What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-11-09 14:09:04 | Breach and Attack Simulation Firm SafeBreach Doubles Funding With $53.5M Series D Round (lien direct) | Sunnyvale, CA-based breach and attack simulation firm SafeBreach has raised $53.5 million in a Series D funding round led by Sonae IM and Israel Growth Partners (IGP). Sands Capital, Leumi Partners and existing investors participated, and the funding includes strategic investment from ServiceNow. | |||
|
2021-11-09 13:07:10 | Critical Flaw in Sitecore Experience Platform Exploited in Attacks (lien direct) | Adversaries have started targeting a critical remote code execution vulnerability in Sitecore Experience Platform (Sitecore XP), the Australian Cyber Security Center (ACSC) warns. | Vulnerability | ||
|
2021-11-09 12:16:29 | OpenText Acquires Email Security Firm Zix for $860 Million (lien direct) | Enterprise information management solutions provider OpenText on Monday announced the acquisition of email security company Zix for $860 million. | |||
|
2021-11-09 11:13:05 | Mexico Arrests Suspect in Pegasus Spyware Case (lien direct) | Mexican prosecutors said Monday that they had detained a man accused of spying on a journalist using the Pegasus software at the center of a global spyware scandal. | |||
|
2021-11-08 22:05:36 | Robinhood Hacked, Millions of Names, Emails Stolen (lien direct) | 
Hacker socially engineered customer support employee to obtain millions of names and emails, demanded extortion payment
|
|||
|
2021-11-08 19:47:28 | U.S. Charges Two Suspected Major Ransomware Operators (lien direct) | Two suspected criminal hackers have been charged in the United States in connection with a wave of ransomware attacks, including one that led to the temporary shutdown of the world's largest meat processor and another that snarled businesses around the globe on the Fourth of July weekend, U.S. | Ransomware | ||
|
2021-11-08 18:41:38 | US Treasury Sanctions Crypto Exchange in Anti-Ransomware Crackdown (lien direct) | The U.S. government's aggressive anti-ransomware crackdown is showing no signs of slowing down with the Treasury Department announcing sanctions against a cryptocurrency exchange and new multi-million-dollar rewards for information on the REvil ransomware group. | Ransomware | ||
|
2021-11-08 17:53:01 | Global Companies Compromised via ADSelfService Plus Exploitation (lien direct) | At least nine global organizations have been compromised in attacks targeting a recent vulnerability in ManageEngine ADSelfService Plus, according to a warning from researchers at Palo Alto Networks. | Vulnerability | ||
|
2021-11-08 17:27:54 | US Government Contractor EWA Discloses Data-Theft Breach (lien direct) | U.S. government defense contractor Electronic Warfare Associates (EWA) has started sending out notifications to warn of a data breach that resulted in the theft of Personally Identifiable Information (PII). In early August 2021, the company said a threat actor was able to compromise the EWA email system following a successful phishing attack. | Data Breach Threat | ||
|
2021-11-08 17:21:08 | Drata Scores $100M Investment for Security and Compliance Automation (lien direct) | Valuations for early-stage cybersecurity startups are continuing to soar with news this week that Drata banked $100 million in a funding deal that values the company north of $1 billion. | |||
|
2021-11-08 16:45:37 | Europol Announces Arrests of 7 People Linked to REvil, GandCrab Ransomware (lien direct) | Europol on Monday announced that law enforcement agencies in several countries have arrested a total of seven people allegedly linked to REvil and GandCrab ransomware operations. | Ransomware | ||
|
2021-11-08 15:41:02 | SCYTHE Banks $10M Investment for Adversary Simulation (lien direct) | SCYTHE, a software company building technology for adversary simulation, on Monday announced it had secured $10 million in venture capital funding to speed up expansion plans. | |||
|
2021-11-08 15:19:40 | McAfee to be Taken Private in $14 Billion Private Equity Deal (lien direct) | Cybersecurity firm McAfee Corp. (NASDAQ:MCFE) has agreed to be acquired by a group of private equity firms in a deal valued at more than $14 billion, the company announced Monday. | |||
|
2021-11-08 14:55:22 | (Déjà vu) Cybersecurity M&A Roundup for First Week of November 2021 (lien direct) | 
A dozen cybersecurity-related acquisitions were announced in the first week of November 2021.
|
|||
|
2021-11-08 12:44:32 | Six Arrested for Roles in Clop Ransomware Operation (lien direct) | Six individuals allegedly associated with the Clop ransomware operation were arrested in a global law enforcement operation, Interpol announced. Authorities in South Korea, Ukraine, and the United States, under Interpol's coordination, were involved in the 30-month investigation dubbed Operation Cyclone. | Ransomware | ||
|
2021-11-08 12:12:37 | Report: 6 Palestinian Rights Activists Hacked by NSO Spyware (lien direct) | Security researchers disclosed Monday that spyware from the notorious Israeli hacker-for-hire company NSO Group was detected on the cellphones of six Palestinian human rights activists, half affiliated with groups that Israel's defense minister controversially claimed were involved in terrorism. | |||
|
2021-11-08 12:03:25 | Experts Analyze Proposed Bill Allowing Private Entities to \'Hack Back\' (lien direct) | If the average American has the right to defend his home by striking back, why can he or she not defend networks in a similar fashion? | |||
|
2021-11-07 10:33:10 | The AP Interview: Justice Dept. Conducting Cyber Crackdown (lien direct) | The Justice Department is stepping up actions to combat ransomware and cybercrime through arrests and other actions, its No. 2 official told The Associated Press, as the Biden administration escalates its response to what it regards as an urgent economic and national security threat. | Ransomware | ||
|
2021-11-05 17:39:06 | Babuk Ransomware Seen Exploiting ProxyShell Vulnerabilities (lien direct) | A newly observed Babuk ransomware campaign is targeting ProxyShell vulnerabilities in Microsoft Exchange Server, according to security researchers at Cisco Talos. | Ransomware | ||
|
2021-11-05 17:24:49 | \'Critical Severity\' Warning: Malware Found in Widely Deployed npm Packages (lien direct) | Software supply chain security jitters escalated again Friday with new “critical severity” warnings about malware embedded in two npm package managers widely used by some of the biggest names in tech. | Malware | ||
|
2021-11-05 17:04:34 | Device Exploits Earn Hackers Over $1 Million at Pwn2Own Austin 2021 (lien direct) | The Zero Day Initiative's Pwn2Own Austin 2021 hacking contest has come to an end, with participants earning a total of more than $1 million for their router, printer, NAS device, smartphone, and smart speaker zero-day exploits. | |||
|
2021-11-05 15:45:09 | FBI: Scams Involving Cryptocurrency ATMs and QR Codes on the Rise (lien direct) | The Federal Bureau of Investigation (FBI) this week issued an alert on fraud schemes that direct victims to use cryptocurrency ATMs and Quick Response (QR) codes to make payment transactions. | |||
|
2021-11-05 14:58:45 | Researchers Release PoC Tool Targeting BrakTooth Bluetooth Vulnerabilities (lien direct) | The United States Cybersecurity and Infrastructure Security Agency (CISA) this week warned on proof-of-concept (PoC) code for the BrakTooth Bluetooth vulnerabilities now being publicly available. | Tool | ★★★ | |
|
2021-11-05 13:48:21 | Hungarian Official: Government Bought, Used Pegasus Spyware (lien direct) | A senior official in Hungary's governing party acknowledged for the first time on Thursday that the government purchased a powerful spyware tool, which was allegedly used to target journalists, businesspeople and an opposition politician. | |||
|
2021-11-05 13:00:03 | (Déjà vu) Industry Reactions to New \'Trojan Source\' Attack: Feedback Friday (lien direct) | Researchers from the University of Cambridge have identified a new attack method that abuses Unicode to stealthily inject vulnerabilities into code. | |||
|
2021-11-04 23:17:12 | US Offers $10 Million Bounty in Hunt for DarkSide Ransomware Operators (lien direct) | US Goverment Offering $10 Million Reward for Data on DarkSide Ransomware Operators | Ransomware | ||
|
2021-11-04 19:03:09 | Cisco Plugs Critical Holes in Catalyst PON Enterprise Switches (lien direct) | Enterprise networking giant Cisco has released patches for multiple vulnerabilities across its product portfolio, including critical security defects in Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT) and Policy Suite. | |||
|
2021-11-04 16:42:31 | Linux Foundation Fixes \'Dangerous\' Code Execution Kernel Bug (lien direct) | Researchers are calling attention to a newly discovered security defect in a kernel module that ships with all major Linux distributions, warning that remote attackers can exploit the bug to take complete control of a vulnerable system. | |||
|
2021-11-04 15:41:23 | Mozilla Rolling Out \'Site Isolation\' With Release of Firefox 94 (lien direct) | Mozilla this week announced that Firefox 94 is bringing Site Isolation to all users, along with patches for over a dozen vulnerabilities, including seven that feature a high severity rating. | |||
|
2021-11-04 14:55:50 | Ukraine Names Russian FSB Officers Involved in Gamaredon Cyberattacks (lien direct) | Ukraine's security service, the SBU, on Thursday revealed the identities of five individuals allegedly involved in cyberattacks attributed to a Russia-linked threat group named Gamaredon. | Threat | ||
|
2021-11-04 14:40:52 | Engaging Customers on an Uncertain Journey (lien direct) | While every company has unique policies, politics, and market pressures, the technical challenges are often shared among many | |||
|
2021-11-04 12:41:54 | House Passes Two Bills to Improve Small Business Cybersecurity (lien direct) | The House of Representatives this week passed two bills whose goal is to boost small business cybersecurity in the United States. | |||
|
2021-11-04 12:06:51 | Compliance-as-a-Service Platform Laika Raises $35 Million (lien direct) | Compliance-as-a-Service platform Laika this week announced that it has raised $35 million in Series B funding, which brings the total raised by the company to $48 million. The new funding round was led by J.P. Morgan Growth Equity Partners. All previous investors participated as well, including Canapi, Dashfund, Bain Capital Ventures, Nyca, and ThirdPrime. | |||
|
2021-11-04 11:29:29 | Twitter Hacker Charged Over Theft of $784,000 in Cryptocurrency (lien direct) | A British national has been charged in the United States over his role in a scheme that involved the use of SIM swapping to steal roughly $784,000 worth of cryptocurrency. | |||
|
2021-11-04 01:09:53 | US Puts New Controls on Israeli Spyware Company NSO Group (lien direct) | The Biden administration announced Wednesday it is putting new export limits on Israel's NSO Group, the world's most infamous hacker-for-hire company, saying its tools have been used to “conduct transnational repression.” | |||
|
2021-11-03 16:14:38 | Application Security Startup Wabbi Raises Over $2 Million in Seed Funding (lien direct) | Female-founded application security startup Wabbi on Tuesday announced raising more than $2 million in an oversubscribed seed funding round. The funding round was led by Mendoza Ventures, with participation from Cisco Investments and several other companies and angel investors. Wabbi plans on using the money to scale its team. | |||
|
2021-11-03 14:49:54 | BlackMatter Ransomware Gang Announces Shutdown (lien direct) | The cybercriminals behind the BlackMatter Ransomware-as-a-Service (RaaS) operation this week announced plans to close shop. | Ransomware | ||
|
2021-11-03 14:09:46 | (Déjà vu) Microsoft Announces New Endpoint Security Solution for SMBs (lien direct) | Microsoft on Tuesday announced the upcoming availability of Microsoft Defender for Business, an enterprise-grade endpoint security solution catered for small and medium-sized businesses (SMBs). | |||
|
2021-11-03 13:30:04 | CISA Lists 300 Exploited Vulnerabilities That Organizations Need to Patch (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday released a list of roughly 300 vulnerabilities that are known to have been exploited, and it has issued a binding operational directive (BOD) instructing government organizations to patch these security flaws. | |||
|
2021-11-03 11:53:48 | Iran Says Fuel System Running Again After Cyber Attack (lien direct) | Iran's fuel distribution system resumed full operation on Tuesday, a week after it was paralysed by a cyber attack, the authorities said. | |||
|
2021-11-03 11:36:53 | Another Cybersecurity Awareness Month Has Passed and Little Has Changed (lien direct) | Last month we celebrated the 18th year of the Cybersecurity Awareness Month, which was previously known as National Cybersecurity Awareness Month. Under the slogan “Do Your Part. | |||
|
2021-11-03 11:29:42 | Printers Hacked for First Time at Pwn2Own (lien direct) | The Zero Day Initiative's Pwn2Own Austin 2021 hacking competition kicked off on Tuesday and, for the first time in the event's history, participants earned rewards for hacking printers. | |||
|
2021-11-03 09:46:52 | Many GitLab Servers Affected by Actively Exploited Flaw Patched Six Months Ago (lien direct) | An actively exploited remote code execution vulnerability in GitLab continues to affect roughly 30,000 Internet-facing installations six months after patches were released, Rapid7 says. | Vulnerability | ||
|
2021-11-02 18:32:55 | FBI: Ransomware Attacks Exploit Financial Business Events (lien direct) | The Federal Bureau of Investigation (FBI) this week issued an industry-wide notification to raise awareness about ransomware operators leveraging information on mergers, acquisitions and stock valuations to launch extortion attacks on businesses. | Ransomware | ||
|
2021-11-02 18:23:36 | Hackers Release Israeli LGBTQ Dating Site Details (lien direct) | Israel's justice ministry said Tuesday Google had blocked sites of a hacking group that leaked user details of an Israeli LGBTQ dating site, an attack some security experts blamed on Iran. | |||
|
2021-11-02 17:51:17 | Facebook to Shut Down Face-Recognition System, Delete Data (lien direct) | Facebook said it will shut down its face-recognition system and delete the faceprints of more than 1 billion people. | |||
|
2021-11-02 17:03:52 | Signal Working on Improving Anti-Spam Capabilities (lien direct) | Privacy-focused communication platforms Signal is sharing information on the improvements it has made to its spam-prevention capabilities. The task of keeping spam out of user's inboxes, Signal says, is more difficult compared to other messaging services, because the company does not have access to the contents of messages, and has to fight spam without social graphs. | Spam | ||
|
2021-11-02 16:05:05 | IBM Security to Acquire ReaQta for xDR Push (lien direct) | IBM Security on Tuesday announced plans to acquire ReaQta, an early-stage European startup in the red-hot autonomous threat detection and response business. Financial terms of the transaction were not released. ReaQta, based in the Netherlands, raised an undisclosed Series A funding round earlier this year. | Threat | ||
|
2021-11-02 15:59:37 | FBI Publishes IOCs for Hello Kitty Ransomware (lien direct) | The Federal Bureau of Investigation (FBI) has published a flash alert to share details on the tactics, techniques and procedures (TTPs) and indicators of compromise (IOCs) associated with the Hello Kitty ransomware, which is also known as FiveHands. | Ransomware | ||
|
2021-11-02 15:30:30 | Kaspersky Patches Vulnerability That Can Lead to Unbootable System (lien direct) | Microsoft Phishing Messages Come From Kaspersky Email Address Kaspersky published two advisories on Monday to warn customers about a vulnerability that can lead to unbootable systems and a phishing campaign involving messages sent from a Kaspersky email address. | Vulnerability Guideline |
To see everything:
Our RSS (filtrered)
