What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-02-16 08:08:13 | Cybercriminal convicted of $90 million SEC earning reports hack (lien direct) | The owner of a Russian penetration-testing company has been found guilty of being part of an elaborate scheme that netted $90 million after stealing SEC earning reports. For nearly three years, 42-year-old Vladislav Klyushin - the owner of Moscow-based cybersecurity firm M-13 - and his co-conspirators had hacked into two US-based filing agents used by publicly-traded American companies to file earning reports to the Securities and Exchange Commission. As a Department of Justice press release explains, the earning reports contained sensitive corporate information that allowed the hackers to... | Hack | ★★ | |
 |
2023-02-15 13:11:25 | Hyundai, Kia patch bug allowing car thefts with a USB cable (lien direct) | Automakers Hyundai and KIA are rolling out an emergency software update on several of their car models impacted by an easy hack that makes it possible to steal them. [...] | Hack | ★★★★ | |
 |
2023-02-15 07:29:10 | Hyundai and Kia issue software upgrades to thwart killer TikTok car theft hack (lien direct) | Gone in 60 seconds using a USB-A plug and brute force instead of a key Korean car-makers Hyundai and Kia will issue software updates to some of their models after a method of stealing them circulated on TikTok, leading to many thefts and even some deaths.… | Hack Guideline | ★★ | |
 |
2023-02-14 20:11:49 | Binance, Huobi freeze some cryptocurrency stolen in $100 million Harmony hack (lien direct) |  Cryptocurrency exchanges Binance and Huobi froze accounts that contained $1.4 million worth of assets stolen from blockchain company Harmony last June. The platforms were notified about the funds by blockchain research company Elliptic, which managed to trace it through sanctioned cryptocurrency mixer Tornado Cash. U.S. authorities said Tornado Cash was frequently used by hackers connected [… |
Hack | ★★ | |
|
2023-02-13 14:18:37 | Apple fixes new WebKit zero-day exploited to hack iPhones, Macs (lien direct) | Apple has released emergency security updates to address a new zero-day vulnerability used in attacks to hack iPhones, iPads, and Macs. [...] | Hack Vulnerability | ★★ | |
 |
2023-02-13 10:06:02 | Namecheap Email Hacked, Phishing Emails Sent To MetaMask & DHL (lien direct) | A Sunday night email hack at domain registrar Namecheap resulted in a deluge of DHL and MetaMask phishing emails that sought to steal the recipients’ personal information and bitcoin wallets. The phishing attacks began at 4:30 PM ET and came from SendGrid, a company that Namecheap has previously utilized to send renewal notices and promotional […] | Hack | ★★ | |
 |
2023-02-12 14:34:42 | Pwnagotchi – Maximize Crackable WPA Key Material For Bettercap (lien direct) | Pwnagotchi is an A2C-based "AI" leveraging bettercap that learns from its surrounding WiFi environment to maximize crackable WPA key material it captures | Hack | ★★★ | |
 |
2023-02-10 21:36:00 | Reddit Hack Shows Limits of MFA, Strengths of Security Training (lien direct) | A tailored spear-phishing attack successfully convinced a Reddit employee to hand over their credentials and their one-time password, but soon after, the same worker notified security. | Hack | ★★★ | |
 |
2023-02-10 18:36:31 | This beginner-friendly ethical hacker training is 97% off (lien direct) | >The How to Hack from Beginner to Ethical Hacking Certification will teach you how to protect your systems and earn the trust of top clients. | Hack | ★★ | |
|
2023-02-10 12:37:34 | Canadian Bookstore Indigo Shuts Down Website After Cyberattack (lien direct) | The largest chain of bookstores in Canada, Indigo Books & Music, was the victim of a hack yesterday, forcing the business to restrict online payments to cash and shut down its website for customers. Although the precise nature of the breach is still unknown, Indigo does not rule out the possibility that hackers may have […] | Hack | ★★★ | |
 |
2023-02-10 11:37:22 | Documents, Code, Business Systems Accessed in Reddit Hack (lien direct) | Reddit says its systems were hacked following a sophisticated phishing attack aimed at employees. | Hack | ★★★ | |
|
2023-02-08 15:00:27 | Australian Man Sentenced for Scam Related to Optus Hack (lien direct) | >Australian authorities sentence Sydney man for using leaked data stolen from wireless carrier Optus to conduct SMS scams. | Hack | ★★★ | |
|
2023-02-08 13:18:38 | Siemens License Manager Vulnerabilities Allow ICS Hacking (lien direct) | >The Siemens Automation License Manager is affected by two serious vulnerabilities that could be chained to hack industrial control systems (ICS). | Hack Industrial | ★★ | |
|
2023-02-08 06:30:14 | Suspect in Finnish psychotherapy center blackmail hack arrested (lien direct) | Suomi sentence expected for shrink records theft French police have arrested a 25-year-old Finnish man accused of hacking a psychotherapy clinic, stealing more than 22,000 patients' therapy notes, demanding ransom payments from them and also leaking this very private info on a Tor website.… | Hack | ★★★ | |
 |
2023-02-06 17:39:00 | Microsoft: Iranian Nation-State Group Sanctioned by U.S. Behind Charlie Hebdo Hack (lien direct) | An Iranian nation-state group sanctioned by the U.S. government has been attributed to the hack of the French satirical magazine Charlie Hebdo in early January 2023. Microsoft, which disclosed details of the incident, is tracking the activity cluster under its chemical element-themed moniker NEPTUNIUM, which is an Iran-based company known as Emennet Pasargad. In January 2022, the U.S. Federal | Hack | ★★ | |
 |
2023-02-06 17:27:00 | 12 au 13 mai Hack Day Édition 2023 (lien direct) | Le HackDay est un challenge de cybersécurité ouvert à tous les étudiants issus de l'enseignement supérieur, créé en 2022 par le Pôle Réseau et Sécurité OpenGate de l'Association ESIEESPACE et la société SIFARIS. - Événements | Hack | ★★★ | |
 |
2023-02-06 11:00:00 | The ethics of biometric data use in security (lien direct) | The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. In a world where you can scan the veins in your hand to unlock a smartphone, how do you maintain control over personal data? Biometric authentication, the use of distinctive human features like iris patterns, fingerprints and even gait in lieu of a password, is gaining ground in the tech world. Proponents tout its inherent, hard-to-replicate qualities as a security benefit, while detractors see the same features as an invasion of privacy. Both sides may be right. The problems with biometrics Unlike a password, you can’t forget your face at home. But also, unlike a password, you can’t reset your face — meaning you’re out of luck if someone steals a photo of it. In 2016, a biometrics researcher helped investigators hack into a murder victim’s phone with only a photo of the man’s fingerprint. While security systems are getting more advanced all the time, current technology also allows cybercriminals to run wild with a single piece of biometric data, accessing everything from laptop logins to bank accounts. By its very nature, biometric authentication requires third parties to store biometric data. What happens if the information is exposed? In addition to potential hacking, breaching people’s personal data might reveal something they’d rather keep private. Vein patterns could reveal that a person has a vascular disorder, raising their insurance premiums. Fingerprints could expose a chromosomal disease. True, people give this same information to their doctors, and a medical data breach could have the same repercussions. But handing off biometric data to a commercial company — which isn’t bound by HIPAA or sworn to do no harm — is a much grayer area. Another issue that occasionally plagues biometric authentication is injuries and natural bodily changes. A single paper cut can derail a fingerprint scanner, and an aging eye throws iris scanners for a loop. People will have to update their photos every few years to remind the system what they look like. Some facial recognition programs can even predict how long a person will live. Insurance companies have expressed interest in getting hold of this data, since the way a person ages says a lot about their health. If stolen biometric data fed into an algorithm predicts a person won’t make it past 50, will their employer pass them up for a promotion? In the event of an accident, your family won’t easily be able to access your accounts if you use biometric authentication, since it’s not as simple as writing down a list of passwords. Maybe that’s a good thing — but maybe not. Another ethical dilemma with biometric data use is identifying people without their consent. Most people are used to being on camera at the grocery store, but if that same camera snaps a photo without permission and stores it for later retrieval, they probably won’t be too happy. Some people point out that you have no right to privacy in a public space, and that’s true — to an extent. But where do you draw the line between publicity and paparazzi? Is it OK to snap a stranger’s photo while you’re talking to them, or is that considered rude and intrusive? The benefits of biometric data Of course, no one would be handing off a photo of their face if the | Data Breach Hack Prediction Medical | ★★ | |
|
2023-02-05 12:00:11 | Have we learnt nothing from SolarWinds supply chain attacks? Not yet it appears (lien direct) | From frameworks to new federal offices it's time to get busy The hack of SolarWinds' software more than two years ago pushed the threat of software supply chain attacks to the front of security conversations, but is anything being done?.… | Hack Threat | ★★ | |
|
2023-02-02 10:02:17 | City Of London Traders Hit By Russia-Linked Cyberattack (lien direct) | Following an attack on a firm that is crucial to the British financial system by a ransomware group with Russian ties, trading in the City of London has fallen into disarray. A top official in the US Treasury Department said on Wednesday that the hack on a UK-based software company that disrupted some futures trading […] | Ransomware Hack | ★★ | |
 |
2023-02-01 17:00:00 | Google Fi Confirms Data Breach, Hints At Link to T-Mobile Hack (lien direct) | The company uses a combination of T-Mobile and US Cellular for network connectivity | Hack | ★★ | |
 |
2023-02-01 14:24:06 | Artificial Intelligence, ChatGPT and Cybersecurity: A Match Made in Heaven or a Hack Waiting to Happen? (lien direct) |
|
Hack | ChatGPT | ★★ |
|
2023-02-01 11:00:00 | Hackers Abused Microsoft\'s "Verified Publisher" OAuth Apps to Hack Corporate Email Accounts (lien direct) | Microsoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth applications as part of a malicious campaign designed to breach organizations' cloud environments and steal email. "The applications created by these fraudulent actors were then used in a consent phishing campaign, which tricked users into granting | Hack | ★★ | |
|
2023-02-01 09:13:44 | Kevin Bocek - Venafi commente la révocation des certificats de signature de code volés dans repo hack par GitHub (lien direct) | GitHub révoque les certificats de signature de code volés dans repo hack Commentaires de Kevin Bocek - Venafi - Points de Vue | Hack | ★ | |
|
2023-01-30 15:00:00 | Realtek Vulnerability Under Attack: 134 Million Attempts in 2 Months to Hack IoT Devices (lien direct) | Researchers are warning about a spike in exploitation attempts weaponizing a critical remote code execution flaw in Realtek Jungle SDK since the start of August 2022. According to Palo Alto Networks Unit 42, the ongoing campaign is said to have recorded 134 million exploit attempts as of December 2022, with 97% of the attacks occurring in the past four months. Close to 50% of the attacks | Hack Vulnerability | ★★★ | |
|
2023-01-30 13:27:03 | GitHub revokes code signing certificates stolen in repo hack (lien direct) | GitHub says that unknown attackers have stolen encrypted code-signing certificates for its Desktop and Atom applications after gaining access to some of its development and release planning repositories. [...] | Hack | ★★ | |
|
2023-01-30 12:34:09 | Breaking: JD Sports Data Breach Following Cyberattack (lien direct) | JD Sports has issued a warning that a cyberattack that affected the company may have exposed the personal information of roughly 10 million customers, including personal contact information, such as phone and email addresses. The hack may have affected customers who ordered goods from the business between 2018 and 2020. The company claimed that credit […] | Data Breach Hack | ★★ | |
|
2023-01-28 11:28:51 | Could hackers change the daily Wordle? Researchers are torn (lien direct) |  Researchers are split on whether someone could hack into the New York Times' massively popular game Wordle and change the daily word users are forced to figure out. In a blog post last month, Noname Security's David Thomason said the the entire list of daily Wordles for the next few months could be discovered by [… |
Hack | ★★★ | |
|
2023-01-27 18:42:03 | (Déjà vu) Bitwarden Password Vaults Subject Of Google Ads Phishing (lien direct) | Google Adwords phishing campaigns steal Bitwarden and other password managers’ vault passwords. As enterprises and consumers use unique passwords at every site, password managers must keep track of them. Unless you use KeePass, most password managers are cloud-based, allowing users to access their credentials via websites and mobile apps. “Password vaults” on the cloud encrypt […] | Hack | ★★★ | |
|
2023-01-27 15:49:00 | How Noob Website Hackers Can Become Persistent Threats (lien direct) | An academic analysis of website defacement behavior by 241 new hackers shows there are four clear trajectories they can take in future, researchers say. | Hack | ★★★ | |
|
2023-01-26 16:40:34 | Bitwarden password vaults targeted in Google ads phishing attack (lien direct) | Bitwarden and other password managers are being targeted in Google ads phishing campaigns to steal users' password vault credentials. [...] | Hack | ★★★ | |
 |
2023-01-26 09:30:21 | Crypto : le FBI a démasqué le coupable d\'un des plus grands hacks de 2022 (lien direct) |  Le FBI vient de confirmer l'identité des pirates derrière le hack de la blockchain Harmony. En coopérant avec des plates-formes comme Binance, les autorités sont remontées jusqu'à un groupe de pirates passé maître dans le vol de cryptomonnaies… |
Hack | ★★ | |
|
2023-01-25 21:43:00 | Zacks Investment Research Hack Exposes Data for 820K Customers (lien direct) | Zacks Elite sign-ups for the period 1999–2005 were accessed, including name, address, email address, phone number, and the password associated with Zacks.com. | Hack | ★ | |
|
2023-01-25 14:34:52 | Hackers auction alleged source code for League of Legends (lien direct) | Threat actors are auctioning the alleged source code for Riot Game's League of Legends and the Packman anti-cheat software, confirmed to be stolen in a recent hack of the game company's developer environment. [...] | Hack Threat | ★★ | |
|
2023-01-25 13:54:59 | Hilton denies hack after data from 3.7 million Honors customer offered for sale (lien direct) |  Hotel giant Hilton denied that it has been hacked after cybercriminals claimed to have breached the company's systems and stolen data related to 3.7 million customers. On Monday, hackers said they stole a database from 2017 consisting of information from customers enrolled in the Hilton Hotel Honors program. The information in the database includes names, [… |
Hack | ★★★★ | |
|
2023-01-25 12:00:00 | Password Dependency: How to Break the Cycle (lien direct) | >Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That's why it's so critical to break the password dependency cycle. But how can this be done? | Hack | ★ | |
|
2023-01-25 10:00:00 | New Cheats May Emerge After Riot Games Hack (lien direct) | Ransomware actors stole source code, company reveals | Ransomware Hack | ★★★ | |
|
2023-01-24 17:28:00 | FBI Says North Korean Hackers Behind $100 Million Horizon Bridge Crypto Theft (lien direct) | The U.S. Federal Bureau of Investigation (FBI) on Monday confirmed that North Korean threat actors were responsible for the theft of $100 million in cryptocurrency assets from Harmony Horizon Bridge in June 2022. The law enforcement agency attributed the hack to the Lazarus Group and APT38, the latter of which is a North Korean state-sponsored threat group that specializes in financial cyber | Hack Threat Medical | APT 38 | ★★ |
|
2023-01-24 17:00:00 | FBI Confirms Lazarus Group Was Behind $100m Harmony Hack (lien direct) | The North Korean cyber actors laundered over $60m worth of Ethereum stolen during the heist | Hack | APT 38 | ★★★ |
|
2023-01-24 11:40:14 | How To Safeguard Your Business From Cybersecurity Stress And Prevent IT Burnout (lien direct) | The number of data breaches and their effects are increasing as more aspects of our lives move online. It’s not surprising that the latest IBM Data Breach report found that the average cost of a hack to businesses has reached a record $4.35 million when combined with inflationary levels that are unheard of. Employees are […] | Data Breach Hack | ★★ | |
|
2023-01-24 09:49:59 | FBI: North Korean hackers stole $100 million in Harmony crypto hack (lien direct) | The FBI has concluded its investigation on the $100 million worth of ETH heist that hit Harmony Horizon in June 2022 and validated that the hackers responsible for it are the Lazarus group and APT38. [...] | Hack Medical | APT 38 | ★★ |
|
2023-01-24 02:19:28 | Congressman \'coming for answers\' after \'no-fly list\' hack (lien direct) |  A Republican congressman on the House Committee on Homeland Security is seeking answers about last week’s hack of regional airline CommuteAir, which led to the exposure of a copy of the federal no-fly list from 2019. Alarm has grown since the researcher behind the hack, a Swiss national who goes by maia arson crimew, published [… |
Hack | ★★ | |
|
2023-01-23 10:02:40 | FanDuel Cautions Users Of Data Breach In Vendor Hack (lien direct) | Customers of the FanDuel sportsbook and betting platform are being cautioned that their names and email addresses were made public due to a security breach at MailChimp in January 2023. Users are advised to be on the lookout for scam communications. MailChimp announced a compromise on January 13th after hackers used a social engineering effort […] | Data Breach Hack | ★ | |
|
2023-01-22 13:56:45 | (Déjà vu) FanDuels warns of data breach after customer info stolen in vendor hack (lien direct) | The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] | Data Breach Hack | ★★ | |
|
2023-01-22 13:56:45 | FanDuel discloses data breach caused by recent MailChimp hack (lien direct) | The FanDuel sportsbook and betting site is warning customers that their names and email addresses were exposed in a January 2023 MailChimp security breach, urging users to remain vigilant against phishing emails. [...] | Data Breach Hack | ★★ | |
|
2023-01-20 18:28:54 | Samsung investigating claims of hack on South Korea systems, internal employee platform (lien direct) |  Samsung is investigating a potential cyberattack and data breach on an internal employee platform and several systems in South Korea. On Tuesday, a group of hackers going by the name “Genesis Day” claimed it attacked Samsung's offices in South Korea because of the country's recent opening of a mission to the North Atlantic Treaty Organization [… |
Data Breach Hack | ★★ | |
|
2023-01-20 15:06:08 | 37 Million T-Mobile API Data On Customers Stolen in Hack (lien direct) | Following a network intrusion by a “unidentified malicious intruder,” around 37 million T-Mobile customers had their personal information taken. Its been confirmed that data taken were customers’ addresses, phone numbers, and dates of birth were among the data taken, the company informed the Security and Exchange Commission on January 5. This is the mobile company’s […] | Hack | ★ | |
|
2023-01-19 16:00:00 | Mailchimp Hit By Another Data Breach Following Employee Hack (lien direct) | According to the company, the incident was limited to 133 accounts | Data Breach Hack | ★★★ | |
|
2023-01-19 12:55:02 | Roaming Mantis\' Android malware adds DNS changer to hack WiFi routers (lien direct) | Starting in September 2022, the 'Roaming Mantis' credential theft and malware distribution campaign was observed using a new version of the Wroba.o/XLoader Android malware that incorporates a function for detecting specific WiFi routers and changing their DNS. [...] | Malware Hack | ★★ | |
|
2023-01-19 02:30:14 | FTX audit finds $415 million in crypto has mysteriously vanished (lien direct) | Meanwhile SBF proclaims he's both innocent and solvent Liquidators at bankrupt crypto exchange FTX say they've thus far located $5.5 billion in assets, and confirmed that $415 million stolen in a November hack is still missing. … | Hack | ★★★ | |
|
2023-01-18 16:10:16 | 1,000 Ships Affected By Ransomware Attack On DNV\'s Software (lien direct) | DNV, a Norwegian assurance and risk management firm and classification organization, has confirmed that almost 1,000 ships were affected by a recent ransomware cyberattack on its fleet management system. After the hack on its ShipManager fleet management and operations platform was discovered on Saturday, January 7, in the evening, the class society was obliged to […] | Ransomware Hack | ★★ |
To see everything:
Our RSS (filtrered)
