What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-08-06 17:44:02 | Crooks turn victims into money mules via confidence/romance scams (lien direct) | The FBI published a security advisory to warn of cyber actors using online dating sites to conduct confidence/romance scam and recruit money mules. The FBI published a security advisory to warn of confidence/romance scams turning victims into money mules. The advisory explains that victims are used as part of a money-laundering scheme and act as […] | |||
|
2019-08-06 12:01:01 | CafePress Data Breach exposes technical details of 23 Million users (lien direct) | CafePress, the popular T-Shirt and merchandise website, suffered a data breach that exposed the personal details of 23 million of their customers. CafePress, the popular T-Shirt and merchandise website, disclosed a data breach that exposed the personal details of 23 million of their customers. The news was publicly reported by the data breach notification service […] | Data Breach | ||
|
2019-08-06 10:46:02 | The Evolution of Aggah: From Roma225 to the RG Campaign (lien direct) | The experts at Yoroi-Cybaze ZLab discovered a new wave of attacks linked to the cyber espionage campaign tracked as Roma225. Introduction Few months ago we started observing a cyber operation aiming to attack private companies in various business sectors, from automotive to luxury, education, and media/marketing. The attack attribution is still unclear but the large scale of […] | |||
|
2019-08-06 08:11:02 | QualPwn Bugs in Qualcomm chips could allow hacking Android Over the Air (lien direct) | Researchers discovered two serious flaws, QualPwn bugs, in Qualcomm’s Snapdragon SoC WLAN firmware that could be exploited to hack Android device over the air. Security experts at Tencent Blade, the security elite unit at Tencent, have discovered two severe vulnerabilities, QualPwn bugs, that could “allow attackers to compromise the Android Kernel over-the-air. “QualPwn is a […] | Hack | ||
|
2019-08-06 07:04:02 | Russia-linked STRONTIUM APT targets IoT devices to hack corporate networks (lien direct) | The STRONTIUM Russia-linked APT group is compromising common IoT devices to gain access to several corporate networks. Researchers at Microsoft observed the Russia-linked APT group STRONTIUM abusing IoT devices to gain access to several corporate networks. The STRONTIUM APT group (aka APT28, Fancy Bear, Pawn Storm, Sofacy Group, and Sednit) has been active since at least 2007 and it has […] | Hack | APT 28 | |
|
2019-08-05 20:36:05 | StockX hacked, customers\' data offered for sale on the dark web (lien direct) | StockX, the live marketplace for buying and selling limited edition sneakers, watches, handbags, and streetwear, announced a data breach. StockX is a live marketplace for buying and selling limited edition sneakers, watches, handbags, and streetwear, the company announced that the sneaker and streetwear buying platform had been hacked. An unauthorized user was able to access customer data, […] | |||
|
2019-08-05 15:44:01 | GermanWiper, a data-wiping malware that is targeting Germany (lien direct) | Recently a data-wiping malware tracked as GermanWiper has been targeting German organizations, the malicious code is pushed via phishing messages. GermanWiper is being distributed in Germany through spam messages that pretend to be emails sent by a job applicant named Lena Kretschmer that is submitting her resume. The messages have the subject “Ihr Stellenangebot – Bewerbung [Your job offer – […] | Spam Malware | ||
|
2019-08-05 13:06:03 | Machete cyber-espionage group targets Latin America military (lien direct) | Security experts from ESET uncovered a cyber-espionage group tracked as Machete that stole sensitive files from the Venezuelan military. Security experts from ESET reported that a cyberespionage group tracked as Machete has stolen sensitive files from the Venezuelan military. The group has been active since 2010 and hit military organizations and other high-profile targets worldwide. […] | |||
|
2019-08-05 10:52:02 | Hacking Radio Blasting Systems for Fun & Explosions (lien direct) | While driving to work I have seen the advertisement of a Fireworks Festival that's going to happen in the city. What about hacking Radio Blasting Systems? And, as usual, my curiosity brought me to one question: “How they trigger the fireworks?” Back when I was a contractor I have worked for a company which the […] | |||
|
2019-08-05 10:19:05 | Fraudster stole $870,000 from 2 US universities with spear-phishing mails (lien direct) | A crook involved in a spear phishing scheme and that was in Kenya is facing up to 20 years in the US federal prison for stealing thousands of dollars from US universities. Amil Hassan Raage, 48, pleaded guilty last week in a southern California court to fraudulently receiving almost $750,000 as part of a spear phishing scheme. […] | Guideline | ||
|
2019-08-05 06:44:00 | The US Gov is testing high-altitude balloons for surveillance (lien direct) | The US government is testing high-altitude balloons manufactured by Sierra Nevada to conduct surveillance over American soil. The US government is planning to use high-altitude balloons to conduct surveillance over Americans. The high-altitude balloons are manufactured by Sierra Nevada Corporation, they will cover a large area in the United States’ Midwest. The project is to […] | |||
|
2019-08-04 17:24:03 | Poshmark, the social commerce marketplace, discloses a data breach (lien direct) | Poshmark, a social commerce marketplace where people in the United States can buy and sell new or used clothing, shoes, and accessories, disclosed a data breach. On August 1, the US social commerce marketplace Poshmark disclosed a data breach. The company discovered unauthorized access to its servers, the intruders stole personal information of the users, […] | Data Breach | ||
|
2019-08-04 15:00:02 | Security Affairs newsletter Round 225 and Important Update (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. Once again thank you! Crooks used rare Steganography technique […] | |||
|
2019-08-04 13:57:02 | Houston County Schools in Alabama delayed the school year\'s opening due to a malware attack (lien direct) | It has happened again, for the second time in a few days, Houston County Schools in Alabama delayed the school year’s opening due to a malware attack. The long wave of malware attacks against US schools continues, for the second time in a week, the Houston County Schools in Alabama delayed the school year’s opening scheduled for […] | Malware | ||
|
2019-08-04 09:35:02 | DealPly adware abuses reputation services to remain under the radar (lien direct) | Malware researchers from enSilo have spotted a new variant of the DealPly adware that uses a new method to avoid detection. Researchers from enSilo have discovered a new variant of the modular DealPly adware that abuses the reputation services provided by Microsoft’s SmartScreen (aka Windows Defender SmartScreen) and McAfee’s WebAdvisor to avoid detection. The main […] | |||
|
2019-08-03 20:06:01 | DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords (lien direct) | Dragonblood researchers found two new weaknesses in WPA3 protocol that could be exploited to hack WPA3 protected WiFi passwords. passwords. A group of researchers known as Dragonblood (Mathy Vanhoef and Eyal Ronen)devised new methods to hack WPA3 protected WiFi passwords by exploiting two new vulnerabilities dubbed Dragonblood flaws. We first met this team of experts […] | Hack | ||
|
2019-08-03 14:17:03 | SystemBC, a new proxy malware is being distributed via Fallout and RIG EK (lien direct) | Researchers at Proofpoint discovered SystemBC, a new strain of proxy malware that is being distributed via Fallout and RIG Exploit Kits A new piece of malware dubbed SystemBC was discovered by experts at Proofpoint, it is being distributed via exploit kits like Fallout and RIG. The malware was tracked as “SystemBC” based on the URI path […] | Malware | ||
|
2019-08-02 16:49:04 | Nation-state actor uses new LookBack RAT to target US utilities (lien direct) | Experts warn of a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. Security experts at Proofpoint uncovered a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. “Between July 19 and July 25, 2019, several spear-phishing […] | |||
|
2019-08-02 14:17:04 | How to Reverse Engineer, Sniff & Bruteforce Vulnerable RF Adult Toys with WHID Elite (lien direct) | Expert Luca Bongiorni was looking for new targets to test WHID Elite's Radio Hacking capabilities and found an interesting one: Electrocuting Cock Ring Last week I was looking for new targets to test WHID Elite's Radio Hacking capabilities and suddenly I found an interesting one: an Electrocuting Cock Ring. Yes, you read it correctly (What you cannot find […] | |||
|
2019-08-02 13:28:05 | Over 1 Million payment cards from South Korea sold on the Dark Web (lien direct) | Data belonging to more than one million payment cards from South Korea surfaced in the dark web over the past two months. Experts noticed a spike in the number of stolen payment card details belonging to users from South Korea over the past two months. Card details from over one million payments cards from South […] | |||
|
2019-08-02 11:49:03 | Lotsy group targets Italian and Spanish-speaking users (lien direct) | Group-IB discovered massive fraudulent campaigns carried out by Lotsy group involving the use of dozens of well-known brands aimed at Italian and Spanish-speaking customers. Group-IB, an international company that specializes in preventing cyberattacks, which has recently opened Global HQ in Singapore, has discovered a new wave of massive fraudulent campaigns involving the use of dozens […] | |||
|
2019-08-02 08:08:05 | Facebook dismantled influence campaigns focused on Middle East and Northern Africa (lien direct) | Facebook announced it dismantled covert influence campaigns in some countries in the Middle East and Northern Africa, including one tied to the Saudi government. Facebook uncovered two separate influence campaigns, one originated in the United Arab Emirates and Egypt, and another in Saudi Arabia. The campaigns appeared to be distinct and involved “coordinated inauthentic behavior” […] | |||
|
2019-08-01 21:31:04 | Cyber Defense Magazine – August 2019 has arrived. Enjoy it! (lien direct) | Cyber Defense Magazine August 2019 Edition has arrived. We hope you enjoy this month’s edition…packed with over 205 pages of excellent content. Our Growing Media Platforms… www.cyberdefenseawards.comwww.cyberdefensemagazine.comwww.cyberdefenseradio.comwww.cyberdefensetv.com After 7 Years, We’ve Completely RebuiltCyberDefenseMagazine.com – Please Let Us Know What You Think. It’s mobile and tablet friendly and superfast. We hope you like it. In addition, we’re […] | |||
|
2019-08-01 17:42:03 | Recently discovered Hexane group targets the oil and gas industry (lien direct) | Security researchers at Dragos Inc have tracked the activity of a threat actor recently discovered and dubbed Hexane. Security experts at Dragos Inc. have discovered a new threat actor, tracked as Hexane, that is targeting organizations in the oil and gas industry and telecommunication providers. The Hexane group has been active since at least the […] | Threat | ||
|
2019-08-01 15:49:02 | New Mirai botnet hides C2 server in the Tor network to prevent takedowns (lien direct) | Researchers at Trend Micro have discovered a new Mirai Botnet that has command and control server in the Tor network to make takedowns hard. Experts at Trend Micro have discovered a new Mirai Botnet that uses a Command and Control hidden in the Tor Network, a choice that protects the anonymity of the operators and […] | |||
|
2019-08-01 11:07:01 | MICROCHIPS Act aims at improving tech supply chain (lien direct) | MICROCHIPS Act (S. 2316) – Two US Senators have introduced a bill to protect US government supply chain against foreign sabotage and cyber espionage. Two US senators have introduced legislation a bill, dubbed Manufacturing, Investment and Controls Review for Computer Hardware, Intellectual Property and Supply ACT (MICROCHIPS Act – S. 2316) that aims at protecting […] | |||
|
2019-08-01 09:21:05 | Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov (lien direct) | Cisco is going to pay $8.6 million to settle a legal dispute for selling vulnerable software to the US government. Back in 2008, a whistle-blower identifies a vulnerability in Cisco video surveillance software, but the tech giant continued to sell the software to US agencies until July 2013. The case was filed in the Federal […] | Vulnerability | ||
|
2019-08-01 06:12:01 | (Déjà vu) CISA warns of critical flaws in Prima FlexAir access control system (lien direct) | The U.S. CISA published a security advisory to warn of multiple critical vulnerabilities affecting in Prima FlexAir access control system. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) published an advisory to warn of critical flaws affecting access control systems manufactured by Prima Systems. Prima access control has a wide range of solutions, including wall-mounted […] | |||
|
2019-07-31 20:48:01 | Cyber attacks hit Louisiana schools ahead of year\'s beginning (lien direct) | A wave of cyber attacks hit schools of Louisiana ahead of year's beginning that is planned for the next week. Several schools of Louisiana were targeted by hackers ahead of year's beginning that is planned for the next week. The AP press states that a fourth Louisiana school district is assessing damages caused by a […] | |||
|
2019-07-31 19:43:02 | DHS warns of cyber attacks against small airplanes (lien direct) | A few hours ago, I have written about an interesting analysis of the possible hack of avionics systems, not DHS warns of cyber attacks against small airplanes. Today we introduced an interesting report published by researchers at Rapid7 about the hacking of avionics systems via CAN bus, now the DHS issues an alert to warn […] | Hack | ||
|
2019-07-31 14:16:01 | Hacking avionics systems through the CAN bus (lien direct) | An expert analyzed the level of security of avionics systems used in small airplanes, and the results are disconcerting. Patrick Kiley, a senior security consultant at Rapid7 conducted an investigation into the security of avionics systems inside small airplanes. The results are disconcerting it is quite easy to hack a small plane. Kiley, which is […] | Hack | ||
|
2019-07-31 06:51:04 | Hacking eCommerce sites based on OXID eShop by chaining 2 flaws (lien direct) | Researchers at RIPS Technologies discovered vulnerabilities in the OXID eShop platform that could expose eCommerce websites to hack. Experts at RIPS Technologies discovered several flaws in the OXID eShop platform that could be exploited by unauthenticated attackers to compromise eCommerce websites. OXID eShop is a popular e-commerce software platform used by important brands like Mercedes […] | |||
|
2019-07-31 06:14:03 | Hacking campaign is wiping Iomega NAS Devices exposed online (lien direct) | Experts warn of a new campaign carried out by threat actors that are wiping Iomega NAS devices exposed online. Security experts are warning of a campaign carried out by attackers that are deleting files on publicly accessible Lenovo Iomega NAS devices. Likely attackers use the Shodan search engine to find unprotected IOmega NAS exposed online […] | Threat | ||
|
2019-07-30 13:23:05 | Google Project Zero hackers disclose details and PoCs for 4 iOS RCE flaws (lien direct) | Security experts at Google disclosed details and proof-of-concept exploit codes for 4 out of 5 security vulnerabilities in Apple iOS. Researchers at Google disclosed details and proof-of-concept exploit codes for 4 out of 5 security vulnerabilities in Apple iOS that could be exploited by attackers to hack Apple devices by sending a specially-crafted message over […] | Hack | ||
|
2019-07-30 11:37:01 | (Déjà vu) LAPD data breach exposes personal info of thousands of officers (lien direct) | While Capital One incident is making the headlines, another incident may have severe consequences, the Los Angeles Police Department (LAPD) also suffered a data breach. The Los Angeles Police Department (LAPD) suffered a data breach that exposed the names, email addresses, passwords, and birth dates for thousands of police officers and applicants. The NBCLosAngeles confirmed that […] | Data Breach | ||
|
2019-07-30 09:26:00 | Malware researchers analyzed an intriguing Java ATM Malware (lien direct) | Experts spotted a Java ATM malware that was relying on the XFS (EXtension for Financial Service) API to “jackpot” the infected machine Introduction Recently our attention was caught by a really particular malware sample most probably linked toa recent cybercriminal operation against the banking sector. This piece of malicious code is a so-called ‘ATM malware‘: […] | Malware | ||
|
2019-07-30 09:09:05 | Capital One data breach: hacker accessed details of 106M customers before its arrest (lien direct) | Capital One, one of the largest U.S. –card issuer and financial corporation suffered a data breach that exposed personal information from more than 100 million credit applications. A hacker that goes online with the handle “erratic” breached the systems at Capital One and gained access to personal information from 106 million Capital One credit applications. […] | Data Breach | ||
|
2019-07-30 07:25:05 | Critical zero-days discovered in VxWorks RTOS, billions of devices at risk (lien direct) | Security experts at Armis have discovered a dozen zero-day vulnerabilities affecting the VxWorks real-time operating systems (RTOS) for embedded devices. Researchers at Armis Labs have discovered a dozen zero-day flaws in the VxWorks real-time operating systems (RTOS) for embedded devices. The collection of vulnerabilities was dubbed URGENT/11, it includes 11 flaws, 6 of which are […] | |||
|
2019-07-29 20:43:00 | WordPress Plugin Facebook Widget affected by authenticated XSS (lien direct) | Security experts at Plugin Vulnerabilities have discovered an authenticated Persistent Cross-Site Scripting (XSS) flaw in Facebook Widget. Researchers at Plugin Vulnerabilities have discovered an authenticated Persistent Cross-Site Scripting (XSS) flaw in the Facebook Widget (Widget for Facebook Page Feeds). The plugin is one of the 1,000 most popular plugins and it was closed on the […] | |||
|
2019-07-29 18:10:02 | Prolific Dark Web dealer of drugs pleads guilty (lien direct) | One of the most active drug sellers on the Dark Web was charged by law authorities and ordered to forfeit over $4 million in cryptocurrency. The US Department of Justice (DoJ) charged Richard Castro (36) (aka “Chemsusa,” “Chems_usa,” and “Jagger109”) with participating in a conspiracy to distribute carfentanil, fentanyl, and a fentanyl analogue over the […] | |||
|
2019-07-29 09:58:01 | Sonicwall warns of a spike in the number of attacks involving encrypted malware and IoT malware (lien direct) | According to experts at Sonicwall, scanning of random ports and the diffusion of encrypted malware are characterizing the threat landscape. In 2018, global malware volume recorded by SonicWall hit a record-breaking 10.52 billion attacks. The situation is better in the first half of 2019, when SonicWall recorded 4.8 billion attacks, a 20% drop compared to […] | Malware Threat | ||
|
2019-07-29 07:28:05 | Facebook deleted Russia-Linked efforts focusing on Ukraine ahead of the election (lien direct) | Facebook recently announced that it removed multiple pages, groups, and accounts tied to Russia involved in psyops ahead of the election in Ukraine. Facebook spotted four campaigns that appear independent, three of them associated with Russian threat actors. One of the operations involved 18 Facebook accounts, nine pages, and three groups. Threat actors attempted to […] | Threat | ||
|
2019-07-29 05:03:03 | Android devices could be hacked by playing a video due to CVE-2019-2107 flaw (lien direct) | Watch out! Playing a video on Android devices could be a dangerous operation due to a critical CVE-2019-2107 RCE flaw in Android OS between version 7.0 and 9.0. Playing a specially-crafted video on devices with the Android’s native video player application could allow attackers to compromise them due to a dangerous critical remote code execution […] | |||
|
2019-07-28 18:56:00 | Jessica Alba \'s Twitter account hacked, it posted racist and homophobic messages (lien direct) | Over the weekend, Jessica Alba’s Twitter account was hacked, the miscreants posted homophobic, racist and Nazi-sympathizing messages. On Saturday evening, miscreants hacked the Twitter account of the actress Jessica Alba and posted hateful, homophobic, and racist messages that remained live for hours. One of the messages posted by the hackers reads “Nazi Germany Did Nothing […] | |||
|
2019-07-28 14:57:02 | Crooks used rare Steganography technique to hack fully patched websites in Latin America (lien direct) | Experts at Trustwave observed threat actors using a rare technique to compromise fully patched websites. Security experts at Trustwave observed threat actors using a rare steganography technique, attackers are hiding PHP scripts in Exchangeable Image Format (EXIF) headers of JPEG images that are uploaded on the website. The Exchangeable image file format is a standard […] | Hack Threat | ||
|
2019-07-28 11:16:05 | Security Affairs newsletter Round 224 – News of the week (lien direct) | A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! Emsisoft releases a second decryptor in a few days, this time for ZeroFucks ransomware Hackers breach 62 US colleges by allegedly exploiting Ellucian Banner Web flaw Twitter account of […] | Ransomware | ||
|
2019-07-28 08:51:04 | Over 23 million stolen payment card data traded on the Dark Web in H1 2019 (lien direct) | According to a report published by cyber security firm Sixgill data for over 23 million payment card were on offer in underground forums in the first half of 2019. A report published by cybersecurity firm Sixgill revealed that data for over 23 million payment card were offered for sale in the cybercrime underground. The report, […] | |||
|
2019-07-27 15:17:03 | More Ransom project has helped victims to save $108 million of ransom (lien direct) | Over the past three years, the website of No More Ransom was visited by 3 million users and allowed to save $108 million in ransom to the victims of 109 ransomware. After three years, No More Ransom confirms the success of the initiative that aims at helping victims of ransomware. The No More Ransom was […] | |||
|
2019-07-27 11:47:00 | Hackers inject Magecart multi-gateway skimmer in fake Google domains (lien direct) | Attackers deployed a Magecart credit card skimmer script into fake Google domains used to trick visitors into making online transactions. Experts at Sucuri discovered threat actors using fake Google domains hosting a Magento skimmer script used to steal payment data when unaware visitors make transactions. The campaign was uncovered when the owner of a website […] | Threat | ||
|
2019-07-27 09:17:03 | Marcus Hutchins sentenced to supervised release, no jail for the expert (lien direct) | Marcus Hutchins has been sentenced to “time served” and one year of supervised release his role in developing and selling the Kronos banking malware. The popular researcher Marcus Hutchins, also known as MalwareTech, has been sentenced to “time served” and one year of supervised release his role in developing and selling the Kronos banking malware. […] |
To see everything:
Our RSS (filtrered)
