Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2017-11-06 10:59:54 |
Watch out: GIBON enters the ransomware space (lien direct) |
The new ransomware strain is the latest to target your PC for cash. |
|
|
|
|
2017-11-02 13:00:21 |
With a physical key, Google says it can protect you from nation-state hackers (lien direct) |
When two-factor doesn't cut it against the most sophisticated adversary, Google thinks it has an answer. |
|
|
|
|
2017-11-02 09:19:30 |
WordPress patches SQL injection bug in security release (lien direct) |
Webmasters should update immediately to prevent website takeovers. |
|
APT 19
|
|
|
2017-11-01 14:18:00 |
Hilton agrees to $700,000 settlement over data breaches (lien direct) |
The hotel chain's data breaches exposed hundreds of thousands of customer credit card numbers. |
|
|
|
|
2017-11-01 10:13:00 |
Oracle pushes out emergency fix for remote system hijack vulnerability (lien direct) |
The vulnerability, as bad as it gets, allows attackers to remotely take over enterprise software without authentication. |
|
|
|
|
2017-11-01 09:15:11 |
Circle with Disney web filter riddled with vulnerabilities (lien direct) |
The kid-friendly Internet filter protects children but did not shield family privacy. |
|
|
|
|
2017-10-31 21:00:00 |
Four things we learned when Facebook, Google, Twitter testified in Russia inquiry (lien direct) |
Tuesday's hearing in the Senate marks the first of several hearings involving the tech giants and how Russian-backed hackers and propagandists used their services to spread misinformation and false news. |
|
|
|
|
2017-10-31 12:00:10 |
Software code signing certificates worth more than guns on the Dark Web (lien direct) |
Digital code signing certificates are more expensive than credit cards or weapons. |
|
|
|
|
2017-10-30 15:00:00 |
​A flaw in Google\'s bug database exposed private security vulnerability reports (lien direct) |
The bug allowed the researcher to see the most sensitive vulnerabilities in Google's services. |
|
|
|
|
2017-10-30 12:33:00 |
Fear the Reaper? Experts reassess the botnet\'s size and firepower (lien direct) |
Security researchers now say the botnet could be only as big as 28,000 infected devices, but warn that the figure could balloon in size at any given time. |
|
APT 37
|
|
|
2017-10-26 18:00:00 |
As Congress mulls surveillance reforms, here are the good, bad, and ugly options (lien direct) |
For the first time since the Edward Snowden surveillance revelations, lawmakers get to choose a new law. |
|
|
|
|
2017-10-26 12:00:18 |
Cisco rolls out new storage networking telemetry capabilities (lien direct) |
As data from critical applications proliferates, customers are looking for deep visibility across the storage network, Cisco says. |
|
|
|
|
2017-10-26 12:00:15 |
Hackers can gain full access to maritime ship data through a built-in backdoor (lien direct) |
The AmosConnect communication shipboard platform is so weak, complete hijacking is easy -- and there's an open door, too. |
|
|
|
|
2017-10-25 11:31:00 |
Kaspersky admits to reaping hacking tools from NSA employee PC (lien direct) |
Apparently, a pirate download of Microsoft Office could be the root of all the trouble. |
|
|
|
|
2017-10-25 10:05:16 |
How to turn your watch, shoes, or household junk into a password (lien direct) |
Researchers are exploring ways to use your smartphone's camera as a secure way to identify yourself. |
|
|
|
|
2017-10-25 08:43:25 |
Whistleblower system SecureDrop fixes information leak vulnerability (lien direct) |
While serious, the bug would take advanced skills to exploit in a very small time window. |
|
|
|
|
2017-10-25 07:54:47 |
Hackers hijack Coinhive cryptocurrency miner through an old password (lien direct) |
Yet another lesson in how not to secure your network. |
|
|
|
|
2017-10-24 12:46:37 |
After quietly infecting a million devices, Reaper botnet set to be worse than Mirai (lien direct) |
Reaper is on track to become one of the largest botnets recorded in recent years - and yet nobody seems to know what it will do or when. But researchers say the damage could be bigger than last year's cyberattack. |
Cloud
|
APT 37
|
|
|
2017-10-23 14:00:00 |
Arm announces PSA security architecture for IoT devices (lien direct) |
Arm hopes the adoption of its new PSA system will help protect trillions of connected devices in the future. |
|
|
|
|
2017-10-23 10:33:39 |
Kaspersky Lab tries to claw back trust with transparency initiative (lien direct) |
The company has promised independent source code reviews and increased bug bounty rewards in the future. |
|
|
|
|
2017-10-23 08:35:57 |
Pay with Google launched to speed up online payments (lien direct) |
Google's online payments system is designed to speed up purchases and reduce failure rates. |
|
|
|
|
2017-10-19 20:00:00 |
Leaked: Facebook security boss says its corporate network is run "like a college campus" (lien direct) |
The source of the recording said Facebook's senior management and executives were apathetic to matters of cybersecurity. Facebook's security chief said he used one of the remarks "as a figure of speech." |
|
|
|
|
2017-10-19 07:26:26 |
Malicious Minecraft apps in Google Play enslave your device to a botnet (lien direct) |
Malicious Minecraft skin downloads can harness your device for DDoS attacks. |
|
|
|
|
2017-10-18 21:54:00 |
NSA won\'t say if it knew about KRACK, but don\'t look to this leaked doc for answers (lien direct) |
Given how the NSA has tried to hack anything it can, many looked to one top secret leaked document for answers. |
|
|
|
|
2017-10-18 10:29:37 |
Oracle swats 252 bugs in patch update (lien direct) |
Hundreds of different products are affected by a range of vulnerabilities tackled in the update. |
|
|
|
|
2017-10-18 09:00:01 |
ATM malware available online for only $5,000 (lien direct) |
Malware which forces ATMs to hemorrhage cash has been discovered for sale on the Dark Web at an unfortunately accessible price. |
|
|
|
|
2017-10-17 16:00:00 |
Chinese backdoor malware resurfaces after more than a decade (lien direct) |
The malware affects Windows 7 and up to Windows 8.1, the researchers confirmed. |
|
|
|
|
2017-10-17 08:57:42 |
As devastating as KRACK: New vulnerability undermines RSA encryption keys (lien direct) |
A new security flaw has placed the security of RSA encryption in jeopardy. |
|
|
|
|
2017-10-17 07:09:59 |
KRACK mass Wi-Fi attack: Who is to blame? (lien direct) |
A cryptography expert weighs in on how the bug managed to lurk in WPA2 without detection. |
|
|
|
|
2017-10-17 06:22:45 |
Adobe patches zero-day vulnerability used to plant gov\'t spying software (lien direct) |
KRACK is not the only security flaw you should be concerned about. |
|
|
|
|
2017-10-16 16:55:00 |
Here\'s every patch for KRACK Wi-Fi vulnerability available right now (lien direct) |
Vendors are reacting swiftly to a vulnerability that lets attackers eavesdrop on your network traffic. |
|
|
|
|
2017-10-16 13:45:00 |
Homeland Security orders federal agencies to start encrypting sites, emails (lien direct) |
Three-quarters of the federal government uses encryption. Homeland Security says that isn't enough. |
|
|
|
|
2017-10-16 10:00:00 |
WPA2 security flaw puts almost every Wi-Fi device at risk of hijack, eavesdropping (lien direct) |
Security experts have said the bug is a total breakdown of the WPA2 security protocol. |
|
|
|
|
2017-10-13 15:58:00 |
This bug let a researcher bypass GoDaddy\'s site security tool (lien direct) |
A security researcher said the tool, which is supposed to prevent SQL injections, could be easily bypassed. |
|
|
|
|
2017-10-13 08:07:44 |
Equifax insists web portal has not been compromised (lien direct) |
The credit rating agency has pushed back on claims of a second cyberattack. |
|
Equifax
|
|
|
2017-10-13 07:22:58 |
500 million PCs are being used for stealth cryptocurrency mining online (lien direct) |
Your PC may be used to find cryptocurrency when you visit websites, with or without your consent. |
|
|
|
|
2017-10-12 13:00:16 |
SAP Vora 2.0 ushers in containers, Kubernetes, tighter HANA integration (lien direct) |
SAP's Spark-based data query platform gets a refresh. Now it's containerized, cloudified and runs on Spark 2.x. |
|
Uber
|
|
|
2017-10-12 13:00:00 |
Researchers find 450,000 financial scams operating on social media (lien direct) |
Each successful attack can cost victims tends of thousands of dollars. |
|
|
|
|
2017-10-12 09:11:38 |
SEC spoofed, malware hosted on US gov\'t server in new DNS attack (lien direct) |
A compromised US government server has been used to host malware in the attack chain. |
|
|
|
|
2017-10-11 21:00:00 |
Republican polling firm\'s database was hacked, exposing donor records (lien direct) |
The data was stolen just after the 2016 election, the polling outfit confirmed. |
|
|
|
|
2017-10-11 17:53:14 |
Outlook bug meant S/MIME emails were sent unencrypted for months (lien direct) |
The bug meant emails might not have been properly encrypted before they were sent. |
|
|
|
|
2017-10-11 12:38:00 |
US deputy attorney general just called for \'responsible encryption.\' Don\'t fall for it. (lien direct) |
You only need to look at the past year of data breaches, leaks, and exposures to see that some of the most precious national security and technological secrets in the US aren't safe. |
|
|
|
|
2017-10-11 09:44:00 |
Judge smashes boundless warrant for identities of anti-Trump website users (lien direct) |
A US judge has stripped away the warrant to the bare bones, to DreamHost's delight. |
|
|
|
|
2017-10-10 17:48:00 |
Equifax says 693,000 UK residents affected by hack (lien direct) |
The company initially said 400,000 UK residents were at risk. |
|
Equifax
|
|
|
2017-10-10 13:00:00 |
Accenture left a huge trove of highly sensitive data on exposed servers (lien direct) |
The four exposed servers had no password, but contained the "keys to the kingdom." |
|
|
|
|
2017-10-10 10:20:50 |
Dubai airport to replace security booths, face scans with fish (lien direct) |
Forget queues, you will instead walk through a virtual aquarium as a security check. |
|
|
|
|
2017-10-10 08:50:46 |
Carbanak hackers pivot plan of attack to target banks, the enterprise (lien direct) |
The cyberattackers are using a fresh set of techniques to infiltrate the enterprise. |
|
|
|
|
2017-10-09 15:15:00 |
What is Kaspersky\'s role in NSA data theft? Here are three likely outcomes (lien direct) |
A bombshell news report on Kaspersky's alleged involvement in the theft of NSA data leaves one crucial question unanswered. |
|
|
|
|
2017-10-09 13:04:00 |
Mozilla pilots Cliqz engine in Firefox to slurp user browsing data (lien direct) |
Updated: Mozilla insists the pilot program will improve user privacy, not lessen it. |
|
|
|
|
2017-10-09 10:28:14 |
Bitcoin laundering suspect caught in US, Russia extradition spat (lien direct) |
The two countries are fighting over where the Russian national should have his day in court. |
|
|
|