What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-08-31 13:58:00 | (Déjà vu) Cisco warns of actively exploited IOS XR zero-days (lien direct) | Cisco said it discovered the attacks last week during a support case the company's support team was called in to investigate. | |||
|
2020-08-31 13:58:00 | Cisco warns of actively exploited IOS XR zero-day (lien direct) | Cisco said it discovered the attacks last week during a support case the company's support team was called in to investigate. | |||
|
2020-08-30 12:14:51 | Google Play apps promised free shoes, but users got ad fraud malware instead (lien direct) | White Ops discovers a collection of Android apps that installed a hidden browser to load ad-heavy pages and commit ad fraud. | Malware | ||
|
2020-08-28 23:01:54 | Malicious npm package caught trying to steal sensitive Discord and browser files (lien direct) | Malicious code was hidden inside a JavaScript library for working with the "Fall Guys: Ultimate Knockout" game API. | |||
|
2020-08-28 10:11:39 | Former engineer pleads guilty to Cisco network damage, causing Webex Teams account chaos (lien direct) | The engineer was responsible for damage that cost Cisco $2.4 million to rectify. | |||
|
2020-08-28 03:20:00 | Academics bypass PINs for Visa contactless payments (lien direct) | Researchers: "In other words, the PIN is useless in Visa contactless transactions." | |||
|
2020-08-28 00:47:00 | Elon Musk confirms Russian hacking plot targeted Tesla factory (lien direct) | A Russian hacker tried to recruit a Tesla employee working for the company's factory in Sparks, Nevada. | |||
|
2020-08-27 20:01:00 | US sues to recover cryptocurrency funds stolen by North Korean hackers (lien direct) | US officials are going after 280 BTC and ETH accounts storing funds North Korean hackers stole from two cryptocurrency exchanges. | |||
|
2020-08-27 18:00:04 | Facebook sues maker of advertising SDK for refusing to participate in audit (lien direct) | Facebook also sued the operator of a website selling Instagram followers, likes, and comments. | |||
|
2020-08-27 16:50:00 | Iranian hackers impersonate journalists to set up WhatsApp calls and gain victims\' trust (lien direct) | Iranian hackers impersonated journalists from German TV Deutsche Welle and Israeli magazine Jewish Journal, and the Wall Street Journal in earlier attacks this year. | |||
|
2020-08-27 10:00:45 | Your email threads are now being hijacked by the QBot Trojan (lien direct) | Operators have changed their tactics in the quest for data theft. | |||
|
2020-08-27 02:45:00 | DDoS extortionists target NZX, Moneygram, Braintree, and other financial services (lien direct) | One of the victims, the New Zealand stock exchange (NZX), has halted trading for the third day in a row following the attacks. | |||
|
2020-08-26 20:54:16 | Twitter botnet quoting Dracula book caught pushing pro-Chinese propaganda (lien direct) | Botnet was estimated at around 3,000 bots, before Twitter suspended some accounts this month. | |||
|
2020-08-26 20:54:00 | Twitter takes down \'Dracula\' botnet pushing pro-Chinese propaganda (lien direct) | Botnet was estimated at around 3,000 bots, before accounts were suspended or restricted last week. | |||
|
2020-08-26 18:33:00 | A quarter of the Alexa Top 10K websites are using browser fingerprinting scripts (lien direct) | Academics also discover many new previously unreported JavaScript APIs that are currently being used to fingerprint users. | |||
|
2020-08-26 15:18:00 | Two members of movie piracy group \'Sparks\' arrested in Cyprus and the US (lien direct) | Investigators said the group posed as real-world DVD/Blu-Ray retailers to obtain and leak unreleased movies and TV shows. | |||
|
2020-08-26 08:00:07 | Mercenary hacker group targets companies with 3Ds Max malware (lien direct) | Hacker-for-hire group uses a malicious 3Ds Max plugin to infect companies with malware and steal proprietary information. | Malware | ||
|
2020-08-26 00:57:04 | Russian arrested for trying to recruit an insider and hack a Nevada company (lien direct) | A Russian national traveled to the US to recruit and convince an employee of a Nevada company to install malware on the company's network. | Malware Hack | ||
|
2020-08-25 23:07:15 | FBI informant provides a glimpse into the inner workings of tech support scams (lien direct) | Court documents expose how tech support scammers operate. | |||
|
2020-08-25 17:17:00 | (Déjà vu) Conti (Ryuk) joins the ranks of ransomware gangs operating data leak sites (lien direct) | More and more ransomware gangs are now operating sites where they leak sensitive data from victims who refuse to pay the ransom demand. | Ransomware | ||
|
2020-08-25 17:17:00 | GOT: Conti (Ryuk) joins the ranks of ransomware gangs operating data leak sites (lien direct) | More and more ransomware gangs are now operating sites where they leak sensitive data from victims who refuse to pay the ransom demand. | Ransomware | ||
|
2020-08-25 13:50:34 | Browser-based cryptojacking sees sudden spike in activity in Q2 2020 (lien direct) | However, there's nothing to worry about. Browser-based cryptojacking is not making a comeback. | |||
|
2020-08-25 09:00:00 | Lazarus group strikes cryptocurrency firm through LinkedIn job adverts (lien direct) | A system administrator proved to be the weak link, opening the door for Lazarus to attack. | APT 38 | ||
|
2020-08-25 00:19:45 | (Déjà vu) Security researcher discloses Safari bug after Apple\'s delays patch (lien direct) | Safari bug could be abused to leak or steal files from users' devices. | |||
|
2020-08-25 00:19:00 | Security researcher discloses Safari bug after Apple delays patch (lien direct) | Safari bug could be abused to leak or steal files from users' devices. | |||
|
2020-08-24 18:02:00 | Report claims a popular iOS SDK is stealing click revenue from other ad networks (lien direct) | The suspicious iOS SDK is used by more than 1,200 apps, with 300 million downloads/month. | |||
|
2020-08-24 12:10:40 | Group of unskilled Iranian hackers behind recent attacks with Dharma ransomware (lien direct) | Security firm Group-IB says the hackers have been targeting companies in Russia, Japan, China, and India. | Ransomware | ||
|
2020-08-24 03:04:51 | Top exploits used by ransomware gangs are VPN bugs, but RDP still reigns supreme (lien direct) | While some ransomware groups have heavily targeted Citrix and Pulse Secure VPNs to breach corporate networks in H1 2020, most ransomware attacks take place because of compromised RDP endpoints. | Ransomware | ||
|
2020-08-21 22:43:15 | Free photos, graphics site Freepik discloses data breach impacting 8.3m users (lien direct) | Freepik is one of the most popular websites on the internet, currently ranked #97 on the Alexa Top 100 sites list. | Data Breach | ||
|
2020-08-21 17:59:00 | FBI and CISA warn of major wave of vishing attacks targeting teleworkers (lien direct) | Hackers are calling employees working from home and tricking them into accessing phishing pages for corporate domains. | |||
|
2020-08-21 00:19:51 | University of Utah pays $457,000 to ransomware gang (lien direct) | University officials restored from backups, but they had to pay the ransomware gang to prevent them from leaking student data. | Ransomware | ||
|
2020-08-20 22:30:01 | Instacart discloses security incident caused by two contractors (lien direct) | Instacart says two employees at a third-party support vendor accessed "more shopper profiles than was necessary." | |||
|
2020-08-20 20:51:02 | Former Uber CSO charged for 2016 hack cover-up (lien direct) | DOJ officials say former Uber CSO Joe Sullivan lied to management about the security breach and paid hush money to the hackers. | Hack | Uber | |
|
2020-08-20 19:05:46 | ATM makers Diebold and NCR deploy fixes for \'deposit forgery\' attacks (lien direct) | ATMs from the two companies had bugs that could have allowed card fraudsters to modify the amount of money they deposited on their card, and then abuse the new account balance for illegal cash withdrawals. | |||
|
2020-08-20 15:00:40 | Google fixes major Gmail bug seven hours after exploit details go public (lien direct) | Attackers could have sent spoofed emails mimicking any Gmail or G Suite customer. | |||
|
2020-08-20 12:03:21 | Transparent Tribe APT targets government, military by infecting USB devices (lien direct) | The hacking group is focused on campaigns in India and Afghanistan. | APT 36 | ||
|
2020-08-20 12:00:03 | Bug bounty platform ZDI awarded $25m to researchers over the past 15 years (lien direct) | Bug bounty platform pioneer Zero-Day Initiative (ZDI) is celebrating its 15-year-old birthday this year. | |||
|
2020-08-20 10:00:09 | Working from home causes surge in security breaches, staff \'oblivious\' to best practices (lien direct) | The coronavirus pandemic is thought to be at the heart of a rise in security incidents this year. | |||
|
2020-08-19 23:43:25 | Experian South Africa discloses data breach impacting 24 million customers (lien direct) | Experian said the attacker was identified and its data deleted from the fraudster's devices. | Data Breach | ||
|
2020-08-19 20:15:38 | CISA warns of BLINDINGCAN, a new strain of North Korean malware (lien direct) | Malware was used in a series of attacks targeting the US defense and aerospace sectors. | Malware | ||
|
2020-08-19 17:43:39 | Tens of suspects arrested for cashing-out Santander ATMs using software glitch (lien direct) | Santander says it fixed the ATM software glitch that was exploited this week across the tri-state area. | |||
|
2020-08-19 13:13:25 | WannaRen ransomware author contacts security firm to share decryption key (lien direct) | A major ransomware outbreak hit China back in April. | Ransomware | ||
|
2020-08-19 11:17:23 | Facebook sued over fact-check messages on anti-vaccination posts (lien direct) | The CHD claims Facebook is “censoring truthful public health posts.” | |||
|
2020-08-19 10:00:05 | New FritzFrog P2P botnet has breached at least 500 enterprise, government servers (lien direct) | The botnet kills off competing processes on Linux systems before mining cryptocurrency. | |||
|
2020-08-18 22:06:22 | Some email clients are vulnerable to attacks via \'mailto\' links (lien direct) | GNOME Evolution, KDE KMail, IBM/HCL Notes, and older versions of Thunderbird found to be vulnerable. | |||
|
2020-08-18 13:00:00 | Ukraine arrests gang who ran 20 crypto-exchanges and laundered money for ransomware gangs (lien direct) | Gang is believed to have laundered more than $42 million in criminal proceeds. | Ransomware | ||
|
2020-08-18 04:35:04 | US Army report says many North Korean hackers operate from abroad (lien direct) | US Army says many North Korean hackers are actually located outside the hermit kingdom, in countries like Belarus, China, India, Malaysia, and Russia. | Cloud | APT 37 | |
|
2020-08-17 22:42:00 | World\'s largest cruise line operator discloses ransomware attack (lien direct) | Carnival Corp says it suffered a ransomware attack on Saturday, August 15, and that hackers stole some of its data. | Ransomware | ||
|
2020-08-17 18:19:33 | Microsoft\'s Control Flow Guard comes to Rust and LLVM compilers (lien direct) | Clang and rustc compilers can now compile CFG-enabled Windows binaries. | |||
|
2020-08-17 16:44:07 | Crypto-mining worm steal AWS credentials (lien direct) | TeamTNT has become the first crypto-minining botnet to include a feature that scans and steal AWS credentials. |
To see everything:
Our RSS (filtrered)
