Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-07-01 14:11:42 |
Babuk Ransomware Builder Mysteriously Appears in VirusTotal (lien direct) |
The gang's source code is now available to rivals and security researchers alike - and a decryptor likely is not far behind. |
Ransomware
|
|
|
|
2021-07-01 13:00:44 |
Data Exfiltration: What You Should Know to Prevent It (lien direct) |
Data leaks are a serious concern for companies of all sizes; if one occurs, it may put them out of business permanently. Here's how you can protect your organization from data theft. |
|
|
|
|
2021-07-01 11:30:35 |
Netgear Authentication Bypass Allows Router Takeover (lien direct) |
Microsoft researchers discovered the firmware flaws in the DGN-2200v1 series router that can enable authentication bypass to take over devices and access stored credentials. |
|
|
|
|
2021-07-01 10:00:12 |
Dropbox Used to Mask Malware Movement in Cyberespionage Campaign (lien direct) |
The ongoing spear-phishing campaign targeting the Afghan government uses Dropbox as an API that leaves no traces of communications with weirdo websites. |
Malware
|
|
|
|
2021-06-30 20:19:28 |
Indexsinas SMB Worm Campaign Infests Whole Enterprises (lien direct) |
The self-propagating malware's attack chain is complex, using former NSA cyberweapons, and ultimately drops cryptominers on targeted machines. |
|
|
|
|
2021-06-30 16:28:48 |
Why MTTR is Bad for SecOps (lien direct) |
Kerry Matre, senior director at Mandiant, discusses the appropriate metrics to use to measure SOC and analyst performance, and how MTTR leads to bad behavior. |
Guideline
|
|
|
|
2021-06-30 16:08:46 |
Zero-Day Used to Wipe My Book Live Devices (lien direct) |
Threat actors may have been duking it out for control of the compromised devices, first using a 2018 RCE, then password-protecting a new vulnerability. |
Threat
|
|
|
|
2021-06-30 16:02:29 |
PoC Exploit Circulating for Critical Windows Print Spooler Bug (lien direct) |
The "PrintNightmare" bug may not be fully patched, some experts are warning, leaving the door open for widespread remote code execution attacks. |
|
|
|
|
2021-06-30 12:39:15 |
Feds Told to Better Manage Facial Recognition, Amid Privacy Concerns (lien direct) |
A GAO report finds government agencies are using the technology regularly in criminal investigations and to identify travelers, but need stricter management to protect people's privacy and avoid inaccurate identification |
|
|
|
|
2021-06-29 19:49:24 |
Users Clueless About Cybersecurity Risks: Study (lien direct) |
The return to offices, coupled with uninformed users (including IT pros) has teed up an unprecedented risk of enterprise attack. |
|
|
|
|
2021-06-29 16:34:21 |
Microsoft Translation Bugs Open Edge Browser to Trivial UXSS Attacks (lien direct) |
The bug in Edge's auto-translate could have let remote attackers pull off RCE on any foreign-language website just by sending a message with an XSS payload.
|
|
|
|
|
2021-06-29 11:34:38 |
Details of RCE Bug in Adobe Experience Manager Revealed (lien direct) |
Disclosure of a bug in Adobe's content-management solution - used by Mastercard, LinkedIn and PlayStation – were released. |
|
|
|
|
2021-06-29 09:00:51 |
Cobalt Strike Usage Explodes Among Cybercrooks (lien direct) |
The legit security tool has shown up 161 percent more, year-over-year, in cyberattacks, having “gone fully mainstream in the crimeware world.” |
Tool
|
|
|
|
2021-06-28 23:24:06 |
Data for 700M LinkedIn Users Posted for Sale in Cyber-Underground (lien direct) |
After 500 million LinkedIn enthusiasts were affected in a data-scraping incident in April, it's happened again - with big security ramifications. |
|
|
|
|
2021-06-28 21:17:16 |
5G Security Vulnerabilities Fluster Mobile Operators (lien direct) |
A survey from GSMA and Trend Micro shows a concerning lack of security capabilities for private 5G networks (think factories, smart cities, industrial IoT, utilities and more). |
|
|
|
|
2021-06-28 20:38:29 |
NVIDIA Patches High-Severity GeForce Spoof-Attack Bug (lien direct) |
A vulnerability in NVIDIA's GeForce Experience software opens the door to remote data access, manipulation and deletion. |
Vulnerability
|
|
|
|
2021-06-28 19:11:15 |
Russian Attackers Breach Microsoft Customer Service Accounts (lien direct) |
American IT companies and government have been targeted by the Nobelium state-sponsored group. |
|
|
|
|
2021-06-28 16:36:45 |
Microsoft Signs Malware That Spreads Through Gaming (lien direct) |
The driver, called "Netfilter," is a rootkit that talks to Chinese C2 IPs and aims to spoof gamers' geo-locations to cheat the system and play from anywhere, Microsoft said.
|
Malware
|
|
|
|
2021-06-28 16:00:11 |
Critical CISO Initiatives for the Second Half of 2021 (lien direct) |
Nilesh Dherange, CTO at Gurucul, goes over what defenses CISOs need now, and how and why to prioritize the options. |
|
|
|
|
2021-06-25 21:31:58 |
Mercedes-Benz Customer Data Flies Out the Window (lien direct) |
For over three years, a vendor was recklessly driving the cloud-stored data of luxury-car-owning customers and wannabe buyers. |
|
|
|
|
2021-06-25 21:03:14 |
PS3 Players Ban: Latest Victims of Surging Attacks on Gaming Industry (lien direct) |
Every Sony PlayStation 3 ID out there was compromised, provoking bans of legit players on the network. |
|
|
|
|
2021-06-25 18:06:39 |
FIN7 \'Pen Tester\' Headed to Jail Amid $1B in Payment-Card Losses (lien direct) |
One of the Carbanak cybergang's highest-level hackers is destined to serve seven years while making $2.5 million in restitution payments. |
|
|
|
|
2021-06-25 16:08:38 |
Cisco ASA Bug Now Actively Exploited as PoC Drops (lien direct) |
In-the-wild XSS attacks have commenced against the security appliance (CVE-2020-3580), as researchers publish exploit code on Twitter. |
|
|
|
|
2021-06-25 15:50:32 |
My Book Live Users Wake Up to Wiped Devices, Active RCE Attacks (lien direct) |
“I am totally screwed,” one user wailed after finding years of data nuked. Western Digital advised yanking the NAS storage devices offline ASAP: There's an exploit.
|
|
|
|
|
2021-06-25 13:20:08 |
Hackers Crack Pirated Games with Cryptojacking Malware (lien direct) |
Threat actors have so far made about $2 million from Crackonosh, which secretly mines Monero cryptocurrency from affected devices. |
Threat
Malware
|
|
|
|
2021-06-25 01:05:45 |
Spam Downpour Drips New IcedID Banking Trojan Variant (lien direct) |
The primarily IcedID-flavored banking trojan spam campaigns were coming in at a fever pitch: Spikes hit more than 100 detections a day. |
Spam
|
|
|
|
2021-06-24 19:52:35 |
Oh FCUK! Fashion Label, Medical Diagnostics Firm Latest REvil Victims (lien direct) |
The infamous ransomware group hit two big-name companies within hours of each other. |
Ransomware
|
|
|
|
2021-06-24 15:44:56 |
Musk-Themed \'$SpaceX\' Cryptoscam Invades YouTube Advertising (lien direct) |
Beware: The swindle uses legitimately purchased YouTube ads, real liquidity, legitimate DEX Uniswap, and the real wallet extension MetaMask to create an entirely convincing fake coin gambit. |
|
|
|
|
2021-06-24 15:31:31 |
Critical VMware Carbon Black Bug Allows Authentication Bypass (lien direct) |
The 9.4-rated bug in AppC could give attackers admin rights, no authentication required, letting them attack anything from PoS to industrial control systems. |
|
|
|
|
2021-06-24 13:14:56 |
Tulsa\'s Police-Citation Data Leaked by Conti Gang (lien direct) |
A May 6 ransomware attack caused disruption across several of the municipality's online services and websites. |
Ransomware
|
|
|
|
2021-06-24 10:00:47 |
Atlassian Bugs Could Have Led to 1-Click Takeover (lien direct) |
A supply-chain attack could have siphoned sensitive information out of Jira, such as security issues on Atlassian cloud, Bitbucket and on-prem products. |
|
|
|
|
2021-06-24 10:00:42 |
30M Dell Devices at Risk for Remote BIOS Attacks, RCE (lien direct) |
Four separate security bugs would give attackers almost complete control and persistence over targeted devices, thanks to a faulty update mechanism. |
|
|
|
|
2021-06-23 19:23:35 |
Iran Media Websites Seized by U.S. in Disinformation Campaign (lien direct) |
DoJ uses sanctions laws to shut down an alleged Iranian government malign influence campaign. |
|
|
|
|
2021-06-23 16:53:01 |
Pandemic-Bored Attackers Pummeled Gaming Industry (lien direct) |
Akamai's 2020 gaming report shows that cyberattacks on the video game industry skyrocketed, shooting up 340 percent in 2020. |
|
|
|
|
2021-06-23 15:39:06 |
Critical Palo Alto Cyber-Defense Bug Allows Remote \'War Room\' Access (lien direct) |
Remote, unauthenticated cyberattackers can infiltrate and take over the Cortex XSOAR platform, which anchors unified threat intelligence and incident responses. |
Threat
|
|
|
|
2021-06-23 15:11:48 |
REvil Ransomware Code Ripped Off by Rivals (lien direct) |
The LV ransomware operators likely used a hex editor to repurpose a REvil binary almost wholesale, for their own nefarious purposes. |
Ransomware
|
|
★★
|
|
2021-06-23 11:58:06 |
Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE (lien direct) |
A pair of zero-days affecting Pling-based marketplaces could allow for some ugly attacks on unsuspecting Linux enthusiasts -- with no patches in sight. |
|
|
|
|
2021-06-23 10:44:07 |
SonicWall \'Botches\' October Patch for Critical VPN Bug (lien direct) |
Company finally rolls out the complete fix this week for an RCE flaw affecting some 800,000 devices that could result in crashes or prevent users from connecting to corporate resources. |
|
|
|
|
2021-06-22 20:41:10 |
BEC Losses Top $1.8B as Tactics Evolve (lien direct) |
BEC attacks getting are more dangerous, and smart users are the ones who can stop it. |
|
|
|
|
2021-06-22 19:27:35 |
Cryptominers Slither into Python Projects in Supply-Chain Campaign (lien direct) |
These code bombs lurk in the PyPI package repository, waiting to be inadvertently baked into software developers' applications. |
|
|
|
|
2021-06-22 18:07:54 |
Email Bug Allows Message Snooping, Credential Theft (lien direct) |
A year-old proof-of-concept attack that allows an attacker to bypass TLS email protections to snoop on messages has been patched. |
|
|
|
|
2021-06-22 16:24:02 |
Kids\' Apps on Google Play Rife with Privacy Violations (lien direct) |
One in five of the most-popular apps for kids under 13 on Google Play don't comply with COPPA regulations on how children's information is collected and used. |
|
|
★★★★
|
|
2021-06-22 16:17:10 |
Lexmark Printers Open to Arbitrary Code-Execution Zero-Day (lien direct) |
“No remedy available as of June 21, 2021," according to the researcher who discovered the easy-to-exploit, no-user-action-required bug. |
|
|
|
|
2021-06-22 11:14:29 |
Six Flags to Pay $36M Over Collection of Fingerprints (lien direct) |
Illinois Supreme Court rules in favor of class action against company's practice of scanning people's fingers when they enter amusement parks. |
|
|
|
|
2021-06-21 21:52:49 |
Wegmans Exposes Customer Data in Misconfigured Databases (lien direct) |
Cleanup in aisle "Oops": The supermarket chain said that it misconfigured two cloud databases, exposing customer data to public scrutiny. |
|
|
|
|
2021-06-21 20:21:36 |
Bugs in NVIDIA\'s Jetson Chipset Opens Door to DoS Attacks, Data Theft (lien direct) |
Chipmaker patches nine high-severity bugs in its Jetson SoC framework tied to the way it handles low-level cryptographic algorithms. |
|
|
|
|
2021-06-21 19:56:22 |
Embryology Data Breach Follows Fertility Clinic Ransomware Hit (lien direct) |
Approximately 38,000 of RBA's customers had their embryology data stolen by a ransomware gang. |
Ransomware
Data Breach
|
|
★★★
|
|
2021-06-21 17:20:24 |
Agent Tesla RAT Returns in COVID-19 Vax Phish (lien direct) |
An unsophisticated campaign shows that the pandemic still has long legs when it comes to being social-engineering bait. |
|
|
|
|
2021-06-21 16:58:52 |
iPhone Wi-Fi Crushed by Weird Network (lien direct) |
… until you reset network settings and stop connecting to a weirdly named network, that is. FUD is spreading. iOS Wi-Fi demolition is not.
|
|
|
|
|
2021-06-18 15:35:41 |
What\'s Making Your Company a Ransomware Sitting Duck (lien direct) |
What's the low-hanging fruit for ransomware attackers? What steps could help to fend them off, and what's stopping organizations from implementing those steps? |
Ransomware
|
|
|