What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-01-05 18:01:02 | Honda, Acura cars hit by Y2K22 bug that rolls back clocks to 2002 (lien direct) | Honda and Acura cars have been hit with a Year 2022 bug, aka Y2K22, that resets the navigation system's clock to January 1st, 2002, with no way to change it. [...] | |||
|
2022-01-05 17:42:25 | (Déjà vu) Broker-dealers impersonators stole $50 million using spoofed sites (lien direct) | A California man confirmed his role in a large-scale and long-running Internet-based fraud scheme that allowed him and other fraudsters to siphon roughly $50 million from dozens of investors over eight years, between 2012 to October 2020. [...] | |||
|
2022-01-05 17:42:25 | 70 investors lose $50 million to fraudsters posing as broker-dealers (lien direct) | A California man confirmed his role in a large-scale and long-running Internet-based fraud scheme that allowed him and other fraudsters to siphon roughly $50 million from dozens of investors over eight years, between 2012 to October 2020. [...] | |||
|
2022-01-05 15:51:24 | Microsoft Defender for Endpoint adds zero-touch iOS onboarding (lien direct) | Microsoft says zero-touch onboarding for Microsoft Defender for Endpoint (MDE) on iOS is now available in public preview, allowing enterprise admins to silently install Defender for Endpoint automatically on enrolled devices. [...] | |||
|
2022-01-05 12:42:27 | NY OAG: Hackers stole 1.1 million customer accounts from 17 companies (lien direct) | The New York State Office of the Attorney General (NY OAG) has warned 17 well-known companies that roughly 1.1 million of their customers have had their user accounts compromised in credential stuffing attacks. [...] | |||
|
2022-01-05 11:55:16 | Crypto platform ARBIX flagged as a rugpull, transfers $10 million (lien direct) | Arbix Finance, an audited and supposedly trustworthy yield farming platform, has been flagged as a 'rugpull,' deleting its site, Twitter, and Telegram channel and transferring $10 million worth of deposited cryptocurrency. [...] | |||
|
2022-01-05 09:54:34 | iOS malware can fake iPhone shut downs to snoop on camera, microphone (lien direct) | Researchers have developed a new technique that fakes a shutdown or reboot of iPhones, preventing malware from being removed and allowing hackers to secretly snoop on microphones and receive sensitive data via a live network connection. [...] | Malware | ||
|
2022-01-05 08:00:00 | \'Elephant Beetle\' spends months in victim networks to divert transactions (lien direct) | A financially-motivated actor dubbed 'Elephant Beetle' is stealing millions of dollars from organizations worldwide using an arsenal of over 80 unique tools and scripts. [...] | |||
|
2022-01-05 06:00:00 | Microsoft code-sign check bypassed to drop Zloader malware (lien direct) | A new Zloader campaign exploits Microsoft's e-signature code verification to steal user credentials from over two thousand victims in 111 countries. [...] | Malware | ||
|
2022-01-04 18:51:25 | Emergency Windows Server update fixes Remote Desktop issues (lien direct) | Microsoft has released an emergency out-of-band update to address a Windows Server bug leading to Remote Desktop connection and performance issues. [...] | Guideline | ||
|
2022-01-04 15:59:31 | US govt provides new guidelines for authentication systems (lien direct) | The National Institute of Standards and Technology (NIST) released new authentication system recommendations, highlighting multiple erroneous approaches in currently established practices. [...] | |||
|
2022-01-04 15:20:25 | FTC warns companies to secure consumer data from Log4J attacks (lien direct) | The US Federal Trade Commission (FTC) has warned today that it will go after any US company that fails to protect its customers' data against ongoing Log4J attacks. [...] | |||
|
2022-01-04 14:28:42 | First Microsoft Pluton-powered Windows 11 PCs unveiled at CES (lien direct) | Lenovo unveiled today at CES 2022 the first Microsoft Pluton-powered Windows 11 PCs, the ThinkPad Z13 and Z16, with AMD Ryzen 6000 Series processors. [...] | |||
|
2022-01-04 12:52:01 | Hackers use video player to steal credit cards from over 100 sites (lien direct) | Hackers used a cloud video hosting service to perform a supply chain attack on over one hundred real estate sites that injected malicious scripts to steal information inputted in website forms. [...] | |||
|
2022-01-04 12:07:08 | UScellular discloses data breach after billing system hack (lien direct) | UScellular, self-described as the fourth-largest wireless carrier in the US, has disclosed a data breach after the company's billing system was hacked in December 2021. [...] | Data Breach Hack | ||
|
2022-01-04 11:22:55 | Have I Been Pwned warns of DatPiff data breach impacting millions (lien direct) | The cracked passwords for almost 7.5 million DatPiff members are being sold online, and users can check if they are part of the data breach through the Have I Been Pwned notification service. [...] | Data Breach | ||
|
2022-01-03 15:45:11 | Purple Fox malware distributed via malicious Telegram installers (lien direct) | A laced Telegram for desktop installer was spotted distributing the Purple Fox malware while disabling the UAC on the infected systems. [...] | Malware | ||
|
2022-01-03 14:57:48 | (Déjà vu) Microsoft Skype challenge: Can you solve this puzzle 10 times? (lien direct) | New Skype users report frustration after being presented with a captcha that requires them to solve a complex puzzle ten times before signing up for the service. [...] | |||
|
2022-01-03 14:57:48 | Microsoft Skype makes you solve a complex captcha 10 times to sign up (lien direct) | New Skype users report frustration after being presented with a captcha that requires them to solve a complex puzzle ten times before signing up for the service. [...] | |||
|
2022-01-03 11:50:42 | Broward Health discloses data breach affecting 1.3 million people (lien direct) | Florida's Broward Health healthcare system has disclosed a large-scale data breach incident impacting 1,357,879 individuals. [...] | Data Breach | ||
|
2022-01-03 10:39:58 | Apple iOS vulnerable to HomeKit \'doorLock\' denial of service bug (lien direct) | A novel persistent denial of service vulnerability named 'doorLock' was discovered in Apple HomeKit, affecting iOS 14.7 through 15.2. [...] | Vulnerability | ||
|
2022-01-03 08:00:00 | Don\'t copy-paste commands from webpages - you can get hacked (lien direct) | Programmers, sysadmins, security researchers, and tech hobbyists copying-pasting commands from web pages into a console or terminal risk having their system compromised. Wizer's Gabriel Friedlander demonstrates an obvious, simple yet stunning trick that'll make you think twice before copying-pasting text from web pages. [...] | |||
|
2022-01-02 14:06:31 | Microsoft releases emergency fix for Exchange year 2022 bug (lien direct) | Microsoft has released an emergency fix for a year 2022 bug that is breaking email delivery on on-premise Microsoft Exchange servers. [...] | |||
|
2022-01-02 12:50:01 | BleepingComputer\'s most popular cybersecurity and tech stories of 2021 (lien direct) | 2021 is over, and we can look forward to a hopefully healthier, safer, and more normal 2022. However, it was a big year for technology and cybersecurity with massive cyberattacks and data breaches, innovative phishing attacks, privacy concerns, and of course, zero-day vulnerabilities. [...] | |||
|
2022-01-02 09:48:35 | (Déjà vu) Uber ignores vulnerability that lets you send any email from Uber.com (lien direct) | A vulnerability in Uber's email system allows just about anyone to send emails on behalf of Uber. Uber is aware of the flaw but has decided not to fix it for now. [...] | Vulnerability | Uber Uber | |
|
2022-01-02 09:48:35 | Uber dismisses vulnerability that lets you email anyone as Uber! (lien direct) | A vulnerability in Uber's email system allows just about anyone to send emails on behalf of Uber. Uber is aware of the flaw but has decided not to fix it. [...] | Vulnerability | Uber Uber | |
|
2022-01-01 12:29:32 | Microsoft Exchange year 2022 bug in FIP-FS breaks email delivery (lien direct) | Microsoft Exchange on-premise servers cannot deliver email starting on January 1st, 2022, due to a "Year 2022" bug in the FIP-FS anti-malware scanning engine. [...] | |||
|
2022-01-01 07:46:26 | Popular Q&A app Curious Cat loses domain, posts bizarre tweets (lien direct) | Popular social networking and anonymous Q&A app, Curious Cat has lost control of its domain. Soon after the platform announced losing control of their domain, a series of bizarre events and support responses have confused the app users who are now unable to trust Curious Cat. [...] | |||
|
2021-12-31 12:35:50 | PulseTV discloses potential compromise of 200,000 credit cards (lien direct) | PulseTV (pulsetv.com), an American e-store that uses TV as a medium to reach customers, has disclosed a large-scale customer credit card compromise. [...] | |||
|
2021-12-31 08:13:00 | Top 10 healthcare breaches in the U.S. exposed data of 19 million (lien direct) | The healthcare sector has been the target of hundreds of cyberattacks this year. A tally of public data breach reports so far shows that tens of millions of healthcare records have been exposed to unauthorized parties. [...] | Data Breach | ||
|
2021-12-31 07:15:22 | Netgear leaves vulnerabilities unpatched in Nighthawk router (lien direct) | Researchers have found half a dozen high-risk vulnerabilities in the latest firmware version for the Netgear Nighthawk R6700v3 router. At publishing time the flaws remain unpatched. [...] | |||
|
2021-12-30 15:17:31 | Have I Been Pwned adds 441K accounts stolen by RedLine malware (lien direct) | The Have I Been Pwned data breach notification service now lets you check if your email and password are one of 441,000 accounts stolen in an information-stealing campaign using RedLine malware. [...] | Data Breach Malware | ||
|
2021-12-30 11:02:00 | University loses 77TB of research data due to backup error (lien direct) | The Kyoto University in Japan has lost about 77TB of research data due to an error in the backup system of its Hewlett-Packard supercomputer. [...] | |||
|
2021-12-30 09:55:50 | (Déjà vu) Firmware attack can drop persistent malware in hidden SSD area (lien direct) | Korean researchers have developed a set of attacks against some solid-state drives (SSDs) that could allow planting malware in a location that's beyond the reach of the user and security solutions. [...] | Malware | ||
|
2021-12-30 09:55:50 | Hiding malware inside the flex capacity space on modern SSDs (lien direct) | Korean researchers have developed a set of attacks against some solid-state drives (SSDs) that could allow planting malware in a location that's beyond the reach of the user and security solutions. [...] | Malware | ||
|
2021-12-30 07:20:58 | Twitter account of FBI\'s fake chat app, ANOM seen trolling today (lien direct) | The Twitter account previously associated with the ANOM chat app is posting frivolous tweets this week. ANOM was a fake encrypted messaging platform created as part of a global sting operation led by the U.S. FBI, Australian Federal Police (AFP), and other law enforcement agencies to catch criminals. [...] | |||
|
2021-12-29 15:42:14 | Silent danger: One in five aged domains is malicious, risky, or unsafe (lien direct) | The number of malicious dormant domains is on the rise, and as researchers warn, roughly 22.3% of strategically aged domains pose some form of danger. [...] | |||
|
2021-12-29 14:01:07 | (Déjà vu) Ransomware gang coughs up decryptor after realizing they hit the police (lien direct) | The AvosLocker ransomware operation provided a free decryptor after learning they encrypted a US government agency. [...] | Ransomware | ||
|
2021-12-29 14:01:07 | AvosLocker ransomware gives free decryptor to US police dept (lien direct) | The AvosLocker ransomware operation provided a free decryptor after learning they encrypted a US government agency. [...] | Ransomware | ||
|
2021-12-29 12:03:42 | T-Mobile says new data breach caused by SIM swap attacks (lien direct) | T-Mobile confirmed that recent reports of a new data breach are linked to notifications sent to a "very small number of customers" that they fell victim to SIM swap attacks. [...] | Data Breach | ||
|
2021-12-29 09:15:08 | Microsoft Defender Log4j scanner triggers false positive alerts (lien direct) | Microsoft Defender for Endpoint is currently showing "sensor tampering" alerts linked to the company's newly deployed Microsoft 365 Defender scanner for Log4j processes. [...] | |||
|
2021-12-29 07:07:07 | Fintech firm hit by log4j hack refuses to pay $5 million ransom (lien direct) | One of the largest Vietnamese crypto trading platforms, ONUS, recently suffered a cyber attack on its payment system running a vulnerable Log4j version. Soon enough, threat actors approached ONUS to extort $5 million and threatened to publish the customer data should ONUS refuse to comply. [...] | Hack | ||
|
2021-12-28 15:12:01 | Log4j 2.17.1 out now, fixes new remote code execution bug (lien direct) | Apache has released another Log4j version, 2.17.1 fixing a newly discovered remote code execution (RCE) vulnerability in 2.17.0, tracked as CVE-2021-44832. Prior to today, 2.17.0 was the most recent version of Log4j and deemed the safest release to upgrade to, but that advice has now evolved. [...] | Vulnerability | ||
|
2021-12-28 14:23:39 | New Flagpro malware linked to Chinese state-backed hackers (lien direct) | The cyber-espionage APT (advanced persistent threat) group tracked as 'BlackTech' was spotted using a novel malware called 'Flagpro' in attacks against Japanese firms. [...] | Malware | ||
|
2021-12-28 13:07:19 | RedLine malware shows why passwords shouldn\'t be saved in browsers (lien direct) | The RedLine information-stealing malware targets popular web browsers such as Chrome, Edge, and Opera, demonstrating why storing your passwords in browsers is a bad idea. [...] | Malware | ||
|
2021-12-28 12:27:44 | LastPass users warned their master passwords are compromised (lien direct) | Many LastPass users report that their master passwords have been compromised after receiving email warnings that someone tried to use it to log into their accounts from unknown locations. [...] | LastPass | ||
|
2021-12-28 11:38:39 | Riskware Android streaming apps found on Samsung\'s Galaxy store (lien direct) | Samsung's official Android app store, called the Galaxy Store, has had an infiltration of riskware apps that triggered multiple Play Protect warnings on people's devices. [...] | |||
|
2021-12-28 04:14:45 | Amazon Alexa slammed for giving lethal challenge to 10-year-old girl (lien direct) | An Amazon Echo owner was left shocked after Alexa proposed a dangerous challenge to her 10-year old child. AI-powered virtual assistants like Alexa that power smart devices and speakers such as Echo, Echo Dot, and Amazon Tap, come with a plethora of capabilities, including playing verbal games. [...] | |||
|
2021-12-27 11:19:45 | QNAP NAS devices hit in surge of ech0raix ransomware attacks (lien direct) | Users of QNAP network-attached storage (NAS) devices are reporting attacks on their systems with the eCh0raix ransomware, also known as QNAPCrypt. [...] | Ransomware | ||
|
2021-12-27 07:56:23 | (Déjà vu) Microsoft: Windows 11 bug causes HDR color rendering issues (lien direct) | Microsoft has confirmed a new issue impacting devices running Windows 11, version 21H2, where apps using Win32 APIs to render colors on some high dynamic range (HDR) displays may not work as expected. [...] |
To see everything:
Our RSS (filtrered)
