What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-08-05 16:25:04 | ID Theft Stings, But it\'s Hard to Pin on Specific Data Hacks (lien direct) | Equifax 2017. Marriott 2018. Capital One 2019. | Data Breach | Equifax | |
|
2019-08-05 16:02:01 | Industrial Giants Respond to \'Urgent/11\' Vulnerabilities (lien direct) | Several major industrial and automation solutions providers have issued advisories in response to the recently disclosed Wind River VxWorks vulnerabilities dubbed Urgent/11. | |||
|
2019-08-05 15:59:01 | JIRA Misconfiguration Leaks Data of Fortune 500 Companies (lien direct) | A misconfiguration in the popular JIRA project management software exposed a great deal of data on hundreds of companies, security researcher Avinash Jain reveals. | |||
|
2019-08-02 16:34:01 | New Mirai Variant Hides C&C Server on Tor Network (lien direct) | A recently discovered variant of the Mirai Internet of Things (IoT) malware is using a command and control (C&C) server on the Tor network, Trend Micro's security researchers have discovered. | Malware | ||
|
2019-08-02 15:13:03 | Nine Distinct Threat Groups Targeting Industrial Systems: Dragos (lien direct) | The number of tracked threat groups targeting industrial control systems (ICS) environments has risen to nine, industrial cybersecurity firm Dragos reveals in a new report. | Threat | ||
|
2019-08-02 14:39:05 | New "LookBack" Malware Used in Attacks Against U.S. Utilities Sector (lien direct) | A series of phishing attacks have been targeting U.S. companies in the utilities sector in an effort to infect systems with a new remote access Trojan (RAT), Proofpoint reports. | Malware | ||
|
2019-08-02 13:01:05 | Unprotected Database Exposes Details of Honda\'s Internal Network (lien direct) | An unprotected, internet accessible ElasticSearch database exposed 134 million rows of sensitive data from Honda Motor Company, containing technical details on employee computers, including its CEO, Cloudflare security researcher Justin Paine reveals. | |||
|
2019-08-02 10:17:04 | Congress Wants Capital One, Amazon to Explain Data Breach (lien direct) | Leaders of House and Senate committees want Capital One and Amazon to explain to Congress how a hacker accessed personal information from more than 100 million Capital One credit card customers and applicants. | Data Breach Guideline | ||
|
2019-08-01 18:52:04 | Economics of Ransomware - To Pay Or Not To Pay? (lien direct) | 
|
Ransomware | ||
|
2019-08-01 18:29:00 | Faked Facebook Accounts Linked to Saudi Arabia, Mideast Region (lien direct) | Facebook on Thursday said it derailed a pair of shady online influence campaigns in the Arabic-speaking world including one linked to the Saudi Arabian government. | |||
|
2019-08-01 16:21:02 | Scammers Grab $2.5 Million From North Carolina County in BEC Scam (lien direct) | Cybercriminals managed to divert $2.5 million in a business email compromise (BEC) scam targeting Cabarrus County, North Carolina. $1.7 million of that has not been recovered and remains missing. | |||
|
2019-08-01 16:09:03 | Google Releases Beta of Anomaly Detection for G Suite Customers (lien direct) | Google on Wednesday announced the beta availability of Advanced Protection Program for G Suite customers and anomaly detection in the G Suite alert center. | |||
|
2019-08-01 15:20:05 | FTC Warns Cash Option May be Small for Equifax Settlement (lien direct) | The Federal Trade Commission on Wednesday told consumers affected by the Equifax data breach that they are unlikely to get the full $125 cash payment that many sought. | Data Breach | Equifax | |
|
2019-08-01 14:41:05 | Former NSA Contractor Edward Snowden Publishing Memoir (lien direct) | Edward Snowden, the former National Security Agency contractor who fled to Russia after leaking information about the US government's mass surveillance program, is publishing a memoir. The book, "Permanent Record," will go on sale on September 17. It is being published globally by Macmillan Publishers. | |||
|
2019-08-01 12:24:02 | How to Prep Your Security Strategy for Today\'s Cyber Risks (lien direct) | There is no shortage of breaking news on data breaches and vulnerabilities that have very real financial and reputational consequences for enterprises. It seems impossible for business leaders and board members to escape the barrage of forewarning headlines and resulting bombardment of experts who line up to share cybersecurity advice on how to avoid such devastation. | Guideline | ||
|
2019-08-01 11:01:02 | \'Hexane\' Threat Actor Targeting Industrial Organizations (lien direct) | Security researchers from industrial cybersecurity firm Dragos say they have identified a new threat actor targeting industrial control systems (ICS) related entities in the oil and gas and telecommunications sectors. | Threat | ||
|
2019-08-01 10:50:00 | Alleged Capital One Hacker Barely Bothered to Hide (lien direct) | The 33-year-old former Amazon software engineer accused of hacking Capital One made little attempt to hide her attack. In fact, she effectively publicized it. | |||
|
2019-08-01 10:25:00 | Lost in Transformation: How AI is Saving DX Projects (lien direct) | Securing Digital Transformation Projects Isn't as Straightforward as Buying More Security Tools or Hiring More Security Professionals | |||
|
2019-07-31 18:46:02 | Researchers Replace IP Camera Feed With Fake Footage (lien direct) | Forescout security researchers have demonstrated an attack on an IP camera that results in fake replay footage being displayed to security operators. | |||
|
2019-07-31 17:30:01 | Critical Vulnerabilities Found in Prima FlexAir Access Control System (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week published an advisory to warn of multiple vulnerabilities access control systems made by Prima Systems. | |||
|
2019-07-31 16:49:04 | Cyber Kill Chain Reimagined: Industry Veteran Proposes "Cognitive Attack Loop" (lien direct) | The Cyber Kill Chain is dead. Long live the Cognitive Attack Loop. This is the thesis of Tom Kellermann's (Chief Security Officer at Carbon Black and former cyber commissioner for President Obama) new paper, 'Cognitions of a Cybercriminal'. | |||
|
2019-07-31 15:22:00 | Louisiana Schools Suffer Cyberattacks Ahead of Year\'s Start (lien direct) | With the school year beginning next week, a fourth Louisiana school district is assessing damage caused by hackers targeting its computer network. | |||
|
2019-07-31 14:31:03 | Mobile Malware and Mobile Attackers are Getting More Sophisticated (lien direct) | For many years, the primary threat to mobile devices was click-jacking and adware. But as the mobile device has become more deeply embedded in everybody's life, as mobile banking has increased and the amalgamation of personal data on devices has grown, so has the attraction of the mobile device increased for both cyber criminals and even nation states. | Malware Threat | ||
|
2019-07-31 14:23:05 | Chrome 76 Patches 43 Vulnerabilities (lien direct) | Google this week released Chrome 76 to the stable channel with 43 security fixes inside, as well as with other safety and privacy enhancements. | |||
|
2019-07-31 11:27:01 | What Does Summer Vacation Have to do With Information Security? (lien direct) | There is something magical about children and summer vacation. As adults, we sometimes get so caught up in day-to-day life that we forget about this magic that we once experienced. That is, until we let ourselves experience it together with children. Only then can we view the magic of summer through adult eyes and learn the important lessons this experience teaches us. | |||
|
2019-07-30 19:38:01 | Google Researchers Find Remotely Exploitable Vulnerabilities in iOS (lien direct) | Security researchers working with Google's Project Zero have discovered a series of five vulnerabilities in Apple's iOS platform, some of which can be exploited without user interaction. | |||
|
2019-07-30 17:06:03 | Q&A: What to Know About the Capital One Data Breach (lien direct) | 
|
Data Breach | ||
|
2019-07-30 15:50:04 | U.S. Issues Hacking Security Alert for Small Planes (lien direct) | The Department of Homeland Security issued a security alert Tuesday for small planes, warning that modern flight systems are vulnerable to hacking if someone manages to gain physical access to the aircraft. | |||
|
2019-07-30 14:59:03 | Microsoft Makes Azure Security Center for IoT Generally Available (lien direct) | Microsoft this week announced the general availability of Azure Security Center for Internet of Things (IoT) devices. | |||
|
2019-07-30 13:49:01 | Confluera Raises $9M, Unveils \'Real-time Attack Interception and Defense\' Platform (lien direct) | Palo Alto, California-based start-up Confluera has simultaneously announced a Series A funding round of $9 million and the launch of its new Real-time Attack Interception and Defense (RAID) platform. | |||
|
2019-07-30 12:09:05 | Security a Top Concern as Containerization Gathers Pace (lien direct) | Within the increasing adoption of container technology, two things stand out: hybrid on-prem and cloud configurations are growing, and Kubernetes dominates. At the same time, concern over investment in security remains high. | Uber | ||
|
2019-07-30 10:45:05 | Campaign Leverages RFI Attacks to Deploy Phishing Kits (lien direct) | A recently detected series of targeted attacks is attempting to exploit Remote File Inclusion (RFI) vulnerabilities to deploy phishing kits, Akamai has discovered. | |||
|
2019-07-30 03:21:03 | Capital One Target of Massive Data Breach (lien direct) | A hacker gained access to personal information from more than 100 million Capital One credit applications, the bank said Monday as federal authorities arrested a suspect in the case . | Data Breach | ||
|
2019-07-30 03:17:04 | CapitalOne Discloses Massive Data Breach: 106 Million Impacted (lien direct) | Capital One said on Monday that a malicious individual was able to exploit a vulnerability in cloud infrastructure used by the company and gain access to sensitive data on more than 100 million customers and credit applicants. | Vulnerability | ||
|
2019-07-29 16:39:05 | Trinity Cyber Secures $23 Million in Funding (lien direct) | Cybersecurity services and solutions startup Trinity Cyber announced on Monday that it has raised $23 million through a funding round led by Intel Capital. | ★★ | ||
|
2019-07-29 15:00:05 | Critical Industries at Risk from Eleven Zero-day Flaws in Real Time Operating System (lien direct) | Eleven vulnerabilities have been found in the Wind River VxWorks real time operating system (RTOS). Six of these security flaws are classed as critical. The vulnerabilities allow complete remote takeover without any user action, and affect critical devices in critical industries. | ★★★ | ||
|
2019-07-29 14:24:00 | Encrypted Threats, IoT Malware Surge Past 2018 Levels: Report (lien direct) | The first half of 2019 was dominated by an increase in malware using encryption, and in malware targeting Internet of Things (IoT) devices, a recent SonicWall report reveals. | Malware | ★★★★★ | |
|
2019-07-29 13:54:05 | Authenticated XSS Found in WordPress Plugin Facebook Widget (lien direct) | The WordPress plugin Facebook Widget (Widget for Facebook Page Feeds), which was recently closed on the WordPress plugin directory, is affected by an authenticated persistent Cross-Site Scripting (XSS), Plugin Vulnerabilities reports. | |||
|
2019-07-26 17:14:03 | Ireland-Based Admin of Silk Road Marketplace Sentenced to Prison (lien direct) | An Irish man was sentenced to prison this week for his role in running the online black market Silk Road, the U.S. Department of Justice announced. | |||
|
2019-07-26 16:06:01 | Android Enterprise Receives ISO 27001 Stamp (lien direct) | Google this week has revealed that Android Enterprise has received ISO 27001 security certification. | |||
|
2019-07-26 15:49:00 | Railway Cybersecurity Firm Cervello Raises $4.5 Million (lien direct) | Israel-based Cervello, a company focused on cybersecurity solutions for rail and Metro signaling systems, announced this week that it has raised $4.5 million in a seed funding round. | |||
|
2019-07-26 15:25:01 | British Cyber Expert to be Sentenced for Creating Malware (lien direct) | Just as Marcus Hutchins was hailed as a hero for helping stop a worldwide computer virus in May 2017, his criminal past as a malware developer was about to catch up to him. | Malware | ||
|
2019-07-26 15:18:05 | NY to Require Greater Public Notification of Data Breaches (lien direct) | Stop Hacks and Improve Electronic Data Security - or SHIELD - Act (S.5575B/A.5635 New York state is strengthening a law requiring companies that handle consumers' personal data to notify them about any data breaches. | |||
|
2019-07-26 15:00:03 | Researchers Discover Android Surveillance Malware Built by Sanctioned Russian Firm (lien direct) | Mobile security firm Lookout has discovered a new set of sophisticated custom Android surveillanceware tools developed and distributed by a Russian-based company. | Malware | ||
|
2019-07-26 10:59:04 | Mirai-Based Botnet Launches Massive DDoS Attack on Streaming Service (lien direct) | A Mirai-based botnet has recently launched a massive, 13-day long distributed denial of service (DDoS) attack on a single online service, Imperva reveals. | |||
|
2019-07-25 19:02:02 | Ransomware Causes Disruptions at Johannesburg Power Company (lien direct) | City Power, the power company in the South African city of Johannesburg, has suffered serious disruptions after its systems became infected with a piece of ransomware. | Ransomware | ||
|
2019-07-25 15:54:03 | Enterprise VPN Vulnerabilities Expose Organizations to Hacking, Espionage (lien direct) | Critical vulnerabilities in enterprise virtual private network (VPN) solutions from Palo Alto Networks, Fortinet and Pulse Secure allow attackers to infiltrate corporate networks, obtain sensitive information, and eavesdrop on communications, researchers warn. | |||
|
2019-07-25 15:35:01 | Crypto-Mining Botnet Implements BlueKeep Scanner (lien direct) | A cryptocurrency-mining botnet has recently added a scanner for the BlueKeep RDP protocol vulnerability, Intezer's security researchers have discovered. | |||
|
2019-07-25 14:48:02 | Fact vs Fiction: The Truth About Breach and Attack Simulation Tools (lien direct) | In 2017, a category called Breach and Attack Simulation (BAS) tools made its first appearance on the Gartner Hype Cycle for Threat-Facing Technologies, positioned as a technology on the rise. | |||
|
2019-07-25 14:18:01 | Guildma Malware Expands Targets Beyond Brazil (lien direct) | Researchers at Avast have published a detailed analysis of a banking trojan they call Guildma. This is almost certainly the same malware as that described by Cybereason as Astaroth, but analyzed here in greater detail. | Malware |
To see everything:
