Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2018-04-27 17:16:02 |
Uber Tightens Bug Bounty Extortion Policies (lien direct) |
Uber is tightening policies around its bug bounty program after a 2016 data breach exposed deep flaws in its policies around handling extortion. |
|
Uber
|
★★★★★
|
|
2018-04-27 15:58:03 |
ThaiCERT Seizes Hidden Cobra Server Linked to GhostSecret, Sony Attacks (lien direct) |
It's analyzing the server, operated by the North Korea-sponsored APT, which was used to control the global GhostSecret espionage campaign affecting 17 countries. |
|
APT 38
|
|
|
2018-04-26 19:39:00 |
Microsoft Issues More Spectre Updates For Intel CPUs (lien direct) |
Microsoft has released new Spectre mitigations for Windows 10, which include Intel microcode fixes for CPUs running on Windows. |
|
|
|
|
2018-04-26 19:33:04 |
Rubella Crimeware Kit: Cheap, Easy and Gaining Traction (lien direct) |
Taking a “dirty deeds done dirt cheap” approach, the kit generates an initial malware payload for social-engineering spam campaigns for just $40 per month. |
|
|
|
|
2018-04-26 18:21:01 |
PyRoMine Uses NSA Exploit for Monero Mining and Backdoors (lien direct) |
Not just a miner, the malware also sets up a hidden default account with system administrator privileges, to be used for re-infection and further attacks. |
|
|
|
|
2018-04-25 20:42:03 |
Western Digital My Cloud EX2 NAS Device Leaks Files (lien direct) |
Default configuration of WD's My Cloud storage device keeps port open for unprivileged data exfiltration within a network. |
|
|
|
|
2018-04-25 17:27:05 |
Metamorfo Targets Brazilian Users with Banking Trojans (lien direct) |
In an unusual move, Metamorfo abuses legitimate, signed Windows binaries to load the malicious code. |
|
|
|
|
2018-04-25 15:49:02 |
Europol Smacks Down World\'s Largest DDoS-for-Hire Market (lien direct) |
Webstresser[.]org, a DDoS-for-hire market believed to be behind at least 4 million cyberattacks around the world, has served up its last internet-paralyzing traffic tsunami. |
|
|
★★
|
|
2018-04-25 15:30:01 |
Researchers Hacked Amazon\'s Alexa to Spy On Users, Again (lien direct) |
Researchers discovered a flaw in Amazon's Alexa virtual assistant that enabled them to eavesdrop on consumers with smart devices – and automatically transcribe every word said. |
|
|
|
|
2018-04-25 14:46:04 |
Bezop Cryptocurrency Server Spills 25K in Private Investor, Promoter Data (lien direct) |
A leaky Mongo database exposed personal information of 25,000 investors and potential investors tied to the Bezop cryptocurrency. |
|
|
|
|
2018-04-25 13:30:05 |
Podcast: Why Manufacturers Struggle To Secure IoT (lien direct) |
Too often, many IoT device manufacturers are opting to leave out costly security features for their small, low power connected devices. |
|
|
|
|
2018-04-24 19:40:00 |
Exploit Targets Nvidia Tegra-Based Nintendo Systems (lien direct) |
Researchers have found an exploit in Nvidia Tegra X1-based systems that they say cannot be patched. |
|
|
|
|
2018-04-24 19:07:00 |
Orangeworm Mounts Espionage Campaign Against Healthcare (lien direct) |
A freshly minted attack group dubbed Orangeworm has been uncovered, deploying a custom backdoor in mostly healthcare-related environments. It’s bent on laser-focused, comprehensive corporate espionage, with a noisy attack vector that shows that it’s unlikely to be related to nation-state actors. Researchers first found Orangeworm in the form of an interesting binary in 2016, and […] |
|
|
|
|
2018-04-24 18:34:03 |
Ransomware Attack Hits Ukrainian Energy Ministry, Exploiting Drupalgeddon2 (lien direct) |
The Ukrainian Energy Ministry has been hit by a ransomware attack – and for once it looks like this is the work of amateurs, not nation-state attackers bent on making a geopolitical point. However, the bad actors appear to have made use of the recently patched Drupal vulnerability, pointing out yet once again that patch […] |
|
|
|
|
2018-04-23 22:13:02 |
Muhstik Botnet Exploits Highly Critical Drupal Bug (lien direct) |
A botnet has exploited a highly critical Drupal CMS vulnerability, which was previously disclosed by Drupal in March. |
|
|
|
|
2018-04-20 15:39:02 |
Akamai CSO Talks Cryptominers, IoT and the Reemergence of Old Threats (lien direct) |
Andy Ellis, CSO Akamai, discusses how the company works with others within the cybersecurity landscape to help keep the internet safe. |
|
|
|
|
2018-04-20 15:24:04 |
Podcast: How Millions of Apps Leak Private Data (lien direct) |
Threatpost's Tom Spring talked to Roman Unuchek, senior malware analyst at Kaspersky Lab, about his discoveries this week at the RSA Conference. |
|
|
|
|
2018-04-20 13:03:02 |
HackerOne CEO Talks Bug Bounty Programs at RSA Conference (lien direct) |
Can bug bounty programs be designed to protect consumer privacy and how do programs balance white hat disclosure versus companies sitting on vulnerabilities until they are fixed? |
|
|
|
|
2018-04-19 17:17:00 |
IoT Security Concerns Peaking – With No End In Sight (lien direct) |
Despite numerous talks about IoT vulnerabilities at RSAC this week, a clear resolution on a fixes is nowhere in sight. |
|
|
|
|
2018-04-19 16:30:01 |
Cloud Credentials: New Attack Surface for Old Problem (lien direct) |
Researchers show why keeping a handle on user credentials is just as hard in the cloud as it is on local networks. |
|
|
|
|
2018-04-19 13:44:03 |
Chris Vickery Discusses Data Leak of 48 Million Users by Private Intelligence Firm (lien direct) |
Private intelligence gathering firm LocalBlox leaked data on 48 million users that was scraped from Facebook, LinkedIn, Zillow and other sites. |
|
|
|
|
2018-04-19 13:36:03 |
Use of \'StegWare\' Increases in Stealth Malware Attacks (lien direct) |
Researchers are warning malware payloads can bypass traditional AV protection when delivered buried inside images, documents or even just a pixel. |
|
|
|
|
2018-04-18 18:37:00 |
iOS Sync Glitch Lets Attackers Control Devices (lien direct) |
Researchers found a new iOS vulnerability called “trustjacking,” which exploits a feature called iTunes Wi-Fi Sync to give attackers persistent control over victims' devices. |
|
|
|
|
2018-04-18 16:27:03 |
Gold Galleon Hacking Group Plunders Shipping Industry (lien direct) |
Researchers have identified a hacking group behind several widescale maritime shipping industry business email compromise (BEC) attacks since June. |
|
|
|
|
2018-04-18 13:41:05 |
Researcher Billy Rios, Talks Medical Device Security at RSA Conference 2018 (lien direct) |
Researcher Billy Rios, founder of WhiteScope, discusses medical device hacking at RSA Conference 2018 with Threatpost's Tom Spring. |
|
|
|
|
2018-04-18 12:56:04 |
Nate Cardozo, Attorney with EFF Talks Encryption at RSA Conference 2018 (lien direct) |
Threatpost talks to crypto expert Nate Cardozo, senior staff attorney with the Electronic Frontier Foundation at RSA Conference 2018 about the U.S. government's current position on device encryption and law enforcement's use of iPhone passcode cracker called GreyKey. |
|
|
|
|
2018-04-17 19:14:00 |
RSAC 2018: Tech Giants Form Cybersecurity Tech Accord (lien direct) |
Microsoft president Brad Smith at RSAC 2018 said more than 30 companies will oppose government cyberattacks on "innocent civilians." |
|
|
|
|
2018-04-17 13:01:03 |
Cryptominer Malware Threats Overtake Ransomware, Report Warns (lien direct) |
Cryptomining malware is the top threat to watch out for 2018, according to a Q1 analysis of threats. |
|
|
|
|
2018-04-17 12:57:00 |
Automated Bots Growing Tool For Hackers (lien direct) |
The use of automated bots is becoming more prevalent for novice attackers as tools become more available, researchers found. |
|
|
|
|
2018-04-17 09:15:05 |
Millions of Apps Leak Private User Data Via Leaky Ad SDKs (lien direct) |
Mobile apps leak personal data via insecure ads that transmit ad-targeting data insecurely. |
|
|
|
|
2018-04-16 22:44:04 |
Threatpost RSA Conference 2018 Preview (lien direct) |
Threatpost's Tom Spring and Lindsey O'Donnell talk about the top security trends that they are watching out for at the 2018 RSA Conference this week in San Francisco. |
|
|
|
|
2018-04-16 15:01:00 |
Google Play Boots Three Malicious Apps From Marketplace Tied to APTs (lien direct) |
Researchers said three apps used to surveil Middle East targets were booted from the Google Play marketplace. |
|
|
|
|
2018-04-13 19:47:01 |
Don\'t Trust Android OEM Patching, Claims Researcher (lien direct) |
Many Android device manufacturers are not telling the truth when they say they have patched devices, researchers found. |
|
|
|
|
2018-04-12 19:12:02 |
Outlook Bug Allowed Hackers to Use .RTF Files To Steal Windows Passwords (lien direct) |
Microsoft patched a bug that allowed attackers to steal a target's Windows account password via previewed Outlook message. |
|
|
★★★★
|
|
2018-04-12 18:45:04 |
Calls For Regulation Build After Facebook Privacy Fallout (lien direct) |
Political actors and privacy activists are calling for more regulations on data privacy after Facebook's data security scandal. |
|
|
|
|
2018-04-12 14:50:02 |
New \'Early Bird\' Code Injection Technique Helps APT33 Evade Detection (lien direct) |
Researchers have identified what they are calling an Early Bird code injection technique used by the Iranian group APT33 to burrow the TurnedUp malware inside infected systems while evading anti-malware tools. |
|
APT33
APT 33
|
|
|
2018-04-11 15:01:04 |
AMD Rolls Out Spectre Fixes (lien direct) |
AMD notified users about new available Spectre CPU firmware and Windows 10 patches. |
|
|
|
|
2018-04-10 21:16:01 |
Microsoft Fixes 66 Bugs in April Patch Tuesday Release (lien direct) |
Microsoft's April Patch Tuesday release includes fixes for 66 bugs, 24 of which are rated critical. |
|
|
|
|
2018-04-10 19:01:00 |
Vulnerability in San Francisco\'s Public Safety Warning Sirens Fixed (lien direct) |
A patched vulnerability in San Francisco's public safety warning siren system suggests other radio-based platforms could also be hacked. |
|
|
|
|
2018-04-10 17:42:04 |
(Déjà vu) Ransomware Dominates Verizon DBIR (lien direct) |
Verizon pegged ransomware as the most prevalent malware in its 2018 Data Breach Investigations Report. |
|
|
|
|
2018-04-10 16:21:03 |
Adobe Patches Four Critical Bugs in Flash, InDesign (lien direct) |
Critical vulnerabilities are divided into four CVEs tied to Adobe Flash Player and Adobe InDesign CC. |
|
|
|
|
2018-04-10 14:48:00 |
Quant Loader Trojan Spreads Via Microsoft URL Shortcut Files (lien direct) |
Researchers are warning of a new email phishing campaign launches a trojan capable of distributing ransomware and stealing passwords. |
|
|
|
|
2018-04-09 18:35:03 |
Word Attachment Delivers FormBook Malware, No Macros Required (lien direct) |
A new wave of document attacks targeting inboxes do not require enabling macros in order for adversaries to trigger an infection chain that ultimately delivers FormBook malware. |
|
|
|
|
2018-04-09 14:33:03 |
Impact Of Chat Service Breach Expands To Best Buy, Kmart (lien direct) |
A breach that exposed the credit card information of Delta Air Lines and Sears Holdings now expands its impact to include Best Buy and Kmart. |
|
|
|
|
2018-04-06 19:24:04 |
Mirai Variant Targets Financial Sector With IoT DDoS Attacks (lien direct) |
Researchers said a Mirai botnet variant, possibly linked to the IoTroop or Reaper botnet, was leveraged in attacks against the financial sector. |
Cloud
|
APT 37
|
|
|
2018-04-06 16:07:03 |
Privacy Advocates Blast Facebook After Data Scraping Scandal (lien direct) |
Privacy advocates are up in arms after Facebook CEO Mark Zuckerberg said most of the two billion users of the social network may have had their data scraped by malicious actors using a reverse search tool. |
|
|
|
|
2018-04-05 22:48:05 |
Delta, Sears Breaches Blamed on Malware Attack Against a Third-Party Chat Service (lien direct) |
Security experts say breaches impacting Delta Air Lines and Sears customers is tied to malware planted on a third-party chat service. |
|
|
|
|
2018-04-05 15:12:03 |
Rarog Trojan \'Easy Entry\' For New Cryptomining Crooks, Report Warns (lien direct) |
A malware family called Rarog is becoming an appealing and affordable entry point for hackers to run cryptocurrency mining campaigns, researchers say. |
|
|
|
|
2018-04-04 21:29:03 |
Facebook Bolsters Privacy Measures With New Data Access Restrictions (lien direct) |
Facebook on Wednesday listed a number of new data access restrictions it is implementing as the social media company looks to prioritize privacy for end users. |
|
|
|
|
2018-04-04 19:36:05 |
Intel Tells Remote Keyboard Users to Delete App After Critical Bug Found (lien direct) |
Intel said it is lights out for its Remote Keyboard app just as security researchers find three vulnerabilities that let local attackers inject keystrokes in sessions. |
|
|
|