What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-01-07 12:07:57 | Polish Leader Admits Country Bought Powerful Israeli Spyware (lien direct) | Poland's most powerful politician has acknowledged that the country bought advanced spyware from the Israeli surveillance software maker NSO Group, but denied that it was being used to target his political opponents. | |||
|
2022-01-07 11:38:19 | Thousands of School Websites Go Offline Due to Ransomware Attack on Finalsite (lien direct) | Thousands of school websites around the world went offline this week as a result of a ransomware attack on Finalsite, a US-based company that provides digital marketing and communications solutions to schools. On its website, Finalsite claims that 8,000 schools across 110 countries use its services, and it launches 300 new websites every year. | Ransomware | ||
|
2022-01-07 11:09:37 | Swiss Army Knifes WhatsApp at Work (lien direct) | Switzerland's army has banned the use of WhatsApp whilst on duty, a spokesman confirmed Thursday, in favour of a Swiss messaging service deemed more secure in terms of data protection. The ban also applies to using other messaging apps like Signal and Telegram on soldiers' private phones during service operations. | |||
|
2022-01-07 01:00:47 | Rights Group Verifies Polish Senator Was Hacked With Spyware (lien direct) | Amnesty International said Thursday it has independently confirmed that powerful spyware from the Israeli surveillance software maker NSO Group was used to hack a Polish senator multiple times in 2019 when he was running the opposition's parliamentary election campaign. | Hack | ||
|
2022-01-06 20:22:05 | Biometric Face Authentication Firm iProov Takes $70M Investment (lien direct) | iProov, a provider of online biometric face authentication, announced on Thursday that it has received a $70 million growth investment from Sumeru Equity Partners. | |||
|
2022-01-06 16:08:23 | Fresh Warnings Issued Over Abuse of Google Services (lien direct) | U.S. government agencies and cybersecurity companies are warning users and organizations about cybercriminals abusing Google services to achieve their goals. FBI warns about Google Voice abuse | |||
|
2022-01-06 14:54:23 | Microsoft Announces Zero-Touch Onboarding for \'Defender for Endpoint\' on iOS (lien direct) | Microsoft this week announced the public preview of zero-touch onboarding for Defender for Endpoint on iOS. With the new capability, organizations can deploy Defender for Endpoint on iOS across devices in their environment without requiring any form of user interaction, as long as those devices are enrolled with Microsoft Endpoint Manager. | |||
|
2022-01-06 14:11:07 | Senators Ask DHS, DOT About Transportation Infrastructure Cybersecurity (lien direct) | Several U.S. senators have sent a letter to the Department of Homeland Security (DHS) and the Department of Transportation (DOT), requesting information about the cybersecurity of the nation's transportation infrastructure. | |||
|
2022-01-06 13:49:20 | The Second Building Block for the SOC of the Future: An Open Integration Framework (lien direct) | The SOC of the future must be data driven, so it's essential that systems and tools can work together | |||
|
2022-01-06 13:18:21 | NY AG: Credential Stuffing Impacts 1.1 Million Users at 17 Companies (lien direct) | New York Attorney General Letitia James this week announced the results of an investigation into credential stuffing, which resulted in the discovery of 1.1 million compromised accounts associated with 17 companies. | |||
|
2022-01-06 12:00:16 | Hackers Hit Major Portuguese Media Group, Take Down Websites (lien direct) | One of Portugal's leading media conglomerates said Thursday that a group calling itself “Lapsus$” hacked the company's online services, taking down some of its most popular websites and contacting subscribers. | Guideline | ★★★★ | |
|
2022-01-06 11:46:29 | Chemicals Company Element Solutions Discloses Cybersecurity Incident (lien direct) | Florida-based specialty chemicals company Element Solutions on Wednesday revealed that it had experienced a cybersecurity incident. | ★★★★ | ||
|
2022-01-06 11:14:56 | France Hits Google, Facebook With Huge Fines Over \'Cookies\' (lien direct) | French regulators have hit Google and Facebook with 210 million euros ($237 million) in fines over their use of "cookies", the data used to track users online, authorities said Thursday. | ★★★★ | ||
|
2022-01-05 18:57:25 | Malware Can Fake iPhone Shutdown via \'NoReboot\' Technique (lien direct) | Researchers at mobile security firm ZecOps have shown how a piece of iOS malware can achieve “persistence” on a device by faking its shutdown process. | Malware | ||
|
2022-01-05 17:59:41 | Zloader Banking Malware Exploits Microsoft Signature Verification (lien direct) | The aggressive Zloader banking malware campaign is exploiting Microsoft's digital signature verification method to inject code into a signed system DLL, according to researchers at Check Point. | Malware | ||
|
2022-01-05 17:47:55 | VMware Plugs Security Holes in Workstation, Fusion and ESXi (lien direct) | VMware this week shipped security updates for its Workstation, Fusion and ESXi product lines, warning that a heap-overflow vulnerability could expose users to code execution attacks. | Vulnerability | ||
|
2022-01-05 16:41:14 | Recorded Future Acquires SecurityTrails in $65M Deal (lien direct) | With eyes firmly set on the booming attack surface management space, threat intel powerhouse Recorded Future is shelling out $65 million to purchase SecurityTrails, a startup that helps organizations keep track of internet-facing assets. | Threat | ||
|
2022-01-05 15:14:27 | ICS Vendors Respond to Log4j Vulnerabilities (lien direct) | 
|
|||
|
2022-01-05 14:53:28 | Defense Contractors Must do More to Conceal Their Attack Surface (lien direct) | The world is entering a new era dominated by the rise of peer competitors like China and Russia, who are increasingly exerting their geo-political influence. After two decades of fighting a counter terrorist focused war where the tools of the US and its allies were far superior, the competitive landscape is changing significantly. | ★★★★★ | ||
|
2022-01-05 13:15:17 | (Déjà vu) Chrome 97 Patches 37 Vulnerabilities (lien direct) | Google this week announced the release of Chrome 97 in the stable channel with a total of 37 security fixes, including 24 for vulnerabilities reported by external researchers. | |||
|
2022-01-05 12:24:25 | Google Patches 48 Vulnerabilities With First Set of 2022 Android Updates (lien direct) | Google this week published information on the first set of 2022 security updates for Android, describing a total of 48 vulnerabilities that were addressed across Android OS, Pixel devices, and Android Automotive OS. | |||
|
2022-01-05 12:13:01 | FTC: Patch Log4j Vulnerability to Avoid Potential Legal Action (lien direct) | The U.S. Federal Trade Commission (FTC) on Tuesday informed companies that they could face legal action if their customers are impacted by an attack that involves exploitation of the recent Log4j vulnerabilities. | Vulnerability | ||
|
2022-01-05 10:58:58 | (Déjà vu) Broward Health Data Breach Impacts 1.3 Million People (lien direct) | More than 1.3 million people were impacted in a data breach at Broward Health, the Florida hospital system has revealed. | Data Breach | ||
|
2022-01-04 19:35:24 | Anti-Bot Fraud Detection Firm HUMAN Snags $100M Investment (lien direct) | Enterprise anti-bot and fraud detection startup HUMAN Security has closed a new $100 million funding round and announced plans to expand into new product categories. | |||
|
2022-01-04 16:40:52 | Google Acquires Siemplify in Ambitious Cybersecurity Push (lien direct) | Google has expanded its push into the lucrative cybersecurity business with a new deal to acquire Siemplify, a late-state Israeli startup selling SOAR (security orchestration, automation and response) technology. Financial terms of the transaction were not released but reports out of Israel peg the price tag in the range of $500 million. | ★★★ | ||
|
2022-01-04 15:43:23 | Saltzer Health Informs Patients of Personal Information Exposure (lien direct) | Intermountain Healthcare-owned Saltzer Health is informing patients that their personal information might have been compromised after an unauthorized party gained access to an employee email account. | |||
|
2022-01-04 14:53:54 | Cyber Insurance Firm Corvus Expands With Acquisition of UK-Based Tarian (lien direct) | Boston-based cyber insurance company Corvus on Tuesday announced the acquisition of UK-based cyber underwriting platform Tarian Underwriting Limited from Beat Capital Partners. Following the acquisition, Tarian will become Corvus Underwriting Limited. Corvus claims it is the first insurtech company to acquire a London underwriting platform. | |||
|
2022-01-04 13:24:27 | Unpatched HomeKit Vulnerability Exposes iPhones, iPads to DoS Attacks (lien direct) | A researcher claims Apple has failed to patch a potentially serious vulnerability that can be exploited to launch denial-of-service (DoS) attacks against iPhones and iPads. | Vulnerability | ||
|
2022-01-04 12:19:12 | Predictions: SecurityWeek\'s 2022 Cybersecurity Outlook (lien direct) | 
|
★★★★★ | ||
|
2022-01-04 11:31:08 | Skimmer Injected Into 100 Real Estate Websites via Cloud Video Platform (lien direct) | More than 100 real estate websites belonging to the same parent company were injected with web skimmer code via an unnamed cloud video platform. Increasingly popular, skimmer attacks involve the use of malicious JavaScript code to steal data provided by users on the targeted website. | |||
|
2022-01-04 03:51:52 | Broward Health Hit With Data Breach on Patients, Staff (lien direct) | The Broward Health hospital system on Saturday said it suffered a data breach in October where a hacker accessed personal and medical information of patients and staff. | Data Breach | ||
|
2022-01-03 18:13:01 | Hospitality Chain Says Employee Data Stolen in Ransomware Attack (lien direct) | Hospitality chain McMenamins has confirmed that employee information dating back to January 1998 was compromised in a recent data extortion ransomware attack. | Ransomware | ||
|
2022-01-03 18:06:17 | CrowdStrike Beefs Up Exploit Detection With Intel CPU Telemetry (lien direct) | Anti-malware giant CrowdStrike says it is using telemetry from Intel processors to help detect and thwart sophisticated software exploits that bypass traditional OS-based defenses. | |||
|
2022-01-03 16:37:35 | IoT\'s Importance is Growing Rapidly, But Its Security Is Still Weak (lien direct) | The explosive growth of IoT devices opens an extensive attack surface that needs to be addressed | |||
|
2022-01-03 15:24:07 | Shopping Platform PulseTV Discloses Potential Breach Impacting 200,000 People (lien direct) | PulseTV has started notifying roughly 200,000 users that their personal information and credit card data might have been compromised as a result of a cybersecurity breach. | |||
|
2022-01-03 14:55:24 | Sophisticated iLOBleed Rootkit Targets HP Servers (lien direct) | An Iranian cybersecurity firm claims to have discovered a sophisticated rootkit that is designed to target HP servers. | |||
|
2022-01-03 14:26:16 | Quantum Computing Is for Tomorrow, But Quantum-Related Risk Is Here Today (lien direct) | 
|
Threat | ||
|
2022-01-03 13:45:00 | Multiple Vulnerabilities Impact Netgear Nighthawk R6700 Routers (lien direct) | Netgear Nighthawk R6700v3 routers running the latest firmware are affected by multiple vulnerabilities. Details of the flaws were disclosed last week by Tenable after the vendor failed to release patches. | |||
|
2022-01-03 12:42:56 | Israeli Media Outlets Hacked on Soleimani Killing Anniversary (lien direct) | Two major Israeli media outlets were hacked early Monday with a threatening message that appeared linked to the killing of a top Iranian general two years ago. | |||
|
2022-01-03 12:16:05 | ACLU Demands Answers About Transit Agency Data Breach (lien direct) | The American Civil Liberties Union of Rhode Island is demanding more answers about a data breach at the state's public bus service, including why the personal information of state employees who don't even work for the agency was compromised. | Data Breach | ||
|
2022-01-03 11:01:52 | (Déjà vu) Cybersecurity M&A Roundup: 35 Deals Announced in December 2021 (lien direct) | 
|
|||
|
2021-12-31 12:38:28 | A New Year Will Bring New Targets: What to Look for in 2022 (lien direct) | There's no way to put it nicely: cybercrime just continues to get worse as we become increasingly connected. 2020 was a banner year for ransomware – and by all accounts, it's almost certain that 2021 will top it. And as we move into 2022, not only do defenders need to put more scrutiny on the attack vectors they're already focused on, but now they will need to expand that view to new targets. | Ransomware | ||
|
2021-12-30 14:27:22 | What to Expect in 2022: Microservices Will Bring Macro Threats (lien direct) | If not addressed in design and deployment, the risks with microservices can multiply since any application could be composed of hundreds of microservices | |||
|
2021-12-29 17:44:14 | LastPass Automated Warnings Linked to \'Credential Stuffing\' Attack (lien direct) | Users of the popular LastPass password manager are being targeted in so-called “credential stuffing” attacks that use email addresses and passwords obtained from third-party breaches. | LastPass | ★★★ | |
|
2021-12-29 17:21:27 | Chinese Spies Exploit Log4Shell to Hack Major Academic Institution (lien direct) | China-linked cyberespionage group Aquatic Panda was recently observed exploiting the Log4Shell vulnerability to compromise a large academic institution, CrowdStrike's Falcon OverWatch team reports. | Hack Vulnerability | ||
|
2021-12-29 15:27:57 | The Right to Work and Non-Competes in the Security Industry (lien direct) | Those who actively threaten or work against the right to work act against the interests of the security community as a whole | |||
|
2021-12-29 15:22:46 | Storage Devices of Major Vendors Impacted by Encryption Software Flaws (lien direct) | Storage devices from several major vendors are affected by vulnerabilities discovered by a researcher in third-party encryption software they all use. | |||
|
2021-12-29 12:35:10 | Another Remote Code Execution Vulnerability Patched in Log4j (lien direct) | The developers of Log4j have patched another remote code execution vulnerability affecting the widely used logging utility. | Vulnerability | ||
|
2021-12-29 11:38:59 | Norwegian Media Firm Amedia Suffers Disruption Due to Cyberattack (lien direct) | Norwegian media company Amedia on Tuesday announced that it fell victim to a cyberattack that forced it to shut down multiple systems. The second largest media company in Norway, Amedia owns 50 local and regional online and printed newspapers, as well as the Avisenes Nyhetsbyrå news agency. | |||
|
2021-12-29 11:13:27 | Poland\'s Tusk Calls Spyware Use \'Crisis for Democracy\' (lien direct) | Polish opposition leader Donald Tusk on Tuesday said reports the government spied on its opponents represented the country's biggest "crisis for democracy" since the end of communism. | Guideline |
To see everything:
Our RSS (filtrered)
