What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-07-31 09:16:42 | Airlines Alert Customers, Employees of Cybersecurity Incidents (lien direct) | Several North American airlines alerted customers and employees in the past days about various types of cybersecurity incidents, including system breaches, data leaks and credential stuffing attacks. | |||
|
2017-07-30 12:08:44 | Apple Removes Some VPN Services From Chinese App Store (lien direct) | Apple has removed software allowing internet users to skirt China's "Great Firewall" from its app store in the country, the company confirmed Sunday, sparking criticism that it was bowing to Beijing's tightening web censorship. | |||
|
2017-07-28 18:45:55 | Tesla Model X Hacked by Chinese Experts (lien direct) | Security researchers from China-based tech company Tencent have once again demonstrated that they can remotely hack a Tesla. The vulnerabilities they leveraged were quickly patched by the carmaker. | Tesla | ||
|
2017-07-28 16:27:30 | Man-Machine Teamwork Needed for Effective Threat Hunting: Report (lien direct) | Seven hundred IT and security professionals were surveyed by McAfee to understand the current state and future development of threat hunting -- the active search for existing network breaches. | |||
|
2017-07-28 15:54:44 | TrickBot Trojan Gets Worm-Like Infection Powers (lien direct) | A newly observed version of the TrickBot banking Trojan includes a worm-like malware propagation module that allows it to spread locally via Server Message Block (SMB), Flashpoint security researchers warn. | |||
|
2017-07-28 14:36:52 | U.S Indicts Russian Man Over Money Laundering Through Bitcoin Exchange (lien direct) | 95% of Tracked Ransoms Were Cashed Out via BTC-e, a Digital Currency Exchange The Accused Alexander Vinnik Operated | |||
|
2017-07-28 14:30:44 | VMware API Allows Limited vSphere Users to Access Guest OS (lien direct) | LAS VEGAS - BLACK HAT USA - Researchers discovered that a VMware API can be abused by vSphere users with limited privileges to access the guest operating system without authentication. VMware has provided workarounds for preventing potential attacks exploiting the vulnerability. | |||
|
2017-07-28 13:16:19 | British Hacker Convicted in Germany of Major Cyber Attack (lien direct) | A British man was handed a suspended jail sentence by a German court Friday for a massive cyber attack against Deutsche Telekom last year. | |||
|
2017-07-28 12:13:05 | WikiLeaks Details Mac OS X Hacking Tools Used by CIA (lien direct) | The latest round of documents published by WikiLeaks as part of a leak dubbed by the organization “Vault 7†describes several tools allegedly used by the U.S. Central Intelligence Agency (CIA) to target Mac OS X and other POSIX systems. | |||
|
2017-07-28 11:41:50 | CISO Perspective: How Digital Risk Monitoring Fits Into Threat Intelligence Programs (lien direct) | Cyber threat intelligence means different things to different people and as such I've spent the last several articles exploring a threat intelligence mind map and the different levels of threat intelligence: | |||
|
2017-07-28 11:02:10 | Researchers Demo Physical Attack via Car Wash Hack (lien direct) | LAS VEGAS - BLACK HAT USA - Researchers have created proof-of-concept (PoC) exploits to demonstrate how hackers can cause physical damage to vehicles and injure their occupants by remotely hijacking a connected car wash. | |||
|
2017-07-28 01:59:20 | Report Depicts Shameful State of Cybersecurity Metrics (lien direct) | For years, Security has sought the ear of the Board and claimed it was not offered. Today the Board is listening; but all too often Security talks in a language that Business does not understand. There is a solution, but it is not yet maximized. That solution is Metrics, a language spoken and understood by both Business and Security; but not widely or effectively used. | |||
|
2017-07-27 19:52:51 | Rurktar Malware: An Espionage Tool in Development (lien direct) | A newly discovered spyware family that appears designed for cyber-espionage is still under development, G DATA security researchers say. | |||
|
2017-07-27 19:35:19 | House Committee Passes Bills to Boost DHS Cyber Powers (lien direct) | 
|
|||
|
2017-07-27 14:57:39 | Iranian Cyberspy Groups Share Malware Code (lien direct) | Two cyberspy groups believed to be operating out of Iran, tracked by security firms as OilRig and Greenbug, have apparently shared malware code, according to researchers at Palo Alto Networks. | APT 34 | ||
|
2017-07-27 14:36:52 | Critical Vulnerabilities Found in Nuke Plant Radiation Monitors (lien direct) | Critical Vulnerabilities Found in Radiation Monitors Used in Nuclear Power Plants, Seaports and Airports | |||
|
2017-07-27 13:55:12 | NanoCore RAT Author Pleads Guilty (lien direct) | A Hot Springs, Arkansas man this week pleaded guilty to creating two malicious programs, including the NanoCore RAT (Remote Access Trojan). | Guideline | ||
|
2017-07-27 13:39:03 | Cybercriminals Study-up on Credit Card Fraud (lien direct) | 
|
|||
|
2017-07-27 12:23:36 | Webinar Today: Why Some Managed Security Operations Centers Fail (lien direct) | Pas de details / No more details | |||
|
2017-07-27 12:13:58 | FireEye Releases Free Malware Analysis Toolbox (lien direct) | FireEye has released a piece of software that creates a fully customizable virtual machine (VM) containing all the tools and tweaks needed for malware analysis and other cybersercurity-related tasks. | |||
|
2017-07-27 11:37:49 | Sweden Data Scandal Costs Two Ministers Their Jobs (lien direct) | Two Swedish ministers lost their jobs on Thursday over a huge leak of sensitive data that has rocked the fragile centre-left government. | |||
|
2017-07-27 09:11:12 | Unpatched Cisco Autonomic Networking Flaws Disclosed at Black Hat (lien direct) | Cisco published advisories on Wednesday to inform users of several unpatched vulnerabilities affecting the Autonomic Networking feature of it IOS and IOS XE software. The flaws, some of which rated “high severity,†were disclosed this week by a researcher at the Black Hat security conference. | |||
|
2017-07-27 06:38:16 | Microsoft Launches Windows Bug Bounty Program (lien direct) | Microsoft announced on Wednesday the launch of a Windows bug bounty program with payouts ranging between $500 and $250,000. | |||
|
2017-07-26 21:40:28 | Critical Vulnerability Found in Diebold ATM Machine (lien direct) | Seattle-based IOActive has issued a critical security advisory detailing a physical and authentication bypass in the Diebold Opteva ATM. "IOActive has discovered two vulnerabilities in Opteva ATMs with the AFD platform that, when combined," warns the advisory "may allow an unauthorized user to vend notes from the device." | |||
|
2017-07-26 17:56:04 | Google Takes Second Swing at OAuth Worm (lien direct) | Mitigations put in place by Google in May 2017 to help block phishing attacks such as the recent OAuth worm weren't enough to completely mitigate the issue, as Google's platform still allowed malicious OAuth clients to be submitted under deceiving names, Proofpoint security researchers say. | |||
|
2017-07-26 15:18:07 | NoMoreRansom Says 28,000 Victim Devices Decrypted (lien direct) | This week marks the one-year anniversary of the launch of the NoMoreRansom project. The project comprises an alliance of law enforcement agencies and private industry, currently totaling 109 partners. Its purpose is to gather all known ransomware decryptors in one location (the NoMoreRansom website) so that ransomware victims can at least attempt to decrypt encrypted files. | |||
|
2017-07-26 15:05:59 | Code Execution Vulnerabilities Patched in FreeRDP (lien direct) | Researchers at Cisco's Talos security intelligence and research group have discovered several potentially serious vulnerabilities in FreeRDP. The tool's developers patched the flaws on Monday with the release of an update. | |||
|
2017-07-26 14:59:20 | Hacked Smart Fish Tank Exfiltrated Data to \'Rare External Destination\' (lien direct) | Insiders attached two Raspberry Pi devices to a corporate healthcare network to help divert staff to a phishing website to phish staff credentials. An internet-connected smart fish tank transferred 10GB of data to an adversary's server in Finland. | |||
|
2017-07-26 12:52:16 | 2,227 Breaches Exposed 6 Billion Records in First Half of 2017: Report (lien direct) | More than 6 billion records were exposed as as result of the 2,227 data breaches that were reported in the first six months of 2017, according to a new report from Risk Based Security. | |||
|
2017-07-26 11:14:09 | What Are Security Buyers Looking For? (lien direct) | The information security market has been a topic of acute interest for quite some time now. Estimates around the current size of the market range between $75 and $150 Billion. That is far larger than the market was even just a few years ago. That being said, the market is expected to continue to grow at around 10% per year over the next five years. That puts the size of the security market at somewhere between $120 and $240 Billion by 2022. | |||
|
2017-07-26 10:50:21 | North Korea\'s Elite More Connected Than Previously Thought (lien direct) | Telecommunications capability in North Korea is three-tiered. The vast majority of people have neither internet nor North Korean intranet connectivity -- they simply have mobile telephony voice, text and picture/video messaging within the domestic provider, Koryolink. | |||
|
2017-07-26 09:53:19 | Tech Giants Announce Plans for Removal of Flash (lien direct) | Apple, Facebook, Google, Microsoft and Mozilla have outlined their plans for moving away from Flash Player now that Adobe officially announced an end-of-life (EOL) and end-of-support date for the controversial product. | |||
|
2017-07-26 08:00:28 | New Windows Backdoor Linked to SambaCry Linux Malware (lien direct) | The cybercriminals who had recently delivered a cryptocurrency miner to Linux servers by exploiting the Samba vulnerability known as EternalRed and SambaCry are believed to have developed a backdoor designed for Windows systems. | |||
|
2017-07-26 05:53:08 | Hacker Steals $8.4 Million in Ethereum from Veritaseum (lien direct) | An unknown hacker stole around 37,000 VERI tokens from Veritaseum peer-to-peer platform and sold them for around $8.4 million in Ethereum during the company's ICO (Initial Coin Offering). | |||
|
2017-07-25 22:49:33 | Sweden Rattled by Massive Confidential Data Leak (lien direct) | Sweden's minority government was battling to contain the fallout Monday after a massive leak that may have made confidential military information accessible abroad, as well as the private data of millions of citizens. | |||
|
2017-07-25 16:43:54 | Adobe to Kill Flash Player, End Support by 2020 (lien direct) | [Breaking] Adobe on Tuesday said that it would kill its Flash Player and stop providing security updates by the end of 2020. | |||
|
2017-07-25 16:30:37 | IBM Launches Security Testing Services For Cars, IoT (lien direct) | IBM Security announced on Monday that the services provided by its X-Force Red penetration testing group have been expanded to include connected vehicles and Internet of Things (IoT) devices. | |||
|
2017-07-25 15:33:39 | Bot vs Bot in Never-Ending Cycle of Improving Artificial intelligence (lien direct) | Artificial intelligence, usually in the form of machine learning (ML), is infosecurity's current buzz. Many consider it will be the savior of the internet, able to defeat hackers and malware by learning and responding to their behavior in all-but real time. | |||
|
2017-07-25 15:00:59 | CrowdStrike Launches Cybersecurity Search Engine (lien direct) | Cloud-based endpoint security firm CrowdStrike announced on Tuesday that it has expanded the capabilities of its Falcon platform by adding a powerful search engine. | |||
|
2017-07-25 13:22:51 | Ursnif Banking Trojan Gets Mouse-Based Anti-Sandboxing (lien direct) | Recently discovered variants of the Ursnif banking Trojan include anti-sandboxing features based on a combination of mouse position and file timestamps, while also attempting to steal data from the Thunderbird email client, Forcepoint security researchers reveal. | |||
|
2017-07-25 12:51:54 | Iranian \'CopyKittens\' Conduct Foreign Espionage (lien direct) | 
|
|||
|
2017-07-25 11:45:09 | Tech Firms Target Domains Used by Russia-linked Threat Group (lien direct) | Tech companies ThreatConnect and Microsoft are moving toward exposing and taking down domains associated with Russia-linked threat group known as Fancy Bear. | APT 28 | ||
|
2017-07-25 11:22:26 | Georgian News Site Serves New Version of Old Mac Trojan (lien direct) | Researchers at security firm Volexity noticed that the website of a media organization based in the country of Georgia had been serving a new version of an old Mac Trojan to specific visitors. | |||
|
2017-07-25 11:06:29 | ICS Networks Not Immune To Insider Threats (lien direct) | Organizations Need Specialized Monitoring and Control Technologies for ICS Networks | |||
|
2017-07-24 17:21:39 | One in Ten U.S. Organizations Hit by WannaCry: Study (lien direct) | A recent survey discovered that the vast majority of organizations in the United States weren't prepared for the WannaCry ransomware attack, but just one in ten ended up being infected by the malware. | Wannacry | ||
|
2017-07-24 16:08:03 | Misconfigured Google Groups Expose Sensitive Data (lien direct) | Researchers at cloud security firm RedLock believe hundreds of organizations may be exposing highly sensitive information by failing to properly configure Google Groups. | |||
|
2017-07-24 16:00:52 | A Business-Driven Approach to Prioritizing Security Alerts (lien direct) | 
|
|||
|
2017-07-24 15:26:59 | Researcher Analyzes Psychology of Ransomware Splash Screens (lien direct) | The 'splash screens' of seventy-six different types of ransomware have been analyzed by a cyber-psychologist from De Montfort University. | |||
|
2017-07-24 14:02:53 | Endpoint Protection: Spotting the Cyber Wolf in Sheep\'s Clothing (lien direct) | 
|
|||
|
2017-07-24 13:31:37 | Google Rolls-Out Play Protect Services for Android (lien direct) | After introducing the product at the Google I/O conference in May, Google has now made its Play Protect security services available to all Android users. |
To see everything:
Our RSS (filtrered)
