What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-03-03 12:09:28 | Microsoft account hijack vulnerability earns bug bounty hunter $50,000 (lien direct) | The researcher says he could have abused the bug to hijack Microsoft accounts. | Vulnerability | ||
|
2021-03-03 10:44:18 | Google patches actively exploited Chrome browser zero-day vulnerability (lien direct) | Upgrading your Chrome build as quickly as possible is recommended. | Vulnerability | ||
|
2021-03-03 09:42:32 | SEC charges group for alleged pump-and-dump Airborne Wireless stock scam (lien direct) | SEC claims investors were defrauded out of $45 million. | |||
|
2021-03-02 13:00:00 | ObliqueRAT Trojan now lurks in images on compromised websites (lien direct) | The malware has been upgraded in new campaigns across Asia. | Malware | ★★★ | |
|
2021-03-02 11:18:03 | Oxfam Australia supporters embroiled in new data breach (lien direct) | Personal data, including partial payment information, is thought to be included. | Data Breach | ||
|
2021-03-02 10:30:32 | Google addresses customer data protection, security in Workspace (lien direct) | Google has also introduced new Workspace features as we continue to work from home. | |||
|
2021-03-02 09:08:06 | Twitter\'s new strike system will target prolific COVID-19 fake information spreaders (lien direct) | Twitter says repeat offenders will be booted from the platform. | |||
|
2021-03-01 20:12:58 | SolarWinds security fiasco may have started with simple password blunders (lien direct) | Many things came together to crack SolarWinds, but it may all have started with that classic mistake of leaking a lousy password. | |||
|
2021-03-01 14:00:03 | Hackers exploit websites to give them excellent SEO before deploying malware (lien direct) | Climbing up Google's ranks is key to this new technique. | Malware | ||
|
2021-03-01 13:50:00 | Tether faces 500 Bitcoin ransom: We are \'not paying\' (lien direct) | The cryptocurrency firm says “forged” documents attempting to undermine the ecosystem as a whole are also circulating. | |||
|
2021-03-01 11:06:19 | Judge approves $650m settlement for Facebook users in privacy, biometrics lawsuit (lien direct) | Facebook users represented in the lawsuit may soon receive hundreds of dollars each. | |||
|
2021-03-01 10:04:26 | Minion privilege escalation exploit patched in SaltStack Salt project (lien direct) | The bug permitted attackers to perform privilege escalation attacks in the automation software. | |||
|
2021-03-01 09:09:18 | Businessman charged with intent to steal General Electric\'s secret silicon technology (lien direct) | Trade secrets worth millions on the market were the goal of the conspiracy. | |||
|
2021-02-26 18:36:35 | Chrome will soon try HTTPS first when you type an incomplete URL (lien direct) | If users type an URL and they forget to add the HTTP or HTTPS prefix, Chrome will soon use HTTPS by default. | |||
|
2021-02-26 16:16:00 | Berlin resident jailed for threatening to bomb NHS hospital unless Bitcoin ransom was paid (lien direct) | The bomb threats escalated over the course of six weeks to include Black Lives Matter protests and threats on UK politicians. | |||
|
2021-02-26 13:09:06 | Go malware is now common, having been adopted by both APTs and e-crime groups (lien direct) | There's been a 2,000% increase of new malware written in Go over the past few years. | Malware | ||
|
2021-02-26 12:26:00 | Oxford University lab with COVID-19 research links targeted by hackers (lien direct) | Compromised machines included those used in sample analysis. | |||
|
2021-02-26 08:25:44 | TikTok agrees to pay $92 million to settle teen privacy class-action lawsuit (lien direct) | The video platform was accused of collecting biometric data without consent. | |||
|
2021-02-25 17:47:50 | Chinese cyberspies targeted Tibetans with a malicious Firefox add-on (lien direct) | The Chinese hacking group used the malicious add-on to collect Gmail and Firefox data from their victims. | |||
|
2021-02-25 14:04:47 | This chart shows the connections between cybercrime groups (lien direct) | CrowdStrike puts together a list of connections and how cybercrime groups cooperate with each other. | |||
|
2021-02-24 21:16:14 | More than 6,700 VMware servers exposed online and vulnerable to major new bug (lien direct) | Proof-of-concept exploit code has been published online earlier today, and active scans for vulnerable VMware systems have been detected already. | |||
|
2021-02-24 15:13:18 | Ukraine reports cyber-attack on government document management system (lien direct) | Ukrainian officials blame "one of the hacker spy groups from the Russian Federation." | |||
|
2021-02-24 12:24:00 | This botnet is abusing Bitcoin blockchains to stay in the shadows (lien direct) | BTC transactions are being used to obfuscate malicious activity. | |||
|
2021-02-24 11:02:23 | Start Options, B2G founder indicted for alleged digital currency, investor fraud (lien direct) | The individual has been accused of being part of a scheme to defraud "hundreds" of investors. | |||
|
2021-02-24 05:01:03 | COVID pandemic causes spike in cyberattacks against hospitals, medical companies (lien direct) | IBM says attack rates have doubled against medical entities since the pandemic began. | |||
|
2021-02-23 23:28:16 | Airplane maker Bombardier data posted on ransomware leak site following FTA hack (lien direct) | Bombardier is the latest in a long string of hacks caused by companies using old versions of the Accellion FTA file-sharing server. | Ransomware Hack | ||
|
2021-02-23 17:26:06 | Flash version distributed in China after EOL is installing adware (lien direct) | Security researchers say the Chinese Flash app is behaving lide adware and opening browser windows to show ads. | |||
|
2021-02-23 17:00:00 | Google\'s Password Checkup feature coming to Android (lien direct) | The Password Checkup feature will tell Android users when one of their passwords has been exposed in an online data breach. | |||
|
2021-02-23 14:00:03 | Qualcomm, Sophos ink deal to secure 5G Snapdragon PCs (lien direct) | Sophos will provide endpoint protection for always on, always connected PCs. | |||
|
2021-02-23 10:29:07 | IBM issues patches for Java Runtime, Planning Analytics Workspace, Kenexa LMS (lien direct) | The worst bugs could lead to malicious code execution and application crashes. | Guideline | ||
|
2021-02-23 09:25:22 | Keybase patches bug that kept pictures in cleartext storage on Mac, Windows clients (lien direct) | Keybase failed to wipe clean cached pictures even after deletion. | |||
|
2021-02-22 21:19:51 | FireEye links 0-day attacks on FTA servers & extortion campaign to FIN11 group (lien direct) | FireEye: Hackers breached companies running FTA servers, stole private files, and are now publishing data on the Clop ransomware leak site. | Ransomware | ||
|
2021-02-22 15:45:22 | Powerhouse VPN products can be abused for large-scale DDoS attacks (lien direct) | Around 1,500 Powerhouse VPN servers are exposed online and ready to be abused by DDoS groups. | |||
|
2021-02-22 12:03:25 | (Déjà vu) Stored XSS bug in Apple iCloud domain disclosed by bug bounty hunter (lien direct) | The cross-site scripting bug reportedly earned the researcher a $5000 reward. | |||
|
2021-02-22 11:01:46 | Chinese hackers cloned attack tool belonging to NSA\'s Equation Group (lien direct) | The Jian tool was used to exploit a Windows zero-day vulnerability years before a patch was issued. | Tool Vulnerability | ||
|
2021-02-22 07:58:04 | 30,000 Macs infected with new Silver Sparrow malware (lien direct) | Silver Sparrow can even run on systems with Apple's new M1 chip. | Malware | ||
|
2021-02-19 16:02:00 | Brave browser leaks onion addresses in DNS traffic (lien direct) | DNS leak leaves footprints in DNS server logs for a Brave user's Tor traffic. | |||
|
2021-02-19 13:31:19 | Myanmar arrests 11 suspects for hacking government sites during protests (lien direct) | Hacktivists operated via a Facebook group and called themselves the "Myanmar Hackers." | |||
|
2021-02-19 13:31:00 | Malaysia arrests 11 suspects for hacking government sites (lien direct) | A similar government website defacement campaign is also taking place this week in Myanmar, in support of the country's jailed elected leader. | Guideline | ||
|
2021-02-18 17:44:00 | Microsoft says SolarWinds hackers downloaded some Azure, Exchange, and Intune source code (lien direct) | Microsoft says it has completed its investigation into its SolarWinds-related breach. | |||
|
2021-02-18 16:59:00 | RIPE NCC discloses failed brute-force attack on its SSO service (lien direct) | RIPE NCC, which manages the IP address space for the EMEA region, is now asking its 20,000 member orgs to enable 2FA for their accounts. | |||
|
2021-02-18 15:20:50 | CrowdStrike acquires Humio for $400 million (lien direct) | Deal expected to close at the end of Q1 2021. | |||
|
2021-02-18 11:54:37 | Windows and Linux servers targeted by new WatchDog botnet for almost two years (lien direct) | WatchDog botnet uses exploits to take over servers and mine cryptocurrency. | |||
|
2021-02-18 11:38:40 | Masslogger Trojan reinvented in quest to steal Outlook, Chrome credentials (lien direct) | The operators have also been linked to the use of AgentTesla, Formbook, and AsyncRAT. | |||
|
2021-02-17 22:06:16 | Microsoft starts removing Flash from Windows devices via new KB4577586 update (lien direct) | Windows 10 users are reporting seeing a new update this week that permanently removes Flash from their systems. | |||
|
2021-02-17 17:33:00 | (Déjà vu) US charges two more members of the \'Lazarus\' North Korean hacking group (lien direct) | The US DOJ described the North Korean hackers as "the world's leading bank robbers" and "a criminal syndicate with a flag." | Guideline | APT 38 | |
|
2021-02-17 13:15:12 | Dutch police post \'friendly\' warnings on hacking forums (lien direct) | Dutch police: "Hosting criminal infrastructure in The Netherlands is a lost cause." | |||
|
2021-02-17 13:00:05 | Bug in shared SDK can let attackers join calls undetected across multiple apps (lien direct) | Apps that use the SDK include MeetMe, Skout, Nimo TV, temi, and Talkspace. | |||
|
2021-02-17 12:01:29 | Owner of app that hijacked millions of devices with one update exposes buy-to-infect scam (lien direct) | The owners of the once-legitimate Android app insist that a buyer was responsible for a malicious update with far-reaching consequences. | |||
|
2021-02-17 10:42:51 | Tracker pixels in emails are now an \'endemic\' privacy concern (lien direct) | Critics suggest the practice is marketing gone too far. |
To see everything:
Our RSS (filtrered)
