What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-07-03 14:00:03 | Bangladesh Cyber Heist 2.0: Silence APT goes global (lien direct) | Group-IB believes Silence APT, the Russian-speaking cybercriminal gang, is likely to be behind the attack on Dutch Bangla Bank's ATMs resulting in the theft of $3M, Group-IB, an international company that specializes in preventing cyber attacks, has established that Silence APT, a Russian-speaking cybercriminal group is likely to be behind the brazen attack on Dutch […] | |||
|
2019-07-03 12:40:00 | China installs a surveillance app on tourists\' phones while crossing in the Xinjiang (lien direct) | Chinese border guards are secretly installing a surveillance app on smartphones of tourists and people crossings in the Xinjiang region who are entering from Kyrgyzstan. Are you entering in the Xinjiang (China) from Kyrgyzstan? There is something that you need to know, Chinese border guards are secretly installing surveillance software on the mobile devices of […] | |||
|
2019-07-03 09:08:01 | Google addressed three critical code execution flaws in Android Media Framework (lien direct) | Google released the July 2019 security patches for the Android OS that address a total of 33 vulnerabilities, including 9 issues rated as Critical. The most severe flaw addressed by Google is a critical security issue (CVE-2019-2106) affecting the Media framework that could be exploited by a remote attacker to execute arbitrary code within the […] | |||
|
2019-07-03 06:26:03 | US Cyber Command warns of Iran-linked hackers exploiting CVE-2017-11774 Outlook flaw (lien direct) | US Cyber Command posted on Twitter an alert about cyber attacks exploiting the CVE-2017-11774 vulnerability in Outlook. Yesterday I was using Twitter when I noticed the following alert issued by the account managed by the US Cyber Command: The alert refers to an ongoing activity aimed at infecting government networks by exploiting the CVE-2017-11774 Outlook […] | Vulnerability | ||
|
2019-07-03 05:22:05 | Chinese smart home solutions vendor Orvibo leaks two billion user logs (lien direct) | Experts found a Chinese smart home solutions vendor that has been leaking billions of logs from devices managed via its cloud platform. Experts at vpnMentor discovered a massive data leak in Orvibo's user database. The research team, led by Noam Rotem and Ran Locar, has found an open database managed by Orvibo Smart Home vendor. […] | |||
|
2019-07-02 22:59:02 | A cyberattack took offline websites of the Georgia agency (lien direct) | Some court websites of a Georgia state were brought offline after their systems were infected by ransomware in a cyber attack. A Georgia state agency confirmed that a cyberattack has brought offline some court websites. According to local media, hackers infected the systems of the Georgia Administrative Office of the Courts with ransomware, “News outlets […] | Ransomware | ||
|
2019-07-02 14:45:05 | Firefox finally addressed the Antivirus software TLS Errors (lien direct) | Firefox finally addressed the issues with antivirus apps crashing HTTPS websites starting with the release of Firefox 68. Mozilla announced that it will resolve the issues that caused antivirus apps crashing HTTPs websites with the release of Firefox 68 version. The problems began after the release of Firefox 65 in December 2018, since then experts […] | |||
|
2019-07-02 13:06:02 | LooCipher: The New Infernal Ransomware (lien direct) | A new Ransomware appeared in the threat landscape, the malware began to threats the digital world. This time using a nice but scary name: LooCipher. Introduction A new Ransomware began to threats the digital world. This time using a nice but scary name: LooCipher. The name is at the same time an allusion to its capabilities (thank […] | Ransomware Malware Threat | ||
|
2019-07-02 06:51:04 | Cyber Defense Magazine – July 2019 has arrived. Enjoy it! (lien direct) | Cyber Defense Magazine July 2019 Edition has arrived. We hope you enjoy this month’s edition…packed with over 168 pages of excellent content. Cyber Defense Magazine July 2019 Edition has arrived. Tips, tricks, ideas, secrets and insider information on the best practices in cybersecurity. Please read it and share it with your friends. With much appreciation […] | |||
|
2019-07-02 06:20:02 | After 2 years under the radars, Ratsnif emerges in OceanLotus ops (lien direct) | Security experts spotted a news wave of attacks carried out by the OceanLotus APT group that involved the new Ratsnif Trojan. Experts at the security firm Cylance detected a new RAT dubbed Ratsnif that was used in cyber espionage operations conducted by the OceanLotus APT group. The OceanLotus APT group, also known as APT32 or Cobalt Kitty, is state-sponsored group that […] | APT 32 | ||
|
2019-07-01 19:41:02 | New variant of Dridex banking Trojan implements polymorphism (lien direct) | Security researchers at eSentire tracked a new campaign spreading a variant of the Dridex banking Trojan that shows polymorphism. Security experts at eSentire observed a new campaign spreading a variant of the Dridex banking Trojan that implements polymorphism. The Dridex banking Trojan that has been around since 2014, it was involved in numerous campaigns against financial institutions over the […] | |||
|
2019-07-01 14:13:01 | Israel blamed Russia for jamming at Israeli Ben Gurion airport (lien direct) | Israel blamed Russia for jamming at Israeli Ben Gurion airport that disrupted GPS signals, but the Kremlin denies its involvement in the attacks. Starting from early June, a significant jamming activity has interfered with GPS signals at Israeli Ben Gurion airport causing severe problems to pilots and aircraft. Israel’s Airports Authority confirmed that the disruption […] | |||
|
2019-07-01 12:51:04 | City Council of Somerville bans facial recognition technology (lien direct) | City Council of Somerville, a Boston suburb, has voted to ban the use of facial recognition system by police and other city offices. The City Council of Somerville, Massachusetts, a Boston suburb, has decided to ban the use of facial recognition system by police and other city departments. Last week, the Somerville City Council expressed […] | |||
|
2019-07-01 09:03:00 | Singapore Government will run its third bug bounty program (lien direct) | Singapore has announced the third bug bounty program aimed at assessing the security of government systems exposed online. The government of Singapore has announced its third bug bounty program aimed at assessing the level of security implemented for government systems exposed online. The bug bounty program sees the involvement of the Cyber Security Agency of […] | |||
|
2019-07-01 08:06:00 | ViceLeaker Android spyware targets users in the Middle East (lien direct) | Experts at Kaspersky have uncovered a spyware campaign dubbed ViceLeaker that spreads in the Middle East to spy on Android users. Kaspersky spotted a spyware campaign, tracked as ViceLeaker, that spreads in the Middle East to steal device and communications data from Android users. The ViceLeaker campaign has been active at least since May 2018 […] | |||
|
2019-07-01 06:49:03 | Iran-linked APT33 updates infrastructure following its public disclosure (lien direct) | The Iran-linked cyberespionage group APT33 has updated its infrastructure after the publication of a report detailing its activities. In March, Symantec published a report detailing the activities of Iran-linked cyberespionage group APT33 that was targeting organizations in Saudi Arabia and the United States. The APT33 group has been around since at least 2013, since mid-2016, the […] | APT33 APT 33 | ||
|
2019-06-30 20:34:03 | Bulgarian IT expert arrested after disclosing a flaw in kindergarten software (lien direct) | Bulgarian police arrested the IT expert Petko Petrov after he publicly demonstrated a security vulnerability in the kindergarten software used by local kindergartens. The IT expert Petko Petrov was arrested by the Bulgarian police because he publicly demonstrated the exploitation of a vulnerability in the software used by local kindergartens. Petrov exploited the flaw to […] | Vulnerability | ||
|
2019-06-30 13:25:04 | Is Your Browser Secure? Here\'s How to Secure Your Web Browser Against Attacks! (lien direct) | Explorer, Mozilla Firefox, Google Chrome, and Opera, no matter which web browser you use, here’s what you need to know to protect them against attacks. There are a number of web browsers available for surfing sites and accessing the content. The most popular and widely used are Internet Explorer, Mozilla Firefox, Google Chrome, and Opera. […] | ★★★★★ | ||
|
2019-06-30 11:44:05 | Security Affairs newsletter Round 220 – News of the week (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! Expert released PoC for Outlook for Android flaw addressed by Microsoft Hundreds of million computers potentially exposed to hack due to a flaw in PC-Doctor component NASA hacked! An […] | Hack | ||
|
2019-06-30 10:19:05 | Vulnerability in Medtronic insulin pumps allow hacking devices (lien direct) | Medtronic and the US government have warned that some Medtronic MiniMed insulin pumps are vulnerable to cyber attacks. Medtronic and the United States government have warned of a security vulnerability affecting some Medtronic MiniMed insulin pumps that could be exploited by hackers. The Department of Homeland Security (DHS) and Medtronic, and the Food and Drug […] | Vulnerability | ||
|
2019-06-30 07:58:02 | (Déjà vu) Germany and the Netherlands agreded to build TEN, the first ever joint military internet (lien direct) | The governments of Germany and The Netherlands agreed to build the first-ever joint military Internet, so-called TEN (Tactical Edge Networking). Government officials from Germany and the Netherlands signed an agreement for the building of the first-ever joint military Internet, so-called TEN (Tactical Edge Networking). The agreement was signed this week in Brussels, during a meeting […] | |||
|
2019-06-29 18:43:04 | Attunity data leak: Netflix, Ford, TD Bank data exposed by Open AWS Buckets (lien direct) | Attunity data integration and big data management firm exposed a significant amount of sensitive data through unprotected Amazon S3 buckets. Data integration and big data management firm Attunity exposed a significant amount of sensitive data through unprotected Amazon S3 buckets. The company, owned by Qlik, provides solutions to over 2,000 enterprises and half of the […] | |||
|
2019-06-29 05:08:03 | Talos discovered Spelevo EK, an exploit kit spreading via B2B Website (lien direct) | Researchers at Cisco Talos group have discovered a new exploit kit dubbed Spelevo that spreads via a compromised business-to-business website. Malware researchers at Cisco Talos have discovered a new exploit kit dubbed Spelevo that spreads via a compromised business-to-business website. The popularity of EK rapidly decreased with the demise of the Angler Exploit Kit, but the discovery […] | Malware | ||
|
2019-06-28 17:16:02 | Italian data protection watchdog fines Facebook over Cambridge Analytica scandal (lien direct) | The Italian data protection watchdog fined Facebook for one million euros ($1.1 million) for violating privacy laws over the Cambridge Analytica privacy scandal. The Italian data protection watchdog, the DPA (“Garante per la protezione dei dati personali”), fined Facebook for one million euros ($1.1 million) for violating privacy laws over the Cambridge Analytica privacy scandal. “The Italian […] | |||
|
2019-06-28 13:58:03 | Regin spyware involved in attack against the Russian tech giant Yandex (lien direct) | Allegedly Western nation-state actors breached the systems of Russian tech giant Yandex in 2018, the attack involved a new variant of the Regin malware. According to the Reuters, Western state-sponsored hackers breached the systems of the Russian tech giant Yandex in 2018, the attack involved a new variant of the Regin malware. The Regin malware has been […] | |||
|
2019-06-28 06:01:05 | Cloud Hopper operation hit 8 of the world\'s biggest IT service providers (lien direct) | A long-running operation carried out by China-linked hackers, and tracked as Cloud Hopper, has targeted clients of major companies, including IBM, HPE, Tata CS, Fujitsu, and NTT. Hackers broke into the internal networks on major companies, such as HPE and IBM, and stole corporate data and trade secrets. Then the attackers used the stolen information […] | |||
|
2019-06-27 20:31:01 | US-based Cloud Solution Provider PCM Inc. hacked (lien direct) | Hackers breached the infrastructure of PCM Inc., one of the major U.S.-based cloud solution provider, and accessed to email and file sharing systems for some of its clients. Hackers breached the infrastructure of PCM Inc., one of the major U.S.-based cloud solution provider. According to the popular investigator Brian Krebs, the attackers gained access to […] | |||
|
2019-06-27 18:11:04 | Cisco addressed critical flaws in Cisco Data Center Network Manager (lien direct) | Cisco disclosed several vulnerabilities in its Data Center Network Manager (DCNM), including “critical” and “high severity. issues” Cisco informed its customers about the presence of multiple security vulnerabilities in the web-based interface of the DCNM data center network management platform, including two critical security holes. The first critical issue tracked as CVE-2019-1620 that could be exploited […] | |||
|
2019-06-27 16:38:00 | Crooks stole millions from Bitrue Cryptocurrency Exchange (lien direct) | Another cryptocurrency exchange announced to have suffered a theft, this time is the victim is the Singapore-based Bitrue. It has happened again, crooks stole funds from another cryptocurrency exchange, this time the victim is the Singapore-based Bitrue. Bitrue revealed on Thursday that hackers accessed the accounts of tens of its customers and stole their funds. […] | |||
|
2019-06-27 13:16:03 | Flaws in the BlueStacks Android emulator allows remote code execution and more (lien direct) | Multiple flaws in the BlueStacks Android emulator were addressed, including a vulnerability that allowed attackers to remotely control code execution. Other issues included information disclosure and a flaw that allowed attackers to steal backups of the VM and its data. In April, the researcher Nick Cano discovered that BlueStacks versions prior than v4.90.0.1046 are affected by a […] | Vulnerability | ||
|
2019-06-27 05:32:05 | Similarities and differences between MuddyWater and APT34 (lien direct) | Security expert Marco Ramilli analyzed similarities and differences between the MuddyWater and APT34 cyberespionage groups. Many state sponsored groups have been identified over time, many of them have different names (since discovered by different organizations) and there is no an agreed standardization on the topic but many victims and some interests look very tight together. […] | APT 34 | ||
|
2019-06-27 04:59:03 | Flaws in EA Games Login exposed accounts of 300 Million Gamers to hack (lien direct) | Experts discovered security flaws in EA Games’ login process that could allow an attacker to take over EA gamers’ accounts and steal sensitive data. Experts at Check Point Research and Cyberint discovered multiple security flaws in EA Games’ login process that could allow an attacker to take over EA gamers’ accounts and steal sensitive data. […] | Hack | ||
|
2019-06-26 19:36:02 | European law enforcement agencies arrested 6 individuals involved in $27M cryptocurrency theft (lien direct) | European law enforcement agencies have arrested 6 individuals in connection with a €24 million ($27.2 million) cryptocurrency theft. An operation conducted by European law enforcement agencies resulted in the arrest of 6 individuals involved in a €24 million ($27.2 million) cryptocurrency theft. The group of cyber criminals is composed of five men and one woman, […] | |||
|
2019-06-26 13:37:05 | Lake City agreed to pay $500,000 in ransom, is the second case in Florida in a week (lien direct) | A few days ago, Riviera Beach City agreed to pay $600,000 in ransom, now a Lake City, another city in Florida, agreed to do the same after a ransomware attack. A few days ago, Riviera Beach City agreed to pay $600,000 in ransom, now less than a week later, another city in Florida opted to […] | Ransomware | ||
|
2019-06-26 12:39:00 | Malspam campaign spreads LokiBot & NanoCore via ISO image files (lien direct) | Experts from security firm Netskope observed variants of LokiBot and NanoCore malware distributed in ISO Image through malspam campaign. Security firm Netskope observed a new malspam campaign delivering variants of LokiBot and NanoCore malware in ISO image file attachments. “Netskope Threat Research Labs has been tracking multiple similar malspam campaigns that began in April 2019. […] | Malware Threat | ||
|
2019-06-26 07:01:00 | Silex malware bricks thousands of IoT devices in a few hours (lien direct) | Security experts warn of a new piece of the Silex malware that is bricking thousands of IoT devices, and the situation could rapidly go worse. Akamai researcher Larry Cashdollar discovered a new piece of the Silex malware that is bricking thousands of IoT devices, over 2,000 devices have been bricked in a few hours and the […] | Malware | ||
|
2019-06-26 06:05:02 | Operation Soft Cell – Multiple telco firms hacked by nation-state actor (lien direct) | Operation Soft Cell – Experts at Cybereason discovered that China-linked hackers have breached numerous telco providers controlling their networks. Researchers at Cybereason uncovered an ongoing long-running espionage campaign, tracked as Operation Soft Cell, that targets telco providers. Tactics, techniques, and procedures, and the type of targets suggest the involvement of a nation-state actor likely linked […] | |||
|
2019-06-25 14:13:00 | OSX/Linker, a new piece of Mac malware that exploits Gatekeeper bypass (lien direct) | Mac security software firm Intego has spotted a new Mac malware dubbed OSX/Linker that exploits a recently disclosed macOS Gatekeeper vulnerability. Experts at Mac security software firm Intego discovered a new piece of Mac malware dubbed OSX/Linker that exploits a recently disclosed macOS Gatekeeper bypass vulnerability. The Apple Gatekeeper is designed to protect OS X users by […] | Malware | ||
|
2019-06-25 12:22:04 | Anonymous Belgium hacker identified after dropping USB drive while throwing Molotov cocktail (lien direct) | Belgium police have identified a member of the Anonymous Belgium collective while investigating an arson case at a local bank. The Anonymous member is a 35-year-old man from Roeselare, Belgium, was arrested after throwing a Molotov cocktail at the Crelan Bank office in Rumbeke, back in 2014. According to ZDnet, the hacker has been exposed […] | |||
|
2019-06-25 10:22:05 | Iran denies attack against its infrastructure has ever succeeded (lien direct) | After media reported a cyber offensive launched by the US against Iran, Teheran announced that alleged cyber attack against its infrastructure has ever succeeded. Last week, media reported that the United States has launched a series of cyber attacks on Iran after the Iranian military has downed an American surveillance drone. US President Donald Trump […] | |||
|
2019-06-25 05:42:00 | (Déjà vu) SocialEngineered forum hacked and data leaked online (lien direct) | SocialEngineered.net is a forum dedicated to social engineering discussions, it has been compromised data of its users was leaked on a hacker forum. SocialEngineered.net, the forum dedicated to social engineering topics, announced it has suffered a data breach two weeks ago. Hackers accessed data from tens of thousands of members and leaked them online on […] | Data Breach | ||
|
2019-06-25 04:44:02 | Microsoft warns of attacks delivering FlawedAmmyy RAT directly in memory (lien direct) | Researchers at Microsoft uncovered a malicious campaign that delivers the infamous FlawedAmmyy RAT directly in memory. Experts at Microsoft uncovered a malicious campaign that delivers the FlawedAmmyy RAT directly in memory. The FlawedAMMYY backdoor borrows the code of the Ammyy Admin remote access Trojan, it allows attackers to get full access to a victim's machine. […] | |||
|
2019-06-24 14:29:05 | Free proxy service runs on top of Linux Ngioweb Botnet (lien direct) | Researchers from Netlab, discovered a website offering free and commercial proxy servers leveraging a huge botnet (Ngioweb) of hacked WordPress sites. Researchers from Netlab, discovered that Free-Socks.in proxy service is leveraging a huge botnet of hacked WordPress sites. According to the experts, traffic managed by the proxy service is routed through a network of hacked […] | |||
|
2019-06-24 12:38:01 | CVE-2019-10149: “Return of the WiZard” Vulnerability: Crooks Start Hitting (lien direct) | Malware researchers at Cybaze-Yoroi ZLAB observed many attack attempts trying to spread malware abusing the CVE-2019-10149 issue. Introduction In the past days, a really important issue has been disclosed to the public: “Return of the WiZard” vulnerability (ref. EW N030619, CVE-2019-10149). Such vulnerability affected a wide range of Exim servers, one of the main email server […] | Malware Vulnerability | ||
|
2019-06-24 12:04:04 | WeTransfer incident: file transfer emails were sent to unintended email addresses (lien direct) | Problems for the popular file transfer service WeTransfer, its staff discovered that some file transfer emails were sent to the wrong people. WeTransfer, the popular file transfer service, issued a security notice to inform users that file transfer emails were sent to unintended email addresses on June 16 and 17. In response to the incident, […] | |||
|
2019-06-24 10:32:03 | OpenSSH introduces a security feature to prevent Side-Channel Attacks (lien direct) | OpenSSH introduces a new feature to prevent Side-Channel attacks, latest release encrypts secret keys in memory as temporary solution. Memory side-channel vulnerabilities continue to threaten modern processors, Spectre, and Meltdown, Rowhammer, and RAMBleed are just some samples, Now OpenSSH encrypts secret keys in memory against Side-Channel attacks. Many experts demonstrated variants of side-channel attacks against OpenSSH application […] | |||
|
2019-06-24 07:45:01 | US DHS CISA warns of Iran-linked hackers using data wipers in cyberattacks (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of a significant increase in cyberattacks from Iranian hackers spreading data wipers. US DHS CISA agency warns of increased cyber-activity from Iran aimed at spreading data-wiping malware through password spraying, credential stuffing, and spear-phishing. The attacks are targeting U.S. industries and government agencies, the statement was also […] | Malware | ||
|
2019-06-23 14:25:02 | Hundreds of million computers potentially exposed to hack due to a flaw in PC-Doctor component (lien direct) | Hundreds of million computers from many vendors may have been exposed to hack due to a serious flaw in PC-Doctor software. Experts at SafeBreach discovered that the Dell SupportAssist software, that comes preinstalled on most Dell PCs, was affected by a DLL hijacking vulnerability tracked as CVE-2019-12280. The flaw could have been exploited by an […] | Hack Vulnerability | ||
|
2019-06-23 13:28:04 | Trump secretly ordered cyber attacks against Iran missile systems (lien direct) | The United States launched a series of cyber attacks on Iran after the Iranian military has downed an American surveillance drone. The military response to Iran, after the Iranian army has downed an American surveillance drone, started from the cyberspace. US President Donald Trump first approved military strikes against Iran in retaliation for downing a […] | |||
|
2019-06-23 11:44:01 | Security Affairs newsletter Round 219 – News of the week (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! Bella Thorne published her private nude photos before a hacker that was threatening her Linux worm spreading via Exim servers hit Azure customers New Echobot Botnet targets Oracle, VMware […] |
To see everything:
