What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-02-05 19:15:19 | New Monero Crypto Mining Botnet Leverages Android Debugging Tool (lien direct) | The botnet uses port scanning code from Mirai, a first for Android-related attacks, according to researchers. | |||
|
2018-02-02 18:32:17 | JenX Botnet Has Grand Theft Auto Hook (lien direct) | A GTA hosting site is offering powerful DDoS attacks for $20 a pop, researchers say. | |||
|
2018-02-02 18:16:18 | New Western Digital My Cloud Bugs Give Local Attackers Root on NAS Devices (lien direct) | Two new WD My Cloud vulnerabilities have been identified, adding to last month's bevy of security bugs. | |||
|
2018-02-01 22:26:17 | Oracle MICROS POS Vulnerability Puts 300,000 Systems at Risk (lien direct) | Oracle has issued a fix, but many Micros systems could still be vulnerable. | |||
|
2018-02-01 20:40:55 | Adobe Flash Player Zero-Day Spotted in the Wild (lien direct) | A zero-day exploit targeting Adobe Flash Players has been reported by the South Korean Computer Emergency Response Team and confirmed by Adobe. | |||
|
2018-02-01 18:23:27 | Crypto Miners May Be the \'New Payload of Choice\' for Attackers (lien direct) | Crypto mining botnets provide a stealthy way to generate big bucks, without the downsides of ransomware. | |||
|
2018-02-01 15:44:57 | Massive Smominru Cryptocurrency Botnet Rakes In Millions (lien direct) | Researchers say Smominru threat actors are in control of 500,000 node botnet and earning $8,500 daily mining for Monero cryptocurrency. | |||
|
2018-01-31 18:53:00 | Google Booted 700,000 Bad Apps From Its Marketplace in 2017 (lien direct) | In 2017 Google removed apps that violated the Google Play policies because they were malicious, purposely copied a more popular app or served up inappropriate content. | ★★★ | ||
|
2018-01-30 16:06:13 | Cisco Patches Critical VPN Vulnerability (lien direct) | Cisco Systems released a patch Monday to fix a critical security vulnerability, with a CVSS rating of 10, in its Secure Sockets Layer VPN solution called Adaptive Security Appliance. | |||
|
2018-01-29 22:32:15 | Ploutus.D Malware Variant Used in U.S.-based ATM Jackpotting Attacks (lien direct) | ATM maker NCR Corp. is warning that cyber criminals are hacking U.S. cash machines with malware that can drain machines dry of cash. | |||
|
2018-01-27 01:07:32 | Lenovo Fixes Hardcoded Password Flaw Impacting ThinkPad Fingerprint Scanners (lien direct) | Lenovo said nearly a dozen ThinkPad and ThinkCentre laptops contain a hardcoded password flaw. | ★★★★★ | ||
|
2018-01-26 19:32:58 | Keylogger Campaign Returns, Infecting 2,000 WordPress Sites (lien direct) | Over 2,000 WordPress sites are infected as part of a keylogger campaign that leverages an old malicious script. | ★★ | ||
|
2018-01-25 23:40:03 | ASUS Patches Root Command Execution Flaws Haunting Over a Dozen Router Models (lien direct) | ASUS patched a bug that allowed attackers to pair two vulnerabilities to gain direct router access and execute commands as root. | |||
|
2018-01-25 18:51:58 | Firefox, Chrome Patch Vulnerabilities, Add Security Features (lien direct) | Dueling browsers, Mozilla Firefox and Google Chrome, have patched bugs and beefed up security. | |||
|
2018-01-25 00:16:04 | Skype, Slack and Other Popular Windows Apps Vulnerable to Critical Framework Bug (lien direct) | The team behind the popular open-source framework Electron warns a remote code execution flaw could compromise user privacy. | |||
|
2018-01-23 23:52:30 | Satori Author Linked to New Mirai Variant Masuta (lien direct) | Two related Mirai variants called Masuta and PureMasuta have links to a hacker identified as Nexus Zeta. | Satori | ||
|
2018-01-23 16:22:15 | Intel Halts Spectre/Meltdown Patching for Broadwell and Haswell Systems (lien direct) | Widespread reports of reboot issues on some Intel systems force the chip giant to pump the brakes on rolling out patches for side-channel vulnerabilities. | ★★★★★ | ||
|
2018-01-19 22:27:03 | Opponents Vow to Continue the Fight after Trump Reauthorizes Domestic Spying Law (lien direct) | There is "a glimmer of light" despite the Senate's move to reauthorize Section 702 of the Foreign Intelligence Surveillance Act, says the ACLU. | ★★ | ||
|
2018-01-19 20:38:01 | OnePlus Confirms Credit Card Breach Impacted Up to 40,000 Customers (lien direct) | The breach is the latest piece of bad publicity for the popular Chinese handset maker. | ★★★ | ||
|
2018-01-19 18:45:16 | New Dridex Variant Emerges With An FTP Twist (lien direct) | A recently discovered Dridex campaign had a few peculiar characteristics, including the use of FTP instead of HTTP. | |||
|
2018-01-19 17:12:55 | Apple Preps ChaiOS iMessage Bug Fix for Next Week (lien direct) | A so-called 'text bomb' flaw in Apple's iPhone and Mac computers that causes devices to crash or restart will be patched next week, according to multiple sources. | |||
|
2018-01-11 19:19:24 | House Votes to Reauthorize Controversial Spy Provision, Section 702 (lien direct) | The U.S. House of Representatives voted to renew U.S. spy provisions, extending the powers of the NSA to collect internet communications for another six years. | |||
|
2018-01-11 14:41:45 | WhatsApp Downplays Damage of a Group Invite Bug (lien direct) | WhatsApp said that claims that infiltrators can add themselves to an encrypted group chat without being noticed is incorrect. | |||
|
2018-01-10 18:37:40 | FBI Director Calls Smartphone Encryption an \'Urgent Public Safety Issue\' (lien direct) | The debate over the government's authority to access private encrypted data on digital devices was amplified when the Federal Bureau of Investigation Director Christopher Wray called unbreakable encryption an 'urgent public safety issue.' | |||
|
2018-01-09 21:25:06 | Microsoft January Patch Tuesday Update Fixes 16 Critical Bugs (lien direct) | Thanks to Meltdown and Spectre, January has already been an extremely busy month of patching for Microsoft. | |||
|
2018-01-09 17:43:05 | Anti-Virus Updates Required Ahead of Microsoft\'s Meltdown, Spectre Patches (lien direct) | Microsoft is pausing the rollout of Windows Meltdown and Spectre patches until hosted anti-virus software vendors confirms no unsupported Windows kernel calls via the addition of a registry key on PCs. | |||
|
2018-01-08 21:57:57 | Apple Releases Spectre Patches for Safari, macOS and iOS (lien direct) | Apple releases patches addressing the Spectre vulnerability impacting its macOS, iPhone, iPad and iPod touch. | ★★★ | ||
|
2018-01-08 18:12:44 | New Rules Announced for Border Inspection of Electronic Devices (lien direct) | The U.S. Customs and Border Patrol announced new restrictions on when agents can copy data from digital devices at border crossing points. | |||
|
2018-01-08 04:21:34 | Experts Weigh In On Spectre Patch Challenges (lien direct) | Mitigating Spectre and Meltdown flaws won't be easy, but experts say exploits targeting Spectre will be hard to patch against. | |||
|
2018-01-05 14:39:07 | Google Play Removes 22 Malicious \'LightsOut\' Apps From Marketplace (lien direct) | Google removed 22 malicious adware apps ranging from flashlights, call recorders to wifi signal boosters that together were downloaded up to 7.5 million times from the Google Play marketplace. | |||
|
2018-01-04 18:01:52 | Vendors Share Patch Updates on Spectre and Meltdown Mitigation Efforts (lien direct) | Intel, Amazon, ARM, Microsoft and others have shared patch updates to keep customers informed on their mitigation efforts to protect against the far reaching Spectre and Meltdown vulnerabilities impacting computers, servers and mobile devices worldwide. | ★★ | ||
|
2018-01-03 19:33:21 | Intel In Security Hot Seat Over Reported CPU Design Flaw (lien direct) | Intel is grappling with what many are calling a processor design flaw impacting CPUs used in Linux, Windows and some macOS systems. | ★★ | ||
|
2018-01-02 22:12:50 | MacOS LPE Exploit Gives Attackers Root Access (lien direct) | A researcher with the Twitter handle 'Siguza' published details of a macOS local privilege escalation vulnerability dating back to 2002 that could give an attacker root access to systems. | |||
|
2018-01-02 21:03:31 | VMware Issues 3 Critical Patches for vSphere Data Protection (lien direct) | VMware released three patches fixing critical vulnerabilities affecting its vSphere cloud computing virtualization platform. | |||
|
2018-01-02 17:04:40 | Forever 21 Says PoS Systems Exposed Customer Data for 8 Months (lien direct) | Fashion retailer updates disclosure on 2017 attack, says hackers targeted point-of-sale terminals that used no encryption. | |||
|
2017-12-28 19:01:00 | Code Used in Zero Day Huawei Router Attack Made Public (lien direct) | Researchers warn of copycat type attacks as exploit code used in Mirai variant goes public. | |||
|
2017-12-27 23:36:16 | Leaky RootsWeb Server Exposes Some Ancestry.com User Data (lien direct) | Ancestry.com closes parts of its community-driven genealogy site RootsWeb as it investigates a leaky server that exposed thousands of passwords, email addresses and usernames to the public internet. | |||
|
2017-12-26 19:09:43 | Mozilla Patches Critical Bug in Thunderbird (lien direct) | Mozilla has patched one critical vulnerability in its Thunderbird email client along with two bugs rated high. | ★★ | ||
|
2017-12-22 23:09:16 | Huawei Router Vulnerability Used to Spread Mirai Variant (lien direct) | Researchers have identified a vulnerability in a Huawei home router model that is being exploited by an adversary to spread a variant of the Mirai malware called Okiku, also known as Satori. | Satori | ||
|
2017-12-22 16:30:18 | Nissan Canada Finance Notifies 1.1 Million of Data Breach (lien direct) | Nissan Canada Finance notified 1.13 million customers on Thursday of a data breach impacting an unspecified number of past and present customers. | |||
|
2017-12-21 22:30:29 | Crooks Switch from Ransomware to Cryptocurrency Mining (lien direct) | The group behind the VenusLocker ransomware have switched to cryptocurrency mining Monero. | |||
|
2017-12-21 18:34:03 | Google Play Boots 3 Fake Bitcoin Wallet Apps (lien direct) | Google moved quickly to kick three fake bitcoin wallet apps from its Google Play marketplace after researchers discovered them earlier this month. | |||
|
2017-12-20 20:23:10 | CHM Help Files Deliver Brazilian Banking Trojan (lien direct) | Brazilian firms are the latest targets in a spam campaign delivering CHM help files hiding links to bank Trojans. | |||
|
2017-12-19 19:41:16 | (Déjà vu) U.S. Government Blames North Korea for WannaCry (lien direct) | The United States government is officially blaming North Korea for the WannaCry ransomware outbreak in May that infected nearly a quarter-million computers in 150 countries. | Wannacry | ★★★★★ | |
|
2017-12-18 17:02:47 | User \'Gross Negligence\' Leaves Hundreds of Lexmark Printers Open to Attack (lien direct) | Researchers warn hundreds of Lexmark printers are vulnerable to a trivial hack thanks to user “gross negligence.†| |||
|
2017-12-15 18:30:37 | Triton Malware Targets Industrial Control Systems in Middle East (lien direct) | Malware intended for a “high-impact†attack against safety systems likely would of caused physical damage to a targeted company located in the Middle East. | |||
|
2017-12-14 21:26:38 | Synaptics Says Claims of a Keylogger in HP Laptops are False (lien direct) | Synaptics said reports that hundreds of HP laptops contained a secret keylogger that traced back to debugger software made by the company are inaccurate. | |||
|
2017-12-14 17:43:31 | Permissions Flaw Found on Azure AD Connect (lien direct) | A permissions flaw in Microsoft's Azure AD Connect software could allow a rogue admin to escalate account privileges and gain unauthorized universal access within a company's internal network. | |||
|
2017-12-13 19:33:32 | 19-Year-Old TLS Vulnerability Weakens Modern Website Crypto (lien direct) | New research shows how an old vulnerability called ROBOT can be exploited using an adaptive chosen-ciphertext attack to reveal the plaintext for a given TLS session. | |||
|
2017-12-12 22:12:36 | Microsoft December Patch Tuesday Update Fixes 34 Bugs (lien direct) | Microsoft patched 34 vulnerabilities in all on Tuesday with most of the bugs impacting Microsoft Edge, Microsoft Office and Microsoft's Scripting Engine. |
To see everything:
Our RSS (filtrered)
