Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-03-15 14:33:12 |
Google fails to quash Incognito mode user tracking, privacy lawsuit (lien direct) |
The company may now have to fight against user privacy violation claims in court. |
|
|
|
|
2021-03-15 13:04:07 |
Hafnium\'s China Chopper: a \'slick\' and tiny web shell for creating server backdoors (lien direct) |
Hafnium has been linked to recent attacks on Microsoft Exchange Server. |
|
|
|
|
2021-03-15 10:46:00 |
Microsoft investigates potential ties between partner security firm, Exchange Server attack code leak (lien direct) |
Exploit tools used in widespread attacks reportedly are similar to PoC code privately distributed by Microsoft to vendors. |
|
|
|
|
2021-03-15 09:48:12 |
Sky Global CEO indicted over encrypted chat drug trafficking, calls allegations an \'outrage\' (lien direct) |
The executive says the indictment highlights the “vilification” of anyone “who takes a stance against unwarranted surveillance.” |
|
|
|
|
2021-03-12 11:38:31 |
Uber, Lyft to share data on drivers banned for sexual, physical assault (lien direct) |
The measure may stop banned drivers from being able to jump between platforms. |
|
Uber
|
|
|
2021-03-12 10:13:42 |
The future of data privacy: confidential computing, quantum safe cryptography take center stage (lien direct) |
IBM is working on future-proof encryption methods able to keep our data safe both in storage and active use. |
|
|
|
|
2021-03-12 09:24:06 |
Netflix wants to stop you sharing your password (lien direct) |
Many of us do it. Netflix is testing ways to restrict you from sharing your account details. |
|
|
|
|
2021-03-12 08:35:20 |
Microsoft Exchange Server hacks \'doubling\' every two hours (lien direct) |
A ransomware variant is now also leveraging the critical vulnerabilities. |
Ransomware
|
|
|
|
2021-03-11 14:00:00 |
Icon files abused in malspam to spread NanoCore Trojan (lien direct) |
.zipx has been employed to deploy both Lokibot and NanoCore malware. |
|
|
|
|
2021-03-11 10:30:00 |
Smart sex toys: appealing to you, exploitable to hackers (lien direct) |
Some of the most popular sex toys on the market are anything but smart when it comes to security. |
|
|
|
|
2021-03-11 10:09:50 |
F5 issues BIG-IP patches to tackle unauthenticated remote code execution, critical flaws (lien direct) |
Four out of seven vulnerabilities are considered critical. |
|
|
|
|
2021-03-11 08:35:35 |
Sky ECC denies police have \'cracked\' encrypted messaging platform (lien direct) |
Europol, however, says arrests have been made based on monitoring conversation flows. |
|
|
|
|
2021-03-10 16:00:03 |
2020 was a \'record-breaking\' year in US school hacks, security failures (lien direct) |
New research suggests “cybersecurity risks are now neither hypothetical, nor trivial.” |
|
|
|
|
2021-03-10 13:39:13 |
Microsoft expands AccountGuard ahead of elections, deepens Yubico partnership (lien direct) |
Enhanced identity and access features are on offer in 31 democracies. |
|
|
|
|
2021-03-10 09:30:00 |
OVHcloud data centers engulfed in flames (lien direct) |
Customers are being urged to launch their own disaster recovery plans. |
|
|
|
|
2021-03-09 19:59:53 |
Adobe releases batch of security fixes for Framemaker, Creative Cloud, Connect (lien direct) |
This month's security release tackles a handful of vulnerabilities. |
|
|
|
|
2021-03-09 19:41:14 |
Microsoft\'s March Patch Tuesday: Critical remote code execution flaws, IE zero-day fixed (lien direct) |
The fixes follow an unscheduled emergency release for Microsoft Exchange Server. |
|
|
|
|
2021-03-09 11:00:00 |
Malicious apps on Google Play dropped banking Trojans on user devices (lien direct) |
The utility apps contained a previously-unknown dropper for financial malware. |
|
|
|
|
2021-03-09 09:35:35 |
UnityMiner cryptocurrency malware hijacks QNAP storage devices (lien direct) |
A remote code execution bug is to blame this time. |
Malware
|
|
|
|
2021-03-08 14:00:05 |
Supernova malware clues link Chinese threat group Spiral to SolarWinds server hacks (lien direct) |
SolarWinds servers are being exploited to deploy the malicious .NET web shell. |
Malware
Threat
|
|
|
|
2021-03-08 12:50:00 |
Everything you need to know about Microsoft Exchange Server hack (lien direct) |
Vulnerabilities are being exploited by Hafnium. Other cyberattackers are following suit. |
Hack
|
|
|
|
2021-03-08 08:26:40 |
Flagstar Bank customer data breached through Accellion hack (lien direct) |
Like many other users, Flagstar Bank has now permanently stopped using the platform. |
Hack
|
|
|
|
2021-03-06 15:32:00 |
Check to see if you\'re vulnerable to Microsoft Exchange Server zero-days using this tool (lien direct) |
A CISA alert has been issued to urge admins to check their systems as quickly as possible. |
Tool
|
|
|
|
2021-03-05 12:18:44 |
FTC joins 38 states in takedown of massive charity robocall operation (lien direct) |
Over $110 million was taken from victims who believed they were funding veteran, children, and firefighter charities. |
|
|
|
|
2021-03-05 11:10:13 |
$100 in crypto for a kilo of gold: Scammer pleads guilty to investor fraud (lien direct) |
The case brings a new meaning to a cryptocurrency gold rush. |
|
|
|
|
2021-03-05 10:02:00 |
Microsoft Exchange zero-day vulnerabilities exploited in attacks against US local governments (lien direct) |
Mandiant says attacks are taking place against a wide array of US targets -- local governments included. |
|
|
|
|
2021-03-05 09:04:02 |
Cyberattack shuts down online learning at 15 UK schools (lien direct) |
The cyberattack also took email, phone, and website communication offline. |
|
|
|
|
2021-03-04 12:16:52 |
Accellion zero-day claims a new victim in cybersecurity company Qualys (lien direct) |
A hotfix was applied, but not before some customer files may have been compromised. |
|
|
|
|
2021-03-04 11:27:19 |
CISA issues emergency directive to agencies: deal with Microsoft Exchange zero-days now (lien direct) |
Patch now, or disconnect Microsoft Exchange services from the internet. |
|
|
|
|
2021-03-04 10:36:10 |
Maza Russian cybercriminal forum suffers data breach (lien direct) |
Forums can be areas to swap illicit tools and data, but they can also be the targets of cyberattackers in their turn. |
Data Breach
|
|
|
|
2021-03-03 14:09:07 |
Ursnif Trojan has targeted over 100 Italian banks (lien direct) |
1,700 credentials were stolen from a single payment processor. |
|
|
|
|
2021-03-03 12:09:28 |
Microsoft account hijack vulnerability earns bug bounty hunter $50,000 (lien direct) |
The researcher says he could have abused the bug to hijack Microsoft accounts. |
Vulnerability
|
|
|
|
2021-03-03 10:44:18 |
Google patches actively exploited Chrome browser zero-day vulnerability (lien direct) |
Upgrading your Chrome build as quickly as possible is recommended. |
Vulnerability
|
|
|
|
2021-03-03 09:42:32 |
SEC charges group for alleged pump-and-dump Airborne Wireless stock scam (lien direct) |
SEC claims investors were defrauded out of $45 million. |
|
|
|
|
2021-03-02 13:00:00 |
ObliqueRAT Trojan now lurks in images on compromised websites (lien direct) |
The malware has been upgraded in new campaigns across Asia. |
Malware
|
|
★★★
|
|
2021-03-02 11:18:03 |
Oxfam Australia supporters embroiled in new data breach (lien direct) |
Personal data, including partial payment information, is thought to be included. |
Data Breach
|
|
|
|
2021-03-02 10:30:32 |
Google addresses customer data protection, security in Workspace (lien direct) |
Google has also introduced new Workspace features as we continue to work from home. |
|
|
|
|
2021-03-02 09:08:06 |
Twitter\'s new strike system will target prolific COVID-19 fake information spreaders (lien direct) |
Twitter says repeat offenders will be booted from the platform. |
|
|
|
|
2021-03-01 20:12:58 |
SolarWinds security fiasco may have started with simple password blunders (lien direct) |
Many things came together to crack SolarWinds, but it may all have started with that classic mistake of leaking a lousy password. |
|
|
|
|
2021-03-01 14:00:03 |
Hackers exploit websites to give them excellent SEO before deploying malware (lien direct) |
Climbing up Google's ranks is key to this new technique. |
Malware
|
|
|
|
2021-03-01 13:50:00 |
Tether faces 500 Bitcoin ransom: We are \'not paying\' (lien direct) |
The cryptocurrency firm says “forged” documents attempting to undermine the ecosystem as a whole are also circulating. |
|
|
|
|
2021-03-01 11:06:19 |
Judge approves $650m settlement for Facebook users in privacy, biometrics lawsuit (lien direct) |
Facebook users represented in the lawsuit may soon receive hundreds of dollars each. |
|
|
|
|
2021-03-01 10:04:26 |
Minion privilege escalation exploit patched in SaltStack Salt project (lien direct) |
The bug permitted attackers to perform privilege escalation attacks in the automation software. |
|
|
|
|
2021-03-01 09:09:18 |
Businessman charged with intent to steal General Electric\'s secret silicon technology (lien direct) |
Trade secrets worth millions on the market were the goal of the conspiracy. |
|
|
|
|
2021-02-26 18:36:35 |
Chrome will soon try HTTPS first when you type an incomplete URL (lien direct) |
If users type an URL and they forget to add the HTTP or HTTPS prefix, Chrome will soon use HTTPS by default. |
|
|
|
|
2021-02-26 16:16:00 |
Berlin resident jailed for threatening to bomb NHS hospital unless Bitcoin ransom was paid (lien direct) |
The bomb threats escalated over the course of six weeks to include Black Lives Matter protests and threats on UK politicians. |
|
|
|
|
2021-02-26 13:09:06 |
Go malware is now common, having been adopted by both APTs and e-crime groups (lien direct) |
There's been a 2,000% increase of new malware written in Go over the past few years. |
Malware
|
|
|
|
2021-02-26 12:26:00 |
Oxford University lab with COVID-19 research links targeted by hackers (lien direct) |
Compromised machines included those used in sample analysis. |
|
|
|
|
2021-02-26 08:25:44 |
TikTok agrees to pay $92 million to settle teen privacy class-action lawsuit (lien direct) |
The video platform was accused of collecting biometric data without consent. |
|
|
|
|
2021-02-25 17:47:50 |
Chinese cyberspies targeted Tibetans with a malicious Firefox add-on (lien direct) |
The Chinese hacking group used the malicious add-on to collect Gmail and Firefox data from their victims. |
|
|
|