What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-02-26 08:07:01 | Visa: EMV Cards Cut Down Counterfeit Card Fraud in the US by 70% (lien direct) | Visa said last week that two years after US retailers started deploying terminals that could read chip-based credit and debit cards, reports of counterfeit card fraud have dropped by 70%. [...] | |||
|
2018-02-26 06:07:03 | Nanocore RAT Author Gets 33 Months in Prison (lien direct) | US authorities have sentenced an Arkansas man to 33 months in prison and two years of supervised release for aiding and abetting hackers by creating and selling malware. [...] | |||
|
2018-02-24 06:37:03 | Data Keeper Ransomware Makes First Victims Two Days After Release on Dark Web RaaS (lien direct) | Two days after crooks started advertising the Data Keeper Ransomware-as-a-Service (RaaS) on the Dark Web, ransomware strains generated on this portal have already been spotted in the wild, infecting the computers of real-world users. [...] | |||
|
2018-02-23 16:45:03 | US Border Agents Didn\'t Verify Any e-Passports Since 2007 Because They Didn\'t Have the Software (lien direct) | The United States of America, the country with one of the most draconian border crossing procedures in the world, hadn't verified the validity of chip-implanted e-passports since 2007, the time when foreigners were first required to have one. [...] | |||
|
2018-02-23 10:50:02 | Bitcoin Exchange Admin Charged for Lying About Hack (lien direct) | US authorities have arrested a Texas man who founded two Bitcoin-related platforms that got hacked. Officials charged the on accusations of lying to Securities Exchange Commission (SEC) officials in the subsequent investigation. [...] | |||
|
2018-02-23 07:32:04 | PSA: Improperly Secured Linux Servers Targeted with Chaos Backdoor (lien direct) | Hackers are using SSH brute-force attacks to take over Linux systems secured with weak passwords and are deploying a backdoor named Chaos. [...] | |||
|
2018-02-23 02:00:00 | Android P Will Block Background Apps from Accessing Phone\'s Camera & Microphone (lien direct) | Android P, the next major version of the Android operating system, will block idle (background) applications from accessing a smartphone's camera or microphone. [...] | |||
|
2018-02-22 15:23:05 | Botched npm Update Crashes Linux Systems, Forces Users to Reinstall (lien direct) | A bug in npm (Node Package Manager), the most widely used JavaScript package manager, will change ownership of crucial Linux system folders, such as /etc, /usr, /boot. [...] | |||
|
2018-02-22 11:40:04 | The Market of Stolen Code-Signing Certificates Is Too Expensive for Most Hackers (lien direct) | There's a thriving underground market for buying and selling code-signing certificates meant to help malware pass unnoticed by security scanners, but according to new research, the prices for such certificates are too high, and only a few hackers can afford one. [...] | |||
|
2018-02-22 06:41:02 | After Intel & Equifax Incidents, SEC Warns Execs Not to Trade Stock While Investigating Security Incidents (lien direct) | The US Securities and Exchange Commission (SEC) released a statement yesterday, warning high-ranking executives not to trade stocks before the disclosing breaches, major vulnerabilities, and other cybersecurity related incidents. [...] | Equifax | ||
|
2018-02-22 05:40:00 | PHP Community Takes Steps to Stop Installation of Libraries with Unpatched Bugs (lien direct) | Some of the most influential voices in the PHP community have united on a project to improve the security of the PHP ecosystem. [...] | |||
|
2018-02-21 15:31:01 | The Many Hats Club: An InfoSec Group For All Skill Levels (lien direct) | The Many Hats Club is a group where members of the InfoSec community can share information, build connections, and get to know each other. This group caters to all experience levels and if you are interested in getting into InfoSec or want to have discussions with your peers, this group may be something you want to take a look at. [...] | |||
|
2018-02-21 14:05:00 | Microsoft Fixes Windows 10 Vulnerability But Doesn\'t (lien direct) | A Google security engineer says Microsoft has failed to properly patch a security flaw affecting Windows 10 and Windows Server 2016 distributions. [...] | |||
|
2018-02-21 10:40:03 | Hackers Can Hijack over 52,000 Baby Monitor Video Feeds (lien direct) | Vulnerabilities in the Mi-Cam smart baby monitor allow hackers to hijack video feeds from all devices, located anywhere in the world. [...] | |||
|
2018-02-21 10:31:02 | The Annabelle Ransomware Is a Horrific Mess (lien direct) | While most ransomware is created to actually generate revenue, some developers create them to show off their "skills". Such is the case with a new ransomware based off of the horror movie franchise Annabelle. [...] | |||
|
2018-02-21 07:17:03 | uTorrent Client Affected by Some Pretty Severe Security Flaws (lien direct) | A Google security researcher has found multiple security flaws affecting the uTorrent web and desktop client that allow an attacker to infect a victim with malware or collect data on the users' past downloads. [...] | |||
|
2018-02-21 05:23:02 | A New North Korean Hacker Group Is Making a Name for Itself (lien direct) | A lesser-known North Korean cyber-espionage outfit has become more active on the international scene in 2017, after spending the previous five years targeting only South Korean government agencies and North Korean defectors. [...] | |||
|
2018-02-21 00:46:03 | Amazon AWS Servers Might Soon Be Held for Ransom, Similar to MongoDB (lien direct) | Amazon AWS S3 cloud storage servers might soon fall victims to ransom attacks, similar to how hacker groups held tens of thousands of MongoDB databases for ransom throughout 2017. [...] | |||
|
2018-02-20 11:58:04 | Tesla Internal Servers Infected with Cryptocurrency Miner (lien direct) | Hackers have breached Tesla cloud servers used by the company's engineers and have installed malware that mines the cryptocurrency. [...] | Tesla | ||
|
2018-02-20 10:42:01 | LockCrypt .1BTC Variant Installed Over Hacked Remote Desktop Services (lien direct) | Today a reader sent me info regarding the LockCrypt Ransomware still being actively distributed over hacked remote desktop services. This variant, when installed, will encrypt a victim's files and then append the .1btc extension to encrypted file names. [...] | |||
|
2018-02-20 09:05:05 | Cryptojacking Scripts Could Soon Invade Your Word Documents (lien direct) | Cryptojacking scripts that mine Monero via JavaScript code can also run inside Word files, security researchers have discovered. [...] | |||
|
2018-02-20 07:17:00 | Coldroot RAT Still Undetectable Despite Being Uploaded on GitHub Two Years Ago (lien direct) | Coldroot, a remote access trojan (RAT), is still undetectable by most antivirus engines, despite being uploaded and freely available on GitHub for almost two years. [...] | |||
|
2018-02-20 00:20:00 | (Déjà vu) Nearly 8,000 Security Flaws Did Not Receive a CVE ID in 2017 (lien direct) | A record-breaking number of 20,832 vulnerabilities have been discovered in 2017 but only 12,932 of these received an official CVE identifier last year, a Risk Based Security (RBS) report reveals. [...] | |||
|
2018-02-20 00:20:00 | (Déjà vu) Nearly 8,000 Security Flaws Did Not Receive a CVE ID in 2018 (lien direct) | A record-breaking number of 20,832 vulnerabilities have been discovered in 2017 but only 12,932 of these received an official CVE identifier last year, a Risk Based Security (RBS) report reveals. [...] | |||
|
2018-02-19 17:13:02 | (Déjà vu) Apple Releases Fix for Indian Telugu Character Crash Bug (lien direct) | Apple delivered on a promise made last week to publish updates for a bug that crashed Mac and iOS applications that included the " à°à±à°âà°¾ " Indian Telugu character. [...] | |||
|
2018-02-19 17:13:02 | (Déjà vu) Apple Releases Fix for Indian Telegu Character Crash Bug (lien direct) | Apple delivered on a promise made last week to publish updates for a bug that crashed Mac and iOS applications that included the " à°à±à°âà°¾ " Indian Telugu character. [...] | |||
|
2018-02-19 15:00:01 | (Déjà vu) Flight Sim Game Maker Embeds Password-Stealing Malware in Game Mod (lien direct) | Gamers are accusing a company that makes mods for Microsoft's Flight Simulator X game of putting a password stealer inside one of its add-ons. [...] | |||
|
2018-02-19 15:00:01 | (Déjà vu) Flight Sim Game Maker Embeds Password-Stealing Tool in Game Mod (lien direct) | Gamers are accusing a company that makes mods for Microsoft's Flight Simulator X game of putting a password stealer inside one of its add-ons. [...] | |||
|
2018-02-19 11:38:01 | White House: Cyberattacks Cost US Economy Between $57B and $109B in 2016 (lien direct) | Citing a report from the Council of Economic Advisers (CEA), the White House said on Friday that cyberattacks cost the US economy somewhere between $57 billion to $109 billion in 2016. [...] | |||
|
2018-02-19 10:01:05 | Null Character Bug Lets Malware Bypass Windows 10 Anti-Malware Scan Interface (lien direct) | Malware that embeds a null character in its code can bypass security scans performed by the Anti-Malware Scan Interface (AMSI) on Windows 10 boxes. [...] | |||
|
2018-02-19 06:42:03 | Man Sues Microsoft Seeking New Copy of Windows 7 After Forced Windows 10 Upgrade (lien direct) | An Albuquerque man has sued Microsoft and its CEO âSatya Nadellaâ seeking a fresh copy of Windows 7 or $600 million in damages. [...] | |||
|
2018-02-19 04:56:00 | Anchor CMS Sites May Be Spewing Their Database Passwords (lien direct) | Websites built using the Anchor CMS may be accidentally exposing their database passwords in publicly-facing error logs, Dutch security researcher Tijme Gommers has discovered. [...] | |||
|
2018-02-19 00:15:00 | Android Ransomware Numbers Went Down in 2017 (lien direct) | The number of ransomware infections on Android devices has gone down in 2017, according to an end-of-year report published by ESET last week. [...] | |||
|
2018-02-18 17:25:00 | New Saturn RaaS Lets Everyone Become a Ransomware Distributor for Free (lien direct) | The authors of the newly-discovered Saturn ransomware are allowing anyone to become a ransomware distributor for free via a newly launched Ransomware-as-a-Service (RaaS) affiliate program. [...] | |||
|
2018-02-18 12:50:04 | macOS May Lose Data Due to APFS Filesystem Bug (lien direct) | Under certain circumstances, macOS may copy data into the void, leading to data loss of important files, all due to a bug in how the operating system handles APFS sparse disk images. [...] | Guideline | ||
|
2018-02-18 05:50:02 | All Five Eyes Countries Formally Accuse Russia of Orchestrating NotPetya Attack (lien direct) | All the countries part of the Five Eyes intelligence-sharing alliance â the US, the UK, Canada, Australia, and New Zealandâ have made formal statements accusing the Russian Federation of orchestrating the NotPetya ransomware outbreak. [...] | NotPetya | ||
|
2018-02-17 17:45:00 | Hacker Group Makes $3 Million by Installing Monero Miners on Jenkins Servers (lien direct) | A hacker group has made over $3 million by breaking into Jenkins servers and installing malware that mines the Monero cryptocurrency. [...] | |||
|
2018-02-17 14:38:00 | Google Discloses Microsoft Edge Security Feature Bypass (lien direct) | Google has gone public with details about a Microsoft Edge vulnerability that attackers could abuse and bypass one of the browser's security features âArbitrary Code Guard (ACG). [...] | |||
|
2018-02-16 16:01:05 | The Week in Ransomware - February 16th 2018 - NotPetya & Saturn (lien direct) | The biggest news this week is the UK formally attributing NotPetya to Russian attackers. Also if interest this week is the release of the Saturn Ransomware, which has a more organized feel compared to other ransomware distributions currently being distributed [...] | NotPetya | ||
|
2018-02-16 10:45:04 | New Saturn Ransomware Actively Infecting Victims (lien direct) | A new ransomware was discovered this week by MalwareHunterTeam called Saturn. This ransomware will encrypt the files on a computer and then append the .saturn extension to the file's name. At this time it is not known how Saturn Ransomware is being distributed. [...] | |||
|
2018-02-15 13:30:04 | Using the Chrome Task Manager to Find In-Browser Miners (lien direct) | The use of browsers to mine for digital currency is becoming a major problem. With more and more sites incorporating in-browser mining scripts such as CoinHive and web extensions injecting them into web pages, people will continue to be affected by this attack. Thankfully, we can easily detect miners using the Chrome Task Manager. [...] | |||
|
2018-02-15 12:56:03 | Indian Text Character Crashes Many iOS and macOS Apps (lien direct) | A character from the Indian Telugu language will crash multiple applications on iOS and macOS, an Italian blogger has discovered. [...] | |||
|
2018-02-15 10:15:01 | Ubuntu Gets in the User Data Collection Business (lien direct) | Canonical announced plans to roll out a user data and diagnostics collection system with Ubuntu 18.04 LTS (Bionic Beaver). This new system will collect data on the user's OS details, hardware setup, apps and OS settings. [...] | |||
|
2018-02-15 09:44:02 | Windows Insider Build 17101 Brings Emoji Changes and Windows App Preview (lien direct) | Microsoft has released Windows Insider build 17101 to insiders to continue testing RS4 as it nears release. For insiders who opted to skip ahead, Microsoft has also started push out RS5 build 17604 for testing. [...] | |||
|
2018-02-15 09:25:02 | ATM Skimmer Kingpin Escapes UK Police (lien direct) | In what many consider to be a monumental failure on the part of UK police, the ringleader of a notorious ATM skimming gang has escaped prosecutors and is believed to be hiding abroad, after being let out on bail. [...] | Guideline | ||
|
2018-02-15 05:16:02 | Multi-Stage Word Attack Infects Users Without Using Macros (lien direct) | Spam distributors are using a new technique to infect users with malware, and while this attack relies on having users open Word documents, it does not involve users having to allow the execution of macro scripts. [...] | |||
|
2018-02-12 05:02:07 | It\'s 2018 and You Can Still p0wn Your Linux Box by Plugging in a USB Stick (lien direct) | Linux users running KDE Plasma desktop environments need to apply patches to fix a bug that can lead to malicious code execution every time a user mounts a USB thumb drive on his computer. [...] | Guideline | ||
|
2018-02-12 00:30:00 | Former Employee Arrested for Trying to Sell Company\'s Database for $4,000 (lien direct) | Officers from Ukraine's Cyber Police Department arrested a suspect last week for attempting to sell customer data belonging to his former employer. [...] | |||
|
2018-02-11 16:20:07 | U.S. & UK Govt Sites Injected With Miners After Popular Script Was Hacked (lien direct) | Thousands of sites were injected with a in-browser Monero miner today after a popular accessibility script was compromised. With 4, 275 sites affected, this included government websites such as uscourts.gov, ico.org.uk, & manchester.gov.uk. [...] | |||
|
2018-02-11 08:40:48 | Researcher Uses macOS App Screenshot Feature to Steal Passwords, Tokens, Keys (lien direct) | Malicious app developers can secretly abuse a macOS API function to take screenshots of the user's screen and then use OCR (Optical Character Recognition) to programmatically read the text found in the image. [...] |
To see everything:
Our RSS (filtrered)
