What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-07-24 16:25:02 | Malwarebytes AdwCleaner 7.4 Can Now Remove Bloatware From Windows (lien direct) | Malwarebytes has released AdwCleaner 7.4 and with it comes a new feature that will detect and remove preinstalled software that is typically added to generate revenue for the hardware developer and thus reduce the device's cost. [...] | |||
|
2019-07-24 15:51:03 | BlueKeep Scanner Discovered in Watchbog Cryptomining Malware (lien direct) | A new Watchbog malware variant can scan for Windows computers vulnerable to BlueKeep exploits, with previous variants only being utilized to infect Linux servers compromised using Jira, Exim, Nexus Repository Manager 3, ThinkPHP, and Solr Linux exploits. [...] | Malware | ||
|
2019-07-24 13:55:00 | Sodinokibi Ransomware Distributed by Hackers Posing as German BSI (lien direct) | BSI, the German national cybersecurity authority, has issued a warning about a malspam campaign that distributes the Sodinokibi ransomware via emails designed to look like official BSI messages. [...] | Ransomware | ||
|
2019-07-24 11:40:00 | Facebook to Pay Over $5 Billion Following FTC, SEC Settlements (lien direct) | An agreement with the FTC requires Facebook to pay a $5 billion penalty, to implement a new privacy and information protection framework, and to provide the FTC with new monitoring tools after an investigation launched following the Cambridge Analytica events. [...] | |||
|
2019-07-24 11:20:00 | Internal Windows 10 Build 18947 Pushed to All Insiders by Mistake (lien direct) | According to numerous reports, Microsoft has accidentally released internal Windows 10 Build 18947 to all channels of the Windows Insider program, including Skip Ahead, Fast Ring and Slow Ring. [...] | |||
|
2019-07-24 10:43:05 | Ransomware: Most Popular Malware in Underground Forums (lien direct) | Through the analysis of over 3.9 million posts on underground hacker and malware forums, a new report illustrates the most common malware and threats being discussed. [...] | Malware | ||
|
2019-07-24 09:37:05 | Tax Professionals Warned by IRS to Create Data Security Plans (lien direct) | The IRS has issued a news release to remind professional tax preparers that they are required by law to have a data security plan to protect taxpayers' sensitive information from potential security threats. [...] | |||
|
2019-07-23 15:34:00 | BEC Scammers Trick Employees Into Giving Away Customer Info (lien direct) | BEC scammers are now targeting a company's customers using a new indirect attack method designed to collect information on future scam targets by asking for aging reports from collections personnel. [...] | |||
|
2019-07-23 12:30:02 | Microsoft to Improve Office 365 Malicious Email Analysis (lien direct) | Microsoft is currently in the process of developing significantly better manual threat hunting features for the Office 365 Threat Explorer, to be rolled out to all environments during August. [...] | Threat | ||
|
2019-07-22 18:31:05 | Hackers Exploit Recent WordPress Plugin Bugs for Malvertising (lien direct) | An ongoing malvertising campaign is targeting an unauthenticated stored cross-site scripting (XSS) vulnerability in the Coming Soon Page & Maintenance Mode WordPress plugin according to Wordfence's Defiant Threat Intelligence team. [...] | Vulnerability Threat | ||
|
2019-07-22 17:50:02 | (Déjà vu) LooCipher Ransomware Decryptor Gets Your Files Back for Free (lien direct) | A decryptor for the LooCipher Ransomware has been released by Emsisoft that allows victims to decrypt their files for free. If you were infected with LooCipher, do not pay the ransom and instead follow the instructions below. [...] | Ransomware | ★★★★ | |
|
2019-07-22 17:28:03 | Microsoft to Roll Out Office 365 Client Licensing Changes in August (lien direct) | Microsoft says that several changes designed to make Office 365 client licensing technology more reliable for subscription-based Office clients like Office 365 ProPlus will be rolled out during August. [...] | ★★ | ||
|
2019-07-22 16:01:04 | Windows 10 SmartScreen Sends URLs and App Names to Microsoft (lien direct) | Over the weekend, privacy concern were raised regarding how Microsoft Edge is uploading the URLs to SmartScreen. After further testing by BleepingComputer, we learned that Windows 10 also transmits a great deal of potentially sensitive information about your applications to SmartScreen when you attempt to run them. [...] | |||
|
2019-07-22 15:45:03 | ProFTPD Vulnerability Lets Users Copy Files Without Permission (lien direct) | Under certain conditions, ProFTPD servers are vulnerable to remote code execution and information disclosure attacks after successful exploitation of an arbitrary file copy vulnerability in the mod_copy module. [...] | Vulnerability | ||
|
2019-07-22 15:45:03 | ProFTPD Remote Code Execution Bug Exposes Over 1 Million Servers (lien direct) | More than one million ProFTPD servers are vulnerable to remote code execution and information disclosure attacks that could be triggered after successful exploitation of an arbitrary file copy vulnerability. [...] | |||
|
2019-07-22 12:08:01 | Hackers Exploit Jira, Exim Linux Servers to "Keep the Internet Safe\' (lien direct) | Hackers are exploiting vulnerable Jira and Exim servers with the end goal of infecting them with a new Watchbog Linux Trojan variant and using the resulting botnet as part of a Monero cryptomining operation. [...] | |||
|
2019-07-21 15:04:04 | How to Get a List of Installed Windows 10 Updates (lien direct) | Windows 10 cumulative updates are released at least twice every month, and the updates include both security and non-security fixes. In this Windows 10 guide, we will explain steps to find out if a Windows 10 Update is installed correctly. [...] | |||
|
2019-07-21 10:30:00 | IRS Improved Security But Taxpayer Data Is Still At Risk (lien direct) | The U.S. Internal Revenue Service (IRS) failed to implement a good deal of security controls recommended over the years, leaving financial reporting and taxpayer data vulnerable to "inappropriate and undetected use, modification, or disclosure." [...] | |||
|
2019-07-20 14:52:05 | Russian FSB Intel Agency Contractor Hacked, Secret Projects Exposed (lien direct) | A contractor for the Russian Federal Security Service (FSB) has been hacked and secret projects that were being developed for the intelligence agency were leaked to Russian Media. These projects detail Russia's attempt to de-anonymize users on the Tor network, collect data from social networks, and how to isolate the Russian internet [...] | |||
|
2019-07-20 12:22:01 | Microsoft Edge Uses Controlled Feature Rollout to Test New Features (lien direct) | The Chromium-based Microsoft Edge is using Controlled Featured Rollout to test new features with randomly selected small groups of users. Over time, Microsoft gradually increases the size of the control group to garner further feedback and usage statistics. [...] | |||
|
2019-07-20 10:30:03 | Windows Defender Gets a New Name: Microsoft Defender (lien direct) | Windows Defender is being rebranded to Microsoft Defender to indicate that it now part of a cross platform family of products. This includes enterprise products, which offer solutions for multiple OS platforms. [...] | |||
|
2019-07-19 18:59:02 | The Week in Ransomware - July 19th 2019 - Targeted Attacks (lien direct) | What a week. Every day we see a new city, police station, college, government agency, or company being affected by a ransomware attack. To make matters worse, they are getting hit with targeted ransomware that asks for a hefty price to get a decryptor. [...] | Ransomware | ||
|
2019-07-19 16:46:01 | iNSYNQ Cloud Hosting Provider Hit by Ransomware Attack (lien direct) | Cloud computing provider iNSYNQ experienced a ransomware attack which forced the company to shut down some of its servers to contain the malware infection from spreading and affecting more customer data. [...] | Ransomware Malware | ||
|
2019-07-19 15:32:04 | New \'US State Police\' Extortion Scam Includes Contact Numbers (lien direct) | A new extortion scam is underway that pretends to be from a US State Police detective who is willing to delete child porn evidence if you send them $2,000 in bitcoins. Pretending to be from a state police detective is a new twist, but what really stands out is that they also include a contact phone number that can be used to call the [...] | |||
|
2019-07-19 14:05:04 | (Déjà vu) Mozilla Firefox Tor Mode Likely to Start as a Browser Addon (lien direct) | Mozilla and the Tor Project are in the early stages of exploring the inclusion of Tor's private browsing features within the Firefox web browser in the form of a privileged extension. [...] | |||
|
2019-07-19 14:05:04 | (Déjà vu) Mozilla Firefox Tor Mode to Likely Start as a Browser Addon (lien direct) | Mozilla and the Tor Project are in the early stages of exploring the inclusion of Tor's private browsing features within the Firefox web browser in the form of a privileged extension. [...] | |||
|
2019-07-19 09:11:03 | WizzAir Forces Password Reset on Customer Accounts (lien direct) | WizzAir today announced its customers that their account password has been automatically reset due to a technical issue in the system. [...] | |||
|
2019-07-19 07:34:03 | Ransomware Attacks Grow Rampant, Paying Still Not a Good Option (lien direct) | A flurry of ransomware attacks has been reported this week affecting entities in US states of Georgia, New York, Tennessee, and Florida. [...] | Ransomware | ||
|
2019-07-19 03:00:05 | Elusive MegaCortex Ransomware Found - Here is What We Know (lien direct) | A sample of the ransomware called MegaCortex that is known to target the enterprise in targeted attacks has been found and analyzed. In this article, we will provide a brief look at the MegaCortex Ransomware and how it encrypts a computer. [...] | Ransomware | ||
|
2019-07-19 00:01:00 | Over 8,500 Google Chrome Bug Reports, Larger Rewards in Store (lien direct) | Nine years and more than 8,500 security bug reports later, Google decided to increase the value of the rewards for security vulnerabilities submitted through its Chrome Vulnerability Rewards Program. [...] | Vulnerability | ||
|
2019-07-18 16:56:01 | Fake Office 365 Site Pushes Trickbot Trojan as Browser Update (lien direct) | Attackers have created a fake Office 365 site that is distributing the TrickBot password-stealing Trojan disguised as Chrome and Firefox browser updates. [...] | |||
|
2019-07-18 15:07:04 | Microsoft Begins Testing Windows 10 Controlled Feature Rollout (lien direct) | Microsoft has started testing the new Window 10 Controlled Feature Rollout feature with Windows Insiders in the Slow ring. This feature allows Microsoft to slowly roll out new features without releasing entirely new builds. [...] | |||
|
2019-07-18 14:17:04 | Microsoft Adds Office 365 Group Lifetime Auto-Renewal Feature (lien direct) | Microsoft says that a new user activity-based expiration policy can be enabled for Office 365 groups by select Azure AD Premium customers starting today allowing for automated lifetime renewals without any user intervention. [...] | |||
|
2019-07-18 13:21:05 | Windows 10 20H1 Build 18941 Fixes OneDrive Search Crashes (lien direct) | Microsoft has released Windows 10 20H1 Insider Preview Build 18941 to Insiders in the Fast ring. This build includes various fixes, such as for a crash when searching the OneDrive folder, and a new Korean IME. [...] | |||
|
2019-07-18 12:31:02 | New Malware Framework Uses Browser Extension for Ad Fraud (lien direct) | Researchers unearthed a new and highly prolific malware framework used by its creators to generate over one billion fraudulent ad impressions over a time span of just three months. [...] | Malware | ||
|
2019-07-18 10:29:05 | Slack Resets Account Passwords Compromised During 2015 Hack (lien direct) | Slack has started sending out emails informing users that their account passwords have been reset due to being compromised during the Slack 2015 security incident. Slack has stated that this is only affecting 1% of their users. [...] | Hack | ||
|
2019-07-18 09:55:00 | Nation-Backed Hackers Targeted 10,000 Microsoft Customers (lien direct) | Microsoft says that it notified roughly 10,000 of its customers in the past year of being either targeted or compromised by nation-state sponsored threat groups. [...] | Threat | ||
|
2019-07-18 07:03:00 | New Okrum Malware Used by Ke3chang Group to Target Diplomats (lien direct) | Updated malware implants and a new backdoor named Okrum connected with the Ke3chang threat group operating from China have been found by ESET researchers while monitoring their operations between 2015 and 2019. [...] | Malware Threat | APT 15 APT 25 | |
|
2019-07-18 03:29:02 | BEC Scams Average $301 Million Per Month In Illegal Transfers (lien direct) | The frequency of business email compromise (BEC) scams has increased year over year and so did the value of attempted thefts, reaching a monthly average of more than $300 million. [...] | |||
|
2019-07-17 23:23:02 | Twitter Can be Tricked Into Showing Misleading Embedded Links (lien direct) | Twitter has a problem with validating the cards with extra content attached to a tweet that has been abused in the past and can still be used to direct users to malicious websites. [...] | |||
|
2019-07-17 17:56:04 | Drupal Patches Critical Bug That Lets Hackers Take Over Sites (lien direct) | The Drupal CMS team has released a security update to address a critical severity access bypass vulnerability in the CMS' core component that could allow attackers to take control of impacted sites. [...] | Vulnerability | ||
|
2019-07-17 16:25:02 | Real-Time Location of Millions Exposed by Mobile Loan Apps (lien direct) | Financial data, personally identifiable information (PII), and real-time location of millions of Chinese users was leaked by an open Elastic cluster hosted on infrastructure owned by Aliyun Computing Co (also known as Alibaba Cloud). [...] | |||
|
2019-07-17 15:16:01 | Stalkerware Apps on Google Play Installed Over 130,000 Times (lien direct) | Stalkerware for mobile is easy to get by these days and you don't have to look further than Android's official store. While Google is quick to boot such apps when reported, some linger on adding thousands of installations. [...] | |||
|
2019-07-17 14:37:02 | US Govt Rolls Out New DNS Security Measures for .gov Domains (lien direct) | New DNS security measures for all .gov domains will be implemented by the U.S. government starting today to help mitigate risks associated with future DNS hijacking incidents. [...] | |||
|
2019-07-17 13:28:01 | New EvilGnome Backdoor Spies on Linux Users, Steals Their Files (lien direct) | A new Linux malware masquerading as a Gnome shell extension and designed to spy on unsuspecting Linux desktop users was discovered by Intezer Labs' researchers in early July. [...] | Malware | ||
|
2019-07-17 12:01:00 | Group Behind Windows 10 App Malvertising Pushed 100M Ads in 2019 (lien direct) | A group behind the recent outbreaks of malicious advertisements being displayed through Windows 10 apps and Microsoft games has been identified as being based out of Hong Kong. This group is behind millions of advertisements that redirect users to scams, malware, and adware bundles. [...] | |||
|
2019-07-17 10:34:01 | Trojan-Riddled WinRAR, Winbox, IDM Spreads StrongPity Spyware (lien direct) | Some versions of WinRAR file compression tool and Winbox software for managing MikroTik users have been tampered with to install malware serving an advanced threat actor. This campaign may have started in the second half of 2018 and continues today. [...] | Malware Tool Threat | ||
|
2019-07-17 06:25:01 | Firefox to Warn When Saved Logins are Found in Data Breaches (lien direct) | Starting in Firefox 70, Mozilla aims to have the browser report when any of your saved logins were found in data breaches. This will be done through their partnership with the Have I Been Pwned data breach site. [...] | Data Breach | ||
|
2019-07-17 03:33:03 | Cracked Tesla 3 Windshield Leads to $10,000 Bug Bounty (lien direct) | Tesla paid a large bug bounty for a cross-site scripting (XSS) vulnerability in one of its backend apps that allowed gleaning vital statistics about a vehicle. [...] | Vulnerability | Tesla | |
|
2019-07-16 17:55:05 | Windows 10 KB4507466 and KB4507465 Released With Fixes (lien direct) | Microsoft has just released new cumulative updates for Windows 10 April 2018 Update (version 1803) and Windows 10 Fall Creators Update (version 1709) with multiple fixes and improvements. [...] |
To see everything:
Our RSS (filtrered)
