What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-07-09 12:05:03 | Microsoft Paid Out $13.6 Million in Bug Bounties in Past Year (lien direct) | Microsoft this week revealed that it paid out more than $13.6 million in bug bounties between July 1, 2020, and June 30, 2021. As part of the company's 17 bug bounty and grant programs, participating security researchers can earn awards as high as $250,000 -- the highest rewards are for critical vulnerabilities in Hyper-V. | |||
|
2021-07-09 11:03:48 | Sage X3 Vulnerabilities Can Pose Serious Risk to Organizations (lien direct) | Researchers at cybersecurity firm Rapid7 have uncovered several vulnerabilities in the Sage X3 enterprise resource planning (ERP) product, including flaws that can be exploited remotely without authentication to take complete control of a system. | |||
|
2021-07-09 10:41:02 | Restart After Hacks Delayed Again by Software Firm (lien direct) | A US software firm hit by a ransomware attack that crippled companies worldwide put off restarting its servers until Sunday to harden defenses against further breaches. | Ransomware | ||
|
2021-07-09 03:53:15 | Morgan Stanley Hit by Accellion Hack Through Third-Party Vendor (lien direct) | Investment banking firm Morgan Stanley has informed the New Hampshire Attorney General that personal information of some customers was compromised through a third-party vendor that was using the Accellion FTA service. | Hack | ||
|
2021-07-09 02:33:23 | Israel Says It\'s Targeting Hamas\' Cryptocurrency Accounts (lien direct) | Israel said Thursday it will begin seizing cryptocurrency accounts used by the Palestinian Hamas group to raise money for its armed wing. | |||
|
2021-07-08 17:30:03 | Cisco Patches High Severity Vulnerabilities in BPA, WSA (lien direct) | Cisco this week released patches for high severity vulnerabilities in Business Process Automation (BPA) and Web Security Appliance (WSA) that expose users to privilege escalation attacks. | |||
|
2021-07-08 14:20:43 | Use of Common Malware in Operation Targeting Energy Sector Makes Attribution Difficult (lien direct) | Researchers at cybersecurity firm Intezer have been monitoring a campaign that appears to be mainly aimed at the energy sector, but attribution to a known threat group is made difficult by the fact that the operation involves several common malware families. | Malware Threat | ||
|
2021-07-08 13:18:20 | IoT/OT Device Security Firm NanoLock Raises $11 Million (lien direct) | NanoLock Security, an Israel-based company that specializes in IoT and operational technology (OT) device protection and management, this week announced raising $11 million in a Series B funding round. | |||
|
2021-07-08 13:01:17 | Mac Malware Used in Attacks Targeting Industrial Organizations in Middle East (lien direct) | A malicious campaign focused on the industrial sector in the Middle East has been expanded to also target Mac computers, security researchers at Kaspersky have discovered. | Malware | ||
|
2021-07-08 12:29:03 | Biden Pressured to Act on \'Russian\' Ransomware, Hacking (lien direct) | Top US officials met at the White House on stopping ransomware Wednesday, as pressure mounted on President Joe Biden to take action against Russia over cyberattacks. | Ransomware | ||
|
2021-07-08 11:53:22 | Android Updates for July 2021 Patch Tens of High-Severity Vulnerabilities (lien direct) | Google on Wednesday announced the availability of the July 2021 security updates for the Android operating system, which include patches for over 40 vulnerabilities. | |||
|
2021-07-08 11:24:50 | Emails Offering Kaseya Patches Deliver Malware (lien direct) | IT management software maker Kaseya is still working on patching the vulnerabilities exploited in the recent ransomware attack, but some cybercriminals are sending out emails offering the patches in an effort to distribute their malware. | Ransomware Malware Patching | ||
|
2021-07-08 10:28:49 | Non-Malicious Android Crypto Mining Apps Scam Users at Scale (lien direct) | With no bad behavior, the mobile apps are difficult to detect by automated security scans | |||
|
2021-07-07 15:49:01 | CISA Says Philips Vue Healthcare Products Affected by 15 Vulnerabilities (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday published an advisory to inform organizations about a total of 15 vulnerabilities affecting Philips Vue healthcare products. | |||
|
2021-07-07 15:44:13 | RNC Says No Data Accessed in Synnex Breach (lien direct) | The Republican National Committee says none of its data was compromised in a cyberattack that involved B2B IT services provider Synnex. | |||
|
2021-07-07 14:42:43 | Sophos Acquires Capsule8 to Beef up Linux Protection (lien direct) | British anti-malware powerhouse Sophos has acquired Capsule8 to beef up the Linux protection capabilities to its endpoint detection and response product stack. Financial terms of the deal were not disclosed. | |||
|
2021-07-07 14:37:34 | Kaspersky Password Manager Generated Passwords That Could Quickly Be Brute-Forced (lien direct) | A vulnerability in the Kaspersky Password Manager resulted in the created passwords being weak enough to allow an attacker to brute-force them in seconds, a security researcher claims. | Vulnerability | ||
|
2021-07-07 13:10:44 | Continuous Updates: Everything You Need to Know About the Kaseya Ransomware Attack (lien direct) | 
|
Ransomware | ★★★ | |
|
2021-07-07 12:44:18 | Rural Alabama Electric Cooperative Hit by Ransomware Attack (lien direct) | A utility that provides power in rural southeastern Alabama was hit by a ransomware attack that meant customers temporarily can't access their account information, but an executive said Tuesday that systems were beginning to be brought back online. | Ransomware | ||
|
2021-07-07 12:20:56 | Pro-Trump Social Media Platform GETTR Hacked Shortly After Launch (lien direct) | Pro-Trump social media platform GETTR was targeted by hackers shortly after launch - accounts were apparently compromised and tens of thousands of users had their data scraped and leaked online. | |||
|
2021-07-07 11:24:04 | Researchers Reproduce Exploit Used in Kaseya Hack (lien direct) | Kaseya CEO Downplays Impact of Cyberattack Researchers have successfully reproduced the exploit used in the recent cyberattack targeting IT management software maker Kaseya and its customers. | Hack | ||
|
2021-07-07 08:44:33 | Interpol: Moroccan Citizen Arrested for Website Defacements, Other Cybercrimes (lien direct) | Authorities have arrested a Moroccan citizen believed to have orchestrated cyberattacks against over one hundred websites, in addition to engaging in various other nefarious activities. | |||
|
2021-07-06 21:40:57 | Microsoft Ships Emergency Patch for Critical Windows \'PrintNightmare\' Vulnerability (lien direct) | Microsoft late Tuesday pushed out an emergency patch to cover the Windows 'PrintNightmare' security flaw. | Vulnerability | ||
|
2021-07-06 18:32:16 | Pentagon Cancels Disputed JEDI Cloud Contract With Microsoft (lien direct) | The Pentagon said Tuesday it is canceling a cloud-computing contract with Microsoft that could eventually have been worth $10 billion and will instead pursue a deal with both Microsoft and Amazon. | |||
|
2021-07-06 15:46:07 | British Airways Settles Class Action Over 2018 Data Breach (lien direct) | British Airways has settled a class action brought by individuals impacted by the data breach suffered by the company in 2018, but terms of the settlement have been kept private. | Data Breach | ||
|
2021-07-06 15:40:33 | Hewlett Packard Enterprise Buys Zerto for $374 Million (lien direct) | Hewlett Packard Enterprise announced it has entered into a definitive agreement to acquire cloud data management and protection provider Zerto. The price tag: $374 million in cash. | |||
|
2021-07-06 15:01:28 | Swedish Supermarket Closed by Kaseya Cyberattack (lien direct) | Most of one of Sweden's leading supermarket chains' 800 shops remained closed on Monday, three days after they were indirectly affected by the cyberattack targeting US company Kaseya. | Guideline | ||
|
2021-07-06 13:51:22 | Researcher Describes Potential Impact of Recently Patched SonicWall NSM Flaw (lien direct) | A researcher at Positive Technologies has described the potential impact of a recently addressed command injection vulnerability affecting SonicWall's Network Security Manager (NSM) product. | Vulnerability | ||
|
2021-07-06 12:08:34 | Combating China\'s Insider Threat: Can New Laws Curb IP Theft by Foreign Spies? (lien direct) | 
Theft of U.S. IP is a fundamental part of China's stated intention to be the world leader in science and technology by 2050
|
Guideline | ||
|
2021-07-06 12:00:44 | In Crosshairs of Ransomware Crooks, Cyber Insurers Struggle (lien direct) | In the past few weeks, ransomware criminals claimed as trophies at least three North American insurance brokerages that offer policies to help others survive the very network-paralyzing, data-pilfering extortion attacks they themselves apparently suffered. | Ransomware | ||
|
2021-07-06 11:10:45 | Hackers Demand $70 Million as Kaseya Ransomware Victim Toll Nears 1,500 Firms (lien direct) | IT management software maker Kaseya on Monday said the recent ransomware attack impacted up to 1,500 organizations, but claimed there was no evidence of malicious modifications to product source code. | Ransomware | ||
|
2021-07-05 11:22:15 | Scale, Details of Massive Kaseya Ransomware Attack Emerge (lien direct) | Cybersecurity teams worked feverishly Sunday to stem the impact of the single biggest global ransomware attack on record, with some details emerging about how the Russia-linked gang responsible breached the company whose software was the conduit. | Ransomware | ||
|
2021-07-03 12:30:24 | IT Software Firm Kaseya Hit By Supply Chain Ransomware Attack (lien direct) | Supply chain cyberattack by REvil ransomware gang on IT management tool could have wide blast radius | Ransomware Tool | ||
|
2021-07-02 15:59:37 | Hackers Compromise Mongolian Certificate Authority to Spread Malware (lien direct) | An unknown threat actor has compromised the servers of Mongolian certificate authority (CA) MonPass and abused the organization's website for malware distribution, according to security researchers at Avast. | Malware Threat | ||
|
2021-07-02 15:24:13 | Microsoft Tells Azure Users to Update PowerShell to Patch Vulnerability (lien direct) | Microsoft has told Azure users to update PowerShell - if they are using versions 7.0 or 7.1 - to address a remote code execution vulnerability patched earlier this year. | Vulnerability | ||
|
2021-07-02 15:00:10 | New Ransomware \'Diavol\' Linked to Notorious Cybercrime Gang (lien direct) | Wizard Spider, the notorious cybercrime gang that operated the TrickBot botnet and the Ryuk and Conti | Ransomware | ||
|
2021-07-02 14:20:14 | Microsoft Confirms \'PrintNightmare\' is New Windows Security Flaw (lien direct) | Microsoft late Thursday acknowledged a severe security vulnerability in the Print Spooler utility that ships by default on Windows and warned that the bug exposes users to computer takeover attacks. | Vulnerability | ||
|
2021-07-02 14:11:56 | Ferry Agency: No Sensitive Info Compromised in Cyberattack (lien direct) | No sensitive information was compromised in a ransomware attack last month on the state agency that provides ferry service between mainland Massachusetts and the islands of Martha's Vineyard and Nantucket. | |||
|
2021-07-02 13:39:53 | Director of Cybersecurity at NSA Gets Dedicated Twitter Account (lien direct) | Rob Joyce, the director of cybersecurity at the National Security Agency (NSA), on Thursday announced that his role now has an official Twitter account. | |||
|
2021-07-02 11:46:31 | DHS Hired 300 Cybersecurity Professionals in Last Two Months (lien direct) | The United States Department of Homeland Security (DHS) on Thursday announced that it has hired nearly 300 cybersecurity professionals over the course of the last two months. | |||
|
2021-07-02 11:24:53 | Vulnerabilities in WAGO Devices Expose Industrial Firms to Remote Attacks (lien direct) | Several critical and high-severity vulnerabilities have been identified in programmable logic controller (PLC) and human-machine interface (HMI) products made by WAGO, a German company specializing in electrical connection and automation solutions. | |||
|
2021-07-02 10:34:00 | French Tech Firm Charged Over Libya Cyber-Spying (lien direct) | French prosecutors have charged a French IT company that allegedly helped the regime of Libyan dictator Moamer Kadhafi spy on opposition figures who were later detained and tortured, sources close to the inquiry said Thursday. | |||
|
2021-07-01 17:36:12 | Security Agencies: Russian Cyberspies Used Brute Force Against Hundreds of Orgs (lien direct) | Security agencies in the United States and United Kingdom issued an advisory on Thursday to warn organizations about an ongoing global campaign involving brute force techniques. | |||
|
2021-07-01 16:15:12 | The VC View: Enabling Business via IT Security (lien direct) | The opportunity for the security industry is to build a remote-ready security program that is equally secure for remote and in-office workers | |||
|
2021-07-01 16:14:01 | SASE Provider Versa Networks Raises $86 Million (lien direct) | Secure Access Service Edge (SASE) provider Versa Networks this week announced it raised $86 million in Series D funding. To date, the company has received $200 million in funding. The funding round was led by Princeville Capital and RPS Ventures, with additional participation from existing investors, including Sequoia Capital. | |||
|
2021-07-01 15:58:02 | Sevco Security Banks $15 Million Series A Funding (lien direct) | The enterprise asset management space just got a bit more crowded with the launch of Sevco Security, an early-stage startup selling a “cloud-native security asset intelligence platform.” | |||
|
2021-07-01 15:47:18 | University Medical Center Says Hackers Breached Data Server (lien direct) | A Nevada hospital confirmed its data servers had been breached after a hacking group posted images of personal information online it apparently acquired in a cyber theft. | |||
|
2021-07-01 15:25:54 | Becoming Elon Musk – the Danger of Artificial Intelligence (lien direct) | A Tel Aviv, Israel-based artificial intelligence (AI) firm, with a mission to build trust in AI and protect AI from cyber threats, privacy issues, and safety incidents, has developed the opposite: an attack against facial recognition systems that can fool the algorithm into misinterpreting the image. | |||
|
2021-07-01 15:22:08 | (Déjà vu) Cybersecurity M&A Roundup: 37 Deals Announced in June 2021 (lien direct) | 
A total of 37 cybersecurity-related acquisitions and mergers were announced in June 2021.
|
|||
|
2021-07-01 14:49:43 | Critical, Exploitable Flaws in NETGEAR Router Firmware (lien direct) | Security researchers at Microsoft are flagging multiple gaping security holes in firmware shipped on NETGEAR routers, warning that exploitation could lead to identity theft and full system compromise. | Guideline |
To see everything:
Our RSS (filtrered)
