What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-12-08 13:58:21 | StrongPity2 spyware replaces FinFisher in MitM campaign – ISP involved? (lien direct) | As we reported in September, in campaigns we detected in two different countries, man-in-the-middle attacks had been used to spread FinFisher, with the “man†in both cases most likely operating at the ISP level. | |||
|
2017-12-07 14:17:07 | Virtual keyboard app exposes personal data of 31 million users (lien direct) | The developer's keyboard apps boast 40 million users across Android and iOS, but “only†Android users were affected by the security lapse. | |||
|
2017-12-06 15:01:41 | Cryptocurrency exchange Bitfinex plagued by DDoS attacks (lien direct) | The cast of characters behind the attacks, or their motives, are unclear. However, the onslaughts come at a time when the bitcoin price hits new highs, possibly triggering efforts on the part of cybercriminals to manipulate and cash in on the price. | |||
|
2017-12-06 12:59:09 | Six things to consider before implementing an ISMS (lien direct) | These factors can be key to the success or failure of the ISMS implementation, due to the day-to-day activities in the organization and the resources required for system operation. | |||
|
2017-12-05 13:01:01 | ISF predicts increasing impact of data breaches next year (lien direct) | The association expects the increased costs incurred in security breaches to come both from traditional areas, such as network cleanup and customer notification, and newer areas such as litigation. | |||
|
2017-12-04 18:02:14 | ESET helps law enforcement worldwide to disrupt Gamarue botnet (lien direct) | Throughout its monitoring of the threat, ESET found dozens of C&C servers every month. The bulk of ESET's research was conducted late last year, with the peak of Wauchos's activity going back approximately to that time. | |||
|
2017-12-04 18:01:20 | ESET takes part in global operation to disrupt Gamarue (lien direct) | Wauchos is an extensible bot that allows its owner to create and use custom plugins. However, there are some plugins that are widely available and that are used by many different botnets. | |||
|
2017-12-01 12:13:10 | NHS\'s cyber-defenses to get a £20 million shot in the arm (lien direct) | The health service is now on the lookout for a partner to help run the project, having invited interested parties to tender for a contract that is set to run for three to five years. The new center is set to be based in the English city of Leeds. | |||
|
2017-11-30 12:58:18 | Firefox to warn users when visiting breached websites (lien direct) | The extension currently includes an input field that users can use to subscribe an email address in order to receive an alert when they may be affected by a future breach. | |||
|
2017-11-29 23:59:45 | Shipping giant refuses to pay hackers ransom after data stolen (lien direct) | Clarksons, the global shipping firm, has turned the tables on criminal hackers who attempted to extort a ransom payment after stealing confidential information from the company's network. | |||
|
2017-11-29 13:58:40 | ESET malware researchers awarded prize in open-source memory forensics competition (lien direct) | The Volatility Foundation, the non-profit organization behind the Volatility Framework, sponsors the yearly Volatility Plugin Contest to acknowledge the best forensic tools built on the Volatility platform. | |||
|
2017-11-29 10:59:47 | Keyless convenience or security risk? Car theft in action (lien direct) | Exactly how does the attack work and is it expensive to create? The attack, while seeming to be technology voodoo, is actually rather simple. It requires a transmitting relay near the key and a second relay near the car to receive the relayed signals and mimic the key. | |||
|
2017-11-28 14:07:15 | Mr. Robot: Now we know where Tyrell was hiding (lien direct) | Since nothing is what is seems, it's hard to be sure who was really behind the attacks shown in the series. The world still believes fsociety was responsible (and they themselves do too, to an extent), but the truth is that there is a group in the shadows that is pulling all the strings. | |||
|
2017-11-27 00:06:51 | Imgur hackers stole 1.7 million email addresses and passwords (lien direct) | Image-hosting website Imgur discovered at the end of last week that hackers broke into its systems in 2014, and stole the account details of some 1.7 million registered users. | |||
|
2017-11-24 12:57:44 | New reality in European banking looming large: the lowdown (lien direct) | At the heart of the regulation is the requirement for banks to allow licensed third-party providers (TPPs) of financial services to access securely their customer-account data, as long as the customer has given their prior consent. | |||
|
2017-11-24 09:58:19 | Busy Browsers attract Black Friday Burglars (lien direct) | Just as in past decades when cash drawers and bank vaults were targeted for theft, today's e-shops and online banks have fallen under the scope of cybercriminals. Their “digital-focus†is just an evolutionary step beyond robbing stagecoaches in the Wild West, and banks in the 20th century. | |||
|
2017-11-23 12:58:22 | Smartphone adoption among older Americans continues growth spurt (lien direct) | Some three-quarters of users up to 34 years of age reported that they “definitely†or “probably†use their phone too much. Almost half (47 percent) of all ages said they make a conscious effort to pare back their mobile phone time, most commonly by keeping their devices in their bag or pocket or by switching off notifications. | |||
|
2017-11-23 08:56:14 | US indicts alleged culprit of HBO hack-and-extort campaign (lien direct) | Between approximately July 23 and 29, Mesri reportedly engaged in his blackmail campaign. After the TV network didn't pay the required $6 million in digital cryptocurrency, he began leaking portions of the stolen data on July 30. | |||
|
2017-11-22 12:57:59 | Girls Inc. in the spotlight: Nonprofit Pitch Fest contest grand prize winner (lien direct) | Girls Inc. of San Diego County was founded 50 years ago as a local affiliate of the national Girls Inc. The national organization was started as the Girls Club of America more than 150 years ago, to help young women who had migrated from rural communities in search of job opportunities. | |||
|
2017-11-21 13:55:20 | New campaigns spread banking malware through Google Play (lien direct) | For a user, it can be difficult to figure out whether an app is malicious. First off it is always good only to install applications from the Google Play store, since most malware is still mainly spread through alternative stores. | |||
|
2017-11-21 12:58:59 | Cybersecurity for journalists and the news media (lien direct) | In journalism, having good contacts is key and this is true when it comes to defending your digital assets. The following are some sources – of information and, possibly, assistance – that you might want to cultivate. | |||
|
2017-11-21 11:26:55 | Only…zero days left until the holiday shopping season! (lien direct) | The holidays are a time when people purchase gifts for their friends, families, and yes, even for themselves. Increasingly, children are using and accessing more and more digital devices - making it important for everyone to work together to secure these devices. | |||
|
2017-11-20 14:38:47 | Kids\' smartwatches banned in Germany over spying concerns (lien direct) | German parents are being told to destroy smartwatches they have bought for their children after the country's telecoms regulator put a blanket ban in place to prevent sale of the devices, amid growing privacy concerns. | |||
|
2017-11-20 12:46:56 | UK\'s ICO issues stark reminder of backlash for privacy invasion (lien direct) | The Information Commissioner's Office (ICO) in the United Kingdom has issued a stark reminder and straight-to-the-point warning for all employees who might be tempted to snoop on others' personal data. | |||
|
2017-11-20 09:33:25 | Is your business ready for the Holiday Season? (lien direct) | Unfortunately, as with every opportunity, there are people who want to benefit from your success without putting in the hard work. Cybercriminals will view the increase in traffic and spending as opportunities to make extra money. | |||
|
2017-11-17 10:00:07 | One-third of internet pounded by DoS attacks (lien direct) | Simple DoS attacks, which are a one-on-one affair, have been all but supplanted by DDoS attacks. The latter involve concerted campaigns from armies of devices conscripted into botnets which, as if lined up and marching in lockstep, aim to knock the unlucky target offline. | |||
|
2017-11-16 13:33:24 | Think you deleted that embarrassing WhatsApp message you sent? Think again (lien direct) | If there's one thing we should all have learnt from our years on the internet it should be this: once you say something somewhere, it's very hard to take it back and pretend it never happened. | |||
|
2017-11-16 13:24:06 | Tips for buying and sending gift cards (lien direct) | In a world where money is often represented as numbers moving from one place to another, the difference between types of payment cards may seem a bit nebulous. | |||
|
2017-11-15 20:39:14 | US Vulnerability Equities Policy: transparency welcome, but serious questions remain (lien direct) | Commentary on government struggles to protect internet security while stockpiling cyber vulnerabilities in order to launch attacks and gain intelligence. | |||
|
2017-11-15 13:58:21 | Multi-stage malware sneaks into Google Play (lien direct) | In all the cases we investigated, the final payload was a mobile banking trojan. Once installed, it behaves like a typical malicious app of this kind: it may present the user with fake login forms to steal credentials or credit card details. | |||
|
2017-11-15 12:33:38 | US rules on reporting cybersecurity flaws set to change according to source (lien direct) | Currently the US government employs an inter-agency review, created under former President Barack Obama. Known as the Vulnerability Equities Process, it is tasked with deciding what happens to any cybersecurity flaws that is discovered by the National Security Agency (NSA). | |||
|
2017-11-14 12:57:41 | Americans\' unease about cybercrime towers over conventional crimes (lien direct) | The high level of fear of cybercrime dovetails with the self-reported rates of victimization, as 25% of the respondents reported that their personal information or that of their household member has been stolen by hackers over the past 12 months. | |||
|
2017-11-13 12:57:00 | Transparency of ML algorithms is a double-edged sword (lien direct) | Unless companies processing citizens' personal data fully understand the reasoning behind the decisions made based on their machine-learning models, they will find themselves between a rock and a hard place. | |||
|
2017-11-10 12:59:41 | Experts share perspective on the state of journalists\' cybersafety (lien direct) | These days, journalists and publishers are increasingly concerned about protecting themselves, their work, and their sources. Rightfully so, for we live in a time when nearly every aspect of publishing occurs online. | |||
|
2017-11-10 09:57:21 | Fighting persistent malware with a UEFI scanner (lien direct) | The biggest news in malware so far this year has been WannaCryptor a.k.a. WannaCry, and one reason that particular ransomware spread so fast was because it used a “top secret†exploit developed by the NSA, an agency known to have dabbled in UEFI compromise. | Wannacry | ||
|
2017-11-09 14:01:08 | Windows Movie Maker Scam spreads massively due to high Google ranking (lien direct) | ESET detected a modified version of Windows Movie Maker that aims to collect money from unaware users. The spread has been boosted by SEO. | |||
|
2017-11-08 12:58:33 | Five tips for keeping your database secure (lien direct) | In general, these are the most basic and essential precautions any systems manager must consider. However, depending on the system you want to protect, there are some additional issues to take into account. | |||
|
2017-11-07 12:58:32 | Blade Runner 2049: A reflection on our use of technology (lien direct) | At present, virtual assistants are a long way from the image depicted in Blade Runner 2049. However, we are seeing companies take major steps in this direction. We have Siri, Cortana, and Alexa, to name but a few. | |||
|
2017-11-06 12:30:25 | Businesses and GDPR: What they need to do to be compliant? (lien direct) | While this may sound daunting and the consequences of non-compliance are significant, it's considered unlikely that regulators will make an example of small businesses that can demonstrate they have a plan and have attempted to comply fully with requirements. | |||
|
2017-11-03 12:59:36 | Would you like to get involved in cybersecurity? Take the test and discover your ideal job! (lien direct) | If you see yourself often being curious about the behavior of computer threats, maybe it's time you consider getting involved in cybersecurity. | |||
|
2017-11-02 13:58:30 | Let\'s call them… how two computer scientists made history (lien direct) | Can you imagine how Dr. Cohen actually created the virus or how Prof. Adleman came up with its name? The work of these men ended up inspiring a constant development of computer defense techniques, and constant research on computer threats | |||
|
2017-11-02 12:59:46 | Learn how a research lab works (lien direct) | This event immediately led to the search for countermeasures against the newly created virus. This was our inspiration and motivation behind Antimalware Day as an annual celebration. | |||
|
2017-11-01 12:57:44 | Professor Len Adleman explains how he coined the term “computer virus†(lien direct) | So this is how two computer scientists made history and why we want to honor their early work. They laid the foundation for research on computer threats, and for what later came to be our mission on antimalware protection. | |||
|
2017-11-01 11:17:24 | All websites running WordPress urged to update NOW (lien direct) | Millions of websites running WordPress are being strongly urged to update to the latest version of the popular content management system as soon as possible, after a serious security vulnerability was uncovered. | |||
|
2017-11-01 10:35:23 | (Déjà vu) National Cybersecurity Awareness Month Twitter Chats part 5 (lien direct) | October 2017 marked the 14th National Cybersecurity Awareness Month (NCSAM. The National Cyber Security Alliance (@NatlCyberSecAlliance) once again hosted a series of Twitter chats every Thursday in October using the hashtag #ChatSTC (moderated by @STOPTHNKCONNECT), in which ESET researchers once again participated. Throughout October we gathered our own thoughts on the topics chosen each week | |||
|
2017-10-31 14:52:21 | Canadian SMBs: How technology can help you go global (lien direct) | As you company grows globally you will be faced with many challenges and it can be easy to forget, unintentionally, some of the steps you have gone through to get to the position your company finds itself in. | |||
|
2017-10-31 12:57:24 | Antimalware Day: Genesis of viruses… and computer defense techniques (lien direct) | To honor the work of Dr. Fred Cohen and Professor Len Adleman, and the foundation they laid for research of computer threats, we decided to declare November 3 as the first ever Antimalware Day. | |||
|
2017-10-30 13:13:49 | Heathrow security plans \'found on USB stick left in the street\' (lien direct) | This weekend British tabloid newspaper The Sunday Mirror warned of a potential "risk to national security" after a memory stick containing sensitive information about Heathrow airport was reportedly "found in the street." | |||
|
2017-10-30 10:59:50 | ESET research team assists FBI in Windigo case – Russian citizen sentenced to 46 months (lien direct) | Relating the collaboration between ESET experts and the FBI about the Windigo's operation, which ended with the sentencing of Maxim Senakh. | |||
|
2017-10-30 10:58:35 | Windigo Still not Windigone: An Ebury Update (lien direct) | In 2014, ESET researchers wrote a blog post about an OpenSSH backdoor and credential stealer called Linux/Ebury In 2017, the team found a new Ebury sample. |
To see everything:
Our RSS (filtrered)
