What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-11-17 11:46:07 | Hacker \'Mudge\' to head up Twitter\'s security (lien direct) | On Monday Twitter assigned Pieter Zatko, also known by his hacker handle name Mudge, as their new head of security. Zatko will be responsible for recommending changes in the structure and functions of the social media giant. Zatko is under a 40 to 60-day review and will be reporting to Twitter’s CEO, Jack Dorsey, during […] | |||
|
2020-11-17 11:40:52 | Channel News: Corelight partners with Redington Group to bring powerful open NDR solutions to businesses in the Middle East and Africa (lien direct) | Corelight, provider of the industry's first open network detection and response (NDR) platform, today announced a new distribution agreement with Redington Group, a global provider of end-to-end supply chain solutions for all categories of IT, telecom, and digital lifestyle solutions, to grow and support Corelight's channel community across the Middle East and Africa. “As we […] | |||
|
2020-11-17 11:35:45 | US military mining data from Muslim prayer app (lien direct) | A report by Motherboard says that the US military has been mining data from the Muslim prayer app, Muslim Pro. Muslim Pro is one of the “most popular Muslim apps”, boasting over 98 million downloads. The app reminds users of their daily prayers and provides them with readings from the Quran. The app also tracks […] | |||
|
2020-11-17 11:19:05 | COVID-19 vaccine research firms targeted by Russian and North Korean hackers (lien direct) | Microsoft has recently alerted governments across the globe that the North Korean hacker groups Cerium and Zinc, as well as the Russian hacker group Strontium, have been targeting organisations involved in COVID-19 vaccine research using brute-force, credential stuffing and spear-phishing attacks. Tom Burt, Microsoft’s Corporate Vice President for Customer Security & Trust, said in a […] | Medical | APT 38 APT 28 APT 43 | |
|
2020-11-16 17:17:10 | Internet freedom in Asian countries: an analysis (lien direct) | Asia is a controversial region when it comes to civil liberties, in general, and Internet freedom, in particular. Even in countries like Japan and Singapore, which boast a high level of technological progress and mind-boggling Internet penetration rates, the web is an increasingly regulated environment. Residents of some Asian countries can be subject to severe […] | ★★★ | ||
|
2020-11-16 11:58:29 | DarkSide placed on restricted list following Iranian hosting announcement (lien direct) | Coveware, the ransomware negotiation firm, have recently placed DarkSide operation on an internal restricted list following the threat actor’s announcement to host infrastructure in Iran. DarkSide ransomware operation usually encrypts a network from which their affiliates will steal an unencrypted file from, which they will then threaten to release if their ransom is not paid. […] | Ransomware Threat | ||
|
2020-11-16 11:51:03 | Pluto TV suffer a major security breach with users data posted online (lien direct) | Pluto TV are an online TV provider who offers ad-supported channels for various topics such as gaming, as well as real-life networks, such as NBC. Unfortunately, Pluto TV has recently suffered a security breach, affecting the millions of accounts linked to the platform since 2018, with the details for these accounts now available online. The […] | |||
|
2020-11-16 11:47:53 | DTX Manchester 2020 (lien direct) | The DTX Cyber Security Mini-Summit is a virtual event run by the team at Digital Transformation EXPO. Taking place on 25-26 November 2020, the event will help cyber leaders overcome the challenges of securing a hybrid workforce, connect with employees and resolve some of their daily headaches. Tune in to find out: How you can […] | Guideline | ||
|
2020-11-16 11:43:21 | WEF report that we may need to change our approach to cybersecurity (lien direct) | The World Economic Forum and the University of Oxford have published a 14-month long study examining the shift in technology and the impact it will have on the cybersecurity industry. The study is based on the expertise of over 100 leaders in the cybersecurity space, including those in businesses, government, civil society and academia. The […] | Guideline | ||
|
2020-11-13 15:26:43 | Ransomware-as-a-Service gang DarkSide creates server for data leaks (lien direct) | Cybercriminal groups are scaling up their operations. According to BleepingComputer, the DarkSide Ransomware operation have claimed they are creating a distributed storage system in Iran to store and leak data stolen from victims. Since double-extortion ransomware became threat actors’ attack of choice, law enforcement and security firms have been actively searching the stolen data in order […] | Ransomware Threat | ||
|
2020-11-13 11:35:46 | Major retailers in the EU and US at risk to web attacks (lien direct) | Research has revealed that the likes of Costco, Walmart and The Home Depot are more at risk to web-based cyberattacks then compared to their EU counterparts, according to findings from Outpost24. In a year that saw a global pandemic leading to a 30% surge in online shopping and exponential growth in cybersecurity threats for enterprises, […] | Guideline | ||
|
2020-11-13 10:43:03 | Stressed employees behind data breaches survey finds (lien direct) | The Outbound Email Security Report by Egress has recently found that tired and stressed employees are the cause of 4 in 10 of the most severe data breaches. As stress levels rise and remote working increase, rushed employees are more likely to make easy mistakes such as attaching the wrong file to an email or […] | |||
|
2020-11-13 10:41:01 | Possible ransomware attack warnings from the Australian government (lien direct) | The Australian government have recently sent out a security alert encouraging health sector organisation to check their cyber-security defences, and most importantly their controls for detecting ransomware attacks. Australia's Cyber Security Centre said that it “observed increased targeting activity against the Australian Health sector by actors using the SDBBot Remote Access Tool (RAT).” This warning […] | Ransomware Tool | ||
|
2020-11-13 10:37:04 | Stock photo service 123RD suffered major data breach (lien direct) | The stock photo service 123RF has recently suffered a data breach after their database containing 8.3 million users records has been hacked and put up for sale on a hacker forum. Over the weekend a data breach broker put 123RF's database of 8.3 million users records online following a data breach. The database includes personal […] | Data Breach | ||
|
2020-11-12 15:56:51 | Cyberattacks increase by 260% in the first nine months of 2020 (lien direct) | New research by Zscaler, analyzing 6.6 billion security threats, has discovered a 260% increase in attacks during the first nine months of 2020. Among the encrypted attacks was an increase of the amount of ransomware by 500%, with the most prominent variants being FileCrypt/FileCoder, followed by Sodinokibi, Maze and Ryuk. Here’s what security experts had to […] | Ransomware | ||
|
2020-11-12 10:58:21 | Former NCSC cyber-chief, Ciaran Martin, says \'Don\'t weaponise the net\' (lien direct) | The UK’s ex-chief of National Cyber Security Centre (NCSC), Ciaran Martin, has warned that we should avoid arming ourselves with new weapons and instead maintain a strong defence in the cyber realm. Martin added that if we do weaponise then we do so ‘at our peril’. Martins remarks follow on from reports that nations such […] | |||
|
2020-11-12 10:48:39 | (Déjà vu) Microsoft calls for users to stop using phone-based multi-factor authentication (lien direct) | Microsoft has recently begun to urge users to stop using mobile-based multi-factor authentication (MFA), such as one-time SMS codes or voice calls, and instead are encouraging users to use newer MFA solutions such as security keys or app-based authentication. Alex Weinert, Directory of Identity Security at Microsoft has issued these warnings, with Weinert being Microsofts […] | |||
|
2020-11-12 10:41:28 | Ransomware attacks targeting Israel are thought to be linked to Iranian threat actors (lien direct) | Multiple sources have reported that Iranian threat actors have been identified as being responsible for the two recent ransomware waves targeting Israeli companies. These ransomware attacks targeting Israeli targets have been happening since mid-October, and have intensified this month. There have been Israeli companies of all sizes targetted by the attacks, with the actors using […] | Ransomware Threat | ||
|
2020-11-11 17:40:14 | Future-proof attack protection (lien direct) | One of the greatest truths in cybersecurity is that defenders need to be right all the time, while cybercriminals only need to be right once. Attacks are increasingly sophisticated and ramified, simultaneously targeting a range of potential entry points with multiple tactics, techniques and procedures. One the other hand, security professionals are faced with a […] | |||
|
2020-11-11 12:05:44 | EU retailers are less vulnerable to web app attacks than US counterparts (lien direct) | Outpost 24’s 2020 Web Application Security for Retail & E-commerce Report has found that US retailers are far more vulnerable to web application attacks than EU based retailers. The cybersecurity firm Outpost 24 discovered that web apps used by US retailers had a higher aggregated average risk score of 35 compared to EU retailers who […] | |||
|
2020-11-11 11:58:57 | The Department of Work and Pensions leaves citizens personal data exposed for over 2 years (lien direct) | Over 6,000 people’s personal data has been published online by Bungling officials following a ‘serious’ data breach. The Department for the Work and Pensions (DWP) has apologised after it was discovered that an extensive list of National Insurance numbers was left exposed online for over two years. The data that has been left exposed is […] | |||
|
2020-11-11 11:57:51 | Facebook\'s link preview feature abused for website-scraping scheme (lien direct) | A number of data-scraping groups have been using the Facebook link preview feature to scrape data from internet sites which disguised as Facebook’s content crawler. They are using a technique which consists of utilising Facebooks developer accounts in order to place calls to Facebook or Facebook’s Messenger API servers requesting a link preview for pages […] | |||
|
2020-11-10 15:26:09 | AI, ML, or just automation? (lien direct) | We all experience artificial intelligence (AI) and machine learning (ML) every day, whether through search engines, voice-controlled devices or simply taking a photograph on a smartphone. For certain areas of industry that rely on big data analysis, both are already proving their value, identifying patterns in data, or relationships between seemingly unrelated information and then […] | |||
|
2020-11-10 14:18:19 | Magecart and the Inter Skimmer threat (lien direct) | As the global pandemic has shifted life into the online space, cybercriminal groups have keenly exploited the digitisation of society's interactions over the lockdown period. One particularly notorious group that security teams should be aware of is Magecart, a shadowy criminal syndicate responsible for many of the recent high-profile credit card skimming attacks. Who is […] | Threat | ||
|
2020-11-10 11:12:08 | Mashable suffers data breach exposing users\' details (lien direct) | Mashable, a major tech and culture news website has recently experienced a data breach which has resulted in the personal data of their users being exposed online. On Sunday 8 November Mashable issued a statement confirming that their database had breached and that they had discovered that reader who use their social media sign-in feature […] | Data Breach | ||
|
2020-11-10 10:55:32 | RedDoorz user record for sale by threat actor on hacking forum (lien direct) | A threat actor is selling the RedDoorz database containing 5.8 million user record on a hacking forum following a data breach in September. RedDoorz is a hotel management and booking platform based in Singapore, which manages bookings for over 1,000 properties in Southeast Asia. Users can register an account to browse hotels and book reservation […] | Data Breach Threat | ||
|
2020-11-10 10:41:57 | World\'s largest eyewear company suffers data breach (lien direct) | Luxottica, the world’s largest eyewear company, has recently suffered a data breach which has resulted in the exposure of the personal information of Lenscrafters patients. The attack also affected Optical, EyeMed and other eye practices. Luxottica warned that “the personal information involved in this incident may have included: full name, contact information, appointment date and […] | Data Breach | ||
|
2020-11-09 13:54:52 | Millions of hotel guests have data exposed after Hotel Booking firm experiences breach (lien direct) | The Spanish developer Prestige software has experienced a data breach after misconfiguring an AWS bucket. The breach has lead to the exposure of their cloud database, and the data of millions of hotel guests. Prestige software is a platform which enables hotels to automate their availability on booking site such as Expedia. The misconfigured S3 […] | Data Breach Guideline | ||
|
2020-11-09 13:40:23 | Source codes stolen from US government agencies by hackers (lien direct) | An alert warning has been sent out by the Federal Bureau of Investigation warning of threat actors abusing misconfigured SonarQube application in order to steal source code form US government agencies as well as private businesses. An alert sent out last month by the FBI was made public on their website this week detailing the […] | Threat | ||
|
2020-11-09 11:36:55 | UK banking customers targeted by HMRC smishing tax scam (lien direct) | This week UK residence have been targeted by an advanced HM Revenue and Customs (HMRC) tax rebate text messages (SMS) scam. The smishing campaign (phishing scam via SMS) is especially worrying as it employs multiple HMRC phishing domains and tactics with the scam evolving by adding new domains daily as older domains get flagged by […] | |||
|
2020-11-06 16:07:33 | Positive action in cybersecurity: altruism, transparency and community (lien direct) | Working with the largest organisations in government, finance and critical national infrastructure, we see good and bad every day. In a confusing hybrid war where APT groups launch attacks that could potentially turn out the lights, it is hard to remain impartial. The fact that a political act of devastation manifests as an innocuous looking […] | |||
|
2020-11-06 11:00:08 | Leading Irish cyber security firm, Edgescan, further cements global market expansion with US company incorporation. (lien direct) | CEO, Eoin Keary today announced that Edgescan is now incorporated in the USA. He said that “it provides us with a firm foothold in the USA allowing us to be closer to our North American clients.” Edgescan has been providing fullstack vulnerability management, cyber security and pen testing services to US based clients for a […] | Vulnerability | ||
|
2020-11-03 11:47:51 | Fake news, disinformation and cybersecurity (lien direct) | The spread of fake news and the rise of disinformation is plaguing the modern world by destroying the very fabric that is keeping our society safe and democracy standing. Separating fact from fiction has never been harder, and with the popularity of social media misleading information is spreading like wildfire. It is swaying elections, distorting […] | Guideline | ||
|
2020-11-03 11:24:50 | Webinar: Cyber Criminals Leave Their Fingerprints on the Internet Too (lien direct) | 2020 is a year where it is impossible for us to ignore the extent to which we exist online. However, while the legal economy has moved online, there has been a thriving illegal economy online for years. Oliver Tonge, cyber security consultant at DomainTools discusses in this webinar how threat actors are operating online, and […] | Threat | ||
|
2020-11-02 10:30:22 | PerimeterX Code Defender Product Review (lien direct) | Supplier: PerimeterX Website: www.perimeterx.com Price: Based on web site traffic Scores Performance 5/5 Features 5/5 Value for Money 4.5/5 Ease of Use 5/5 Overall 5/5 Verdict What's on your web site? PerimeterX Code Defender takes the worry out of e-commerce with a simple yet highly effective client-side script analysis and risk mitigation solution. […] | |||
|
2020-10-30 15:32:01 | 45% of IT security professionals aren\'t ready for their organisations to return to work from their offices (lien direct) | COVID-Driven Work Changes Created Turbulence For IT Security Stakeholders, Prompting Shifts in IT Priorities, Global Survey Shows IT security professionals noted a near-universal shift to work from home; only a third said it was “smooth” Cloud infrastructure investments, access request, identity/access lifecycle management, identity process and workflow, and role management technologies all saw increased priority among at least […] | |||
|
2020-10-30 11:46:28 | Georgia county residence have had their voter information leaked by ransomware gang (lien direct) | Earlier this month the ransomware gang DoppelPaymer released unencrypted data that they have stolen from Hall County, Georgia during a cyberattack. The attack affected Hall County’s networks and phone system. At the time of the attack, there were no signs that the unencrypted data had been stolen by the hackers. A spokesperson for Hall County […] | Ransomware | ||
|
2020-10-30 11:36:27 | Universities are suffering email hijacking attacks (lien direct) | A large number of universities, including Standford University and the University of Oxford, are suffering from cyber attacks in which their email accounts are hijacked. Once hijacked the emails accounts are then used to trick the victims into exposing their email credentials and even installing malware. CEO and co-founder of INKY, Dave Bagget, said that […] | |||
|
2020-10-30 11:26:44 | US reveals information on Russian malware attacks (lien direct) | The US Cyber Command has recently revealed information about the malware implants used by Russian hackers to target national parliaments, ministries of foreign affairs, and embassies. The malware was identified by the US Cyber Command’s Cyber National Mission Force (CNMF) unit, alongside the Cybersecurity and Infrastructure Security Agency (CISA). The information was uploaded yesterday to […] | Malware | ||
|
2020-10-29 10:57:28 | Iranian attackers hack conference attendees\' emails according to Microsoft (lien direct) | Microsoft has recently revealed that they discovered that Iranian state-sponsored attackers hacked into the emails accounts of a number of high-profile individuals and attendees at the 2020 Munich Security Conference and the Think 20 summit. It is thought that the attackers successfully targetted more than 100 individuals and Microsoft’s Threat Intelligence Center (MSTIC) have linked […] | Hack Threat | ||
|
2020-10-29 10:45:29 | SMEs can be the weak link in the cyber-security chain – and we should help them (lien direct) | Small businesses are now on the front line in the fight against cyber crime. The vital position many SMEs have in supply chains means cybersecurity professionals should be doing everything to support small business leaders – for the benefit of everyone. The number of UK businesses succumbing to cyber attacks has doubled in the […] | Guideline | ||
|
2020-10-29 10:43:21 | Home Depot sends customers emails containing strangers data (lien direct) | Yesterday Home Depot customers in Canada reported being sent hundreds of emails containing other customers order details. Some customers have received upwards of 600 ‘order ready for pickup’ emails, all of which were for different orders. This is a serious data leakages as the orders were not associated with the customers Home Depot accounts that […] | |||
|
2020-10-29 10:35:34 | Social networking app True reveals private messages and user locations (lien direct) | True is a social networking app which promises to ‘protect your privacy’. However, they recently experienced a security lapse which exposed one of their serves, resulting in the leakage of users private data, available on the internet for anyone to see. The data leak happened after one of the app’s dashboards databases was exposed to […] | |||
|
2020-10-29 00:01:40 | The Most Inspirational Women in Cyber UK 2020 – winners announced: (lien direct) | Gender diversity in the security industry is improving. According to the latest ISC(2) figures, the percentage of women in cybersecurity is around 24 percent, with an increasing number being appointed in leadership positions. It is widely agreed that one of the most important factors in encouraging more women to enter the industry in the first […] | Guideline | ||
|
2020-10-28 11:44:01 | Hackers post pornography in virtual classroom (lien direct) | The New Hartford Central School district is currently trying to discover who is responsible for a hack on their virtual classroom system. Last week a hacker posing as a student entered a health class where they played loud noises across the speakers and posted a pornographic video which all the students in the virtual classroom […] | Hack | ||
|
2020-10-28 11:29:38 | Trump\'s campaign website has been defaced by hackers (lien direct) | Donal Trump’s presidential re-election campaign website was briefly highjacked on Tuesday by hackers who defaced the site. The highjacking lasted less than 30 minutes, although hackers still managed to take over the site despite law enforcement and intelligence agencies being on high alert for digital interferences leading up to the election next week. Tim Murtaugh, […] | Guideline | ||
|
2020-10-28 11:29:36 | Cybereason announces $1 million comprehensive breach protection warranty (lien direct) | Cybereason today announced the availability of the Cybereason Breach Protection Warranty that provides up to $1 Million in coverage in the event of a breach. The Cybereason Breach Protection Warranty covers a variety of attacks including zero-day, malware and ransomware attacks, and is available free of charge to customers with the Cybereason Ultimate package, a […] | Ransomware Malware | ||
|
2020-10-28 11:22:22 | Enel Group suffer another ransomware attack (lien direct) | The multinational energy company, Enel Group, have suffered another ransomware attack for the second time this year. This attack was by Netwalker, who are demanding $14 million ransom for the decryption key and for them not to release stolen data. Enel is one of the largest companies in the European energy sector, spanning across 40 […] | Ransomware | ||
|
2020-10-28 10:42:59 | Learn to Combat These Three Cybersecurity Monsters This Halloween and Beyond (lien direct) | It's that time of year again. The air feels a bit crisper; the days are a bit shorter; and children around the world prepare to go trick or treating. Even as an adult, Halloween is probably my favourite holiday. I love seeing and thinking about monsters and things that lurk in the shadows… maybe – […] | |||
|
2020-10-28 10:42:21 | Manipulation by Disinformation: How Elections are Swayed (lien direct) | In 2016, we witnessed as the Trump and Brexit campaigns leveraged the help of Cambridge Analytica to spread disinformation and sway voters in their favour. While Cambridge Analytica has since been dissolved, the threat of disinformation is ever-present. In many ways, it is a threat that arguably dates back to ancient times and what we […] | Threat |
To see everything:
Our RSS (filtrered)
