What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-04-18 12:24:01 | NATO\'s “Live Fire” Cybersecurity Exercise won by France. (lien direct) | A French team of security experts has emerged the winner of a NATO-backed “live-fire” cybersecurity exercise, Locked Shields, that involved nearly 1,200 cybersecurity experts competing in a red team-blue team engagement to defend a fictional country, “Berylia”. Source: Computer Business Review | |||
|
2019-04-18 12:23:03 | New Start Date Announced for Pron Blcok As 15 July Following Delay. (lien direct) | All X-rated websites will require age verification from UK users from 15 July, the government has announced. Plans for the so-called 'porn block' have been postponed numerous times: it was due to start in April 2018, then at the end of 2018 and most recently on 1 April this year. Source: Huffington Post | |||
|
2019-04-17 12:51:03 | Foregenix And Tranwall Partner To Tackle Global ATM Cashout Fraud In The Banking Industry. (lien direct) | A leading UK cyber security firm has joined forces with an Australian pioneer in payment card control technology to fight against the rise of global ATM Cashout fraud. Australian-based Tranwall’s transaction security software will be offered with Foregenix’s Managed Detection and Response (MDR) and Threat Sweep. Both services provide security visibility of business critical assets […] | Threat Guideline | ||
|
2019-04-17 12:51:03 | Strengthening The Weak Link: Kaspersky Lab Improves Security Awareness With New Automated Training Platform. (lien direct) | In 2018, 59% of companies said that careless actions of employees caused a security incident.[1] With staff training planned as area to invest additional resources,[2] finding the most efficient approach remains a pain point for many IT departments. To help companies address the issue, Kaspersky Lab has developed an Automated Security Awareness Platform to make […] | |||
|
2019-04-17 10:30:04 | Apple and Google block TikTok video sharing app in India. (lien direct) | Apple and Google have removed TikTok, which allows users to create and share videos, from their app stores in India. Source: BBC News | |||
|
2019-04-17 10:30:00 | Wipro finally admits to potential breach of employee accounts by phishing attack. (lien direct) | Indian IT services company Wipro is investigating a phishing attack, which hit some staff email accounts and launched attacks on customer environments Source: Computer Weekly | |||
|
2019-04-11 12:28:03 | New Hoplight malware marks re-emergence of Lazarus Group. (lien direct) | The Lazarus Group hacking operation, thought to be controlled by the North Korean government, has a new malware toy to pitch at potential targets and the US is getting worried about it. This according to a report from US-Cert, which say that the group (also known as “Hidden Cobra”) has a new piece of spyware […] | Malware Medical | APT 38 | |
|
2019-04-11 12:27:02 | Coordinated attacks on WordPress sites impacted Mailgun. (lien direct) | Email automation and delivery service Mailgun was one of the many companies that have been hacked as part of a massive coordinated attack against WordPress sites. The attacks exploited an unpatched cross-site scripting (XSS) vulnerability in a WordPress plugin named Yuzo Related Posts. The vulnerability allowed hackers to inject code in vulnerable sites, which they […] | Vulnerability | ||
|
2019-04-11 12:26:05 | Guests\' personal data left exposed to hackers by two-thirds of hotels. (lien direct) | Two-thirds of hotel websites inadvertently leak guests' personal data to third-party companies and leave customers vulnerable to hackers, a new report has revealed. Research by cyber security firm Symantec has found the majority of hotels use booking systems that could allow scammers to access information such as mobile phone numbers and passport details. The report […] | |||
|
2019-04-11 12:26:01 | (Déjà vu) New Dragonblood Vulnerabilities affects WPA3 Wi-Fi Standard. (lien direct) | Security researchers discovered new vulnerabilities in the WPA3-Personal protocol which allow potential attackers to crack Wi-Fi network passwords and get access to the encrypted network traffic exchanged between the connected devices. According to a press release from the Wi-Fi Alliance, the devices impacted by these security vulnerabilities in the WPA3 Wi-Fi standard “allow collection of […] | |||
|
2019-04-11 12:25:03 | Home Office apologises after revealing details of hundreds of EU citizens. (lien direct) | The Home Office has apologised to hundreds of EU citizens seeking settled status in the UK after accidentally sharing their details. It blamed an “administrative error” for sending an email that revealed 240 personal email addresses – a likely breach of the Data Protection Act. The department may now have to make an apology in […] | |||
|
2019-04-10 10:55:01 | Android attacked by MuddyWater group. (lien direct) | A cyber espionage group believed to be out of Iran and known for targeting telecommunications providers and government bodies in the Middle East has added to its arsenal malware for targeting Android devices. The so-called MuddyWater hacking group, which has been in action since at least 2017, also has created new backdoor malware for spying […] | Malware | ||
|
2019-04-10 10:54:03 | Researchers discover vulnerabilities in Verizon affecting millions of devices. (lien direct) | Security researchers have discovered three vulnerabilities in a popular Verizon Fios router model that could have allowed hackers to take full control of the device. The flaws, discovered by researchers at cybersecurity firm Tenable, affect Verizon’s Fios Quantum Gateway router, which is used by millions of customers of the telecommunications giant. Verizon patched the bug […] | |||
|
2019-04-10 10:53:05 | More critical infrastructure targeted by Triton malware. (lien direct) | A highly capable malware reportedly used in a failed plot to blow up a Saudi petrochemical plant has now been linked to a second compromised facility. FireEye researchers say the unnamed “critical infrastructure” facility was the latest victim of the powerful Triton malware, the umbrella term for a series of malicious custom components used to […] | Malware | ||
|
2019-04-10 10:53:00 | Porn Site Ransomware Cybercriminal Jailed for More than Six Years. (lien direct) | Zain Qaiser, a member of an organized Russian-speaking cyber gang, responsible for “one of the most successful and closely guarded pieces of malicious software ever developed by the cybercrime community,” was jailed for more than six years in the U.K. on Tuesday. In the U.S., both the FBI and Secret Service have also made arrests […] | Ransomware | ||
|
2019-04-10 10:52:01 | Cybercriminals targeting fans that illegally download Game of Thrones. (lien direct) | Hackers are disguising viruses as illegal downloads ahead of the show’s hotly anticipated final season, which airs this week. Hundreds of thousands of people are expected to pirate the episodes so they don’t have to shell out for pricey TV packages. And it seems cyber criminals are jumping on the chance to scam viewers as […] | |||
|
2019-04-09 09:26:01 | Over 50% of Americans don\'t trust Facebook with their sensitive data in light of privacy scandals. (lien direct) | Facebook’s string of recent privacy scandals have made a dent in user trust in the company, a new study has found. In a survey administered by NBC News and the Wall Street Journal, approximately 60 percent of respondents indicated that they don’t trust Facebook with their personal information. That percentage was greatly higher than the […] | |||
|
2019-04-09 09:23:00 | The Infamous Flame Malware has remerged in a new form. (lien direct) | Researchers at Alphabet's Chronicle Security say they have discovered what appears to be a new version of Flame malware that popped up in 2014 and likely remained active until 2016. The finding shows that instead of killing their operation, the attackers simply re-tooled their spy kit and added strong encryption to make it harder to […] | Malware | ||
|
2019-04-09 09:20:01 | Home Office apologises for Windrush data breach. (lien direct) | The Home Office has admitted breaching data protection rules when it launched the Windrush compensation scheme. The department sent information to Windrush migrants in a way that meant their email addresses could be seen by other people. An internal review has been launched and the matter has been referred to the Information Commissioner. Immigration Minister […] | |||
|
2019-04-09 09:17:04 | EU releases encourages ethical AI development with new guidelines. (lien direct) | Today, the European Commission released guidelines calling for “trustworthy AI.” According to the EU, AI should adhere to the basic ethical principles of respect for human autonomy, prevention of harm, fairness and accountability. The guidelines include seven requirements — listed below — and call particular attention to protecting vulnerable groups, like children and people with […] | |||
|
2019-04-08 12:45:02 | Malware spreads through Google Play Store affecting millions of devices. (lien direct) | Android fans are being warned about the re-emergence of a malware that's infected millions of devices and a Google Play Store threat. Android is one of the most used pieces of software in the world with over two billion people using it each and every month. The Google mobile OS has been subject to some […] | Malware | ||
|
2019-04-04 12:59:02 | Stalkerware was installed in 58,000 Android users phones last year. (lien direct) | Over 58,000 Android users had “stalkerware” installed on their phones last year, researchers from Kaspersky Lab have revealed today. Of these, more than 35,000 had no idea about stalkerware being present on their Android devices until they installed Kasperksy’s mobile antivirus, which flagged the infection. Kaspersky’s findings come to confirm a growing trend in the […] | |||
|
2019-04-04 12:58:02 | Healthcare security: malware can add or remove cancerous nodes in CT scans. (lien direct) | Researchers are presenting with a malware that not only modifies CT scan results, it also does them with such realism that it manages to fool professionals into misdiagnosing the presence or absence of cancer. A blind study that involved 70 altered CT lung scans showed proved that both radiologists and a lung-cancer screening software were […] | Malware | ||
|
2019-04-04 12:57:01 | The cost of a breach keeps going up. (lien direct) | The number of medium and large businesses with cyber insurance policies is increasing, as a new government report revealed the average cost of a cyber breach increased by a third. The Cyber Breaches Survey 2019 found where an attack resulted in the loss of data or assets, the average cost rose by more than £1,000 […] | |||
|
2019-04-04 12:56:02 | High school WiFi hacked by students trying to avoid a test. (lien direct) | Two Secaucus, N.J., high school freshmen have been accused of allegedly knocking their school's WiFi system offline possibly using a malware as a service deal to create the situation. The two 14-year-old boys were arrested last week and charged with computer criminal activity and conspiracy to commit computer criminal activity, according to CBS New York. […] | Malware | ||
|
2019-04-04 12:31:05 | Bashlight\'s is back, and in better shape. (lien direct) | The Bashlight IoT malware has been updated with cryptomining and backdoor commands targeting WeMo devices.The malware initially gained notoriety for its use in large scale DDoS attacks in 2014 but has recently switched over to infecting IoT devices and has even been known to exploit Shellshock to gain a foothold into vulnerable devices. Bashlight only […] | Malware | ||
|
2019-04-04 12:30:05 | (Déjà vu) Necurs botnet suspected of spreading 10 malware families with US web servers. (lien direct) | Researchers have uncovered over a dozen servers, unusually registered in the United States, which are hosting ten different malware families spread through phishing campaigns potentially tied to the Necurs botnet. On Thursday, researchers from Bromium said they have monitored scams connected to this infrastructure during the May 2018 to March 2019 time period. Five families […] | Malware | ||
|
2019-04-04 12:29:02 | (Déjà vu) Windows 10: glitch messages look like malware and scare users. (lien direct) | A configuration mistake in the Microsoft News app caused Window 10 users to receive strange test notifications, which caused them to think they were infected. Last Friday, users on Reddit began posting about strange notifications they were receiving in the Windows 10 action center. These notifications indicated they were from the Microsoft News app, but […] | Malware | ||
|
2019-04-04 12:28:03 | (Déjà vu) Python-based bot scanner can help criminals spread malware. (lien direct) | Code and infrastructure from two known malware families have been observed with a new threat named Xwo, which helps operators of the MongoLock ransomware discover unprotected web services reachable over the internet. MongoLock targets unprotected MongoDB databases, wiping them from the server and demanding a ransom to restore them. Xwo is a Python-based bot scanner […] | Ransomware Malware Threat | ||
|
2019-04-04 12:27:00 | Facebook at it again: millions of user records stored on public server. (lien direct) | Security researchers have found hundreds of millions of Facebook user records sitting on an inadvertently public storage server. The two batches of user records were collected and exposed from two third-party companies, according to researchers at security firm UpGuard, who found the data. In the researchers' write-up, Mexico-based digital media company Cultura Colectiva left more […] | |||
|
2019-04-03 09:47:05 | Technical error cause Mark Zuckerberg\'s post to be permanently deleted from his Facebook profile. (lien direct) | The public posts made by Facebook's CEO Mark Zuckerberg on his personal Facebook profile have been deleted; it included some of the critical updates and important announcements made by the company. All the information shared by Zuckerberg in the year 2007 and 2008 has also vanished. On being enquired, a spokesperson of Facebook said that […] | ★★★★ | ||
|
2019-04-03 09:45:05 | Signal and Telegram users targeted in homograph phishing campaign. (lien direct) | Homograph attacks are not just an issue for web browsers – they have been shown to cause headaches for users of mobile messaging apps, too. Researchers at Blaze Security have demonstrated bugs against Signal, Telegram, and the Tor browser that might be used as part of social engineering attacks – pushing users towards hacker-controlled sites […] | ★★★ | ||
|
2019-04-03 09:35:03 | Fans of Swedish Youtuber PewDiePie spread malware to increase channel subscriptions. (lien direct) | PewDiePie, the famous Swedish Youtuber, is no stranger to controversy. This time he is in the news again for the wrong reason after a user, who claims to be his fan, released ransomware with a note that reads 'Subscribe to PewDiePie'. According to The Independent, the ransomware PewCrypt is designed in such a way that […] | Ransomware Malware | Uber | ★★★★ |
|
2019-04-03 09:33:04 | 1.3 Georgia Tech students and staff records exposed in data leak. (lien direct) | A Georgia Tech database breach has exposed the personal information of up to 1.3 million current and former faculty members, students, staff and student applicants, according to school officials. Georgia Tech announced yesterday that a central database was accessed by an unknown outside entity through a web application, though it is unclear exactly who was […] | ★★ | ||
|
2019-04-03 09:31:05 | 30 financial apps hacked with reverse engineering. (lien direct) | A white hat hacker reverse engineered 30 mobile financial applications and found sensitive data buried in the underlying code of nearly all apps examined. With this information a hacker could, for example, recover application programming interface (API) keys and use them to attack the vendor's backend servers and comprise user data, researchers said. The apps […] | ★★ | ||
|
2019-04-03 09:30:05 | (Déjà vu) Spoofed Verizon support service website steals customers credentials. (lien direct) | Phishing campaigns, some launched as recently as March, aimed at stealing credentials from Verizon mobile customers by spoofing the company’s support service. Being mobile-focused and using an identifier for an official service from Verizon is what prompted researchers to categorize it as sophisticated above average. The link delivering the phishing kit includes the abbreviation ‘ecrm,’ […] | ★★ | ||
|
2019-04-03 09:28:05 | (Déjà vu) Facebook asks newly-registered users to disclose their email password. (lien direct) | Facebook has been caught practicing the worst ever user-verification mechanism that could put the security of its users at risk. Generally, social media or any other online service asks users to confirm a secret code or a unique URL sent to the email address they provided for the account registration. However, Facebook has been found […] | ★★ | ||
|
2019-04-02 15:34:02 | Securonix Selected As SC Media Europe 2019 \'Best SIEM Solution\' Award Finalist. (lien direct) | Securonix, the market leader in next-generation security information and event management (SIEM), has been recognised as a Award finalist in the 'Best SIEM Solution' category for the 2019 SC Awards Europe. Securonix Next-Generation SIEM is reinventing the SIEM market by transforming big data into actionable security intelligence, leveraging machine learning to power advanced threat detection, […] | Threat Guideline | ★★ | |
|
2019-04-02 12:03:00 | Game of Thrones pirated files infected with malware. (lien direct) | If you plan to watch the upcoming final season of Game of Thrones (GoT), you might want to think twice before downloading the show illegally. A study by cybersecurity firm Kaspersky Lab has shown that cybercriminals are actively using pirated content to spread malware, and GoT files are the most at risk. Even though the […] | |||
|
2019-03-29 12:20:02 | Banking Trojan Has The Potential To Target Over 100 Banking Apps. (lien direct) | Group-IB researchers uncovered the malware that casts a wide net and is complete with fully automated features designed to steal both fiat and crypto currency from user accounts by leveraging a device's Accessibility Service mode to bypass security bank features. Gustuff has the potential to target users of more than 100 banking apps and is […] | Malware | ★★ | |
|
2019-03-29 12:19:04 | South Korean Phishing Campaign Named “Soula” Steals Credentials Through Java Script Injection. (lien direct) | Trend Micro researchers have been following a new type of a phishing campaign that utilizes the watering hole technique to acquire login credentials from victims. Given the name “Soula”, this new campaign was found to target popular South Korean websites that are among the top 300 most visited in the country, and thus are considered […] | ★★ | ||
|
2019-03-29 12:18:05 | Don\'t Change Your Date of Birth on Twitter to 2007. (lien direct) | Tweets have been circulating saying that you can trigger a cool new Twitter feature – colored tweets in a sort-of rainbow theme – simply by changing your birthday to 2007. Easter eggs have a bit of a cult following with programmers and technical users – Microsoft Excel famously included hidden games until the company's Trustworthy […] | ★★★ | ||
|
2019-03-29 12:17:05 | Office Depot Settles Lawsuit Over Scam to Sell Malware Protection Software. (lien direct) | The fear of being hacked was allegedly the hook used by Office Depot, its subsidiary OfficeMax and a California-based tech-support vendor to dupe customers into paying for computer repair and technical services they didn’t need, according to the Federal Trade Commission. Although not admitting any wrongdoing, Office Depot and California-based Support.com have agreed to pay […] | Malware | ||
|
2019-03-29 12:16:00 | Government Request Traceability of Whatsapp Messages. (lien direct) | The government wants to probe into the sources of inciting and provocative messages and posts which have led to violence across the nation, incidents of lynching and various other controversial issues. In order to do so, it has proposed certain guidelines that would require Whatsapp to unveil information regarding the origins of messages. As doing […] | |||
|
2019-03-29 12:05:02 | Australia Gets Serious About Election Security. (lien direct) | The Joint Standing Committee on Electoral Matters is tasked with overseeing the Australian electoral system, specifically the activities of the Australian Electoral Commission (AEC). Its Status Report [PDF], released on Friday, follows the November publication of the Report on the conduct of the 2016 federal election and matters related thereto [PDF], which made 31 recommendations […] | ★★ | ||
|
2019-03-29 12:01:03 | Magento Issues Patches for Critical SQL Injection Vulnerability. (lien direct) | Magento yesterday released new versions of its content management software to address a total of 37 newly-discovered security vulnerabilities. Owned by Adobe since mid-2018, Magento is one of the most popular content management system (CMS) platform that powers 28% of websites across the Internet with more than 250,000 merchants using the open source e-commerce platform. […] | ★★ | ||
|
2019-03-29 12:00:02 | (Déjà vu) Guilty Plea from ex-NSA Contractor Who Stole Classified Data Over 20 Years. (lien direct) | A former National Security Agency contractor-who stole an enormous amount of sensitive information from the agency and then stored it at his home and car for over two decades-today changed his plea to guilty. The theft was labeled as the largest heist of classified government material in America’s history. Harold Thomas Martin III, a 54-year-old […] | ★★★★★ | ||
|
2019-03-28 15:55:04 | Attacks on industrial control systems are increasing. (lien direct) | Malicious cyber activity increased to almost half of the industrial infrastructure protected by Kaspersky Lab in 2018, but the UK is among the most secure countries, the security firm reports. Malicious activity targeting industrial control systems (ICS) affected 47.2% of computers protected by security firm Kaspersky Lab in 2018, up from 44% in 2017. Source: ComputerWeekly | |||
|
2019-03-28 15:55:00 | Cisco routers exposed to hacks. (lien direct) | Cisco acknowledged yesterday that it bungled a crucial patch for a vulnerability in two router models. The company’s shoddy initial patches allowed hackers to continue attacks throughout the past two months.The security flaws impact Cisco RV320 and RV325 WAN VPN routers, two models popular with internet service providers and large enterprises. Source: ZDNet | Vulnerability | ||
|
2019-03-28 15:54:03 | Car park of Canadian Domain Registration Authority hit by Ransomware. (lien direct) | The parking garage used by employees of the Canadian Internet Registration Authority (CIRA) allowed people to park for free after computer systems were infected by ransomware. CIRA is a not-for-profit organization that manages the .CA country code top-level domain (ccTLD) and represents the Canadian domains internationally. Source: BleepingComputer |
To see everything:
Our RSS (filtrered)
