What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-08-24 09:23:35 | New zero-click iPhone exploit used to deploy NSO spyware (lien direct) | Digital threat researchers at Citizen Lab have uncovered a new zero-click iMessage exploit used to deploy NSO Group's Pegasus spyware on devices belonging to Bahraini activists. [...] | Threat | ||
|
2021-08-23 18:17:49 | FBI: OnePercent Group Ransomware targeted US orgs since Nov 2020 (lien direct) | The Federal Bureau of Investigation (FBI) has shared info about a threat actor known as OnePercent Group that has been actively targeting US organizations in ransomware attacks since at least November 2020. [...] | Ransomware Threat | ||
|
2021-08-23 17:17:23 | Phishing campaign uses UPS.com XSS vuln to distribute malware (lien direct) | A clever UPS phishing campaign utilized an XSS vulnerability in UPS.com to push fake and malicious 'Invoice' Word documents. [...] | Malware Vulnerability | ||
|
2021-08-23 16:14:20 | Botnet targets hundreds of thousands of devices using Realtek SDK (lien direct) | A Mirai-based botnet now targets a critical vulnerability in the software SDK used by hundreds of thousands of Realtek-based devices, encompassing 200 models from at least 65 vendors, including Asus, Belkin, D-Link, Netgear, Tenda, ZTE, and Zyxel. [...] | |||
|
2021-08-23 15:30:59 | Hacker gets 500K reward for returning stolen cryptocurrency (lien direct) | The saga of what has been dubbed the biggest hack in the world of decentralized finance appears to be over as Poly Network recovered more than $610 million in cryptocurrency assets it lost two weeks ago and the hacker received a $500,000 bounty for returning the money. [...] | Hack | ||
|
2021-08-23 12:16:54 | Nokia subsidiary discloses data breach after Conti ransomware attack (lien direct) | SAC Wireless, a US-based and independently-operating Nokia company subsidiary, has disclosed a data breach following a ransomware attack where Conti operators were able to successfully breach its network, steal data, and encrypt systems. [...] | Ransomware Data Breach | ||
|
2021-08-23 10:49:35 | CISA warns admins to urgently patch Exchange ProxyShell bugs (lien direct) | The US Cybersecurity and Infrastructure Security Agency (CISA) issued its first alert tagged as "urgent," warning admins to patch on-premises Microsoft Exchange servers against actively exploited ProxyShell vulnerabilities. [...] | |||
|
2021-08-22 18:56:47 | How to customize Windows 11 appearance with these tools (lien direct) | Windows 11 is arriving later this year and it's currently available to testers in the Windows Insider program. If you've already installed the new operating system and you want to get the most out of Windows 11, you can try the third-party programs highlighted in this article. [...] | |||
|
2021-08-22 12:40:59 | Razer bug lets you become a Windows 10 admin by plugging in a mouse (lien direct) | A Razer Synapse zero-day vulnerability has been disclosed on Twitter, allowing you to gain Windows admin privileges simply by plugging in a Razer mouse or keyboard. [...] | Vulnerability | ||
|
2021-08-22 10:00:00 | Microsoft shares guidance on securing Windows 365 Cloud PCs (lien direct) | Microsoft has shared guidance on securing Windows 365 Cloud PCs and more info on their built-in security capabilities. [...] | |||
|
2021-08-21 11:45:26 | Microsoft now offers Windows 11 preview on Azure Virtual Desktop (lien direct) | Starting this week, Microsoft customers can use the Azure Virtual Desktop (formerly Windows Virtual Desktop) to virtualize a Windows 11 preview desktop on Azure virtual machines. [...] | |||
|
2021-08-21 11:05:27 | (Déjà vu) Microsoft Exchange servers being hacked by new LockFile ransomware (lien direct) | A new ransomware gang known as LockFile encrypts Windows domains after hacking into Microsoft Exchange servers using the recently disclosed ProxyShell vulnerabilities. [...] | Ransomware | ||
|
2021-08-21 11:05:27 | LockFile ransomware attacks Microsoft Exchange with ProxyShell exploits (lien direct) | A new ransomware gang known as LockFile encrypts Windows domains after hacking into Microsoft Exchange servers using the recently disclosed ProxyShell vulnerabilities. [...] | Ransomware | ||
|
2021-08-21 09:47:11 | How to download the Windows 11 ISO from Microsoft (lien direct) | Microsoft has released Windows 11 ISO images this week, and as it's always smart to have a copy of the operating system media to resolve critical problems, we will explain how you can download the Windows 11 ISO directly from Microsoft. [...] | |||
|
2021-08-20 18:42:24 | The Week in Ransomware - August 20th 2021 - Exploiting Windows (lien direct) | Ransomware gangs continue to attack schools, companies, and even hospitals worldwide with little sign of letting up. Below we have tracked some of the ransomware stories that we are following this week. [...] | Ransomware | ||
|
2021-08-20 16:33:29 | Hands on with the new Windows 11 Focus Sessions feature (lien direct) | As people continue to work remotely, staying focused on the task at hand can be challenging, especially when working at home. This article goes hands-on with a new Windows 11 feature called 'Focus Sessions' that aims to keep people focused while performing a particular task. [...] | |||
|
2021-08-20 15:07:51 | LockFile ransomware uses PetitPotam attack to hijack Windows domains (lien direct) | At least one ransomware threat actor has started to leverage the recently discovered PetitPotam NTLM relay attack method to take over the Windows domain on various networks worldwide. [...] | Ransomware Threat | ||
|
2021-08-20 14:02:45 | SynAck ransomware decryptor lets victims recover files for free (lien direct) | Emsisoft has released a decryptor for the SynAck Ransomware, allowing victims to decrypt their encrypted files for free. [...] | Ransomware | ||
|
2021-08-20 12:50:05 | HTTP DDoS attacks reach unprecedented 17 million requests per second (lien direct) | A distributed denial-of-service (DDoS) attack earlier this year takes the top spot for the largest such incident, peaking at 17.2 million requests per second (rps). [...] | |||
|
2021-08-20 12:30:05 | T-Mobile data breach just got worse - now at 54 million customers (lien direct) | The T-Mobile data breach keeps getting worse as an update to their investigation now reveals that cyberattack exposed over 54 million individuals' data. [...] | Data Breach | ||
|
2021-08-20 11:06:07 | Pegasus iPhone hacks used as lure in extortion scheme (lien direct) | A new extortion scam is underway that attempts to capitalize on the recent Pegasus iOS spyware attacks to scare people into paying a blackmail demand. [...] | |||
|
2021-08-20 09:43:40 | AT&T denies data breach after hacker auctions 70 million user database (lien direct) | AT&T says that they did not suffer a data breach after a well-known threat actor claimed to be selling a database containing the personal information of 70 million customers. [...] | Data Breach Threat | ||
|
2021-08-20 03:29:33 | Social account thief goes to prison for stealing, trading nude photos (lien direct) | A New York man received a three year sentence in federal prison for hacking social media accounts of dozens of female college students and stealing nude photos and videos of them. [...] | |||
|
2021-08-19 15:32:48 | CEO tried funding his startup by asking insiders to deploy ransomware (lien direct) | Likely inspired by the LockBit ransomware gang, a Nigerian threat actor tried their luck with a $1 million payment lure to recruit an insider to detonate a ransomware payload on the company servers. [...] | Ransomware Threat | ||
|
2021-08-19 14:30:33 | New unofficial Windows patch fixes more PetitPotam attack vectors (lien direct) | A second unofficial patch for the Windows PetitPotam NTLM relay attack has been released to fix further issues not addressed by Microsoft's official security update. [...] | |||
|
2021-08-19 13:57:48 | (Déjà vu) Microsoft releases the first official Windows 11 ISOs (lien direct) | Microsoft has finally released the first official ISOs for Windows 11, allowing users to perform clean installs of the new operating system. [...] | |||
|
2021-08-19 13:57:48 | Microsoft releases the first official Window 11 ISOs (lien direct) | Microsoft has finally released the first official ISOs for Windows 11, allowing users to perform clean installs of the new operating system. [...] | |||
|
2021-08-19 13:30:00 | Hackers can bypass Cisco security products in data theft attacks (lien direct) | Cisco said that unauthenticated attackers could bypass TLS inspection filtering tech in multiple products to exfiltrate data from previously compromised servers inside customers' networks. [...] | |||
|
2021-08-19 12:52:06 | You can post LinkedIn jobs as almost ANY employer - so can attackers (lien direct) | Anyone can create a job listing on the leading recruitment platform LinkedIn on behalf of any employer-no verification needed. And worse, the employer cannot easily take these down. [...] | Guideline | ||
|
2021-08-19 12:52:06 | You can post LinkedIn jobs as ANY employer - so can attackers (lien direct) | Anyone can create a job listing on the leading recruitment platform LinkedIn on behalf of any employer-no verification needed. Now, that might be nothing new, the feature and lax verification on career websites pave the ways for attackers to post bogus listings for malicious purposes. [...] | Guideline | ||
|
2021-08-19 08:00:00 | CISA shares guidance on how to prevent ransomware data breaches (lien direct) | The US Cybersecurity and Infrastructure Security Agency (CISA) has released guidance to help government and private sector organizations prevent data breaches resulting from ransomware double extortion schemes. [...] | Ransomware | ||
|
2021-08-19 05:24:44 | (Déjà vu) Liquid cryptocurency exchange loses over $90 million following hack (lien direct) | Japan-based cryptocurrency exchange Liquid has suspended deposits and withdrawals after attackers have compromised its warm wallets. [...] | Hack | ||
|
2021-08-19 05:24:44 | Liquid cryptocurrency exchange loses $94 million following hack (lien direct) | Japan-based cryptocurrency exchange Liquid has suspended deposits and withdrawals after attackers have compromised its warm wallets. [...] | Hack | ||
|
2021-08-19 03:08:19 | Cisco won\'t fix zero-day RCE vulnerability in end-of-life VPN routers (lien direct) | In a security advisory published on Wednesday, Cisco said that a critical vulnerability in Universal Plug-and-Play (UPnP) service of multiple small business VPN routers will not be patched because the devices have reached end-of-life. [...] | Vulnerability | ||
|
2021-08-18 17:07:55 | US Census Bureau hacked in January 2020 using Citrix exploit (lien direct) | US Census Bureau servers were breached on January 11, 2020, by hackers after exploiting an unpatched Citrix ADC zero-day vulnerability as the US Office of Inspector General (OIG) disclosed in a recent report. [...] | |||
|
2021-08-18 15:34:00 | Bitcoin mixer owner pleads guilty to laundering over $300 million (lien direct) | Larry Dean Harmon, the owner of a dark web cryptocurrency laundering service known as Helix, pleaded guilty today of laundering over $300 million worth of bitcoins between 2014 and 2017. [...] | Guideline | ★★★★ | |
|
2021-08-18 15:23:58 | New Windows 10 21H2 build comes with improved WiFi security (lien direct) | Microsoft has released Windows 10 21H2 19044.1200 with the awaited new Windows Hello security feature, WPA3 HPE support, and GPU computing in the Windows Subsystem for Linux. [...] | |||
|
2021-08-18 14:00:00 | GitHub urges users to enable 2FA after going passwordless (lien direct) | GitHub is urging its user base to toggle on two-factor authentication (2FA) after deprecating password-based authentication for Git operations. [...] | |||
|
2021-08-18 13:45:15 | Microsoft begins final phase of Internet Explorer\'s demise (lien direct) | Microsoft's Internet Explorer browser is barely usable after Microsoft officially ends support for the browser in Microsoft 365. [...] | |||
|
2021-08-18 09:55:32 | Japanese insurer Tokio Marine discloses ransomware attack (lien direct) | Tokio Marine Holdings, a multinational insurance holding company in Japan, announced this week that its Singapore branch, Tokio Marine Insurance Singapore (TMiS), suffered a ransomware attack. [...] | Ransomware | ||
|
2021-08-18 07:52:00 | Diavol ransomware sample shows stronger connection to TrickBot gang (lien direct) | A new analysis of a Diavol ransomware sample shows a more clear connection with the gang behind the TrickBot botnet and the evolution of the malware. [...] | Ransomware | ||
|
2021-08-18 07:35:12 | (Déjà vu) T-Mobile says hackers stole records belonging to 48.6 million individuals (lien direct) | T-Mobile has confirmed that attackers who recently breached its servers stole files containing the personal information of tens of millions of individuals. [...] | |||
|
2021-08-18 07:35:12 | T-Mobile says hackers stole personal info of 8.6 million customers (lien direct) | T-Mobile has confirmed that attackers who recently breached its servers stole files containing the personal information of over 8.6 million current customers. [...] | |||
|
2021-08-17 17:31:59 | Govt hackers impersonate HR employees to hit Israeli targets (lien direct) | Hackers associated with the Iranian government have focused attack efforts on IT and communication companies in Israel, likely in an attempt to pivot to their real targets. [...] | |||
|
2021-08-17 15:27:54 | Conti ransomware prioritizes revenue and cyberinsurance data theft (lien direct) | Training material used by Conti ransomware affiliates was leaked online this month, allowing an inside look at how attackers abuse legitimate software seek out cyber insurance policies. [...] | Ransomware | ||
|
2021-08-17 14:16:23 | CISA: BadAlloc impacts critical infrastructure using BlackBerry QNX (lien direct) | CISA today warned that IoT and OT security flaws known as BadAlloc impact BlackBerry's QNX Real Time Operating System (RTOS) used by critical infrastructure organizations. [...] | |||
|
2021-08-17 12:05:40 | Pharmacist faces 120 years in prison for selling vaccination cards on eBay (lien direct) | An Illionois pharmacist arrested today faces 120 years in prison for allegedly selling dozens of authentic COVID-19 vaccination record cards issued by the Center for Disease Control and Prevention (CDC). [...] | |||
|
2021-08-17 11:00:22 | Malware campaign uses clever \'captcha\' to bypass browser warning (lien direct) | A malware campaign uses a clever captcha prompt to trick users into bypassing browsers warnings to download the Ursnif (aka Gozi) banking trojan. [...] | Malware | ||
|
2021-08-17 09:36:53 | Brazilian government discloses National Treasury ransomware attack (lien direct) | The Brazilian Ministry of Economy has disclosed a ransomware attack that hit some of its computing systems on Friday night, right before the start of the weekend. [...] | Ransomware | ||
|
2021-08-17 09:23:13 | Critical bug impacting millions of IoT devices lets hackers spy on you (lien direct) | Security researchers are sounding the alarm on a critical vulnerability affecting tens of millions of devices worldwide connected via ThroughTek's Kalay IoT cloud platform. [...] | Vulnerability |
To see everything:
Our RSS (filtrered)
