What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-06-06 11:05:00 | 92 Million User Credentials Lost by MyHeritage (lien direct) | MyHeritage, a DNA and genealogy firm, announced Monday that the access credentials of 92 million users had been stolen. It only discovered the breach when a security researcher informed the company he had found a file named myheritage stored outside of MyHeritage. | Heritage | ||
|
2018-06-06 05:24:01 | HR Software Firm PageUp Suffers Data Breach (lien direct) | PageUp, an Australian company that provides HR software, informed customers this week that it launched an investigation on May 23 after detecting suspicious activity on its IT infrastructure. | |||
|
2018-06-06 04:41:00 | Mirai Variants Continue to Spawn in Vulnerable IoT Ecosystem (lien direct) | Mirai is the archetypal IoT botnet, first achieving infamy with a 665 Gbps DDoS attack against the KrebsOnSecurity website in September 2016. Within days, a second Mirai attack targeted the French hosting firm, OVH, with an attack that peaked at nearly 1 Tbps. | |||
|
2018-06-06 03:17:04 | Facebook Says Chinese Phone Makers Got Access to Data (lien direct) | Facebook on Tuesday confirmed that a Chinese phone maker deemed a national security threat by the US was among companies given access to data on users. | |||
|
2018-06-05 18:29:00 | Fortinet Acquires Bradford Networks to Extend Security to the Edge (lien direct) | Fortinet has acquired Boston-based network security firm Bradford Networks. The purpose is to extend Fortinet's micro segmentation to the new perimeter: that is, the IoT and mobile edge. | |||
|
2018-06-05 15:48:02 | Flaw in F-Secure Products Allowed Code Execution via Malicious Archives (lien direct) | A critical vulnerability affecting many consumer and corporate products from F-Secure could have been exploited for remote code execution using specially crafted archive files. | |||
|
2018-06-05 14:25:01 | Oops! Botnet Operators Use Default Credentials on Command and Control Server (lien direct) | Internet of Things (IoT) botnets prey on the use of default or weak credentials to compromise connected devices, but the operators of such a botnet also used default credentials in their operations. | |||
|
2018-06-05 14:06:05 | IBM Adds New Features to MaaS360 with Watson UEM Product (lien direct) | IBM announced on Monday that it has added two new important features to its “MaaS360 with Watson” unified endpoint management (UEM) solution. UEM solutions allow enterprise IT teams to manage smartphones, tablets, laptops and IoT devices in their organization from a single management console. | |||
|
2018-06-05 12:28:01 | Apple Boosts Security in iOS 12, macOS Mojave (lien direct) | At its Worldwide Developers Conference (WWDC) 2018 this week, Apple shared information on the security improvements that iOS 12 and macOS Mojave are set to bring when they arrive this fall. | |||
|
2018-06-05 12:14:00 | Interconnectivity Has Put ICS Environments in Cyber Risk Crosshairs (lien direct) | Tell any IT professional that the computer running the electrical grid has not been updated in 20 years, or that the machine that controls operations in the bottling plant was last tuned up when Y2K was still being planned, and they will look at you like you are crazy. They simply will not believe you. Why? | |||
|
2018-06-05 12:08:04 | Many Drupal Sites Still Vulnerable to Drupalgeddon2 Attacks (lien direct) | At least 115,000 websites powered by version 7 of the Drupal content management system are still vulnerable to Drupalgeddon2 attacks, despite patches being available since late March. | |||
|
2018-06-05 11:37:02 | Germany\'s Continental Bans WhatsApp From Work Phones (lien direct) | German car parts supplier Continental on Tuesday said it was banning the use of WhatsApp and Snapchat on work-issued mobile phones "with immediate effect" because of data protection concerns. | |||
|
2018-06-05 05:16:04 | 26 Million Users Hit by Ticketfly Hack (lien direct) | Ticketfly, the ticket distribution service owned by Eventbrite, has started restoring services after its website was defaced by a hacker who also gained access to user information. | |||
|
2018-06-04 20:26:02 | Apple Touts Privacy Features of New Operating Systems (lien direct) | Apple on Monday said new operating systems powering its mobile devices and computers would include features designed to thwart the use of secret trackers to monitor people's online activities. | |||
|
2018-06-04 20:00:02 | (Déjà vu) Apple Patches Dozens of Flaws in macOS, iOS, Safari (lien direct) | Apple has released a set of updates to address dozens of vulnerabilities in products including macOS, iOS, Safari, tvOS, watchOS, and iTunes and iCloud applications for Windows. | |||
|
2018-06-04 19:50:05 | New Backdoor Based on HackingTeam\'s Surveillance Tool (lien direct) | A recently discovered backdoor built by the Iron cybercrime group is based on the leaked source code of Remote Control System (RCS), | |||
|
2018-06-04 18:14:03 | Moving to the Public Cloud? Security Starts With You (lien direct) | Organizations recognize that the cloud is a key enabler of digital transformation, allowing them to innovate faster, improve business agility, and accelerate time to market. As they reinvent business models and strategies, a growing number are opting for public cloud deployments. | |||
|
2018-06-04 16:19:00 | Federal Agencies Respond to 2017 Cybersecurity Executive Order (lien direct) | 
|
★★★ | ||
|
2018-06-04 15:23:04 | Cyber Range Developer Cyberbit Raises $30 Million (lien direct) | Israel-based Cyberbit Ltd., a provider of cyber range training and simulation platforms, announced on Monday that it has received a $30 million investment from Claridge Israel. | |||
|
2018-06-04 14:44:04 | Google Password Protects Pixel 2 Firmware (lien direct) | Google has made the firmware of Pixel 2 devices resistant to unauthorized attempts to upgrade it by password protecting it. | |||
|
2018-06-04 13:37:03 | Microsoft to Acquire GitHub for $7.5 Billion (lien direct) | Microsoft on Monday announced that it has agreed to acquire software development and collaborateion platform GitHub in a deal valued at $7.5 billion. | |||
|
2018-06-04 13:20:02 | VPNFilter Continues Targeting Routers in Ukraine (lien direct) | Despite their infrastructure being disrupted, the hackers behind the VPNFilter botnet continue targeting routers located in Ukraine, which is believed to be the campaign's primary target. | VPNFilter | ||
|
2018-06-04 04:52:01 | Thousands of Organizations Expose Sensitive Data via Google Groups (lien direct) | Google has issued a warning to G Suite users after researchers discovered that thousands of organizations expose sensitive information through misconfigured Google Groups instances. | |||
|
2018-06-01 14:23:03 | Tens of Vulnerabilities Found in Quest Appliances (lien direct) | Researchers at Core Security say they have discovered a total of more than 60 vulnerabilities in disk backup and system management appliances from Quest. The IT management firm has released patches, but threatened to take legal action against Core if it disclosed too many details. | |||
|
2018-06-01 12:55:00 | WordPress Disables Plugins That Expose e-Commerce Sites to Attacks (lien direct) | Researchers discovered vulnerabilities in ten WordPress plugins made by a company for e-commerce websites powered by the WooCommerce platform. WordPress disabled many of them after the developer failed to release patches. | ★★★★ | ||
|
2018-06-01 12:43:00 | Punycode Makes SMiShing Attacks More Deceiving (lien direct) | Phishing attacks carried out via text messages that use the “Punycode” technique to make nefarious URLs look legitimate are becoming more popular, cloud security firm Zscaler says. | |||
|
2018-06-01 11:37:04 | Hardcoded Credentials Expose Yokogawa Controllers to Attacks (lien direct) | Japanese electrical engineering company Yokogawa has released firmware updates for its STARDOM controllers to address a critical vulnerability that can be exploited remotely to take control of the device. | |||
|
2018-06-01 10:14:05 | FUD Crypters Recycling Old Malware (lien direct) | When I first started analyzing malware we stored it on floppy disks, so I know old malware when I see it. And, oddly enough, lately I'm seeing more and more of it – a phenomenon being driven, I believe, by the ongoing proliferation of FUD crypter services-FUD as in “Fully Undetectable.” I think this is evolving to the point where it will be an issue for the security industry. | |||
|
2018-06-01 09:36:05 | Personal Data Compromised in Ticketfly Hack (lien direct) | 
Eventbrite-owned ticket distribution service Ticketfly shut down its website on Thursday after it was defaced by a hacker who calls himself “IsHaKdZ.”
|
|||
|
2018-05-31 19:42:05 | PE Firm Thoma Bravo Buys Majority Stake in LogRhythm (lien direct) | Private equity firm Thoma Bravo announced on Thursday that it will acquire a majority interest in Security Information and Event Management (SIEM) solutions vendor LogRhythm. | |||
|
2018-05-31 16:29:05 | German Spy Agency Can Keep Tabs on Internet Hubs: Court (lien direct) | Germany's spy agency can monitor major internet hubs if Berlin deems it necessary for strategic security interests, a federal court has ruled. | |||
|
2018-05-31 16:19:05 | ProtonMail Launches VPN Application for macOS (lien direct) | Encrypted email service provider ProtonMail on Wednesday announced the availability of a virtual private network (VPN) service for macOS users. | |||
|
2018-05-31 12:44:05 | Senators Ask National Security Advisor to Save Cybersecurity Coordinator Role (lien direct) | A group of Democrat senators is urging National Security Advisor John Bolton to reconsider the decision to eliminate the role of cybersecurity coordinator, arguing that it represents a step in the wrong direction. | |||
|
2018-05-31 12:16:00 | The Current Limitations and Future Potential of AI in Cybersecurity (lien direct) | A recent NIST study shows the current limitations and future potential of machine learning in cybersecurity. | |||
|
2018-05-31 11:50:01 | What The Tempest Can Teach Us About Security Operations (lien direct) | “What's past is prologue.” This famous line from The Tempest by William Shakespeare is engraved at the entrance of the National Archives Building in Washington, D.C. It sets the stage for the collection of historical documents held within, reinforcing the importance of being able to go back and refer to history for context to understand what is happening today. The same holds true for cybersecurity. Context helps you understand the who, what, where, when, why and how of an attack. | |||
|
2018-05-31 11:21:04 | Fraud Protection Firm Signifyd Raises $100 Million (lien direct) | Signifyd, a San Jose, CA-based company that specializes in fraud protection solutions for e-commerce businesses, on Wednesday announced that it raised $100 million in a Series D funding round. | |||
|
2018-05-31 10:11:03 | North Korea-Linked Group Stops Targeting U.S. (lien direct) | A threat actor linked to North Korea's Lazarus Group has stopped targeting organizations in the United States, but remains active in Europe and East Asia. | Medical | APT 38 | |
|
2018-05-31 05:16:03 | Tens of Vulnerabilities Found in Pentagon Travel Management System (lien direct) | HackerOne announced on Wednesday the results of “Hack the DTS,” the fifth bug bounty program run by the U.S. Department of Defense (DOD). | |||
|
2018-05-31 02:39:05 | Operator of World\'s Top Internet Hub Sues German Spy Agency (lien direct) | Berlin - The operator of the world's largest internet hub challenged the legality of sweeping telecoms surveillance by Germany's spy agency, a German court heard Wednesday. The BND foreign intelligence service has long tapped international data flows through the De-Cix exchange based in the German city of Frankfurt. | |||
|
2018-05-30 23:05:00 | U.S. Judge Rejects Kaspersky Suit Against Govt Ban on its Products (lien direct) | Washington - A Washington judge on Wednesday rejected a lawsuit by Russian computer security company Kaspersky Lab against the ban on use of its anti-virus software by government agencies. | |||
|
2018-05-30 16:54:03 | FireMon to Acquire Cyber Situational Awareness Firm Lumeta (lien direct) | Network security policy management solutions provider FireMon announced on Tuesday that it has entered an agreement to acquire Lumeta, a company that specializes in cyber situational awareness. The financial terms of the deal, expected to be completed in the second quarter of 2018, have not been disclosed. | |||
|
2018-05-30 16:41:00 | Tips for Hardening Networks Against IoT-based DDoS Attacks (lien direct) | The Internet of Things (IoT) has been a boon for the cybercriminal industry. IoT devices number in the billions worldwide and most are unsecured or undersecured, making them appealing targets to be used in distributed denial-of-service (DDoS) attacks that can overwhelm an enterprise network and cause critical business systems to crash. | |||
|
2018-05-30 15:36:02 | U.S. Commerce Chief Warns of Disruption From EU Privacy Rules (lien direct) | Washington - US Commerce Secretary Wilbur Ross warned Wednesday that the new EU privacy rules in effect since last week could lead to serious problems for business, medical research and law enforcement on both sides of the Atlantic. | Guideline | ||
|
2018-05-30 15:30:02 | Considerations For Evaluating Vendor Risk Management Solutions (lien direct) | The Vendor Risk Management (VRM) space has quickly become a hot topic this year. It seems like everywhere you turn, new companies offering VRM solutions are popping up. As we've seen with other markets in security, most vendors in the space use the same marketing buzzwords. Each vendor seems to claim that it provides all of the same features and capabilities as the next vendor. | |||
|
2018-05-30 14:33:04 | Chrome 67 Patches 34 Vulnerabilities (lien direct) | Google this week released Chrome 67 to the stable channel to provide various improvements, including patches for 34 vulnerabilities. | |||
|
2018-05-30 14:13:05 | Vulcan Cyber Emerges From Stealth With $4 Million Seed Round (lien direct) | Vulcan Cyber is the latest Israel-based cybersecurity startup to emerge from stealth mode. The company, whose main product is a vulnerability remediation platform, announced on Wednesday that it raised $4 million in seed funding. | |||
|
2018-05-30 12:40:03 | Remote Code Execution Vulnerability Patched in Git (lien direct) | Updates released on Tuesday for the Git version control system patch two security flaws, including a serious vulnerability that can be exploited for remote code execution using specially crafted repositories. | |||
|
2018-05-30 11:51:04 | GDPR: What Every Organization Should Ask Itself (lien direct) | Regulatory Issues Such as GDPR Are a Process in Which Security and Privacy Challenges Should Continuously be Addressed | |||
|
2018-05-30 10:44:00 | U.S. Attributes Two More Malware Families to North Korea (lien direct) | The U.S. Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) have issued another joint technical alert on the North Korea-linked threat group known as Hidden Cobra. | Medical | APT 38 | |
|
2018-05-30 04:54:03 | Accused Yahoo Hacker Gets Five Years in Prison, Fine (lien direct) | A man accused of taking part in devastating cyberattacks on Yahoo for Russian intelligence agents was sentenced Tuesday to five years in prison in a plea bargain with prosecutors. | Guideline | Yahoo |
To see everything:
Our RSS (filtrered)
