Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 15:35:00 |
DOJ to charge North Korean officer for Sony hack and WannaCry ransomware (lien direct) |
After charging Chinese, Iranian, and Russian cyberspies, US preparies indictment against North Korean officer. |
Ransomware
Hack
|
Wannacry
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 13:01:03 |
Vulnerabilities found in the remote management interface of Supermicro servers (lien direct) |
Eclypsium researchers disclose second vulnerability affecting Supermicro servers in the past three months |
Vulnerability
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 11:12:01 |
Tor Browser gets a redesign, switches to new Firefox Quantum engine (lien direct) |
Tor Browser finally updated to use new-and-improved Firefox Quantum codebase. This includes new Photon UI. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 10:21:03 |
The ultimate guide to finding and killing spyware and stalkerware on your smartphone (lien direct) |
Surveillance isn't just the purview of nation-states and government agencies -- sometimes, it is closer to home. |
|
|
★★
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 10:00:00 |
Schneider Electric Modicon vulnerability impacts ICS operation in industrial settings (lien direct) |
The security flaw, if left unpatched, has the potential to cause unnecessary reboots. |
Vulnerability
|
|
★★★★★
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 09:02:02 |
Cisco warns customers of critical security flaws, advisory includes Apache Struts (lien direct) |
The massive security update includes a patch for the recently-disclosed Apache bug -- but not all products will be fixed yet. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-06 08:14:04 |
Vodafone: You used 1234 as your password and were hacked? You cover the cost (lien direct) |
Hackers are behind bars for stealing $30,000 from accounts, but Vodafone wants their victims to pay the tab. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 23:08:00 |
Google fixes Chrome issue that allowed theft of WiFi logins (lien direct) |
New Wi-Jacking attack can recover WPA2 pre-shared keys by abusing a Google Chrome design issue. Issue was correct in Chrome 69. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 17:08:00 |
Recent Windows ALPC zero-day has been exploited in the wild for almost a week (lien direct) |
ESET says it detected PowerPool group using recently disclosed Windows ALPC zero-day to improve the efficiency of its malware. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 15:00:05 |
Google investigating issue with blurry fonts on new Chrome 69 (lien direct) |
Font rendering appears to have broken down when Google promoted Chrome 69 from the Beta to the Stable channel. Windows users affected. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 11:01:02 |
New Silence hacking group suspected of having ties to cyber-security industry (lien direct) |
New Russian-speaking "Silence" group linked to the theft of at least $800,000 from Russian and Eastern European banks and financial institutions. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 10:31:00 |
Thousands of MikroTik routers are snooping on user traffic (lien direct) |
The routers susceptible to hijacking at being exploited through a known vulnerability. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 10:00:00 |
FIN6 returns to attack retailer point of sale systems in US, Europe (lien direct) |
The secretive cyberattackers are known for stealing credit card data to sell on the Dark Web. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 08:59:00 |
Cryptojacking campaign exploiting Apache Struts 2 flaw kills off the competition (lien direct) |
Proof-of-concept (PoC) exploits have been quickly adopted to compromise Linux systems. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-05 00:08:00 |
Chrome 69 released with new UI and random password generator (lien direct) |
Google revamps Chrome main user interface with new white rounded tabs, replacing classic gray angled tabs after a decade. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 23:57:04 |
MEGA.nz Chrome extension caught stealing passwords, cryptocurrency private keys (lien direct) |
Tainted extension caught stealing passwords for Google, Microsoft, GitHub and Amazon accounts, but also Monero and Ethereum private keys. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 19:12:04 |
Thousands of 3D printers may be leaking private product designs online (lien direct) |
Nearly 3,800 3D printers with an OctaPrint interface were left exposed online with no password authentication, inadvertently leaking 3D models and webcam feeds. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 10:47:04 |
Facebook\'s \'war room\' hunts and destroys election meddling, fake news (lien direct) |
The physical room will be tasked with protecting the network against insidious attempts to tamper with the US midterm elections. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 10:00:00 |
This malware disguises itself as bank security to raid your account (lien direct) |
CamuBot takes advantage of your trust in your bank to hide in plain sight. |
Malware
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 09:28:04 |
Google\'s campus door security blasted wide open by its own engineer (lien direct) |
Malicious code sent across Google's network had some interesting results. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 09:21:02 |
Google open-sources internal tool for finding font-related security bugs (lien direct) |
Google Project Zero releases BrokenType, a tool that found nearly 40 security bugs in Windows font rasterization components |
Tool
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 07:55:04 |
Department of Labour denies server compromise in recent cyberattack (lien direct) |
The government department says the attack did not expose any sensitive or confidential information. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-04 00:29:02 |
Bitcoin Gold delisted from major cryptocurrency exchange after refusing to pay hack damages (lien direct) |
Cryptocurrency exchange Bittrex removes Bitcoin Gold trading options after BTG team refuses to pay $256,000 as reparations for May 2018 cyber-attacks |
Hack
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-03 20:07:05 |
Premera Blue Cross accused of destroying evidence in data breach lawsuit (lien direct) |
Class-action lawsuit plaintiffs claim US health insurer Premera Blue Cross intentionally destroyed evidence despite ongoing litigation. |
Data Breach
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-03 14:12:04 |
New Hakai IoT botnet takes aim at D-Link, Huawei, and Realtek routers (lien direct) |
Security researchers have spotted a new strain of IoT malware that has been growing in sophistication and silently infecting more and more devices online. |
Malware
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-03 11:06:05 |
Windows utility used by malware in new information theft campaigns (lien direct) |
WMIC-based payloads highlight how attackers are turning to innocuous system processes to compromise Windows machines. |
Malware
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-03 10:03:05 |
Wireshark fixes serious security flaws that can crash systems through DoS (lien direct) |
Proof-of-concept code detailing related exploits has been released to the public. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-03 09:43:00 |
SonarSnoop attack can steal smartphone unlock patterns (lien direct) |
SonarSnoop technique transforms smartphones into mini sonar systems to track a user's finger across the screen and steal phone unlock patterns. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-09-03 09:26:01 |
Meet ransomware which wears the face of former president Barack Obama (lien direct) |
The peculiar malware asks victims for a "tip" in return for a decryption key. |
Ransomware
Malware
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-31 19:36:02 |
Why is Google selling potentially compromised Chinese security keys? (lien direct) |
Opinion: To sign up for Google's Advanced protection program, you must buy security keys from a Chinese vendor. Security questions have since been raised considering current intelligence laws in China. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-31 09:45:04 |
Former Qualys exec charged with insider trading after protecting brothers from financial loss (lien direct) |
The former Chief Commercial Officer tipped off his family in advance of poor financial results. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-31 09:17:02 |
Bitfi finally gives up claim cryptocurrency wallet is unhackable (lien direct) |
Color me surprised. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-30 11:02:00 |
Misfortune Cookie vulnerability returns to impact medical devices (lien direct) |
The four-year-old security flaw has reared its head once again but this time medical equipment, and not routers, are at risk. |
Vulnerability
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-30 10:13:02 |
Android \'API breaking\' vulnerability leaks device data, allows user tracking (lien direct) |
A vulnerability in the Android operating system can be used to track users without their knowledge. |
Vulnerability
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-30 08:32:02 |
Air Canada reveals mobile data breach, passport numbers potentially exposed (lien direct) |
Passport details belonging to thousands of customers may have been exposed in the incident. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-29 10:16:02 |
Defense Distributed now sells 3D gun blueprints online, \'pay what you want\' (lien direct) |
Founder Cody Wilson insists that a recent court injunction is still being obeyed, despite the launch. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-29 09:25:03 |
Meet the malware which hijacks your browser and redirects you to fake pages (lien direct) |
The malware is currently being distributed through the RIG exploit kit. |
Malware
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-28 10:23:05 |
WhatsApp warns free Google Drive backups are not encrypted (lien direct) |
The storage deal might be free for users, but that does not mean communications records are protected. |
|
|
★★★★
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-28 09:41:04 |
Facebook patches critical server remote code execution vulnerability (lien direct) |
The exploit took advantage of instability in the server's system. |
Vulnerability
|
|
★★
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-28 08:36:00 |
Fortnite Epic Games CEO rails against Google vulnerability disclosure (lien direct) |
Circumventing the Google Play Store has not gone completely to plan. |
Vulnerability
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-27 12:00:00 |
How hackers managed to steal $13.5 million in Cosmos bank heist (lien direct) |
An in-depth look into the incident reveals how the 112-year-old bank may have been swindled out of millions. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-24 13:00:00 |
Iranian hackers target 70 universities worldwide to steal research (lien direct) |
Researchers say the campaign is focused on stealing credentials and access to library systems. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-24 10:21:03 |
Spyware firm SpyFone leaves customer data, recordings exposed online (lien direct) |
Thousands of spyware users and those being monitored have had their information leaked to the public domain. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-24 09:17:00 |
Hackers help themselves to data belonging to 2 million T-Mobile customers (lien direct) |
The "international" threat actors managed to capture a set of customer data before being shut down. |
Threat
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-24 08:21:03 |
500,000 Cheddar\'s Scratch Kitchen customers involved in possible credit card data theft (lien direct) |
Customers of the restaurant chain need to keep an eye on their bank accounts as their information may be up for sale. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-23 09:49:00 |
Medical records of high school students leaked in \'appalling\' data breach (lien direct) |
Medication, healthcare records, and conditions were all posted online for the world to see. |
Data Breach
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-23 08:58:00 |
Facebook\'s Onavo VPN app removed from Apple App Store over privacy concerns (lien direct) |
Reports suggest the app was removed based on a request from Apple. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-23 08:00:00 |
AppleJeus: macOS users targeted in new Lazarus attacks (lien direct) |
The campaign includes the distribution of Apple macOS malware for the first time. |
Malware
|
APT 38
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-22 15:47:00 |
Critical remote code execution flaw in Apache Struts exposes the enterprise to attack (lien direct) |
The bug was found in the core infrastructure of Apache Struts 2. |
|
|
|
![ZDNet.webp](./Ressources/img/ZDNet.webp) |
2018-08-22 15:12:00 |
Turla backdoors compromise European government foreign offices (lien direct) |
The backdoors are told what to do and what to steal by email. |
|
|
|