Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2017-01-25 20:35:39 |
Kaspersky Lab\'s top investigator reportedly arrested in treason probe (lien direct) |
Charges ignite concern that other researchers could be prosecuted as well. |
|
|
|
|
2017-01-24 21:29:50 |
Ransomware app hosted in Google Play infects unsuspecting Android user (lien direct) |
"ALL YOUR DATA IS ALREADY STORED ON OUR SERVERS!" malicious app warned. |
|
|
|
|
2017-01-24 01:15:46 |
Widely used WebEx plugin for Chrome will execute attack code-patch now! (lien direct) |
Publicly known “magic string†lets any site run malicious code, no questions asked. |
|
|
|
|
2017-01-23 21:39:28 |
Virulent Android malware returns, gets >2 million downloads on Google Play (lien direct) |
HummingWhale is back with new tricks, including a way to gin user ratings. |
|
|
|
|
2017-01-20 21:40:38 |
Already on probation, Symantec issues more illegit HTTPS certificates (lien direct) |
At least 108 Symantec certificates threatened the integrity of the encrypted Web. |
|
|
|
|
2017-01-20 13:54:27 |
Megaviral Meitu “beauty†app\'s data grab is anything but skin-deep (lien direct) |
Android version seeks intrusive permissions, sends lots of data to servers in China. |
|
|
|
|
2017-01-19 00:04:21 |
That critical “ImageTragick†bug Ars warned you about? It cost Facebook $40k (lien direct) |
Widely used image-processing app left site vulnerable to code-execution exploits. |
|
|
|
|
2017-01-18 19:18:32 |
Newly discovered Mac malware found in the wild also works well on Linux (lien direct) |
Apple issues MacOS update that automatically protects infected machines. |
|
|
|
|
2017-01-17 22:31:49 |
It\'s shockingly easy to hijack a Samsung SmartCam camera (lien direct) |
Web management interface susceptible to command-execution bug. |
|
|
|
|
2017-01-16 21:25:28 |
Who\'s winning the cyber war? The squirrels, of course (lien direct) |
CyberSquirrel1 project shows fuzzy-tailed intruders cause more damage than "cyber" does. |
|
|
★★★
|
|
2017-01-14 00:11:25 |
Reported “backdoor†in WhatsApp is in fact a feature, defenders say (lien direct) |
At issue is the way app behaves when an end user's encryption key changes. |
|
|
|
|
2017-01-13 01:08:18 |
NSA-leaking Shadow Brokers lob Molotov cocktail before exiting world stage (lien direct) |
With 8 days before inauguration of Donald Trump, leak is sure to inflame US officials. |
|
|
|
|
2017-01-12 23:15:22 |
Adobe angers Chrome users by bundling browser plugin with security update (lien direct) |
Save Web page as PDF extension is showing up when it wasn't asked for. |
|
|
|
|
2017-01-12 21:12:49 |
Hack reveals data company Cellebrite works with everyone from US cops to Russia (lien direct) |
Cellebrite unaware of "increased risk to customers as a result of this incident." |
|
|
|
|
2017-01-11 21:07:08 |
Hackers trigger yet another power outage in Ukraine (lien direct) |
For the second year in a row, hack targets Ukraine during one of its coldest months. |
|
|
|
|
2017-01-10 20:49:39 |
Shamoon disk-wiping attackers can now destroy virtual desktops, too (lien direct) |
Mystery malware begins targeting a key disk-wiping defense. |
|
|
|
|
2017-01-09 21:09:45 |
How hackers made life hell for a CIA boss and other top US officials (lien direct) |
Sex, lies, and social engineering: Inside the depraved world of Crackas With Attitude. |
|
|
|
|
2017-01-09 15:07:01 |
Google plugs severe Android vulnerability that exposed devices to spying (lien direct) |
Bootmode exploit gave attackers ability to hack modem, eavesdrop on calls. |
|
|
|
|
2017-01-09 13:42:43 |
The official Tor browser for iOS is free to use (lien direct) |
Onion Browser developer Mike Tigas tells Ars he gave up $25,000 in sales a year. |
|
|
|
|
2017-01-07 00:49:47 |
It\'s official: US election systems designated as critical (lien direct) |
Move comes after US says Russian hackers attempted to influence 2016 election. |
|
|
|
|
2017-01-07 00:12:52 |
Intel report describes Putin-directed smear campaign to elect Trump (lien direct) |
Report asserts “high confidence†of Putin involvement, Russia support of Wikileaks |
|
|
|
|
2017-01-06 21:05:52 |
Online databases dropping like flies, with >10k falling to ransomware groups (lien direct) |
Poorly secured MongoDB installations deleted and held for ransom. |
|
|
|
|
2016-12-30 23:09:15 |
White House fails to make case that Russian hackers tampered with election (lien direct) |
US issued JAR billed itself as an indictment that would prove Russian involvement. |
|
|
|
|
2016-12-29 21:40:50 |
Obama tosses 35 Russians out of US, sanctions others for election meddling (lien direct) |
Intelligence dump from DHS and FBI bolsters claims of Russian election interference.
|
|
|
|
|
2016-12-29 18:31:52 |
US reportedly plans retaliation against Russian election hacks soon [Update: sanctions announced] (lien direct) |
A “proportional response†won't deter future meddling, says one security expert. |
|
|
|
|
2016-12-29 14:35:40 |
Op-ed: Five unexpected lessons from the Ashley Madison breach (lien direct) |
This is the first FTC complaint involving lying bots-there will be more. |
|
|
|
|
2016-12-28 20:45:48 |
Police ask: “Alexa, did you witness a murder?†(lien direct) |
Drowning in hot tub was followed by 140-gallon hose-down recorded by utility. |
|
|
|
|
2016-12-28 15:00:47 |
In an era of password leaks, Netflix tries extreme vigilance-with mixed results (lien direct) |
Did my account actually get hacked? Hard to tell, even after Netflix's "heads up." |
|
|
|
|
2016-12-23 14:26:26 |
This low-cost device may be the world\'s best hope against account takeovers (lien direct) |
Privacy-preserving “cryptographic assertions†are impossible to guess or phish. |
|
|
|
|
2016-12-20 13:44:40 |
Op-ed: Why I\'m not giving up on PGP (lien direct) |
Key discovery is an issue, but Signal can't replace PGP. |
|
|
|
|
2016-12-16 21:42:56 |
Home routers under attack in ongoing malvertisement blitz (lien direct) |
DNSChanger causes network computers to visit fraudulent domains. |
|
|
|
|
2016-12-16 19:35:53 |
Hackers behind anti-doping leaks: Please write about us! We\'ll give you exclusive (lien direct) |
Offering exclusive access to files in exchange for a story (though probably not this one). |
|
|
|
|
2016-12-15 21:36:08 |
0-days hitting Fedora and Ubuntu open desktops to a world of hurt (lien direct) |
If your desktop runs a mainstream release of Linux, chances are you're vulnerable. |
|
|
|
|
2016-12-15 19:55:34 |
What can you do with a billion Yahoo passwords? Lots of bad things (lien direct) |
Now, Yahoo user data could be behind scores of spear-phishes or other breaches. |
|
Yahoo
|
|
|
2016-12-14 23:26:21 |
Yahoo admits it\'s been hacked again, and 1 billion accounts were exposed (lien direct) |
That's a billion with a b-and is separate from the breach "cleared" in September. |
|
Yahoo
|
|
|
2016-12-14 20:28:57 |
Hacked cheating site Ashley Madison will pay $1.6 million to FTC for breach (lien direct) |
Commission settlement officially $17.5 million, but fine reduced due to inability to pay.
|
|
|
|
|
2016-12-14 18:25:46 |
The DDoS vigilantes trying to silence Black Lives Matter (lien direct) |
The Web lets anyone be a publisher-or a vigilante. |
|
|
|
|
2016-12-14 01:30:50 |
The DNC keeps the Watergate file cabinet next to server hacked by Russia (lien direct) |
Blow-by-blow account of hack that hit Democratic National Committee. |
|
|
|
|
2016-12-13 19:10:17 |
Covert downloaders found preinstalled on dozens of low-cost Android phone models (lien direct) |
Low-cost phones surreptitiously install and reinstall unwanted apps. |
|
|
|
|
2016-12-12 22:13:51 |
Did the Russians “hack†the election? A look at the established facts (lien direct) |
No smoking gun, but evidence suggests a Russian source for the cyber attacks on Democrats. |
|
|
|
|
2016-12-12 19:22:12 |
Stop using Netgear routers with unpatched security bug, experts warn (lien direct) |
Command-injection vulnerability affects multiple models and is trivial to exploit. |
|
|
|
|
2016-12-10 14:00:51 |
Op-ed: I\'m throwing in the towel on PGP, and I work in security (lien direct) |
“If you need to securely contact me... DM me asking for my Signal number.†|
|
|
|
|
2016-12-09 22:30:15 |
No, there\'s no evidence (yet) the feds tried to hack Georgia\'s voter database (lien direct) |
State election official bungles the case that DHS tried to breach his office. |
|
|
|
|
2016-12-09 19:42:44 |
Obama asks intel community to conduct “full review†of election-related hacks (lien direct) |
As Trump denies Russian involvement, Congress calls for investigations-and consequences. |
|
|
|
|
2016-12-09 16:45:25 |
Fancy Bear ramping up infowar against Germany-and rest of West (lien direct) |
Russian hackers part of broader campaign against West, German intel chief warns. |
|
APT 28
|
|
|
2016-12-08 19:55:07 |
Disgraced IT worker stole confidential Expedia e-mails even after he left (lien direct) |
Insider-trading scheme netted more than $331,000 in illegal profits. |
|
|
|
|
2016-12-06 22:16:37 |
Millions exposed to malvertising that hid attack code in banner pixels (lien direct) |
Manipulated images are almost impossible to detect by the untrained eye. |
|
|
|
|
2016-12-05 23:40:27 |
Thieves can guess your secret Visa card details in just seconds (lien direct) |
Distributed guessing attacks are surprisingly effective. |
|
|
|
|
2016-12-02 20:55:38 |
There\'s a new DDoS army, and it could soon rival record-setting Mirai (lien direct) |
For more than a week, someone has waged massive attacks on a daily basis. |
|
|
|
|
2016-12-02 19:00:30 |
Buffer overflow exploit can bypass Activation Lock on iPads running iOS 10.1.1 (lien direct) |
But the exploit relies on tricks that aren't possible on iPhones. |
|
|
|