vulnerability | ||
|
2022-01-17 13:04:18 | Zoho patches new critical authentication bypass in Desktop Central (lien direct) | Zoho has addressed a new critical severity vulnerability found to affect the company's Desktop Central and Desktop Central MSP unified endpoint management (UEM) solutions. [...] | Vulnerability | ||
|
2022-01-17 12:45:25 | DHL dethrones Microsoft as most imitated brand in phishing attacks (lien direct) | DHL was the most imitated brand in phishing campaigns throughout Q4 2021, pushing Microsoft to second place, and Google to fourth. [...] | |||
|
2022-01-17 12:00:00 | Nintendo warns of spoofed sites pushing fake Switch discounts (lien direct) | Nintendo has warned customers of multiple sites impersonating the Japanese video game company's official website and pretending to sell Nintendo Switch consoles at significant discounts. [...] | |||
|
2022-01-17 11:38:01 | Cyber espionage campaign targets renewable energy companies (lien direct) | A large-scale cyber-espionage campaign targeting primarily renewable energy and industrial technology organizations have been discovered to be active since at least 2019, targeting over fifteen entities worldwide. [...] | |||
|
2022-01-17 10:01:23 | It\'s not just you: Telegram is down for many users (lien direct) | Telegram users are currently experiencing issues around the world, with users unable to use the desktop and mobile apps. [...] | |||
|
2022-01-17 08:47:31 | Safari bug leaks your Google account info, browsing history (lien direct) | There's a problem with the implementation of the IndexedDB API in Safari's WebKit engine, which could result in leaking browsing histories and even user identities to anyone exploiting the flaw. [...] | |||
|
2022-01-16 14:42:46 | eNom data center migration mistakenly knocks sites offline (lien direct) | A data center migration from eNom web hosting provider caused unexpected domain resolution problems that are expected to last for a few hours. [...] | |||
|
2022-01-16 13:32:35 | Microsoft: Fake ransomware targets Ukraine in data-wiping attacks (lien direct) | Microsoft is warning of destructive data-wiping malware disguised as ransomware being used in attacks against multiple organizations in Ukraine. [...] | Ransomware Malware | ||
|
2022-01-15 12:35:00 | (Déjà vu) npm dependency is breaking some React apps today - here\'s the fix (lien direct) | Tons of users are reporting their Facebook Create React App builds are failing since yesterday. The cause has been traced down to a dependency used by create-react-app, the latest version of which is breaking developers' apps. [...] | |||
|
2022-01-15 12:35:00 | Facebook\'s Create React App builds are breaking today - how to fix (lien direct) | Tons of users are reporting their Facebook Create React App builds are failing since yesterday. The cause has been traced down to a dependency used by create-react-app, the latest version of which is breaking developers' apps. [...] | |||
|
2022-01-15 12:06:08 | Russia charges 8 suspected REvil ransomware gang members (lien direct) | Eight members of the REvil ransomware operation that have been detained by Russian officers are currently facing criminal charges for their illegal activity. [...] | Ransomware | ||
|
2022-01-15 11:20:00 | Qlocker ransomware returns to target QNAP NAS devices worldwide (lien direct) | Threat actors behind the Qlocker ransomware are once again targeting Internet-exposed QNAP Network Attached Storage (NAS) devices worldwide. [...] | Ransomware Threat | ||
|
2022-01-15 10:12:24 | Linux malware sees 35% growth during 2021 (lien direct) | The number of malware infections on Linux-based IoT (internet of things) devices rose by 35% in 2021 compared to the previous year's numbers. The principal goal was recruiting devices to be part of DDoS (distributed denial of service) attacks. [...] | Malware | ||
|
2022-01-14 18:53:15 | The Week in Ransomware - January 14th 2022 - Russia finally takes action (lien direct) | Today, the Russian government announced that they arrested fourteen members of the REvil ransomware gang on behalf of US authorities. [...] | Ransomware | ||
|
2022-01-14 16:28:14 | (Déjà vu) Microsoft resumes rollout of January Windows Server updates (lien direct) | The January 2022 Windows Server cumulative updates are once again available via Windows Update after being pulled yesterday without an official reason from Microsoft. [...] | |||
|
2022-01-14 16:28:14 | Microsoft brings back January 2022 Windows Server updates (lien direct) | The January 2022 Windows Server cumulative updates are once again available via Windows Update after being pulled yesterday without an official reason from Microsoft. [...] | |||
|
2022-01-14 16:13:42 | Goodwill discloses data breach on its ShopGoodwill platform (lien direct) | American nonprofit Goodwill has disclosed a data breach that affected the accounts of customers using its ShopGoodwill.com e-commerce auction platform. [...] | Data Breach | ||
|
2022-01-14 15:22:52 | Former DHS official charged with stealing govt employees\' PII (lien direct) | A former Department of Homeland Security official pleaded guilty today to stealing confidential and proprietary software and sensitive databases from the US government containing employees' personal identifying information. [...] | Guideline | ||
|
2022-01-14 14:04:10 | (Déjà vu) White House reminds tech giants open source is a national security issue (lien direct) | The White House wants government and private sector organizations to rally their efforts and resources to secure open-source software and its supply chain after the Log4J vulnerabilities exposed critical infrastructure to threat actors' attacks. [...] | Threat | ||
|
2022-01-14 13:35:13 | Researchers develop CAPTCHA solver to aid dark web research (lien direct) | A team of researchers at the Universities of Arizona, Georgia, and South Florida, have developed a machine-learning-based CAPTCHA solver that they claim can overcome 94.4% of real challenges on dark websites. [...] | |||
|
2022-01-14 12:33:39 | Defense contractor Hensoldt confirms Lorenz ransomware attack (lien direct) | Hensoldt, a multinational defense contractor headquartered in Germany, has confirmed that some of its UK subsidiary's systems were compromised in a ransomware attack. [...] | Ransomware | ||
|
2022-01-14 11:46:42 | New Intel chips won\'t play Blu-ray disks due to SGX deprecation (lien direct) | Intel has removed support for SGX (software guard extension) in 12th Generation Intel Core 11000 and 12000 processors, rendering modern PCs unable to playback Blu-ray disks in 4K resolution. [...] | ★★★★★ | ||
|
2022-01-14 11:11:14 | Multiple Ukrainian government websites hacked and defaced (lien direct) | At least 15 websites belonging to various Ukrainian public institutions were compromised, defaced, and subsequently taken offline. [...] | |||
|
2022-01-14 08:51:17 | (Déjà vu) Russia arrests REvil ransomware gang members, seize $6.6 million (lien direct) | The Federal Security Service (FSB) of the Russian Federation has announced today that they shut down the REvil ransomware gang after U.S. authorities reported on the leader. [...] | Ransomware Guideline | ||
|
2022-01-14 08:51:17 | Russian government arrests REvil ransomware gang members (lien direct) | The Federal Security Service (FSB) of the Russian Federation has announced today that they shut down the REvil ransomware gang after U.S. authorities reported on the leader. [...] | Ransomware Guideline | ||
|
2022-01-13 16:56:28 | Android users can now disable 2G to block Stingray attacks (lien direct) | Google has finally rolled out an option on Android allowing users to disable 2G connections, which come with a host of privacy and security problems exploited by cell-site simulators. [...] | |||
|
2022-01-13 16:39:48 | FCC wants new data breach reporting rules for telecom carriers (lien direct) | The Federal Communications Commission (FCC) has proposed more rigorous data breach reporting requirements for telecom carriers in response to breaches that recently hit the telecommunications industry. [...] | Data Breach | ||
|
2022-01-13 15:14:32 | BlueNoroff hackers steal crypto using fake MetaMask extension (lien direct) | The North Korean threat actor group known as 'BlueNoroff' has been spotted targeting cryptocurrency startups with malicious documents and fake MetaMask browser extensions. [...] | Threat | ||
|
2022-01-13 15:04:55 | AWS fixes security flaws that exposed AWS customer data (lien direct) | Amazon Web Services (AWS) has addressed an AWS Glue security issue that allowed attackers to access and alter data linked to other AWS customer accounts. [...] | |||
|
2022-01-13 13:35:33 | Microsoft pulls new Windows Server updates due to critical bugs (lien direct) | Microsoft has pulled the January Windows Server cumulative updates after critical bugs caused domain controllers to reboot, Hyper-V to not work, and ReFS volume systems to become unavailable. [...] | |||
|
2022-01-13 13:08:36 | Microsoft Defender weakness lets hackers bypass malware detection (lien direct) | Threat actors can take advantage of a weakness that affects Microsoft Defender antivirus on Windows to learn locations excluded from scanning and plant malware there. [...] | Malware Threat | ||
|
2022-01-13 12:31:13 | Windows \'RemotePotato0\' zero-day gets an unofficial patch (lien direct) | A privilege escalation vulnerability impacting all Windows versions that can let threat actors gain domain admin privileges through an NTLM relay attack has received unofficial patches after Microsoft tagged it as "won't fix." [...] | Vulnerability | ||
|
2022-01-13 11:21:53 | Carding site UniCC retires after generating $358 million in sales (lien direct) | UniCC, the largest carding site operating on the dark web at the moment, has announced its retirement, claiming reasons of tiredness. [...] | |||
|
2022-01-13 07:47:19 | Ukranian police arrests ransomware gang that hit over 50 firms (lien direct) | Ukrainian police officers have arrested a ransomware affiliate group responsible for attacking at least 50 companies in the U.S. and Europe. [...] | Ransomware | ||
|
2022-01-12 16:45:03 | Apple fixes doorLock bug that can disable iPhones and iPads (lien direct) | Apple has released security updates to address a persistent denial of service (DoS) dubbed doorLock that would altogether disable iPhones and iPads running HomeKit on iOS 14.7 and later. [...] | |||
|
2022-01-12 15:27:30 | US links MuddyWater hacking group to Iranian intelligence agency (lien direct) | US Cyber Command (USCYBERCOM) has officially linked the Iranian-backed MuddyWatter hacking group to Iran's Ministry of Intelligence and Security (MOIS). [...] | |||
|
2022-01-12 14:53:07 | New Windows Server updates cause DC boot loops, break Hyper-V (lien direct) | The latest Windows Server updates are causing severe issues for administrators, with domain controllers having spontaneous reboots, Hyper-V not starting, and inaccessible ReFS volumes until the updates are rolled back [...] | |||
|
2022-01-12 14:32:07 | Microsoft adds macOS-like hardware indicators to Windows 11 (lien direct) | Microsoft is now rolling out redesigned hardware indicator flyouts (uncannily similar to macOS and iOS ones) that align with Windows 11's design to all Windows Insiders in the Dev Channel. [...] | |||
|
2022-01-12 13:38:11 | UK jails man for spying on teenagers, stealing photos using RATs (lien direct) | A Nottingham man was imprisoned this week for more than two years after hacking the computers and phones of dozens of victims, some of them underage, and spying on them using remote access trojans (RATs). [...] | |||
|
2022-01-12 12:53:27 | Magniber ransomware using signed APPX files to infect systems (lien direct) | The Magniber ransomware has been spotted using Windows application package files (.APPX) signed with valid certificates to drop malware pretending to be Chrome and Edge web browser updates. [...] | Ransomware Malware | ||
|
2022-01-12 11:36:26 | TellYouThePass ransomware returns as a cross-platform Golang threat (lien direct) | TellYouThePass ransomware has re-emerged as a Golang-compiled malware, making it easier to target major platforms beyond Windows, like macOS and Linux. [...] | Ransomware Threat | ||
|
2022-01-12 10:40:38 | New Windows KB5009543, KB5009566 updates break L2TP VPN connections (lien direct) | Windows 10 users and administrators report problems making L2TP VPN connections after installing the recent Windows 10 KB5009543 and Windows 11 KB5009566 cumulative updates. [...] | |||
|
2022-01-12 10:20:43 | OceanLotus hackers turn to web archive files to deploy backdoors (lien direct) | Vietnamese hackers of the APT32 group (Ocean Lotus) are now using Web Archive files (.mht and .mhtml) to deploy backdoors on their targets. [...] | APT 32 | ||
|
2022-01-12 04:43:13 | EA: 50 high-profile FIFA 22 accounts taken over by phishing actors (lien direct) | Electronic Arts (EA) has published an official response to numerous reports about hacked player accounts, confirming the problem and attributing it to phishing actors. [...] | |||
|
2022-01-12 03:35:06 | Hackers take over diplomat\'s email, target Russian deputy minister (lien direct) | Hackers believed to work for the North Korean government have compromised the email account of a staff member of Russia's Ministry of Foreign Affairs (MID) and deployed spear-phishing attacks against the country's diplomats in other regions. [...] | |||
|
2022-01-11 18:17:45 | State hackers use new PowerShell backdoor in Log4j attacks (lien direct) | Hackers believed to be part of the Iranian APT35 state-backed group (aka 'Charming Kitten' or 'Phosphorus') has been observed leveraging Log4Shell attacks to drop a new PowerShell backdoor. [...] | Conference | APT 35 |
To see everything:
Our RSS (filtrered)
