Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-01-29 23:40:13 |
DOD contractor suffers ransomware infection (lien direct) |
Virginia-based EWA has had systems infected with the Ryuk ransomware. |
Ransomware
|
|
|
|
2020-01-29 18:59:00 |
New web service can notify companies when their employees get phished (lien direct) |
Abuse.ch launches new "I Got Phished" web portal. |
|
|
|
|
2020-01-29 15:37:00 |
How to protect your privacy from Facebook (lien direct) |
At long last, Facebook is letting us see the data it and other companies are collecting from you -- some of which has nothing directly to do with what you're doing on Facebook. |
|
|
|
|
2020-01-29 10:30:00 |
RCE in OpenSMTPD library impacts BSD and Linux distros (lien direct) |
Vulnerability, tracked as CVE-2020-7247, can be exploited remotely over the internet. |
|
|
|
|
2020-01-28 22:09:00 |
Wawa card breach may rank as one of the biggest of all times (lien direct) |
Hackers put the card details of more than 30 million Wawa customers on sale online. |
|
|
|
|
2020-01-28 20:52:11 |
All major antivirus vendors will continue to support Windows 7 post EOL (lien direct) |
Most antivirus programs will receive Windows 7 support for at least two more years. |
|
|
|
|
2020-01-28 16:36:59 |
2019 saw more cryptocurrency hacks than any other year (lien direct) |
Hackers launched more attacks against cryptocurrency exchanges in 2019, but stole fewer funds. |
|
|
|
|
2020-01-28 12:00:05 |
LoRaWAN networks are spreading but security researchers say beware (lien direct) |
IOActive security researchers say LoRaWAN networks are vulnerable to cyber-attacks despite boastful claims about the protocol's security features. |
|
|
|
|
2020-01-28 10:22:47 |
Ring app for Android full to the brim with third-party trackers: report (lien direct) |
The EFF claims that the app is sending out vast amounts of customer PII. |
|
|
|
|
2020-01-28 09:12:54 |
Practice Fusion to pay $145m for accepting pharma kickbacks in opioid prescription scam (lien direct) |
Software was used to boost opioid prescriptions on behalf of pharmaceutical companies in a scheme deemed "abhorrent." |
|
|
|
|
2020-01-28 07:00:08 |
The average ransom demand for a REvil ransomware infection is a whopping $260,000 (lien direct) |
Security researchers sinkhole the REvil ransomware servers and gain an insight into the operation of today's biggest ransomware gang. |
Ransomware
|
|
|
|
2020-01-28 01:02:37 |
DEF CON China conference put on hold due to coronavirus outbreak (lien direct) |
DEF CON team is hoping that the 2019-nCoV outbreak will improve and they can go on as planned, or reschedule. |
|
|
|
|
2020-01-27 19:58:10 |
Hackers hijack Twitter accounts for Chicago Bears and Green Bay Packers (lien direct) |
OurMine hacking crew returns after two years of inactivity. |
|
|
|
|
2020-01-27 13:14:26 |
Fortinet removes SSH and database backdoors from its SIEM product (lien direct) |
Patches have been released for CVE-2019-17659 and CVE-2019-16153. |
|
|
|
|
2020-01-27 12:47:21 |
Cybersecurity: A guide for parents to keep kids safe online (lien direct) |
Cybersecurity, cyberbullying, and mobile devices can be a minefield -- so here is a guide to take the stress out of cyberspace for parents. |
|
|
|
|
2020-01-27 09:55:06 |
The US Army uses facial recognition to train AI. Now, it needs to protect it (lien direct) |
As facial recognition use ramps up despite its controversy, the technology is being applied in the military realm. |
|
|
|
|
2020-01-27 09:51:00 |
Magecart gang arrested in Indonesia (lien direct) |
First-ever arrest of a Magecart hacker gang. |
|
|
|
|
2020-01-25 13:48:24 |
The Chrome Web Store is currently facing a wave of fraudulent transactions (lien direct) |
Google temporarily suspends publishing and updating of paid Chrome extensions following a spike in fraudulent transactions. |
|
|
|
|
2020-01-25 08:00:07 |
Mozilla has banned nearly 200 malicious Firefox add-ons over the last two weeks (lien direct) |
Mozilla's security staff is cracking down on malicious Firefox add-ons. |
|
|
|
|
2020-01-24 20:51:09 |
Trend Micro antivirus zero-day used in Mitsubishi Electric hack (lien direct) |
Hackers exploited a Trend Micro OfficeScan zero-day to plant malicious files on Mitsubishi Electric servers. |
Hack
|
|
|
|
2020-01-24 17:05:00 |
Class-action lawsuit filed against controversial Clearview AI startup (lien direct) |
Plaintiffs claim New York startup broke Illinois privacy laws regarding the use of residents' biometrics data. |
|
|
|
|
2020-01-24 14:10:00 |
Hackers target unpatched Citrix servers to deploy ransomware (lien direct) |
REvil ransomware gang has been spotted abusing Citrix bug to infect victims. |
Ransomware
|
|
|
|
2020-01-24 13:39:30 |
Privacy worries cited as possible reason for DNA test firm 23andMe\'s sales downturn (lien direct) |
It may be no surprise considering US law enforcement was recently granted permission to plunder DNA databases. |
|
|
|
|
2020-01-24 11:58:50 |
Citrix releases new patches to plug critical server vulnerability (lien direct) |
Additional versions of Citrix ADC and Citrix Gateway can now be protected against the severe security issue. |
Vulnerability
|
|
|
|
2020-01-24 10:47:00 |
Owner of stolen data marketplace Cardplanet pleads guilty (lien direct) |
The trading post was a hotbed of stolen US credit card information. |
|
|
|
|
2020-01-23 21:26:18 |
New York state wants to ban government agencies from paying ransomware demands (lien direct) |
Another NY Senate bill would create a cyber security enhancement fund and restricting the use of taxpayer moneys in paying ransoms |
Ransomware
|
|
|
|
2020-01-23 18:34:00 |
MDhex vulnerabilities impact GE patient vital signs monitoring devices (lien direct) |
GE Healthcare plans to release patches in Q2 2020. |
|
|
|
|
2020-01-23 17:57:00 |
Someone is uninstalling the Phorpiex malware from infected PCs and telling users to install an antivirus (lien direct) |
Malware analysts believe someone has hijacked the Phorpiex botnet from its creator and is sabotaging its operations by alerting users they've been infected. |
Malware
|
|
|
|
2020-01-22 21:23:00 |
A timeline of events surrounding the Bezos phone hack (lien direct) |
Bezos hack connected to Khashoggi murder and the Washington Post's subsequent media coverage. |
Hack
|
|
|
|
2020-01-22 14:55:08 |
Microsoft to forcibly install Bing search extension in Chrome for Office 365 ProPlus users (lien direct) |
Microsoft will change the default search engine in Chrome from Google to Bing for its Office 365 ProPlus customers starting mid-February. |
|
|
|
|
2020-01-22 14:00:06 |
Coalition acquires IoT search engine BinaryEdge (lien direct) |
US cyber-insurer Coalition buys BinaryEdge for undisclosed sum to boost its cyber insurance policy offering. |
|
|
|
|
2020-01-22 13:28:00 |
Microsoft discloses security breach of customer support database (lien direct) |
Five servers storing customer support analytics were accidentally exposed online in December 2019. |
|
|
|
|
2020-01-22 13:00:06 |
Data leak strikes US cannabis users, sensitive information exposed (lien direct) |
A database backing point-of-sale systems used in medical and recreational marijuana dispensaries has been compromised. |
|
|
|
|
2020-01-22 12:28:48 |
ProtonVPN apps handed to open source community in transparency push (lien direct) |
The code backing ProtonVPN apps on all platforms can now be examined at leisure. |
|
|
|
|
2020-01-22 10:42:59 |
In enterprise attack wave, NetWire Trojan now buries itself in disk image files (lien direct) |
Enterprise companies are being targeted by a business email scam harnessing the Trojan. |
|
|
|
|
2020-01-22 08:28:01 |
German government to pay €800,000 in Windows 7 ESU fees this year (lien direct) |
The sum represents ESU fees for over 33,000 government workstations that are still running Windows 7, allowing German government systems to receive security updates for one more year. |
|
|
|
|
2020-01-21 20:27:10 |
Microsoft discovers new sLoad 2.0 (Starslord) malware (lien direct) |
sLoad malware gangs makes a comeback after having operations exposed last month. |
Malware
|
|
|
|
2020-01-21 16:53:00 |
US Cyber Command was not prepared to handle the amount of data it hacked from ISIS (lien direct) |
Operation Glowing Symphony was a success, but Cyber Command operators were not prepared for the amount of data they found in hacked ISIS accounts and servers. |
|
|
|
|
2020-01-21 14:19:32 |
FTCODE ransomware is now armed with browser, email password stealing features (lien direct) |
Encrypting your PC isn't enough -- hackers want your email passwords, too. |
Ransomware
|
|
|
|
2020-01-21 14:00:03 |
Did you really \'like\' that? How Chameleon attacks spring in Facebook, Twitter, LinkedIn (lien direct) |
Social networks impacted seem to disagree on the scope of the attack. |
|
|
|
|
2020-01-21 12:56:20 |
14% of Android app privacy policies contain contradictions about data collection (lien direct) |
An analysis of 11,430 Play Store apps found that 14.2% used a privacy policy with contradicting statements about user data collection practices. |
|
|
|
|
2020-01-21 12:15:14 |
UK\'s HMRC tax authority seeks tools to track down cryptocurrency criminals (lien direct) |
The project bid could also indicate the desire to monitor the cryptocurrency assets of taxpayers. |
|
|
|
|
2020-01-21 11:00:07 |
Antivirus vendors push fixes for EFS ransomware attack method (lien direct) |
Signature-based software may not be enough to protect Microsoft's Windows EFS against evolving ransomware families. |
Ransomware
|
|
|
|
2020-01-20 20:03:05 |
Ubisoft sues operators of four DDoS-for-hire services (lien direct) |
Ubisoft delivers on threats it made in September 2019 and goes after website selling DDoS services that were used to launch attacks against Rainbow Six Siege servers. |
|
|
|
|
2020-01-20 10:27:47 |
Mitsubishi Electric discloses security breach, China is main suspect (lien direct) |
Mitsubishi Electric says hackers did not obtain sensitive information about defense contracts. |
|
|
|
|
2020-01-20 09:29:02 |
Betting companies given access to UK gov\'t information on millions of children (lien direct) |
Reports suggest a government database was misused for age verification purposes. |
|
|
|
|
2020-01-20 07:58:00 |
Citrix rolls out patches for critical ADC vulnerability exploited in the wild (lien direct) |
Citrix is racing to develop patches for software builds vulnerable to the severe bug. |
Vulnerability
|
|
|
|
2020-01-20 07:50:00 |
LastPass is in the midst of a major outage (lien direct) |
LastPass issue appears to impact users with accounts dating back to 2014 and earlier. |
|
LastPass
|
|
|
2020-01-19 11:32:25 |
Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices (lien direct) |
The list was shared by the operator of a DDoS booter service. |
|
|
|
|
2020-01-17 22:59:00 |
Microsoft warns about Internet Explorer zero-day, but no patch yet (lien direct) |
IE zero-day connected to last week's Firefox zero-day. |
|
|
|