What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-08-22 15:15:00 | Escanor RAT Malware Deployed Via Microsoft Office and PDF Documents (lien direct) | The malware was first released for sale on January 26, 2022 as an HVNC implant, but later evolved | Malware | ||
|
2022-08-22 14:00:00 | Threat Actor Deploys Raven Storm Tool to Perform DDoS Attacks (lien direct) | The malware is reportedly capable of server takedown, Wi-Fi attacks and application layer attacks | Malware Tool | ||
|
2022-08-22 09:50:00 | DDoS Protection Weaponized to Deliver RATs (lien direct) | New campaign disguised as fake Cloudflare pop-up | ★★ | ||
|
2022-08-22 09:20:00 | Hackers Target ATM Maker for Bitcoins (lien direct) | General Bytes confirms serious attack last week | ★★★ | ||
|
2022-08-22 09:00:00 | Car Dealership Hit by Major Ransomware Attack (lien direct) | Holdcroft Motor Group says most systems back online now | Ransomware | ||
|
2022-08-19 16:30:00 | China-backed APT41 Group Hacked at Least 13 Victims in 2021 (lien direct) | The majority of the attacks spotted relied primarily on SQL injections on targeted domains | APT 41 | ||
|
2022-08-19 15:15:00 | Microsoft: Cryptojackers Continue to Evolve to Be Stealthier and Spread Faster (lien direct) | Cryptojackers take advantage of legitimate system binaries on more than 200,000 devices daily | |||
|
2022-08-19 14:00:00 | Apple Warns of Critical Security Risk in Safari For iPhones, iPads and Macs (lien direct) | The vulnerability gave hackers the ability to infiltrate WebKit, the engine that powers Safari | Vulnerability | ||
|
2022-08-19 11:15:00 | Businesses Found to Neglect Cybersecurity Until it is Too Late (lien direct) | The UK government report found that many leaders only review cybersecurity practices following an incident | Guideline | ||
|
2022-08-19 10:15:00 | Estonia Repels Biggest Cyber-Attack Since 2007 (lien direct) | Tiny Baltic nation riles Russia by removing monuments | |||
|
2022-08-19 09:45:00 | UK Carrier Claims to Block One Million Vishing Calls Per Day (lien direct) | EE says AI tech is stopping international scams | |||
|
2022-08-19 09:15:00 | Cyber Tops Staff Retention as Biggest Business Risk (lien direct) | PwC report finds execs are paying more attention to risk management | |||
|
2022-08-18 16:00:00 | Hackers Deploy Bumblebee Loader to Breach Target Networks (lien direct) | Most Bumblebee infections started by end-users executing LNK files | |||
|
2022-08-18 15:00:00 | ATMZOW JS Sniffer Campaign Linked to Hancitor Malware (lien direct) | ATMZOW infected at least 483 websites across four continents since the beginning of 2019 | Malware | ||
|
2022-08-18 14:00:00 | Quarter of All Gambling Sites Hit by DDoS Attacks in June (lien direct) | The attacks reportedly increased in conjunction with the start of the Wimbledon tennis tournament | |||
|
2022-08-18 10:30:00 | Threat Group Ramps-Up Attacks on Travel Sector in 2022 (lien direct) | Corporate and customer data at risk, warns Proofpoint | |||
|
2022-08-18 10:00:00 | Researchers Find 35 Adware Apps on Google Play (lien direct) | Apps have millions of downloads, says Bitdefender | |||
|
2022-08-18 09:30:00 | Suspected Russian Money Launderer Extradited to US (lien direct) | Man allegedly handled over $400,000 in Ryuk proceeds | |||
|
2022-08-17 16:30:00 | CISA Warns of Hackers Exploiting Multiple Vulnerabilities in the Zimbra Collaboration Suite (lien direct) | The advisory was compiled by CISA with the Multi-State Information Sharing & Analysis Center | |||
|
2022-08-17 15:00:00 | (Déjà vu) RubyGems Mandates MFA for Top-100 Package Maintainers (lien direct) | The package manager started enforcing MFA on owners of gems with over 180 million total downloads | |||
|
2022-08-17 14:00:00 | Organizations Struggle to Fend Off Cloud and Web Attacks (lien direct) | The study queries more than 950 IT and security professionals across the Americas, EMEA and APAC | |||
|
2022-08-17 11:45:00 | Identity Scams Soar to Make 2021 a Record Year (lien direct) | Non-profit says Google Voice scams were the most reported threat | |||
|
2022-08-17 09:45:00 | USBs Still a Major OT Infection Vector (lien direct) | Manufacturing was most exposed to OT threats in 2021 | |||
|
2022-08-17 09:00:00 | Bug Bounty Giant Slams Quality of Vendor Patching (lien direct) | Zero Day Initiative says incomplete or faulty patches now commonplace | Patching | ||
|
2022-08-16 16:30:00 | Two Additional Malicious Python Libraries Found on PyPI Repository (lien direct) | The new packages were masquerading as one of the most popular open-source packages on PyPI | |||
|
2022-08-16 15:30:00 | Healthcare Provider Issues Warning After Tracking Pixels Leak Patient Data (lien direct) | The leak was caused by incorrect configurations of an online tracking tool from Meta | Tool | ||
|
2022-08-16 14:15:00 | New Attack Weaponizes PLCs to Hack Enterprise and OT Networks (lien direct) | The research resulted in proof-of-concept exploits against seven market-leading automation firms | Hack Guideline | ||
|
2022-08-16 14:00:00 | #DEFCON: Electrovolt Exploits Against Electron Desktop Apps Exposed (lien direct) | Electron-based desktop application including Discord, Microsoft Teams and VScode were at risk from a series of vulnerabilities | |||
|
2022-08-16 13:30:00 | #DEFCON: How US Teen RickRolled His High School District (lien direct) | American teenager explains how he was able to hack his local high school district | Hack | ||
|
2022-08-16 10:15:00 | Hybrid Vishing Attacks Soar 625% in Q2 (lien direct) | Agari warns of multi-stage phishing threat | |||
|
2022-08-16 09:30:00 | Microsoft Disrupts Russian Cyber-Espionage Group Seaborgium (lien direct) | APT group focused on classic data theft via email accounts | |||
|
2022-08-16 09:00:00 | Water Company Says Supply Safe After Ransom Group Claims (lien direct) | South Staffordshire Water admits it was compromised | |||
|
2022-08-15 16:30:00 | Software Patches Flaw on macOS Could Let Hackers Bypass All Security Levels (lien direct) | After deploying the initial attack, the researcher was able to escape the macOS sandbox | |||
|
2022-08-15 15:30:00 | Luckymouse Uses Compromised MiMi Chat App to Target Windows and Linux Systems (lien direct) | The news comes from two different security reports published by SEKOIA and Trend Micro | |||
|
2022-08-15 14:30:00 | Dutch Authorities Arrest Tornado Cash Developer Following US Sanctions on Crypto Mixer Firm (lien direct) | The Financial Advanced Cyber Team of the FIOD started the criminal investigation in June | |||
|
2022-08-15 13:00:00 | #DEFCON: How Sanctions Impact Internet Operators (lien direct) | Following government sanctions against Russia, Internet providers have had to learn how to implement actions | ★★ | ||
|
2022-08-15 11:00:00 | #DEFCON: CISA Director Praises Congress and International Cybersecurity Cooperation (lien direct) | Jen Easterly discusses the progress and challenges at CISA | |||
|
2022-08-15 10:15:00 | Three Extradited from UK to US on $5m BEC Charges (lien direct) | Nigerian nationals accused of targeting US universities | |||
|
2022-08-15 08:45:00 | Critical Infrastructure at Risk as Thousands of VNC Instances Exposed (lien direct) | Researchers find many deployments have authentication disabled | |||
|
2022-08-12 15:45:00 | Meta Tests Encrypted Backups and End-to-End Encryption in Facebook Messenger (lien direct) | Meta is also introducing an encrypted backup feature called Secure Storage | |||
|
2022-08-12 15:00:00 | Xiaomi Smartphone Vulnerabilities Could Lead to Forged Payments (lien direct) | The devices were powered by MediaTek chips and susceptible to two kinds of attacks | |||
|
2022-08-12 12:00:00 | #BHUSA: Bug Bounty Botox – Why You Need a Security Process First (lien direct) | Katie Moussouris explains why simply having a bug bounty program isn't enough to fix security problems | |||
|
2022-08-12 12:00:00 | #BHUSA : Failure to Challenge is a Social Engineering Risk (lien direct) | The UK Ministry of Defence is actively training staff to confront individuals that are engaged in risky behaviours | |||
|
2022-08-12 11:00:00 | #BHUSA: What has Changed in the Post-Stuxnet Era? (lien direct) | Investigative journalist Kim Zetter explains that Stuxnet continues to serves as a precedent for attacks happening now | |||
|
2022-08-12 10:30:00 | US Unmasks Suspected Conti Ransomware Actor (lien direct) | State Department offers $10m reward for info on notorious group | Ransomware | ||
|
2022-08-12 09:30:00 | Zeppelin Ransomware Victims May Need Multiple Decryption Keys (lien direct) | CISA issues new alert about RaaS variant | Ransomware | ||
|
2022-08-12 09:00:00 | Recovery From NHS Ransomware Attack May Take a Month (lien direct) | Managed service provider Advanced publishes update on recent cyber incident | Ransomware | ||
|
2022-08-11 17:30:00 | CISA Unveils Cybersecurity Toolkit to Shield US Elections From Hackers (lien direct) | The toolkit protects election infrastructure targeted by phishing, ransomware and DDoS attacks | Ransomware | ||
|
2022-08-11 16:30:00 | Zimbra RCE Vulnerability Exploited Without Admin Privileges (lien direct) | Over 1,000 ZCS instances around the world were reportedly backdoored and compromised | Vulnerability | ||
|
2022-08-11 13:30:00 | #BHUSA: The Cyber Safety Review Board Outlines Log4j Lessons (lien direct) | The CSRB concluded that the initial disclosure on Log4j was done right, but there is still much to improve |
To see everything:
Our RSS (filtrered)
