What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-02-01 13:55:01 | Home Design Website Houzz Alerts Users of Data Breach (lien direct) | Home remodeling and design platform Houzz informed customers this week of a data breach that involved some personal information. | Data Breach | ||
|
2019-02-01 07:10:05 | New York Investigating Apple\'s Response to FaceTime Spying Bug (lien direct) | New York authorities have announced the launch of an investigation into the recently disclosed FaceTime vulnerability that can be exploited to spy on users. The probe focuses on Apple's failure to warn customers and the company's slow response. | |||
|
2019-01-31 21:55:03 | Minnesota Department of Human Services Reports Data Breach (lien direct) | The Minnesota Department of Human Services says a data breach potentially exposed personal information on up to 3,000 people. | Data Breach | ||
|
2019-01-31 20:16:05 | Facebook Takes Down Vast Iran-led Manipulation Campaign (lien direct) | Facebook said Thursday it took down hundreds of "inauthentic" accounts from Iran that were part of a vast manipulation campaign operating in more than 20 countries. The world's biggest social network said it removed 783 pages, groups and accounts "for engaging in coordinated inauthentic behavior tied to Iran." | |||
|
2019-01-31 19:11:02 | GitHub Helps Developers Keep Dependencies Secure via Dependabot (lien direct) | Microsoft-owned GitHub informed developers on Thursday that they can easily ensure that the dependencies used by their applications are always secure and up to date through an integration of its Security Advisory API with Dependabot. | |||
|
2019-01-31 18:44:02 | Firms That Sold Fake Social Media Activity Settle With New York State (lien direct) | Companies that sold fake social media activity have reached a settlement with the state of New York in a case that, for the first time, established such activity as illegal, the state's attorney general said Wednesday. | |||
|
2019-01-31 17:59:04 | State Bank of India Leaves Millions of Customer Messages Exposed (lien direct) | The State Bank of India is the latest large organization to leave a database full of personal information exposed and accessible on the internet. | |||
|
2019-01-31 17:21:03 | Dell Teams With CrowdStrike, Secureworks for New Endpoint Security Offering (lien direct) | Dell on Thursday announced that it has teamed up with its subsidiary Secureworks and CrowdStrike for a new endpoint security offering that includes threat prevention, detection and response services. | Threat | ★★★ | |
|
2019-01-31 15:48:00 | Mac Malware Steals Browser Cookies, Sensitive Data (lien direct) | A recently discovered piece of Mac malware is targeting browser cookies associated with mainstream cryptocurrency exchanges and wallet service websites, as well as personal user information, Palo Alto Networks security researchers say. | Malware | ★★★★ | |
|
2019-01-31 15:38:02 | Why User Names and Passwords Are Not Enough (lien direct) | Security Leaders are Finally Recognizing How Big of a Problem Credential Compromises Are | Guideline | ||
|
2019-01-31 15:22:00 | (Déjà vu) Cloud Security Firm Aporeto Raises $20 Million (lien direct) | Cloud security firm Aporeto on Wednesday announced that it raised $20 million in a Series B funding round, which brings the total raised by the company to date to $34.5 million. | |||
|
2019-01-31 15:16:04 | The Tricky Balance in Declining or Accepting Online Payments (lien direct) | False positives are one of the biggest problems for security controls. In malware detection they interrupt work and divert incident response away from real issues. But in ecommerce and financial fraud detection, false positives can have a direct and serious effect on profitability. In most cases, it is a balance between high detection (more secure but with more false positives), and lower detection (less secure with fewer false positives). | Malware | ||
|
2019-01-31 13:35:05 | U.S. Takes Aim at North Korea\'s Joanap Botnet (lien direct) | U.S. Government Announces Initiative to Disrupt Joanap Botnet Associated With North Korean Regime | |||
|
2019-01-31 07:13:03 | Employee Data Compromised in Airbus Breach (lien direct) | Aircraft maker Airbus on Wednesday revealed that information on some of its employees was compromised as a result of a data breach. | |||
|
2019-01-30 21:56:02 | Huawei: How the Telecoms Giant is Seen Around the World (lien direct) | US charges against Chinese telecoms giant Huawei have cranked up tensions between the world's two biggest economies, but the company is already facing obstructions around the world over alleged cyber-security risks. | |||
|
2019-01-30 21:31:04 | Firefox 65 Brings Improved Privacy Protections (lien direct) | Mozilla this week released the stable version of Firefox 65 with privacy protection improvements, patches, and other security enhancements inside. | |||
|
2019-01-30 18:57:04 | Yahoo Breach Settlement Rejected by Judge (lien direct) | A U.S. judge has rejected the settlement between Yahoo and users impacted by the massive data breaches suffered by the company, citing, among other things, inadequate disclosure of the settlement fund and high attorney fees. | Yahoo | ||
|
2019-01-30 16:48:02 | Facebook Paid Users to Track Smartphone Use: Report (lien direct) | Facebook paid users, including teens, to track their smartphone activity as part of an effort to glean more data that could help the social network's competition efforts, according to a new report that may raise fresh privacy concerns. | |||
|
2019-01-30 16:27:04 | Travel Search Website Skyscanner Launches Bug Bounty Program (lien direct) | Travel search website Skyscanner announced on Wednesday the launch of a public bug bounty program with rewards of up to $2,000 per vulnerability. Skyscanner has been running a private bug bounty program, which it claims helped address over 200 vulnerabilities in its systems. The company has now decided to open its program to the public. | |||
|
2019-01-30 16:03:00 | (Déjà vu) Bangladesh to Sue Philippine Bank Over $81M Cyber Heist (lien direct) | Bangladesh will Wednesday file a lawsuit in New York against a Philippine bank over its involvement in one of the biggest-ever cyber heists, the country's central bank governor said. | |||
|
2019-01-30 15:13:01 | Internet Society Publishes Privacy Code of Conduct (lien direct) | In his Time magazine article from two weeks ago, Apple CEO Tim Cook declared that people deserve privacy online. "Consumers shouldn't have to tolerate another year of companies irresponsibly amassing huge user profiles," he wrote. | |||
|
2019-01-30 15:13:00 | Encryption Firm Fortanix Raises $23 Million (lien direct) | Fortanix, a California-based company that specializes in encrypting data and applications, on Wednesday announced that it raised $23 million in a Series B funding round, which brings the total funding to date to $31 million. | |||
|
2019-01-30 11:36:04 | Mimecast Acquires Cloud Migration Firm Simply Migrate (lien direct) | Mimecast, a company that focuses on email security, acquired Simply Migrate (a cloud migration specialist) for an undisclosed sum on January 29, 2019. The purpose is to allow Mimecast customers to more easily migrate legacy email archives to Mimecast's modern cloud system. | |||
|
2019-01-30 11:08:04 | 5 New Year\'s Resolutions for Your IoT Security Strategy (lien direct) | A new year has arrived, and with it comes the opportunity to make all kinds of transformations to help your business. No matter how you navigated the dangerous threat landscape during the past years, it's time for all of us in operational technology (OT) security to make firm decisions to do or not do something for the safety of our business and environment. | Threat | ||
|
2019-01-30 07:16:02 | U.S. Intel Community: Russia, China Can Disrupt Critical Infrastructure (lien direct) | Russia and China are capable of disrupting critical infrastructure in the United States, and Iran is not far behind, according to the Worldwide Threat Assessment made public by the U.S. intelligence community on Tuesday. | Threat | ||
|
2019-01-30 03:06:05 | DNS Providers to Cease Implementing DNS Resolver Workarounds (lien direct) | Starting on February 1, 2019, a number of DNS software and service providers will cease implementing DNS resolver workarounds for systems that don't follow the Extensions to DNS (EDNS) protocol. | |||
|
2019-01-29 19:11:03 | Iran-Linked Hackers Use Array of Tools to Steal Data: FireEye (lien direct) | An Iran-linked cyber-espionage group responsible for widespread theft of data is using a broad range of custom and off-the-shelf tools, FireEye security researchers say. | |||
|
2019-01-29 17:11:01 | Symantec Adds New Features, Services to Endpoint Security Offering (lien direct) | Symantec on Tuesday announced significant improvements to its endpoint security offering, including new Endpoint Protection features, and the launch of a Managed Endpoint Detection and Response (MEDR) service. | ★★★★ | ||
|
2019-01-29 15:31:05 | Israel Blocks Iran Cyber-attacks \'Daily\': Netanyahu (lien direct) | 
|
|||
|
2019-01-29 15:20:04 | Researcher Escalates Privileges on Exchange 2013 via NTLM Relay Attack (lien direct) | Microsoft Exchange 2013 and newer versions allow an attacker to escalate privileges when performing a NT LAN Manager (NTLM) relay attack, a security researcher warns. | |||
|
2019-01-29 15:08:01 | Crypto Hardware Maker nCipher Re-Emerges From Thales After 20 Years (lien direct) | nCipher re-emerged from Thales as a separate stand-alone company manufacturing and marketing hardware security modules (HSMs) on January 7, 2019, and was officially launched on January 26, 2019. It had been acquired by Thales for just over $100 million in July 2008, after being founded by Alex and Nicko Nicko van Someren in 1996. | |||
|
2019-01-29 14:43:03 | 2019 Singapore ICS Cyber Security Conference Call for Presentations Closes Jan. 31 (lien direct) | 
|
|||
|
2019-01-29 14:43:00 | Salt Security Emerges From Stealth With API Protection Solution (lien direct) | Salt Security emerged from stealth mode on Tuesday with a solution designed to identify and prevent API attacks, and $10 million in funding. | |||
|
2019-01-29 13:43:04 | (Déjà vu) Japan to Survey 200 Million Gadgets for Cyber Security (lien direct) | Japan is preparing a national sweep of some 200 million network-connected gadgets for cyber-security lapses ahead of the 2020 Tokyo Olympic Games, an official said on Tuesday. | |||
|
2019-01-29 13:09:01 | How CISOs Can Demonstrate Business Value (lien direct) | CISOs Must Clearly Demonstrate Their Value to the Business in Dollars and Cents If you're the typical CISO or other level of information security officer, chances are this job description sounds about right: | |||
|
2019-01-29 12:01:00 | (Déjà vu) Medical Device Security Firm Medigate Raises $15 Million (lien direct) | Medigate, a company that provides medical device security and asset management solutions, on Tuesday announced that it raised $15 million in a Series A funding round, which brings the total raised to date to over $20 million. | |||
|
2019-01-29 07:10:01 | Apple Working on Patch to Prevent FaceTime Spying (lien direct) | A critical vulnerability in Apple's FaceTime chat application can be exploited to spy on people. The tech giant has disabled a FaceTime feature in an effort to prevent abuse until a patch is made available. | Vulnerability | ||
|
2019-01-26 16:26:04 | Trump Ally Stone Charged With Lying About Hacked Emails (lien direct) | President Donald Trump's confidant Roger Stone has been charged with lying about his pursuit of Russian-hacked emails damaging to Hillary Clinton's 2016 election bid. Prosecutors allege that senior Trump campaign officials sought to leverage the stolen material into a White House victory. | |||
|
2019-01-26 16:21:02 | Ursnif Trojan Uses Fileless Persistence and CAB for Stealthily Data Exfiltration (lien direct) | In addition to employing a fileless attack technique, the Ursnif Trojan has been using CAB files to compress harvested data before exfiltration in recent attacks, Cisco Talos security researchers reveal. | |||
|
2019-01-26 15:37:03 | Undercover Agents Target Cybersecurity Watchdog (lien direct) | The researchers who reported that Israeli software was used to spy on Washington Post journalist Jamal Khashoggi's inner circle before his gruesome death are being targeted in turn by international undercover operatives, The Associated Press has found. | |||
|
2019-01-25 19:16:00 | Skill Squatting: The Next Consumer IoT Nightmare? (lien direct) | Connected devices are proliferating at a rapid rate, and this growth means that we're only just beginning to scratch beneath the surface with potential use cases for Internet of Things (IoT) technology. IoT has quickly moved beyond basic internet-connected gadgets and wearables to more sophisticated interactive features like voice processing, which in turn has led to a significant rise in voice-activated devices such as smart speakers. | |||
|
2019-01-25 17:52:00 | Flood of Complaints to EU Countries Since Data Law Adopted (lien direct) | More than 95,000 complaints have been filed with EU countries since the bloc's flagship data protection laws took effect eight months ago, the executive European Commission said Friday. | |||
|
2019-01-25 17:46:00 | Check Point ZoneAlarm Flaw Allows Privilege Escalation (lien direct) | A vulnerability in Check Point's popular ZoneAlarm antivirus and firewall allows attackers to escalate their privileges on a system running the security software. The vendor has released an update that should address the flaw. | Vulnerability | ||
|
2019-01-25 17:36:04 | "Cobalt" Hackers Use Google App Engine in Recent Attacks (lien direct) | Infamous "Cobalt" hacking group has been using Google App Engine for the delivery of malware through PDF decoy documents, Netskope's security researchers say. | Malware | ||
|
2019-01-25 16:21:02 | Hackers Using RDP Are Increasingly Using Network Tunneling to Bypass Protections (lien direct) | Threat actors conducting Remote Desktop Protocol (RDP) attacks are increasingly using network tunneling and host-based port forwarding to bypass network protections, FireEye reports. | |||
|
2019-01-25 15:34:05 | Flaws Expose Phoenix Contact Industrial Switches to Attacks (lien direct) | The latest firmware updates released by Phoenix Contact for its FL SWITCH industrial ethernet switches address a total of six vulnerabilities that can be exploited to obtain credentials for the web interface, conduct unauthorized activities, cause a denial-of-service (DoS) condition, and launch man-in-the-middle (MitM) attacks. | |||
|
2019-01-25 15:19:04 | Data Leak in Ghostscript Could Allow Command Execution (lien direct) | Data leak vulnerabilities in Ghostscript could allow an attacker to take over a routine and even execute commands on systems, Google Project Zero researcher Tavis Ormandy has discovered. | |||
|
2019-01-25 13:44:00 | CISSP Price Hike Dismays Certified Security Professionals (lien direct) | (ISC)² has increased its annual membership fee (AMF) for security professionals by 47% from $85 to $125. This will include holders of the most popular professional certification, CISSP. The new fee is fixed, whether the professional holds one or multiple (ISC)² certifications. For individual cert holders it is an increase; for multiple cert holders it will be a decrease. | |||
|
2019-01-25 12:16:01 | Microsoft Chief Calls for \'Global Standard\' on Privacy (lien direct) | Microsoft Joins Apple in Calling for Strong Privacy Legislation | |||
|
2019-01-25 10:06:05 | GDPR Compliance Brings Other Benefits: Cisco Study (lien direct) | Companies that are ready for the EU's General Data Protection Regulation (GDPR) have reported shorter sales delays and fewer or less serious data breaches, according to Cisco's 2019 Data Privacy Benchmark Study. |
To see everything:
Our RSS (filtrered)
