Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-16 13:33:34 |
High Severity Flaw Patched in OpenSSL 1.1.0 (lien direct) |
A high severity denial-of-service (DoS) vulnerability was patched on Thursday in OpenSSL with the release of version 1.1.0e.
The flaw, tracked as CVE-2017-3733, has been described as an “Encrypt-Then-Mac renegotiation crash.†The security hole, reported by Joe Orton of Red Hat on January 31, does not affect OpenSSL 1.0.2.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-16 12:27:22 |
Iranian Spies Target Saudi Arabia in "Magic Hound" Attacks (lien direct) |
A cyber espionage operation linked to Iran and the recent Shamoon 2 attacks has targeted several organizations in the Middle East, particularly in Saudi Arabia.
|
|
APT 35
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-16 10:49:06 |
Shamoon Malware Delivered via Weaponized Documents: IBM (lien direct) |
The notorious disk-wiping malware Shamoon used macro-enabled documents and PowerShell scripts to infect targeted systems, according to IBM's X-Force Incident Response and Intelligence Services (IRIS) team.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-16 09:00:27 |
Microsoft Postpones February Security Updates to March 14 (lien direct) |
Microsoft has informed customers that the February security updates, which the company delayed due to unspecified issues, will only be released next month as part of the planned Update Tuesday.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-16 02:02:25 |
Cyber Warriors See Politics Muddying Security Efforts (lien direct) |
San Francisco - President Donald Trump has vowed to improve cyber attack defense, but security experts meeting this week say a fractious domestic and international political landscape could hamstring efforts to improve internet security.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 21:17:27 |
Yahoo Notifies Users of Sophisticated Breach Methods (lien direct) |
Yahoo said Wednesday it was notifying some users that hackers may have been able to use a maneuver to break into their accounts without stealing passwords.
|
|
Yahoo
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 19:35:24 |
Easy-to-Use Remcos RAT Spotted in Live Attacks (lien direct) |
After receiving numerous improvements, a Remote Administration Tool (RAT) that emerged last year on hacking forums was recently observed in live attacks, Fortinet security researchers reveal.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 19:09:01 |
Russian Black Hat Hacks 60 Universities, Government Agencies (lien direct) |
A Russian-speaking black hat hacker has breached the systems of more than 60 universities and U.S. government agencies, according to threat intelligence firm Recorded Future.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 19:06:57 |
Watch Live: RSA Conference 2017 Keynotes (lien direct) |
Live from RSA Conference 2017 in San Francisco - Tune in here to watch today's keynotes streamed live from the conference.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 18:51:58 |
Cyber Skills Shortage May Require Employers to Change Course: Report (lien direct) |
The cyber security skills gap is known and documented, and empirically understood by all enterprise security leaders. It was recently quantified by job site Indeed.com, which measured the difference between available positions and market interest in them.
|
Guideline
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 18:38:32 |
FireEye Becomes AV Replacement, Adds macOS Support (lien direct) |
SAN FRANCISCO – RSA CONFERENCE 2017 - Cyber threat protection and intelligence firm FireEye today unveiled major updates to its endpoint security platform, including two new protection engines and support for Apple's macOS systems.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 17:02:29 |
Researchers Break ASLR Protection via JavaScript Attack (lien direct) |
Address space layout randomization (ASLR) protection can be broken via practical attacks using JavaScript without any specific instructions or software features, a newly published research paper claims.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 15:37:47 |
Taking Mature Security Operations to the Masses (lien direct) |
All Organizations Deserve a Mature Security Operations Function
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 14:47:56 |
Study Shows Exposure of Critical Sectors, ICS in U.S. (lien direct) |
A study conducted by Trend Micro using the Shodan search engine provides some useful information on the exposure of critical infrastructure and industrial systems in the United States.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 14:31:58 |
CrowdStrike Sues NSS Labs to Prevent Publication of Test Results (lien direct) |
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 12:16:29 |
Amnesty Warns of Phishing Attacks on Qatar Activists (lien direct) |
Human rights watchdog Amnesty International has uncovered a sophisticated phishing campaign targeting journalists, activists and other entities in Nepal and Qatar interested in migrants' rights.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-15 09:56:45 |
(Déjà vu) Russian Cyberspies Use New Mac Malware to Steal Data (lien direct) |
Researchers have discovered a new piece of malware used by the Russia-linked threat group known as APT28 to steal sensitive data from Mac devices, including backups and passwords.
|
|
APT 28
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 19:25:51 |
SAP Patches 22 Vulnerabilities With February 2017 Security Updates (lien direct) |
SAP on Tuesday announced the release of its February 2017 security updates, which includes 15 Patch Day Security Notes and 3 updates to previously released Patch Day Security Notes.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 18:36:58 |
ExtraHop Introduces Real Time Wire-Level Threat Detection (lien direct) |
IT analytics firm ExtraHop Networks today announced ExtraHop Addy, a cloud-based machine-learning wire data analytical tool that is being trained to automatically detect anomalies on the fly as they are happening.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 18:06:48 |
Last Minute Issue Delays Microsoft Security Updates (lien direct) |
Microsoft has apologized to customers “for any inconvenience†after a last minute issue forced the company to delay the release of its security updates for February 2017. It's unclear when the patches will be made available.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 16:29:12 |
Over a Dozen Code Execution Flaws Patched in Flash Player (lien direct) |
Adobe on Tuesday released security updates that address two dozen vulnerabilities in Flash Player, Digital Editions and the Campaigns marketing tool, but none of the flaws have been exploited in the wild.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 14:50:24 |
Senators Launch Query on Trump\'s Smartphone Security (lien direct) |
Washington - Two US senators have requested details on President Donald Trump's smartphone security, saying he could jeopardize national secrets if he is still using his old handset, as some reports say.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 14:45:55 |
Qualys Expands Detection, Web App Security, and Data Sharing Portfolio (lien direct) |
SAN FRANCISCO - RSA CONFERENCE 2017 - Cloud-based security and compliance solutions provider Qualys this week announced new tools and features to provide customers with improved detection capabilities, expanded web application security features, and improved vulnerability data sharing.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 14:10:42 |
IBM\'s Watson Aims its Power at Security Operations Centers (lien direct) |
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 13:08:18 |
HPE Launches Threat Investigation, IoT Data Security Products (lien direct) |
Hewlett Packard Enterprise (HPE) announced on Tuesday the launch of a new threat investigation solution, ArcSight Investigate, and a new SecureData product for IoT and big data.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 12:13:50 |
What to Know Before Choosing a Malware Analysis Environment (lien direct) |
Even the Most Advanced Malware Analysis Environment could potentially be Circumvented by a Sufficiently Advanced Attacker
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 10:09:57 |
Simulation Shows Threat of Ransomware Attacks on ICS (lien direct) |
Researchers at the Georgia Institute of Technology have demonstrated the potential impact of ransomware on industrial control systems (ICS) by simulating an attack aimed at a water treatment plant.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-14 08:40:08 |
ThreatConnect Launches New Threat Intelligence Products (lien direct) |
Threat intelligence firm ThreatConnect announced this week the launch of a new suite of products designed to help organizations understand adversaries, automate their security operations, and accelerate threat mitigation.
The new products, built on the ThreatConnect Platform, have been named TC Complete, TC Analyze, TC Manage and TC Identify.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 19:17:18 |
IaaS Creating New Variant of Shadow IT (lien direct) |
Custom Applications are being Increasingly Used from Within Public Clouds as Part of the Migration to IaaS
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 17:56:02 |
RSA Unveils Business-Driven Security Offering (lien direct) |
RSA, which since September is part of Dell Technologies, on Monday unveiled a new approach and product improvements designed to help organizations manage cyber risk.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 17:10:38 |
Office Loader Uses Macros to Drop Array of Malware (lien direct) |
A recently discovered Microsoft Office loader uses malicious macros to drop multiple malware families, Palo Alto Networks security researchers warn.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 16:52:34 |
DHS Uses Cyber Kill Chain to Analyze Russia-Linked Election Hacks (lien direct) |
DHS Publishes Enhanced Analysis Report on GRIZZLY STEPPE Activity
|
|
APT 29
APT 28
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 15:10:31 |
Microsoft Unveils New Security and Risk Capabilities in Office 365 (lien direct) |
Microsoft has unveiled several new capabilities in Office 365 to help customers better manage risks and protect against threats, including Office 365 Secure Score, Threat Intelligence Private Preview, and Advanced Data Governance Preview.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 14:45:10 |
Thousands of Android Devices Infected by Marcher Trojan (lien direct) |
Researchers at Dutch security firm Securify have conducted a detailed analysis of the Android banking Trojan known as Marcher and discovered that a single botnet has managed to steal a significant number of payment cards.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 14:12:02 |
Survey Examines Cybersecurity Perception in U.S. (lien direct) |
Survey Highlights Widely Divergent Views on State of Cyber Security in America
A new survey of American adults' perceptions of cybersecurity and hackers shows both a generational and a gender divide in attitudes. Young adults often display a more pragmatic approach compared to a more hardline attitude from older Americans, while there is a frequent difference between the genders.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 13:51:49 |
Online: The Other Side of Terrorism (lien direct) |
No Physical Barrier is Capable of Restricting the Robust, Influential, and Dangerous Online Presence of Terrorist Groups like ISIS
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 11:07:38 |
Malware Attacks on Polish Banks Linked to Lazarus Group (lien direct) |
Poland Bank Attacks Part of Bigger Campaign Targeting Over 100 Organizations
The recently discovered attacks aimed at banks in Poland appear to be part of a bigger campaign targeting financial organizations around the world, and researchers have found some links to the threat actor known as Lazarus.
|
|
APT 38
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-13 09:19:39 |
Turkish Man Sent to Prison in U.S. for $55M Cyber Heist (lien direct) |
Turkish citizen Ercan Findikoglu, aged 35, was sentenced on Friday by a New York court to 8 years in prison for his leadership role in a cybercriminal organization that caused significant losses to banks worldwide.
|
Guideline
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-11 12:31:17 |
Gmail Delivers Spoofed Messages Without Warning, Researchers Find (lien direct) |
Spoofed emails could easily land in user's Gmail inboxes without even warning them of suspicious activity, security researchers have discovered.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 19:51:45 |
Kelihos Becomes King of the Malware Mountain (lien direct) |
The beginning of 2017 has brought a series of changes on the malware charts, as the Kelihos botnet managed to climb to the top position, while the Conficker worm dropped to fourth on the list.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 16:57:56 |
Hackers Targeted Italy Foreign Ministry, Russia Accused (lien direct) |
Rome - Italy's foreign ministry was attacked by hackers last year, a diplomatic source told AFP on Friday, amid reports that Russia could be to blame.
|
|
|
★★
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 16:40:20 |
Potentially Serious DoS Flaw Patched in BIND (lien direct) |
A potentially serious denial-of-service (DoS) vulnerability was patched this week by the Internet Systems Consortium (ISC) in the BIND DNS software.
The flaw, tracked as CVE-2017-3135, affects BIND 9.8.8, all 9.9 releases since 9.9.3, all 9.10 releases, and all 9.11 releases.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 15:57:40 |
Research Unearths 5 Secrets for Higher Performing CISOs (lien direct) |
IANS Research has developed a model designed to help chief information security officers to maintain their inherent promise: that is, "to safeguard critical assets across space and time."
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 15:43:32 |
Demisto Raises $20 Million to Help Enterprises Fight Alert Fatigue (lien direct) |
Demisto, a Cupertino, Calif.-based maker of software that helps Security Operations teams fight “alert fatigue†and reduce the time to respond to a breach, announced on Thursday that it has closed a $20 million Series B round of funding.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 15:01:47 |
Israeli Startup Empow Raises $9 Million for U.S. Expansion (lien direct) |
Israeli startup Empow Cyber Security announced on Thursday that it has raised $9 million in a Series A funding round. $8 million has come from private investors and $1 million from the Office of the Chief Scientist at the Israel Ministry of Economy. The money will be used primarily to expand the company's operations in North America.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 14:21:31 |
Windows Trojan Spreads Mirai to Linux Devices (lien direct) |
Mirai, the Linux-based malware that ensnared hundreds of thousands of Internet of Things (IoT) devices for launch one of the largest distributed denial of service (DDoS) botnets out there, has a Windows variant as well.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 13:59:33 |
Who Should be Using Strategic and Operational Cyber Threat Intelligence (lien direct) |
Cyber threat intelligence traditionally has been created for and used by a small group of individuals, many having come out of the US intel community. But with all the buzz around threat intelligence, it's important for folks to understand the value and use cases that extend well beyond this group.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 13:01:10 |
WordPress Flaw Exploited for Remote Code Execution (lien direct) |
A recently patched WordPress vulnerability has been used to deface roughly 1.5 million web pages and experts have also started seeing attempts to exploit the flaw for remote code execution.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 11:00:24 |
Cisco Launches "Umbrella" Secure Internet Gateway (lien direct) |
Cisco announced this week the launch of Umbrella, a cloud-based Secure Internet Gateway (SIG) solution designed to provide visibility and protection for devices on and outside the corporate network.
|
|
|
|
![SecurityWeek.webp](./Ressources/img/SecurityWeek.webp) |
2017-02-10 09:42:21 |
Hundreds of Arby\'s Restaurants Hit by Card Breach (lien direct) |
Arby's Restaurant Group, one of the largest fast food sandwich restaurant chains in the United States, admitted this week that its payment processing systems had been breached by cybercriminals.
|
|
|
|