What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-06-07 20:54:07 | FBI Claws Back Millions of DarkSide\'s Ransom Profits (lien direct) | The tables have been turned, the FBI & DOJ said after announcing the use of blockchain technology to track down the contents of DarkSide's cryptocurrency wallet. | |||
|
2021-06-07 19:37:51 | Bad Apple: App Store Rife with Fraud, Fleeceware (lien direct) | Malicious apps make up 2 percent of top grossing apps in Apple App Store. | |||
|
2021-06-07 18:49:44 | Novel \'Victory\' Backdoor Spotted in Chinese APT Campaign (lien direct) | Researchers said the malware has been under development for at least three years. | Malware | ||
|
2021-06-07 17:18:48 | Windows Container Malware Targets Kubernetes Clusters (lien direct) | “Siloscape”, the first malware to target Windows containers, breaks out of Kubernetes clusters to plant backdoors and raid nodes for credentials. | Malware | Uber | |
|
2021-06-04 20:21:48 | Cyberattack Suspected in Cox TV and Radio Outages (lien direct) | Cox Media Group tv, radio station streams affected by a reported ransomware attack. | Ransomware | ||
|
2021-06-04 14:15:16 | Supreme Court Limits Scope of Controversial Hacking Law (lien direct) | Judges rule that Georgia police officer did not violate CFAA when he accessed law-enforcement data in exchange for bribe money, a ruling that takes heat off ethical hackers. | |||
|
2021-06-04 13:19:02 | REvil Ransomware Gang Spill Details on US Attacks (lien direct) | The REvil ransomware gang is interviewed on the Telegram channel called Russian OSINT. | Ransomware | ||
|
2021-06-03 22:06:39 | \'Battle for the Galaxy\' Mobile Game Leaks 6M Gamer Profiles (lien direct) | Unprotected server exposes AMT Games user data containing user emails and purchase information. | |||
|
2021-06-03 18:20:15 | Google PPC Ads Used to Deliver Infostealers (lien direct) | The crooks pay top dollar for Google search results for the popular AnyDesk, Dropbox & Telegram apps that lead to a malicious, infostealer-packed website. | Guideline | ||
|
2021-06-03 12:00:56 | Then and Now: Securing Privileged Access Within Healthcare Orgs (lien direct) | Joseph Carson, chief security scientist and advisory CISO at ThycoticCentrify, discusses best practices for securing healthcare data against the modern threat landscape. | Threat | ||
|
2021-06-02 20:33:28 | Podcast: The State of Ransomware (lien direct) | In this Threatpost podcast, Fortinet's top researcher sketches out the ransom landscape, with takeaways from the DarkSide attack on Colonial Pipeline. | Ransomware | ||
|
2021-06-02 20:29:49 | Effective Adoption of SASE in 2021 (lien direct) | In this Threatpost podcast, Forcepoint's SASE and Zero Trust director describes how the pandemic jump-started SASE adoption. | |||
|
2021-06-02 19:44:30 | Banking Attacks Surge Along with Post-COVID Economy (lien direct) | FinTech fraud spikes 159 percent in Q1 2021 along with stimulus spending. | |||
|
2021-06-02 15:52:53 | REvil Ransomware Ground Down JBS: Sources (lien direct) | Responsible nations don't harbor cybercrooks, the Biden administration admonished Russia, home to the gang that reportedly froze the global food distributor's systems. | Ransomware | ||
|
2021-06-02 12:54:16 | DoJ Charges Rhode Island Woman in Phishing Scheme Against Politicians (lien direct) | Diana Lebeau allegedly tried to trick candidates for public office and related individuals into giving up account credentials by impersonating trusted associates and the Microsoft security team. | |||
|
2021-06-02 10:58:21 | Amazon Sidewalk Poised to Sweep You Into Its Mesh (lien direct) | On June 8, Amazon's pulling all its devices into a device-to-device wireless mix, inspiring FUD along the way. Now's the time to opt out if you're be-FUDdled. | |||
|
2021-06-01 21:05:44 | Cyber-Insurance Fuels Ransomware Payment Surge (lien direct) | Companies relying on their cyber-insurance policies to pay off ransomware criminals are being blamed for a recent uptick in ransomware attacks. | Ransomware | ||
|
2021-06-01 18:00:42 | Where Bug Bounty Programs Fall Flat (lien direct) | Some criminals package exploits into bundles to sell on cybercriminal forums years after they were zero days, while others say bounties aren't enough . | |||
|
2021-06-01 13:00:06 | How Mobile Ad Fraud has Evolved in the Year of the Pandemic (lien direct) | Mobile ad fraud has always been a challenge for network operators in all parts of the globe, but the pandemic has made users more vulnerable than ever before due to the sheer amount of time they now spend with their devices. | |||
|
2021-06-01 12:57:58 | Cyberattack Forces Meat Producer to Shut Down Operations in U.S., Australia (lien direct) | Global food distributor JBS Foods suffered an unspecified incident over the weekend that disrupted several servers supporting IT systems and could affect the supply chain for some time. | |||
|
2021-05-31 13:41:37 | On the Taxonomy and Evolution of Ransomware (lien direct) | Not all ransomware is the same! Oliver Tavakoli, CTO at Vectra AI, discusses the different species of this growing scourge. | Ransomware | ||
|
2021-05-28 20:08:17 | Hackers Exploit Post-COVID Return to Offices (lien direct) | Spoofed CIO 'pandemic guideline' emails being used to steal credentials. | |||
|
2021-05-28 15:11:25 | HPE Fixes Critical Zero-Day in Server Management Software (lien direct) | The bug in HPE SIM makes it easy as pie for attackers to remotely trigger code, no user interaction necessary. | |||
|
2021-05-28 13:13:39 | Nobelium Phishing Campaign Poses as USAID (lien direct) | Microsoft uncovered the SolarWinds crooks using mass-mail service Constant Contact and posing as a U.S.-based development organization to deliver malicious URLs to more than 150 organizations. | |||
|
2021-05-28 12:00:39 | Building Multilayered Security for Modern Threats (lien direct) | Justin Jett, director of audit and compliance for Plixer, discusses the elements of a successful advanced security posture. | |||
|
2021-05-27 21:43:33 | Targeted AnyDesk Ads on Google Served Up Weaponized App (lien direct) | Malicious ad campaign was able to rank higher in searches than legitimate AnyDesk ads. | |||
|
2021-05-27 13:56:20 | Fujitsu SaaS Hack Sends Govt. of Japan Scrambling (lien direct) | Tech giant disables ProjectWEB cloud-based collaboration platform after threat actors gained access and nabbed files belonging to several state entities. | Hack Threat | ||
|
2021-05-27 12:00:01 | Biden\'s Cybersecurity Executive Order Puts Emphasis on the Wrong Issues (lien direct) | David Wolpoff, CTO at Randori, argues that the call for rapid cloud transition Is a dangerous proposition: "Mistakes will be made, creating opportunities for our adversaries. | |||
|
2021-05-26 20:14:30 | PDF Feature \'Certified\' Widely Vulnerable to Attack (lien direct) | Researchers found flaws most of the 'popular' PDF applications tested. | |||
|
2021-05-26 19:45:50 | VMware Sounds Ransomware Alarm Over Critical Severity Bug (lien direct) | VMware's virtualization management platform, vCenter Server, has a critical severity bug the company is urging customers to patch “as soon as possible”. | Ransomware | ||
|
2021-05-26 17:44:46 | BazaLoader Masquerades as Movie-Streaming Service (lien direct) | The website for “BravoMovies” features fake movie posters and a FAQ with a rigged Excel spreadsheet for “cancelling” the service, but all it downloads is malware. | |||
|
2021-05-26 12:01:14 | \'Privateer\' Threat Actors Emerge from Cybercrime Swamp (lien direct) | 'Privateers' aren't necessarily state-sponsored, but they have some form of government protection while promoting their own financially-motivated criminal agenda, according to Cisco Talos. | Threat | ||
|
2021-05-26 12:00:32 | A Peek Inside the Underground Ransomware Economy (lien direct) | Threat hunters weigh in on how the business of ransomware, the complex relationships between cybercriminals, and how they work together and hawk their wares on the Dark Web. | Ransomware Threat | ||
|
2021-05-25 20:26:05 | Threat Actor \'Agrius\' Emerges to Launch Wiper Attacks Against Israeli Targets (lien direct) | The group is using ransomware intended to make its espionage and destruction efforts appear financially motivated. | Ransomware | ||
|
2021-05-25 16:41:28 | Trend Micro Bugs Threaten Home Network Security (lien direct) | The security vendor's network management and threat protection station can open the door to code execution, DoS and potential PC takeovers. | Threat | ||
|
2021-05-25 15:20:45 | Combatting Insider Threats with Keyboard Security (lien direct) | Dale Ludwig, business development manager at Cherry Americas, discusses advances in hardware-based security that can enhance modern cyber-defenses. | |||
|
2021-05-25 15:06:13 | Bose Admits Ransomware Hit: Employee Data Accessed (lien direct) | The consumer-electronics stalwart was able to recover without paying a ransom, it said. | Ransomware | ||
|
2021-05-25 14:57:53 | Pulse Secure VPNs Get Quick Fix for Critical RCE (lien direct) | One of the workaround XML files automatically deactivates protection from an earlier workaround: a potential path to older vulnerabilities being opened again. | |||
|
2021-05-25 12:25:55 | Apple Patches Zero-Day Flaw in MacOS that Allows for Sneaky Screenshots (lien direct) | Security researchers at Jamf discovered the XCSSET malware exploiting the vulnerability, patched in Big Sur 11.4, to take photos of people's computer screens without their knowing. | Malware | ||
|
2021-05-24 20:53:10 | American Express Fined for Sending Millions of Spam Messages (lien direct) | British regulators ruled that Amex sent 4 million nuisance emails to opted-out customers. | Spam | ||
|
2021-05-24 19:33:45 | Restaurant Reservation System Patches Easy-to-Exploit XSS Bug (lien direct) | A WordPress reservation plugin has a vulnerability that allows unauthenticated hackers to access reservation data stored by site owners. | Vulnerability | ||
|
2021-05-24 16:23:14 | FBI Analyst Indicted for Theft of Osama bin Laden Threat Intel (lien direct) | An FBI employee allegedly made off with top-secret documents, keeping them in her home for more than a decade. | Threat | ||
|
2021-05-21 18:41:37 | DarkSide Getting Taken to \'Hackers\' Court\' For Not Paying Affiliates (lien direct) | A shadow court system for hackers shows how professional ransomware gangs have become. | Ransomware | ||
|
2021-05-21 18:25:13 | Building SIEM for Today\'s Threat Landscape (lien direct) | Sivan Tehila, cybersecurity strategist at Perimeter 81, discusses the elements involved in creating a modern SIEM strategy for remote work and cloud-everything. | Threat | ||
|
2021-05-21 17:30:52 | WP Statistics Bug Allows Attackers to Lift Data from WordPress Sites (lien direct) | The plugin, installed on hundreds of thousands of sites, allows anyone to filch database info without having to be logged in. | |||
|
2021-05-21 13:27:14 | Email Campaign Spreads StrRAT Fake-Ransomware RAT (lien direct) | Microsoft Security discovered malicious PDFs that download Java-based StrRAT, which can steal credentials and change file names but doesn't actually encrypt. | ★★★ | ||
|
2021-05-20 20:45:01 | 100M Android Users Hit By Rampant Cloud Leaks (lien direct) | Several mobile apps, some with 10 million downloads, have opened up personal data of users to the public internet – and most aren't fixed. | |||
|
2021-05-20 17:59:30 | The Gig Economy Creates Novel Data-Security Risks (lien direct) | Enterprises are embracing on-demand freelance help -- but the practice, while growing, opens up entirely new avenues of cyber-risk. | |||
|
2021-05-20 16:50:16 | Four Android Bugs Being Exploited in the Wild (lien direct) | On Wednesday, Google quietly slipped updates into its May 3 Android security bulletin for bugs that its Project Zero group has confirmed are zero-days. | |||
|
2021-05-20 15:07:15 | 2021 Attacker Dwell Time Trends and Best Defenses (lien direct) | The time that attackers stay hidden inside an organization's networks is shifting, putting pressure on defenders and upping the need to detect and respond to threats in real-time. |
To see everything:
Our RSS (filtrered)
