What's new arround internet

Last one

Src Date (GMT) Titre Description Tags Stories Notes
SecurityWeek.webp 2021-10-20 15:17:31 Investors Bet Big on Attempts to Solve Encryption \'Holy Grail\' (lien direct) News Analysis: Venture capital investors are pumping millions of dollars into privacy enhancing technology (PET) projects, betting that hardware and software innovation is finally coming together to solve one of the “holy grails” of encryption.
SecurityWeek.webp 2021-10-20 15:12:33 Query.AI Raises $15 Million in Series A Funding Round (lien direct) Query.AI, a company that has developed a security investigations platform for enterprises, this week announced raising $15 million in a Series A funding round, which brings the total raised to nearly $20 million.
SecurityWeek.webp 2021-10-20 13:59:02 Magnitude EK Expands Arsenal With PuzzleMaker Exploit Chain (lien direct) The Magnitude exploit kit (EK) is now capable of targeting Chromium-based browsers running on Windows systems, security researchers with Avast warn.
SecurityWeek.webp 2021-10-20 12:53:49 Threat Detection Marketplace SOC Prime Raises $11 Million (lien direct) Threat detection marketplace SOC Prime this week announced that it has raised $11 million in Series A funding. To date, the company has raised a total of $11.5 million. The new capital, the company says, will help it accelerate the adoption of its marketplace, which allows security researchers to monetize their content to help others fend off cyberattacks.
SecurityWeek.webp 2021-10-20 12:34:21 Acer Confirms Breach of Servers in Taiwan (lien direct) Taiwanese tech giant Acer has confirmed that, in addition to servers in India, hackers breached some of its systems in Taiwan.
SecurityWeek.webp 2021-10-20 11:47:59 Zerodium Buying Zero-Day Exploits Targeting VPN Software (lien direct) Exploit acquisition company Zerodium on Tuesday announced that it's looking to buy zero-day exploits targeting popular VPN software. Specifically, the company wants to acquire exploits that work against the Windows versions of the ExpressVPN, NordVPN and Surfshark applications. These VPN services have millions of users.
SecurityWeek.webp 2021-10-20 11:02:21 Oracle\'s October 2021 CPU Includes 419 Security Patches (lien direct) Oracle on Tuesday announced the release of its latest quarterly Critical Patch Update (CPU), which includes a total of 419 security patches for vulnerabilities across the company's portfolio. Just over half of the patches address vulnerabilities that could be exploited remotely without authentication, Oracle announced.
SecurityWeek.webp 2021-10-20 10:27:59 Missouri Budget Officials Outline $50M Cost of Data Breach (lien direct) Help for roughly 100,000 teachers whose Social Security numbers were made vulnerable in a massive state data breach could cost Missouri as much as $50 million, the governor's office confirmed Tuesday. Data Breach
SecurityWeek.webp 2021-10-20 10:16:05 How to Spot an Effective Security Practitioner (lien direct) By understanding what makes a great security practitioner, organizations can learn how to recruit and retain effective security practitioners
SecurityWeek.webp 2021-10-19 21:42:01 U.S. Government Issues Urgent Warning on BlackMatter Ransomware (lien direct) The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) this week published a joint advisory to warn organizations of an increased threat posed by the BlackMatter ransomware gang. Ransomware Threat
SecurityWeek.webp 2021-10-19 21:31:23 Nation-State APT Targets Afghans With New Toolset (lien direct) A previously unseen threat actor, likely a nation-state, is targeting various entities in South Asia, with a focus on Afghanistan, according to a warning from anti-malware vendor Symantec. Threat
SecurityWeek.webp 2021-10-19 14:56:06 Microsoft, Intel and Goldman Sachs Lead New Supply Chain Security Group at TCG (lien direct) Microsoft, Intel and Goldman Sachs will lead a new work group focusing on supply chain security at the Trusted Computing Group (TCG). TCG is a non-profit organization that develops, defines and promotes open and vendor-neutral industry specifications and standards for trusted computing platforms, including the widely used Trusted Platform Module (TPM). Guideline
SecurityWeek.webp 2021-10-19 14:17:42 Customer Data Privacy Provider Skyflow Raises $45 Million (lien direct) Customer data privacy company Skyflow today announced that it has raised $45 million in Series B funding. Over the past 18 months, the company has raised $70 million. The new funding round was led by Insight Partners. Mouro Capital, MS&AD Ventures, Canvas Ventures, Foundation Capital, and Coinbase board member Gokul Rajaram also participated.
SecurityWeek.webp 2021-10-19 13:46:39 Valence Emerges From Stealth to Address Business App Connectivity Risks (lien direct) Another Israel-based cybersecurity startup has emerged from stealth mode. The company, Valence, claims to have developed a platform that leverages zero trust principles to help organizations manage risks associated with the connectivity between various business applications.
SecurityWeek.webp 2021-10-19 13:03:48 University of Pittsburgh Medical Center Hacker Sentenced to Prison (lien direct) The individual who hacked the human resources databases of the University of Pittsburgh Medical Center was sentenced to seven years in prison, the United States Department of Justice announced.
SecurityWeek.webp 2021-10-19 12:56:14 SASE Firm Cato Networks Raises $200 Million at $2.5 Billion Valuation (lien direct) Tel Aviv, Israel-based Secure Access Service Edge (SASE) provider Cato Networks on Tuesday announced raising $200 million at a market valuation of $2.5 billion.
SecurityWeek.webp 2021-10-19 11:11:25 The VC View: Vendor Risk Management (lien direct) Unlike other areas of security, the COVID-19 pandemic has not made a big impact on the Vendor risk management (VRM) sector. This space would have been a Top 10 security project even without a pandemic, as it has been going down this path for years: moving away from security questionnaires to finding something more predictable, useful and scalable.
SecurityWeek.webp 2021-10-19 10:52:43 $1.9 Million Paid Out for Exploits at China\'s Tianfu Cup Hacking Contest (lien direct) Tianfu Cup 2021 iOS 15, Chrome, Windows, VMware Hacked at China's Tianfu Cup
SecurityWeek.webp 2021-10-19 10:27:04 Has Facebook Sidestepped GDPR\'s User Consent Requirements? (lien direct) Facebook GDPR Compliant
SecurityWeek.webp 2021-10-18 23:51:16 Sinclair Hit by Ransomware Attack, TV Stations Disrupted (lien direct) Sinclair Broadcast Group, which operates dozens of TV stations across the U.S., said Monday that some of its servers and work stations were encrypted with ransomware and that data was stolen from its network. Ransomware
SecurityWeek.webp 2021-10-18 17:39:30 Free Decryptor Released for BlackByte Ransomware (lien direct) Trustwave's SpiderLabs security researchers have released a free decryptor that victims of the BlackByte ransomware can use to restore their files. Ransomware
SecurityWeek.webp 2021-10-18 16:54:38 Private Data Sharing Firm TripleBlind Raises $24 Million in Series A Funding (lien direct) Private data sharing solutions provider TripleBlind on Monday announced raising $24 million in an oversubscribed Series A funding round, which brings the total raised by the company to more than $32 million.
SecurityWeek.webp 2021-10-18 13:41:58 Third Party Attacks Are Increasing, But Third-Party Risk Management Is Failing (lien direct) The risks associated with supply chain (for software and services) is huge and growing. A new report shows that boardroom awareness and budgets for third-party risk management has increased; but this is not necessarily translating into effective action.
SecurityWeek.webp 2021-10-18 13:32:43 Banks Informed U.S. Treasury of $590 Million in Ransomware Payments (lien direct) The United States Department of the Treasury's Financial Crimes Enforcement Network (FinCEN) has identified a total of 177 cryptocurrency wallets associated with the top 10 most commonly reported ransomware variants during the first half of the year. Ransomware
SecurityWeek.webp 2021-10-18 12:49:42 Password Auditing Tool L0phtCrack Released as Open Source (lien direct) The password auditing and recovery tool L0phtCrack is now open source and the project is looking for both maintainers and contributors. First released in 1997, L0phtCrack can be used to test password strength and recover lost Windows passwords via dictionary, brute-force, and other types of attacks. Tool
SecurityWeek.webp 2021-10-18 12:18:18 Many Prometheus Endpoints Expose Sensitive Data (lien direct) Unprotected instances of open source event monitoring solution Prometheus may leak metric and label data to the Internet, software company JFrog warns.
SecurityWeek.webp 2021-10-18 12:04:26 Accenture Confirms Data Stolen in Ransomware Attack (lien direct) Consulting giant Accenture has confirmed that proprietary information was stolen in a ransomware attack disclosed in August 2021. Ransomware
SecurityWeek.webp 2021-10-18 10:19:14 Missouri Governor Urged to Appoint Cybersecurity Panel (lien direct) Three months after creation of a commission to identify cybersecurity risks in state government, Missouri Gov. Mike Parson has yet to appoint any members. A state lawmaker said Friday that vulnerabilities exposed on a state website prove the need for just such a panel of experts.
SecurityWeek.webp 2021-10-16 01:24:11 Cyberattack Disrupts Services at Ecuador\'s Largest Bank (lien direct) Customers of Ecuador's largest bank continued to experience service disruptions on Friday following a cyberattack on the institution several days earlier.
SecurityWeek.webp 2021-10-15 18:11:10 Twitch Says Hack Impacted \'Small Fraction of Users\' (lien direct) Amazon-owned live streaming service Twitch on Friday shared another update on the recent data breach. The company says it's confident that only a “small fraction of users” are affected and that customer impact is minimal. The company said the breach was a result of a server configuration change that allowed the hackers to gain access to its systems. Hack
SecurityWeek.webp 2021-10-15 13:22:31 Russia-Linked TA505 Back at Targeting Financial Institutions (lien direct) Russia-linked threat actor TA505 has been observed using a lightweight Office file for malware distribution in a new campaign targeting financial institutions in multiple geographies. The attacks target organizations across multiple sectors in Canada, the United States, Hong Kong, Europe, and more, and have seen low detection rates in Google's VirusTotal scanning engine. Malware Threat
SecurityWeek.webp 2021-10-15 12:47:22 Nations Vow to Combat Ransomware at US-Led Summit (lien direct) Over two dozen nations resolved Thursday to battle collectively against the global and escalating threat posed by cyber-extortionists, following a Washington-led anti-ransomware summit. Ransomware Threat
SecurityWeek.webp 2021-10-15 11:51:33 Ransomware Hit SCADA Systems at 3 Water Facilities in U.S. (lien direct) Ransomware attacks hit SCADA systems at water plants U.S. Warns of Attacks Targeting IT and OT Systems in Water Facilities
SecurityWeek.webp 2021-10-15 11:07:26 Researchers Disclose New Side-Channel Attacks Affecting All AMD CPUs (lien direct) Researchers have disclosed the details of new timing and power-based side-channel attacks that affect all CPUs made by AMD, but the chipmaker says no new mitigations are necessary.
SecurityWeek.webp 2021-10-15 10:42:43 Deepfence Open Sources Vulnerability Mapping Tool \'ThreatMapper\' (lien direct) Cloud and container security company Deepfence this week announced the open source availability of ThreatMapper, a tool designed to help organizations scan for, map, and rank application vulnerabilities. By performing post-deployment scans of applications and infrastructure, the platform seeks to identify emerging threats in both first-party and third-party solutions. Tool Vulnerability ★★★★
SecurityWeek.webp 2021-10-15 10:20:52 Juniper Networks Patches Over 70 Vulnerabilities (lien direct) Networking and cybersecurity solutions provider Juniper Networks this week released more than 40 security advisories to describe over 70 vulnerabilities that affect the company's products.
SecurityWeek.webp 2021-10-15 09:51:02 S Korea Seeks Interpol Notice for Two Cyber Gang Leaders (lien direct) South Korea said Friday it's asked Interpol for help to arrest two foreigners it alleges played a leading role in cyberattacks and large-scale extortion that targeted South Korean and U.S. companies. Guideline
SecurityWeek.webp 2021-10-14 18:12:38 VirusTotal Shares Analysis of 80 Million Ransomware Samples (lien direct) At least 130 ransomware families were active in 2020 and in the first half of 2021, according to a recent data analysis from Google's VirusTotal scanning service. Ransomware
SecurityWeek.webp 2021-10-14 15:00:08 NFT Marketplace OpenSea Patches Flaw Potentially Leading to Cryptocurrency Theft (lien direct) OpenSea, the world's largest NFT marketplace, has addressed a security vulnerability that could have allowed hackers to hijack user accounts and empty their crypto wallets with the help of maliciously crafted NFTs (non-fungible tokens). Vulnerability
SecurityWeek.webp 2021-10-14 13:28:42 Israeli Hospital Targeted in Ransomware Attack (lien direct) An Israeli hospital was targeted Wednesday by a ransomware attack, officials said, with the state's cyber directorate calling it the first such attack on a hospital in the country. The Hillel Yaffe Medical Center is "currently using alternative systems to treat its patients", it said in a statement, describing the attack as "totally unexpected". Ransomware
SecurityWeek.webp 2021-10-14 13:17:45 Cyber Insurance Firm At-Bay Announces $20 Million Series D Extension (lien direct) At-Bay, the cyber insurance company that aims to reduce ransomware risk, this week announced a $20 million extension to its Series D funding round. Ransomware
SecurityWeek.webp 2021-10-14 12:54:10 Hackers Claim to Have Stolen 60 GB of Data From Acer (lien direct) A group of hackers claims to have stolen more than 60 gigabytes of data after breaching servers belonging to Taiwanese tech giant Acer. In a post on a publicly accessible hacker forum, a group calling itself “Desorden” claimed to have stolen databases and other files from breached Acer India servers.
SecurityWeek.webp 2021-10-14 11:14:55 Data Privacy Compliance Startup CYTRIO Launches With $3.5 Million in Funding (lien direct) Data privacy compliance startup CYTRIO this week announced its launch with $3.5 million in seed funding from Dreamit Ventures, Food Retail Ventures and Rockwood Group, as well as angel investors.
SecurityWeek.webp 2021-10-14 10:41:06 Nations Reveal Ransomware Pain at US-Led Summit (lien direct) A digital "disaster" in Germany, growing attacks in the United Arab Emirates and even Israel announcing a blitz underway: nations disclosed their struggle Wednesday against cyber-extortionists at a Washington-led anti-ransomware summit. Ransomware
SecurityWeek.webp 2021-10-14 10:29:36 How Do We Know About New Phishing Attacks? Because Some Human Reported It. (lien direct) Keep training your people about the newest threats - the power of the collective is a critical element in how to stop phishing We hear it all the time: “The human is the weakest link!” or “People can't get their heads around the technology so how can we expect them to know bad when they see it?” 
SecurityWeek.webp 2021-10-14 09:55:09 Microsoft Adds Power Platform to Bug Bounty Program (lien direct) Microsoft this week announced that it is now accepting vulnerability submissions for the Power Platform. Security researchers who hunt for and report security errors in Power Platform can now earn up to $20,000 in bounty rewards for severe flaws, as part of the recently rebranded Dynamics 365 and Power Platform Bounty Program. Vulnerability
SecurityWeek.webp 2021-10-13 20:51:19 Necro Python Botnet Starts Targeting Visual Tools DVRs (lien direct) Security researchers have spotted signs of the Necro Python botnet targeting a vulnerability in Visual Tools DVR systems to install a Monero miner on infected systems. Vulnerability
SecurityWeek.webp 2021-10-13 18:58:26 OpenSSF Bags $10 Million Investment (lien direct) The Linux Foundation has secured a new $10 million investment that will help  expand and support the Open Source Security Foundation (OpenSSF).
SecurityWeek.webp 2021-10-13 18:27:31 Intel, VMWare Join Patch Tuesday Parade (lien direct) Technology giants Intel Corp. and VMWare joined the Patch Tuesday parade this week, rolling out fixes for security defects that expose users to malicious hacker attacks.
SecurityWeek.webp 2021-10-13 15:14:52 Vendor Risk Management Firm Black Kite Raises $22 Million (lien direct) Black Kite, a provider of third-party cyber risk rating services, announced today that it has raised $22 million in a Series B funding round led by Volition Capital, bringing the total raised by the Boston, Mass.-based company to more than $33.1 million.
Last update at: 2024-07-22 20:07:46
See our sources.
My email:

To see everything: Our RSS (filtrered) Twitter