What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-10-08 19:18:04 | Email Attacks Using Cloud Services are Increasing (lien direct) | An analysis of more than 2.2 billion emails between April and June (Q2) 2019 exposes the current tactics, techniques and targets of contemporary attackers. | |||
|
2019-10-08 18:48:18 | Microsoft Patches 60 Flaws With October 2019 Security Updates (lien direct) | Microsoft's Patch Tuesday updates for October 2019 fix 60 vulnerabilities, but none of them appear to have been exploited in attacks and only nine are considered critical. | |||
|
2019-10-08 15:41:36 | 2020 Presidential Candidate Campaign Websites Fail On User Privacy (lien direct) | Despite everything that has happened over the last four years, the security posture of the 2020 presidential candidates' campaign websites is little better and often worse than it was in 2016. | |||
|
2019-10-08 14:03:08 | (Déjà vu) Google Patches Remote Code Execution Bugs in Android 10 (lien direct) | Google's October 2019 set of security patches for Android address a total of 26 vulnerabilities in the operating system, including a couple of remote code execution bugs impacting Android 10. | |||
|
2019-10-08 13:45:04 | Code Execution Vulnerability Impacts NSA Reverse Engineering Tool (lien direct) | Versions through 9.0.4 of the Ghidra software reverse engineering (SRE) framework are impacted by a code-execution vulnerability, the National Security Agency (NSA) has revealed. | Tool Vulnerability | ||
|
2019-10-08 10:25:29 | Preview: SecurityWeek\'s 2019 ICS Cyber Security Conference (Oct. 21-24 | Atlanta) (lien direct) | SecurityWeek's 2019 ICS Cyber Security Conference, the largest and longest-running event dedicated to industrial and critical infrastructure cybersecurity, is set to take place in Atlanta, Ga. on October 21-24. | |||
|
2019-10-08 10:18:32 | Cloud is Creating Security and Network Convergence (lien direct) | Network Security Expertise is Needed More Than Ever Inside Security Operations Centers and on DevOps Teams | |||
|
2019-10-07 18:23:50 | Magecart Group Tied to Cobalt Hackers (lien direct) | Security researchers were able to link one of the hacking groups operating under the Magecart umbrella to the infamous threat actor known as the Cobalt Group. | Threat | ||
|
2019-10-07 15:58:21 | Patches for Internet Explorer Zero-Day Causing Problems for Many Users (lien direct) | Microsoft has released a new set of security patches for a zero-day vulnerability in Internet Explorer that was initially addressed on September 23. The initial updates introduced some printing issues, but the new ones also appear to be buggy. | Vulnerability | ||
|
2019-10-07 14:24:21 | NIST\'s Zero Trust Taxonomy Introduces Components, Threats and Migration Routes (lien direct) | NIST has published a draft Zero Trust Architecture (ZTA) special publication (SP.800.207). The purpose is to develop a technology-neutral lexicon of the logical components of a zero trust strategy, and to define ZTA, describe possible deployment scenarios, and highlight threats. | |||
|
2019-10-07 13:44:35 | New Campaign Targets Drupalgeddon2 Flaw to Install Malware (lien direct) | Hackers continue to target the Drupal vulnerability named Drupalgeddon2 to install malware onto unpatched systems, Akamai's security researchers have discovered. | Malware Vulnerability | ||
|
2019-10-07 11:56:08 | CISO Mindshare Is Influencing Tomorrow\'s Platforms (lien direct) | We Need More CISOs To Speak Up | |||
|
2019-10-07 09:44:24 | Signal Rushes to Patch Serious Eavesdropping Vulnerability (lien direct) | The developers of the popular privacy-focused messaging application Signal have rushed to patch a serious vulnerability in the Android version that can be exploited by an attacker to eavesdrop on users. | Vulnerability | ||
|
2019-10-07 01:50:02 | U.S. to Help Secure Baltic Energy Grid Against Cyber Attacks (lien direct) | The United States and Baltic states on Sunday agreed to beef up cooperation to protect the Baltic energy grid from cyber attacks as they disconnect from the Russian electricity grid. | |||
|
2019-10-07 01:34:37 | Iranian Hackers Said to Target Presidential Campaign (lien direct) | Microsoft said Friday that hackers linked to the Iranian government targeted a U.S. presidential campaign, as well as government officials, media targets and prominent expatriate Iranians. | |||
|
2019-10-04 18:12:37 | APTs Exploiting Enterprise VPN Vulnerabilities, UK Govt Warns (lien direct) | Advanced persistent threat (APT) actors have been exploiting recently disclosed vulnerabilities affecting enterprise VPN products from Fortinet, Palo Alto Networks and Pulse Secure, the UK's National Cyber Security Centre (NCSC) warns. | Threat | ||
|
2019-10-04 12:41:51 | Zero-Day Used in the Wild Impacts Pixel 2, Other Android Phones (lien direct) | Fully patched Pixel 2 devices, even those running Android 10 preview, are impacted by a vulnerability that has already been abused in attacks, a Google Project Zero security researcher has discovered. | Vulnerability | ||
|
2019-10-04 12:06:43 | Moe\'s, McAlister\'s, Schlotzsky\'s Restaurants Hit by Payment Card Breach (lien direct) | Restaurant chains Moe's Southwest Grill, McAlister's Deli, and Schlotzsky's were hit earlier this year by a payment card breach that has impacted hundreds of locations. | |||
|
2019-10-04 09:25:09 | WhatsApp Flaw Allows Remote Code Execution via Malicious GIF File (lien direct) | 
Facebook recently patched a vulnerability in WhatsApp for Android that may have allowed hackers to execute arbitrary code and gain access to sensitive user data by sending specially crafted GIF files.
|
Vulnerability | ||
|
2019-10-04 06:40:37 | Turkey Fines Facebook for Breach of Data Protection Laws (lien direct) | Turkey's data protection authority says it has imposed a 1.6 million Turkish lira ($280,000) fine on Facebook for contravening the country's data laws. | |||
|
2019-10-04 05:08:37 | Officials Push Facebook for Way to Peek at Encrypted Messages (lien direct) | Officials are calling on Facebook not to use encryption in its messaging services that does not provide authorities a way to see what is being sent. | |||
|
2019-10-03 16:09:07 | How to Choose an Authenticator. Or Two. Or Three. (lien direct) | When it Comes to Proving Users Are Who They Say They Are, There's no Single Solution That Will Meet All Your Needs. | |||
|
2019-10-03 15:46:01 | Researcher Shows How Adversaries Can Gather Intel on U.S. Critical Infrastructure (lien direct) | A researcher has used a free tool that he created and open source intelligence (OSINT) to demonstrate how easy it is for adversaries to gather intelligence on critical infrastructure in the United States. | Tool | ||
|
2019-10-03 14:49:58 | Adwind Malware Used in Attacks Against U.S. Petroleum Firms (lien direct) | Attackers using the Adwind remote access Trojan (RAT) are targeting petroleum firms in the United States in a recent campaign, researchers from Netskope report. | Malware | ||
|
2019-10-03 14:30:31 | Alabama Hospital System Halts Admissions Amid Malware Attack (lien direct) | A hospital system that serves a large part of rural west Alabama temporarily quit accepting new patients after a ransomware attack crippled some of its computer systems Tuesday. | Ransomware Malware | ||
|
2019-10-03 07:28:01 | Zendesk Discloses Old Data Breach Affecting 10,000 Accounts (lien direct) | Customer support company Zendesk revealed on Wednesday that it has become aware of a security incident impacting thousands of accounts activated before November 2016. | Data Breach | ||
|
2019-10-03 01:23:55 | U.S. to Collect DNA of All Undocumented Migrants (lien direct) | 
The US government plans to collect the DNA of all migrants detained after entering the country illegally, officials said Wednesday.
|
|||
|
2019-10-02 18:59:10 | MasterMana Campaign Combines Stealth, Free Services and Old Malware (lien direct) | An ongoing cybercrime campaign that started as early as December 2018, has avoided widespread detection through a combination of stealth tactics and hiding in plain sight. | Malware | ||
|
2019-10-02 15:16:09 | Google Expands Use of Password Checkup Tool, Unveils New Privacy Features (lien direct) | Google on Wednesday announced that its Password Checkup tool has been added to the Account password manager, and the company has unveiled some new security and privacy features for YouTube, Maps and Assistant. | Tool | ||
|
2019-10-02 14:19:37 | US Warns Italy Over China and 5G (lien direct) | US Secretary of State Mike Pompeo warned Italy Wednesday of China's "predatory approach" to trade and investment, but Rome insisted its special powers over 5G supply deals would protect it. | |||
|
2019-10-02 13:52:18 | Let\'s Get Serious About Security Metrics (lien direct) | There are many topics in security that generate quite a bit of discussion when someone brings them up. Unfortunately, metrics isn't one of those topics. Sadly, more often than not, bringing up the topic of metrics is a great way to create awkward silence in a room. | |||
|
2019-10-02 12:40:55 | Urgent/11 Flaws Impact More RTOS Used by Medical, Industrial Devices (lien direct) | IoT security firm Armis has confirmed that the recently disclosed vulnerabilities tracked as Urgent/11 affect several real time operating systems (RTOS) other than VxWorks. | |||
|
2019-10-02 12:20:57 | Advanced ICS/SCADA Hacking Training Offered at SecurityWeek\'s 2019 ICS Cyber Security Conference (lien direct) | SecurityWeek has announced that it will offer an Advanced ICS/SCADA Hacking Training program at its 2019 Industrial Control Systems (ICS) Cyber Security Conference, which takes place October 21-24 in Atlanta. | |||
|
2019-10-02 10:35:16 | Perception vs. Reality in Federal Government Security Practices (lien direct) | Focusing on Data Security Controls Will Not Provide the Most Robust Protection Against Data Breaches | |||
|
2019-10-02 08:45:36 | Ransomware Hits Hundreds of US Schools, Local Governments: Study (lien direct) | Hundreds of US municipalities, schools and health organizations have been hit by ransomware in 2019, leading to massive service disruptions, researchers said Tuesday. | Ransomware Guideline | ||
|
2019-10-02 08:39:30 | Singapore Lays Out Plans for Operational Technology Cybersecurity (lien direct) | Singapore's Cyber Security Agency (CSA) on Tuesday unveiled the country's Operational Technology (OT) Cybersecurity Masterplan, whose goal is to help enhance the security and resilience of organizations that house OT systems. | |||
|
2019-10-02 06:27:31 | Iranian Official Denies Plans to Interfere With US Election (lien direct) | Iranian Foreign Minister Mohammad Javad Zarif is denying his country would interfere with the upcoming U.S. presidential election and says his government doesn't have a preference in the race. | |||
|
2019-10-02 06:03:17 | NZ Sports Store Apologises Over Porn Played on Big Screens (lien direct) | The New Zealand arm of Japanese sports brand Asics has apologised after pornography was broadcast on large television screens above its central Auckland store for several hours, startling Sunday morning shoppers. | |||
|
2019-10-01 15:32:02 | Organizations Prefer Quick Technological Fix Over Deep-Rooted Cyber Resiliency: Report (lien direct) | The Marsh/Microsoft 2019 Global Risk Perception Survey is a follow-on to a similar survey published in February 2018 (conducted in 2017). SecurityWeek criticized the earlier survey results for not including a specific cybersecurity function among the respondents. | |||
|
2019-10-01 14:15:19 | Medical Practice Closing Permanently After Ransomware Attack (lien direct) | Medical Practice Closing Doors Permanently After Ransomware Destroys Patient Records and Backups | Ransomware | ||
|
2019-10-01 14:05:22 | WebEx, Zoom Meetings Exposed to Snooping via Enumeration Attacks (lien direct) | Malicious actors may be able to easily access unprotected Cisco WebEx and Zoom meetings due to an API enumeration vulnerability, Cequence Security's CQ Prime threat research team revealed on Tuesday. | Threat | ||
|
2019-10-01 13:24:45 | Former Yahoo Programmer Pleads Guilty to Hacking User Accounts (lien direct) | A former Yahoo software engineer has admitted in court to hacking into the accounts of thousands of the platform's users. The man, Reyes Daniel Ruiz, 34, of Tracy, California, pleaded guilty to accessing about 6,000 Yahoo accounts, in search of private and personal records, mainly sexual images and videos. | Guideline | Yahoo | |
|
2019-10-01 12:36:10 | Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability (lien direct) | A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the forums of cybersecurity solutions provider Comodo. | Vulnerability | ||
|
2019-10-01 11:06:51 | Users Need to Consent to Online Tracking Cookies: EU Court (lien direct) | Online companies in the EU can no longer present internet users with a pre-checked box telling them cookies will be planted on their smartphone or computer if they don't deselect the option, under a ruling issued Tuesday. | |||
|
2019-10-01 11:01:39 | The Impact of Recycling on Industrial Cyber Security (lien direct) | In the decade since the Stuxnet worm was discovered, multiple attacks that have been launched against operational technology (OT) networks including Shamoon, Havex, Wannycry, and Lockergoga. Looking back, a disturbing trend has emerged. Industrial attacks are being recycled. | |||
|
2019-10-01 11:00:18 | BlackBerry Launches New Cybersecurity R&D Unit (lien direct) | BlackBerry on Monday announced the launch of BlackBerry Advanced Technology Development Labs, a new business unit focusing on cybersecurity research and development. | |||
|
2019-10-01 10:44:53 | Singapore Ministry of Defence Launches New Bug Bounty Program (lien direct) | Singapore's Ministry of Defence (MINDEF) is inviting 400 white-hat hackers to find vulnerabilities in its systems, as part of a three-week program hosted on hacker-powered pentesting and bug bounty platform HackerOne. | |||
|
2019-10-01 08:51:38 | Senate Passes DHS Cyber Hunt and Incident Response Teams Act (lien direct) | The United States Senate recently passed the DHS Cyber Hunt and Incident Response Teams Act, a piece of legislation that instructs the DHS to help organizations protect themselves against cyber threats and respond to incidents. | |||
|
2019-10-01 06:58:00 | American Man Jailed in US Over Singapore HIV Data Leak (lien direct) | An American man who leaked confidential details of thousands of HIV-positive people in Singapore, most of them foreigners, has been jailed in the United States for two years. | |||
|
2019-09-30 16:47:04 | Critical Remote Code Execution Vulnerability Patched in Exim Email Server (lien direct) | A Critical vulnerability recently addressed in the popular open-source email server Exim could lead to remote code execution. Exim is an open source mail transfer agent (MTA) widely used in systems running Linux and macOS. At the moment, Exim powers over half of email servers out there. | Vulnerability Guideline |
To see everything:
Our RSS (filtrered)
