What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-01-28 08:26:48 | Finnish diplomats\' phones infected with NSO Group Pegasus spyware (lien direct) | Finland's Ministry for Foreign Affairs says devices of Finnish diplomats have been hacked and infected with NSO Group's Pegasus spyware in a cyber-espionage campaign. [...] | |||
|
2022-01-28 07:52:12 | Finland warns of Facebook accounts hijacked via Messenger phishing (lien direct) | Finland's National Cyber Security Centre (NCSC-FI) warns of an ongoing phishing campaign attempting to hijack Facebook accounts by impersonating victims' friends in Facebook Messenger chats. [...] | |||
|
2022-01-28 07:05:25 | Microsoft Outlook RCE zero-day exploits now selling for $400,000 (lien direct) | Exploit broker Zerodium has announced a pay jump to 400,000 for zero-day vulnerabilities that allow remote code execution (RCE) in Microsoft Outlook email client. [...] | |||
|
2022-01-28 01:30:00 | QNAP force-installs update after DeadBolt ransomware hits 3,600 devices (lien direct) | QNAP force-updated customer's Network Attached Storage (NAS) devices with firmware containing the latest security updates to protect against the DeadBolt ransomware, which has already encrypted over 3,600 devices. [...] | Ransomware | ||
|
2022-01-27 16:13:13 | DeepDotWeb admin imprisoned for advertising illegal dark web markets (lien direct) | An Israeli citizen who operated DeepDotWeb (DDW), a news site and review site for dark web sites, has received a sentence of 97 months in prison for money laundering and was ordered to forfeit $8,414,173. [...] | |||
|
2022-01-27 14:28:27 | Taiwanese Apple and Tesla contractor hit by Conti ransomware (lien direct) | Delta Electronics, a Taiwanese electronics company and a provider for Apple, Tesla, HP, and Dell, disclosed that it was the victim of a cyberattack discovered on Friday morning. [...] | Ransomware | ||
|
2022-01-27 13:31:40 | Lazarus hackers use Windows Update to deploy malware (lien direct) | North Korean-backed hacking group Lazarus has added the Windows Update client to its list of living-off-the-land binaries (LoLBins) and is now actively using it to execute malicious code on Windows systems. [...] | Malware | APT 38 | |
|
2022-01-27 13:11:58 | Microsoft warns of multi-stage phishing campaign leveraging Azure AD (lien direct) | Microsoft's threat analysts have uncovered a large-scale, multi-phase phishing campaign that uses stolen credentials to register devices onto the target's network and use them to distribute phishing emails. [...] | Threat | ★★★ | |
|
2022-01-27 10:00:00 | Microsoft: Windows 11 now in broad deployment for eligible devices (lien direct) | Microsoft says Windows 11 has now entered the broad deployment phase, making it available for everyone with an eligible device via Windows Update. [...] | |||
|
2022-01-27 09:23:25 | Russian APT29 hackers\' stealthy malware undetected for years (lien direct) | Hackers associated with the Russian Federation Foreign Intelligence Service (SVR) continued their incursions on networks of multiple organizations after the SolarWinds supply-chain compromise using two recently discovered sophisticated threats. [...] | Malware | APT 29 | |
|
2022-01-27 08:12:43 | Microsoft mitigated a record 3.47 Tbps DDoS attack on Azure users (lien direct) | Microsoft says its Azure DDoS protection platform mitigated a massive 3.47 terabits per second (Tbps) distributed denial of service (DDoS) attack targeting an Azure customer from Asia in November. [...] | |||
|
2022-01-27 07:07:48 | 105 million Android users targeted by subscription fraud campaign (lien direct) | A premium services subscription scam for Android has been operating for close to two years. Called 'Dark Herring', the operation used 470 Google Play Store apps and affected over 100 million users worldwide, potentially causing hundreds of millions of USD in total losses. [...] | |||
|
2022-01-26 18:40:10 | Linux version of LockBit ransomware targets VMware ESXi servers (lien direct) | LockBit is the latest ransomware gang whose Linux encryptor has been discovered to be focusing on the encryption of VMware ESXi virtual machines. [...] | Ransomware | ||
|
2022-01-26 15:27:37 | Major Discord outage caused by API and database issues (lien direct) | Discord suffered what they classified as a 'massive outage' that prevented users from logging into the service or using voice chats. [...] | |||
|
2022-01-26 15:27:37 | Major Discord API outage prevents logins and voice chats (lien direct) | Discord is suffering a 'massive outage' preventing users from logging in to the service or using voice chats. [...] | |||
|
2022-01-26 14:39:31 | Apple fixes new zero-day exploited to hack macOS, iOS devices (lien direct) | Apple has released security updates to fix two zero-day vulnerabilities, with one publicly disclosed and the other exploited in the wild by attackers to hack into iPhones and Macs. [...] | Hack | ||
|
2022-01-26 11:39:18 | Chaes banking trojan hijacks Chrome with malicious extensions (lien direct) | A large-scale campaign involving over 800 compromised WordPress websites is spreading banking trojans that target the credentials of Brazilian e-banking users. [...] | |||
|
2022-01-26 11:00:00 | White House wants US govt to use a Zero Trust security model (lien direct) | A newly released Federal strategy wants the US government to adopt a "zero trust" security model within the next two years to defend against current threats and boost cybersecurity defenses across federal agencies. [...] | |||
|
2022-01-26 10:51:03 | Windows 11 adds Android app support for everyone next month (lien direct) | Microsoft announced today that they would be releasing new Windows 11 features next month, including a preview of the long-awaited Android Apps on Windows 11 feature, a new windows sharing feature, taskbar improvements, and redesigned Notepad and Media Player apps. [...] | |||
|
2022-01-26 09:19:25 | New FluBot and TeaBot campaigns target Android devices worldwide (lien direct) | New FluBot and TeaBot malware distribution campaigns have been spotted, using typical smishing lures or laced apps against Android users in Australia, Germany, Poland, Spain, and Romania. [...] | Malware | ||
|
2022-01-26 08:30:00 | Microsoft fixes Windows 11 HDR color rendering problems (lien direct) | Microsoft has fixed a known issue affecting systems running Windows 11, version 21H2, where applications may have problems rendering colors correctly high dynamic range (HDR) displays when using Win32 APIs. [...] | |||
|
2022-01-26 08:00:00 | German govt warns of APT27 hackers backdooring business networks (lien direct) | The BfV German domestic intelligence services (short for Bundesamt für Verfassungsschutz) warn of ongoing attacks coordinated by the APT27 Chinese-backed hacking group. [...] | APT 27 APT 27 | ||
|
2022-01-26 05:38:12 | Let\'s Encrypt is revoking lots of SSL certificates in two days (lien direct) | Let's Encrypt will begin revoking certain SSL/TLS certificates issued within the last 90 days starting January 28, 2022. The move could impact millions of active Let's Encrypt certificates. [...] | |||
|
2022-01-26 05:04:15 | Nobel Foundation site hit by DDoS attack on award day (lien direct) | The Nobel Foundation and the Norwegian Nobel Institute have disclosed a cyber-attack that unfolded during the award ceremony on December 10, 2021. [...] | |||
|
2022-01-26 04:34:33 | QNAP warns of new DeadBolt ransomware encrypting NAS devices (lien direct) | QNAP is warning customers again to secure their Internet-exposed Network Attached Storage (NAS) devices to defend against ongoing and widespread attacks targeting their data with the new DeadBolt ransomware strain. [...] | Ransomware | ||
|
2022-01-25 23:08:35 | (Déjà vu) Windows 11 KB5008353 Cumulative Update Preview Released (lien direct) | Microsoft has released the optional KB5008353 Preview cumulative update for Windows 11 with 39 fixes or improvements. [...] | |||
|
2022-01-25 20:47:06 | (Déjà vu) Windows 10 KB5009596 update released with bug fixes, improvements (lien direct) | Microsoft has released the optional KB5009596 Preview cumulative update for Windows 10 20H2, Windows 10 21H1, and Windows 10 21H2. [...] | |||
|
2022-01-25 19:28:37 | New DeadBolt ransomware targets QNAP devices, asks 50 BTC for master key (lien direct) | A new DeadBolt ransomware group is encrypting QNAP NAS devices worldwide using what they claim is a zero-day vulnerability in the device's software. [...] | Ransomware Vulnerability | ||
|
2022-01-25 16:19:36 | VMware: Patch Horizon servers against ongoing Log4j attacks! (lien direct) | VMware is urging customers to patch critical Log4j security vulnerabilities impacting Internet-exposed VMware Horizon servers targeted in ongoing attacks. [...] | |||
|
2022-01-25 15:44:06 | (Déjà vu) Linux system service bug gives root on all major distros, exploit released (lien direct) | A vulnerability in Polkit's pkexec component identified as CVE-2021-4034 (PwnKit) is present in the default configuration of all major Linux distributions and can be exploited to gain full root privileges on the system, researchers warn today. [...] | Vulnerability | ||
|
2022-01-25 15:44:06 | Linux system service bug gives you root on every major distro (lien direct) | A vulnerability in the pkexec component that is present in the default configuration of all major Linux distributions can be exploited to gain full root privileges on the system, researchers warn today. [...] | Vulnerability | ||
|
2022-01-25 15:06:27 | TrickBot now crashes researchers\' browsers to block malware analysis (lien direct) | The notorious TrickBot malware has received new features that make it more challenging to research, analyze, and detect in the latest variants, including crashing browser tabs when it detects beautified scripts. [...] | Malware | ||
|
2022-01-25 13:45:44 | UK govt releasing Nmap scripts to find unpatched vulnerabilities (lien direct) | The United Kingdom's National Cyber Security Centre (NCSC), the government agency that leads UK's cyber security mission, is releasing NMAP Scripting Engine scripts to help defenders scan for and remediate vulnerable systems on their networks. [...] | Guideline | ||
|
2022-01-25 13:26:47 | New DazzleSpy malware targets macOS users in watering hole attack (lien direct) | A new watering hole attack has been discovered targeting macOS users and visitors of a pro-democracy radio station website in Hong Kong and infecting them with the DazzleSpy malware [...] | Malware | ||
|
2022-01-25 11:56:28 | Linux kernel bug can let hackers escape Kubernetes containers (lien direct) | A vulnerability affecting Linux kernel and tracked as CVE-2022-0185 can be used to escape Kubernetes containers, giving access to resources on the host system. [...] | Vulnerability | Uber | |
|
2022-01-25 11:31:34 | Google Drive now warns you of suspicious phishing, malware docs (lien direct) | Google is rolling out new warning banners in Google Drive to alert users of potentially suspicious files that threat actors could use for malware delivery and in phishing attacks. [...] | Malware Threat | ||
|
2022-01-25 09:59:33 | Segway store hacked to steal customers\' credit cards (lien direct) | Segway's online store was compromised to include a malicious Magecart script that potentially allowed threat actors to steal credit cards and customer information during checkout. [...] | Threat | ||
|
2022-01-25 09:15:00 | Missing Microsoft Intune certs break email, VPN on Samsung devices (lien direct) | Microsoft says Samsung devices enrolled in Microsoft Intune using a work profile will experience email and VPN connectivity issues due to missing certificates after upgrading to Android 12. [...] | |||
|
2022-01-25 09:00:55 | Russia arrests leader of “Infraud Organization” hacker group (lien direct) | The Russian Federal Security Service (FSB) and law enforcement have arrested Andrey Sergeevich Novak, the alleged leader of the Infraud Organization, a hacker group that caused losses of more than $560 million in seven years of activity. [...] | Guideline | ||
|
2022-01-25 03:08:02 | Google Drive flags nearly empty files for \'copyright infringement\' (lien direct) | Users were left startled as Google Drive's automated detection systems flagged a nearly empty file for copyright infringement. The file, according to one Drive user, contained nothing other than just the digit "1" within. [...] | |||
|
2022-01-25 01:38:13 | Canada\'s foreign affairs ministry hacked, some services down (lien direct) | The Canadian government department for foreign and consular relations, Global Affairs Canada was hit by a cyberattack last week. While critical services remain accessible, access to some online services is currently not available, as government systems continue to recover from the attack. [...] | |||
|
2022-01-24 16:48:56 | Attackers now actively targeting critical SonicWall RCE bug (lien direct) | A critical severity vulnerability impacting SonicWall's Secure Mobile Access (SMA) gateways addressed last month is now targeted in ongoing exploitation attempts. [...] | Vulnerability | ||
|
2022-01-24 15:39:03 | Tor Project appeals Russian court\'s decision to block access to Tor (lien direct) | US-based Tor Project and Russian digital-rights protection org RosKomSvoboda are appealing a Russian court's decision to block access to public Tor nodes and the project's website. [...] | |||
|
2022-01-24 14:34:39 | CWP bugs allow code execution as root on Linux servers, patch now (lien direct) | Two security vulnerabilities that impact the Control Web Panel (CWP) software can be chained by unauthenticated attackers to gain remote code execution (RCE) as root on vulnerable Linux servers. [...] | |||
|
2022-01-24 12:55:28 | Android malware BRATA wipes your device after stealing data (lien direct) | The Android malware known as BRATA has added new and dangerous features to its latest version, including GPS tracking, the capacity to use multiple communication channels, and a function that performs a factory reset on the device to wipe all traces of malicious activity. [...] | Malware | ||
|
2022-01-24 12:34:14 | Hackers say they encrypted Belarusian Railway servers in protest (lien direct) | A group of hackers (self-dubbed Belarusian Cyber-Partisans) claim they breached and encrypted servers belonging to the Belarusian Railway, Belarus's national state-owned railway company. [...] | |||
|
2022-01-24 11:40:20 | Ransomware gangs increase efforts to enlist insiders for attacks (lien direct) | A recent survey of 100 large (over 5,000 employees) North American IT firms shows that ransomware actors are making greater effort to recruit insiders in targeted firms to aid in attacks. [...] | Ransomware | ||
|
2022-01-24 10:07:38 | SonicWall explains why firewalls were caught in reboot loops (lien direct) | In a weekend update, SonicWall said the widespread reboot loops that impacted next-gen firewalls worldwide were caused by signature updates published on Thursday evening not being correctly processed. [...] | |||
|
2022-01-24 09:37:15 | Malicious PowerPoint files used to push remote access trojans (lien direct) | Since December 2021, a growing trend in phishing campaigns has emerged that uses malicious PowerPoint documents to distribute various types of malware, including remote access and information-stealing trojans. [...] | |||
|
2022-01-24 06:58:22 | (Déjà vu) Dark Souls servers taken down to prevent hacks using critical bug (lien direct) | Bandai Namco has deactivated the online PvP mode for the Dark Souls role-playing game, taking its servers offline to investigate reports about a severe security issue that may pose a risk to players. [...] |
To see everything:
Our RSS (filtrered)
