What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-09-13 04:09:52 | Immediately Patch Windows 0-Day Flaw That\'s Being Used to Spread Spyware (lien direct) | Get ready to install a fairly large batch of security patches onto your Windows computers.
As part of its September Patch Tuesday, Microsoft has released a large batch of security updates to patch a total of 81 CVE-listed vulnerabilities, on all supported versions of Windows and other MS products.
The latest security update addresses 27 critical and 54 important
|
|||
|
2017-09-13 01:52:04 | Linux Subsystem on Windows 10 Allows Malware to Become Fully Undetectable (lien direct) | Microsoft has been expressing its love for Linux for almost three years now, and this love costs Microsoft an arm and a leg.
Last year, Microsoft surprised everyone by announcing the arrival of Windows Subsystem for Linux (WSL) in Windows 10, which brings the Linux command-line shell to Windows, allowing users to run native Linux applications on Windows system without virtualization.
However
|
|||
|
2017-09-12 22:28:27 | Adobe Patches Two Critical RCE Vulnerabilities in Flash Player (lien direct) | Adobe may kill Flash Player by the end of 2020, but until then, the company would not stop providing security updates to the buggy software.
As part of its monthly security updates, Adobe has released patches for eight security vulnerabilities in its three products, including two vulnerabilities in Flash Player, four in ColdFusion, and two in RoboHelp-five of these are rated as critical.
|
|||
|
2017-09-12 10:53:59 | BlueBorne: Critical Bluetooth Attack Puts Billions of Devices at Risk of Hacking (lien direct) | If you are using a Bluetooth enabled device, be it a smartphone, laptop, smart TV or any other IoT device, you are at risk of malware attacks that can carry out remotely to take over your device even without requiring any interaction from your side.
Security researchers have just discovered total 8 zero-day vulnerabilities in Bluetooth protocol that impact more than 5.3 Billion devices-from
|
|||
|
2017-09-12 03:51:16 | Apache Struts 2 Flaws Affect Multiple Cisco Products (lien direct) | After Equifax massive data breach that was believed to be caused due to a vulnerability in Apache Struts, Cisco has initiated an investigation into its products that incorporate a version of the popular Apache Struts2 web application framework.
Apache Struts is a free, open-source MVC framework for developing web applications in the Java programming language, and used by 65 percent of the
|
Equifax | ||
|
2017-09-11 23:33:55 | Samsung Launches Bug Bounty Program - Offering up to $200,000 in Rewards (lien direct) | With the growing number of cyber attacks and data breaches, a number of tech companies and organisations have started Bug Bounty programs for encouraging hackers, bug hunters and researchers to find and responsibly report bugs in their services and get rewarded.
Samsung is the latest in the list of tech companies to launch a bug bounty program, announcing that the South Korean electronics
|
|||
|
2017-09-11 10:41:22 | Facebook slapped with $1.43 million fine for violating users\' privacy in Spain (lien direct) | Facebook is once again in trouble regarding its users' privacy.
The social media giant has recently been heavily fined once again for a series of privacy violations in Spain.
Recently, Google also incurred a record-breaking fine of $2.7 billion (€2.42 billion) by the European antitrust officials for unfairly manipulating search results since at least 2008.
Now, the Spanish
|
|||
|
2017-09-11 06:15:15 | Raspberry Pi: Learn How to Build Amazing IoT & Robotics Projects at Home (lien direct) | Do you want to make your own robot at home? But, of course, one can not spend hundreds or thousands of dollars, and definitely would not be able to join a 4-year-long engineering institute to learn how to do it?
Well, we have good news for you-Try the Raspberry Pi board to create amazing projects at highly affordable cost.
Raspberry Pi is a tiny, cheaper and customizable
|
|||
|
2017-09-11 04:29:42 | Researcher Discloses 10 Zero-Day Flaws in D-Link 850L Wireless Routers (lien direct) | A security researcher has discovered not one or two but a total of ten critical zero-day vulnerabilities in routers from Taiwan-based networking equipment manufacturer D-Link which leave users open to cyber attacks.
D-Link DIR 850L wireless AC1200 dual-band gigabit cloud routers are vulnerable to 10 security issues, including "several trivial" cross-site scripting (XSS) flaws, lack of proper
|
|||
|
2017-09-09 06:50:09 | Hackers Can Remotely Access Syringe Infusion Pumps to Deliver Fatal Overdoses (lien direct) | Internet-of-things are turning every industry into the computer industry, making customers think that their lives would be much easier with smart devices. However, such devices could potentially be compromised by hackers.
There are, of course, some really good reasons to connect certain devices to the Internet.
But does everything need to be connected? Of course, not-especially when it comes
|
|||
|
2017-09-09 03:35:52 | Hacker Who Hacked US Spy Chief, FBI & CIA Director Gets 5-Year in Prison (lien direct) | Remember "Crackas With Attitude"?
The hacking group behind a series of embarrassing hacks that targeted personal email accounts of senior officials at the FBI, the CIA, and the White House, among other United States federal agencies in 2015.
A member of Crackas With Attitude, who was arrested last year in September, has now been sentenced to five years in federal prison.
|
|||
|
2017-09-08 13:15:20 | Equifax Data Breach: Steps You should Take to Protect Yourself (lien direct) | Equifax has suffered one of the largest data breaches in history that has left highly sensitive data of as many as 143 million people-that's nearly half of the US population-in the hands of hackers.
Based on the company's investigation, some unknown hackers managed to exploit a security flaw on the Equifax website and gained unauthorized access to certain files between mid-May and July 2017.
|
Equifax | ||
|
2017-09-08 01:26:00 | Shadow Brokers Leaks Another Windows Hacking Tool Stolen from NSA\'s Arsenal (lien direct) | The Shadow Brokers, a notorious hacking group that leaked several hacking tools from the NSA, is once again making headlines for releasing another NSA exploit-but only to its "monthly dump service" subscribers.
Dubbed UNITEDRAKE, the implant is a "fully extensible remote collection system" that comes with a number of "plug-ins," enabling attackers to remotely take full control over targeted
|
|||
|
2017-09-07 16:45:20 | Equifax Hack Exposes Personal Info of 143 Million US Consumers (lien direct) | It's ironic-the company that offers credit monitoring and ID theft protection solutions has itself been compromised, exposing personal information of as many as 143 million Americans-that's almost half the country.
Equifax, one of the largest credit reporting firm in the US, admitted today that it had suffered a massive data breach somewhere between mid-May and July, which was discovered on
|
Equifax | ||
|
2017-09-07 10:33:44 | Proof It\'s Possible to Hack German Elections; Hackers Tamper with Voting-Software (lien direct) | Germany's democracy is in danger, as the upcoming federal elections in the country, where nearly 61.5 million citizens are going to vote on September 24th, could be hijacked.
Hackers have disclosed how to hack the German voting software to tamper with votes and alter the outcome of an election.
Yes, election hacking is no theory-it is happening.
A team of researchers from German hacking
|
|||
|
2017-09-07 06:50:33 | Dragonfly 2.0: Hacking Group Infiltrated European and US Power Facilities (lien direct) | The notorious hacking group that has been in operation since at least 2011 has re-emerged and is still interested in targeting the United States and European companies in the energy sector.
Yes, I am talking about the 'Dragonfly,' a well-resourced, Eastern European hacking group responsible for sophisticated cyber-espionage campaigns against the critical infrastructure of energy companies in
|
|||
|
2017-09-07 04:20:02 | Wikileaks Unveils Project Protego: CIA\'s Secret Missile Control System (lien direct) | Every week since March Wikileaks has been leaking secrets from the United States Central Intelligence Agency (CIA), which mainly focus on surveillance techniques and hacking tools employed by its agents.
However this time, the whistleblower organisation has released something different from its previous Vault 7 leaks, because it's not about hacking and spying; instead, it's a-Missile Control
|
|||
|
2017-09-07 01:23:54 | Hackers Can Silently Control Siri, Alexa & Other Voice Assistants Using Ultrasound (lien direct) | What if your smartphone starts making calls, sending text messages, and browsing malicious websites on the Internet itself without even asking you?
This is no imaginations, as hackers can make this possible using your smartphone's personal assistant like Siri or Google Now.
A team of security researchers from China's Zhejiang University have discovered a clever way of activating your voice
|
|||
|
2017-09-06 03:49:40 | Hackers Are Distributing Backdoored \'Cobian RAT\' Hacking tool For Free (lien direct) | Nothing is free in this world. If you are searching for free ready-made hacking tools on the Internet, then beware-most freely available tools, claiming to be the swiss army knife for hackers, are nothing but a hoax. Last year, we reported about one such Facebook hacking tool that actually had the capability to hack a Facebook account, but yours and not the one you desire to hack. | |||
|
2017-09-06 03:49:21 | Incapsula Updated Review - New Security Options, Improved Delivery and Reliability (lien direct) | It's been close to five years since we last looked at Incapsula, a security-focused CDN service known for its DDoS mitigation and web application security features.
As one would expect, during these five years the company has expanded and improved, introducing lots of new features and even several new products.
Most recently, Incapsula underwent an extensive network expansion that includes
|
|||
|
2017-09-06 01:11:32 | Mobile Bootloaders From Top Manufacturers Found Vulnerable to Persistent Threats (lien direct) | Security researchers have discovered several severe zero-day vulnerabilities in the mobile bootloaders from at least four popular device manufacturers that could allow an attacker to gain persistent root access on the device.
A team of nine security researchers from the University of California Santa Barbara created a special static binary tool called BootStomp that automatically detects
|
|||
|
2017-09-05 11:40:33 | Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers (lien direct) | Security researchers have discovered a critical remote code execution vulnerability in the popular Apache Struts web application framework, allowing a remote attacker to run malicious code on the affected servers.
Apache Struts is a free, open-source, Model-View-Controller (MVC) framework for developing web applications in the Java programming language, which supports REST, AJAX, and JSON.
|
|||
|
2017-09-05 10:08:09 | European Companies Must Tell Employees If Their Work Emails Are Being Monitored (lien direct) | Finally, European companies must inform employees in advance if their work email accounts are being monitored.
The European Court of Human Rights (ECHR) on Tuesday gave a landmark judgement concerning privacy in the workplace by overturning an earlier ruling that gave employers the right to spy on workplace communications.
The new ruling came in judging the case of Romanian engineer Bogdan
|
|||
|
2017-09-05 02:45:56 | (Déjà vu) Chinese Man Jailed For Selling VPNs that Bypass Great Firewall (lien direct) | Image source: goldenfrog
In an effort to continue its crackdown on VPNs, Chinese authorities have arrested a 26-year-old man for selling VPN software on the Internet.
China's Supreme Court has sentenced Deng Jiewei from Dongguan in Guangdong province, close to Hong Kong, to nine months in prison for selling virtual private network (VPN) software through his own small independent website.
|
|||
|
2017-09-04 10:23:02 | China Bans Fundraising Through Initial Coin Offering (ICO) (lien direct) | China's central bank today announced an immediate ban on all ICO-Initial Coin Offering-fundraising, to prevent fraud and illegal fundraising.
ICO is the hottest new thing in the blockchain world, which is an alternative to crowdfunding that lets a firm raise funding from multiple sources.
The People's Bank of China (PBoC), the country's central bank and financial regulator, has issued an
|
|||
|
2017-09-04 09:53:16 | Taringa: Over 28 Million Users\' Data Exposed in Massive Data Breach (lien direct) | Exclusive - If you have an account on Taringa, also known as "The Latin American Reddit," your account details may have compromised in a massive data breach that leaked login details of almost all of its over 28 million users.
Taringa is a popluar social network geared toward Latin American users, who create and share thousands of posts every day on general interest topics like life hacks,
|
|||
|
2017-09-01 12:30:02 | Instagram Hacker Puts 6 Million Celebrities Personal Data Up For Sale On DoxaGram (lien direct) | It's now official, Instagram has suffered a massive data breach, and reportedly an unknown hacker has stolen personal details of more than 6 million Instagram accounts.
Just yesterday, we reported that Instagram had patched a critical API vulnerability that allowed the attacker to access phone numbers and email addresses for high-profile verified accounts.
However, Instagram hack now appears
|
|||
|
2017-09-01 00:10:42 | FDA Recalls Nearly Half a Million Pacemakers Over Hacking Fears (lien direct) | Almost half a million people in the United States are highly recommended to get their pacemakers updated, as they are vulnerable to hacking.
The Food and Drug Administration (FDA) has recalled 465,000 pacemakers after discovering security flaws that could allow hackers to reprogram the devices to run the batteries down or even modify the patient's heartbeat, potentially putting half a million
|
|||
|
2017-08-31 08:59:57 | Massive Email Campaign Sends Locky Ransomware to Over 23 Million Users (lien direct) | Whenever we feel like the Locky ransomware is dead, the notorious threat returns with a bang.
Recently, researchers from two security firms have independently spotted two mass email campaigns, spreading two different, but new variants of the Locky ransomware.
Lukitus Campaign Sends 23 Million Emails in 24 Hours
The campaign spotted by researchers at AppRiver sent out more than 23 million
|
|||
|
2017-08-31 05:33:56 | AngelFire: CIA Malware Infects System Boot Sector to Hack Windows PCs (lien direct) | A team of hackers at the CIA, the Central Intelligence Agency, allegedly used a Windows hacking tool against its targets to gain persistent remote access.
As part of its Vault 7 leaks, WikiLeaks today revealed details about a new implant developed by the CIA, dubbed AngelFire, to target computers running Windows operating system.
AngelFire framework implants a persistent backdoor on the
|
|||
|
2017-08-31 01:18:30 | Instagram Suffers Data Breach! Hacker Stole Contact Info of High-Profile Users (lien direct) | Instagram has recently suffered a possibly serious data breach with hackers gaining access to the phone numbers and email addresses for many "high-profile" users.
The 700 million-user-strong, Facebook-owned photo sharing service has currently notified all of its verified users that an unknown hacker has accessed some of their profile data, including email addresses and phone numbers, using a bug
|
|||
|
2017-08-31 00:10:29 | Oops! WikiLeaks Website Defaced By OurMine (lien direct) | OurMine is in headlines once again-this time for defacing WikiLeaks website.
The notorious hacking group, OurMine, is known for breaching into high-profile figures and companies' social media accounts, including Facebook CEO Mark Zuckerberg, Twitter CEO Jack Dorsey, Google CEO Sundar Pichai, HBO, Game of Thrones and Sony's PlayStation Network (PSN).
According to screenshots
|
|||
|
2017-08-30 10:46:22 | Gazer: A New Backdoor Targets Ministries and Embassies Worldwide (lien direct) | Security researchers at ESET have discovered a new malware campaign targeting consulates, ministries and embassies worldwide to spy on governments and diplomats. Active since 2016, the malware campaign is leveraging a new backdoor, dubbed Gazer, and is believed to be carried out by Turla advanced persistent threat (APT) hacking group that's been previously linked to Russian intelligence. | |||
|
2017-08-30 03:06:53 | Someone Hacked Selena Gomez Instagram, Shared Nude Justin Bieber Photos (lien direct) | The highest followers account on Instagram owned by Selena Gomez has recently been hacked with unknown hackers posting a bunch of nude photographs of her ex-boyfriend Justin Bieber on her account.
The latest hack is not part of the ongoing Fappening events affecting a majority of celebrities by targeting their iCloud accounts, rather in the case of Selena, some hacker managed to breach her
|
|||
|
2017-08-30 01:36:48 | Over 711 Million Email Addresses Exposed From SpamBot Server (lien direct) | A massive database of 630 million email addresses used by a spambot to send large amounts of spam to has been published online in what appears to be one of the biggest data dumps of its kind.
A French security researcher, who uses online handle Benkow, has spotted the database on an "open and accessible" server containing a vast amount of email addresses, along with millions of SMTP
|
|||
|
2017-08-29 10:33:31 | Using LabVIEW? Unpatched Flaw Allows Hackers to Hijack Your Computer (lien direct) | If you're an engineer and use LabVIEW software to design machines or industrial equipments, you should be very suspicious while opening any VI (virtual instrument) file.
LabVIEW, developed by American company National Instruments, is a visual programming language and powerful system-design tool that is being used worldwide in hundreds of fields and provides engineers with a simple environment
|
|||
|
2017-08-29 01:06:02 | China Enforces Real-Name Policy to Regulate Online Comments (lien direct) | If you reside in China, your Internet life within the borders will soon be even more challenging.
Last Friday, China's top Internet regulator announced a new set of rules that would force citizens to post comments using their real-world identities on Internet forums and other web platforms.
Yes, you heard that right. Anonymity is about to die in the country.
The Cyberspace Administration of
|
|||
|
2017-08-28 10:32:12 | WireX DDoS Botnet: An Army of Thousands of Hacked Android SmartPhones (lien direct) | Do you believe that just because you have downloaded an app from the official app store, you're safe from malware?
Think twice before believing it.
A team of security researchers from several security firms have uncovered a new, widespread botnet that consists of tens of thousands of hacked Android smartphones.
Dubbed WireX, detected as "Android Clicker," the botnet network primarily
|
|||
|
2017-08-28 05:24:11 | Private Internet Access – Get a Secure VPN to Protect Your Online Privacy (lien direct) | Since most of us rely upon the Internet for day-to-day activities today, hacking and spying have become a prime concern, and so have online security and privacy.
The Internet has become a digital universe with websites collecting your sensitive information and selling them to advertisers, hackers looking for ways to steal your data from the ill-equipped networks, websites, and PCs, and
|
|||
|
2017-08-28 05:17:19 | Beware! Viral Sarahah App Secretly Steals Your Entire Contact List (lien direct) | Are you also one of those 18 Million users using SARAHAH? You should beware of this app because the anonymous feedback application may not be as private as it really sounds. Sarahah is a newly launched app that has become one of the hottest iPhone and Android apps in the past couple of weeks, allowing its users to sign up to receive anonymised, candid messages from other Sarahah users. | |||
|
2017-08-25 01:53:36 | Easy-to-Use Apps Allow Anyone to Create Android Ransomware Within Seconds (lien direct) | "Ransomware" threat is on the rise, and cyber criminals are making millions of dollars by victimizing as many people as they can-with WannaCry, NotPetya and LeakerLocker being the ransomware threats that made headlines recently.
What's BAD? Hacker even started selling ransomware-as-a-service (RaaS) kits in an attempt to spread this creepy threat more easily, so that even a non-tech user can
|
NotPetya Wannacry | ||
|
2017-08-25 00:14:28 | FBI Arrests Another Hacker Who Visited United States to Attend a Conference (lien direct) | The FBI has arrested a Chinese citizen for allegedly distributing malware used in the 2015 massive OPM breach that resulted in the theft of personal details of more than 25 Million U.S. federal employees, including 5.6 Million federal officials' fingerprints.
Yu Pingan, identified by the agency as the pseudonym "GoldSun," was arrested at Los Angeles international airport on Wednesday when he
|
|||
|
2017-08-24 09:31:19 | Beware of Windows/MacOS/Linux Virus Spreading Through Facebook Messenger (lien direct) | If you came across any Facebook message with a video link sent by anyone, even your friend - just don't click on it.
Security researchers at Kaspersky Lab have spotted an ongoing cross-platform campaign on Facebook Messenger, where users receive a video link that redirects them to a fake website, luring them to install malicious software.
Although it is still unclear how the malware spreads
|
|||
|
2017-08-24 03:41:22 | Here\'s How CIA Spies On Its Intelligence Liaison Partners Around the World (lien direct) | WikiLeaks has just published another Vault 7 leak, revealing how the CIA spies on their intelligence partners around the world, including FBI, DHS and the NSA, to covertly collect data from their systems.
The CIA offers a biometric collection system-with predefined hardware, operating system, and software-to its intelligence liaison partners around the world that helps them voluntary share
|
|||
|
2017-08-24 00:27:34 | A Company Offers $500,000 For Secure Messaging Apps Zero-Day Exploits (lien direct) | How much does your privacy cost?
It will soon be sold for half a Million US dollars.
A controversial company specialises in acquiring and reselling zero-day exploits is ready to pay up to US$500,000 for working zero-day vulnerabilities targeting popular secure messenger applications, such as Signal, Telegram and WhatsApp.
Zerodium announced a new pricing structure on Wednesday, paying out $
|
|||
|
2017-08-23 09:56:42 | The Pirate Bay Founders Ordered to Pay Music Labels $477,800 in Compensation (lien direct) | Two of the three co-founders of The Pirate Bay-Fredrik Neij and Gottfrid Svartholm Warg-have been ordered by a Finnish court to pay record labels $477,800 in compensation for copyright infringement on the site.
Last year in a similar case, Helsinki District Court in Finland ordered Peter Sunde, the third co-founder of The Pirate Bay, to pay nearly $395,000 (350,000 Euros) in damages to
|
|||
|
2017-08-23 07:31:08 | Simple Exploit Allows Attackers to Modify Email Content - Even After It\'s Sent! (lien direct) | Security researchers are warning of a new, easy-to-exploit email trick that could allow an attacker to turn a seemingly benign email into a malicious one after it has already been delivered to your email inbox.
Dubbed Ropemaker (stands for Remotely Originated Post-delivery Email Manipulation Attacks Keeping Email Risky), the trick was uncovered by Francisco Ribeiro, the researcher at email
|
|||
|
2017-08-23 02:32:09 | Over 500 Android Apps On Google Play Store Found Spying On 100 Million Users (lien direct) | Over 500 different Android apps that have been downloaded more than 100 million times from the official Google Play Store found to be infected with a malicious ad library that secretly distributes spyware to users and can perform dangerous operations.
Since 90 per cent of Android apps is free to download from Google Play Store, advertising is a key revenue source for app developers. For this,
|
|||
|
2017-08-22 13:31:58 | Android 8.0 Oreo Released – 11 New Features That Make Android Even Better (lien direct) | While the moon was eclipsing the sun, Google announced the launch of its new mobile operating system called Android 8.0 Oreo in an Eclipse-themed launch event in New York City.
Yes, the next version of sugary snack-themed Android and the successor to Android Nougat will now be known as Android Oreo, the company revealed on Monday.
Google has maintained the tradition of naming its Android
|
|||
|
2017-08-22 09:26:52 | Fappening 2017: More Celebrity Nude Photos Hacked and Leaked Online (lien direct) | It seems like celebrities have not taken their security seriously, which once again resulted in the leaking of nude and personal photographs of more a-listed celebrities.
Dozens of personal and intimate photos of Anne Hathaway, Miley Cyrus, Kristen Stewart, Katharine McPhee, golfer Tiger Woods and his ex Lindsey Vonn have reportedly been surfaced on the Internet, and have widely been shared
|
To see everything:
Our RSS (filtrered)
