What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-12-17 18:25:01 | Industrial Cyber-Espionage Campaign Targets Hundreds of Companies (lien direct) | Hundreds of industrial companies are currently the targets of cyber-espionage activity from an advanced threat actor. The adversary uses a new version of an older info-stealer to extract sensitive data and files. [...] | Threat | ||
|
2019-11-28 23:07:54 | Advanced Hacking Groups Keep Showing Up, Old Ones Evolve (lien direct) | Advancements in the threat landscape are clear from one year to another. Since last year, security researchers have seen new adversaries along with methods of compromise and more overt cyberattacks. [...] | Threat | ||
|
2019-11-22 18:57:26 | The Week in Ransomware - November 22nd 2019 - Leaky Files (lien direct) | This week the biggest news was Maze Ransomware escalating the ransomware threat releasing a victim's stolen data because they did not pay the ransom. [...] | Ransomware Threat | ||
|
2019-11-21 15:32:03 | Card Skimmer Group Replaces Checkout Page to Steal Payment Info (lien direct) | A payment service platform's checkout page was recently cloned by the threat actors behind a web skimming campaign that harvested and stole credit card information from an online shop's customers. [...] | Threat | ||
|
2019-11-20 19:40:13 | Microsoft Warns Customers of DoppelPaymer Ransomware Threat (lien direct) | The Microsoft Security Response Center (MSRC) warned customers of the threat behind ongoing DoppelPaymer ransomware attacks and reminded them about misleading info on how it spreads. [...] | Ransomware Threat Guideline | ||
|
2019-11-14 09:05:16 | New Threat Actor Impersonates Govt Agencies to Deliver Malware (lien direct) | A new threat actor is using email to impersonate government agencies in the United States, Germany, and Italy to deliver ransomware, backdoors, and banking Trojans through malicious attachments. [...] | Malware Threat | ||
|
2019-11-13 13:28:45 | Microsoft Fixes Windows 10 1809 Issue That Broke Defender ATP (lien direct) | Microsoft resolved a known issue causing Microsoft Defender Advanced Threat Protection (ATP) to stop running and fail to send reporting data on some Windows devices after installing the KB4520062 optional non-security update. [...] | Threat | ||
|
2019-11-08 12:53:10 | New Stealthy Backdoor Used by Platinum APT in Recent Attacks (lien direct) | The advanced persistent threat (APT) group tracked by Microsoft as Platinum is using a new stealthy backdoor malware dubbed Titanium to infiltrate and take control of their targets' systems. [...] | Malware Threat | ||
|
2019-11-05 19:28:50 | DarkUniverse APT Stayed Hidden for 8 Years, Updated Regularly (lien direct) | Security researchers today published technical details about malware used by a new threat actor that matches a signature in a scanner likely built by the U.S. National Security Agency and leaked more than two years ago. [...] | Malware Threat | ||
|
2019-11-04 15:39:18 | Malwarebytes 4.0 Released With New UI and Scanning Engine (lien direct) | Malwarebytes has released version 4.0 of their flagship antivirus product and with it comes a new scanning engine, a new user interface, threat statistics and more. [...] | Threat | ||
|
2019-11-04 09:00:00 | Office 365 Breach Detection Capabilities Now in Public Preview (lien direct) | Microsoft announced the release of a new Office 365 Advanced Threat Protection (ATP) features designed to detect breaches, dubbed enhanced compromise detection and response. [...] | Threat | ||
|
2019-10-21 15:29:10 | Russian Hackers Use Iranian Threat Group\'s Tools, Servers as Cover (lien direct) | The Russian-backed Turla cyber-espionage group used stolen malware and hijacked infrastructure from the Iranian-sponsored OilRig to attack targets from dozens of countries according to a joint United Kingdom's National Cyber Security Centre (NCSC) and U.S. National Security Agency (NSA) advisory published today. [...] | Malware Threat | APT 34 | |
|
2019-10-17 09:39:47 | Cozy Bear Russian Hackers Spotted After Staying Undetected for Years (lien direct) | Cyber-espionage operations from Cozy Bear, a threat actor believed to work for the Russian government, continued undetected for the past years by using malware families previously unknown to security researchers. [...] | Malware Threat | APT 29 | |
|
2019-10-16 14:40:20 | Attackers Hide Backdoors and Cryptominers in WAV Audio Files (lien direct) | Attackers behind a new malicious campaign are using WAV audio files to hide and drop backdoors and Monero cryptominers on their targets' systems as BlackBerry Cylance threat researchers discovered. [...] | Threat | ★★★★ | |
|
2019-10-14 09:19:24 | Iranian Hackers Create Credible Phishing to Steal Library Access (lien direct) | The Silent Librarian threat group is constantly updating its tactics and techniques, to the point of using on its login phishing pages info and alerts that is accurate and relevant to potential victims. [...] | Threat | ||
|
2019-10-08 03:28:14 | Hackers Patch Web Browsers to Track Encrypted Traffic (lien direct) | Researchers have found a new piece of malware, likely from an advanced threat group, that can patch Chrome and Firefox browsers to identify the encrypted traffic from a victim's computer. [...] | Threat | ||
|
2019-10-04 14:53:19 | Microsoft Discovers Iranian Hacking Campaign Targeting U.S. Politics (lien direct) | Microsoft says that a state-sponsored Iranian cyber-espionage group tracked as Phosphorus by the Microsoft Threat Intelligence Center (MSTIC) attempted to get account info on over 2,700 of its customers, attack 241 of them, and compromised four accounts between August and September. [...] | Threat Conference | APT 35 | |
|
2019-10-04 10:19:29 | Actively Exploited Android Zero-Day Impacts Google, Samsung Devices (lien direct) | Google's Threat Analysis Group (TAG) says that a new Android zero-day is actively being exploited in the wild in attacks targeting vulnerable Google Pixel, Huawei, Xiaomi, Samsung, Oppo, and Moto devices. [...] | Threat | ||
|
2019-10-03 09:45:21 | Cyber-Spy Group Active Since 2013 Now Tied to Chinese State Actor (lien direct) | Multiple cyber-espionage campaigns that remained unattributed over the years have now been linked to a single threat actor that researchers named PKPLUG, attacking targets across Asia. [...] | Threat | ||
|
2019-10-02 10:02:13 | Threat Group Uses Bit.ly, BlogSpot, Pastebin to Deliver Trojans, RATs (lien direct) | A malicious campaign targeting corporations from all over the world was observed while using a combination of pages hosted on Bit.ly, BlogSpot, and Pastebin to deliver Azorult and RevengeRAT malware. [...] | Threat | ||
|
2019-09-30 10:21:34 | eGobbler Malvertiser Uses WebKit Exploit to Infect Over 1 Billion Ads (lien direct) | Roughly 1.16 billion ad impressions have been hijacked in a malvertising campaign operated by a threat group dubbed eGobbler to redirect potential victims to malicious payloads, between August 1 and September 23. [...] | Threat | ||
|
2019-09-27 12:50:42 | Office 365 to Get Automated Incident Response for Hacked Accounts (lien direct) | Microsoft is currently working on adding a new Automated Incident Response playbook to Office 365 Advanced Threat Protection (ATP) to allow Security Operations (SecOps) teams to automatically investigate and remediate hacked accounts. [...] | Threat | ||
|
2019-09-25 18:36:46 | Microsoft to Extend Office 365 ATP Safe Links to Office Online (lien direct) | Microsoft is currently working on extending the Office 365 Advanced Threat Protection (ATP) Safe Links protection to Office Online apps, with the new feature to be released in October. [...] | Threat | ||
|
2019-09-24 11:23:41 | State-Backed Attackers Target US Entities with LookBack Malware (lien direct) | A spear-phishing campaign spanning more than five months has been targeting roughly 17 U.S. utility providers between April 5 and August 29 according to research from Proofpoint's Threat Insight Team. [...] | Malware Threat | ||
|
2019-09-18 06:00:00 | New TortoiseShell Group Hacks 11 IT Providers to Reach Their Customers (lien direct) | A newly discovered threat group that security researchers call TortoiseShell is compromising IT providers in what seems to be supply-chain attacks intended to reach the network of specific customers. [...] | Threat | ||
|
2019-09-17 03:34:35 | Most Cyber Attacks Focus on Just Three TCP Ports (lien direct) | Small to mid-sized businesses can keep safe from most cyberattacks by protecting the ports that threat actors target the most. Three of them stand out in a crowd of more than 130,000 targeted in cyber incidents. [...] | Threat | ||
|
2019-09-12 03:33:03 | Iranian Hackers Hit Over 60 Universities to Get Library Access (lien direct) | Cobalt Dickens, a threat actor associated with the Iranian government, ran a phishing operation in July and August that targeted more than 60 universities in countries on four continents. [...] | Threat | ||
|
2019-09-09 17:30:00 | Office 365 ATP Automated Incident Response Now Generally Available (lien direct) | Microsoft announced today the general availability of the Automated Incident Response feature in Office 365 Advanced Threat Protection (ATP) users to support the rising requirements of security teams. [...] | Threat | ★★★★ | |
|
2019-09-05 11:28:05 | Buggy GPS Trackers Expose Childrens\' Real-Time Location (lien direct) | Several vulnerabilities impacting twenty-nine models of GPS trackers designed to monitor the location of children, pets, and valuable possessions expose real-time location data as Avast Threat Labs researchers found. [...] | Threat | ★★★★ | |
|
2019-09-05 10:28:05 | WordPress 5.2.3 Released with Security and Bug Fixes (lien direct) | WordPress 5.2.3 has been released and includes fixes for six vulnerabilities and 29 bugs or enhancements. As WordPress is a common target for threat actors looking to host their malicious campaigns, it is important that all WordPress users upgrade to the latest release as soon as possible. [...] | Threat | ||
|
2019-09-04 15:19:02 | Year-Old Samba Bug Allows Access to Forbidden Root Share Paths (lien direct) | For almost a year, threat actors could exploit a vulnerability in Samba software that allowed them to bypass file-sharing permissions and escape outside the share root directory. [...] | Vulnerability Threat | ||
|
2019-09-03 14:02:04 | Microsoft Uses Deep Learning For Malicious PowerShell Detection (lien direct) | Microsoft bets on deep learning to enhance the Microsoft Defender Advanced Threat Protection (ATP) malicious PowerShell detection feature using a new technique originally developed for natural language processing (NLP). [...] | Threat | ||
|
2019-08-30 13:49:03 | Google Warns iPhone Users of Data-Stealing Malware Attacks (lien direct) | Five privilege escalation exploit chains actively used to compromise iOS devices have been discovered in the wild by Google's Threat Analysis Group (TAG) and Project Zero teams earlier this year. [...] | Malware Threat | ||
|
2019-08-27 10:46:01 | Lyceum/Hexane Threat Group Uses Common Hacking Tactics (lien direct) | A recently reported threat group focusing on critical infrastructure organizations in the Middle East uses simple techniques to compromise victims and deploy post-intrusion tools. [...] | Threat | ||
|
2019-08-21 10:36:01 | Hackers Want $2.5 Million Ransom for Texas Ransomware Attacks (lien direct) | The threat actor that hit multiple Texas local governments with file-encrypting malwarelast week may have done it by compromising a managed service provider. The attacker demanded a collective ransom of $2.5 million, the mayor of a municipality says. [...] | Ransomware Threat | ||
|
2019-08-20 17:11:05 | Visa Adds New Threat Detection to Prevent Payment Fraud (lien direct) | Visa announced the addition of new fraud threat detection and blocking tech designed to boost transaction security and, implicitly, the integrity of its payments ecosystem. [...] | Threat | ||
|
2019-08-15 03:00:00 | Lateral Phishing Attacks: A Growing Threat to the Enterprise (lien direct) | A growing threat targeting the enterprise are phishing scams targeting users from compromised email accounts in the same organization. This type of attack is called lateral phishing as it is conducted from an email address within, rather than outside, the organization. [...] | Threat | ||
|
2019-08-14 12:40:01 | Attackers Use Backdoor and RAT Cocktail to Target the Balkans (lien direct) | Several countries have been targeted by a long-term campaign operated by financially motivated threat actors who used a backdoor and a remote access Trojan (RAT) malicious combo to take control of infected computers. [...] | Threat | ||
|
2019-08-09 17:10:01 | Microsoft Office Phishers Move to Enterprise AWS Landing Pages (lien direct) | An ongoing phishing campaign targeting several organizations with the help of DocuSign branded spam e-mails has been observed by Proofpoint's Threat Insight Team while abusing Amazon Web Services to host their landing pages. [...] | Spam Threat | ||
|
2019-08-08 10:01:04 | US Accounts for More than Half of World\'s Ransomware Attacks (lien direct) | The threat of ransomware is more prevalent in the U.S., with more than half of the global detections originating from this country, a new report informs. [...] | Ransomware Threat | ||
|
2019-08-04 10:25:04 | Extortion Emails on the Rise: A Look at The Different Types (lien direct) | Since 2018, a constant stream of extortion email scams have been targeting users with fake threats designed to scare you into sending a payment in bitcoins to avoid an embarrassing leak or threat of legal action. [...] | Threat | ||
|
2019-08-01 12:00:00 | New SystemBC Malware Uses Your PC to Hide Malicious Traffic (lien direct) | A new malware strain is being distributed by threat actors via exploit kits like Fallout and RIG to hide malicious network traffic with the help of SOCKS5 proxies set up on compromised computers. [...] | Malware Threat | ||
|
2019-08-01 07:13:00 | New Hexane Group Targets Oil and Gas, Telco Providers (lien direct) | A new threat group discovered recently focuses on organizations in the oil and gas industry and attacking telecommunication providers most likely in an attempt to reach the main target. [...] | Threat | ||
|
2019-07-29 17:05:00 | Microsoft Adds IoT Device Protection to Azure Security Center (lien direct) | Microsoft announced the general availability of Azure Security Center for IoT which provides organizations with security posture management and threat protection for all deployed IoT devices. [...] | Threat | ||
|
2019-07-23 12:30:02 | Microsoft to Improve Office 365 Malicious Email Analysis (lien direct) | Microsoft is currently in the process of developing significantly better manual threat hunting features for the Office 365 Threat Explorer, to be rolled out to all environments during August. [...] | Threat | ||
|
2019-07-22 18:31:05 | Hackers Exploit Recent WordPress Plugin Bugs for Malvertising (lien direct) | An ongoing malvertising campaign is targeting an unauthenticated stored cross-site scripting (XSS) vulnerability in the Coming Soon Page & Maintenance Mode WordPress plugin according to Wordfence's Defiant Threat Intelligence team. [...] | Vulnerability Threat | ||
|
2019-07-18 09:55:00 | Nation-Backed Hackers Targeted 10,000 Microsoft Customers (lien direct) | Microsoft says that it notified roughly 10,000 of its customers in the past year of being either targeted or compromised by nation-state sponsored threat groups. [...] | Threat | ||
|
2019-07-18 07:03:00 | New Okrum Malware Used by Ke3chang Group to Target Diplomats (lien direct) | Updated malware implants and a new backdoor named Okrum connected with the Ke3chang threat group operating from China have been found by ESET researchers while monitoring their operations between 2015 and 2019. [...] | Malware Threat | APT 15 APT 25 | |
|
2019-07-17 10:34:01 | Trojan-Riddled WinRAR, Winbox, IDM Spreads StrongPity Spyware (lien direct) | Some versions of WinRAR file compression tool and Winbox software for managing MikroTik users have been tampered with to install malware serving an advanced threat actor. This campaign may have started in the second half of 2018 and continues today. [...] | Malware Tool Threat | ||
|
2019-07-16 17:22:02 | American Express Customers Targeted by Novel Phishing Attack (lien direct) | A phishing attack using a novel technique to steal credentials from American Express customers was recently found in an email inbox protected using Microsoft's Office 365 Advanced Threat Protection (ATP) by Cofense Phishing Defense Center researchers. [...] | Threat |
To see everything:
Our RSS (filtrered)
