What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-01-11 17:53:21 | SolarWinds Hack Potentially Linked to Turla APT (lien direct) | Researchers have spotted notable code overlap between the Sunburst backdoor and a known Turla weapon. | Hack Mobile | Solardwinds Solardwinds | |
 |
2021-01-11 14:48:00 | Expert Reaction On INM Alleged Data Hack Case (lien direct) | It has been reported that Independent News and Media (INM) is trying to stall a case that is being taken against it and its former chairman, Leslie Buckley, by two members of… The ISBuzz Post: This Post Expert Reaction On INM Alleged Data Hack Case | Hack | ||
 |
2021-01-11 12:55:17 | Data stolen from New Zealand\'s Central Bank following hack (lien direct) | New Zeland’s central bank, The Reserve Bank of New Zealand, has recently been hacked, with both personally and commercially sensitive information being stolen in the hack. News of the hack was first revealed on Sunday, and it has been reported that it was due to the breach of a third-party file sharing service which the […] | Hack | ||
 |
2021-01-10 23:11:27 | Russian Hacker Gets 12-Years Prison for Massive JP Morgan Chase Hack (lien direct) | A U.S. court on Thursday sentenced a 37-year-old Russian to 12 years in prison for perpetrating an international hacking campaign that resulted in the heist of a trove of personal information from several financial institutions, brokerage firms, financial news publishers, and other American companies.
Andrei Tyurin was charged with computer intrusion, wire fraud, bank fraud, and illegal online |
Hack | ||
 |
2021-01-09 14:09:45 | SolarWinds hackers also used common hacker techniques, CISA revealed (lien direct) | CISA revealed that threat actors behind the SolarWinds hack also used password guessing and password spraying in its attacks. Cybersecurity and Infrastructure Security Agency (CISA) revealed that threat actors behind the SolarWinds supply chain attack also employed common hacker techniques to compromise the networks of the targeted organizations, including password guessing and password spraying. “Frequently, […] | Hack Threat | ||
 |
2021-01-08 21:36:00 | CISA: SolarWinds hackers also used password guessing to breach targets (lien direct) | CISA says the threat actor behind the SolarWinds hack also used password guessing and password spraying to breach targets, not just trojanized updates. | Hack Threat | ||
|
2021-01-08 17:19:09 | SolarWinds Hires Chris Krebs, Alex Stamos in Wake of Hack (lien direct) | Former CISA director Chris Krebs and former Facebook security exec Alex Stamos have teamed up to create a new consulting group - and have been hired by SolarWinds. | Hack | ||
|
2021-01-07 14:23:56 | Multiple flaws in Fortinet FortiWeb WAF could allow corporate networks to hack (lien direct) | An expert found multiple serious vulnerabilities in Fortinet's FortiWeb web application firewall (WAF) that could expose corporate networks to hack. Andrey Medov, a security researcher at Positive Technologies, found multiple serious vulnerabilities in Fortinet's FortiWeb web application firewall (WAF) that could be exploited by attackers to hack into corporate networks. The flaws, tracked as CVE-2020-29015, CVE-2020-29016, CVE-2020-29018, and […] | Hack | ||
 |
2021-01-07 14:03:50 | US Judiciary adds safeguards after potential breach in SolarWinds hack (lien direct) | The Administrative Office of the U.S. Courts is investigating a potential compromise of the federal courts' case management and electronic case files system which stores millions of highly sensitive and confidential judiciary records. [...] | Hack | ||
|
2021-01-07 13:05:11 | US Govt kicked off \'Hack the Army 3.0\' bug bounty program (lien direct) | The U.S. government is going to launch the ‘Hack the Army 3.0’ bug bounty program in collaboration with the HackerOne platform. The U.S. government launched Hack the Army 3.0, the third edition of its bug bounty program, in collaboration with the HackerOne platform. The second Hack the Army bug bounty program ran between October 9 and November […] | Hack | ||
|
2021-01-07 09:20:46 | JetBrains denies involvement in the SolarWinds supply-chain hack (lien direct) | JetBrains' CEO, Maxim Shafirov, denied reports from multiple news outlets that the company played a role in the SolarWinds supply chain attack. [...] | Hack | ★★★ | |
 |
2021-01-07 09:00:00 | (Déjà vu) Dissecting the SolarWinds hack without the use of signatures (lien direct) | This blog explains how activity related to the SolarWinds hack can be detected without the use of signatures, and why a self-learning approach is the best possible mechanism to catch this Advanced Persistent Threat. | Hack | ||
|
2021-01-07 09:00:00 | Detecting the SolarWinds hack without the use of signatures (lien direct) | This blog explains how activity related to the SolarWinds hack can be detected without the use of signatures, and why a self-learning approach is the best possible mechanism to catch this Advanced Persistent Threat. | Hack | ||
 |
2021-01-07 02:27:45 | DoJ says SolarWinds hackers breached its Office 365 system and read email (lien direct) | Department discovered the intrusion 9 days after SolarWinds hack came to light. | Hack | ||
|
2021-01-07 00:52:00 | JetBrains denies being involved in SolarWinds hack (lien direct) | JetBrains denies reports that is being under investigation and somehow related to the SolarWinds breach. | Hack | ★★★★★ | |
|
2021-01-06 19:41:18 | SolarWinds fallout: DOJ says hackers accessed its Microsoft O365 email server (lien direct) | The US Department of Justice is one of the rare SolarWinds victims where hackers escalated the hack to a second phase and moved to access internal email inboxes, the agency said today. | Hack | ||
 |
2021-01-06 18:00:56 | Tabby HacktheBox Walkthrough (lien direct) | Today, we're sharing another Hack the box Challenge Walkthrough box: Tabby and the machine is part of the retired lab, so you can connect to the machine using your HTB VPN and then start to solve the CTF. The level of the Lab is set: Beginner to intermediate. Task: Capture the user.txt and root.txt flags.... Continue reading → | Hack | ||
|
2021-01-06 12:15:31 | (Déjà vu) Recently disclosed CVE-2020-29583 Zyxel flaw already under opportunistic attack (lien direct) | Threat actors are attempting to hack Zyxel devices exploiting the recently disclosed vulnerability CVE-2020-29583, security researchers warn. The Taiwanese vendor Zyxel has recently addressed a critical vulnerability in its firmware, tracked as CVE-2020-29583, related to the presence of a hardcoded undocumented secret account. The vulnerability received a CVSS score of 7.8, it could be exploited by […] | Hack Vulnerability | ||
 |
2021-01-06 12:08:44 | Class Action Lawsuit Filed Against SolarWinds Over Hack (lien direct) | A class action lawsuit was filed on behalf of SolarWinds investors this week over the cybersecurity breach suffered by the Texas-based IT management solutions provider. | Hack | ||
|
2021-01-06 10:48:19 | Expert On US intel Agencies Blame Russia For Massive SolarWinds Hack (lien direct) | A group of U.S. intelligence agencies on Tuesday formally accused Russia of being linked to the recently discovered hack of IT group SolarWinds that compromised much of the federal government. The FBI, the Office of… The ISBuzz Post: This Post Expert On US intel Agencies Blame Russia For Massive SolarWinds Hack | Hack | ||
|
2021-01-06 04:06:12 | Bucking Trump, NSA and FBI say Russia was “likely” behind SolarWinds hack (lien direct) | Trump has downplayed the mass compromise and Russia's involvement. Underlings disagree. | Hack | ★★★★ | |
 |
2021-01-06 02:00:00 | SolarWinds hack is a wakeup call for taking cybersecurity action (lien direct) | Advanced Persistent Threats (APTs) have long been a concern of the cybersecurity community. Well-organized teams with significant resources and targets they are not willing to give up attacking until their mission is accomplished are certainly not a threat to be underestimated. The tactics deployed by such groups involve a combination of attack types, from exploiting zero-day vulnerabilities to social engineering, gaining access, establishing a foothold and deepening access, and then remaining in a target's systems undetected until realizing their goal. | Hack Threat | ||
|
2021-01-06 00:00:17 | FBI, CISA, ODNI and NSA blames Russia for SolarWinds hack (lien direct) | A joint statement issued by US security agencies confirmed that Russia was likely the origin of the SolarWinds supply chain attack. The US agencies FBI, CISA, ODNI, and the NSA released a joint statement that blames Russia for the SolarWinds supply chain attack. On behalf of President Trump, the four agencies were part of the task force […] | Hack | ||
|
2021-01-05 22:02:08 | US: Hack of Federal Agencies \'Likely Russian in Origin\' (lien direct) | Top national security agencies confirmed Tuesday that Russia was likely responsible for a massive hack of U.S. | Hack | ||
|
2021-01-05 21:18:00 | US government formally blames Russia for SolarWinds hack (lien direct) | Joint statement from the FBI, CISA, ODNI, and NSA says SolarWinds hack was "likely Russian in origin." | Hack | ||
|
2021-01-05 15:56:56 | US govt says Russian state hackers likely behind SolarWinds hack (lien direct) | The Cyber Unified Coordination Group (UCG) said today that a Russian-backed Advanced Persistent Threat (APT) group is likely behind the SolarWinds hack. [...] | Hack Threat | ||
|
2021-01-05 14:28:19 | Ticketmaster Admits To Hacking Rival Company (lien direct) | As reported by Ars Technica, Ticketmaster has agreed to pay a $10 million criminal fine after admitting its employees repeatedly used stolen passwords and other means to hack a rival ticket… The ISBuzz Post: This Post Ticketmaster Admits To Hacking Rival Company | Hack | ||
 |
2021-01-05 13:09:45 | T-Mobile suffers its fourth hack in less than three years – still “takes the security of your information very seriously” (lien direct) | T-Mobile says that its security team recently discovered that hackers had managed to access information related to T-Mobile accounts. And it's not the first time... | Hack | ||
 |
2021-01-05 12:42:38 | Latest on the SVR\'s SolarWinds Hack (lien direct) | The New York Times has an in-depth article on the latest information about the SolarWinds hack (not a great name, since it’s much more far-reaching than that). Interviews with key players investigating what intelligence agencies believe to be an operation by Russia's S.V.R. intelligence service revealed these points: The breach is far broader than first believed. Initial estimates were that Russia sent its probes only into a few dozen of the 18,000 government and private networks they gained access to when they inserted code into network management software made by a Texas company named SolarWinds. But as businesses like Amazon and Microsoft that provide cloud services dig deeper for evidence, it now appears Russia exploited multiple layers of the supply chain to gain access to as many as 250 networks. ... | Hack | ||
 |
2021-01-05 01:16:42 | SolarWinds hack poses risk to cloud services\' API keys and IAM identities (lien direct) | The SolarWinds hack endangers not just organizations' on-premises systems but also their cloud-based infrastructure. | Hack | ||
|
2021-01-04 15:26:15 | Ticketmaster Coughs Up $10 Million Fine After Hacking Rival Business (lien direct) | Several Ticketmaster executives conspired a hack against a rival concert presales firm, in attempt to 'choke off' its business. | Hack | ||
 |
2021-01-04 01:35:00 | SolarWinds : 250 organisations piratées et des codes sources de Microsoft siphonnés (lien direct) | L'impact du gigantesque hack d'origine russe semble chaque jour prendre de l'ampleur. Même le géant Microsoft a été piraté. Ce dernier estime néanmoins que le risque pour ses clients est nul.  |
Hack | ||
|
2021-01-02 14:40:26 | Top stories of 2020 (lien direct) | Below the list of the top stories of 2020. December 21 – SUPERNOVA, a backdoor found while investigating SolarWinds hack While investigating the recent SolarWinds Orion supply-chain attack security researchers discovered another backdoor, tracked SUPERNOVA. August 2 – Garmin allegedly paid for a decryptor for WastedLocker ransomware BleepingComputer researchers confirmed that Garmin has received the […] | Ransomware Hack | ||
|
2021-01-01 13:05:51 | Ticketmaster fined $10 million after hack of business rival (lien direct) | The US Department of Justice has announced that Ticketmaster has been fined $10 million for repeatedly accessing a competitor's computer systems in order to gain a commercial advantage. | Hack | ||
|
2020-12-30 01:28:00 | SolarWinds : le mystère du hack de l\'année élucidé par Microsoft ? (lien direct) | Les mises à jour vérolées du logiciel Orion n'étaient qu'une porte d'entrée pour, au final, mettre la main sur des jetons d'authentification de services cloud.  |
Hack | ||
|
2020-12-28 13:46:45 | Finnish Parliament attackers hack lawmakers\' email accounts (lien direct) | The email accounts of multiple members of parliament (MPs) were compromised following a cyberattack as revealed today by the Parliament of Finland. [...] | Hack | ||
|
2020-12-25 14:08:50 | CrowdStrike releases free Azure security tool after failed hack (lien direct) | Leading cybersecurity firm CrowdStrike was notified by Microsoft that threat actors had attempted to read the company's emails through compromised by Microsoft Azure credentials. [...] | Hack Tool Threat Guideline | ||
 |
2020-12-24 19:33:33 | SolarWinds Hack Infected Critical Infrastructure, Including Power Industry (lien direct) | Internal computer internet servers are seen at the Telvent GIT SA company headquarters in Madrid, Spain, July 19, 2011. | Hack | ||
 |
2020-12-23 17:14:28 | Zero-click iMessage exploit used to hack journalists (lien direct) | Security researchers have uncovered a surveillance campaign aimed at journalists in the Middle East, claiming that a zero-click iMessage exploit was used to hack their iPhones.stock | Hack | ||
 |
2020-12-23 14:36:49 | SolarWinds Sunburst: UK data watchdog issues hack alert (lien direct) | President-elect Joe Biden has also vowed that the US will respond to the attack. | Hack | Solardwinds | ★★ |
|
2020-12-23 13:12:50 | UK privacy watchdog warns SolarWinds victims to report data breaches (lien direct) | United Kingdom's Information Commissioner's Office (ICO) has warned organizations that fell victim to the SolarWinds hack that they are required to report data breaches within three days after their discovery. [...] | Hack | ||
|
2020-12-22 21:52:57 | Researchers shared the lists of victims of SolarWinds hack (lien direct) | Security experts shared lists of organizations that were infected with the SolarWinds Sunburst backdoor after decoding the DGA mechanism. Security experts started analyzing the DGA mechanism used by threat actors behind the SolarWinds hack to control the Sunburst/Solarigate backdoor and published the list of targeted organizations. Researchers from multiple cybersecurity firms published a list that […] | Hack Threat Mobile | Solardwinds Solardwinds | |
|
2020-12-22 16:28:12 | Experts Reacted On Microsoft Confirming Breached In Recent SolarWinds Supply Chain Hack (lien direct) | It has been reported that state-sponsored hackers who breached US software provider SolarWinds earlier this year pivoted to Microsoft’s internal network, and then used Microsoft’s own products to further the attacks against other… The ISBuzz Post: This Post Experts Reacted On Microsoft Confirming Breached In Recent SolarWinds Supply Chain Hack | Hack | ||
|
2020-12-22 16:03:42 | Expert Reaction On Microsoft Says It Identified 40+ Victims Of The SolarWinds Hack (lien direct) | SolarWinds-gate illustrates the emerging trend of sophisticated supply chain attacks. Very few, if any, organizations ever cared to verify an update’s integrity till today. The question is how many other… The ISBuzz Post: This Post Expert Reaction On Microsoft Says It Identified 40+ Victims Of The SolarWinds Hack | Hack | ||
|
2020-12-22 07:30:38 | VMware and Cisco also impacted by the SolarWinds hack (lien direct) | The IT giants VMware and Cisco revealed they were impacted by the recently disclosed SolarWinds supply chain attack. VMware and Cisco confirmed to have been both impacted by the recent SolarWinds hack. A recent advisory published by the NSA is warning that Russian state-sponsored hackers are exploiting the recently patched CVE-2020-4006 VMware flaw to steal sensitive information from […] | Hack | ||
 |
2020-12-21 20:43:00 | Russia Officially Denies Large-scale US Hack (lien direct) | Kremlin spokesperson states that Russia was not behind hack of SolarWinds' Orion software | Hack | ||
|
2020-12-21 18:26:13 | SUPERNOVA, a backdoor found while investigating SolarWinds hack (lien direct) | While investigating the recent SolarWinds Orion supply-chain attack security researchers discovered another backdoor, tracked SUPERNOVA. The investigation of the SolarWinds Orion supply-chain attack revealed the existence of another backdoor that was likely used by a separate threat actor. After the initial disclosure of the SolarWinds attack, several teams of researchers mentioned the existence of two […] | Hack Threat | ||
|
2020-12-21 11:05:23 | Zero-day exploit used to hack iPhones of Al Jazeera employees (lien direct) | Tens of Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. Researchers from Citizen Lab reported that at least 36 Al Jazeera employees were targeted in a cyber espionage campaign leveraging a zero-click iOS zero-day vulnerability to hack their iPhones. The attackers used an […] | Hack Vulnerability | ||
|
2020-12-20 19:54:47 | US cyber-attack: Around 50 firms \'genuinely impacted\' by massive breach (lien direct) | The expert whose company uncovered the hack also backs US officials' view that Russia was behind it. | Hack | ||
|
2020-12-19 23:25:40 | NATO is checking its systems to determine the impact of SolarWinds hack (lien direct) | NATO announced it is assessing its systems after the SolarWinds supply chain attack that impacted multiple US government agencies. NATO announced it is checking its systems after the SolarWinds supply chain attack to determine if they were infected with a backdoor. “At this time, no evidence of compromise has been found on any NATO networks. […] | Hack |
To see everything:
Our RSS (filtrered)
