What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-02-15 15:55:33 | Researchers Dissect Activity of Cybercrime Group Targeting Aviation, Other Sectors (lien direct) | Proofpoint's security researchers have taken a deep dive into the activity of TA2541, a threat actor targeting the aerospace, aviation, defense, manufacturing and transportation sectors for years. | Threat | ||
|
2022-02-15 14:52:09 | VMware Patches Vulnerabilities Reported by Researchers to Chinese Government (lien direct) | VMware vulnerabilities disclosed at China's Tianfu Cup hacking contest were also reported to Chinese government VMware on Tuesday announced that it has patched several high-severity vulnerabilities that were disclosed last year at a major Chinese hacking contest. | |||
|
2022-02-15 12:23:00 | QNAP Extends Security Updates for Some EOL Devices (lien direct) | Taiwan-based NAS and NVR solutions manufacturer QNAP Systems on Monday announced that it is extending the security update window for some devices that have reached end-of-life (EOL) status. QNAP typically provides security updates for four years after a product has reached EOL status. | |||
|
2022-02-15 11:55:33 | FBI Warns of BlackByte Ransomware Attacks on Critical Infrastructure (lien direct) | The BlackByte ransomware has been used in attacks on at least three critical infrastructure sectors in the United States, the Federal Bureau of Investigation (FBI) and the U.S. Secret Service (USSS) warn in a joint advisory. | Ransomware | ||
|
2022-02-15 11:45:09 | Moxa MXview Vulnerabilities Expose Industrial Networks to Attacks (lien direct) | Several vulnerabilities, including some that have been rated “critical,” were found in the past months in Moxa's MXview industrial network management software. | |||
|
2022-02-15 11:16:43 | Google Discovers Attack Exploiting Chrome Zero-Day Vulnerability (lien direct) | Google on Monday announced the release of 11 security patches for Chrome, including one for a vulnerability exploited in the wild. | Vulnerability | ||
|
2022-02-15 10:38:18 | \'Don\'t Be Google\': The Rise of Privacy Focused Startups (lien direct) | Google once used the slogan "don't be evil" to distinguish itself from its competitors, but now a growing number of pro-privacy startups are rallying to the mantra "don't be Google". They are taking on Google Analytics, a product used by more than half of the world's websites to understand people's browsing habits. | |||
|
2022-02-14 18:26:57 | Legit Security Raises $30M to Tackle Supply Chain Security (lien direct) | A team of Israeli entrepreneurs with roots in the application security ecosystem is taking a stab at software supply chain security with big backing from Bessemer Venture Partners. | |||
|
2022-02-14 16:19:09 | Webinar Tomorrow: Meet the Inventors of Onion Routing (lien direct) | Webinar reunites inventors of onion routing to talk about the past, present, and future of their invention | |||
|
2022-02-14 16:07:20 | Over 28,000 Vulnerabilities Disclosed in 2021: Report (lien direct) | Risk Based Security on Monday released its vulnerability report for 2021 and revealed that a record-breaking 28,695 flaws were disclosed last year, which represents a significant increase from the 23,269 disclosed in 2020. | Vulnerability | ||
|
2022-02-14 14:09:29 | Sardine Raises $19.5 Million for Fraud Prevention Platform (lien direct) | Behavior-based financial fraud prevention and compliance platform Sardine has completed a $19.5 million Series A funding round that brings the total raised by the company to $24.5 million. | |||
|
2022-02-14 13:43:17 | Tripwire for Real War? Cyber\'s Fuzzy Rules of Engagement (lien direct) | 
|
|||
|
2022-02-14 13:05:24 | CISA Again Warns U.S. Organizations of Potential Russian Cyberattacks (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is urging organizations to strengthen their security stance and stay on alert for potential Russian cyberattacks. | |||
|
2022-02-14 12:42:48 | Sophisticated FritzFrog P2P Botnet Returns After Long Break (lien direct) | A sophisticated botnet named FritzFrog has returned after a long break with new capabilities, and researchers believe it may be linked to Chinese threat actors. | Threat | ||
|
2022-02-14 11:41:11 | Cambodia Steps Up Surveillance With New Internet Gateway (lien direct) | Cambodia is powering up its new National Internet Gateway, a move activists say will allow the government to further silence the country's embattled opposition voices. | |||
|
2022-02-13 22:37:19 | Ransomware Gang Says it Has Hacked 49ers Football Team (lien direct) | The San Francisco 49ers have been hit by a ransomware attack, with cyber criminals claiming they stole some of the football team's financial data. | Ransomware | ||
|
2022-02-13 18:01:12 | Adobe Releases Emergency Patch for Exploited Commerce Zero-Day (lien direct) | Adobe released an emergency advisory on Sunday to inform Commerce and Magento users of a critical zero-day vulnerability that has been exploited in attacks. | Vulnerability | ||
|
2022-02-12 12:40:30 | CISA Says \'HiveNightmare\' Windows Vulnerability Exploited in Attacks (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added 16 new CVE identifiers to its list of known exploited vulnerabilities, including a Windows flaw that federal agencies are required to patch within two weeks. | Vulnerability | ||
|
2022-02-11 19:31:18 | Feds Oppose Immediate Release of Voting Machine Report (lien direct) | A federal cybersecurity agency is reviewing a report that alleges security vulnerabilities in voting machines used by Georgia and other states and says the document shouldn't be made public until the agency has had time to assess and mitigate potential risks. | |||
|
2022-02-11 16:08:22 | India-Linked Threat Actor Involved in Spying, Planting Evidence (lien direct) | For roughly a decade, a previously unknown advanced persistent threat (APT) actor has been engaging in long-term surveillance operations against academics, activists, journalists, human rights defenders, and law professionals, SentinelOne reports. | Threat | ||
|
2022-02-11 13:48:08 | Spanish Authorities Dismantle SIM Swapping Gang (lien direct) | Spanish authorities this week announced they arrested eight individuals that were part of a fraud ring that employed SIM swapping to compromise bank accounts. The suspects used phishing and impersonation to obtain the personal information of potential victims and then proceeded to take over online banking accounts to steal money. | |||
|
2022-02-11 12:29:54 | Google Paid Out $8.7 Million in Bug Bounty Rewards in 2021 (lien direct) | Google this week said it handed out a record $8.7 million in bug bounty payouts in 2021 as part of its Vulnerability Reward Programs (VRPs). A total of 696 researchers from 62 countries received bug bounties. | Vulnerability | ||
|
2022-02-11 11:47:47 | Lawmakers Introduce Combined Bill for Strengthening Critical Infrastructure Security (lien direct) | U.S. senators Gary Peters (D-MI) and Rob Portman (R-OH) this week introduced a legislative package whose goal is to strengthen the cybersecurity of critical infrastructure and government networks. | |||
|
2022-02-11 11:09:51 | Senators: CIA Has Secret Program That Collects American Data (lien direct) | The CIA has a secret, undisclosed data repository that includes information collected about Americans, two Democrats on the Senate Intelligence Committee said. While neither the agency nor lawmakers would disclose specifics about the data, the senators alleged the CIA had long hidden details about the program from the public and Congress. | |||
|
2022-02-11 09:47:55 | Vulnerabilities Found by Google Researchers in 2021 Got Patched on Average in 52 Days (lien direct) | Google's Project Zero has observed a decrease in the overall time vendors need to address vulnerabilities reported by the bug hunting team. Between 2019 and 2021, the team reported a total of 376 vulnerabilities and saw most of them (351) get patched. Of the remaining flaws, 14 are marked “WontFix” by the vendor and 11 remain unfixed. | |||
|
2022-02-10 22:22:00 | Alphabet\'s CapitalG Makes Big Bet on Salt Security (lien direct) | Salt Security is the latest addition to a growing list of cybersecurity startups boasting billion-dollar valuations. The Palo Alto, Calif.-based Salt Security on Thursday announced a new $140 million funding round that brings its valuation to $1.4 billion and signals heightened investor interest in the API security space. | |||
|
2022-02-10 20:27:37 | Apple Says WebKit Zero-Day Hitting iOS, macOS Devices (lien direct) | Apple's struggles with zero-day attacks on its iOS and macOS platforms are showing no signs of slowing down. For the second time in as many months, Cupertino released iOS, iPadOS and macOS updates to address a critical WebKit security defect (CVE-2022-22620) that exposes Apple devices to remote code execution attacks. | |||
|
2022-02-10 19:22:53 | Ransomware Recovery Startup Calamu Banks $16.5M Investment (lien direct) | Calamu, an early-stage cybersecurity startup building technology to help businesses recover from ransomware infections, has raised $16.5 million in venture capital funding. | Ransomware | ||
|
2022-02-10 18:54:55 | Data Protection and Privacy Firm Titaniam Raises $6 Million in Seed Funding (lien direct) | Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta Ventures and individual investors. Titaniam seeks to square the circle between data protection and data usability. | |||
|
2022-02-10 16:05:46 | 2021 Record Year for Cybersecurity M&A, Financing: Report (lien direct) | 2021 was a record year for the cybersecurity industry in terms of mergers and acquisitions, as well as funding activity, according to financial advisory firm Momentum Cyber. | |||
|
2022-02-10 13:59:51 | Meta Sues Two Nigerians Who Lured Facebook Users to Phishing Sites (lien direct) | Facebook parent company Meta this week announced it has taken legal action against two Nigerians for their alleged roles in financial scams targeting Facebook and Instagram users. | |||
|
2022-02-10 13:29:59 | New Vulnerabilities Can Allow Hackers to Remotely Crash Siemens PLCs (lien direct) | Siemens this week announced the availability of patches and mitigations for a series of severe vulnerabilities that can be exploited to remotely crash some of the company's SIMATIC products. | |||
|
2022-02-10 12:42:44 | Critical Code Execution Flaws Patched in \'PHP Everywhere\' WordPress Plugin (lien direct) | Thousands of WordPress websites were impacted by three remote code execution vulnerabilities that were identified in the PHP Everywhere plugin, the Wordfence team at WordPress security company Defiant warns. | |||
|
2022-02-10 11:59:02 | Ransomware Targeted 14 of 16 U.S. Critical Infrastructure Sectors in 2021 (lien direct) | US, UK and Australia Warn of Increase in Sophisticated Ransomware Attacks An increase in attack sophistication is proof of the growing threat that ransomware poses to all organizations, cybersecurity agencies from the United States, United Kingdom, and Australia said on Wednesday. | Ransomware Threat | ||
|
2022-02-10 11:45:19 | The SASE Conversation in 2022, a Resolution for the Future (lien direct) | SASE can be a game-changer to manage risk during the continuing journey to the cloud | |||
|
2022-02-10 11:37:14 | University Project Cataloged 1,100 Ransomware Attacks on Critical Infrastructure (lien direct) | A Temple University research project that tracks ransomware attacks on critical infrastructure has documented more than 1,100 incidents to date. | Ransomware | ||
|
2022-02-10 11:26:26 | Web Skimmer Injected Into Hundreds of Magento-Powered Stores (lien direct) | More than 500 online stores running the Magento 1 eCommerce platform were compromised with a digital skimmer, eCommerce security firm Sansec says. | |||
|
2022-02-09 16:42:13 | Canonic Software Emerges From Stealth With $6 Million and SaaS App Sandbox (lien direct) | Tel Aviv, Israel-based Canonic Security has emerged from stealth with $6 million seed funding from investors including First Round Capital, Elron Ventures, SV Angel and Operator Partners. The company provides a third-party app governance platform powered by an app sandbox. | |||
|
2022-02-09 16:14:55 | Russian Law Enforcement Take Down Several Cybercrime Forums (lien direct) | Russian authorities this week announced that they have seized Ferum Shop, Sky-Fraud, and Trump's Dumps, three well-known online shops for stolen payment card data. | |||
|
2022-02-09 15:49:22 | Hamas Cyberspies Return With New Malware After Exposure of Operations (lien direct) | A cyberespionage group linked in the past to the Palestinian terrorist organization Hamas took a break after its operations were exposed last summer and returned with new tools and techniques. | Malware | ||
|
2022-02-09 13:54:14 | Vulnerability Remediation Platform Vicarius Raises $24 Million (lien direct) | Vulnerability remediation platform Vicarius today announced it has raised $24 million in a Series A funding round led by AllegisCyber Capital, AlleyCorp, and JVP. The New York-based company's cloud-first, integrated platform – called Topia – helps organizations identify, prioritize and address software vulnerabilities before hackers can exploit them. | |||
|
2022-02-09 13:16:30 | Data Highlights Growing Threat From Intelligent Bots Operated at Scale by Cybercriminals (lien direct) | The intelligent bot revolution continues. Eighty-six percent of attacks against accounts are now driven by bots that have become 3 times more complex than those seen in earlier years – making it harder for security teams to detect bot signatures. | Threat | ||
|
2022-02-09 12:52:49 | FBI Received 1,600 SIM Swapping Complaints in 2021 (lien direct) | The Federal Bureau of Investigation (FBI) this week announced that between 2018 and 2021 its Internet Crime Complaint Center (IC3) received more than 1,900 complaints related to SIM swapping. | |||
|
2022-02-09 12:02:44 | Protecting Cryptocurrencies and NFTs - What\'s Old is New (lien direct) | Five steps that end-users can take to protect themselves against cryptocurrency losses | |||
|
2022-02-09 11:56:57 | (Déjà vu) ICS Patch Tuesday: Siemens, Schneider Electric Address Nearly 50 Vulnerabilities (lien direct) | Industrial giants Siemens and Schneider Electric released a total of 15 advisories on Tuesday to address nearly 50 vulnerabilities discovered in their products. Siemens | |||
|
2022-02-09 01:45:19 | Poland Launches Cybersecurity Military Unit (lien direct) | Poland's defense minister on Tuesday appointed an army general to head a new Cyber Defense Force to officially launch the unit's operation. | |||
|
2022-02-08 20:13:15 | SAP Customers Warned About Critical \'ICMAD\' Vulnerabilities (lien direct) | As part of its February 2022 Security Patch Day, German software maker SAP has announced the release of 13 new security notes and updates for five other security notes. | |||
|
2022-02-08 19:50:57 | Microsoft Patches for 51 Windows Security Defects (lien direct) | Microsoft's Patch Tuesday train rumbled into Windows networks with fixes for 51 documented security vulnerabilities, some serious enough to cause full computer takeover attacks. | |||
|
2022-02-08 18:42:59 | Adobe Patches 13 Vulnerabilities in Illustrator (lien direct) | Adobe's February Patch Tuesday updates address over a dozen vulnerabilities, most of which impact the company's Illustrator vector graphics software. | |||
|
2022-02-08 17:56:38 | Justice Dept. Announces $3.6B Crypto Seizure, 2 Arrests (lien direct) | The Justice Department announced Tuesday its largest-ever financial seizure - more than $3.5 billion - and the arrests of a New York couple accused of conspiring to launder billions of dollars in cryptocurrency stolen from the 2016 hack of a virtual currency exchange. | Hack |
To see everything:
Our RSS (filtrered)
