Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2019-09-27 12:21:00 |
New Checkm8 jailbreak released for all iOS devices running A5 to A11 chips (lien direct) |
New jailbreak will work on iPhones 4S up to iPhone 8 and X. |
|
|
|
|
2019-09-27 11:11:44 |
Vimeo embroiled in biometric \'face map\' lawsuit over user privacy, consent (lien direct) |
The company allegedly collected and stored biometric data without user consent. |
|
|
|
|
2019-09-27 10:26:13 |
Dunkin\' Donuts says there\'s \'no basis\' for lawsuit over 2015 security incident (lien direct) |
Dunkin' Donuts disputes claims made by New York state officials in recent lawsuit. Says it's looking forward to proving its case in court. |
|
|
|
|
2019-09-27 09:25:02 |
Facebook enjoys rare court win over privacy breach, investor claims (lien direct) |
A lawsuit brought forward by investors has been dismissed -- but can be refiled. |
|
|
|
|
2019-09-26 21:46:59 |
Microsoft: New Nodersok malware has infected thousands of PCs (lien direct) |
New Nodersok malware installs Node.js to turn systems into proxies, perform click-fraud. |
Malware
|
|
|
|
2019-09-26 19:22:37 |
AT&T redirected pen-test payloads to the FBI\'s Tips portal (lien direct) |
Exclusive: Security researcher gets a nasty surprise while hunting for bugs on AT&T's websites. |
|
|
|
|
2019-09-26 14:05:55 |
Microsoft bans 38 file extensions in Outlook for the Web (lien direct) |
Banned file types include Java, Python, and PowerShell extensions. |
|
|
|
|
2019-09-26 13:45:00 |
Chameleon gambling apps wiped from App Store, Google Play (lien direct) |
Developers mask their apps to circumvent heavy restrictions on gambling. |
|
|
|
|
2019-09-26 13:00:06 |
Cloudflare, Google Chrome, and Firefox add HTTP/3 support (lien direct) |
Next iteration of the HTTP protocol starts making its way into production systems. |
|
|
|
|
2019-09-26 10:14:16 |
Malware operators abuse Windows Narrator software in Asian attack wave (lien direct) |
The threat group is able to remotely control vulnerable systems without credentials. |
Malware
Threat
|
|
|
|
2019-09-25 23:46:00 |
Google removes Android apps caught grossly overcharging users for basic features (lien direct) |
Would you pay $240 for a calculator app? What about a QR code reader? A GIF maker? |
|
|
|
|
2019-09-25 20:09:00 |
(Déjà vu) Hackers looking into injecting card stealing code on routers, rather than websites (lien direct) |
Magecart (web skimming) attacks are evolving into a direction where they're gonna be harder and harder to detect. |
|
|
|
|
2019-09-25 20:09:00 |
Hackers looking into injecting card stealing code on routers, rather then websites (lien direct) |
Magecart (web skimming) attacks are evolving into a direction where they're gonna be harder and harder to detect. |
|
|
|
|
2019-09-25 11:11:00 |
US military veterans targeted by Iranian state hackers (lien direct) |
Fake US veteran hiring website spreads remote access trojan (RAT). |
|
|
|
|
2019-09-25 10:00:00 |
Heyyo dating app leaked users\' personal data, photos, location, more (lien direct) |
Exclusive: Another dating app fails to secure production server and puts users at risk. |
|
|
|
|
2019-09-25 00:35:37 |
Azure Sentinel, Microsoft\'s cloud-based SIEM, hits general availability (lien direct) |
Pricing starts at $2.46 per gigabyte (GB) of ingested data. |
|
|
|
|
2019-09-24 21:26:15 |
Anonymous researcher drops vBulletin zero-day impacting tens of thousands of sites (lien direct) |
New zero-day could trigger a new forum hacking spree across the internet. |
|
|
|
|
2019-09-24 19:30:52 |
\'Carpet-bombing\' DDoS attack takes down South African ISP for an entire day (lien direct) |
Carpet bombing - the DDoS technique that's just perfect for attacking ISPs, cloud services, and data centers. |
|
|
|
|
2019-09-24 18:51:00 |
No right to be forgotten? Here\'s how to remove yourself from the internet and hide your identity (lien direct) |
Here is a step-by-step guide to reducing your digital footprint online, whether you want to lock down data or vanish entirely. |
|
|
|
|
2019-09-24 13:41:21 |
Russian state hackers rarely share code with one another (lien direct) |
A first-of-its-kind research project highlights the connections between nearly 2,000 samples of Russian APT malware. |
|
|
|
|
2019-09-24 12:06:00 |
99 percent of all misconfigurations in the public cloud go unreported (lien direct) |
McAfee says these incidents are exposing enterprises worldwide to data loss and theft. |
|
|
|
|
2019-09-24 09:34:10 |
Political targets at risk as Fancy Bear returns with refreshed backdoor malware (lien direct) |
The threat group's attack chain is now even heavier with a string of malicious payloads. |
Malware
Threat
|
APT 28
|
|
|
2019-09-24 01:25:51 |
17 US utility firms targeted by mysterious state-sponsored group (lien direct) |
US utility providers targeted with spear-phishing emails that try to install the LookBack remote access trojan. |
|
|
|
|
2019-09-23 18:00:00 |
Microsoft releases out-of-band security update to fix IE zero-day & Defender bug (lien direct) |
Microsoft publishes rare out-of-band security update to address CVE-2019-1367 and CVE-2019-1255. |
|
|
|
|
2019-09-23 14:21:00 |
New North Korean malware targeting ATMs spotted in India (lien direct) |
Another version of the same malware, but with RAT-like features, spotted targeting Indian research centers. |
Malware
|
|
|
|
2019-09-23 11:28:34 |
Privilege escalation vulnerability patched in Forcepoint VPN for Windows (lien direct) |
The bug could also be used post-exploit to circumvent PC defenses. |
Vulnerability
|
|
|
|
2019-09-23 09:09:56 |
Google revamps privacy policy to give users more control over Assistant voice recordings (lien direct) |
You will be spared human eavesdroppers, too, unless you choose to opt-in. |
|
|
|
|
2019-09-23 03:00:00 |
Massive wave of account hijacks hits YouTube creators (lien direct) |
YouTube creators from the auto and car community were hit the hardest in what appears to be a coordinated attack. |
|
|
|
|
2019-09-21 14:05:00 |
Apple neutered ad blockers in Safari, but unlike Chrome, users didn\'t say a thing (lien direct) |
On the other hand, everyone was busy blasting Google for a similar plan in Chrome. |
|
|
|
|
2019-09-20 18:50:46 |
Facebook suspended tens of thousands of apps from 400 developers (lien direct) |
Cambridge Analytica fallout yielded tens of thousands of app suspensions and bans. |
|
|
|
|
2019-09-20 15:15:18 |
Exclusive: TalkTalk hacker also breached EtherDelta cryptocurrency exchange (lien direct) |
Elliot Gunton and Anthony Tyler Nashatka charged for 2015 EtherDelta hack. |
|
|
|
|
2019-09-20 12:30:23 |
Magecart strikes again: hotel booking websites come under fire (lien direct) |
Card-skimmers may have impacted close to 200 hotel properties and their customers. |
|
|
|
|
2019-09-20 09:50:26 |
Man allegedly used drone to pelt ex-girlfriend\'s home with bombs (lien direct) |
Charges now include unregistered drone operation, meth use, and unlawfully owning firearms. |
|
|
|
|
2019-09-20 08:20:00 |
Twitter removes new batch of state-backed accounts (lien direct) |
Twitter removes new accounts part of state-run information campaigns in the United Arab Emirates, Egypt, Saudi Arabia, Spain, Equador, and China. |
|
|
|
|
2019-09-19 22:47:13 |
Google removes two Chrome ad blocker extensions caught \'cookie stuffing\' (lien direct) |
Two Chrome ad blockers caught manipulating cookies so extension devs could earn commissions on users' backs. |
|
|
|
|
2019-09-19 21:53:41 |
Two arrested in $10 million tech support scheme that \'preyed on the elderly\' (lien direct) |
Suspects run tech support scam sites and made over $10m from over 7,500 victims by billing unneeded tech support fees. |
|
|
|
|
2019-09-19 20:00:05 |
Two years later, hackers are still breaching local government payment portals (lien direct) |
New 20,000 batch of payment card details found on the dark web and traced back to new Click2Gov hacks. |
|
|
|
|
2019-09-19 13:50:22 |
Old Magecart web domains resurrected for fraudulent ad schemes (lien direct) |
Card skimming is the modus operandi of Magecart but many of the new campaigns focus on malvertising instead. |
|
|
|
|
2019-09-19 11:38:56 |
Smart TVs send user data to tech heavyweights including Facebook, Google, Netflix (lien direct) |
A research study suggests that private information is being transferred even when devices are idle. |
|
|
|
|
2019-09-19 09:59:11 |
Patch now: 1,300 Harbor cloud registries open to attack (lien direct) |
A severe critical privilege escalation vulnerability has been found in the open source registry software. |
Vulnerability
|
|
★★★
|
|
2019-09-19 00:23:00 |
Ubisoft to send out cease & desist requests to DDoS-for-hire services (lien direct) |
Because all cybercriminals are law-abiding citizens and have a legal department. |
|
|
|
|
2019-09-18 22:31:38 |
GitHub security alerts now support PHP projects (lien direct) |
GitHub is now also a CVE CNA and can issue its own CVE numbers for bugs disclosed in projects hosted on the platform. |
|
|
|
|
2019-09-18 19:47:47 |
Windows Defender malware scans are failing after a few seconds (lien direct) |
Windows Defender "Quick" and "Full" scans stop after a few files and a few seconds. |
Malware
|
|
|
|
2019-09-18 14:50:47 |
Crypto-mining malware saw new life over the summer as Monero value tripled (lien direct) |
Crypto-mining malware returns to take the crown as today's most prevalent malware threat. |
Malware
|
|
|
|
2019-09-18 11:05:14 |
These software vulnerabilities top MITRE\'s most dangerous list (lien direct) |
The Top 25 list gives developers indicators of what cybersecurity threats they should be most aware of. |
|
|
|
|
2019-09-18 08:45:20 |
New ransomware strain uses \'overkill\' encryption to lock down your PC (lien direct) |
The new Nemty malware may have ties to GandCrab and Sodinokibi. |
Ransomware
Malware
|
|
|
|
2019-09-17 19:19:00 |
US sues Edward Snowden over new book (lien direct) |
US claims Snowden broke the non-disclosure agreements he signed with the NSA and CIA. The US is now seeking to keep all the profits from Snowden's new book, launched today. |
|
|
|
|
2019-09-17 16:11:39 |
Arrest made in Ecuador\'s massive data breach (lien direct) |
Ecuador police arrest director of data analytics firm that leaked the personal records of most of Ecuador's population. |
Data Breach
|
|
|
|
2019-09-17 15:49:00 |
If you are a Restaurant Depot customer, don\'t open that phishing email (lien direct) |
Reports suggest the potential compromise of a mailing list with malicious invoices landing in client inboxes. |
|
|
|
|
2019-09-17 13:11:43 |
Cyberattackers now pose as business executives to secure security certificates (lien direct) |
Certificates can be used to sign-off on malicious payloads and can fetch a lucrative price on the black market. |
|
|
|