What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-05-14 13:51:27 | (Déjà vu) Application Security Startup ArmorCode Emerges From Stealth (lien direct) | Application security startup ArmorCode emerged from stealth mode on Thursday after raising $3 million in a seed funding round. | |||
|
2021-05-14 13:29:52 | Cisco Patches Code Execution Flaw in VPN Product 6 Months After Disclosure (lien direct) | Cisco this week announced the availability of patches for a high-severity vulnerability in AnyConnect Secure Mobility Client that could be exploited for code execution. | Vulnerability | ||
|
2021-05-14 13:24:37 | DarkSide Ransomware Hits Toshiba Tec Group (lien direct) | The DarkSide ransomware threat that triggered the shut down of the Colonial pipeline is growing. It was reported yesterday that German Chemical distribution giant Brenntag paid a $4.4 million ransom to DarkSide operators. Today Toshiba Tec Corp announced a 'cyberattack on European subsidiaries of the Toshiba Tec Group'. | Ransomware | ||
|
2021-05-14 12:53:30 | Insurer CNA Fully Restores Systems Following Ransomware Attack (lien direct) | Commercial insurer CNA this week announced that it has fully restored its systems following a ransomware attack two months ago. | Ransomware | ||
|
2021-05-14 12:45:48 | Cisco to Acquire Vulnerability Management Firm Kenna Security (lien direct) | Networking giant Cisco said Friday that it has agreed to acquire Kenna Security, a privately held cybersecurity company focused on vulnerability management technology. | Vulnerability | ||
|
2021-05-13 19:20:45 | Researchers Abuse Apple\'s Find My Network for Data Upload (lien direct) | Security researchers have discovered a way to leverage Apple's Find My's Offline Finding network to upload data from devices, even those that do not have a Wi-Fi or mobile network connection. | |||
|
2021-05-13 18:59:02 | Rapid7 Source Code Exposed in Codecov Supply Chain Attack (lien direct) | Rapid7 says unauthorized third-party accessed source code, customer data during Codecov supply chain breach | |||
|
2021-05-13 17:30:28 | Vendor Survey vs Reality on SASE Implementation (lien direct) | Gartner believes it will be four years before the market achieves two-thirds of the position a WSJ Intelligence and Forcepoint survey says is already achieved | |||
|
2021-05-13 17:20:12 | Biden to Bring Up Russian Hackers Issue With Putin (lien direct) | President Joe Biden said Thursday that Vladimir Putin was not connected to a Russia-based criminal cyber attack on a huge US fuel pipeline but that he will raise the issue at an expected summit. | |||
|
2021-05-13 14:57:32 | Citrix Patches Vulnerability in Workspace App for Windows (lien direct) | Citrix this week announced that it has patched a local privilege escalation vulnerability in the Citrix Workspace app for Windows. | Vulnerability | ★★★ | |
|
2021-05-13 14:55:06 | Verizon DBIR 2021: Ransomware, Web App and Phishing Attacks Dominate (lien direct) | Data breaches from 2020 show that not much has changed over the last year: businesses continue to struggle with the basics of securing web apps, cloud deployments and educating employees | ★★★ | ||
|
2021-05-13 13:24:20 | Microsoft Warns of Attacks on Aerospace, Travel Sectors (lien direct) | Organizations in the aerospace and travel sectors have been targeted in the past months in a campaign aimed at infecting victims with remote access Trojans (RAT) and other types of malware, Microsoft warns. | |||
|
2021-05-13 13:17:00 | Query.AI Launches With Security Investigations Platform, $4.6 Million Seed Funding (lien direct) | Query.AI officially launched on Thursday with a security investigations platform and $4.6 million in seed funding. The funding came from ClearSky Security, DNX Ventures, and South Dakota Equity Partners, and Query.AI says it will be used to accelerate adoption of its product. | |||
|
2021-05-13 13:13:27 | Security Automation: Data is More Important Than Process (lien direct) | Automation can't be just about running the process, but must include three important stages | |||
|
2021-05-13 12:45:50 | UK Foreign Secretary Calls for Cooperation on Cybersecurity (lien direct) | U.K. Foreign Secretary Dominic Raab on Wednesday urged global cooperation to combat cyberattacks by “hostile state actors” and criminal gangs. Raab also pledged 22 million pounds ($31 million) in support to “vulnerable” countries in Africa and the Indo-Pacific to improve their digital defense capacity. | |||
|
2021-05-13 11:03:58 | Green Energy Company Volue Hit by Ransomware (lien direct) | Norway-based green energy solutions provider Volue has been working on restoring systems after being targeted in a ransomware attack. | Ransomware | ||
|
2021-05-13 00:20:13 | Tech Audit of Colonial Pipeline Found \'Glaring\' Problems (lien direct) | An outside audit three years ago of the major East Coast pipeline company hit by a cyberattack found “atrocious” information management practices and “a patchwork of poorly connected and secured systems,” its author told The Associated Press. | ★★ | ||
|
2021-05-13 00:12:25 | Biden Signs Order to Beef up Federal Cyber Defenses (lien direct) | President Joe Biden signed an executive order Wednesday meant to strengthen U.S. cybersecurity defenses in response to a series of headline-grabbing hacking incidents that highlight how vulnerable the country's public and private sectors are to high-tech spies and criminals operating from half a world away. | |||
|
2021-05-12 18:35:26 | Asset Discovery Provider Panaseer Raises $26.5 Million (lien direct) | Asset and security control management provider Panaseer on Wednesday announced a new $26.5 million round of funding, bringing the total investment in the company up to $43 million. | |||
|
2021-05-12 15:45:49 | Inside The UK\'s Active Cyber Defense Program (lien direct) | 
UK's National Cyber Security Centre highlights the success of its Active Cyber Defence (ACD) program
|
★★★★★ | ||
|
2021-05-12 14:15:27 | Apple Removed 95,000 Fraudulent Applications From App Store in 2020 (lien direct) | In 2020, Apple removed or rejected hundreds of thousands of applications from the App Store for engaging in various forms of fraudulent behavior, including spam, mischief, and privacy violations. | ★★★★ | ||
|
2021-05-12 13:30:54 | Security Researchers Dive Into DarkSide Ransomware (lien direct) | Following the ransomware attack that impacted the pipeline operated by Georgia-based Colonial Pipeline, security firms are providing detailed information on the cybercriminal gang behind the attack. | Ransomware | ||
|
2021-05-12 12:39:45 | Industry Reactions to Ransomware Attack on Colonial Pipeline (lien direct) | 
|
Ransomware | ||
|
2021-05-12 12:14:32 | Jamf to Acquire Wandera for $400 Million to Bring Zero Trust to Apple Ecosystem (lien direct) | Acquisition will extend Jamf's Zero Trust Network Access, threat defense and data policy enforcement for Apple devices | Threat | ||
|
2021-05-12 11:40:04 | Alaska Courts Restore Email, Lack Answers on Cyber Attack (lien direct) | The Alaska court system said Tuesday it had restored email capabilities nearly two weeks after a cybersecurity attack. | |||
|
2021-05-12 10:59:58 | FragAttacks: New Vulnerabilities Expose All Devices With Wi-Fi to Attacks (lien direct) | 
A researcher this week disclosed the details of a dozen design and implementation flaws that could affect all devices with Wi-Fi capabilities, exposing their users to remote attacks.
|
|||
|
2021-05-12 08:31:47 | Germany Halts Facebook Sharing WhatsApp Data (lien direct) | A German regulator on Tuesday slapped a three-month ban on Facebook collecting user data from WhatsApp accounts and referred the case to an EU watchdog, citing concerns about election integrity. | |||
|
2021-05-12 03:46:37 | SAP Patches High-Severity Flaws in Business One, NetWeaver Products (lien direct) | SAP has released a total of six new security notes on its May 2021 Security Patch Day, along with updates for five other security notes, including three rated Hot News. | |||
|
2021-05-12 01:48:10 | Ransomware Gang Threatens Release of DC Police Records (lien direct) | A Russian-speaking ransomware syndicate that stole data from the Washington, D.C., police department says negotiations over payment have broken down, with it rejecting a $100,000 payment, and it will release sensitive information that could put lives at risk if more money is not offered. | |||
|
2021-05-11 18:45:38 | Microsoft Patch Tuesday: 55 Vulnerabilities, 4 Critical, 3 Publicly Known (lien direct) | Microsoft's monthly security patch release for May 2021 includes cover for 55 documented vulnerabilities, some serious enough to expose Windows users to remote code execution attacks. | |||
|
2021-05-11 18:12:13 | DevOps Security Startup Cycode Raises $20 Million (lien direct) | Cycode, an Israeli startup focused on securing DevOps tools, today announced that it has raised $20 million in Series A funding, which brings the total capital raised by the company up to $25 million. | |||
|
2021-05-11 15:53:11 | Adobe: Windows Users Hit by PDF Reader Zero-Day (lien direct) | Adobe on Tuesday warned that a gaping security hole in one of the most widely deployed software products has been exploited in the wild in “limited attacks targeting Adobe Reader users on Windows.” | |||
|
2021-05-11 14:48:04 | Siemens Addresses 60 Vulnerabilities Introduced by Third-Party Components (lien direct) | Siemens' May 2021 Patch Tuesday advisories address roughly 60 vulnerabilities introduced by the use of third-party components. | |||
|
2021-05-11 13:24:37 | University of California Confirms Personal Information Stolen in Cyberattack (lien direct) | The University of California (UC) this week confirmed that personal information was stolen in a cyberattack involving the Accellion File Transfer Appliance (FTA) service. | |||
|
2021-05-11 11:53:30 | Google Patches 19 Vulnerabilities With Chrome 90 Update (lien direct) | Google this week announced yet another set of patches for Chrome, to address a total of 19 vulnerabilities affecting the web browser. The latest Chrome iteration - 90.0.4430.212 – is available for Windows, Mac, and Linux users. The Android and iOS variants of the browser were updated as well. | |||
|
2021-05-11 11:28:55 | XcodeGhost Malware Discovered in 2015 Impacted 128 Million iOS Users (lien direct) | Documents submitted in a court case involving Apple revealed that the XcodeGhost malware discovered in 2015 impacted 128 million iOS users. | Malware | ||
|
2021-05-11 10:04:28 | Pentagon Reconsidering Huge JEDI Cloud-computing Contract (lien direct) | The Pentagon is reconsidering how to make a massive shift to cloud computing, officials said Monday, suggesting it could scrap the so-called JEDI contract potentially worth $10 billion that was awarded to Microsoft Corp. but is mired in legal challenges. | |||
|
2021-05-10 17:14:57 | Google Releases Open Source Tool for Verifying Containers (lien direct) | Google has released a new open-source tool called cosign to make it easier to manage the process of signing and verifying container images. | Tool | ||
|
2021-05-10 17:08:34 | Colonial Pipeline Targets Recovery From Ransomware Attack by End of Week (lien direct) | After a ransomware attack forced Colonial Pipeline Company to proactively shut down operations of the largest refined products pipeline in the United States, the company is scrambling to get systems back to normal operating capacity. | Ransomware | ||
|
2021-05-10 15:56:45 | Ransomware Gangs Get More Aggressive Against Law Enforcement (lien direct) | Police Chief Will Cunningham came to work four years ago to find that his six-officer department was the victim of a crime. Hackers had taken advantage of a weak password to break in and encrypt the files of the department in Roxana, a small town in Illinois near St. Louis, and were demanding $6,000 of bitcoin. | ★★★★ | ||
|
2021-05-10 15:42:46 | Diplomatic Entities Targeted with New \'Moriya\' Windows Rootkit (lien direct) | Researchers at anti-malware vendor Kaspersky are documenting a new, previously unknown Windows rootkit being used in the toolkit of an APT actor currently targetings diplomatic entities in Asia and Africa. | ★★★ | ||
|
2021-05-10 14:57:26 | Four Eastern Europeans Admit in U.S. Court to Providing Bulletproof Hosting (lien direct) | Four individuals from Eastern Europe have pleaded guilty in a United States court to their roles in a RICO conspiracy. Between 2008 and 2015, the four individuals provided “bulletproof hosting” services that threat actors employed for cyberattacks on entities in the United States. | Threat Guideline | ||
|
2021-05-10 14:19:32 | (Déjà vu) Cybersecurity M&A Roundup: 16 Deals Announced May 1-9, 2021 (lien direct) | 
A total of 16 cybersecurity-related acquisitions were announced in the first part of May 2021 (May 1-9).
|
|||
|
2021-05-10 14:07:28 | The Benefits of Cloud Services Far Outweigh On-Premises in 2021 (lien direct) | The pandemic, among other variables, has greatly accelerated cloud adoption for many organizations in 2021. | |||
|
2021-05-10 14:07:12 | Twilio, HashiCorp Among Codecov Supply Chain Hack Victims (lien direct) | The massive blast radius from the Codecov supply chain attack remains shrouded in mystery as security teams continue to assess the fallout from the breach but a handful of victims are starting to publicly acknowledge possible exposure of sensitive developer secrets. | Hack | ||
|
2021-05-10 11:51:52 | WhatsApp Delays Enforcing New Privacy Terms (lien direct) | Facebook-owned messaging colossus WhatsApp on Friday retreated again from its plan to force users to accept new terms which critics said could expand data collection from its two billion users around the world. | |||
|
2021-05-10 11:06:17 | City of Chicago Hit by Data Breach at Law Firm Jones Day (lien direct) | The city of Chicago on Friday said that employee emails were compromised in a Jones Day data breach involving Accellion's FTA file sharing service. | Data Breach | ||
|
2021-05-10 10:39:38 | SolarWinds Shares More Information on Cyberattack Impact, Initial Access Vector (lien direct) | Texas-based IT management company SolarWinds on Friday shared more information on the impact of the significant breach disclosed late last year, and claimed that less than 100 of its customers were actually hacked. | ★★★★★ | ||
|
2021-05-10 10:08:41 | Cyberattack on US Pipeline is Linked to Criminal Gang (lien direct) | The cyberextortion attempt that has forced the shutdown of a vital U.S. pipeline was carried out by a criminal gang known as DarkSide that cultivates a Robin Hood image of stealing from corporations and giving a cut to charity, two people close to the investigation said Sunday. | ★★★★★ | ||
|
2021-05-10 01:06:22 | Colonial Pipeline Struggles to Restart After Ransomware Attack (lien direct) | Operators of the Colonial Pipeline are struggling to get fuel flowing at normal capacity after a cyberattack forced a shutdown of distribution system, the largest refined products pipeline in the United States. | Ransomware |
To see everything:
Our RSS (filtrered)
