What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-05-14 13:52:00 | New PowerShell Backdoor Discovered (lien direct) | A recently detected PowerShell backdoor can steal information and execute various commands on the infected machines. | |||
|
2018-05-14 12:40:02 | Emails Encrypted With OpenPGP, S/MIME Vulnerable to New Attacks (lien direct) | Researchers from three universities in Germany and Belgium say they have discovered attack methods that can be used by malicious actors to read emails encrypted with OpenPGP and S/MIME, but some believe the claims are overblown. | |||
|
2018-05-14 05:16:04 | Code Execution Flaw in Electron Framework Could Affect Many Apps (lien direct) | GitHub's open source development framework Electron is affected by a vulnerability that can allow remote code execution. Technical details and proof-of-concept (PoC) code were made public last week by the researcher who discovered the issue. | |||
|
2018-05-14 03:56:01 | Chili\'s Restaurants Hit by Payment Card Breach (lien direct) | People who recently paid with their credit or debit card at a Chili's restaurant may have had their information stolen by cybercriminals, according to Dallas-based Brinker International. Brinker, which operates more than 1,600 Chili's and Maggiano's restaurants across 31 countries, issued a notice shortly after the data breach was discovered on May 11. | |||
|
2018-05-13 01:40:05 | ZTE Woes Loom as US-China Trade Tensions Rise (lien direct) | With a major Chinese smartphone maker on the rocks following US sanctions, the trade spat between Washington and Beijing appears to be taking a turn for the worse for tech firms in the two global economic powerhouses. | ★★★ | ||
|
2018-05-12 16:55:01 | Nigelthorn Malware Infects Over 100,000 Systems (lien direct) | A newly discovered malware family capable of credential theft, cryptomining, click fraud, and other nefarious actions has already infected over 100,000 computers, Radware reveals. | |||
|
2018-05-11 17:41:04 | One Year After WannaCry Outbreak, EternalBlue Exploit Still a Threat (lien direct) | One year after the WannaCry ransomware outbreak, the NSA-linked exploit used for propagation is still threatening unpatched and unprotected systems, security researchers say. | Wannacry | ||
|
2018-05-11 15:44:02 | Chrome 66 Update Patches Critical Security Flaw (lien direct) | An updated version of Chrome 66 is now available, which addresses a Critical security vulnerability that could allow an attacker to take over a system. | |||
|
2018-05-11 15:15:05 | Rockwell Automation Patches Flaws in Simulation, Licensing Tools (lien direct) | Rockwell Automation has released updates for its Arena and FactoryTalk Activation Manager products to address various types of vulnerabilities, including a critical flaw that can allow remote code execution. | |||
|
2018-05-11 14:38:02 | UK Regulator Issues Advice on \'Consent\' Within GDPR (lien direct) | The UK's Information Commissioners Office (ICO -- the data protection regulator) has published detailed guidance (PDF) on 'consent' within the General Data Protection Regulation. Since the UK is still in the European Union, the document provides a reasonable analysis of what is one of the trickiest aspects of GDPR. | |||
|
2018-05-11 14:25:05 | Panda Banker Campaign Hits U.S. Banks (lien direct) | Recently detected campaigns using the Panda Banker malware are targeting financial institutions worldwide, with those in the United States taking the largest hit, F5 reports. | |||
|
2018-05-11 03:35:01 | Symantec Stock Plunges After Firm Announces Internal Probe (lien direct) | Symantec announced its fourth quarter and full year financial results on Thursday and while its revenue has increased, the cybersecurity firm's stock dropped roughly 20% after it revealed that an internal investigation will likely delay its annual report to the U.S. Securities and Exchange Commission (SEC). | |||
|
2018-05-10 18:13:03 | Cyber Insurance Startup At-Bay Raises $13 Million (lien direct) | Cyber insurance firm At-Bay announced this week that it has raised $13 million in Series A funding, which brings the company's total funding to $19 million. | |||
|
2018-05-10 16:36:02 | The Multiplier Effect of Collaboration for Security Operations (lien direct) | Threat Intelligence Analysts, SOCs and Incident Responders Can Work Together to Take the Right Actions Faster | |||
|
2018-05-10 16:15:05 | Industry Reactions to Iran Cyber Retaliation Over U.S. Nuclear Deal Exit (lien direct) | President Donald Trump announced this week that the U.S. is withdrawing from the Iran nuclear deal and reimposing sanctions on the Middle Eastern country. | |||
|
2018-05-10 15:36:02 | Many Vulnerabilities Found in OPC UA Industrial Protocol (lien direct) | Researchers at Kaspersky Lab have identified a significant number of vulnerabilities in the OPC UA protocol, including flaws that could, in theory, be exploited to cause physical damage in industrial environments. | |||
|
2018-05-10 15:25:04 | TreasureHunter PoS Malware Source Code Leaked Online (lien direct) | New variants of the TreasureHunter point-of-sale (PoS) malware are expected to emerge after its source code was leaked online in March, Flashpoint warns. | |||
|
2018-05-10 14:56:04 | Is The Education System Keeping Women Out of Cybersecurity? (lien direct) | While the Gender Bias in Professions Remains Strong, There Are Indications That Factors Beyond Genuine Aptitude Are at Play | |||
|
2018-05-10 14:03:01 | \'Allanite\' Group Targets ICS Networks at Electric Utilities in US, UK (lien direct) | A threat actor has been targeting business and industrial control networks at electric utilities in the United States and United Kingdom, according to industrial cybersecurity firm Dragos. | |||
|
2018-05-10 11:51:01 | Protego Labs Raises $2 Million in Seed Funding (lien direct) | Serverless application security firm Protego Labs announced Wednesday that it has raised $2 million seed funding from a group of investors led by Ron Gula of Gula Tech Adventures, Glilot Capital Partners, and the MetroSITE Group of security industry pioneers, including former RSA CTO, Tim Belcher. | |||
|
2018-05-10 11:37:05 | Firefox 60 Brings Support for Enterprise Deployments (lien direct) | Released on Wednesday, Firefox 60 allows IT administrators to customize the browser for employees, and is also the first browser to feature support for | |||
|
2018-05-10 10:42:00 | LG Patches Serious Vulnerabilities in Smartphone Keyboard (lien direct) | Updates released this week by LG for its Android smartphones patch two high severity keyboard vulnerabilities that can be exploited for remote code execution. | ★★★★★ | ||
|
2018-05-09 17:13:02 | SAP Patches Internet Graphics Server Flaws (lien direct) | SAP this week released its May 2018 set of security patches to address more than a dozen vulnerabilities across its product portfolio, including four bugs in Internet Graphics Server. | ★★★★ | ||
|
2018-05-09 15:51:03 | Google Brings Android to Internet of Things (lien direct) | Less than a month after Microsoft announced an operating system | |||
|
2018-05-09 15:04:05 | Siemens Patches DoS Flaws in Medium Voltage Converters (lien direct) | Siemens has released updates for many of its SINAMICS medium voltage converters to address two remotely exploitable denial-of-service (DoS) vulnerabilities. | |||
|
2018-05-09 14:09:00 | Are You Securing Your Contract Workforce? (lien direct) | Companies Should Adopt Compliance Standards for Their Partners and Vendors | |||
|
2018-05-09 13:54:05 | Misinterpretation of Intel Docs Leads to Flaw in Hypervisors, OSs (lien direct) | The developers of several major operating systems and hypervisors misinterpreted documentation from Intel and introduced a potentially serious vulnerability to their products. | |||
|
2018-05-09 12:37:00 | How Digital Transformation is Making the Anonymous Personal (lien direct) | Allow me to nitpick for a moment: There's a difference between data and information. Data are the facts or details from which information is derived. As such, standalone pieces of data are rarely useful. It's not really information until data points are connected with context to tell a story. | |||
|
2018-05-09 11:52:03 | Google Releases Additional Meltdown Mitigations for Android (lien direct) | As part of its May 2018 Android Security Bulletin, Google this week released additional mitigations for the Meltdown attack that impacts microprocessors from Intel, AMD, and other vendors. | |||
|
2018-05-09 09:17:01 | No Evidence Russian Hackers Changed Votes in 2016 Election: Senators (lien direct) | Hackers backed by the Russian government attempted to undermine confidence in the voting process in the period leading up to the 2016 presidential election, but there is no evidence that they manipulated votes or modified voter registration data, according to a brief report published on Tuesday by the Senate Intelligence Committee. | Guideline | ||
|
2018-05-08 20:05:03 | Lenovo Patches Secure Boot Vulnerability in Servers (lien direct) | Lenovo has released patches for a High severity vulnerability impacting the Secure Boot function on some System x servers. | |||
|
2018-05-08 19:37:02 | Microsoft Patches Two Windows Zero-Day Vulnerabilities (lien direct) | Microsoft has fixed more than 60 vulnerabilities with its May 2018 Patch Tuesday updates, including two Windows zero-day flaws that can be exploited for remote code execution and privilege escalation. | |||
|
2018-05-06 18:09:00 | Banks Don\'t Want to be Weakest Link in Blockchain Revolution (lien direct) | Blockchain, the cutting-edge technology behind virtual currencies like bitcoin, has the potential to play a disruptive role in the global finance sector, experts say, as banking behemoths seek to connect with its opportunities. | |||
|
2018-05-05 03:21:00 | U.S. Military Bans Huawei, ZTE Phones (lien direct) | Personnel on US military bases can no longer buy phones and other gear manufactured by Chinese firms Huawei and ZTE, after the Pentagon said the devices pose an "unacceptable" security risk. Concerns have heightened at the Pentagon about consumer electronics being used to snoop on or track service members. | |||
|
2018-05-04 15:46:04 | Hackers Target Flaws Affecting a Million Internet-Exposed Routers (lien direct) | Just a few days after they were disclosed, malicious actors started targeting a couple of flaws affecting routers made by South Korea-based Dasan Networks. There are roughly one million potentially vulnerable devices accessible directly from the Internet. | |||
|
2018-05-04 14:38:04 | Backdoored Module Removed from npm Registry (lien direct) | A malicious package masquerading as a cookie parsing library but delivering a backdoor instead was unpublished from the npm Registry along with three other packages. | |||
|
2018-05-04 14:02:02 | Indegy Launches Industrial Security Risk Assessment Service (lien direct) | Industrial cybersecurity firm Indegy on Thursday announced the launch of a risk assessment service designed to help organizations evaluate exposures in their operational technology (OT) environments. | |||
|
2018-05-04 12:50:05 | Google Launches "Asylo" Framework for Confidential Computing (lien direct) | Google this week announced the release of an open-source framework and software development kit (SDK) that allows developers to build applications targeting trusted execution environments. | |||
|
2018-05-04 12:32:05 | Intel Working on Patches for 8 New Spectre-Like Flaws: Report (lien direct) | Researchers have discovered a total of eight new Spectre-like vulnerabilities, including flaws that may be more serious and easier to exploit, according to German magazine c't. | |||
|
2018-05-04 12:22:04 | GandCrab Ransomware Breaks Windows 7 Systems (lien direct) | The latest variant of the GandCrab ransomware breaks infected Windows 7 systems, Fortinet warns. | |||
|
2018-05-04 11:49:05 | Microsoft Makes Hyper-V Debugging Symbols Public (lien direct) | 
|
|||
|
2018-05-04 05:26:01 | Evasive Malware Now a Commodity (lien direct) | I've been deconstructing malware for over 20 years, and it turns out I've chosen a profession where it's hard to feel in a rut -- so much of what is happening with malware continues to feel dramatic and new to me. | |||
|
2018-05-04 05:09:02 | Meltdown Patch in Windows 10 Can Be Bypassed (lien direct) | A researcher has discovered that a mitigation implemented by Microsoft in Windows 10 for the Meltdown vulnerability can be bypassed. The tech giant says it's working on an update. According to Windows internals expert Alex Ionescu, a Meltdown mitigation in Windows 10 has what he describes as “a fatal flaw.” | |||
|
2018-05-03 21:38:02 | Twitter Urges Password Changes After Exposing \'Unmasked\' Credentials (lien direct) | Twitter on Thursday warned its users that an internal software bug unintentionally exposed "unmasked" passwords by storing them in an internal log. | |||
|
2018-05-03 16:36:04 | Commodity Ransomware Declines as Corporate Attacks Increase (lien direct) | 2017 was a landmark year for ransomware, with WannaCry and NotPetya grabbing headlines around the world. Ransomware attacks grew by more than 400% over the year, while the number unique families and variants increased by 62%. These statistics, however, disguise an apparent change in the ransomware industry following the summer of 2017. | NotPetya Wannacry | ||
|
2018-05-03 16:13:05 | Amazon Introduces AWS Security Specialty Certification Exam (lien direct) | Security professionals looking to demonstrate and validate their knowledge of how to secure the Amazon Web Services (AWS) platform can now do so by taking the new AWS Certified Security – Specialty exam. | |||
|
2018-05-03 16:10:05 | Ex-NSA Director\'s IronNet Raises $78 Million (lien direct) | IronNet Cybersecurity, a company founded by former NSA director Gen. Keith Alexander, announced on Wednesday that it has raised $78 million in a Series B funding round. | |||
|
2018-05-03 15:58:03 | MassMiner Attacks Web Servers With Multiple Exploits (lien direct) | A recently discovered crypto-currency mining malware family is using multiple exploits in an attempt to increase its chances of successfully compromising web servers, AlienVault has discovered. | |||
|
2018-05-03 15:23:04 | Australia\'s Biggest Bank Loses 20 Million Customer Records (lien direct) | Australia's troubled Commonwealth Bank admitted Thursday it had lost financial records for almost 20 million customers in a major security blunder -- but insisted there was no need to worry. | |||
|
2018-05-03 15:03:03 | Android Phones Vulnerable to Remote Rowhammer Attack via GPU (lien direct) | A team of researchers has shown how malicious actors could leverage graphics processing units (GPUs) to launch Rowhammer attacks remotely against Android smartphones. |
To see everything:
Our RSS (filtrered)
