Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2018-11-20 16:38:05 |
Second WordPress hacking campaign underway, this one targeting AMP for WP plugin (lien direct) |
After targeting WP GDPR Compliance plugin, hackers are now going after sites using the AMP for WP plugin. |
|
|
|
|
2018-11-20 14:37:00 |
IRS failed to apply consumer protections for 11,406 taxpayers (lien direct) |
IRS operators failed to record data of US taxpayers inside an IRS fraud detection system. |
|
|
|
|
2018-11-20 13:45:01 |
Fake Google Android driving apps claim half a million victims (lien direct) |
The illegitimate apps include luxury car and motocross simulations. |
|
|
|
|
2018-11-20 05:30:00 |
For Apple users without latest security updates, the letter \'d\' is not always the letter \'d\' (lien direct) |
Apple users advised to install the company's July security updates if they don't want to fall victims to IDN homograph phishing attacks. |
|
|
|
|
2018-11-19 20:51:00 |
Hackers use Drupalgeddon 2 and Dirty COW exploits to take over web servers (lien direct) |
Hacks could be easily avoided if people would patch their Drupal CMSs and Linux web servers. |
|
|
|
|
2018-11-19 18:17:02 |
Russia wants DNC hack lawsuit thrown out, citing international conventions (lien direct) |
Russian Federation says it benefits from the same legal protections as the US does when carrying out military cyberattacks. |
Hack
|
|
|
|
2018-11-19 16:55:02 |
A bug in EA Origin client exposes gamers\' data (lien direct) |
Auto-login URL feature was not IP-bound and allowed anyone access to accounts' settings panels. |
|
|
|
|
2018-11-19 13:48:00 |
Vision Direct reveals customer credit card leak, fake Google script may be to blame (lien direct) |
The personal and financial data of customers has been stolen. |
|
|
|
|
2018-11-19 13:01:05 |
Russian hacker arrested in Bulgaria for ad fraud of over $7 million (lien direct) |
Alexander Zhukov, a supposed hacker who went online by the name of "Nastra," is currently fighting extradition to the US. |
|
|
|
|
2018-11-19 12:12:02 |
Texas hospital becomes victim of Dharma ransomware (lien direct) |
The spread of malware through Altus Baytown Hospital systems highlights the ongoing threat ransomware poses to our healthcare. |
Ransomware
Malware
Threat
|
|
|
|
2018-11-19 05:45:01 |
Website geoblocking is not that widespread, study finds (lien direct) |
Iran, Sudan, Syria, and Cuba are the most geoblocked countries. |
|
|
|
|
2018-11-17 21:39:00 |
Popular Dark Web hosting provider got hacked, 6,500 sites down (lien direct) |
Hosting provider is still looking for the hacker's point of entry. |
|
|
|
|
2018-11-16 23:40:00 |
Russian APT comes back to life with new US spear-phishing campaign (lien direct) |
Cozy Bear (APT29) makes a comeback after last year's Dutch and Norwegian hacking campaigns. |
|
APT 29
|
|
|
2018-11-16 20:13:05 |
Trump signs bill that creates the Cybersecurity and Infrastructure Security Agency (lien direct) |
The US now has an official federal cybersecurity agency. |
|
|
|
|
2018-11-16 18:28:00 |
Google Play Protect analyzes every Android app that it can find on the internet (lien direct) |
Play Protect, a security service included in the Play Store app, lives up to all the hype that Google created last year. |
|
|
|
|
2018-11-16 15:33:00 |
AWS rolls out new security feature to prevent accidental S3 data leaks (lien direct) |
New settings will prevent accidental S3 bucket leaks --if customers take the time to apply them. |
|
|
|
|
2018-11-16 12:59:02 |
Most antivirus programs fail to detect this cryptocurrency-stealing malware (lien direct) |
Traditional antivirus software has a tough time detecting malware used in the campaign. |
Malware
|
|
|
|
2018-11-16 11:58:03 |
Winter Olympic Games hackers are back with an updated arsenal (lien direct) |
The group behind Olympic Destroyer are back with an evolved toolkit and malware droppers. |
Malware
|
|
|
|
2018-11-16 10:44:00 |
Malicious code hidden in advert images cost ad networks $1.13bn this year (lien direct) |
So-called steganography is rapidly becoming a favored tool of fraudsters. |
Tool
|
|
★★★★
|
|
2018-11-16 05:30:01 |
Most ATMs can be hacked in under 20 minutes (lien direct) |
Experts tested ATMs from NCR, Diebold Nixdorf, and GRGBanking. |
|
|
|
|
2018-11-15 22:40:02 |
Google to pay JavaScript frameworks to implement performance-first code (lien direct) |
Google to create $200,000 fund to sponsor the addition of "on by default" performance-related updates in popular JavaScript frameworks. |
|
|
|
|
2018-11-15 17:21:03 |
DOD disables file sharing service due to \'security risks\' (lien direct) |
AMRDEC SAFE portal had been to handle the transfer of classified and non-classified materials. |
|
|
|
|
2018-11-15 11:47:02 |
Japanese cybersecurity minister finds computers a mystery (lien direct) |
The man in charge of cybersecurity not only said he does not use a PC but seemed stumped when asked about risks associated with USB drives. |
|
|
|
|
2018-11-15 06:30:01 |
One in five Magecart-infected stores get reinfected within days (lien direct) |
A large number of reinfections take place within a day or week. Average reinfection time is 10.5 days. |
|
|
|
|
2018-11-14 23:00:00 |
Dutch government report says Microsoft Office telemetry collection breaks GDPR (lien direct) |
Microsoft pledges to address issues; has already released a "zero exhaust" Office telemetry setting. |
|
|
|
|
2018-11-14 19:29:03 |
Many free mobile VPN apps are based in China or have Chinese ownership (lien direct) |
Chinese affiliation raises a sign of alarm in light of China's recent clampdown of "unauthorized" VPN services. |
|
|
|
|
2018-11-14 14:58:03 |
Guilty of your roots: Why Kaspersky believes tech nationalism is on our doorstep (lien direct) |
The answer lies in why Kaspersky has now moved core systems from Russia to Switzerland. |
|
|
|
|
2018-11-14 14:44:02 |
Researchers discover seven new Meltdown and Spectre attacks (lien direct) |
Experiments showed that processors from AMD, ARM, and Intel are affected. |
|
|
|
|
2018-11-14 00:51:05 |
Card skimming malware removed from Infowars online store (lien direct) |
Infowars online store hit by brief Magecart incident that lasted around 24 hours. Less than 1,600 users may have been affected. |
Malware
|
|
|
|
2018-11-13 20:44:00 |
Microsoft patches Windows zero-day used by multiple cyber-espionage groups (lien direct) |
Kaspersky: Windows zero-day exploited by multiple cyber-espionage groups. |
|
|
|
|
2018-11-13 14:27:00 |
Facebook patches another bug that could have allowed mass-harvesting of user data (lien direct) |
Imperva security researcher publicly discloses bug today, but Facebook patched the issue back in May. |
|
|
|
|
2018-11-13 12:00:05 |
Google traffic hijacked via tiny Nigerian ISP (lien direct) |
A large chunk of the hijacked traffic passed through the network of a controversial Chinese state-owned telecom provider that was previously accused of intentionally misdirecting internet traffic. |
|
|
|
|
2018-11-13 11:02:00 |
How Magecart groups are stealing your card details from online stores (lien direct) |
New report sheds light on Magecart groups and their respective tactics. |
|
|
|
|
2018-11-13 00:16:03 |
Google launches VisBug, a Chrome extension for point-and-click web design (lien direct) |
Google's new VisBug extension lets you make small tweaks to website's text and images. |
|
|
|
|
2018-11-12 22:45:00 |
US, Russia, China don\'t sign Macron\'s cyber pact (lien direct) |
New cyber peace pact signed by 51 other countries, 224 companies, and 92 non-profits and advocacy groups. |
|
|
|
|
2018-11-12 19:29:04 |
Internet Explorer scripting engine becomes North Korean APT\'s favorite target in 2018 (lien direct) |
North Korean hacking group focuses attacks on aging and soon-to-be-deprecated technology. |
|
|
|
|
2018-11-12 14:48:03 |
HTTP-over-QUIC to be renamed HTTP/3 (lien direct) |
IETF agrees to base the next major iteration of HTTP on Google's QUIC protocol |
|
|
|
|
2018-11-11 15:08:01 |
Cloudflare launches Android and iOS apps for its 1.1.1.1 service (lien direct) |
Company makes it easy for mobile users to hide their DNS traffic from nosy ISPs. |
|
|
|
|
2018-11-10 09:35:00 |
Deserialization issues also affect Ruby, not just Java, PHP, and .NET (lien direct) |
Java, .NET, PHP, and now Ruby. Python, are you next? |
|
|
|
|
2018-11-09 20:53:04 |
Zero-day in popular WordPress plugin exploited in the wild to take over sites (lien direct) |
Attacks started around three weeks ago and are still going on. Users should update the WP GDPR Compliance plugin to version 1.4.3 to protect their sites. |
|
|
|
|
2018-11-09 15:38:02 |
Linux cryptocurrency miners are installing rootkits to hide themselves (lien direct) |
Rootkit component hides the crypto-mining process that causes high CPU usage from local, built-in Linux process monitoring utilities. |
|
|
|
|
2018-11-09 13:26:03 |
Threat Stack acquires Bluefyre in cloud infrastructure security push (lien direct) |
The company will use Bluefyre's portfolio to assist developers in building secure cloud-native applications. |
Threat
|
|
|
|
2018-11-09 13:05:04 |
ForeScout Technologies snaps up SecurityMatters in $113 million deal (lien direct) |
The deal is designed to strengthen ForeScout's enterprise and industrial security offerings. |
|
|
|
|
2018-11-09 12:19:02 |
South Korea will make young cryptojackers stand trial for infecting PCs (lien direct) |
It is believed this is the first time the country has had to deal with the emerging problem of cryptojacking. |
|
|
|
|
2018-11-09 05:50:01 |
Adobe ColdFusion servers under attack from APT group (lien direct) |
A cyber-espionage group appears to have reverse engineer an Adobe security patch and is currently going after unpatched ColdFusion servers. |
|
|
|
|
2018-11-08 22:51:00 |
Chrome 71 will warn users about websites with shady phone subscription forms (lien direct) |
Google plans to show full-page warning for sites that fail to list all mobile subscription information in a proper and clearly visible manner. |
|
|
|
|
2018-11-08 21:20:05 |
Google: Newer Android versions are less affected by malware (lien direct) |
Android devices that only download apps from Google Play are 9 times less likely to get malware than devices that download apps from other sources. |
Malware
|
|
|
|
2018-11-08 18:46:00 |
Steam bug could have given you access to all the CD keys of any game (lien direct) |
Bug affected a Steam API and was patched in August. Downgrading your Steam client won't help you get free games. |
|
|
|
|
2018-11-08 13:27:05 |
DerpTrolling game server DoS attacker pleads guilty (lien direct) |
The man has pleaded guilty to attacks against companies including Sony. |
Guideline
|
|
|
|
2018-11-08 10:51:01 |
Canada Post leaked personal data, orders of thousands of cannabis smokers (lien direct) |
The rollout of legal weed in Ontario is now beset by potential privacy issues. |
|
|
|