What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-05-31 10:18:26 | Activists Launch Action Against \'Cookie Banner Terror\' (lien direct) | A group of online privacy activists said Monday it is taking action against hundreds of websites over their use of pop-up banners asking users to consent to "cookies", the files that track users' activity. | |||
|
2021-05-30 14:19:20 | US Says Agencies Largely Fended Off Latest Russian Hack (lien direct) | The White House says it believes U.S. government agencies largely fended off the latest cyberespionage onslaught blamed on Russian intelligence operatives, saying the spear-phishing campaign should not further damage relations with Moscow ahead of next month's planned presidential summit. | Hack | ||
|
2021-05-28 19:25:58 | Nuclear Flash Cards: US Secrets Exposed on Learning Apps (lien direct) | US troops charged with guarding nuclear weapons in Europe used popular education websites to create flash cards, exposing their exact locations and top-secret security protocols, according to the investigative site Bellingcat Friday. | |||
|
2021-05-28 18:55:40 | Security Analytics Firm Uptycs Raises $50 Million (lien direct) | Cloud-native security analytics provider Uptycs has closed a $50 million Series C funding round, bringing the total raised by the company to date up to $93 million. The latest funding round was led by Norwest Venture Partners, with additional participation from Sapphire Ventures and ServiceNow Ventures. | |||
|
2021-05-28 15:08:02 | Newly Disclosed Vulnerability Allows Remote Hacking of Siemens PLCs (lien direct) | Researchers at industrial cybersecurity firm Claroty have identified a serious vulnerability that can be exploited by a remote and unauthenticated attacker to hack some of the programmable logic controllers (PLCs) made by Siemens. | Hack Vulnerability | ||
|
2021-05-28 14:37:28 | Resilience: RSA Conference 2021 (lien direct) | For many of us, RSA Conference 2020 in San Francisco was the last time we came together as a community, met with colleagues, and saw new technology offerings. It was one of the last global events held in person before the lockdown, and since that time, we've had to switch to digital methods for interaction and communication. | |||
|
2021-05-28 14:09:57 | Chinese Hackers Started Covering Tracks Days Before Public Exposure of Operations (lien direct) | One of the Chinese threat actors targeting Pulse Secure VPN appliances via a recently disclosed vulnerability has been attempting to cover its tracks by removing its webshells from victim networks, FireEye reports. | Vulnerability Threat | ||
|
2021-05-28 13:35:15 | Canada Post Says 950,000 Customers Hit by Breach at Supplier (lien direct) | Canada Post, the primary postal operator in Canada, has informed 44 of its large business customers that some information was compromised as a result of a malware attack at a supplier. | Malware | ||
|
2021-05-28 12:36:15 | FBI Shares IOCs for APT Attacks Exploiting Fortinet Vulnerabilities (lien direct) | The FBI on Thursday published indicators of compromise (IOCs) associated with the continuous exploitation of Fortinet FortiOS vulnerabilities in attacks targeting commercial, government, and technology services networks. | |||
|
2021-05-28 11:28:41 | SolarWinds Hackers Impersonate U.S. Government Agency in New Attacks (lien direct) | The Russia-linked threat group believed to be behind the SolarWinds attack has been observed launching a new campaign this week. | Threat | ||
|
2021-05-27 19:05:11 | What Cybersecurity Can Learn From Video Games (Part II) (lien direct) | By taking some lessons from outside our cybersecurity sandbox, we can address some of the significant challenges in cybersecurity | |||
|
2021-05-27 18:53:01 | U.S. Charges 22 in Stolen Payment Cards Crackdown (lien direct) | The U.S. Justice Department this week announced indictments against 22 individuals who allegedly purchased and used payment cards stolen from a national retail chain. | |||
|
2021-05-27 17:59:19 | Japanese Ministries Confirm Impact from Fujitsu Data Breach (lien direct) | Japan's Ministry of Foreign Affairs and Ministry of Land, Infrastructure, Transport and Tourism this week confirmed impact from a data breach at service provider Fujitsu Limited. | Data Breach | ||
|
2021-05-27 15:01:20 | DataDome Raises $35 Million for Its Anti-Bot Solution (lien direct) | DataDome, a company that provides a SaaS solution for protecting businesses against bad bots and fraud, this week announced that it raised $35 million in a Series B funding round. | |||
|
2021-05-27 14:24:34 | US Pipelines Ordered to Increase Cyber Defenses After Hack (lien direct) | U.S. pipeline operators will be required for the first time to conduct a cybersecurity assessment under a Biden administration directive in response to the ransomware hack that disrupted gas supplies in several states this month. | Ransomware Hack | ||
|
2021-05-27 14:09:48 | Vulnerabilities in Visual Studio Code Extensions Expose Developers to Attacks (lien direct) | Vulnerabilities in Visual Studio Code extensions could be exploited by malicious attackers to steal valuable information from developers and even compromise organizations, researchers with open-source software security firm Snyk say. | |||
|
2021-05-27 13:42:16 | Facebook Adapts Defenses as Deception Campaigns Go Stealth (lien direct) | Facebook said Wednesday that it has disrupted more than 150 deceptive influence schemes since 2017, with Russia the biggest single source, as culprits strive to stay "under the radar." | |||
|
2021-05-27 13:23:00 | Why Evaluating Cybersecurity Prior to Mergers and Acquisitions is Necessary (lien direct) | Timely response and proactive investigation can help lessen the potential negative impact poor cyber hygiene can have on a business acquisition | |||
|
2021-05-27 13:17:43 | NASA Identified Over 6,000 Cyber Incidents in Past 4 Years (lien direct) | The U.S. National Aeronautics and Space Administration (NASA) identified more than 6,000 cyber-related incidents in the last four years, according to a report published this month by NASA's Office of Inspector General. | |||
|
2021-05-27 11:45:14 | Email Protection Firm Material Security Raises $40 Million (lien direct) | Email protection company Material Security this week announced that it raised $40 million in Series B funding, which brings the capital raised by the firm to date to $62 million. Founded in 2017, the Redwood City, California-based company is focused on protecting email accounts both before and after compromise. | |||
|
2021-05-27 11:13:16 | Siemens Addresses Code Execution Vulnerabilities Found in Popular CAD Library (lien direct) | Siemens on Tuesday released an advisory to inform customers about several high-severity vulnerabilities affecting its Solid Edge product. The flaws are introduced by fourth-party software that is also used by many other organizations. | |||
|
2021-05-27 10:33:45 | EU Privacy Groups Set Sights on Facial Recognition Firm (lien direct) | Privacy organisations on Thursday complained to regulators in five European countries over the practices of Clearview AI, a company that has built a powerful facial recognition database using images "scraped" from the web. | |||
|
2021-05-27 08:32:48 | New Iranian Group \'Agrius\' Launches Destructive Cyberattacks on Israeli Targets (lien direct) | Over the past year, an Iran-linked threat actor named Agrius has been observed launching destructive attacks on Israeli targets, under the disguise of ransomware attacks, according to endpoint security company SentinelOne. | Ransomware Threat | ||
|
2021-05-27 03:48:25 | Code Execution Flaw in Checkbox Survey Exploited in the Wild (lien direct) | A Checkbox Survey vulnerability that could allow a remote attacker to execute arbitrary code without authentication is being exploited in the wild, the CERT Coordination Center (CERT/CC) at Carnegie Mellon University warns. | Vulnerability | ||
|
2021-05-26 19:29:45 | US Exchanges Offer a Rich Potential Target for Hackers (lien direct) | Cyberattacks have long been seen as a threat to financial markets, but worries are becoming even more acute following a US pipeline hack that set off a public panic and forced the company to pay a ransom. Financial exchanges that manage daily transactions of tens or hundreds of billions of dollars are an appealing target for hackers. | Hack Threat | ||
|
2021-05-26 15:13:27 | Virtual Event Keynote: John Lambert, Microsoft Threat Intelligence Center (lien direct) | 
John Lambert, GM at the Microsoft Threat Intelligence Center, will provide a keynote at SecurityWeek's Threat Intelligence Summit on May 26th at 12PM ET.
|
Threat | ||
|
2021-05-26 14:57:13 | Salt Security Raises $70 Million in Series C Funding (lien direct) | Palo Alto, California-based API protection company Salt Security today announced that it raised $70 million in Series C funding, which brings the total raised to date to $131 million. | |||
|
2021-05-26 14:29:30 | VMware Urges Customers to Immediately Patch Critical vSphere Vulnerability (lien direct) | VMware has urged customers to immediately patch a critical vulnerability affecting vCenter Server, the management interface for vSphere environments. The vulnerability, tracked as CVE-2021-21985, was reported to VMware by Ricter Z of 360 Noah Lab and it has been patched in versions 6.5, 6.7 and 7.0 of vCenter Server. | Vulnerability | ||
|
2021-05-26 14:26:46 | The VC View: Identity = Zero Trust for Everything (lien direct) | Identity very much seems to be an acquired taste… Most everyone's first experience with identity comes down to usernames and passwords. And that's enough for most users, “just let me get past this screen so I can do what I'm trying to do.” | |||
|
2021-05-26 12:57:57 | \'World\'s Leading Bank Robbers\': North Korea\'s Hacker Army (lien direct) | Nuclear-armed North Korea is advancing on the front lines of cyberwarfare, analysts say, stealing billions of dollars and presenting a clearer and more present danger than its banned weapons programmes. | |||
|
2021-05-26 12:13:56 | Half-Double: Google Researchers Find New Rowhammer Attack Technique (lien direct) | A team of researchers from Google has identified a new Rowhammer attack technique that works against recent generations of dynamic random-access memory (DRAM) chips. | |||
|
2021-05-26 11:24:56 | Google Patches 32 Vulnerabilities With Release of Chrome 91 (lien direct) | Google on Tuesday announced the release of Chrome 91 to the stable channel. The latest update patches a total of 32 vulnerabilities. Of the addressed issues, 21 vulnerabilities were discovered by external researchers, including 8 high-severity bugs, 8 medium-severity flaws, and 5 low-severity security holes. | |||
|
2021-05-26 10:31:30 | Rising Cyberattacks in West Highlight Vulnerabilities (lien direct) | A series of high-profile cyberattacks on targets in the West have highlighted the vulnerability of companies and institutions, making the issue a higher public priority but with no easy solution. | Vulnerability | ||
|
2021-05-26 00:49:35 | Belgium Interior Ministry Targeted in Cyber Attack (lien direct) | The Belgian interior ministry has found itself the target of "sophisticated" cyber espionage, a spokesman told RTBF public television on Tuesday. | |||
|
2021-05-25 19:44:54 | The Rise of Continuous Attack Surface Management (lien direct) | In the merry-go-round world of InfoSec technologies and “what's old is new again,” this year we should include Attack Surface Management with a dash of Continuous. | |||
|
2021-05-25 19:32:16 | Hack Prompts New Security Regulations for US Pipelines (lien direct) | The federal government will issue cybersecurity regulations in the coming days for U.S. pipeline operators following a ransomware attack that led to fuel shortages across much of the Eastern Seaboard. | |||
|
2021-05-25 17:33:58 | Email Security Firm Tessian Raises $65 Million at $500 Million Valuation (lien direct) | Tessian, an email security company that focuses on human error, today announced that it raised $65 million in Series C funding. The company has raised $123.7 million in total and its valuation is now $500 million. | |||
|
2021-05-25 15:06:54 | Gartner: Global Security Spending Will Reach $150 Billion in 2021 (lien direct) | Research and advisory giant Gartner predicts that global security and risk management spending will exceed $150 billion this year. The company forecasts that information security and risk management will grow by more than 12 percent in 2021. Spending in these segments increased by more than 6 percent in 2020. | |||
|
2021-05-25 14:25:33 | OT Systems Increasingly Targeted by Unsophisticated Hackers: Mandiant (lien direct) | Unsophisticated threat actors - in many cases motivated by financial gain - have increasingly targeted internet-exposed operational technology (OT) systems, according to research conducted by Mandiant, FireEye's threat intelligence and incident response unit. | Threat | ||
|
2021-05-25 14:04:16 | Bose Says Personal Information Compromised in Ransomware Attack (lien direct) | Bose Corporation last week started sending out breach notification letters to inform some individuals of personal data being compromised in a cyberattack identified on March 7. | Ransomware | ★★★★★ | |
|
2021-05-25 13:04:49 | Report Highlights Massive Scale of Automated Cyberattacks (lien direct) | Gartner first gave name to the Secure Access Service Edge (SASE) model, effectively defining it. SASE combines WAN and security as a cloud service. | |||
|
2021-05-25 12:53:42 | Operating in the Shadows: US Cyber Command (lien direct) | If the Pentagon's Cyber Command launches an online attack and nobody knows about it, does it deter anyone? Many Americans are asking what the country's army of cyber warriors are doing after repeated attacks on US computer systems by Chinese, Russian and other hackers. | |||
|
2021-05-25 12:01:32 | New Bluetooth Vulnerabilities Could Expose Many Devices to Impersonation Attacks (lien direct) | Researchers working for a French government agency have identified seven new Bluetooth vulnerabilities that could expose many devices to impersonation and other types of attacks. | |||
|
2021-05-25 11:37:55 | Apple Patches macOS Big Sur Vulnerability Exploited by Malware (lien direct) | Apple on Monday announced that software updates for its desktop and mobile operating systems address tens of vulnerabilities, including a zero-day flaw in macOS Big Sur that has been exploited in attacks. | Malware Vulnerability | ||
|
2021-05-25 08:48:18 | Cyberattacks: Bigger, Smarter, Faster (lien direct) | 
From paralysing the internet in Estonia to a $4.4-million ransom being paid last week after the shutdown of a major US pipeline, we take a look back at 15 years of cyberattacks.
|
|||
|
2021-05-25 04:00:02 | Trend Micro Patches Vulnerabilities in Home Network Security Devices (lien direct) | Vulnerabilities identified by security researchers with Cisco's Talos unit in Trend Micro Home Network Security devices could be exploited to elevate privileges or achieve arbitrary authentication. | |||
|
2021-05-25 03:31:07 | Hack, Disinform, Deny: Russia\'s Cybersecurity Strategy (lien direct) | Over the years, Moscow has faced numerous allegations of cyberattacks that resulted in multiple sanctions and the expulsion of its diplomats. The term "hacker" has almost become synonymous with Russia. | |||
|
2021-05-25 01:38:51 | Russian to be Deported After Failed Tesla Ransomware Plot (lien direct) | A Russian man was sentenced Monday to what amounted to time already served and will be deported after pleading guilty to trying to pay a Tesla employee $500,000 to install computer malware at the company's Nevada electric battery plant in a bid to steal company secrets for ransom. | Ransomware Malware Guideline | ||
|
2021-05-24 18:10:01 | Tulsa Computer System Hacks Stopped by Security Shutdown (lien direct) | Most residents of Tulsa are being prevented from paying their water bills after the city shut down its computer network as a security measure following an attempted ransomware attack, a city official said Friday. | Ransomware | ||
|
2021-05-24 17:32:14 | QNAP Says Recently Patched Flaw Exploited in Qlocker Ransomware Attacks (lien direct) | Taiwanese network-attached storage (NAS) appliance manufacturer QNAP Systems has revealed that a vulnerability in its Hybrid Backup Sync software has been exploited in Qlocker ransomware attacks. | Ransomware Vulnerability |
To see everything:
Our RSS (filtrered)
