What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-05-10 09:41:03 | (Déjà vu) Site Promoting KeePass Password Manager Pushes Malware. (lien direct) | A site that pretends to promote the popular KeePass password management software is actually distributing malware on unsuspecting visitors. This site is part of a larger network of sites distributing adware bundles as free programs. Last year, we reported that fake sites were created to promote popular software, but when we analyzed the distributed files, […] | Malware | ||
|
2019-05-10 09:41:00 | Healthcare IT pros now confident in their cyber attack response ability. (lien direct) | Almost two years since the ransomware attack that brought the NHS (National Health Service) to a halt, healthcare IT professionals feel more confident in their ability to respond to a cyber-attack, according to new research from Infoblox. As healthcare providers continue to undertake digital transformation initiatives in an effort to improve efficiencies and the quality […] | Ransomware | ||
|
2019-05-10 09:40:03 | Cybersecurity basics still the key for preventing business email compromise. (lien direct) | Well-organised cybercriminals lust after the big bucks, so hijacking business systems for cryptocurrency mining is on the decline, and business email compromise (BEC) is now the thing. Sure, surreptitious mining continues to be feasible when the goal is shifted from the now processor-heavy Bitcoin to Monero and other currencies. But the payoff can still be […] | |||
|
2019-05-10 09:39:05 | (Déjà vu) U.S Indicts Chinese Hackers for Anthem Data Breach. (lien direct) | The U.S. Department of Justice has formally charged two members of a hacking group operating in China for illegally accessing computer systems of health insurer Anthem and stealing personally identifiable information (PII) of 78.8 million people. One of the hackers has been identified by his real name, Fujie Wang (a.k.a. Dennis Wang), while another is […] | |||
|
2019-05-10 09:39:02 | (Déjà vu) Fake Pirate Chick VPN Pushed AZORult Info Stealing Trojan. (lien direct) | Adware bundles are installing a VPN software called Pirate Chick, which then connects to a remote server to download and install malicious payloads such the AZORult password-stealing Trojan. As adware bundles need to look as legal as possible, they require offers that they promote to have legitimate web sites with privacy policies and user agreements. Such […] | |||
|
2019-05-10 09:38:04 | An unsecured SMS spam operation doxed its owners. (lien direct) | A massive SMS spamming operation kicked out tens of millions of text messages, pestering unsuspecting recipients with links to fake sites flogging loans and free money. The operation was simple but smart. The system processed vast batches of phone numbers and curated custom messages on the fly with links to the fake sites. These fake sites […] | Spam | ||
|
2019-05-10 09:36:02 | Launch Of HITB+CyberWeek To Drive A Cyber Smart World. (lien direct) | Hack In The Box (HITB), known for its cutting-edge technical talks and trainings in computer security, is launching its biggest global event to be held in Abu Dhabi, UAE from 12-17 October 2019. HITB+CyberWeek will bring together the world's top thinkers and cyber security experts to share their latest knowledge, ideas and techniques among security […] | |||
|
2019-05-09 10:23:02 | C-level executives increasingly and proactively targeted by social breaches. (lien direct) | C-level executives – who have access to a company's most sensitive information, are now the major focus for social engineering attacks, alerts the Verizon 2019 Data Breach Investigations Report. Senior executives are 12x more likely to be the target of social incidents, and 9x more likely to be the target of social breaches than in […] | Data Breach | ||
|
2019-05-09 10:22:04 | (Déjà vu) Over 275 Million Records Exposed by Unsecured MongoDB Database. (lien direct) | A huge MongoDB database exposing 275,265,298 records of Indian citizens containing detailed personally identifiable information (PII) was left unprotected on the Internet for more than two weeks. Security Discovery researcher Bob Diachenko discovered the publicly accessible MongoDB database hosted on Amazon AWS using Shodan, and as historical data provided by the platform showed, the huge cache […] | |||
|
2019-05-09 10:21:05 | Baltimore Severs Down After Ransomware Attack. (lien direct) | Another city has become the victim of a ransomware attack, as government officials in Baltimore have revealed that the city hall computer networks have been infected, according to CBS Baltimore. Experts have identified the ransomware used in this case as the RobbinHood variant, about which there is little information given that it is relatively new. […] | Ransomware | ||
|
2019-05-09 10:21:01 | New leaks of Iranian cyber-espionage operations hit Telegram and the Dark Web. (lien direct) | Two new leaks exposing Iranian cyber-espionage operations have been published online, via Telegram channels and websites on the Dark Web and the public Internet. One leak claims to contain operational data from the MuddyWater hacking group, while the second leak reveals information about a new group identified in official Iranian government documents as the Rana […] | |||
|
2019-05-09 10:20:03 | (Déjà vu) Northern Ireland generating cyber security knowledge and jobs. (lien direct) | The cyber security industry in Northern Ireland provides employment for nearly 1,700 people and is on course to generate more than £70m in salaries each year, according to Máire O'Neill, professor at Queen's University Belfast. Source: Computer Weekly | |||
|
2019-05-09 10:19:01 | Hackers Siphoned off Cash from Amazon Sellers over Six Months. (lien direct) | Hackers drained cash from Amazon merchant accounts over a six month period, a redacted U.K. filing from November 2018 spotted by Bloomberg reveals. In the filing, which details “extensive fraud”, without naming the sum stolen, Amazon's lawyers asked a London judge to approve account statement searches at Barclays and Prepay, where the hackers had access […] | |||
|
2019-05-09 10:19:01 | Dramatic increase in IoT-related data breaches due to unsecured devices. (lien direct) | A recent Ponemon Institute study found that there has been a dramatic increase in IoT-related data breaches specifically due to an unsecured IoT device or application since 2017. The study found these breaches account for 26 percent of incidents, up from 15 percent, although the actual number may be greater as most organisations aren't aware […] | |||
|
2019-05-09 10:18:03 | Eggheads confirm: Rampant Android bloatware a privacy and security hellscape. (lien direct) | The apps bundled with many Android phones are presenting threats to security and privacy greater than most users think. This according to a paper (PDF) from university researchers in the US and Spain who studied the pre-installed software that 214 different vendors included in their Android devices. They found that everyone from the hardware builders to mobile […] | |||
|
2019-05-08 10:15:01 | Computing in schools in \'steep decline\'. (lien direct) | An annual study by the University of Roehampton has found that fewer 16-year-olds in England are getting a computing qualification. It also said schools have cut back on the hours spent teaching the subject. In 2018, 130,000 students got a GCSE in either computer science or ICT (information and communications technology), down from 140,000 the previous […] | |||
|
2019-05-08 10:14:04 | A.I. Can Now Read Your Thoughts-And Turn Them Into Words and Images. (lien direct) | A recent article in Nature highlights a discovery that pushes the boundaries of our imaginations and challenges some of the very attributes that make us human. The piece details how artificial intelligence is creating speech by interpreting brain signals (and even offers an audio recording for a chance to hear it for yourself). It's a key advancement […] | |||
|
2019-05-08 10:09:04 | Tenable Expands Partnership With ServiceNow To Improve Vulnerability Prioritization And Remediation. (lien direct) | Tenable®, Inc., the Cyber Exposure company, today announced its enhanced integration with ServiceNow to help shared customers improve their vulnerability prioritization and remediation programs by addressing one of the most difficult challenges in cybersecurity - vulnerability overload. Prioritizing vulnerabilities with the Common Vulnerability Scoring System (CVSS) presents significant limitations since it scores the majority as […] | Vulnerability | ||
|
2019-05-07 13:24:05 | Ransomware no longer biggest cyber security threat, report finds. (lien direct) | Ransomware attacks are becoming less prevalent as cyber criminals look to news way of attacking a system, a new report has found. Instead, hackers are turning towards hidden HTTPs tunnels that appear as normal encrypted web traffic to target healthcare organisations. The Vectra 2019 Spotlight Report on Healthcare identified Internet of Things (IoT) devices; unpartitioned […] | Ransomware | ||
|
2019-05-07 13:23:02 | Surge of MegaCortex ransomware attacks detected. (lien direct) | UK cyber-security firm Sophos reported detecting a spike in ransomware attacks at the end of last week from a new strain named MegaCortex. Sophos said the ransomware appears to have been designed to target large enterprise networks as part of carefully planned targeted intrusions –in a tactic that is known as “big-game hunting.” The modus […] | Ransomware | ||
|
2019-05-07 13:21:04 | Evil Clippy Makes Malicious Office Docs that Dodge Detection. (lien direct) | Security researchers brought to life and released a wicked variant of Clippy, the recently resurfaced assistant in Microsoft Office that we all loved so much to hate, that makes it more difficult to detect a malicious macro in documents. Dubbed Evil Clippy, the tool modifies Office documents at file format level to spew out malicious versions that […] | Tool | ||
|
2019-05-07 13:20:05 | C-Suite execs and policy makers find cybersecurity technology investments essential. (lien direct) | The majority of C-Suite executives and policy makers in the United States believe investing in security software, infrastructure and emerging technologies is critical to protecting U.S. data from growing cybersecurity risks, according to a new survey. Source: Helpnetsecurity | |||
|
2019-05-07 13:20:01 | Flaws in the design of IoT devices prevent them from notifying homeowners about problems. (lien direct) | Design flaws in smart home Internet of Things (IoT) devices that allow third parties to prevent devices from sharing information have been identified by researchers at North Carolina State University. The flaws can be used to prevent security systems from signaling that there has been a break-in or uploading video of intruders. Source: Helpnetsecurity | ★★★★ | ||
|
2019-05-07 13:19:02 | Ukrainian man extradited over 100M+ ads malvertising scheme. (lien direct) | A Ukranian man has been extradited to the U.S. after being arrested last year in The Netherlands in relation to a massive online malvertising scheme. Oleksii Petrovich Ivanov, 31 was charged in December, but details of his arrest and the allegations against him have only been revealed following his extradition last week. Source: Silicon Angle | ★★★★★ | ||
|
2019-05-07 13:18:04 | The dark web is smaller, and may be less dangerous, than we think. (lien direct) | The second largest illicit market on the Dark Web, Wall Street Market (WSM) has been seized by law enforcement, and three of its alleged operators have been arrested in Germany. The arrests are the latest in a series of chaotic events surrounding the now-defunct WSM in which unknown individuals who ran the site performed an “exit scam” […] | |||
|
2019-05-07 13:18:01 | Israel Retaliates To A Cyber-Attack With Immediate Physical Action In A World First. (lien direct) | The Israel Defense Forces (IDF) has launched a physical attack on Hamas in immediate response to an alleged cyber-assault. The IDF hit a building in the Gaza Strip with an airstrike after claiming the site had been used by Hamas cyber operatives to attack Israel's cyber space. The IDF claimed it stopped the attack online […] | |||
|
2019-05-03 13:09:02 | \'Denial of service\' attack caused grid cyber disruption: DOE. (lien direct) | A recent cyber disruption to the U.S. grid involved a “denial of service condition” at a Western utility, according to a Department of Energy official. On March 5, an unidentified power company fell victim to a “cyber event” that interfered with operations but stopped short of causing blackouts, according to a DOE filing this week. […] | |||
|
2019-05-03 13:08:03 | (Déjà vu) Law enforcement seizes dark web market after moderator leaks backend credentials. (lien direct) | German police, together with Europol and law enforcement agencies from the US, the Netherlands, and Romania, have seized the servers of a dark web marketplace known as the Wall Street Market, on which users sold illegal products such as drugs, weapons, user credentials, and hacking tools, ZDNet has learned. The site’s seizure comes after a […] | |||
|
2019-05-03 13:07:04 | Trump signs executive order to bolster cyber security workforce. (lien direct) | US President Donald Trump has signed an Executive Order to “grow” and “strengthen” the nation’s cyber security capabilities. The US Government says it will set up a range of new schemes to support “a strong cyber security workforce” and “defend our country and promote quality job opportunities” in the face of 21st-century threats. One of […] | ★★ | ||
|
2019-05-03 13:06:03 | Facebook bans \'dangerous individuals\'. (lien direct) | Facebook is banning several prominent figures it regards as “dangerous individuals”. The social network accused Alex Jones, host of right-wing conspiracy website InfoWars, its UK editor Paul Joseph Watson and ex-Breitbart News editor Milo Yiannopoulos of hate speech. Louis Farrakhan, the Nation of Islam leader who has expressed anti-Semitic views, will also be excluded. Facebook […] | Guideline | ★★ | |
|
2019-05-03 13:05:03 | (Déjà vu) China uses biometrics and digital scanning \'data doors\' to track Muslim minority. (lien direct) | The Chinese government is using gate-like scanning systems to record biometric three-dimensional images, as well as smartphone fingerprints, of Muslims living in the country’s Xinjiang province. These devices are installed as security checkpoints at entries in government buildings and various public spaces, manned by police officers, and are part of the Chinese’s government’s ever-increasing mass […] | ★★ | ||
|
2019-05-02 11:59:01 | Government to answer urgent question on Huawei leak: Labour Party. (lien direct) | A British government minister will be called to parliament on Thursday to answer a question on the findings of an inquiry into the disclosure of confidential information relating to Chinese telecoms company Huawei, the opposition Labour Party said. Prime Minister Theresa May fired her defense minister Gavin Williamson on Wednesday over a leak of discussions […] | |||
|
2019-05-02 11:58:01 | Defence Secretary Gavin Williamson sacked over Huawei leak. (lien direct) | Gavin Williamson has been sacked as defence secretary following an inquiry into a leak from a top-level National Security Council meeting. Downing Street said the PM had “lost confidence in his ability to serve” and Penny Mordaunt will take on the role. The inquiry followed reports over a plan to allow Huawei limited access to […] | |||
|
2019-05-02 11:57:01 | Julian Assange, WikiLeaks founder, faces US hacking conspiracy charge. (lien direct) | WikiLeaks founder Julian Assange was arrested Thursday to face a U.S. charge that he conspired to hack military computers after Ecuador’s government ended his seven years of self-imposed exile and expelled him from its London embassy. Police in the United Kingdom dragged Assange from the front door of the embassy Thursday morning. He now faces […] | Hack | ||
|
2019-05-02 11:56:01 | Facebook settlement with U.S. may include privacy oversight: Politico. (lien direct) | Facebook Inc and the Federal Trade Commission (FTC) are negotiating a possible settlement that would require the company to create an independent privacy oversight committee and take other steps to safeguard users, Politico reported on Wednesday, citing a source. The steps would include appointing a federally-approved privacy official at the highest level of Facebook and […] | |||
|
2019-04-29 13:53:04 | Search Underway For Europe\'s Best Cybersecurity Bloggers. (lien direct) | Sponsored by Synopsys, the European Cybersecurity Blogger's Awards are back during Infosecurity Europe. The annual European Cybersecurity Blogger's Awards, sponsored by Synopsys, are back for 2019 and are now open for the first round of nominations. Infosecurity bloggers can vote for their favourite cybersecurity related blogs, Twitter and Instagram accounts until midnight on the 3rd […] | |||
|
2019-04-26 10:52:01 | Ransomware attack takes Weather Channel down. (lien direct) | The Weather Channel confirmed that it fell victim to a malicious ransomware attack. On Thursday, April 18, 2019, The Weather Channel live broadcast went offline for about an hour according to The Wall Street Journal, which the company later confirmed in a Twitter statement was due to a 'malicious software attack.' The FBI is now investigating […] | Ransomware | ||
|
2019-04-26 10:51:03 | 10 highest-paying cybersecurity jobs. (lien direct) | Demand for cybersecurity roles jumped over 7% in the last year, leading to increasing salaries, according to Indeed. In the wake of a number of high-profile breaches that leaked the personal information of millions, demand for cybersecurity professionals continues to grow, jumping up 7% from 2017 to 2018, according to a Wednesday report from job search site Indeed. […] | Guideline | ||
|
2019-04-26 10:50:05 | Public are more aware of privacy abuses. (lien direct) | Widespread abuses of privacy, biometric information and artificial intelligence mean the internet is in poor health, but growing popular awareness of its problems gives some cause for hope, says the Mozillla Foundation. Increasing levels of government censorship, more widespread abuses of biometric information and unethical use of artificial intelligence (AI) to amplify systemic injustices are all making the […] | |||
|
2019-04-26 10:50:01 | Facebook storing passwords in plain text and harvesting email contacts – again. (lien direct) | Storing passwords in plain text and harvesting email contacts have landed the firm in hot water – again. Facebook’s damage control teams must be busy these days with data scandal after scandal appearing out of the woodwork on what seems to be a monthly basis — all of which are gaining the interest of regulators […] | |||
|
2019-04-26 10:49:03 | Liam Fox calls on former BAE exec to promote UK cybersecurity exports. (lien direct) | Dr Henry Pearson will help UK companies bid for contracts with foreign governments and central banks, Sky News understands. A former executive at BAE Systems’ cybersecurity division is being drafted in by Liam Fox to aid British companies’ efforts to defend foreign governments and central banks against cyberattacks. Source: Sky News | |||
|
2019-04-26 10:48:05 | 235% year-on-year increase in attacks on businesses. (lien direct) | A surge in ransomware and trojans in the first three months of the year led to a massive 235% year-on-year increase in detected cyber-threats to businesses in Q1 2019, according to Malwarebytes. The security vendor's Cybercrime tactics and techniques report for the first quarter revealed a definite shift from consumers to businesses, which is apparently hitting SMBs with […] | Ransomware | ||
|
2019-04-25 10:38:03 | U.K. Cybersecurity Agency won\'t automatically share information about data breaches. (lien direct) | The U.K.'s cybersecurity agency said it won't automatically share information about data breaches with the country's data privacy regulator. The decision, which the National Cyber Security Centre and the Information Commissioner's Office jointly announced Thursday, is designed to prevent new data privacy laws from having a chilling effect on businesses' willingness to share information about […] | |||
|
2019-04-25 10:34:02 | (Déjà vu) Skills shortage hampering development. (lien direct) | The cyber security skills shortage is hampering Internet of Things development, according to new research from Experis. Cyber security and IoT - the two should go hand in hand. But, UK businesses are struggling to find the right blend of security skills to harness the power of the Internet of Things (IoT). This is according to the […] | |||
|
2019-04-25 10:30:00 | Latest Patch Tuesday fixes. (lien direct) | Two weeks and no sign of a proper solution, Avast and McAfee affected, too. Updated Unlucky Sophos antivirus users face a dilemma: either uninstall the software, or install April’s Windows security fixes. That’s because having both in place at the same time will bork their machines. Source: The Register | |||
|
2019-04-25 10:29:00 | Cyber-threats against business are the new black. (lien direct) | According to the latest cybercrime tactics and techniques report, published by Malwarebytes this morning, threat actors are refocusing their attack efforts on businesses rather than the consumer. Source: SC Magazine UK | Threat | ||
|
2019-04-18 18:08:02 | The Ping Is The Thing: Popular HTML5 Feature Used To Trick Chinese Mobile Users Into Joining Latest DDoS Attack. (lien direct) | By Vitaly Simonovich and Dima Bekerman DDoS attacks have always been a major threat to network infrastructure and web applications. Attackers are always creating new ways to exploit legitimate services for malicious purposes, forcing us to constantly research DDoS attacks in our CDN to build advanced mitigations. We recently investigated a DDoS attack which was […] | Threat | ||
|
2019-04-18 12:36:05 | (Déjà vu) Ecuador fights off 40 million DDoS attacks after Assange arrest. (lien direct) | The Ecuadorean government says that it has been targeted with 40 million cyber attacks in the few days since WikiLeaks founder Julian Assange was removed from the country's London embassy. Source: Engineering & Technology | |||
|
2019-04-18 12:36:01 | Malware installed on PoS systems Compromised credit card data. (lien direct) | A Point-of-Sale (PoS) data breach exposed more than 2 million debit and credit cards that belongs to the diners at Earl Enterprises. Earl Enterprises is a restaurant company owning national chains such as Earl of Sandwich, Buca di Beppo, and Planet Hollywood. Although the chain restaurant operator have not disclosed themselves how many customers got […] | Data Breach Malware | ||
|
2019-04-18 12:25:01 | (Déjà vu) Financials and Retailers at risk to New Malware Campaign. (lien direct) | The attack uses a legitimate remote access system as well as several families of malware. A new wave of cyberattacks uses legitimate remote access software to take over user accounts in financial services and retail organizations. Source: Dark Reading | Malware |
To see everything:
Our RSS (filtrered)
