What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-06-22 17:14:35 | A ransomware attack disrupted the IT network of the City of Liege (lien direct) | Belgium city of Liege has suffered today a ransomware attack that has disrupted the IT network of the municipality and its online services. Liege, one of the biggest cities in Belgium, was hit by a ransomware attack that has disrupted the IT network of the municipality and its online services. “The City of Liège is […] | Ransomware | ||
|
2021-06-22 15:15:57 | DirtyMoe botnet infected 100,000+ Windows systems in H1 2021 (lien direct) | DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. Researchers from Avast are warning of the rapid growth of the DirtyMoe botnet (PurpleFox, Perkiler, and NuggetPhantom), which passed from 10,000 infected systems in 2020 to more than 100,000 in […] | |||
|
2021-06-22 13:17:17 | Tor Browser 10.0.18 fixes a bug that allows to track users by fingerprinting installed apps (lien direct) | The Tor Project released Tor Browser 10.0.18 that addresses a flaw that allows sites to track users by fingerprinting the installed apps. The Tor Project has released Tor Browser 10.0.18, the new version of the popular browser addresses multiple flaws, including a vulnerability that could be exploited to track users by fingerprinting the applications installed […] | Vulnerability | ||
|
2021-06-22 07:05:17 | DroidMorph tool generates Android Malware Clones that (lien direct) | Boffins developed a tool dubbed DroidMorph that provides morphing of Android applications (APKs) and allows to create Android apps (malware/benign) clones. A group of researchers from Adana Science and Technology University (Turkey) and the National University of Science and Technology (Islamabad, Pakistan) has developed a tool dubbed DroidMorph that provides morphing of Android applications (APKs) […] | Malware Tool | ||
|
2021-06-21 20:27:22 | Ragnar Locker ransomware leaked data stolen from ADATA chipmaker (lien direct) | The Taiwanese memory and storage chip maker ADATA was hit by the Ragnar Locker ransomware gang that also published more than 700GB of stolen data. The Ragnar Locker ransomware gang has published on its leak sites more than 700GB of data stolen from Taiwanese memory and storage chip maker ADATA. The group published the link […] | Ransomware | ||
|
2021-06-21 17:45:39 | Threat actors in January attempted to poison the water at a US facility (lien direct) | Threat actors in January attempted to poison the water at a US facility, a circumstance that highlights the importance of cybersecurity for water and wastewater utilities. The news that a threat actor in January attempted to poison the water at a facility in the U.S. made the headlines and highlights the importance of protecting critical […] | Threat | ||
|
2021-06-21 10:08:02 | NSA releases guidance for securing Unified Communications and VVoIP (lien direct) | The US National Security Agency (NSA) released guidance for securing Unified Communications/Voice and Video over IP Systems (VVoIP). NSA last week released guidance for securing their communication systems, specifically Unified Communications (UC) and Voice and Video over IP (VVoIP). Unified Communications (UC) and Voice and Video over IP (VVoIP) call-processing systems provide enterprises communications and […] | |||
|
2021-06-21 06:15:55 | MI5 seized Boris Johnson\'s phone over security risk fears (lien direct) | The British intelligence agency MI5 seized Boris Johnson ‘s phone over concerns related to the availability of his number online for the last 15 years. The British Security Service, also known as MI5, has seized the mobile devices used by PM Boris Johnson over concerns that were raised after the discovery of the availability of its number […] | |||
|
2021-06-20 17:55:58 | Poland: The leader of the PiS party blames Russia for the recent attack (lien direct) | Jaroslaw Kaczynski, the leader of the Poland Law and Justice party, blames Russia for the recent cyberattack targeting top Polish politicians. Jaroslaw Kaczynski, the leader of the Poland Law and Justice party (PiS), blames Russia for the recent cyberattack that targeted top Polish politicians. Last week, Poland's parliament had a closed-door session to discuss an unprecedented wave of cyberattacks […] | Guideline | ||
|
2021-06-20 16:36:59 | Norway blames China-linked APT31 for 2018 government hack (lien direct) | Norway police secret service states said that China-linked APT31 group was behind the 2018 cyberattack on the government's IT network. Norway's Police Security Service (PST) said that the China-linked APT31 cyberespionage group was behind the attack that breached the government's IT network in 2018. The attribution of the attack to the APT31 grouo is based […] | Hack | APT 31 | |
|
2021-06-20 13:47:24 | This bug can permanently break iPhone WiFi connectivity (lien direct) | A new bug in iPhone can permanently break users’ WiFi by disabling it, the issue could be triggered by simply connecting to a rogue hotspot. The researcher Carl Schou discovered a new bug in iPhone that can permanently break users’ WiFi by disabling it, the issue could be triggered by simply connecting to a rogue […] | |||
|
2021-06-20 11:23:38 | Security Affairs newsletter Round 319 (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. APWG: Phishing maintained near-record levels in the first quarter of 2021 BackdoorDiplomacy APT targets diplomats from Africa and […] | |||
|
2021-06-19 16:40:50 | North Korean APT group Kimsuky allegedly hacked South Korea\'s atomic research agency KAERI (lien direct) | North Korea-linked APT group Kimsuky allegedly breached South Korea's atomic research agency KAERI by exploiting a VPN vulnerability. South Korean representatives declared on Friday that North Korea-linked APT group Kimsuky is believed to have breached the internal network of the South Korean Atomic Energy Research Institute (KAERI). The Korea Atomic Energy Research Institute (KAERI) in Daejeon, South Korea […] | |||
|
2021-06-19 14:13:50 | RedFoxtrot operations linked to China\'s PLA Unit 69010 due to bad opsec (lien direct) | Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. Experts from Recorded Future's Insikt Group linked a series of attacks, part of RedFoxtrot China-linked campaigns, to the PLA China-linked Unit 69010 The cyber-espionage campaigns dated back 2014 and focused on gathering military intelligence […] | |||
|
2021-06-18 22:19:56 | Vigilante malware stops victims from visiting piracy websites (lien direct) | This strange malware stops you from visiting pirate websites Sophos researchers uncovered a malware campaign that aims at blocking infected users’ from being able to visit a large number of piracy websites. Sophos researchers uncovered a malware campaign that aims at blocking infected users’ from visiting a large number of websites dedicated to software piracy by modifying the HOSTS […] | Malware | ||
|
2021-06-18 20:03:52 | US supermarket chain Wegmans discloses data breach (lien direct) | The supermarket chain Wegmans US Wegmans discloses a data breach, customers information was exposed on the Internet due to a misconfiguration issue. Wegmans Food Markets disclosed a data breach, the supermarket chain notified customers that some of their information was exposed as a result of the accidental availability online of two of its databases due […] | Data Breach | ||
|
2021-06-18 17:55:41 | Expert found multiple flaws in Cisco Small Business 220 series (lien direct) | A researcher discovered multiple vulnerabilities in smart switches of Cisco's Small Business 220 series, including some issues rated as high severity. Security researcher Jasper Lievisse Adriaanse has discovered multiple vulnerabilities Cisco's Small Business 220 series smart switches. The vulnerabilities impact devices running firmware versions prior 1.2.0.6 and which have the web-based management interface enabled. The […] | |||
|
2021-06-18 12:26:49 | (Déjà vu) Cruise operator Carnival discloses a security breach (lien direct) | Carnival Corp. said that the data breach it has suffered in March might have impacted its customers and employees. Carnival Corp. this week confirmed that the data breach that took place in March might have exposed personal information about customers and employees of Carnival Cruise Line, Holland America Line, and Princess Cruises. Carnival Corporation & plc […] | Data Breach | ||
|
2021-06-18 11:45:53 | Akamai outage was caused by an issue with its Prolexic DDoS protection service (lien direct) | An outage suffered by CDN, cybersecurity and cloud services provider Akamai was caused by an issue with its Prolexic DDoS attack protection service. CDN, cybersecurity and cloud services provider Akamai revealed that the recent outage suffered by the company was caused by a problem with its Prolexic DDoS attack protection service. The Prolexic Routed DDoS […] | |||
|
2021-06-18 06:53:24 | The return of TA402 Molerats APT after a short pause (lien direct) | TA402 APT group (aka Molerats and GazaHackerTeam) is back after two-month of silence and is targeting governments in the Middle East. The TA402 APT group (aka Molerats and Gaza Cybergang) is back after a two-month of apparent inactivity, it is targeting government institutions in the Middle East and global government entities with interest in the region. MoleRATs is […] | |||
|
2021-06-17 21:09:32 | Over a billion records belonging to CVS Health exposed online (lien direct) | Researchers discovered an unprotected database belonging to CVS Health that was exposed online containing over a billion records. This week WebsitePlanet along with the researcher Jeremiah Fowler discovered an unsecured database, belonging to the US healthcare and pharmaceutical giant CVS Health, that was exposed online. The database was accessible to everyone without any type of authentication. “On […] | |||
|
2021-06-17 18:22:42 | Ferocious Kitten APT targets Telegram and Psiphon VPN users in Iran (lien direct) | Iran-linked Ferocious Kitten APT group used instant messaging apps and VPN software like Telegram and Psiphon to deliver Windows RAT and spy on targets’ devices. Researchers from Kaspersky reported that Iran-linked threat actors, tracked as Ferocious Kitten, used instant messaging apps and VPN software like Telegram and Psiphon to deliver Windows RAT and spy on […] | Threat | ||
|
2021-06-17 12:58:04 | Cosmolog Kozmetik Data Breach: Hundreds of Thousands of Customers impacted (lien direct) | The securWizCase experts found a major breach that affected the popular online retailer Cosmolog Kozmetik. WizCase's security team, led by Ata Hakçıl, has found a major breach in popular online retailer Cosmolog Kozmetik's database. This breach exposed users' names, email addresses, physical addresses, phone numbers, order details, and more. Hundreds of thousands of users were […] | |||
|
2021-06-17 12:20:20 | (Déjà vu) Oleg Koshkin was convicted for operating a crypting service also used by Kelihos botnet (lien direct) | Russian national Oleg Koshkin was convicted for operating a “crypting” service used to obfuscate the Kelihos bot from antivirus software. Russian national Oleg Koshkin was convicted for charges related to the operation of a malware crypting service used by the Kelihos botnet to obfuscate malware and evade detection. “According to court documents and evidence introduced at trial, Oleg Koshkin, […] | Malware | ||
|
2021-06-17 08:53:31 | UNC2465 cybercrime group launched a supply chain attack on CCTV vendor (lien direct) | UNC2465 cybercrime group that is affiliated with the Darkside ransomware gang has infected with malware the website of a CCTV camera vendor. An affiliate of the Darkside ransomware gang, tracked as UNC2465, has conducted a supply chain attack against a CCTV vendor, Mandiant researchers discovered. UNC2465 is considered one of the main affiliated of the […] | Ransomware Malware | ||
|
2021-06-16 22:15:01 | How AI is Transforming Data Governance in today\'s World (lien direct) | How AI is Transforming Data Governance? Consumers are becoming more aware of their rights, making data governance more relevant across organizations. Data governance is a set of standards, metrics, and processes that allow organizations to responsibly use consumer data. Organizations need to make sure that when they are processing an individual’s data, it must be […] | |||
|
2021-06-16 21:59:35 | Poland institutions and individuals targeted by an unprecedented series of cyber attacks (lien direct) | Poland ‘s government announced that it was targeted by an ‘Unprecedented’ series of cyber attacks, hackers hit against institutions and individuals. Poland’s parliament had a closed-door session to discuss an unprecedented wave of cyber attacks that hit its institutions and individuals. Mateusz Morawiecki had to provide details about the attacks presenting secret documents related to […] | |||
|
2021-06-16 20:41:24 | An international joint operation resulted in the arrest of Clop ransomware members (lien direct) | Ukraine police arrested multiple individuals that are believed to be linked to the Clop ransomware gang as part of an international joint operation. Ukraine police arrested multiple individuals that are believed to be linked to the Clop ransomware gang as part of an international operation conducted by law enforcement from Ukraine, South Korea, and the […] | Ransomware | ||
|
2021-06-16 13:44:24 | A flaw in Peloton Bike+ could allow hackers to control it (lien direct) | A flaw in the Peloton Bike+ could be exploited by an attacker with initial physical access to gain root entry to the interactive tablet, taking complete control of the system. A vulnerability in the popular Peloton Bike+ could have allowed an attacker to gain complete control over the device, including the camera and microphone to […] | Vulnerability | ||
|
2021-06-16 06:16:05 | Cyberium malware-hosting domain employed in multiple Mirai variants campaigns (lien direct) | A new variant of the Mirai botnet, tracked as Moobot, was spotted scanning the Internet for vulnerable Tenda routers. Researchers from AT&T Alien Lab have spotted a new variant of the Mirai botnet, tracked asu Moobot, which was scanning the Internet for the CVE-2020-10987 remote code-execution (RCE) issue in Tenda routers. The botnet was linked […] | |||
|
2021-06-15 21:17:27 | Fujifilm restores operations after recent ransomware attack (lien direct) | Japanese multinational conglomerate Fujifilm announced that it has restored operations following the recent ransomware attack. On June 4, the Japanese multinational conglomerate Fujifilm announced that it was hit by a ransomware attack and shut down its network in response to the incident. Around two weeks later the Japanese giant announced that it has restored operations following […] | Ransomware | ||
|
2021-06-15 18:53:53 | The source code of the Paradise Ransomware was leaked on XSS hacking forum (lien direct) | The source code for the Paradise Ransomware has been released on a hacking forum allowing threat actors to develop their customized variant. The source code for the Paradise Ransomware has been released on the hacking forum XSS allowing threat actors to develop their own customized ransomware operation. The news of the availability of the source […] | Ransomware Threat | ||
|
2021-06-15 15:41:41 | Former NSA contractor Reality Winner who leaked gov report will be released on November (lien direct) | Reality Winner, a former NSA contractor who leaked classified documents to the press in 2017, has been released from prison to home confinement. Reality Winner is a former NSA intelligence contractor who leaked a classified hacking report to the press in 2017. The FBI arrested Reality Leigh Winner on 3rd June for leaking classified information to […] | |||
|
2021-06-15 13:45:11 | Instagram flaw allowed to see private, archived Posts/Stories of users without following them (lien direct) | Instagram has addressed a new flaw that allowed anyone to access private accounts viewing archived posts and stories without having to follow them. Researcher Mayur Fartade has found a vulnerability in Instagram that allowed anyone to access private accounts, viewing archived posts and stories without having to follow them. The expert reported the flaw to […] | Vulnerability | ||
|
2021-06-15 11:54:20 | Wear your MASQ! New Device Fingerprint Spoofing Tool Available in Dark Web (lien direct) | The MASQ tool could be used by attackers to emulate device fingerprints thus allowing them to bypass fraud protection controls The Resecurity® HUNTER unit has identified a new tool available for sale in the Dark Web called MASQ, enabling bad actors to emulate device fingerprints thus allowing them to bypass fraud protection controls, including authentication mechanisms. One of the […] | Tool | ||
|
2021-06-15 09:33:43 | REvil ransomware gang hit US nuclear weapons contractor Sol Oriens (lien direct) | The REvil ransomware gang made the headlines again, the group hit the US nuclear weapons contractor Sol Oriens and stole the victim’s data. US nuclear weapons contractor Sol Oriens was hit by a cyberattack carried out by the REvil ransomware operators, which claims to have stolen data. Sol Orien provides consultant services to the National Nuclear […] | Ransomware | ||
|
2021-06-14 23:08:15 | Apple fixed 2 WebKit flaws exploited to target older iPhones (lien direct) | Apple released an out-of-band iOS update for older iPhones and iPads and warned that threat actors are actively exploiting two flaws in WebKit. Apple released an out-of-band iOS update ( iOS 12.5.4 patch) for older iPhones and iPad, the IT giant also warned that some vulnerabilities affecting its WebKit may have been actively exploited. WebKit is a browser […] | Threat | ||
|
2021-06-14 21:02:16 | (Déjà vu) Microsoft experts disrupted a large-scale BEC campaign (lien direct) | Microsoft disrupted a large-scale business email compromise (BEC) campaign that used forwarding rules to access messages related to financial transactions. Microsoft researchers announced to have disrupted the cloud-based infrastructure used by crooks in a recent large-scale business email compromise (BEC) campaign. The attackers breached the mailboxes of the victims using phishing messages, then exfiltrated sensitive […] | |||
|
2021-06-14 18:53:36 | SEO poisoning campaign aims at delivering RAT, Microsoft warns (lien direct) | Microsoft spotted a series of attacks that use SEO poisoning to deliver a remote access trojan (RAT) used by threat actors to steal sensitive data. Microsoft is monitoring a wave of cyber attacks that leverages SEO poisoning to deliver a remote access trojan (RAT) to steal sensitive data from the infected systems The IT giant […] | Threat | ||
|
2021-06-14 13:32:08 | G7 calls on Russia to dismantle operations of ransomware gangs within its borders (lien direct) | The member states of the G7 group have called on Russia and other states to dismantle operations of the ransomware gangs operating within their countries. G7 member states have called on Russia and other states to dismantle operations of ransomware gangs operating within their countries. The call to action follows the large number of ransomware […] | Ransomware | ||
|
2021-06-14 07:37:34 | Major blackouts across Puerto Rico. Are the DDoS and the fire linked? (lien direct) | A fire and cyberattack hit an electrical substation for the electricity provider Luma Energy, causing major blackouts across Puerto Rico. A large fire at the Luma’s Monacillo electrical substation in San Juan for Puerto Rico’s new electricity provider, Luma Energy, caused major blackouts across Puerto Rico on Thursday. Around nearly 800,000 residents went in in […] | |||
|
2021-06-13 14:05:32 | APWG: Phishing maintained near-record levels in the first quarter of 2021 (lien direct) | The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. The document revealed that phishing maintained record levels in the first quarter of 2021, the […] | |||
|
2021-06-13 12:23:17 | Security Affairs newsletter Round 318 (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. REvil Ransomware spokesman releases an interview on recent attacks Chinese SharpPanda APT developed a new backdoor in the […] | Ransomware | ||
|
2021-06-12 16:37:01 | McDonald\'s discloses data breach in US, Taiwan and South Korea (lien direct) | McDonald’s fast-food chain disclosed a data breach, hackers have stolen information belonging to customers and employees from the US, South Korea, and Taiwan. McDonald’s, the world’s largest restaurant chain by revenue, has disclosed a data breach that impacted customers and employees from the US, South Korea, and Taiwan. The hackers compromised the system of the […] | Data Breach | ||
|
2021-06-12 13:39:38 | Volkswagen discloses data breach, 3.3 million customers impacted (lien direct) | Volkswagen America discloses a data breach at a third-party vendor that exposed the personal details of more than 3.3 million of its customers. Volkswagen America discloses a data breach suffered by a third-party vendor used by the car vendor for sales and marketing purposes. The security breach affected a subsidiary Audi and authorized dealers in […] | Data Breach | ||
|
2021-06-12 12:02:50 | CVE-2021-3560 flaw in polkit auth system service affects most of Linux distros (lien direct) | An authentication bypass flaw in the polkit auth system service used on most Linux distros can allow to get a root shell. An authentication bypass vulnerability in the polkit auth system service, tracked as CVE-2021-3560, which is used on most Linux distros can allow an unprivileged attacker to get a root shell. “A flaw was found […] | Vulnerability | ||
|
2021-06-11 22:12:06 | (Déjà vu) Avaddon ransomware gang shuts down their operations and releases decryption keys (lien direct) | The Avaddon ransomware gang has shut down its operations and released the decryption keys to allow victims to recover their files for free. Good news for the victims of the Avaddon ransomware gang, the cybercrime group has shut down its operations and provided the decryption keys to BleepingComputer website. The group has also shut down […] | Ransomware | ||
|
2021-06-11 19:26:31 | CEO-Level Guide to Prevent Data Hacking Technologies & Incidents (lien direct) | The current era, where all data is digital, the threats of fraud, breach and data sprawl are more of a reality than ever. In these times, organizations not only take a hit because of the breached data and cyber threats, but also are heavily fined under global privacy regulations. These privacy regulations are in place […] | |||
|
2021-06-11 17:42:52 | Italy announced its Cybersecurity Agency (lien direct) | Italy announced the creation of the national cybersecurity agency, a move aimed at increase the level of cyber security of its infrastructure The Italian government has announced the creation of a new agency focused on cybersecurity, Prime Minister Mario Draghi provided its strong commitment to the creation of the agency that is tasked to protect […] | |||
|
2021-06-11 12:17:47 | Mysterious custom malware used to steal 1.2TB of data from million PCs (lien direct) | Experts spotted a new mysterious malware that was used to collect a huge amount of data, including sensitive files, credentials, and cookies. Researchers from NordLocker have discovered an unsecured database containing 1.2-terabyte of stolen data. Threat actors used custom malware to steal data from 3.2 million Windows systems between 2018 and 2020. The database includes […] | Malware Threat |
To see everything:
Our RSS (filtrered)
