What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-01-04 14:25:00 | Insights On the Mobile Biometrics Global Market To 2028 - Increase In Platforms Using Biometric Authentication Drives Growth (lien direct) | Pas de details / No more details | ★★★ | ||
|
2023-01-04 00:51:00 | 2023 Will See Renewed Focus on Quantum Computing (lien direct) | Adopting post-quantum cryptography is something that has been discussed for years; it's time for organizations to get to work. | ★★ | ||
|
2023-01-03 21:25:36 | Cyberattackers Torch Python Machine Learning Project (lien direct) | The popular PyTorch Python project for data scientists and machine learning developers has become the latest open source project to be targeted with a dependency confusion attack. | ★ | ||
|
2023-01-03 20:20:00 | C2A Security To Showcase Automotive Cybersecurity DevOps Platform at CES In Las Vegas, January 5-8 (lien direct) | Pas de details / No more details | ★★ | ||
|
2023-01-03 19:03:00 | WordPress Sites Under Attack from Newly Found Linux Trojan (lien direct) | Researchers who discovered the backdoor Linux malware say it may have been around for more than three years - and it targets 30+ plugin bugs. | Malware | ★★ | |
|
2023-01-03 18:58:00 | Holiday Spirit? LockBit Gives Children\'s Hospital Free Decryptor (lien direct) | The Russian-speaking cybercrime gang said an affiliate violated its rules against attacks that could lead to bodily harm for medical patients. | Guideline Medical | ★★ | |
|
2023-01-03 16:55:17 | Raspberry Robin Worm Hatches a Highly Complex Upgrade (lien direct) | The Evil Corp-linked malware family has undergone an evolution, becoming more obfuscated and "several times more complex," as the group behind it tests how far the worm can be spread. | Malware | ★★★ | |
|
2023-01-03 16:43:00 | Chinese \'RedZei\' Group Batters Victims With Incessant Vishing Effort (lien direct) | The cybercriminals switch up carriers and SIM cards regularly, making it difficult for either mobile users or telecom companies to block the barrage of malicious calls and voicemails. | ★★ | ||
|
2023-01-03 16:01:21 | (Déjà vu) Name That Edge Toon: The Upside Down (lien direct) | Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. | ★ | ||
|
2023-01-03 15:00:00 | Are Meta and Twitter Ushering in a New Age of Insider Threats? (lien direct) | The era of digital trust is broken, and constant vigilance is needed to get things back on track. | ★★★ | ||
|
2023-01-03 14:00:00 | Black Hat Flashback: The Day That Dan Kaminsky Saved the Internet (lien direct) | Dark Reading's Kelly Jackson Higgins explains the enormous legacy left behind by Dan Kaminsky and his seminal "Great DNS Vulnerability" talk at Black Hat 2008. | ★★ | ||
|
2022-12-30 17:00:00 | API Security Is the New Black (lien direct) | API security is so hot right now. | ★★★★ | ||
|
2022-12-30 15:00:00 | War and Geopolitical Conflict: The New Battleground for DDoS Attacks (lien direct) | The effectiveness of attacks largely depends on organizations' distributed denial-of-service defenses. | ★★★ | ||
|
2022-12-30 14:50:00 | Adobe, Apple, Cisco, Microsoft Flaws Make Up Half of KEV Catalog (lien direct) | CISA's Known Exploited Vulnerabilities Catalog has become a valuable repository of vulnerabilities to be patched. A pair of reports analyze the vulnerabilities under attack to understand the kind of threats organizations should be prioritizing. | ★★★ | ||
|
2022-12-30 14:00:00 | Beyond the Obvious: The Boldest Cybersecurity Predictions for 2023 (lien direct) | Dark Reading's panel of security experts deliver a magnum of bubbly hot takes on what 2023 will look like, featuring evil AIs, WWIII, wild workplace soon-to-be-norms, and more. | ★★★ | ||
|
2022-12-29 19:00:00 | 6 Ways to Protect Your Organization Against LAPSUS$ (lien direct) | Businesses need to educate employees the type of social engineering attacks used by hacking group DEV-0537 (LAPSUS$) and strengthen their security posture. | ★★★ | ||
|
2022-12-29 17:00:00 | Extracting Encrypted Credentials From Common Tools (lien direct) | Attackers are harvesting credentials from compromised systems. Here's how some commonly used tools can enable this. | ★★★ | ||
|
2022-12-29 17:00:00 | 3 Industries, 3 Security Programs (lien direct) | Security leaders from a media corporation, a commercial real estate company, and an automotive technology company share how they address cyber-risk. | Guideline | ★★ | |
|
2022-12-29 15:00:00 | After the Uber Breach: 3 Questions All CISOs Should Ask Themselves (lien direct) | How CISOs handle the ethical issues around data breaches can make or break their careers. Don't wait until a breach happens to plot the course forward. | Uber Uber | ★★ | |
|
2022-12-29 14:00:00 | New Year\'s Surprise: Cybersecurity M&A, Funding Activity Snowballs in Q4 (lien direct) | Concerns about recessionary trends impacting the cybersecurity sector in 2022 remained largely unfounded in Q4, as investment activity surged after a Q3 slowdown. | ★★ | ||
|
2022-12-28 17:00:00 | Healthcare Providers and Hospitals Under Ransomware\'s Siege (lien direct) | According to the FBI and Internet Crime Complaint Center, 25% of ransomware complaints involve healthcare providers. | Ransomware | ★★ | |
|
2022-12-28 17:00:00 | When CISOs Are Ready to Hunt (lien direct) | This is what happens when a CISO gets tired of reacting to attacks and goes on the offensive. | ★★ | ||
|
2022-12-28 15:00:00 | Why Cyber Pros and Forensic Accountants Should Work Together to Mitigate Security Risk (lien direct) | It's time companies build a multilayered approach to cybersecurity. | ★★ | ||
|
2022-12-28 14:00:00 | Will the Crypto Crash Impact Cybersecurity in 2023? Maybe. (lien direct) | Will the bottom falling out of the cryptocurrency market have a profound impact on cybercriminal tactics and business models? Experts weigh in on what to expect. | ★★★ | ||
|
2022-12-28 05:15:00 | Securing and Improving User Experience for the Future of Hybrid Work (lien direct) | Digital transformation initiatives are challenging because IT still has to make sure performance doesn't suffer by making applications available from anywhere. | ★★ | ||
|
2022-12-27 17:00:00 | Why Attackers Target GitHub, and How You Can Secure It (lien direct) | The unfettered collaboration of the GitHub model creates a security headache. Follow these seven principles to help relieve the pain. | ★★ | ||
|
2022-12-27 17:00:00 | How to Get the Most Out of UEBA (lien direct) | Security teams are considering how to get the most out of user entity behavior analytics by taking advantage of its strengths and augmenting its limitations. | ★★ | ||
|
2022-12-27 15:00:00 | The Threat of Predictive Policing to Data Privacy and Personal Liberty (lien direct) | Inaccurate information from data brokers can damage careers and reputations. It's time for US privacy laws to change how law enforcement and legal agencies obtain and act on data. | Threat | ★★ | |
|
2022-12-27 14:00:00 | Internet AppSec Remains Abysmal & Requires Sustained Action in 2023 (lien direct) | A variety of initiatives - such as memory-safe languages and software bills of materials - promise more secure applications, but sustained improvements will require that vendors do much better, researchers agree. | ★★ | ||
|
2022-12-23 18:18:27 | Container Verification Bug Allows Malicious Images to Cloud Up Kubernetes (lien direct) | A complete bypass of the Kyverno security mechanism for container image imports allows cyberattackers to completely take over a Kubernetes pod to steal data and inject malware. | Uber | ★★ | |
|
2022-12-23 17:39:00 | LastPass Cops to Massive Breach Including Customer Vault Data (lien direct) | The follow-on attack from August's source-code breach could fuel future campaigns against LastPass customers. | LastPass | ★ | |
|
2022-12-23 17:15:00 | Videoconferencing Worries Grow, With SMBs in Cyberattack Crosshairs (lien direct) | Securing videoconferencing solutions is just one of many IT security challenges small businesses are facing, often with limited financial and human resources. | ★★★ | ||
|
2022-12-23 15:12:00 | Google: With Cloud Comes APIs & Security Headaches (lien direct) | APIs are key to cloud transformation, but two Google surveys find that cyberattacks targeting them are reaching a tipping point, even as general cloud security issues abound. | ★★★ | ||
|
2022-12-23 15:00:00 | Fool Me Thrice? How to Avoid Double and Triple Ransomware Extortion (lien direct) | To stay safer, restrict access to data, monitor for breaches in the supply chain, track relevant data that is sold on the Dark Web, and implement best safety practices. | Ransomware | ★★★ | |
|
2022-12-23 00:01:00 | Security Is a Second-Class Citizen in High-Performance Computing (lien direct) | Vendors and operators attempt to balance power and security, but right now, power is the highest goal. | ★★★★ | ||
|
2022-12-23 00:00:00 | What Kind of Data Gets Stolen When a Developer is Compromised? (lien direct) | What is the worst that can happen when a developer's machine is compromised? Depending on the developer's position, attackers gain access to nearly everything: SSH keys, credentials, access to CI/CD pipelines and production infrastructure, the works. | ★★★ | ||
|
2022-12-22 21:23:00 | New Brand of Security Threats Surface in the Cloud (lien direct) | Tech Insight report co-produced by Black Hat, Dark Reading, and Omdia examines how cloud security is evolving in a rapid race to beat threat actors to the (cloud) breach. | Threat | ★★★ | |
|
2022-12-22 21:07:00 | Inside the Next-Level Fraud Ring Scamming Billions Off Holiday Retailers (lien direct) | "Largest attack of its kind": A potent Southeast Asian e-commerce fraud ring has declared war on US retailers, targeting billions in goods in just the past month and forcing mules into its scheme. | ★★★ | ||
|
2022-12-22 21:00:00 | Biden Signs Post-Quantum Cybersecurity Guidelines Into Law (lien direct) | The new law holds the US Office of Budget and Management to a road map for transitioning federal systems to NIST-approved PQC. | ★★★ | ||
|
2022-12-22 15:31:00 | Passwordless Authentication Market to Be Worth $55.7 Billion by 2030: Grand View Research, Inc. (lien direct) | Pas de details / No more details | ★★★ | ||
|
2022-12-22 15:09:19 | Security on a Shoestring? Cloud, Consolidation Best Bets for Businesses (lien direct) | With a recession potentially coming, some companies are cutting security teams. But moving more infrastructure to the cloud and reducing the number of vendors through consolidation may be the best ways to prepare. | ★★★ | ||
|
2022-12-22 15:00:01 | Google WordPress Plug-in Bug Allows AWS Metadata Theft (lien direct) | A successful attacker could use the SSRF vulnerability to collect metadata from WordPress sites hosted on an AWS server, and potentially log in to a cloud instance to run commands. | Vulnerability | ★★★ | |
|
2022-12-22 15:00:00 | Threat Modeling in the Age of OpenAI\'s Chatbot (lien direct) | New technical chatbot capabilities raise the promise that their help in threat modeling could free humans for more interesting work. | Threat | ★★★ | |
|
2022-12-22 15:00:00 | \'Sextortion,\' Business Disruption, and a Massive Attack: What Could Be in Store for 2023 (lien direct) | Our growing interconnectedness poses almost as many challenges as it does benefits. | ★★★ | ||
|
2022-12-22 14:03:02 | Zerobot Adds Brute Force, DDoS to Its IoT Attack Arsenal (lien direct) | Threat actors continue to evolve the malicious botnet, which has also added a list of new vulnerabilities it can use to target devices. | Threat | ★★★ | |
|
2022-12-21 22:00:00 | Supply Chain Risks Got You Down? Keep Calm and Get Strategic! (lien direct) | Security leaders must maintain an effective cybersecurity strategy to help filter some of the noise on new vulnerabilities. | Guideline | ★★★ | |
|
2022-12-21 20:45:00 | Ransomware Attackers Bypass Microsoft\'s ProxyNotShell Mitigations With Fresh Exploit (lien direct) | The Play ransomware group was spotted exploiting another little-known SSRF bug to trigger RCE on affected Exchange servers. | Ransomware | ★★★★ | |
|
2022-12-21 20:12:00 | Heartland Alliance Provides Notice of Data Security Incident (lien direct) | Pas de details / No more details | ★★ | ||
|
2022-12-21 20:00:00 | Best Practices for Securing and Governing Your Multicloud Deployment (lien direct) | Organizations can start by integrating functions like detection, prioritization, and remediation on to a single platform. | ★★★ | ||
|
2022-12-21 18:38:26 | (Déjà vu) Name That Toon: Kiss and Tell (lien direct) | Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. | ★★ |
To see everything:
Our RSS (filtrered)
