Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2017-08-14 15:20:36 |
Researchers Find Phishing Site Encrypted with AES (lien direct) |
A phishing site seeking Apple credentials and victim payment card information is encrypted with AES, researchers at Ring 0 Labs said.
|
|
|
|
|
2017-08-12 12:00:32 |
APT28 Using EternalBlue to Attack Hotels in Europe, Middle East (lien direct) |
Researchers believe attacks against wi-fi systems in hotels across Europe and the Middle East track back to Russian-speaking hackers known as APT28. |
|
APT 28
|
|
|
2017-08-11 17:57:27 |
Many Factors Conspire in ICS/SCADA Attacks (lien direct) |
A report on the state of SCADA and ICS security points out that critical infrastructure operators are caught between hackers and a lack of vendor and executive support. |
|
|
|
|
2017-08-11 17:47:21 |
Apps Infected With SonicSpy Spyware Removed From Google Play (lien direct) |
A spyware family called SonicSpy was found on three apps available on the Google Play store as well as on more than 1,000 apps available on third-party app stores. |
|
|
★★★
|
|
2017-08-11 14:30:14 |
Threatpost News Wrap, August 11, 2017 (lien direct) |
Mike Mimoso and Chris Brook discuss the news of the week including the return of the Mamba ransomware, APT trends, a mystery company's 250K bug bounty, and a high schooler's $10K bug bounty from Google. |
|
|
|
|
2017-08-11 14:10:58 |
Ukrainian Man Arrested, Charged in NotPetya Distribution (lien direct) |
Ukranian police arrested a suspect alleged to have distributed the NotPetya/ExPetr malware that ultimately infected 400 computers. |
|
NotPetya
|
|
|
2017-08-10 19:00:38 |
Patched Flash Player Sandbox Escape Leaked Windows Credentials (lien direct) |
One of Tuesday's Flash Player patches was a do-over after the researcher who privately reported the problem earlier this year discovered the original patch incompletely resolved the issue. |
|
|
|
|
2017-08-10 17:56:38 |
Juniper Issues Security Alert Tied to Routers and Switches (lien direct) |
Juniper warned Thursday of a high-risk bug in the GD graphics library used in several versions of its Junos OS. |
|
|
|
|
2017-08-10 17:54:08 |
High Schooler Nets $10,000 For Google Bug (lien direct) |
Google awarded a hefty $10,000 bounty to a high school student last week for uncovering a bug that could have let anyone access an internal Google website. |
|
|
|
|
2017-08-09 21:01:29 |
SAP Patch Tuesday Update Resolves 19 Flaws, Three High Severity (lien direct) |
SAP released 19 patches on Tuesday, including a trio of vulnerabilities marked high severity in its business management software.
|
|
|
|
|
2017-08-09 18:47:19 |
Mystery Company Offers $250,000 Bounty for VM Escape Vulnerabilities (lien direct) |
An unnamed firm is paying up to $250,000 for vulnerabilities related to its virtualization platform. |
|
|
|
|
2017-08-09 18:25:02 |
Signed Mughthesec Adware Hijacking Macs for Profit (lien direct) |
Mughthesec, a variant of the OperatorMac adware, has been turning hijacked Macs into revenue-generating machines for the authors. |
|
|
|
|
2017-08-09 16:39:14 |
Mozilla Fixes 29 Vulnerabilities in Firefox, Makes Flash Click-To-Activate (lien direct) |
Mozilla fixed three critical vulnerabilities and made Flash click-to-activate by default when it released Firefox 55 on Tuesday |
|
|
|
|
2017-08-09 14:06:21 |
Mamba Ransomware Resurfaces in Brazil, Saudi Arabia (lien direct) |
Researchers at Kaspersky Lab have seen a resurgence of Mamba ransomware pop up recently in Brazil and Saudi Arabia. |
|
|
|
|
2017-08-08 21:21:17 |
Microsoft Patches Critical Windows Search Vulnerability (lien direct) |
Microsoft patched 25 critical vulnerabilities, including a remote code execution bug in Windows Search. |
|
|
|
|
2017-08-08 20:34:08 |
Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity (lien direct) |
Attackers behind APT campaigns have kept busy in Q2 2017, adding new ways to bypass detection, crafting new payloads to drop, and identifying new zero days and backdoors to help them infect users and maintain persistence on machines.
|
|
|
|
|
2017-08-08 17:40:16 |
Flash Player Marches Toward End, Patches Two Code Execution Bugs in Latest Update (lien direct) |
Adobe today pushed out its first Flash Player update since announcing it would end-of-life the software in 2020. |
|
|
|
|
2017-08-08 12:12:01 |
Google Patches 10 Critical Bugs in August Android Security Bulletin (lien direct) |
Google's August Android Security Bulletin featured patches for nearly a dozen remote code execution bugs impacting Google's Pixel and Nexus handsets. |
|
|
|
|
2017-08-07 20:45:14 |
Marcus Hutchins\' Only Certainty is Uncertainty (lien direct) |
WannaCry hero Marcus Hutchins pleaded not guilty last week could be freed today on $30,000 bond before the case moves to Wisconsin. |
Guideline
|
Wannacry
|
|
|
2017-08-07 17:32:14 |
Tech Support Scammers Cast a Wider Net (lien direct) |
Microsoft is warning of a wave of phishing campaigns pushing tech support scams via malicious links to phony Amazon, Alibaba and LinkedIn web pages. |
|
|
|
|
2017-08-04 21:24:28 |
Attackers Use Typo-Squatting To Steal npm Credentials (lien direct) |
Criminals used a typo-squatting technique and uploaded rogue JavaScript libraries to a popular code repository npm. |
|
|
|
|
2017-08-04 18:24:55 |
Exploits Available for Siemens Molecular Imaging Vulnerabilities (lien direct) |
ICS-CERT published advisories this week warning users of Siemens molecular imaging products of publicly exploits for Windows 7 versions of those devices. |
|
|
|
|
2017-08-04 16:20:18 |
Tor Developer Busts Myths, Announces New Features (lien direct) |
Tor cofounder Roger Dingledine sets the record straight at DEF CON on popular myths, and at the same time teases upcoming features. |
|
|
|
|
2017-08-04 16:00:25 |
Threatpost News Wrap, August 4, 2017 (lien direct) |
The news of the week is discussed, including how Marcus Hutchins, aka MalwareTech was arrested in Las Vegas, Alex Stamos' Black Hat keynote, and this week's proposed IoT legislation.
|
|
|
|
|
2017-08-03 20:30:54 |
Cisco Fixes DoS, Authentication Bypass Vulnerabilities, OSPF Bug (lien direct) |
Cisco fixed two high severity vulnerabilities in two products this week that could have let an attacker trigger a denial of service condition or bypass local authentication. |
|
|
★★★★★
|
|
2017-08-03 19:57:30 |
WannaCry Hero Arrested, One of Two Charged with Distribution of Kronos Malware (lien direct) |
Marcus Hutchins, aka MalwareTech the WannaCry hero, was arrested and charged with another unnamed individual with creating and distributing the Kronos banking malware. |
|
Wannacry
|
★★★★
|
|
2017-08-03 18:04:58 |
WannaCry Bitcoin Withdrawn; \'Killswitch\' Researcher Detained in Nevada (lien direct) |
The WannaCry story has new life with the attacks having withdrawn the Bitcoin collected as ransom during the attacks, and with the detainment of killswitch researcher Marcus Hutchins in Nevada. |
|
Wannacry
|
★★★★★
|
|
2017-08-03 11:00:24 |
Two Popular IP Cameras Riddled With Vulnerabilities (lien direct) |
Two IP cameras sold by Loftek and VStartcam are leaving over 1.3 million users open to 21 vulnerabilities that range from a lack of HTTPS encryption to bugs that open users up to cross-site request forgery attacks. |
|
|
|
|
2017-08-02 19:11:33 |
IBM Patches Reflected XSS in Worklight, MobileFirst (lien direct) |
IBM fixed a cross-site scripting vulnerability in its Worklight and MobileFirst products that could have let an attacker steal sensitive information. |
|
|
|
|
2017-08-02 16:21:47 |
Will The Real Security Community Please Stand Up (lien direct) |
Black Hat may be the benchmark signaling the end of security nihilism and snark, and a re-prioritization of energy toward the greater good. |
|
|
|
|
2017-08-01 19:39:53 |
Legislation Proposed to Secure Connected IoT Devices (lien direct) |
Internet of Things Cybersecurity Improvement Act would mandate stringent security for connected devices sold to the federal government. |
|
|
|
|
2017-08-01 16:39:51 |
Amazon Halts Sale of Android Blu Phone Amid Spyware Concerns (lien direct) |
Amazon said it will halt sale of popular low-cost Android phones made by Blu Products because of reports software on the phone is collecting and sharing user data without owner consent. |
|
|
|
|
2017-08-01 16:28:41 |
Breach at Third Party Contractor Affects 18,000 Anthem Members (lien direct) |
Anthem last week began notifying 18,000 members affected by a data breach unrelated to 2015's.
|
|
|
|
|
2017-08-01 14:14:29 |
Pharmaceutical Giant Still Feeling NotPetya\'s Sting (lien direct) |
Pharmaceutical kingpin Merck reported that operational disruptions continue more than a month after the NotPetya wiper malware attacks. |
|
NotPetya
|
|
|
2017-08-01 12:00:59 |
Copyfish Browser Extension Hijacked to Spew Spam (lien direct) |
Makers of Copyfish OCR software get taken on wild ride after code for its Chrome extension is stolen. |
|
|
|
|
2017-07-31 20:33:44 |
ShieldFS Can Detect Ransomware, Recover Files (lien direct) |
At Black Hat last week, an add-on Windows driver and filesystem called ShieldFS was unveiled that detects ransomware and recovers files. |
|
|
|
|
2017-07-31 19:24:53 |
Voting Machines Hacked with Ease at DEF CON (lien direct) |
Hackers at DEF CON last week exploited vulnerabilities in electronic pollbooks and voting machines with ease. |
|
|
|
|
2017-07-31 18:28:23 |
Android Banking Trojan Svpeng Adds Keylogger (lien direct) |
The authors behind the Android banking malware family Svpeng have added a keylogger to a recent strain, giving attackers yet another way to steal sensitive data. |
|
|
|
|
2017-07-31 17:00:54 |
Microsoft Releases Outlook and Office Click-to-Run Patches (lien direct) |
Microsoft patched three new Outlook vulnerabilities and re-released updates from a broken June update. |
|
|
|
|
2017-07-31 12:00:33 |
How Google Shrunk The Android Attack Surface (lien direct) |
Google's top Android engineer describes how the attack surface is shrinking on the mobile operating system. |
|
|
|
|
2017-07-28 11:20:23 |
Shorting-For-Profit Viable Business Model For Security Community (lien direct) |
MedSec CEO Justine Bone said shorting companies to profit off discovered vulnerabilities is a viable business model for the security community. |
|
|
|
|
2017-07-27 23:30:15 |
Attack Uses Docker Containers To Hide, Persist, Plant Malware (lien direct) |
Abuse of the Docker API allows remote code execution on targeted system, which enables hackers to escalate and persists thanks to novel attacks called Host Rebinding Attack and Shadow Containers. |
|
|
|
|
2017-07-27 19:31:42 |
ShadowBrokers Remain an Enigma (lien direct) |
As we approach the first anniversary of the ShadowBrokers, their true identity and source of their stolen NSA exploits remains a mystery. |
|
|
|
|
2017-07-27 16:00:02 |
Google Study Quantifies Ransomware Profits (lien direct) |
A ransomware study released Google revealed the malware earned criminals $25 million over the past two years. |
|
|
|
|
2017-07-27 14:00:36 |
APT Group Uses Catfish Technique To Ensnare Victims (lien direct) |
APT Cobalt Gypsy or OilRig, used a fake persona called "Mia Ash" to ensnare tech-savvy workers in the oil and gas industry into downloading PupyRAT malware. |
|
APT 34
|
|
|
2017-07-27 00:57:58 |
Android Sypware Still Collects PII Despite Outcry (lien direct) |
Spyware called Adups found on millions of low-end phones is still collecting personal identifiable information of users despite public outcry. |
|
|
|
|
2017-07-26 23:00:57 |
Vulnerable Radiation Monitoring Devices Won\'t Be Patched (lien direct) |
Three radiation monitoring device vendors will not patch a handful of vulnerabilities that could be abused by hackers, including a backdoor that affords high privileges on one device. |
|
|
|
|
2017-07-26 18:33:06 |
Facebook Security Boss: Empathy, Inclusion Must Come to Security (lien direct) |
At Black Hat, Facebook CSO Alex Stamos' keynote message was one of bringing empathy and inclusion to security, and that it's time to stop being insular. |
|
|
|
|
2017-07-26 13:00:26 |
Windows SMB Zero Day to Be Disclosed During DEF CON (lien direct) |
Microsoft has said it will not patch a two-decade-old Windows SMB vulnerability, called SMBloris because it behaves comparably to the Slowloris attacks. The flaw will be disclosed and demonstrated during DEF CON. |
|
|
|
|
2017-07-25 17:00:04 |
Academia\'s Role in Security Skills Gap Examined (lien direct) |
At Black Hat, two RIT professors are expected to deliver a talk about the professional skills gap in security and how academic programs are falling short. |
|
|
|