Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2019-01-09 18:17:00 |
Biometrics in 2019: Increased Security or New Attack Vector? (lien direct) |
Should we pump the brakes on the roll out of biometric security to first consider whether we are creating new vulnerabilities? |
|
|
|
|
2019-01-09 17:35:05 |
The Promise and Peril of 5G (lien direct) |
As the hype at CES demonstrates, 5G is the newest and shiniest tech bauble out there: but security concerns loom. |
|
|
|
|
2019-01-09 16:16:05 |
Intel Patches High-Severity Privilege-Escalation Bugs (lien direct) |
Overall, the chip giant patched five vulnerabilities across an array of its products. |
|
|
|
|
2019-01-08 21:09:04 |
Shipping Firms Speared with Targeted \'Whaling\' Attacks (lien direct) |
Bad actors are imitating high-level executives in the shipping industry to launch BEC attacks that could lead to credential theft or worse - system compromise. |
Guideline
|
|
|
|
2019-01-08 20:49:00 |
Microsoft Issues Multiple Critical Patches for Edge Browser (lien direct) |
Microsoft January Patch Tuesday roundup includes four critical patches for its Edge browser. |
|
|
|
|
2019-01-08 18:44:00 |
Malvertising Campaign Delivers Double Whammy of Ransomware and Info-Stealing (lien direct) |
The whole attack takes place in under a minute. |
Ransomware
|
|
|
|
2019-01-08 14:48:03 |
Adobe Patches Important Bugs in Connect and Digital Edition (lien direct) |
The update comes on the heels of critical fixes in an unscheduled patch last week. |
|
|
|
|
2019-01-07 21:42:00 |
Hackers Infiltrate Early Warning Network System to Send Spam (lien direct) |
Just as ex-tropical Cyclone Penny moved toward the coast of Queensland, Australia, users of Early Warning Network reported receiving strange messages from the emergency system. |
Spam
|
|
|
|
2019-01-07 21:18:02 |
Zerodium Raises Zero-Day Payout Ceiling to $2M (lien direct) |
Apple exploits will fetch the highest price. |
|
|
|
|
2019-01-07 18:33:00 |
ThreatList: Container Security Lags Amidst DevOps Enthusiasm (lien direct) |
Security incidents are set to grow as companies lag behind in securing their containers. |
|
|
|
|
2019-01-07 17:12:03 |
Snowden\'s Attorney Urges Canada to Take in Whistleblower Helpers (Part Two) (lien direct) |
Robert Tibbo discusses being pushed to leave Hong Kong under pressure and efforts made to the Canadian government to grant refugee status to the “Snowden refugees.” |
|
|
|
|
2019-01-07 15:28:01 |
unCAPTCHA AI Cracks Google reCAPTCHAs with 90% Accuracy (lien direct) |
A proof-of-concept from the University of Maryland can defeat the audio challenges that are offered as an option for people with disabilities. |
|
|
|
|
2019-01-07 15:13:02 |
Skype Glitch Allowed Android Authentication Bypass (lien direct) |
A glitch allowed hackers to access contacts, photos and more on Android devices - simply by answering a Skype call. |
|
|
|
|
2019-01-07 12:31:01 |
Podcast: Beware These Top Security Threats in 2019 (lien direct) |
In this week's podcast, we weigh in on the top threats to watch out for in 2019 - from fraud to IoT. |
|
|
|
|
2019-01-04 19:54:00 |
Weather Channel App in a Deluge of Legal Trouble for Data Misuse (lien direct) |
The lawsuit alleges that the Weather Channel app misled users about why it was collecting their (extremely precise) geolocation data. |
|
|
|
|
2019-01-04 17:47:05 |
Marriott Revises Breach Scope to 383M Records (lien direct) |
The hotel giant said after de-duping, the breach appears to be smaller than it thought. |
|
|
|
|
2019-01-04 17:21:02 |
Phishing Tactic Hides Tracks with Custom Fonts (lien direct) |
The phishing campaign is using a new technique to hide the source code of its landing page - and stealing credentials from customers of a major U.S.-based bank. |
|
|
|
|
2019-01-04 16:23:03 |
Wide-Ranging German Doxxing Incident Hits Hundreds of Politicians (lien direct) |
It's not clear why the data release wasn't noticed earlier. |
|
|
|
|
2019-01-04 12:30:05 |
Adobe Fixes Two Critical Acrobat and Reader Flaws (lien direct) |
An unscheduled patch fixed two critical flaws that could enable arbitrary code execution. |
|
|
|
|
2019-01-03 21:50:02 |
A Dozen Flaws in Popular Mac Clean-Up Software Allow Local Root Access (lien direct) |
All of the vulnerabilities arise from improper input validations. |
|
|
|
|
2019-01-03 18:02:01 |
Dual Data Leaks of Blur, Town of Salem Impact Millions (lien direct) |
Password-manager Blur and role-playing game Town of Salem both disclosed data breaches this week that impacted a combined 10 million. |
|
|
|
|
2019-01-03 17:45:05 |
MobSTSPY Info-Stealing Trojan Goes Global Via Google Play (lien direct) |
Across six apps, the spyware managed to spread to 196 different countries. |
|
|
|
|
2019-01-03 16:25:04 |
Snowden\'s Attorney Talks Govt Harrassment of Whistleblower Helpers (Part One) (lien direct) |
Robert Tibbo discusses the challenges he and his clients face in Hong Kong as the government there targets both in a harassment campaign for aiding Edward Snowden. |
|
|
|
|
2019-01-03 14:45:04 |
Hackers Hijack Smart TVs to Promote PewDiePie (lien direct) |
The same hacking duo behind the recent "PewDiePie" printer hacks are back - this time with publicly exposed Chromecast, Google Home and smart TV systems as their targets. |
|
|
|
|
2019-01-02 20:03:03 |
Newsmaker Interview: Bruce Schneier on Physical Cyber Threats (lien direct) |
Bruce Schneier discusses the clash between critical infrastructure and cyber threats. |
|
|
|
|
2019-01-02 15:59:03 |
EU Offers Bug Bounties For 14 Open Source Projects (lien direct) |
As the bug bounty programs begin to roll out in January, security experts worry that the programs miss the mark on truly securing open source projects. |
|
|
|
|
2019-01-02 15:42:03 |
Chrome in Android Leaks Device Fingerprinting Info (lien direct) |
Attackers could craft a campaign that makes use of the device profile in order to exploit any vulnerabilities in a targeted fashion. |
|
|
|
|
2019-01-01 12:07:01 |
(Déjà vu) 2019 Malware Trends to Watch (lien direct) |
Here are 10 top malware trends to watch for in the New Year. |
Malware
|
|
|
|
2018-12-31 20:33:04 |
Threatlist: Dark Web Markets See an Evolution in Q3 (lien direct) |
Vulnerabilities, stolen credentials and an evolution of marketplaces mark the Dark Web in Q3. |
|
|
|
|
2018-12-31 16:05:03 |
Malware Attack Crippled Production of Major U.S. Newspapers (lien direct) |
Reports have linked the attack to the Ryuk ransomware. |
Malware
|
|
|
|
2018-12-31 14:34:02 |
Cryptocurrency Wallet Hacks Spark Dustup (lien direct) |
Cryptocurrency wallets Trezor and Ledger are vulnerable to a number of different type attacks, researchers say. |
|
|
|
|
2018-12-30 12:14:05 |
How Facebook Tracks Non-Users via Android Apps (lien direct) |
Facebook tracks Android users via apps, even if they aren't Facebook users. |
|
|
|
|
2018-12-29 20:25:03 |
\'Snowden Refugee\' Has No Regrets for Helping Whistleblower (lien direct) |
Woman who helped hide Edward Snowden faces uncertain future and says she has no regrets. |
|
|
|
|
2018-12-28 20:02:01 |
First Ever UEFI Rootkit Tied to Sednit APT (lien direct) |
Researcher at ESET outlines research on the first successful UEFI rootkit used in the wild. |
|
APT 28
|
|
|
2018-12-28 16:12:01 |
Guardzilla Home Cameras Open to Anyone Wanting to Watch Their Footage (lien direct) |
The home surveillance cams have hard-coded credentials. |
|
|
|
|
2018-12-28 15:24:04 |
Hijacking Online Accounts Via Hacked Voicemail Systems (lien direct) |
Proof-of-concept hack of a voicemail systems shows how it can lead to account takeovers multiple online services. |
Hack
Guideline
|
|
|
|
2018-12-28 15:14:01 |
35C3 Day One: Security, Art and Hacking (lien direct) |
Conference showcases cutting-edge cybersecurity research, hacking collectives and art. |
|
|
|
|
2018-12-27 13:52:04 |
FTC Warns of Netflix Phishing Scam Making Rounds (lien direct) |
The scam targets Netflix users and asks for payment information. |
|
|
|
|
2018-12-26 15:05:02 |
19K Orange Livebox Modems Open to Attack (lien direct) |
A simple flaw allows attackers to derive WiFi credentials with little effort. |
|
|
|
|
2018-12-26 12:35:05 |
Top 2018 Security and Privacy Stories (lien direct) |
The top cybersecurity and privacy trends that biggest impact in 2018. |
|
|
|
|
2018-12-25 12:00:00 |
2019: The Year Ahead in Cybersecurity (lien direct) |
What are the top cyber trends to watch out for in 2019? Here's what we're hearing. |
|
|
|
|
2018-12-24 17:28:01 |
Critical Bug Patched in Schneider Electric Vehicle Charging Station (lien direct) |
Vulnerability in electric car charging stations could allow attackers to compromise devices. |
Vulnerability
|
|
|
|
2018-12-24 14:38:02 |
San Diego School District Data Breach Hits 500k Students (lien direct) |
A phishing attack led to the data breach of students' social security numbers, addresses, and more. |
Data Breach
|
|
|
|
2018-12-24 12:00:02 |
2018: A Banner Year for Breaches (lien direct) |
A look back at the blizzard of breaches that made up 2018.
|
|
|
|
|
2018-12-21 17:39:00 |
FBI Denies Service to 15 DDoS-for-Hire Sites, Charges Operators (lien direct) |
The FBI has taken down several of the largest DDoS-as-a-service sites on the web. |
|
|
|
|
2018-12-21 15:32:00 |
Caribou Coffee, Bruegger\'s Bagels Bitten by Months-Long Breach (lien direct) |
Hackers targeted hundreds of bagel stores across the U.S. to devour customers' credit card info. |
|
|
|
|
2018-12-20 20:41:04 |
Huawei Router Flaw Leaks Default Credential Status (lien direct) |
It makes it simple for attackers to find devices to take over and add to botnets. |
|
|
|
|
2018-12-20 19:38:02 |
U.S. Indicts China-Backed Duo for Massive, Years-Long Spy Campaign (lien direct) |
The homeland security implications are significant: the two, working with Beijing-backed APT10, allegedly stole sensitive data from orgs like the Navy and NASA. |
|
APT 10
|
|
|
2018-12-20 15:24:05 |
Amazon Sends 1,700 Alexa Voice Recordings to a Random Person (lien direct) |
The intimate recordings paint a detailed picture of a man's life. |
|
|
|
|
2018-12-20 14:32:04 |
Facebook Admits Giving Partners Access to Messages (lien direct) |
A Facebook partnership with Netflix, Dropbox, Spotify, and Royal Bank of Canada gave them access to messages. |
|
|
|