What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2016-02-19 15:00:34 | Smoking Is Bad For You (lien direct) | We recently spotted what seemed to be another spam campaign, yet a deeper investigation revealed something more sinister. In this case, the chain of infection usually begins with a file named: “iodex.php”. A simple google search for inurl:“iodex.php” returned the following results: Other files, including “lagins.php”, “foq.php” and “cigarettesdd.php” were spotted as well. The cigarette […] | |||
|
2016-02-18 15:00:01 | The Return of the Brazilian Banker Trojan (lien direct) | Brazil. It is known as the land of carnivals, beaches, coconuts – and vicious phishing campaigns. These campaigns have long been considered a national threat; on average, a Brazilian organization receives over 1000 phishing attacks per month. Check Point research team often uses various Brazilian phishing malwares as part of our research training program. In […] | |||
|
2016-02-17 17:00:53 | (Déjà vu) Millions of AirDroid Users Exposed to Severe Vulnerability (lien direct) | Check Point alerted AirDroid that its Android device manager app is vulnerable to phone data hijacking and malicious code execution by remote attackers. A new vulnerability in the AirDroid App was revealed by Check Point. This vulnerability affects the 50 million AirDroid users around the globe. AirDroid is a device manager app which […] | |||
|
2016-02-16 16:00:11 | Future-Proof Security Management (lien direct) | Cyber security is about more than stopping threats; it is also about maintaining a robust and flexible security infrastructure that can scale and evolve to keep pace with the business. It is a trite but true claim – your security is only as strong as your ability to manage it. In my line of […] | |||
|
2016-02-12 16:44:30 | Love is in the air (along with malware in your email): Facebook email redirection used to overcome spam filtering (lien direct) | Every year in the middle of February, much of the world takes a brief moment to focus on love. I'm pretty sure there is an element we could trace back to greeting card suppliers, florists, or purveyors of fine chocolates, but maybe that is just the cynic in me. But what strikes me as interesting […] | |||
|
2016-02-11 20:50:21 | Campaign Targeting WordPress: Users being Redirected to Angler Exploit Kit (lien direct) | In the past week, a massive campaign targeting WordPress-based websites has been reported by several security vendors, including Sucuri and Malwarebytes. In the previous iteration, unsuspecting victims were redirected to domains hosting ads which, if clicked, sent them to the Nuclear Exploit Kit landing page. Check Point security analysts have recently observed a change in […] | |||
|
2016-02-11 15:00:23 | Managing the Complex Ecosystem of Healthcare Security (lien direct) | Healthcare is one of several industries that has made tremendous strides with integrating advanced technology into their medical environments. Doctors can now communicate with their patients in a number of different ways, including email, updates through text messages, automated prescriptions, as well as communicating through customized portals, specific to that healthcare environment, to conveniently send […] | |||
|
2016-02-10 15:00:05 | Too Much Freedom is Dangerous: Understanding IE 11 CVE-2015-2419 Exploitation (lien direct) | It’s been a while since a pure JavaScript vulnerability was widely used by exploit kits. The last few years mostly gave us IE Use-After-Free vulnerabilities. When those were dealt with by Microsoft’s IsolatedHeap and MemoryProtection mechanisms, introduced in the middle of 2014, the stage was clear for Flash to take over. Now, as Flash is […] | |||
|
2016-02-09 14:00:53 | Introducing Check Point SandBlast Agent (lien direct) | As the modern workplace continues to evolve, it becomes increasingly important that individual end-user devices are protected from advanced threats. In most organizations today, endpoint device protection is still limited to traditional antivirus solutions that only detect previously known threats and techniques. Hackers today utilize sophisticated malware variants and new zero-day attacks to target end […] | |||
|
2016-02-04 19:35:10 | HummingBad: A Persistent Mobile Chain Attack (lien direct) | Check Point Mobile Threat Prevention has detected a new, unknown mobile malware that targeted two customer Android devices belonging to employees at a large financial services institution. Mobile Threat Prevention identified the threat automatically by detecting exploitation attempts while examining the malware in the MTP emulators. The infection was remediated after the system notified the […] | |||
|
2016-02-03 21:00:35 | Super Bowl Cybercrime (lien direct) | Super Bowl 50 is coming to my hometown and, along with it, over a million devoted fans who'll pack events, concerts and restaurants from San Francisco to Santa Clara. That week they, along with fellow fans across the nation, will go nuts for anything related to the ultimate football showdown. They'll don team t-shirts and […] | |||
|
2016-02-03 14:00:32 | Size Doesn\'t Matter in Cybersecurity (lien direct) | Has the landscape of small business security improved over the last few years? This is the question I’m asking myself as we roll into 2016. As a former IT administrator for my friend’s small drafting company, which involved a wide breadth of IT related tasks from managing their five desktop computers to securing their network […] | |||
|
2016-02-02 22:00:57 | The Cat & Mouse Game Continues: Cybercriminals Adapt to Advanced Security Measures (lien direct) | A new type of Android malware is capable of stealing one-time passcodes that are part of the two-factor authentication (2FA), according to a recent report. Let's break it down a bit: What are one-time passcodes? One-time passcode are a relatively new security measure that is supposed to provide more comprehensive protection for users. The idea […] | |||
|
2016-02-02 14:00:16 | eBay Platform Exposed to Severe Vulnerability (lien direct) | Check Point alerts eBay to an online sales platform vulnerability which allows cyber criminals to distribute phishing and malware campaigns. eBay, the online auction and e-commerce giant, has locations in over 30 countries and serves more than 150 million active users worldwide. As a successful company with a massive customer base, it's no surprise that […] | |||
|
2016-02-02 02:00:34 | Check Point Threat Alert: Exploit Kits (lien direct) | An exploit kit is a malicious toolkit whose purpose is to identify vulnerabilities in client machines. These vulnerabilities are then exploited in order to upload and execute malicious code on the client. Exploit kits also provide a user interface for an attacker to gain information on success rates and other statistics, as well control the […] | |||
|
2016-02-01 19:07:08 | JSPatch Vulnerability Digs Under Apple\'s Garden Walls (lien direct) | One of the reasons iPhones are considered more secure is the thorough vetting each and every app on the Apple App Store. This inspection is supposed to ensure no malicious apps infiltrate the guarded platform from which almost all users download apps. Of course, there have been several cases in which malicious code managed to […] | |||
|
2016-01-26 14:00:23 | A Major Step Ahead in Network Security (lien direct) | It's January 2016 and my New Years' resolution is still fresh in my mind. In addition to visiting the gym more frequently and losing some of my “holiday” weight, I am also resolute that this year will be another big year of cyber security headlines and major breaches, even though network security spending continues to […] | |||
|
2016-01-19 15:00:03 | Something is Cooking in Brazil (lien direct) | Looking at the global cyber landscape, we can see many campaigns and persistent threats occurring at different locations around the world. One example that has not drawn much attention is Brazil's nationwide fraud campaigns. These come in different forms, beginning with simple phishing scams whose aim is to intercept and harvest credentials from unsuspecting users. […] | |||
|
2016-01-18 15:00:39 | Ukraine Power Outage Demonstrates Infrastructure Vulnerability (lien direct) | The night before Christmas Eve, the Ivano-Frankivsk region in western Ukraine, an area the size of Connecticut, experienced a power blackout due to what was later identified as a cyberattack. The attack was said to have targeted the power company Prykarpattyaoblenergo, and affected at least 80,000 people, which is approximately half of the region's population. […] | |||
|
2016-01-15 15:00:16 | Check Point Threat Alert: Cryptowall 4 (lien direct) | Executive Summary Ransomware is a type of malware that restricts access to an infected computer system and demands a ransom payment to remove the restriction. Some ransomware encrypt the files on the system’s hard drive, while others may simply lock the system and display threatening messages to force the user to pay. Cryptowall is a […] | |||
|
2016-01-14 20:18:59 | Check Point Threat Alert: BlackEnergy Trojan (lien direct) | Executive Summary BlackEnergy malware has been around since 2007, first appearing as a simple DDoS tool. In 2014, it made a comeback as a highly sophisticated and customized malware, featuring support for proxy servers and a wide range of system operations. Observed targets on 2014 are mostly Ukrainian governmental institutes but also include those from […] | |||
|
2016-01-08 20:10:02 | Turkish Clicker: Check Point Finds New Malware on Google Play (lien direct) | The Check Point research team has discovered an extensive malware campaign on the Google Play™ store. Check Point Mobile Threat Prevention detected the first samples of malware we call “Turkish Clicker” on several customer devices. The malicious code was found in the apps “Fruit Life,” “City HD Wallpapers,” and “Adiyef Puzzle.” Google has removed all […] | |||
|
2016-01-07 14:01:47 | You\'re watching TV – Is it also watching you? (lien direct) | The Internet of Things (IoT) revolves around machine-to-machine communication, and it's growing exponentially. Sure, it sounds like a great idea when we can use smart devices to connect to the Internet at a moment's notice. However, most consumers don't fully understand the security vulnerabilities. Let's take a look at EZCast. It's an HDMI dongle-based TV […] | |||
|
2016-01-04 21:16:48 | CHECK POINT THREAT ALERT: SHODAN (lien direct) | EXECUTIVE SUMMARY Shodan (https://www.shodan.io/) is a search engine that uses a variety of filters to find devices, such as computers, routers, and servers, which are connected to the Internet. Shodan collects data mostly on web servers (HTTP port 80), but there is also data about FTP (21), SSH (22), Telnet (23), SNMP (161) and SIP […] | |||
|
2015-12-30 19:32:57 | (Déjà vu) In The Wild: Mobile Cybercrime Goes Big in 2015 (lien direct) | Cybercriminals made significant advances in the sophistication and number of attacks on mobile devices in 2015. As we head into a new year — and into new uncertainties for mobile security — let's remember a few of the most spectacular attacks to help us better understand what to be aware of in the months to […] | |||
|
2015-12-29 15:00:58 | Check Point Threat Alert: Outlook OLE Vulnerability (lien direct) | Object Linking and Embedding (OLE), developed by Microsoft, allows users to embed and link to documents and other objects. However, a Remote-Command-Execution vulnerability was found in Microsoft Office that allows remote attackers to execute arbitrary code via a crafted email message processed by Outlook. Microsoft Outlook has a sandbox bypass vulnerability which allows an attacker […] | |||
|
2015-12-21 21:00:01 | Check Point Threat Alert: Joomla RCE Zero-Day (lien direct) | On December 14, a new version of Joomla, an open-source content management system (CMS) which allows you to build websites and powerful online applications, was released to patch a critical 0-Day Remote Command Execution (RCE) vulnerability that affects all versions from 1.5 to 3.4. The vulnerability is due to lack of validation of input objects […] | |||
|
2015-12-19 00:00:16 | Angler EK Pushing TeslaCrypt (lien direct) | In recent weeks, we have witnessed a very large up rise in TeslaCrypt infection attempts. TeslaCrypt is a relatively new ransomware, first reported in the beginning of 2015. Although it is not the most sophisticated malware, it is continuously maintained and updated by its authors, and still manages to spread through various infection vectors. In […] | Tesla | ||
|
2015-12-10 15:00:08 | Check Point\'s Security Predictions for 2016: PoS (lien direct) | The holiday season is here, and the retail industry is preparing for shoppers who are rushing to take advantage of sales and purchase gifts in-store or online. However, continuous point-of-sales (PoS) attacks have been making headlines in the last few years. In 2013, Target confirmed a massive credit card data breach that affected 40 million […] | |||
|
2015-12-03 19:00:45 | Singapore Mobile Device Users Are Under Cyber Attack (lien direct) | On December 1, 2015, the Association of Banks in Singapore (ABS) announced information about a Trojan designed to steal financial information from mobile device users. Check Point researchers retrieved samples of this malware and conducted an in depth analysis. This banking malware is actually a tweaked version of an existing financial infostealer called “GMBot†(SHA256: […] | |||
|
2015-12-03 14:00:57 | Check Point Names Julie Parrish as Chief Marketing Officer (lien direct) | Check Point today announced the appointment of Julie Parrish as the company's Chief Marketing Officer. As the newest member of our executive team, Parrish will lead the company’s global marketing organization, overseeing strategic initiatives to drive awareness and demand for the Check Point's expanding portfolio of industry-leading security solutions. Prior to joining Check Point, Parrish […] | Guideline | ||
|
2015-12-01 19:09:52 | Check Point\'s Security Predictions for 2016 (lien direct) | At the beginning of last year, Check Point's top predicted security threats for 2015 included the rapid growth of unknown malware and the exploit of vulnerabilities in platforms such as Android and iOS. These predictions did come true – and they continue to remain a significant threat today. We're nearing the end of 2015, but […] | |||
|
2015-11-19 19:06:06 | Check Point Threat Alert: Web Shells (lien direct) | Web shells can be used to obtain unauthorized access and can lead to wider network compromise. Consistent use of web shells by Advanced Persistent Threat (APT) and criminal groups has led to a significant number of cyber incidents. This alert describes the frequent use of web shells as an exploitation vector and Check Point's IPS […] | Guideline | ||
|
2015-11-19 18:30:26 | CyberDay 2015 Recap: A Day of Ideas and Insights (lien direct) | CyberDay 2015 Recap: A Day of Ideas and Insights When CSO and Check Point partnered up to create a security thought leadership event for c-level executives, we had high hopes. Yesterday, November 18, those hopes were exceeded as about 200 people gathered in New York City. The purpose: to help today's security leaders share the […] | Guideline | ||
|
2015-11-11 15:00:39 | Vulnerabilities Continue to Put Mobile Devices at Risk (lien direct) | Smartphones and tablets have become the most important possessions we carry every day, and everyone should be able to take advantage of the benefits these devices bring without worrying about cybercrime. The convenience and versatility of mobility has also led more organizations to allow employees to use their own devices at work. In fact, according […] | |||
|
2015-11-10 21:30:26 | Advanced Security For The SDDC That\'s Really Advanced (lien direct) | Data center virtualization has come a long way – from concept to a reality in a few short years. The latest evolution, virtualizing the network, lets data center operators treat the underlying infrastructure as a pool of resources – compute, storage and network capacity – that can be called upon to dynamically bring up new […] | |||
|
2015-11-09 13:59:43 | Rocket Kitten: A Campaign With 9 Lives (lien direct) | The customized malware and creative phishing techniques of cyber-espionage groups prove that there is a recurring industry problem. Cyber criminals can evade detection by making minimal changes to bypass most current protection solutions. Since early 2014, the attacker group dubbed 'Rocket Kitten' has been actively targeting organizations through malware infections and spear phishing campaigns. After […] | |||
|
2015-11-06 15:00:11 | Why it\'s a Smart Idea to Use Threat Intelligence (lien direct) | When It Comes to Security, Do You Have 'Evidence-Based Knowledge'? Recently, I participated in an interesting Twitter chat. One of the questions posed: What keeps you up at night? The responses varied, but the one common thread was that malware is constantly evolving, making things scarily unpredictable. It's the reason why intelligence is key to […] | |||
|
2015-11-05 18:54:11 | Check Point Discovers Critical vBulletin 0-Day (lien direct) | vBulletin is a commercial forum and blog platform developed by vBulletin Solutions, Inc. It was created over 10 years ago and is written in PHP. It is the world's most popular forum platform, powering ~78% out of the forums in the top 100K web-sites. Currently there are estimated to be over 40,000 live sites using […] | |||
|
2015-11-04 15:00:45 | “Offline†Ransomware Encrypts Your Data without C&C Communication (lien direct) | Early in September, Check Point obtained a sample of a ransomware. When the sample was run, the following message, written in Russian, appeared: Translation: “Your files are encrypted, if you wish to retrieve them, send 1 encrypted file to the following mail address: Seven_Legion2@aol.com ATTENTION!!! You have 1 week to mail me, after which […] | |||
|
2015-11-03 22:10:40 | Phishing for Employees in Russia (lien direct) | During the period August 27-30, 2015, Check Point sensors recorded a large amount of logs generated by the IPS protection “PHP Print Remote Shell Command Execution.†This was an interesting anomaly, as we do not usually see high volume of logs from this protection. We started investigating the logs received from all sources, and noticed […] | |||
|
2015-11-03 15:00:48 | Context-Aware Network Security (lien direct) | Defense in depth is a concept that is hard to argue with; put as many security mechanisms in place to make it difficult if not impossible for the bad guys to gain access to your network. Much of the security “sprawl†we see today is a direct result of this strategy – deploy the best […] | |||
|
2015-10-27 20:59:38 | One Step Ahead (lien direct) | What are forward-looking CSOs doing to stay beyond the reach of cybercriminals? Recently, I was in New York City, where I was fortunate enough to have tickets to one of the hottest shows on Broadway: Hamilton. I was fascinated by how precarious the fate of our independence was had it not been for the forward-looking […] | |||
|
2015-10-21 21:22:37 | ThreatCloud IntelliStore Marketplace – A new actionable approach to Threat Intelligence (lien direct) | Cyber threats have significantly increased in number and in complexity. With malware evolving constantly, we require a steady stream of information on emerging threats to optimize our security systems in place. There are several vendors that provide threat intelligence , but none that offer a platform with customizable and actionable intelligence, including specialized feeds by […] | |||
|
2015-10-20 15:30:46 | Digging for Groundhogs: Holes in Your Linux Server (lien direct) | In July 2015, Check Point's Incident Response team was contacted by a customer after they noticed strange file system activities occurring in one of their Linux based DNS BIND servers. This strange behavior consisted of a large number of peculiar files being written into sensitive system directories. A thorough analysis of the infected system […] | |||
|
2015-10-14 14:00:44 | (Déjà vu) The Future Of Financial Cybersecurity (lien direct) | October is Cybersecurity Awareness Month, and it starts with large attacks against two prominent financial organizations – An Experian breach, which affected 15 million T-Mobile customers; and Scottrade, which compromised the information of approximately 4.6 million customers. The reality is that there are still huge gaps in companies' security programs in financial institutions, and unless […] | ★★★★★ | ||
|
2015-10-09 17:16:24 | Israeli Public Sector Targeted by Zeus Trojan Hidden in a Word Document (lien direct) | Two months ago, a malicious Rich Text Format (RTF) document came to the attention of Check Point Threat Intelligence & Research via a worried high-profile client in the public sector. The file had been sent to many employees, several of whom opened the file; as a result, their machines became infected. Check Point took actions […] | |||
|
2015-10-08 14:00:48 | Managing the Sheer Complexity of Data Center Security (lien direct) | The modern IT system is one of the most complex entities in the business landscape. Every device, server and component tied to the network must be managed and monitored. That's a significant job for any IT department, but things can become especially complicated when it comes to enterprise data centers. Intricate and dynamic, the construction […] | |||
|
2015-10-02 18:42:43 | A Solution for the Evolving Threat Landscape (lien direct) | The threat landscape has severely changed over the last few years, and organizations have to constantly keep up with sophisticated threats and advanced tactics of cybercriminals. With multiple tools at hackers' disposal, new threat variants are released every day. According to Check Point's 2015 Security Report, organizations were hit with 106 new forms of malware […] | |||
|
2015-10-01 16:08:05 | iOS Core Application Design Flaw May Expose Apple ID Credentials (lien direct) | Check Point alerted Apple to a privacy issue in iOS core applications that may expose a user's credentials even though the user performed a sign out. The fix is now available through the iOS 9 release. Introduction iOS is a mobile operating system created and developed by Apple and distributed exclusively for Apple hardware. It […] |
To see everything:
