Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-01-07 03:23:25 |
Only 9.27% of all npm developers use 2FA (lien direct) |
Two-factor authentication not widely adopted on npm, the de-facto JavaScript package manager, and the largest package repository on the internet. |
|
|
|
|
2020-01-06 12:47:47 |
Microsoft: RDP brute-force attacks last 2-3 days on average (lien direct) |
Microsoft publishes insights into RDP brute-force attacks from months-long 45,000 PC study. |
|
|
|
|
2020-01-06 10:35:36 |
UK government investigates possible cyberattack link to London Stock exchange outage (lien direct) |
It was thought the incident was down to software issues. Now, officials are not so sure. |
|
|
|
|
2020-01-06 07:01:11 |
Search engine for Japanese sex hotels announces security breach (lien direct) |
The 2010s decade ends with a major security breach at a search engine for finding love hotels across Japan. |
|
|
|
|
2020-01-06 02:27:12 |
DHS: Iran maintains a robust cyber program and can execute cyber-attacks against the US (lien direct) |
US Department of Homeland Security issues terror alert about possible Iran-sponsored terrorist acts and cyber-attacks. |
|
|
|
|
2020-01-05 07:30:09 |
School management software provider discloses severe security breach (lien direct) |
Active Network discloses security incident that impacted school online stores built on the Blue Bear platform. |
|
|
|
|
2020-01-04 00:36:36 |
DeathRansom evolves from joke to actual ransomware (lien direct) |
A highly active ransomware strain once considered a joke is now capable of encrypting files using a solid encryption scheme. |
Ransomware
|
|
|
|
2020-01-03 14:42:00 |
Company shuts down because of ransomware, leaves 300 without jobs just before holidays (lien direct) |
Company tells employees to seek new employment after suspending all operations right before Christmas. |
|
|
|
|
2020-01-03 09:49:27 |
New Year\'s Eve malware attack strikes Travelex, services still offline (lien direct) |
Customers are being told “planned maintenance" -- as well as malware -- has restricted currency ordering across UK services. |
Malware
|
|
|
|
2020-01-02 21:56:09 |
New USB cable kills your Linux laptop if stolen in a public place (lien direct) |
Building your own BusKill cable costs between $20 and $45. |
|
|
|
|
2020-01-02 18:41:00 |
Landry\'s restaurant chain disclose POS malware incident (lien direct) |
POS malware found on the network of 63 Landry's bar and restaurant brands. |
Malware
|
|
|
|
2020-01-02 13:26:07 |
FPGA cards can be abused for faster and more reliable Rowhammer attacks (lien direct) |
Researchers expand Rowhammer attacks to FPGA-CPU hybrid platforms. |
|
|
|
|
2020-01-02 10:54:00 |
Change your password: Poloniex cryptocurrency exchange reveals data leak (lien direct) |
Updated: Password resets are being forced following a leak of account credentials. |
|
|
|
|
2020-01-01 09:23:00 |
Chrome extension caught stealing crypto-wallet private keys (lien direct) |
A Google Chrome extension named Shitcoin Wallet is stealing passwords and wallet private keys, security researcher says. |
|
|
|
|
2019-12-30 21:53:41 |
Microsoft takes down 50 domains operated by North Korean hackers (lien direct) |
Microsoft takes control of 50 domains operated by Thallium (APT37), a North Korean cyber-espionage group. |
Cloud
|
APT 37
|
|
|
2019-12-30 12:00:00 |
Cyber security 101: Protect your privacy from hackers, spies, and the government (lien direct) |
Simple steps can make the difference between losing your online accounts or maintaining what is now a precious commodity: Your privacy. |
|
|
|
|
2019-12-30 06:00:05 |
US Coast Guard discloses Ryuk ransomware infection at maritime facility (lien direct) |
Ransomware infection led to a disruption of camera and physical access control systems, and loss of critical process control monitoring systems. |
Ransomware
|
|
|
|
2019-12-29 03:10:00 |
IoT vendor Wyze confirms server leak (lien direct) |
Details for 2.4 million users were exposed online for 22 days. |
|
|
|
|
2019-12-24 05:14:09 |
Google Chrome impacted by new Magellan 2.0 vulnerabilities (lien direct) |
Magellan 2.0 vulnerabilities were patched in Google Chrome 79.0.3945.79. |
|
|
|
|
2019-12-23 21:25:00 |
Russia successfully disconnected from the internet (lien direct) |
RuNet disconnection tests were successful, according to the Russian government. |
|
|
|
|
2019-12-23 06:15:00 |
Chinese hacker group caught bypassing 2FA (lien direct) |
Chinese state-sponsored group APT20 has been busy hacking government entities and managed service providers. |
|
APT 20
|
|
|
2019-12-21 00:10:23 |
Hacker who blackmailed Apple in 2017 gets no prison time (lien direct) |
Hacker threatened to factory reset more than 250 million iPhones if he didn't get $100,000. |
|
|
|
|
2019-12-20 22:32:00 |
Canada\'s broadcasting agency fines company behind the Orcus malware (lien direct) |
Canadian police filed criminal charges last month. |
Malware
|
|
|
|
2019-12-20 17:00:08 |
The most dangerous iOS, Android malware and smartphone vulnerabilities of 2019 (lien direct) |
Malware which resists removal to covert spying on locked smartphones -- mobile threats are becoming more complex and dangerous with each year that passes. |
Malware
|
|
|
|
2019-12-20 16:54:00 |
Hackers keep dumping Ring credentials online \'for the giggles\' (lien direct) |
Three cache of Ring user credentials have surfaced this week. |
|
|
|
|
2019-12-20 13:26:50 |
The biggest Internet of Things, smart home hacks of 2019 (lien direct) |
Attackers targeted everything from gas pumps to your smart TV this year. |
|
|
|
|
2019-12-20 10:11:23 |
Jet2 hacker, a former contractor with axe to grind, jailed for 10 months (lien direct) |
He lurked in the CEO's inbox to check if the airline knew of his involvement. |
|
|
|
|
2019-12-20 04:20:00 |
Apple opens public bug bounty program, publishes official rules (lien direct) |
Apple opens its previously-closed bug bounty program to all security researchers. |
|
|
|
|
2019-12-19 23:52:25 |
Wawa says POS malware incident impacts \'potentially all locations\' (lien direct) |
Wawa said the malware infection lasted between March and December 2019. |
Malware
|
|
|
|
2019-12-19 21:11:00 |
Frankfurt shuts down IT network following Emotet infection (lien direct) |
Frankfurt city officials take down IT network to prevent Emotet to be used as a staging point to launch a ransomware attack. |
Ransomware
|
|
|
|
2019-12-19 12:29:49 |
Man jailed for over five years after cyberstalking schoolmate, posting threats (lien direct) |
The campaign begun after the victim published a description of a traumatic sexual encounter at school. |
|
|
|
|
2019-12-19 05:30:09 |
Cryptocurrency-mining botnet uses a Taylor Swift image to hide malware payloads (lien direct) |
MyKingz (Smominru) botnet hides the malware it deploys on infected hosts inside a JPEG of Taylor Swift. |
Malware
|
|
|
|
2019-12-18 21:59:00 |
Member of \'The Dark Overlord\' hacking group extradited to the US (lien direct) |
British man arraigned in a US court today after fighting his extradition for months. |
|
|
|
|
2019-12-18 19:59:21 |
Google to revamp Patch Rewards program in 2020 (lien direct) |
Google to provide upfront financial aid to open-source projects. Until today, Google provided financial aid only after open-source projects implemented security features. |
|
|
|
|
2019-12-18 18:44:29 |
FBI warns against using free WiFi networks while traveling (lien direct) |
FBI: Use your phone's mobile data connection instead. |
|
|
|
|
2019-12-18 14:28:19 |
Executive dies, taking investor cryptocurrency with him. Now they want the body exhumed (lien direct) |
The CEO of Quadriga was the only one who could access user funds, but claims of his death have not satisfied everyone. |
|
|
|
|
2019-12-18 14:00:04 |
Another ransomware strain is now stealing data before encrypting it (lien direct) |
Data theft behavior has now been seen in infections with the Zeppelin ransomware. |
Ransomware
|
|
|
|
2019-12-18 12:58:00 |
Former Palo Alto Networks IT admin charged for running insider trading ring (lien direct) |
The five members allegedly generated millions of dollars in profit by trading confidential information. |
|
|
|
|
2019-12-18 12:23:17 |
FTC settles with Unroll.me over allegedly duping users over email data collection, sale (lien direct) |
The agency claimed that users were falsely told Unroll.me would not “touch” personal information contained in emails. |
|
|
|
|
2019-12-18 05:45:00 |
More than 38,000 people will stand in line this week to get a new password (lien direct) |
Yep, you read that right! A queue to pick up passwords. Now, you've seen it all! |
|
|
|
|
2019-12-18 01:07:15 |
Google fixes Chrome 79 data loss bug on Android (lien direct) |
The bug has been fixed in Chrome 79.0.3945.93 for Android, a Google spokesperson told ZDNet. |
|
|
|
|
2019-12-17 21:26:43 |
LifeLabs pays hackers to recover data of 15 million customers (lien direct) |
Data breach took place in early November, and hackers also gained access to 85,000 laboratory test results. |
Data Breach
|
|
|
|
2019-12-17 14:00:05 |
South Korean industrial giants slammed in active info-stealing APT campaign (lien direct) |
Over 200 companies are reported as victims of the covert cyberespionage effort. |
|
|
|
|
2019-12-17 13:22:37 |
Google Cloud inks new partnerships to boost cloud platform security (lien direct) |
McAfee, Palo Alto Networks, and Qualys are on the roster, as well as many other companies. |
|
|
|
|
2019-12-17 12:12:46 |
Lazarus pivots to Linux attacks through Dacls Trojan (lien direct) |
The Trojan is able to infect both Windows and Linux machines. |
|
APT 38
|
|
|
2019-12-17 11:26:36 |
Epilepsy Foundation files criminal complaint over seizure-inducing videos posted on Twitter (lien direct) |
Foundation says Twitter trolls have bombarded its Twitter feed with seizure-inducing content to harm epilepsy victims. |
|
|
|
|
2019-12-17 08:00:08 |
Mozilla to add second DNS-over-HTTPS (DoH) provider in Firefox (lien direct) |
NextDNS joins Cloudflare as second built-in Firefox DoH provider. |
|
|
|
|
2019-12-16 22:26:00 |
Microsoft: We never encourage a ransomware victim to pay (lien direct) |
Microsoft advocates for organizations to take preemptive measures. Says companies should treat cyberattacks "as a matter of when" and not "whether." |
Ransomware
|
|
|
|
2019-12-16 17:29:43 |
Web Cache Deception attacks still impact websites with \'substantial user populations\' (lien direct) |
Two years after first being disclosed, web cache deception attacks impact 25 of today's most popular websites. |
|
|
|
|
2019-12-14 16:19:00 |
One in every 172 active RSA certificates are vulnerable to attack (lien direct) |
Researchers say improper number generation can impact the security of keys used to protect everything from IoT to medical devices. |
|
|
|