What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-04-11 13:49:10 | Think Like a Criminal: Knowing Popular Attack Techniques to Stop Bad Actors Faster (lien direct) | Analyzing the attack goals of adversaries is important to be able to better align defenses against the speed of changing attack techniques. By focusing on a handful of techniques, you can effectively shut down malware's methods of choice for getting in and making itself at home. To achieve this, you need to know which key areas to be focusing on in the coming months. | |||
|
2022-04-11 13:43:07 | Lawmakers Want to Improve Cybersecurity Info Sharing Between DHS, Congress (lien direct) | Senators last week introduced a bill whose goal is to improve the sharing of cybersecurity information between the Department of Homeland Security and Congress. | |||
|
2022-04-11 12:40:06 | \'Octo\' Android Trojan Allows Cybercrooks to Conduct On-Device Fraud (lien direct) | Threat Fabric security researchers have analyzed an Android banking trojan that allows its operators to perform on-device fraud. | |||
|
2022-04-11 11:06:18 | The Art Exhibition That Fools Facial Recognition Systems (lien direct) | The most boring art exhibition in the world has been launched online. It comprises just 100 images of the same painting: 100 copies of the Mona Lisa. But all is not what it seems – and that's the whole point. Humans see 100 identical Mona Lisa images; but facial recognition systems see 100 different celebrities. | |||
|
2022-04-11 10:41:32 | SuperCare Health Data Breach Impacts Over 300,000 People (lien direct) | California-based respiratory care provider SuperCare Health recently disclosed a data breach affecting more than 300,000 individuals. | Data Breach | ||
|
2022-04-11 10:11:53 | Snap-on Tools Hit by Cyberattack Claimed by Conti Ransomware Gang (lien direct) | Conti ransomware gang claimed responsibility for cyberattack on Wisconsin-based tool maker | Ransomware Tool | ||
|
2022-04-10 10:49:13 | Accounts Deceivable: Email Scam Costliest Type of Cybercrime (lien direct) | A shopping spree in Beverly Hills, a luxury vacation in Mexico, a bank account that jumped from $299.77 to $1.4 million overnight. | |||
|
2022-04-08 13:31:20 | Third Member of FIN7 Cybercrime Gang Sentenced to US Prison (lien direct) | A Ukrainian national was sentenced on Thursday to five years in prison in the United States for his role in the infamous FIN7 hacking group. The man, Denys Iarmak, 32, was a high-level hacker within FIN7, also referred to as a “pen tester,” working with the cyber gang between November 2016 and November 2018, documents presented in court show. | |||
|
2022-04-08 12:51:05 | Spring4Shell Vulnerability Exploited by Mirai Botnet (lien direct) | Cybersecurity firm Trend Micro on Friday confirmed some earlier reports that the new Spring4Shell vulnerability has been exploited by the Mirai botnet. Two critical vulnerabilities have been patched recently in the popular Java application development framework Spring: CVE-2022-22965 (aka Spring4Shell and SpringShell) and CVE-2022-22963. | Vulnerability | ||
|
2022-04-08 11:28:15 | Blockchain Security Firm CertiK Raises $88 Million at $2 Billion Valuation (lien direct) | Blockchain security startup CertiK on Thursday announced that it has raised $88 million in a Series B3 funding round, which boosted its valuation above the $2 billion mark. Over the past nine months, the company has raised $230 million. | |||
|
2022-04-08 11:05:47 | Microsoft Disrupts Infrastructure Used by Russia\'s Hackers in Ukraine Attacks (lien direct) | Microsoft on Thursday said it has attempted to disrupt cyberattacks launched by the Russian government against Ukraine by seizing some of the domains leveraged by a notorious state-sponsored threat group. | Threat | ||
|
2022-04-08 10:47:52 | Google Updates Target API Level Requirements for Android Apps (lien direct) | Google this week announced updated target level API requirements for Android applications in an attempt to improve the overall security of the ecosystem. | ★★★★★ | ||
|
2022-04-08 10:20:33 | Windows Autopatch Aims to Make Patch Tuesday \'Just Another Tuesday\' for Enterprises (lien direct) | Microsoft this week announced Windows Autopatch, a new automatic updates service for Windows 10 and 11 Enterprise E3 customers that will manage all software, firmware, driver, and enterprise app updates. | |||
|
2022-04-08 08:46:57 | SharkBot Android Malware Continues Popping Up on Google Play (lien direct) | Over the past couple of months, security researchers identified several applications in Google Play that were designed to download the SharkBot Android trojan. | Malware | ||
|
2022-04-07 15:47:33 | Facebook Battles Cyber Campaigns Targeting Ukraine (lien direct) | Facebook's parent company Meta on Thursday said Russian state actors and others are relentlessly trying to use the social network against the Ukraine with deception, hacking and coordinated bullying campaigns. | |||
|
2022-04-07 15:22:42 | Healthcare and the Other CIA (lien direct) | For IT professionals, the acronym “CIA” refers to the Confidentiality, Integrity and Availability of information, not the Central Intelligence Agency. However, given the current threat level to data security, IT teams may wish they could get a little help from people with intelligence community tradecraft experience. | Threat | ||
|
2022-04-07 14:42:33 | (Déjà vu) Nudge Security Bags $7M Seed Round (lien direct) | Nudge Security, an early stage startup promising to help organizations manage cybersecurity decisions, has banked a $7 million seed round. | |||
|
2022-04-07 14:42:33 | Nudge Security Bags Seed $7M Seed Round (lien direct) | Nudge Security, an early stage startup promising to help organizations manage cybersecurity decisions, has emerged from stealth with a $7 million seed round. | |||
|
2022-04-07 14:11:41 | Google Teams Up With GitHub for Supply Chain Security (lien direct) | Google has teamed up with GitHub for a solution that should help prevent software supply chain attacks such as the ones that affected SolarWinds and Codecov. | |||
|
2022-04-07 13:57:58 | VPN Provider Nord Security Reaches Unicorn Status With $100 Million Funding (lien direct) | Lithuania-based VPN provider reaches “Unicorn” status with first ever outside funding | |||
|
2022-04-07 13:48:48 | India Claims It Foiled Chinese Cyberattack on Disputed Border (lien direct) | India on Thursday claimed it foiled an attempted cyber-attack by Chinese hackers targeting its power distribution system near a disputed frontier where the two countries are engaged in a military stand-off. | |||
|
2022-04-07 12:09:29 | BlackCat Ransomware Targets Industrial Companies (lien direct) | A data theft tool used by the ransomware group tracked as BlackCat, ALPHV and Noberus suggests that the cybercriminals are increasingly interested in targeting industrial organizations. | Ransomware Tool | ||
|
2022-04-07 10:41:36 | Zoom Paid Out $1.8 Million in Bug Bounties in 2021 (lien direct) | Video communications giant Zoom this week announced that it paid out roughly $1.8 million in bug bounty rewards in 2021. The company launched its bug bounty program on the HackerOne platform in 2019, and says it has handed out more than $2.4 million in bounty payouts to date. | |||
|
2022-04-07 10:09:51 | VMware Patches Five Critical Vulnerabilities in Workspace ONE Access (lien direct) | VMware on Wednesday announced patches for several critical and high-severity vulnerabilities affecting Workspace ONE Access and other products. | |||
|
2022-04-07 03:10:39 | Microsoft Adds On-Premises Exchange, SharePoint, Skype to Bug Bounty Program (lien direct) | Microsoft announced this week that on-premises versions of Exchange, SharePoint, and Skype for Business have been added to its Applications and On-Premises Servers Bounty Program. The tech giant is offering up to $26,000 in rewards for eligible reports detailing high-impact security vulnerabilities in these products. | ★★★★ | ||
|
2022-04-06 18:47:37 | Hamas-Linked Hackers Using Sexy Facebook \'Catfish\' Lures, New Malware (lien direct) | Hamas-linked APT Group targeting high-ranking Israelis with new new malware | Malware | ||
|
2022-04-06 18:20:58 | FBI Disables "Cyclops Blink" Botnet Controlled by Russian Intelligence Agency (lien direct) | The U.S. government on Wednesday announced that it had neutralized a massive botnet of hardware devices controlled by Russia's main intelligence agency (GRU). | |||
|
2022-04-06 17:58:00 | US Charges Russian Oligarch, Dismantles Cybercrime Operation (lien direct) | The Biden administration charged a Russian oligarch linked to the Kremlin with violating U.S. government sanctions and disrupted a cybercrime operation launched by a Russian military intelligence agency, officials said Wednesday. | |||
|
2022-04-06 17:10:17 | Apple Leaves Big Sur, Catalina Exposed to Critical Flaws: Intego (lien direct) | Apple is being called to task for neglecting to patch two "actively exploited" zero-day vulnerabilities on older versions of its flagship macOS platform. | |||
|
2022-04-06 15:04:59 | Denonia: First Malware Targeting AWS Lambda (lien direct) | Researchers have come across what appears to be the first piece of malware designed to specifically target AWS Lambda environments. | Malware | ||
|
2022-04-06 14:39:25 | Tufin Agrees to $570 Million Acquisition With 30-Day \'Go Shop\' Option (lien direct) | Security policy management firm Tufin (NYSE: TUFN) has agreed to be acquired by investment firm Turn/River Capital for approximately $570 million in cash. | |||
|
2022-04-06 13:49:47 | Google Doubles Rewards for Nest and Fitbit Vulnerabilities (lien direct) | Google on Tuesday announced that security researchers submitting eligible Google Nest and Fitbit vulnerability reports through its bug bounty program can now receive double the usual bounty payouts. | Vulnerability | ||
|
2022-04-06 13:34:19 | Texas Department of Insurance Exposed Data of 1.8 Million People (lien direct) | The Texas Department of Insurance recently disclosed a “data security event” that appears to have affected roughly 1.8 million people. | |||
|
2022-04-06 12:43:18 | Coro Raises $80 Million for Cybersecurity Platform for Mid-Market Organizations (lien direct) | Coro this week announced that it has raised $60 million in a Series C funding round that brings the total raised over the past six months to $80 million. The latest funding round was led by Balderton Capital, with participation from Jerusalem Venture Partners (JVP). | |||
|
2022-04-06 11:30:52 | FIN7 Cybercrime Operation Continues to Evolve Despite Arrests (lien direct) | Despite recent arrests and convictions, the FIN7 cybercrime operation has continued to evolve, with hackers updating their tools and techniques and changing monetization strategies, according to cybersecurity firm Mandiant. | |||
|
2022-04-06 10:57:37 | Europe Warned About Cyber Threat to Industrial Infrastructure (lien direct) | Malicious cyber actors pose a serious threat to Europe's industrial infrastructure, with at least ten hacker groups known to target European organizations, according to a new report from industrial cybersecurity firm Dragos. | Threat | ★★★ | |
|
2022-04-05 19:37:22 | Germany Shuts Down Darknet Platform Specializing in Drugs (lien direct) | German investigators on Tuesday shut down a Russian-language darknet marketplace that they say specialized in drug dealing, seizing bitcoin worth 23 million euros ($25.3 million). | |||
|
2022-04-05 16:08:17 | Symantec: Chinese APT Group Targeting Global MSPs (lien direct) | Malware hunters at Broadcom's Symantec division have spotted signs that a long-running cyberespionage campaign linked to Chinese nation-state hackers is now going after managed service providers (MSPs) with a more global footprint. | |||
|
2022-04-05 14:59:38 | 44 Vulnerabilities Patched in Android With April 2022 Security Updates (lien direct) | The Android updates released by Google for April 2022 include patches for 44 vulnerabilities, including several rated “critical severity.” As usual, the update was split into two parts, with the first of them arriving on devices as the “2022-04-01 security patch level” and addressing 14 security holes. | |||
|
2022-04-05 14:57:04 | CashApp Says Ex-Employee Stole Customer Stock Trading Data (lien direct) | Financial services and stock trading platform CashApp on Tuesday fessed up to a data breach being blamed on a former employee who stole brokerage data, including portfolio values, from an unknown number of U.S. accounts. | Data Breach | ||
|
2022-04-05 14:47:51 | Ransomware Gang Leaks Files Stolen From Industrial Giant Parker Hannifin (lien direct) | A notorious cybercrime group has leaked several gigabytes of files allegedly stolen from US industrial components giant Parker Hannifin. Parker Hannifin specializes in motion and control technologies, and it provides precision engineered solutions for organizations in the aerospace, mobile, and industrial sectors. | |||
|
2022-04-05 13:58:29 | API IAM Security Provider Corsha Raises $12 Million (lien direct) | Washington, DC-based API security firm Corsha has raised $12 million in a Series A funding round led by Ten Eleven Ventures and Razor's Edge Ventures, with participation from 1843 Capital. | |||
|
2022-04-05 13:11:40 | US State Department Launches Cyberspace and Digital Diplomacy Bureau (lien direct) | The US Department of State on Monday announced the creation of the Bureau of Cyberspace and Digital Policy (CDP). The new entity was created to deal with national security challenges, but also with the implications of cyberspace and digital technologies and policies on US values. | |||
|
2022-04-05 12:47:54 | Defenders Provided Tools and Information for Dealing With Spring4Shell (lien direct) | US Government Agencies Instructed to Patch Spring4Shell Vulnerability Enterprise defenders have been provided information and tools to help them deal with Spring4Shell and potential attacks exploiting the vulnerability. | |||
|
2022-04-05 11:50:16 | Airgap Networks Raises $13 Million for Ransomware Kill Switch (lien direct) | Airgap Networks on Tuesday announced raising $13.4 million in a Series A funding round that brings the total raised by the company to $18.6 million. The funding round was led by Storm Ventures, with participation from Cervin Ventures, Engineering Capital, Sorenson Ventures, and various angel investors. | Ransomware | ||
|
2022-04-05 11:34:27 | Yokogawa Patches Flaws Allowing Disruption, Manipulation of Physical Processes (lien direct) | Japanese automation giant Yokogawa recently patched a series of vulnerabilities in control system products that, according to researchers, can be exploited for the disruption or manipulation of physical processes. | |||
|
2022-04-05 11:30:00 | Why Some CISOs Fail (lien direct) | 
|
|||
|
2022-04-05 10:41:48 | Wind Turbine Giant Nordex Shuts Down IT Systems in Response to Cyberattack (lien direct) | Nordex Group, one of the world's largest manufacturers of wind turbines, fell victim to a cyberattack that forced it to take down multiple systems. The Hamburg, Germany-based company announced over the weekend that it detected the intrusion on Thursday, March 31, and that it immediately deployed measures “in line with crisis management protocols.” | |||
|
2022-04-05 10:22:14 | Academics Devise Side-Channel Attack Targeting Multi-GPU Systems (lien direct) | A group of academic researchers has devised a side-channel attack targeting architectures that rely on multiple graphics processing units (GPUs) for resource-intensive computational operations. | |||
|
2022-04-05 10:13:14 | Palestinian Lawyer Sues Pegasus Spyware Maker in France (lien direct) | Palestinian lawyer Salah Hamouri, who is in Israeli detention, filed a complaint in France Tuesday against surveillance firm NSO Group for having "illegally infiltrated" his mobile phone with the spyware Pegasus. | ★★★ |
To see everything:
Our RSS (filtrered)
