Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2018-11-08 06:45:02 |
Cambodia\'s ISPs hit by some of the biggest DDoS attacks in the country\'s history (lien direct) |
EZECOM, SINET, Telcotech, and Digi confirmed to have been affected. |
|
|
|
|
2018-11-08 00:43:00 |
US Cyber Command starts uploading foreign APT malware to VirusTotal (lien direct) |
USCYBERCOM said it plans to regularly upload "unclassified malware samples" to VirusTotal. |
Malware
|
|
|
|
2018-11-07 21:00:03 |
Cisco removed its seventh backdoor account this year, and that\'s a good thing (lien direct) |
Seventh backdoor account discovered in Cisco Small Business Switches firmware. |
|
|
|
|
2018-11-07 16:10:01 |
Dutch police snoop on criminal chats by intercepting encryption server (lien direct) |
Law enforcement says they were able to read over 250,000 messages. |
|
|
|
|
2018-11-07 16:07:00 |
IoT botnet infects 100,000 routers to send Hotmail, Outlook, and Yahoo spam (lien direct) |
Botnet infects routers and uses them to relay connections to webmail services. |
Spam
|
Yahoo
|
|
|
2018-11-07 12:23:01 |
University shuts down network to thwart Bitcoin cryptojacking scheme (lien direct) |
The network and the university's power were used covertly to mine for cryptocurrency. |
|
|
|
|
2018-11-07 11:11:01 |
WordPress, WooCommerce flaws combine to allow website hijacking (lien direct) |
A problem in how WordPress handles privileges can be exploited to take control of domains. |
|
|
|
|
2018-11-07 10:00:02 |
This is how artificial intelligence will become weaponized in future cyberattacks (lien direct) |
Real-time, autonomous decisions are only some of the techniques AI can bring to the table. |
|
|
|
|
2018-11-07 09:00:01 |
Microsoft, Google apps feature in the top 20 vulnerabilities in enterprise environments (lien direct) |
The most severe web browser bugs have the potential to disrupt up a third of enterprise environments. |
|
|
|
|
2018-11-07 08:58:00 |
VirtualBox zero-day published by disgruntled researcher (lien direct) |
Russian researcher publishes detailed write-up for VirtualBox zero-day on GitHub after Oracle took 15 months to fix a previous similar issue. |
|
|
|
|
2018-11-07 00:56:01 |
Google\'s automated fuzz bot has found over 9,000 bugs in the past two years (lien direct) |
Google improves OSS-Fuzz service, plans to invite new open source projects to join. |
|
|
|
|
2018-11-06 16:54:05 |
Hackers breach StatCounter to hijack Bitcoin transactions on Gate.io exchange (lien direct) |
StatCounter is still compromised but Gate.io has removed the script form its site. |
|
|
|
|
2018-11-06 14:28:00 |
HSBC discloses security incident (lien direct) |
Bank appears to have fallen victim to credential stuffing attack. |
|
|
|
|
2018-11-06 13:45:00 |
Ahead of US midterms, Facebook removes 30 accounts and 85 Instagram profiles (lien direct) |
Facebook says it acted after a tip it received on Sunday from US law enforcement. |
|
|
|
|
2018-11-06 11:44:04 |
BGP attacks hijack Telegram traffic in Iran (lien direct) |
With so many users in Iran, it's unsurprising that potentially state-sponsored groups would want an access point into the banned app. |
|
|
|
|
2018-11-06 10:18:04 |
Evernote for Windows patch resolves stored XSS vulnerability (lien direct) |
The severe flaw permitted attackers to create a persistent XSS issue. |
Vulnerability
|
|
|
|
2018-11-06 06:00:01 |
Oracle confirms China Telecom internet traffic \'misdirections\' (lien direct) |
Oracle's Internet Intelligence division partially confirms controversial US Naval War College research paper. |
|
|
|
|
2018-11-05 22:44:04 |
(Déjà vu) States activate National Guard cyber units for tomorrow\'s midterm elections (lien direct) |
National Guard cyber units activated in Washington, Illinois, and, more recently, Wisconsin. |
|
|
|
|
2018-11-05 22:44:00 |
States activate National Guard cyber units for US midterm elections (lien direct) |
National Guard cyber units activated in Washington, Illinois, and, more recently, Wisconsin. |
|
|
|
|
2018-11-05 18:41:01 |
Google Chrome 71 will continue crackdown on sites with abusive ads (lien direct) |
Google says previous ad blocking protections only blocked half of the abusive sites it wanted to block. |
|
|
|
|
2018-11-05 17:05:05 |
Flaws in self-encrypting SSDs let attackers bypass disk encryption (lien direct) |
Master passwords and faulty standards' implementations allow attackers access to encrypted data without needing to know the user-chosen password. |
|
|
|
|
2018-11-05 12:18:00 |
Microsoft working on porting Sysinternals to Linux (lien direct) |
Microsoft engineers have already ported the ProcDump utility and are currently working on porting ProcMon as well. More tools to follow. |
|
|
|
|
2018-11-04 22:34:00 |
(Déjà vu) Republican rival puts Georgia\'s Democratic Party under investigation for \'cyber crimes\' (lien direct) |
Hacking claims don't seem to hold water when considering the state's previous accusations. |
|
|
|
|
2018-11-04 22:34:00 |
(Déjà vu) Georgia Democratic Party under investigation for \'possible cyber crimes\' (lien direct) |
Hacking claims don't seem to hold water when considering the state's previous accusations. |
|
|
|
|
2018-11-03 16:28:04 |
Android news and kids apps contain the most third-party trackers (lien direct) |
Over 20 child advocacy groups have sent a letter to the FTC regarding advertising in kids apps. |
|
|
|
|
2018-11-02 22:29:02 |
Two botnets are fighting over control of thousands of unsecured Android devices (lien direct) |
Researchers spot Trinity and Fbot botnets trying to infect Android devices via the ADB interface. |
|
|
|
|
2018-11-02 16:36:05 |
Hackers are increasingly destroying logs to hide attacks (lien direct) |
According to a new report, 72 percent of incident response specialists have came across hacks where attackers have destroyed logs to hide their tracks. |
|
|
|
|
2018-11-02 12:19:01 |
Intel CPUs impacted by new PortSmash side-channel vulnerability (lien direct) |
Vulnerability confirmed on Skylake and Kaby Lake CPU series. Researchers suspect AMD processors are also impacted. |
Vulnerability
|
|
|
|
2018-11-02 12:14:02 |
Magecart claims fresh victim in electronics kit seller Kitronik (lien direct) |
Kitronik says a recent data breach is the work of the same group which hacked British Airways and Newegg. |
Data Breach
|
|
|
|
2018-11-02 10:17:04 |
Shipbuilder, defense contractor Austal reveals data breach (lien direct) |
Hackers demanded payment for the return of stolen information. |
Data Breach
|
|
|
|
2018-11-02 00:59:00 |
FIFA admits hack and braces for new leaks (lien direct) |
March 2018 phishing incident pegged as possible origin of latest hack and subsequent data theft. |
Hack
|
|
|
|
2018-11-01 23:21:01 |
US senator working on bill that would jail CEOs for user privacy violations (lien direct) |
Company execs could face up to 20 years in prison if they lie in privacy reports submitted to the FTC. |
|
|
|
|
2018-11-01 16:45:00 |
Researchers find Stuxnet, Mirai, WannaCry lurking in industrial USB drives (lien direct) |
The malware strains have all been found in industrial settings due to removal media. |
Malware
|
Wannacry
|
|
|
2018-11-01 16:26:02 |
CIA Vault7 leaker to be charged for leaking more classified data while in prison (lien direct) |
Joshua Schulte accused of leaking classified data from his case to family members and the press while in a New York detention center. |
|
|
|
|
2018-11-01 15:00:00 |
Bleedingbit zero-day chip flaws may expose majority of enterprises to remote code execution attacks (lien direct) |
The BLE chip zero-day vulnerabilities have the potential to render millions of enterprise security systems powerless. |
|
|
|
|
2018-11-01 13:44:00 |
Radisson Hotel Group suffers data breach, customer info leaked (lien direct) |
Radisson Hotel Group loyalty scheme members are affected and may have had their personal information stolen. |
|
|
|
|
2018-11-01 01:39:00 |
Cisco zero-day exploited in the wild to crash and reload devices (lien direct) |
No patch available,yet. Vulnerability affects devices running ASA 9.4+ and FTD 6.0+ software. |
Vulnerability
|
|
|
|
2018-10-31 22:59:00 |
Google won\'t let you sign in if you disabled JavaScript in your browser (lien direct) |
Google announces for new security features to protect Google accounts. |
|
|
|
|
2018-10-31 21:41:02 |
US-CERT issues guide on how to properly dispose of your electronic devices (lien direct) |
It's simple: back up, delete, overwrite, and optionally destroy. |
|
|
|
|
2018-10-31 15:08:00 |
GandCrab ransomware crew loses $1Mil after Bitdefender releases free decrypter (lien direct) |
Bitdefender says over 1,700 victims successfully decrypted GandCrab-locked files within hours of the tool's release. |
Ransomware
|
|
|
|
2018-10-31 14:47:00 |
Inside the mind of a sextortion scam artist (lien direct) |
Do they really have access to your browsing habits and data? |
|
|
|
|
2018-10-31 11:18:04 |
Kraken Cryptor ransomware merges with Fallout exploit kit, fees slashed to gain followers (lien direct) |
The ransomware-as-a-service is attempting to drum up more business in the Internet's underbelly. |
Ransomware
|
|
|
|
2018-10-31 09:45:02 |
Nigerian airline Arik Air may have leaked customer data (lien direct) |
It was a month before the data, contained in a leaky Amazon S3 bucket, was secured. |
|
|
|
|
2018-10-31 06:49:04 |
Emotet malware gang is mass-harvesting millions of emails in mysterious campaign (lien direct) |
New Emotet module deployed within the last 24 hours has experts worried that Emotet gang is preparing a more dangerous attack. |
Malware
|
|
|
|
2018-10-30 21:59:04 |
US charges two Chinese intelligence officers \'and their team of hackers\' (lien direct) |
Department of Justice charges ten Chinese nationals for hacks on US and French aviation companies |
|
|
|
|
2018-10-30 20:00:00 |
Apple\'s T2 security chip disconnects a MacBook\'s microphone when users close the lid (lien direct) |
Feature only available for MacBook Pro and MacBook Air models released in 2018. |
|
|
|
|
2018-10-30 16:35:00 |
Many CMS plugins are disabling TLS certificate validation... and that\'s very bad (lien direct) |
Hundreds of thousands of CMS plugins and PHP libraries are disabling cURL certificate validation and putting millions of users at risk. |
|
|
|
|
2018-10-30 12:31:02 |
GPlayed Trojan\'s baby brother is after your bank account (lien direct) |
GPlayed has been making the rounds this month and now researchers have uncovered a new member of the family. |
|
|
|
|
2018-10-30 12:00:00 |
This is how hackers can take down our critical energy systems through the Internet (lien direct) |
Human Interface Systems lacking any kind of security have the potential to cause serious damage to critical services worldwide. |
|
|
|
|
2018-10-30 11:07:01 |
This is how hackers can wipe your memory and steal your thoughts (lien direct) |
It might seem like science fiction, but security woes in brain chips could make such attacks reality sooner than we think. |
|
|
|