What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-02-04 11:23:17 | NY attorney general forces spyware vendor to alert victims (lien direct) | The New York attorney general's office has announced a $410,000 fine against a stalkerware developer who used 16 companies to promote surveillance tools illegally. [...] | ★★ | ||
|
2023-02-03 18:24:05 | TruthFinder, Instant Checkmate confirm data breach affecting 20M customers (lien direct) | PeopleConnect, the owners of the TruthFinder and Instant Checkmate background check services, confirmed they suffered a data breach after hackers leaked a 2019 backup database containing the info of millions of customers. [...] | Data Breach | ★★★ | |
|
2023-02-03 14:20:48 | Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide (lien direct) | Admins, hosting providers, and the French Computer Emergency Response Team (CERT-FR) warn that attackers actively target VMware ESXi servers unpatched against a two-year-old remote code execution vulnerability to deploy ransomware. [...] | Ransomware Vulnerability | ★★★ | |
|
2023-02-03 11:39:05 | GoAnywhere MFT zero-day vulnerability lets hackers breach servers (lien direct) | The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed administrator consoles. [...] | Vulnerability | ★★★ | |
|
2023-02-02 19:04:42 | Google ads push \'virtualized\' malware made for antivirus evasion (lien direct) | An ongoing Google ads malvertising campaign is spreading malware installers that leverage KoiVM virtualization technology to evade detection when installing the Formbook data stealer. [...] | Malware | ★★ | |
|
2023-02-02 15:23:18 | Hackers weaponize Microsoft Visual Studio add-ins to push malware (lien direct) | Security researchers warn that hackers may start using Microsoft Visual Studio Tools for Office (VSTO) more often as method to achieve persistence and execute code on a target machine via malicious Office add-ins. [...] | Malware | ★★★★★ | |
|
2023-02-02 12:56:58 | North Korean hackers stole research data in two-month-long breach (lien direct) | A new cyber espionage campaign dubbed 'No Pineapple!' has been attributed to the North Korean Lazarus hacking group, allowing the threat actors to stealthily steal 100GB of data from the victim without causing any destruction. [...] | Threat | APT 38 | ★★ |
|
2023-02-02 12:07:55 | Cisco fixes bug allowing malware persistence between reboots (lien direct) | Cisco has released security updates this week to address a high-severity vulnerability in the Cisco IOx application hosting environment that can be exploited in command injection attacks. [...] | Malware Vulnerability | ★★★ | |
|
2023-02-02 09:13:26 | Ransomware attack on ION Group impacts derivatives trading market (lien direct) | The LockBit ransomware gang has claimed responsibility for the cyberattack on ION Group, a UK-based software company whose products are used by financial institutions, banks, and corporations for trading, investment management, and market analytics. [...] | Ransomware | ★★ | |
|
2023-02-01 18:56:02 | New HeadCrab malware infects 1,200 Redis servers to mine Monero (lien direct) | New stealthy malware designed to hunt down vulnerable Redis servers online has infected over a thousand of them since September 2021 to build a botnet that mines for Monero cryptocurrency. [...] | Malware | ★★★ | |
|
2023-02-01 17:30:45 | Over 1,800 Android phishing forms for sale on cybercrime market (lien direct) | A threat actor named InTheBox is promoting on Russian cybercrime forums an inventory of 1,894 web injects (overlays of phishing windows) for stealing credentials and sensitive data from banking, cryptocurrency exchange, and e-commerce apps [...] | Threat | ★★ | |
|
2023-02-01 15:43:12 | Google Fi data breach let hackers carry out SIM swap attacks (lien direct) | Google Fi, Google's U.S.-only telecommunications and mobile internet service, has informed customers that personal data was exposed by a data breach at one of its primary network providers, with some customers warned that it allowed SIM swapping attacks. [...] | Data Breach | ★★ | |
|
2023-02-01 13:38:40 | Arnold Clark customer data stolen in attack claimed by Play ransomware (lien direct) | Arnold Clark, self-described as Europe's largest independent car retailer, is notifying some customers that their personal information has been stolen in a December 23 cyberattack claimed by the Play ransomware group. [...] | Ransomware | ★★★ | |
|
2023-02-01 09:45:52 | Hackers use new IceBreaker malware to breach gaming companies (lien direct) | A previously unknown threat group has been targeting the customer service platforms of online gaming and gambling companies using social engineering to drop its custom implant. [...] | Malware Threat | ★★★ | |
|
2023-02-01 07:30:00 | Crypto scam apps infiltrate Apple App Store and Google Play (lien direct) | Operators of high-yielding investment scams known as "pig butchering" have found a way to bypass the defenses in Google Play and Apple's App Store, the official repositories for Android and iOS apps. [...] | ★★ | ||
|
2023-01-31 13:48:32 | PoS malware can block contactless payments to steal credit cards (lien direct) | New versions of the Prilex point-of-sale malware can block secure, NFC-enabled contactless credit card transactions, forcing consumers to insert credit cards that are then stolen by the malware. [...] | Malware | ★ | |
|
2023-01-31 10:05:10 | Using the Wazuh SIEM and XDR platform to meet PCI DSS compliance (lien direct) | Wazuh is a free, open source security platform that unifies XDR and SIEM capabilities. Here's how Wazuh helps implement PCI DSS compliance for your organization. [...] | ★★★ | ||
|
2023-01-31 03:14:26 | Microsoft Defender can now isolate compromised Linux endpoints (lien direct) | Microsoft announced today that it added device isolation support via Microsoft Defender for Endpoint (MDE) on onboarded Linux devices. [...] | ★★★ | ||
|
2023-01-30 17:09:04 | KeePass disputes vulnerability allowing stealthy password theft (lien direct) | The development team behind the open-source password management software KeePass is disputing what is described as a newly found vulnerability that allows attackers to stealthily export the entire database in plain text. [...] | Vulnerability | ★★ | |
|
2023-01-30 13:27:03 | GitHub revokes code signing certificates stolen in repo hack (lien direct) | GitHub says that unknown attackers have stolen encrypted code-signing certificates for its Desktop and Atom applications after gaining access to some of its development and release planning repositories. [...] | Hack | ★★ | |
|
2023-01-30 10:55:41 | JD Sports says hackers stole data of 10 million customers (lien direct) | UK sports apparel chain JD Sports is warning customers of a data breach after a server was hacked that contained online order information for 10 million customers. [...] | Data Breach | ★★ | |
|
2023-01-28 11:32:16 | Researchers to release VMware vRealize Log RCE exploit, patch now (lien direct) | Security researchers with Horizon3's Attack Team will release next week an exploit targeting a vulnerability chain for gaining remote code execution on unpatched VMware vRealize Log Insight appliances. [...] | Vulnerability | ★★ | |
|
2023-01-28 10:21:32 | Hackers use new SwiftSlicer wiper to destroy Windows domains (lien direct) | Security researchers have identified a new data-wiping malware they named SwiftSlicer that aims to overwrite crucial files used by the Windows operating system. [...] | Malware | ★★ | |
|
2023-01-27 13:10:49 | Ukraine: Sandworm hackers hit news agency with 5 data wipers (lien direct) | The Ukrainian Computer Emergency Response Team (CERT-UA) found a cocktail of five different data-wiping malware strains deployed on the network of the country's national news agency (Ukrinform) on January 17th. [...] | Malware | ★★★ | |
|
2023-01-27 11:00:12 | PlugX malware hides on USB devices to infect new Windows hosts (lien direct) | Security researchers have analyzed a variant of the PlugX malware that can hide malicious files on removable USB devices and then infect the Windows hosts they connect to. [...] | Malware | ★★★ | |
|
2023-01-26 16:40:34 | Bitwarden password vaults targeted in Google ads phishing attack (lien direct) | Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...] | Hack | ★★★ | |
|
2023-01-26 15:41:44 | US offers $10M bounty for Hive ransomware links to foreign governments (lien direct) | The U.S. Department of State today offered up to $10 million for information that could help link the Hive ransomware group (or other threat actors) with foreign governments. [...] | Ransomware Threat | ★★ | |
|
2023-01-26 12:19:26 | UK warns of increased attacks from Russian, Iranian hackers (lien direct) | The U.K. National Cyber Security Centre (NCSC) has issued a warning of Russian and Iranian state-sponsored hackers increasingly targeting organizations and individuals. [...] | ★★★ | ||
|
2023-01-26 10:14:55 | (Déjà vu) Hive ransomware disrupted after FBI hacks gang\'s systems (lien direct) | Today, the Hive ransomware Tor payment and data leak sites were seized as part of an international law enforcement operation involving the US Department of Justice, FBI, Secret Service, Europol, and Germany's BKA and Polizei. [...] | Ransomware | ★★ | |
|
2023-01-26 10:14:55 | Hive ransomware dark web sites seized by law enforcement (lien direct) | Today, the Hive ransomware Tor payment and data leak sites were seized as part of an international law enforcement operation involving the US Department of Justice, FBI, Secret Service, Europol, and Germany's BKA and Polizei. [...] | Ransomware | ★ | |
|
2023-01-26 09:44:08 | Yandex denies hack, blames source code leak on former employee (lien direct) | A Yandex source code repository allegedly stolen by a former employee of the Russian technology company has been leaked as a Torrent on a popular hacking forum. [...] | ★★ | ||
|
2023-01-25 14:34:52 | Hackers auction alleged source code for League of Legends (lien direct) | Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment. [...] | Hack Threat | ★★ | |
|
2023-01-25 13:45:11 | Zacks Investment Research data breach affects 820,000 clients (lien direct) | Hackers breached Zacks Investment Research (Zacks) company last year and gained access to personal and sensitive information belonging to 820,000 customers. [...] | Data Breach | ★★ | |
|
2023-01-25 13:00:10 | Malware exploited critical Realtek SDK bug in millions of attacks (lien direct) | Hackers have leveraged a critical remote code execution vulnerability in Realtek Jungle SDK 134 million attacks trying to infect smart devices in the second half of 2022. [...] | Malware Vulnerability | ★★ | |
|
2023-01-25 09:53:14 | New stealthy Python RAT malware targets Windows in attacks (lien direct) | A new Python-based malware has been spotted in the wild featuring remote access trojan (RAT) capabilities to give its operators control over the breached systems. [...] | Malware | ★★ | |
|
2023-01-24 18:07:45 | Ransomware access brokers use Google ads to breach your network (lien direct) | A threat actor tracked as DEV-0569 uses Google Ads in widespread, ongoing advertising campaigns to distribute malware, steal victims' passwords, and ultimately breach networks for ransomware attacks. [...] | Ransomware Threat | ★★ | |
|
2023-01-24 12:23:16 | Riot Games receives ransom demand from hackers, refuses to pay (lien direct) | Riot Games says it will not pay the ransom demanded by the attackers responsible for the security breach the company disclosed last week. [...] | ★★★ | ||
|
2023-01-24 09:49:59 | FBI: North Korean hackers stole $100 million in Harmony crypto hack (lien direct) | The FBI has concluded its investigation on the $100 million worth of ETH heist that hit Harmony Horizon in June 2022 and validated that the hackers responsible for it are the Lazarus group and APT38. [...] | Hack Medical | APT 38 | ★★ |
|
2023-01-23 15:18:02 | Russia\'s largest ISP says 2022 broke all DDoS attack records (lien direct) | Russia's largest internet service provider Rostelecom says 2022 was a record year for Distributed denial of service attacks (DDoS) targeting organizations in the country. [...] | ★★ | ||
|
2023-01-23 09:44:13 | Microsoft plans to kill malware delivery via Excel XLL add-ins (lien direct) | Microsoft is working on adding XLL add-in protection for Microsoft 365 customers by including automated blocking of all such files downloaded from the Internet. [...] | Malware | ★★ | |
|
2023-01-22 13:56:45 | (Déjà vu) FanDuels warns of data breach after customer info stolen in vendor hack (lien direct) | The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] | Data Breach Hack | ★★ | |
|
2023-01-22 13:56:45 | FanDuel discloses data breach caused by recent MailChimp hack (lien direct) | The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] | Data Breach Hack | ★★ | |
|
2023-01-21 14:54:41 | Riot Games hacked, delays game patches after security breach (lien direct) | Riot Games, the video game developer and publisher behind League of Legends and Valorant, says it will delay game patches after its development environment was compromised. [...] | ★★★ | ||
|
2023-01-21 11:15:30 | (Déjà vu) Hackers now use Microsoft OneNote attachments to spread malware (lien direct) | Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets. [...] | Malware Threat | ★★★★★ | |
|
2023-01-21 11:15:30 | Beware: Hackers now use OneNote attachments to spread malware (lien direct) | Threat actors now use OneNote attachments in phishing emails that infect victims with remote access malware which can be used to install further malware, steal passwords, or even cryptocurrency wallets. [...] | Malware Threat | ★ | |
|
2023-01-20 11:02:16 | New Boldmove Linux malware used to backdoor Fortinet devices (lien direct) | Suspected Chinese hackers exploited a recently disclosed FortiOS SSL-VPN vulnerability as a zero-day in December, targeting a European government and an African MSP with a new custom 'BOLDMOVE' Linux and Windows malware. [...] | Malware Vulnerability | ★★★ | |
|
2023-01-19 18:30:22 | New \'Hook\' Android malware lets hackers remotely control your phone (lien direct) | A new Android malware named 'Hook' is being sold by cybercriminals, boasting it can remotely take over mobile devices in real-time using VNC (virtual network computing). [...] | Malware | ★★★ | |
|
2023-01-19 17:19:22 | T-Mobile hacked to steal data of 37 million accounts in API data breach (lien direct) | T-Mobile disclosed a new data breach after a threat actor stole the personal information of 37 million current postpaid and prepaid customer accounts through one of its Application Programming Interfaces (APIs). [...] | Data Breach Threat | ★ | |
|
2023-01-19 14:21:11 | Ransomware gang steals data from KFC, Taco Bell, and Pizza Hut brand owner (lien direct) | Yum! Brands, the fast food brand operator of KFC, Pizza Hut, Taco Bell, and The Habit Burger Grill fast-food restaurant chains, has been targeted by a ransomware attack that forced the closure of 300 locations in the United Kingdom. [...] | Ransomware | ★★★ | |
|
2023-01-19 12:55:02 | Roaming Mantis\' Android malware adds DNS changer to hack WiFi routers (lien direct) | Starting in September 2022, the 'Roaming Mantis' credential theft and malware distribution campaign was observed using a new version of the Wroba.o/XLoader Android malware that incorporates a function for detecting specific WiFi routers and changing their DNS. [...] | Malware Hack | ★★ |
To see everything:
Our RSS (filtrered)
