What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-01-13 16:24:52 | CISA: Hackers bypassed MFA to access cloud service accounts (lien direct) | The US Cybersecurity and Infrastructure Security Agency (CISA) said today that threat actors bypassed multi-factor authentication (MFA) authentication protocols to compromise cloud service accounts. [...] | Threat | ||
|
2021-01-13 16:08:19 | It\'s finally over! Time to uninstall Adobe Flash Player (lien direct) | It's over, kaput, done. Adobe Flash Player is officially non-functional, and it's time to uninstall the program once and for all. [...] | |||
|
2021-01-13 12:14:58 | Microsoft addresses issue breaking Windows 10 \'Reset this PC\' (lien direct) | Microsoft has resolved a known issue that caused the Windows 10 "Reset this PC" feature to fail in some cases, on both client and server platforms. [...] | |||
|
2021-01-13 11:24:33 | Microsoft fixes Secure Boot bug allowing Windows rootkit installation (lien direct) | Microsoft has fixed a security feature bypass vulnerability in Secure Boot that allows attackers to compromise the operating system's booting process even when Secure Boot is enabled. [...] | Vulnerability | ★★★ | |
|
2021-01-13 09:48:32 | Skype is down worldwide - Microsoft working on issues (lien direct) | Skype users are currently experiencing issues around the world, with users reporting that they are getting signed out of their Skype account and company accounts automatically. [...] | |||
|
2021-01-13 08:51:07 | Google discloses hacking campaign targeting Windows, Android users (lien direct) | Project Zero, Google's 0day bug-hunting team, revealed a hacking campaign coordinated by "a highly sophisticated actor" and targeting Windows and Android users with zero-day and n-day exploits. [...] | |||
|
2021-01-12 18:57:52 | SolarLeaks site claims to sell data stolen in SolarWinds attacks (lien direct) | A website named 'SolarLeaks' is selling data they claim was stolen from companies confirmed to have been breached in the SolarWinds attack. [...] | |||
|
2021-01-12 16:37:31 | Capcom: 390,000 people may be affected by ransomware data breach (lien direct) | Capcom has released a new update for their data breach investigation and state that up to 390,000 people may now be affected by their November ransomware attack. [...] | Ransomware Data Breach | ||
|
2021-01-12 13:38:05 | Microsoft patches Defender antivirus zero-day exploited in the wild (lien direct) | Microsoft has addressed a zero-day vulnerability in the Microsoft Defender antivirus, exploited in the wild by threat actors before the patch was released. [...] | Vulnerability Threat | ||
|
2021-01-12 13:30:21 | Windows 10 Cumulative Updates KB4598229 & KB4598242 released (lien direct) | Today is first Patch Tuesday of 2021 and Microsoft is rolling out a new cumulative update for all supported version of Windows. The cumulative update with security fixes is rolling out to PCs with October 2020 Update, May 2020 Update, November 2019 Update, and May 2019 Update. [...] | |||
|
2021-01-12 13:27:35 | Microsoft January 2021 Patch Tuesday fixes 83 flaws, 1 zero-day (lien direct) | Today is Microsoft's January 2021 Patch Tuesday, and it is the first Microsoft security update release in 2021, so please be very nice to your Windows administrators today. [...] | |||
|
2021-01-12 12:28:43 | New Zealand Reserve Bank breached using bug patched on Xmas Eve (lien direct) | A recent data breach at the Reserve Bank of New Zealand, known as Te Pūtea Matua, was caused by attackers exploiting a critical vulnerability patched the same day. [...] | Data Breach Vulnerability | ||
|
2021-01-12 11:46:53 | Hackers leak stolen Pfizer COVID-19 vaccine data online (lien direct) | The European Medicines Agency (EMA) today revealed that some of the Pfizer/BioNTech COVID-19 vaccine data stolen from its servers in December was leaked online. [...] | |||
|
2021-01-12 10:33:25 | Mimecast discloses Microsoft 365 SSL certificate compromise (lien direct) | Email security company Mimecast has disclosed today that a "sophisticated threat actor" compromised one of the certificates the company issues for customers to securely connect Microsoft 365 Exchange to their services. [...] | Threat | ||
|
2021-01-12 08:33:19 | New Sunspot malware found while investigating SolarWinds hack (lien direct) | Cybersecurity firm CrowdStrike has discovered the malware used by the SolarWinds hackers to inject backdoors in Orion platform builds during the supply-chain attack that led to the compromise of several companies and government agencies. [...] | Malware Hack | Solardwinds | |
|
2021-01-11 21:43:46 | Intel adds hardware-based ransomware detection to 11th gen CPUs (lien direct) | Intel announced today at CES 2021 that they have added hardware-based ransomware detection to their newly announced 11th generation Core vPro business-class processors. [...] | Ransomware | ||
|
2021-01-11 17:29:11 | Microsoft Sysmon now detects malware process tampering attempts (lien direct) | Microsoft has released Sysmon 13 with a new security feature that detects if a process has been tampered using process hollowing or process herpaderping techniques. [...] | Malware | ||
|
2021-01-11 16:40:06 | Microsoft releases Linux endpoint detection and response features (lien direct) | Microsoft announced today that Microsoft Defender for Endpoint's detection and response (EDR) capabilities are now generally available on Linux servers. [...] | |||
|
2021-01-11 15:41:51 | Networking giant Ubiquiti alerts customers of potential data breach (lien direct) | Networking device maker Ubiquiti has announced a security incident that may have exposed its customers' data. [...] | Data Breach | ||
|
2021-01-11 13:46:03 | Windows 10 hardware security enabled by default on new Surface PC (lien direct) | Microsoft has unveiled today the new Surface Pro 7+ for enterprise and educational customers, an ultra-light 2-in-1 device which comes with Windows Enhanced Hardware Security features enabled by default. [...] | |||
|
2021-01-11 12:33:00 | Mac malware uses \'run-only\' AppleScripts to evade analysis (lien direct) | A cryptocurrency mining campaign targeting macOS is using malware that has evolved into a complex variant giving researchers a lot of trouble analyzing it. [...] | Malware | ||
|
2021-01-11 12:11:42 | DarkSide ransomware decryptor recovers victims\' files for free (lien direct) | Romanian cybersecurity firm Bitdefender has released a free decryptor for the DarkSide ransomware to allow victims to recover their files without paying a ransom. [...] | Ransomware | ||
|
2021-01-11 10:46:29 | Typeform fixes Zendesk Sell form data hijacking vulnerability (lien direct) | Online survey and form creator Typeform has quietly patched a data hijacking vulnerability in its Zendesk Sell integration. If exploited, the vulnerability could let attacks redirect the form submissions containing potentially sensitive information to themselves. [...] | Vulnerability | ||
|
2021-01-11 09:07:54 | Sunburst backdoor shares features with Russian APT malware (lien direct) | Kaspersky researchers found that the Sunburst backdoor, the malware deployed during the SolarWinds supply-chain attack, shows feature overlaps with Kazuar, a .NET backdoor tentatively linked to the Russian Turla hacking group. [...] | Malware Mobile | Solardwinds Solardwinds | |
|
2021-01-11 01:52:09 | United Nations data breach exposed over 100k UNEP staff records (lien direct) | This week, researchers have responsibly disclosed a vulnerability by exploiting which they could access over 100K private records of United Nations Environmental Programme (UNEP). The data breach stemmed from exposed Git directories which let researchers clone Git repositories and gather PII of a large number of employees. [...] | Data Breach Vulnerability | ||
|
2021-01-10 18:01:44 | (Déjà vu) What to expect from Microsoft and Windows 10 in 2021 (lien direct) | With 2021 finally here, Microsoft is planning on releasing some exciting new features and updates this year for Windows 10 operating system and other products. [...] | |||
|
2021-01-10 18:01:44 | (Déjà vu) What to expect from Microsoft and Windows in 2021 (lien direct) | With 2021 finally here, Microsoft is planning on releasing some exciting new features and updates this year for Windows 10 operating system and other products. [...] | |||
|
2021-01-10 17:37:03 | How to integrate Everything search in the Windows 10 taskbar (lien direct) | Windows 10 users can now integrate the Everything search engine directly into the Windows taskbar using the new 'Everything Toolbar' application. [...] | |||
|
2021-01-10 15:43:43 | New Zealand Reserve Bank suffers data breach via hacked storage partner (lien direct) | The Reserve Bank of New Zealand, known as Te Pūtea Matua, has suffered a data breach after threat actors hacked a third-party hosting partner. [...] | Data Breach Threat | ||
|
2021-01-09 20:27:38 | Apple removed Parler from the App Store for inciting violence (lien direct) | Apple has removed the Parler social network app from the App Store for violating policies, including not providing an updated moderation plan or an updated app with objectionable content removed. [...] | |||
|
2021-01-09 14:47:05 | (Déjà vu) How to remove background microphone noise in Windows, Mac, Linux (lien direct) | When using a microphone in a video conference or recording a video, your keyboard's clack or other background noise can be very distracting to listeners. The good news is that software exists that can automatically mute your microphone while typing or suppress background noise. [...] | |||
|
2021-01-09 14:47:05 | (Déjà vu) These apps automute your microphone when typing (lien direct) | When using a microphone in a video conference or recording a video, your keyboard's clack or other background noise can be very distracting to listeners. The good news is that software exists that can automatically mute your microphone while typing or suppress background noise. [...] | |||
|
2021-01-09 14:20:50 | Windows 10 Sun Valley: Everything you need to know (lien direct) | The next update for Windows is codenamed '21H1' and it's likely to be a minor release with general bug fixes and improvements. However, Microsoft is believed to be working on a major Windows 10 update codenamed "Sun Valley" and "Windows 10++". [...] | |||
|
2021-01-09 10:24:45 | (Déjà vu) Hacker used ransomware to lock victims in their IoT chastity belt (lien direct) | The source code for the ChastityLock ransomware that targeted male users of a specific adult toy is now publicly available for research purposes. [...] | Ransomware | ||
|
2021-01-09 10:24:45 | (Déjà vu) ChastityLock ransomware targeted men\'s Bluetooth chastity belt (lien direct) | The source code for the ChastityLock ransomware that targeted male users of a specific adult toy is now publicly available for research purposes. [...] | Ransomware | ||
|
2021-01-09 08:00:00 | Space Force joins US Intelligence Community to secure outer space (lien direct) | Director of National Intelligence John Ratcliffe announced that the US Space Force (USSF) is the ninth Department of Defense component to join the US Intelligence Community (IC). [...] | |||
|
2021-01-08 23:01:11 | Google bans Parler app from Play Store for threats of violence (lien direct) | Google has banned the conservative social networking app Parler from the Google Play Store for not removing posts that incite violence in the US. [...] | |||
|
2021-01-08 19:12:51 | Twitter permanently suspends Trump\'s account for fear of violence (lien direct) | Twitter has permanently suspended President Trump's account for concerns that Trump's tweets may cause further violence in the United States. [...] | |||
|
2021-01-08 18:17:48 | The Week in Ransomware - January 8th 2021 - $150 million (lien direct) | Even though the holidays are over in many countries, it has been a very quiet week for ransomware. Unfortunately, ransomware activity will likely pick up shortly. [...] | Ransomware | ||
|
2021-01-08 14:04:50 | Dassault Falcon Jet reports data breach after ransomware attack (lien direct) | Dassault Falcon Jet has disclosed a data breach that may have led to the exposure of personal information belonging to current and former employees, as well as their spouses and dependents. [...] | Ransomware Data Breach | ||
|
2021-01-08 10:15:11 | Signal fixes verification delays caused by WhatsApp mass exodus (lien direct) | Signal's encrypted messaging service has recovered from delays affecting its new user verification process after a mass exodus of WhatsApp users to their platform. [...] | |||
|
2021-01-08 10:04:05 | Microsoft fixes Windows 10 crash issue causing forced reboots (lien direct) | Microsoft has addressed a known issue causing Windows 10 20H2 devices to force restart due to the Local Security Authority Subsystem Service (LSASS) system process crashing. [...] | |||
|
2021-01-08 08:11:43 | NVIDIA fixes high severity flaws affecting Windows, Linux devices (lien direct) | NVIDIA has released security updates to address six security vulnerabilities found in Windows and Linux GPU display drivers, as well as ten additional flaws affecting the NVIDIA Virtual GPU (vGPU) management software. [...] | |||
|
2021-01-08 03:36:00 | Nissan NA source code leaked due to default admin:admin credentials (lien direct) | Multiple code repositories from Nissan North America became public this week after the company left an exposed Git server protected with default access credentials. [...] | |||
|
2021-01-07 19:17:11 | Ryuk ransomware Bitcoin wallets point to $150 million operation (lien direct) | Security researchers following the money circuit from Ryuk ransomware victims into the threat actor's pockets estimate that the criminal organization made at least $150 million. [...] | Ransomware Threat | ||
|
2021-01-07 17:29:32 | Hacker sells Aurora Cannabis files stolen in Christmas cyberattack (lien direct) | A hacker is selling the data stolen from cannabis giant Aurora Cannabis after breaching their systems on Christmas day. [...] | |||
|
2021-01-07 15:41:12 | Windows PsExec zero-day vulnerability gets a free micropatch (lien direct) | A free micropatch fixing a local privilege escalation (LPE) vulnerability in Microsoft's Windows PsExec management tool is now available through the 0patch platform. [...] | Tool Vulnerability | ||
|
2021-01-07 15:05:47 | (Déjà vu) Scammer extorts site owners using porn backlinks threat (lien direct) | Website owners are receiving emails threatening to ruin their reputation if they do not post a five-star review for a cryptocurrency exchange. [...] | Threat | ||
|
2021-01-07 15:05:47 | (Déjà vu) SEO scammer extorts site owners using porn backlinks threat (lien direct) | Website owners are receiving emails threatening to ruin their reputation if they do not post a five-star review for a cryptocurrency exchange. [...] | Threat | ||
|
2021-01-07 14:03:50 | US Judiciary adds safeguards after potential breach in SolarWinds hack (lien direct) | The Administrative Office of the U.S. Courts is investigating a potential compromise of the federal courts' case management and electronic case files system which stores millions of highly sensitive and confidential judiciary records. [...] | Hack |
To see everything:
Our RSS (filtrered)
