What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-06-11 10:17:57 | (Déjà vu) Trickbot Malware Spreads Through Fake Black Lives Matter Campaign (lien direct) | A phishing email campaign asking you to vote anonymously about Black Lives Matter is spreading the TrickBot information-stealing malware. Started as a banking Trojan, the TrickBot has evolved to perform a variety of malicious behavior. This behaviour includes spreading laterally through a network, stealing saved credentials in browsers, stealing Active Directory Services databases, stealing cookies and OpenSSH keys, stealing RDP, […] | Malware | ||
|
2020-06-10 16:38:19 | Unsecured Internet-facing database attracts hackers in a matter of hours (lien direct) | You only have to read the news on this very website to find countless stories of instances where companies have inadvertently left a database exposed on the web – it's every security professional's worst nightmare. Researchers at Comparitech, who will often be the source of finding these misconfigured databases to alert the unsuspecting company, […] | |||
|
2020-06-10 15:40:25 | One Identity Safeguard now offers free Personal Password Vault (lien direct) | One Identity has recently introduced a new feature within One Identity Safeguard for Privileged Passwords 6.6, which manages and secures the use of corporate personal passwords to access corporate third-party accounts. Corporate users can store their passwords for online accounts to services within a new Personal Password Vault. By leveraging the feature – which is […] | |||
|
2020-06-10 14:47:25 | Qualys Adds Malware Detection to Its Free 60-day Remote Endpoint Protection Offer (lien direct) | FOSTER CITY, Calif. June 9, 2020 – Qualys, Inc. (NASDAQ: QLYS), a pioneer and leading provider of cloud-based IT, security and compliance solutions, today announced it has added malware detection to its cloud-based Remote Endpoint Protection offer, which is free for 60 days. Any customers currently using the offer on a free 60-day license can extend it for […] | Malware Guideline | ||
|
2020-06-10 11:32:17 | QR codes to be used in South Korea to contain COVID-19 (lien direct) | South Korea will require facilities deemed to be “high-risk” of spreading COVID-19 to install QR code readers, the government said on Wednesday. Places where multiple people gather around indoors, such as fitness centres, clubs, and karaoke bars, will be subject to the requirement, the Korea Centers for Disease Prevention and Control (KCDC) said. People who […] | |||
|
2020-06-10 11:11:32 | U.S. Utilities Sector spied on with sophisticated RAT (lien direct) | The APT known as TA410 has added a modular remote-access trojan (RAT) to its espionage arsenal, deployed against Windows targets in the United States' utilities sector. According to researchers at Proofpoint, the RAT, called FlowCloud, can access installed applications and control the keyboard, mouse, screen, files, services and processes of an infected computer, with the […] | |||
|
2020-06-10 11:05:20 | GP App, Babylon Health, suffers Data Breach (lien direct) | Babylon Health has acknowledged that its GP video appointment app has suffered a data breach. The firm was alerted to the problem after one of its users discovered he had been given access to dozens of video recordings of other patients’ consultations. A follow-up check by Babylon revealed a small number of further UK users […] | Data Breach | ||
|
2020-06-10 11:01:47 | (Déjà vu) Payment card data stolen from Greenworks customers (lien direct) | Payment card data from customers of Greenworks hardware tools website is currently being stolen by hackers via a malicious script with self-cloaking capabilities and anti-tampering protection. Greenworks distributes home and garden battery-powered tools for DIY consumers. Its business started in 2007 and grew to expand in North America and Europe. The main website of the […] | |||
|
2020-06-10 10:55:49 | (Déjà vu) Valak malware focused on stealing Outlook login credentials (lien direct) | Authors of Valak information stealer are focusing more and more on stealing email credentials as researchers find a new module specifically built for this purpose. The malware emerged in testing mode in mid-October 2019 and has a modular plugin architecture that expands its capabilities to cover the needs of the threat actor. Valak has been […] | Malware Threat | ||
|
2020-06-09 11:38:29 | Third US College Hit with Ransomware Attack in a Week (lien direct) | Columbia College, Chicago has become the third US college in a week to fall victim to a cyber-attack involving the Netwalker family of ransomware. The Illinois educational establishment, along with Michigan State University and the University of California, San Francisco, was targeted by cyber-criminals and given six days to pay a ransom to recover its files. Netwalker, […] | Ransomware | ||
|
2020-06-09 11:33:13 | UK Consumers Believe CEOs Are Responsible For Cyberattacks (lien direct) | A survey by data protection firm Veritas Technologies found that more than a third (35%) of UK consumers would see a business leader as personally responsible if a cyber breach of that business occurs. It suggests that more than two-thirds (68%) believe they should be compensated when incidents such as ransomware attacks compromise their data, […] | Ransomware Guideline | ||
|
2020-06-09 11:27:51 | IBM No Longer Offering Facial Recognition Technology (lien direct) | IBM has announced it will no longer be offering general purpose facial recognition technology in fear that it could be used to promote racial discrimination and injustice. “IBM firmly opposes and will not condone uses of any technology, including facial recognition technology offered by other vendors, for mass surveillance, racial profiling, violations of basic human […] | |||
|
2020-06-09 11:22:13 | Honda May Have Been the Victim of a Ransomware Attack (lien direct) | Japanese automaker Honda has been hit by a cyber-attack which has impacted many of its business operations. The attack happened on Sunday 7th June, and led to problems across Honda’s IT networks in Europe and Japan. According to multiple reports, cyber actors targeted a Honda server with SNAKE (Ekans) ransomware aiming to cause damage to […] | Ransomware | ||
|
2020-06-09 11:16:38 | (Déjà vu) German PPE Supply Chain Under Attack (lien direct) | Hackers are attacking high ranking executives of a German multinational corporation part of a government-private sector task force focused on personal protective equipment (PPE) procurement. The attackers behind this pandemic-related spear-phishing campaign have already attempted to steal the user credentials of over 100 senior executives as security researchers at IBM X-Force Incident Response and Intelligence Services (IRIS) said in […] | |||
|
2020-06-09 09:03:36 | Mobile phishing rises by 37% in Q1 2020 (lien direct) | New research has revealed mobile phishing has increased by 37% in Q1 2020 compared to Q4 2019 with much of this rise a result of cybercriminals targeting the millions of those working from home due to the coronavirus pandemic that has plagued the world. The Mobile Phishing Spotlight Report also detailed the costly nature of […] | |||
|
2020-06-08 11:50:57 | (Déjà vu) Ransomware Attacks Target QNAP NAS devices (lien direct) | The operators of the eCh0raix ransomware have launched another wave of attacks against QNAP network-attached storage (NAS) devices. The eCh0raix gang has been active since June 2019, when they first deployed a first version of their ransomware. Despite having its initial ransomware version decrypted, the group has never disappeared, deploying a newer version that security researchers […] | Ransomware | ||
|
2020-06-08 11:46:10 | (Déjà vu) Fake Decryptor Infects Devices with Ransomware (lien direct) | A fake decryptor for the STOP Djvu Ransomware is being distributed that lures already desperate people with the promise of free decryption. Instead of getting their files back for free, they are infected with another ransomware that makes their situation even worse. While ransomware operations such as Maze, REvil, Netwalker, and DoppelPaymer get wide media […] | Ransomware | ||
|
2020-06-08 11:37:46 | Zeplin Users Hit with Spear-Phishing Attacks (lien direct) | A sophisticated spear-phishing campaign has targeted companies using Zeplin, a collaboration system heavily used in the software development and product design communities. The campaign, launched in early May by South Korean APT group Higaisa, took special aim at newer users of the service, luring users with files purporting to be a project file and updates […] | |||
|
2020-06-08 11:33:04 | APAC Remote Workers Not Cyber Secure, study shows (lien direct) | More employees are working from home amidst the global pandemic, but a majority do so without proper training on how to ensure they can keep their organisation safe. More than half are using their personal devices to carry out work tasks, even as they believe these devices are not fully secure against advanced security threats. […] | |||
|
2020-06-08 11:24:32 | Public Outcry in Singapore over Contact-Tracing Wearable Devices (lien direct) | Singapore currently is developing a wearable device that may be issued to every resident as a way to facilitate contact tracing amidst the COVID-19 pandemic, but the move has sparked public outcry from individuals concerned about their privacy. An online petition urging the public to reject its use has, to date, garnered more than 17,500 […] | |||
|
2020-06-05 10:15:17 | Trump/Biden Campaigns Targeted by Chinese and Iranian State Hackers (lien direct) | Chinese and Iranian state-sponsored hackers have been caught targeting the Trump and Biden Presidential campaigns, according to Google. Shane Huntley, director of Google's Threat Analysis Group, revealed the news in a couple of tweets yesterday. He confirmed that there was no sign the attacks had led to compromise. “We sent users our govt attack warning […] | Threat | ||
|
2020-06-05 10:06:03 | Nuclear Missile Data Stolen by Hacker (lien direct) | Cybercriminals gained access to systems owned by US military contractor Westech International according to reports from Sky News.The hackers stole top secret nuclear missile data, encrypted hard drives and began leaking documents in an extortion attempt. The breached company is a sub-contractor for Northrup Grumman, which provides engineering and maintenance support for the Minuteman III […] | |||
|
2020-06-05 10:02:17 | Resumes and Medical Leave Mask Malware (lien direct) | Criminals are using resumes to hide malicious payloads in a business climate that has seen hundreds of thousands of individuals searching for jobs. According to new research, the fake CVs disguise banking trojans and data stealers in macros within Microsoft Excel files. Researchers at Check Point Software say that a new campaign of Zloader malware has been […] | Malware | ||
|
2020-06-05 09:52:22 | Black Lives Matter Groups Face Cyberattacks (lien direct) | Widespread violent protests across the US over the past week have been followed by attempted DDoS attacks on several rights groups, according to Cloudflare. The web security firm analyzed malicious HTTP requests it blocked across the weekend of April 25/26 versus a month later (May 30/31). Minneapolis resident George Floyd was killed on May 25, sparking […] | |||
|
2020-06-05 09:48:09 | (Déjà vu) Voice Message Phishing Email hits 100,000 companies (lien direct) | Attackers have been pounding employee inboxes at companies that still use private branch eXchange (PBX) telephone systems for communication, delivering phishing that bypasses email defences. The messages pretended to be voicemail notifications from PBX integrations and featured custom subject lines to pass a superficial legitimacy test. Businesses around the world use PBX systems for internal […] | |||
|
2020-06-04 10:18:22 | Phishing attack targeting VPN users (lien direct) | Cybercriminals have been keen to exploit COVID-19 to create coronavirus-related malicious apps, phoney websites, and phishing emails. As the pandemic has triggered a huge shift toward remote working, so, too, have criminals been trying to target business employees working at home. In a blog post published Wednesday, Abnormal Security describes a new phishing campaign that […] | |||
|
2020-06-04 10:15:25 | (Déjà vu) US colleges Under Attack by Netwalker Ransomware (lien direct) | The Netwalker Ransomware operators claim to have successfully attacked the University of California San Francisco (UCSF), stolen unencrypted data, and encrypted their computers. UCSF is a research university located in San Francisco, California, and is entirely focused on health sciences. According to the U.S. News & World Report’s college rankings, UCSF ranks #2 in medical schools […] | Ransomware | ||
|
2020-06-04 10:09:49 | Huawei Covertly Partnering With Iranian Business (lien direct) | Chinese telecoms equipment giant Huawei is under pressure again after a report revealed new documents which apparently show a concerted attempt to cover-up its links with a 'partner' business in Iran which tried to break US sanctions. The firm in question, Skycom, is at the centre of a US case against Huawei in which it […] | |||
|
2020-06-04 10:02:14 | (Déjà vu) San Francisco retirement program SFERS hit with data breach (lien direct) | The San Francisco Employees' Retirement System (SFERS) has suffered a data breach after an unauthorised person gained access to a database hosted in a test environment. SFERS manages the benefits program for active and retired employees of San Francisco, California. In a data breach notification filed today, SFERS stated that one of their vendors had set […] | Data Breach | ||
|
2020-06-03 11:51:20 | European Cybersecurity Blogger Awards 2020 – Winners Announced! (lien direct) | The winners of the 2020 European Cybersecurity Blogger Awards were announced last night in an event with a twist. Forgoing the usual booze up in a pub close to Infosecurity Europe this year, the awards ceremony went virtual! And thanks to Qualys, the headline sponsor, cocktail kits were sent to all registered finalists to join […] | |||
|
2020-06-03 11:23:45 | (Déjà vu) Ransomware Gangs Form an Extortion Cartel (lien direct) | Ransomware gangs are teaming up to extort victims through a shared data leak platform, and the exchange of tactics and intelligence. In November 2019, the Maze Ransomware operators transformed ransomware attacks into data breaches after they released unencrypted data of a victim who refused to pay. Soon after, they launched a dedicated “Maze News” site used to shame their […] | Ransomware | ||
|
2020-06-03 10:45:13 | YouTube Accounts in Demand on the Dark Web (lien direct) | Security experts are warning of growing dark web demand for access to users' YouTube accounts. Etay Maor, CSO at cyber-intelligence firm IntSights, explained that in recent weeks his team has noticed an uptick in demand for stolen credentials for prominent accounts on the video site. While account access can be used to spread malware and launch […] | Malware | ||
|
2020-06-03 10:36:36 | One of NASA\'s IT Contractors Potentially Breached (lien direct) | The operators of the DopplePaymer ransomware have congratulated SpaceX and NASA for their first human-operated rocket launch and then immediately announced that they infected the network of one of NASA’s IT contractors. In a blog post published today, the DopplePaymer ransomware gang said it successfully breached the network of Digital Management Inc. (DMI), a Maryland-based […] | Ransomware | ||
|
2020-06-03 10:30:25 | (Déjà vu) eBay-like auction site created for stolen data (lien direct) | The operators of the REvil ransomware have launched a new auction site used to sell victim’s stolen data to the highest bidder. REvil, otherwise known as Sodinokibi, is a ransomware operation that breaches corporate networks using exposed remote desktop services, spam, exploits, and hacked Managed Service Providers. Once established on a network, they quietly spread laterally through the company […] | Ransomware | ||
|
2020-06-02 16:35:31 | Chinese Hackers May Be Behind EasyJet Hack (lien direct) | The recent high-profile cyberattack that struck British budget airline EasyJet may have been carried out by Chinese hackers, new research and multiple sources have suggested. The cyberattack, which saw the email addresses and travel details of millions of passengers being robbed-as well as the credit card details of some 2,000-was reportedly conducted by the very […] | Hack | ||
|
2020-06-02 16:32:22 | (Déjà vu) Kent PPE Firm Hit with £800,000 Ransom (lien direct) | A gang demanded an £800,000 Bitcoin ransom in a cyber attack on a firm owned by Kent County Council and leaked its data on the dark web. Kent Commercial Services (KCS) delivers services and supplies to public authorities, including protective equipment during the Covid-19 crisis. No ransom was paid and no personal data relating to […] | |||
|
2020-06-02 16:28:19 | Minneapolis Police Department Hack Likely Fake (lien direct) | As protests continue to proliferate across the globe in the wake of George Floyd's death, the Minnesota Police Department is making news for something else: A supposed hack, perpetrated at the hands of the Anonymous hacktivist group. According to Troy Hunt at Have I Been Pwned (HIBP), the group of allegedly ill-gotten email addresses and […] | Hack | ||
|
2020-06-01 15:13:22 | What Do the Customers Think? (lien direct) | IT Security solution providers know how hard it is to get customers to talk on the record about the solutions they use. Case studies and customer feedback, however, are the only way in which cybersecurity solution providers can tailor their product to the needs of their buyers. They are also a valuable source of insight […] | Studies | ||
|
2020-06-01 14:41:28 | Personal Information Stolen In Amtrak Guest Reward Data Breach (lien direct) | Amtrak has revealed that some customers may have had their personal information and log-ins stolen after it detected unauthorized access of rewards accounts by a third party. Also known as the National Railroad Passenger Corporation, the state-backed US transportation provider revealed the news in a regulatory filing with the Office of the Vermont Attorney General. […] | Data Breach | ||
|
2020-06-01 14:38:58 | (Déjà vu) Nipissing First Nation Locked Down By Ransomware (lien direct) | The Nipissing First Nation administration stopped a ransomware attack in its tracks but not soon enough to prevent disruption of communications. The attack was discovered on May 8 and affected all departments of the administration but most of the network remained unaffected. Source: BleepingComputer | Ransomware | ||
|
2020-06-01 14:37:37 | (Déjà vu) Open Source Content Management System Joopla Discloses Data Breach (lien direct) | The team behind the Joomla open source content management system (CMS) announced a security breach last week. The incident took place after a member of the Joomla Resources Directory (JRD) team left a full backup of the JRD site (resources.joomla.org) on an Amazon Web Services S3 bucket owned by their own company. Source: ZDNet In […] | Data Breach | ||
|
2020-05-29 11:46:04 | 5 Considerations When Selecting Collaboration Tools for Remote Teams (lien direct) | Digital collaboration tools have been around for years, however for a lot of businesses they have fallen under the radar until now. Since the outbreak of COVID-19, many organisations have been forced to ask their employees to work from home. This has made these tools a necessity for businesses whose activities rely on collaboration between […] | |||
|
2020-05-29 10:40:16 | Verizon DBIR: Edgescan Explains the Stats (lien direct) | by Eoin Keary, CEO and founder of Edgescan: For the third year running Edgescan contributed to the Verizon DBiR. The DBiR is recognized as the defacto cyber report which casts a wide net across all types of cyber security and breaches, this includes vulnerability management in both infrastructure and applications. Edgescan vulnerability data is curated and validated, sanitised […] | Vulnerability | ★★★ | |
|
2020-05-29 09:58:00 | Toll Group resume services after ransomware (lien direct) | Toll Group has said it was making “good progress” with the restoration of its key online systems, following the ransomware attack it suffered after a January infection. In an update posted on Friday, the company said MyToll customers could now access most features and its Track and Trace function is available for a number of […] | Ransomware | ||
|
2020-05-29 09:56:56 | Data breach affects over 600 NTT Customers (lien direct) | One of the world's largest telecoms and IT services companies has revealed that attackers may have stolen data from its internal systems, affecting over 600 customers. NTT Communications provides cloud, network and data center services to some of the world's biggest companies. Its parent, NTT Group, is ranked in the top 100 of the Fortune […] | Data Breach | ||
|
2020-05-29 09:55:39 | Clearview AI sued by ACLU (lien direct) | The American Civil Liberties Union (ACLU) is taking Clearview AI to court, claiming the company’s facial surveillance activities violate the Illinois Biometric Information Privacy Act (BIPA) and “represent an unprecedented threat to our security and safety”. The legal action, brought on by lawyers at the ACLU of Illinois and the law firm Edelson PC, is […] | Threat | ||
|
2020-05-29 09:52:44 | (Déjà vu) GitHub supply chain attack via new malware (lien direct) | Security researchers have found a new malware that finds and backdoors open-source NetBeans projects hosted on the GitHub web-based code hosting platform to spread to Windows, Linux, and macOS systems and deploy a Remote Administration Tool (RAT). The malware dubbed Octopus Scanner by researchers at the GitHub Security Lab compromises developers’ computers by infecting their […] | Malware Tool | ||
|
2020-05-29 09:51:45 | Half of employees cut corners whilst working from home (lien direct) | Half of employees are cutting corners with regards to cybersecurity while working from home – and could be putting their organisation at risk of cyber attacks or data breaches as a result. The coronavirus pandemic has forced both employers and employees to quickly adjust to remote working – and often without the watchful eyes of […] | |||
|
2020-05-28 16:17:27 | ISACA London Chapter Launches Membership Assistance Programme (lien direct) | Saying that we live in unprecedented times might be an understatement if there ever was one. People across the globe – those lucky enough to still have their job that is – have been forced to learn how to work from home, with the noise of children demanding attention, pets barking in the background and […] | |||
|
2020-05-28 10:23:54 | 25 million records leaked by Maths app Mathway (lien direct) | More than 25 million user records, belonging to popular math app Mathway, are being sold on the dark web. According to ZDNet, the hack is the latest in a long line of security breaches carried out by a hacker going by the name of ShinyHunters, the threat actor also responsible for intrusions at Tokopedia, Wishbone, […] | Hack Threat |
To see everything:
Our RSS (filtrered)
