What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-06-13 13:01:05 | XSS Vulnerability Exposed Google Employees to Attacks (lien direct) | A researcher revealed on Wednesday that he discovered a blind cross-site scripting (XSS) vulnerability that could have been exploited to attack Google employees and possibly gain access to invoices and other sensitive information. | Vulnerability | ||
|
2019-06-13 12:05:02 | Blockchain Security Startup Fireblocks Emerges From Stealth With $16 Million in Funding (lien direct) | Fireblocks Emerges From Stealth Mode to Protect Digital Assets in Hot Wallets and Transit | |||
|
2019-06-13 10:39:03 | Majority of FTSE 250 Companies Expose Multiple Weaknesses to Internet: Analysis (lien direct) | Rapid7 has analyzed the visible cyber exposure of some of the UK's largest companies -- the FTSE 250. | |||
|
2019-06-13 10:20:05 | Security First in the Cloud Wars (lien direct) | “The Cloud Wars” may be dominating IT news headlines, but what does this phrase actually mean? And is it something that an enterprise needs to be concerned with? | |||
|
2019-06-13 10:20:04 | (Déjà vu) Cloud Visibility Firm Orca Security Emerges From Stealth Mode (lien direct) | Israel-based cloud visibility solutions provider Orca Security on Wednesday emerged from stealth mode with $6.5 million in seed funding from YL Ventures. | |||
|
2019-06-13 05:28:05 | Senators Question FBI on Russian Hack of Voting Firm (lien direct) | Two U.S. senators asked the FBI on Wednesday to explain what it has done to investigate the suspected hack by Russian intelligence of a Florida-based voting software company before the 2016 election. | Hack | ||
|
2019-06-13 05:02:01 | Telegram Hit by Cyber-attack, CEO Points to HK Protests, China (lien direct) | Encrypted messaging service Telegram suffered a major cyber-attack that appeared to originate from China, the company's CEO said Thursday, linking it to the ongoing political unrest in Hong Kong. | |||
|
2019-06-12 16:04:00 | Microsoft Patches Critical Vulnerabilities in NTLM (lien direct) | Microsoft on Tuesday released security patches for nearly 90 vulnerabilities, including two Critical bugs impacting the proprietary authentication protocol NTLM. | |||
|
2019-06-12 15:33:02 | How Insecurity Can Bolster Your Security Program (lien direct) | Insecurity Can Help Organizations Continually Learn and Make Changes | |||
|
2019-06-12 15:07:00 | Email Security Firm Vade Secure Raises $80 Million (lien direct) | Email-focused cybersecurity firm Vade Secure has agreed to a €70 million (approximately US$79.3 million) investment by venture capital firm General Catalyst. | |||
|
2019-06-12 14:29:05 | Awareness Training Firm CybeReady Opens U.S. Office With $5 Million Funding (lien direct) | Following four years of self-funded fine-tuning in Europe, start-up security awareness firm CybeReady has expanded into the U.S. market with an initial funding round of $5 million led by Baseline Ventures. | |||
|
2019-06-12 14:22:04 | Flaw in Evernote Extension Allows Hackers to Steal Data (lien direct) | A vulnerability identified by researchers in a popular Evernote extension for Chrome can be exploited by hackers to steal sensitive information from the websites accessed by a user. | Vulnerability | ||
|
2019-06-12 14:21:01 | Security Awareness Training Firm KnowBe4 Raises $300 Million (lien direct) | Security awareness training firm KnowBe4 announced on Wednesday that it has taken a $300 million investment led by private equity giant KKR. | |||
|
2019-06-12 13:13:03 | Malware Can Be Hidden in DICOM Medical Imaging Files, DHS Warns (lien direct) | Files using the Digital Imaging and Communications in Medicine (DICOM) standard can be abused to hide malware, the U.S. Department of Homeland Security (DHS) warned on Tuesday. | Malware | ||
|
2019-06-12 12:25:00 | Organizations Investing More in ICS Cyber Security: SANS Study (lien direct) | Organizations have been investing more in the cybersecurity of industrial control systems (ICS) and operational technology (OT), and the results are showing, but many still perceive the risk as severe or high, according to the SANS 2019 State of OT/ICS Cybersecurity Report published on Wednesday. | |||
|
2019-06-12 07:54:04 | Microsoft Patches Privilege Escalation Flaws Disclosed by \'SandboxEscaper\' (lien direct) | Microsoft's Patch Tuesday updates for June 2019 resolve nearly 90 vulnerabilities, including the privilege escalation flaws disclosed recently by a researcher known as SandboxEscaper. | |||
|
2019-06-11 19:59:00 | Radiohead Defies Hackers, Releases Trove of Stolen Music (lien direct) | Alternative rock legends Radiohead on Tuesday released an 18-hour trove of private recordings from their 1997 album "OK Computer" after getting hacked by someone seeking a ransom of $150,000 for the music. | |||
|
2019-06-11 19:01:02 | New RAMBleed Attack Allows Access to Sensitive Data in Memory (lien direct) | New DRAM Side-Channel Attack 'RAMBleed' Allows Hackers to Steal Sensitive Data A team of researchers representing several universities has disclosed the details of RAMBleed, a new type of side-channel attack on dynamic random-access memory (DRAM) that can be used to obtain potentially sensitive data from a device's memory. | |||
|
2019-06-11 18:30:00 | Microsegmentation Firm Edgewise Networks Raises $11 Million (lien direct) | Microsegmentation provider Edgewise Networks today announced that it has secured $11 million in new funding. The company has raised $18 million to date. | |||
|
2019-06-11 17:00:01 | New Version of ShellTea Backdoor Used by FIN8 Hacking Group (lien direct) | Researchers have detected a new campaign against the hotel-entertainment industry employing the first documented use of the ShellTea/PunchBuggy backdoor since 2017. It is also thought to be the first observed attack delivered by the FIN8 group in 2019. | |||
|
2019-06-11 15:26:05 | FBI Warns of HTTPS Abuse in Phishing Campaigns (lien direct) | Malicious actors are abusing users' trust in the HTTPS protocol to launch phishing campaigns, the Federal Bureau of Investigation (FBI) warns in a recent alert. | |||
|
2019-06-11 15:12:03 | Microsoft Pushing for a Passwordless Windows 10 (lien direct) | Microsoft wants to make its Windows platform passwordless and the latest Windows 10 release marks one step closer to that goal. | |||
|
2019-06-11 15:08:03 | (Déjà vu) Adobe Patches Code Execution Flaws in Flash, ColdFusion, Campaign (lien direct) | Adobe's June 2019 Patch Tuesday updates address several critical arbitrary code execution vulnerabilities affecting the company's Flash Player, ColdFusion and Campaign products. | |||
|
2019-06-11 14:48:01 | The Symbiosis Between Public Cloud and MSSPs (lien direct) | To the surprise of many, public cloud appears to be driving a renaissance in adoption and advancement of managed security service providers (MSSP). | |||
|
2019-06-11 13:48:05 | Tool Links Internet-Exposed ICS to Google Street View (lien direct) | An open source tool named Kamerka allows users to generate a map of Internet-exposed industrial control systems (ICS) in a specified country and link results to Google Street View. | Tool | ||
|
2019-06-11 12:13:02 | Artificial Intelligence Threat Detection Firm Vectra Raises $100 Million (lien direct) | San Jose, Calif-based network threat detection and response firm Vectra has closed a $100 million Series E funding round led by TCV and supported by existing investors. This brings the total raised since the firm was founded in 2010 by James Harlacher and Mark Abene to $222.5 million. Vectra uses artificial intelligence to detect 'in-progress' cyber-attacks on the network. | Threat | ||
|
2019-06-11 10:01:00 | Critical Vulnerability Exposes Oil Tank Monitoring Devices to Attacks (lien direct) | A critical vulnerability has been found in oil tank monitoring devices from Tecson/GOK, but the vendor has released a patch and points out that there are less than 1,000 devices that could be affected. Tecson is a Germany-based manufacturer of tank measurement systems, including oil tank displays, level probes, and remote monitoring products. | Vulnerability | ||
|
2019-06-11 04:57:00 | Huawei Denies Being Bound by Chinese Spy Laws (lien direct) | Huawei's cyber security chief told the UK parliament Monday that the Chinese telecoms giant has been advised it was under no obligation to spy for Beijing if so asked by the Communist state. | |||
|
2019-06-11 04:20:00 | Customs Says Hack Exposed Traveler, License Plate Images (lien direct) | Customs and Border Protection said Monday that photos of travelers and license plates collected at a single U.S. border point have been exposed in a malicious cyberattack in what a leading congressman called a “major privacy breach.” | Hack Guideline | ||
|
2019-06-10 17:49:03 | "MuddyWater" Cyberspies Update PowerShell Backdoor (lien direct) | The cyber-espionage group known as MuddyWater has used an updated multi-stage PowerShell backdoor in recent campaigns, Trend Micro's security researchers report. | |||
|
2019-06-10 17:19:04 | Critical Oracle WebLogic Vulnerability Exploited in Attacks (lien direct) | A recently patched vulnerability in Oracle WebLogic is being exploited in attacks aimed at installing crypto-miners on vulnerable machines, Trend Micro reports. | Vulnerability | ||
|
2019-06-10 15:32:01 | Fighting Fraud With Threat Intelligence: Debunking Common Misconceptions (lien direct) | The Composition of a Fraud Team or Function is Often Overlooked in Threat Intelligence Market | Threat | ||
|
2019-06-10 15:09:05 | GoldBrute Botnet Brute-Force Attacking RDP Servers (lien direct) | A new piece of malware is targeting Windows severs with the remote desktop protocol (RDP) exposed to the Internet with the intent to ensnare them into a massive botnet, SANS ISC warns. | Malware | ||
|
2019-06-10 13:52:03 | The Dark Net, a Major Threat but Also a Resource (lien direct) | Criminal use of, and threats from, the dark net are growing. At the same time, criminals are going darker through direct end-to-end encryption for direct communication with service buyers and potential buyers. But the dark net also has its uses. | Threat | ||
|
2019-06-08 01:10:00 | Facebook to Cut off Huawei to Comply With U.S. Sanctions (lien direct) | Facebook said Friday it would cut off Huawei from its popular social networking apps to comply with US sanctions, further isolating the Chinese tech giant considered a national security threat by Washington. | Threat | ||
|
2019-06-07 13:19:04 | Spain Extradites 94 Taiwanese to China on Phone Scam Charges (lien direct) | Spain has extradited 94 Taiwanese to China to face telephone and online fraud charges, drawing protest from Taiwan's government. The suspects arrived Friday morning at Beijing airport on a chartered flight. Footage on state broadcaster CCTV showed uniformed officers escorting them off the China Eastern plane one-by-one. | |||
|
2019-06-07 13:13:05 | Attackers Piece Together Malicious Tools Used for Targeted Attacks (lien direct) | A recently detected cyberattack campaign utilized tools built by combining multiple open-source techniques, Cisco Talos security researchers say. | |||
|
2019-06-06 18:29:05 | OMB Publishes Memorandum on U.S. Federal Data Strategy (lien direct) | "Data is the new oil," said mathematician Clive Humby in 2006 when designing a supermarket clubcard. But like crude oil, it is what can be extracted (in this case, information) that is truly valuable and drives both government and business. For information to be valuable, it must come from as much accurate data as possible. This is the purpose of the U.S. | |||
|
2019-06-06 16:13:01 | Rail System Cybersecurity Firm Cylus Raises $12 Million (lien direct) | Rail and metro cybersecurity company Cylus today announced that it has raised $12 million in a Series A funding round, bringing the total amount raised by the company to date to $17 million. | |||
|
2019-06-06 15:42:00 | Many iOS Developers Don\'t Use Encryption: Report (lien direct) | Many developers who are creating applications for Apple's iOS do not use encryption in their software, a report from security startup Wandera shows. | |||
|
2019-06-06 14:43:02 | Cisco to Acquire OT Security Firm Sentryo (lien direct) | Cisco on Thursday announced that it has agreed to acquire privately-held operational technology (OT) cybersecurity firm Sentryo for an undisclosed sum. | |||
|
2019-06-06 14:27:05 | VMware Patches Vulnerabilities in Tools, Workstation (lien direct) | VMware announced on Thursday that it has patched two high-severity vulnerabilities in its Tools and Workstation software. The first security hole, CVE-2019-5522, impacts VMware Tools 10.x on Windows and it has been described as an out-of-bounds read issue in the vm3dmp driver, which is installed in Windows guest machines. | |||
|
2019-06-06 13:42:00 | macOS Catalina Brings Several Security Improvements (lien direct) | Apple this week unveiled the latest version of its Mac operating system, macOS 10.15 Catalina. In addition to many functionality improvements, the latest macOS introduces several significant security-related changes. | |||
|
2019-06-06 11:25:03 | Elastic to Acquire Endpoint Security Firm Endgame for $243 Million (lien direct) | Elastic (NYSE: ESTC), the publicly traded company behind Elasticsearch and the Elastic Stack, announced today that it has agreed to acquire endpoint security firm Endgame in a $234 million deal. | |||
|
2019-06-06 05:53:05 | Several Vulnerabilities Found in Cisco Industrial Network Director (lien direct) | Cisco on Wednesday informed customers that several vulnerabilities, including a code execution flaw classified as “high severity,” have been found in the company's Industrial Network Director product. | |||
|
2019-06-05 17:56:03 | Platinum Hackers Use Steganography to Mask C&C Communications (lien direct) | Hackers Use Steganographic Technique to Hide Communications With Command and Control Servers | |||
|
2019-06-05 16:38:01 | Critical Vulnerabilities Lead to Account Takeover in Major IPTV Streamer (lien direct) | Critical vulnerabilities have been found in the Ukrainian IPTV video streaming platform Ministra, which uses Infomir-manufactured set top boxes (STBs) to transmit streaming content from the platform to end users' televisions. Infomir sells its products throughout the world, so impacted users are not confined to the Ukraine. | |||
|
2019-06-05 16:01:01 | Russia Effort in 2016 US Election Was \'Vast,\' \'Professional\' (lien direct) | Russia's efforts to sow misinformation on Twitter ahead of the 2016 US election was more extensive and professional than earlier believed, security researchers said Wednesday. | ★★★★ | ||
|
2019-06-05 15:29:00 | (Déjà vu) Unofficial Patch Available for Recent Windows 10 Task Scheduler Zero-Day (lien direct) | An unofficial patch has been released for a recently disclosed zero-day vulnerability in Windows 10's Task Scheduler. | Vulnerability | ||
|
2019-06-05 15:03:04 | Building a Successful OT SOC (lien direct) | OT Environments Need Security Monitoring that Provides Enhanced Visibility and Traceability Into OT Systems |
To see everything:
Our RSS (filtrered)
