Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-12-22 14:15:54 |
Microsoft Azure App Service flaw exposed customer source code (lien direct) |
A security flaw found in Azure App Service, a Microsoft-managed platform for building and hosting web apps, led to the exposure of PHP, Node, Python, Ruby, or Java customer source code deployed on Microsoft's cloud infrastructure. [...] |
|
|
★★★★★
|
|
2021-12-22 14:00:58 |
Opera browser working on clipboard anti-hijacking feature (lien direct) |
The Opera browser team is working on a new clipboard monitoring and protection system called Paste Protection, which aims to prevent content hijacking and snooping. [...] |
|
|
|
|
2021-12-22 12:47:28 |
Microsoft Teams bug allowing phishing unpatched since March (lien direct) |
Microsoft said it won't fix or is delaying patches for several security flaws impacting Microsoft Team's link preview feature reported since March 2021. [...] |
|
|
|
|
2021-12-22 12:15:38 |
Dridex malware trolls employees with fake job termination emails (lien direct) |
A new Dridex malware phishing campaign is using fake employee termination emails as a lure to open a malicious Excel document, which then trolls the victim with a season's greeting message. [...] |
Malware
|
|
|
|
2021-12-22 10:42:21 |
NVIDIA discloses applications impacted by Log4j vulnerability (lien direct) |
NVIDIA has released a security advisory detailing what products are affected by the Log4Shell vulnerability that is currently exploited in a wide range of attacks worldwide. [...] |
Vulnerability
|
|
|
|
2021-12-22 10:23:40 |
CISA releases Apache Log4j scanner to find vulnerable apps (lien direct) |
The Cybersecurity and Infrastructure Security Agency (CISA) has announced the release of a scanner for identifying web services impacted by& two Apache Log4j remote code execution vulnerabilities, tracked as CVE-2021-44228 and CVE-2021-45046. [...] |
|
|
|
|
2021-12-22 08:24:22 |
Major services including Slack, AWS, Hulu, Imgur facing outages (lien direct) |
Major services across the internet are currently facing ongoing networking outages. [...] |
|
|
|
|
2021-12-21 17:37:20 |
PYSA ransomware behind most double extortion attacks in November (lien direct) |
Security analysts from NCC Group report that ransomware attacks in November 2021 increased over the past month, with double-extortion continuing to be a powerful tool in threat actors' arsenal. [...] |
Threat
Ransomware
Tool
|
|
|
|
2021-12-21 17:07:32 |
New Dell BIOS updates cause laptops and desktops not to boot (lien direct) |
Recently released Dell BIOS updates are reportedly causing serious boot problems on multiple laptops and desktop models. [...] |
|
|
|
|
2021-12-21 15:02:41 |
2easy now a significant dark web marketplace for stolen data (lien direct) |
A dark web marketplace named '2easy' is becoming a significant player in the sale of stolen data "Logs" harvested from roughly 600,000 devices infected with information-stealing malware. [...] |
|
|
|
|
2021-12-21 14:25:26 |
800K WordPress sites still impacted by critical SEO plugin flaw (lien direct) |
Two critical and high severity security vulnerabilities in the highly popular "All in One" SEO WordPress plugin exposed over 3 million websites to takeover attacks. [...] |
|
|
|
|
2021-12-21 12:51:27 |
Threat actors steal $80 million per month with fake giveaways, surveys (lien direct) |
Scammers are estimated to have made $80 million per month by impersonating popular brands asking people to participate in fake surveys or giveaways. [...] |
|
|
|
|
2021-12-21 12:18:07 |
Russian hackers made millions by stealing SEC earning reports (lien direct) |
A Russian national working for a cybersecurity company has been extradited to the U.S. where he is being charged for hacking into computer networks of two U.S.-based filing agents used by multiple companies to file quarterly and annual earnings through the Securities and Exchange Commissions (SEC) system. [...] |
|
|
|
|
2021-12-21 12:03:15 |
US returns $154 Million in bitcoins stolen by Sony employee (lien direct) |
The United States has taken legal action to seize and return over $154 million purportedly stolen from Sony Life Insurance Company Ltd, a SONY subsidiary, by an employee in a textbook business email compromise (BEC) attack. [...] |
|
|
|
|
2021-12-21 10:23:54 |
Garrett walk-through metal detectors can be remotely manipulated (lien direct) |
Two widely used walk-through metal detectors made by Garrett are vulnerable to many remotely exploitable flaws that could severely impair their functionality, thus rendering security checkpoints deficient. [...] |
|
|
|
|
2021-12-21 08:06:10 |
Windows 10 21H2 adds ransomware protection to security baseline (lien direct) |
Microsoft has released the final version of security configuration baseline settings for Windows 10, version 21H2, available today from the Microsoft Security Compliance Toolkit. [...] |
Ransomware
|
|
|
|
2021-12-20 14:51:43 |
Microsoft warns of easy Windows domain takeover via Active Directory bugs (lien direct) |
Microsoft warned customers today to patch two Active Directory domain service privilege escalation security flaws that, when combined, allow attackers to easily takeover Windows domains. [...] |
|
|
|
|
2021-12-20 13:37:26 |
Meta sues people behind Facebook and Instagram phishing (lien direct) |
Meta (formerly known as Facebook) has filed a federal lawsuit in California court to disrupt phishing attacks targeting Facebook, Messenger, Instagram, and WhatsApp users. [...] |
|
|
|
|
2021-12-20 13:06:53 |
FBI: State hackers exploiting new Zoho zero-day since October (lien direct) |
The Federal Bureau of Investigation (FBI) says a zero-day vulnerability in Zoho's ManageEngine Desktop Central has been under active exploitation by state-backed hacking groups (also known as APTs or advanced persistent threats) since at least October. [...] |
Vulnerability
|
|
|
|
2021-12-20 12:49:11 |
UK govt shares 585 million passwords with Have I Been Pwned (lien direct) |
The United Kingdom's National Crime Agency has contributed more than 585 million passwords to the Have I Been Pwned service that lets users check if their login information has leaked online. [...] |
|
|
|
|
2021-12-20 11:33:11 |
Log4j vulnerability now used to install Dridex banking malware (lien direct) |
Threat actors now exploit the critical Apache Log4j vulnerability named Log4Shell to infect vulnerable devices with the notorious Dridex banking trojan or Meterpreter. [...] |
Threat
Malware
Vulnerability
|
|
|
|
2021-12-20 10:46:02 |
T-Mobile says it blocked 21 billion scam calls this year (lien direct) |
T-Mobile says it blocked 21 billion scam, spam, and unwanted robocalls this year through its free Scam Shield robocall and scam protection service, amounting to an average of 1.8 billion scam calls identified or blocked every month. [...] |
|
|
|
|
2021-12-20 06:00:00 |
Phishing attacks impersonate Pfizer in fake requests for quotation (lien direct) |
Threat actors are conducting a highly targeted phishing campaign impersonating Pfizer to steal business and financial information from victims. [...] |
Threat
|
|
|
|
2021-12-19 11:02:01 |
New stealthy DarkWatchman malware hides in the Windows Registry (lien direct) |
A new malware named 'DarkWatchman' has emerged in the cybercrime underground, and it's a lightweight and highly-capable JavaScript RAT (Remote Access Trojan) paired with a C# keylogger. [...] |
Malware
|
|
|
|
2021-12-18 10:36:18 |
Western Digital warns customers to update their My Cloud devices (lien direct) |
Western Digital is urging customers to update their WD My Cloud devices to the latest available firmware to keep receiving security updates on My Cloud OS firmware reaching the end of support. [...] |
|
|
|
|
2021-12-18 05:29:24 |
Upgraded to log4j 2.16? Surprise, there\'s a 2.17 fixing DoS (lien direct) |
Yesterday, BleepingComputer summed up all the log4j and logback CVEs known thus far. Ever since the critical log4j zero-day saga began last week, security experts have time and time again recommended version 2.16 as the safest release to be on. That changes today with version 2.17.0 out that fixes CVE-2021-45105, a DoS vulnerability. [...] |
|
|
★★★
|
|
2021-12-17 18:37:23 |
The Week in Ransomware - December 17th 2021 - Enter Log4j (lien direct) |
A critical Apache Log4j vulnerability took the world by storm this week, and now it is being used by threat actors as part of their ransomware attacks. [...] |
Threat
Ransomware
Vulnerability
|
|
|
|
2021-12-17 15:25:06 |
TellYouThePass ransomware revived in Linux, Windows Log4j attacks (lien direct) |
Threat actors have revived an old and relatively inactive ransomware family known as TellYouThePass, deploying it in attacks against Windows and Linux devices targeting a critical remote code execution bug in the Apache Log4j library. [...] |
Threat
Ransomware
|
|
|
|
2021-12-17 14:06:08 |
Credit card info of 1.8 million people stolen from sports gear sites (lien direct) |
Four affiliated online sports gear sites have disclosed a cyberattack where threat actors stole credit cards for 1,813,224 customers. [...] |
Threat
|
|
|
|
2021-12-17 13:32:30 |
CISA urges VMware admins to patch critical flaw in Workspace ONE UEM (lien direct) |
CISA has asked VMware admins and users today to patch a critical security vulnerability found in the Workspace ONE UEM console that threat actors could abuse to gain access to sensitive information. [...] |
Threat
Vulnerability
|
|
|
|
2021-12-17 12:35:43 |
(Déjà vu) US orders federal govt agencies to patch critical Log4j bug (lien direct) |
US Federal Civilian Executive Branch agencies have been ordered to patch the critical and actively exploited Log4Shell security vulnerability in the Apache Log4j library within the next six days. [...] |
Vulnerability
|
|
|
|
2021-12-17 12:35:43 |
US emergency directive orders govt agencies to patch Log4j bug (lien direct) |
US Federal Civilian Executive Branch agencies have been ordered to patch the critical and actively exploited Log4Shell security vulnerability in the Apache Log4j library within the next six days. [...] |
Vulnerability
|
|
|
|
2021-12-17 11:28:39 |
Logistics giant warns of BEC emails following ransomware attack (lien direct) |
Hellmann Worldwide is warning customers of an increase in fraudulent calls and emails regarding payment transfer and bank account changes after a recent ransomware attack. [...] |
Ransomware
|
|
|
|
2021-12-17 10:00:00 |
Conti ransomware uses Log4j bug to hack VMware vCenter servers (lien direct) |
Conti ransomware operation is using the critical Log4Shell exploit to gain rapid access to internal VMware vCenter Server instances and encrypt virtual machines. [...] |
Ransomware
Hack
|
|
|
|
2021-12-17 07:20:07 |
All Log4j, logback bugs we know so far and why you MUST ditch 2.15 (lien direct) |
Everyone's heard of the critical log4j zero-day by now. Dubbed 'Log4Shell' and 'Logjam,' the vulnerability has set the internet on fire. Below we summarize the four or more CVEs identified thus far, and pretty good reasons to ditch log4j version 2.15.0 for 2.16.0. [...] |
|
|
|
|
2021-12-17 02:56:38 |
This image looks very different on Apple devices - see for yourself (lien direct) |
This image appears starkly different when viewed in Apple iOS and Mac devices as opposed to others. BleepingComputer explains why. [...] |
|
|
|
|
2021-12-16 16:12:45 |
Log4j attackers switch to injecting Monero miners via RMI (lien direct) |
Some threat actors exploiting the Apache Log4j vulnerability have switched from LDAP callback URLs to RMI or even used both in a single request for maximum chances of success. [...] |
Threat
Vulnerability
|
|
|
|
2021-12-16 15:52:18 |
Facebook disrupts operations of seven surveillance-for-hire firms (lien direct) |
Facebook has disrupted the operations of seven different spyware-making companies, blocking their Internet infrastructure, sending cease and desist letters, and banning them from its platform. [...] |
|
|
|
|
2021-12-16 15:48:04 |
McMenamins breweries hit by a Conti ransomware attack (lien direct) |
Portland brewery and hotel chain McMenamins suffered a Conti ransomware attack over the weekend that disrupted the company's operations. [...] |
Ransomware
|
|
|
|
2021-12-16 15:46:51 |
Cloudflare is experiencing widespread latency and timeouts (lien direct) |
Cloudflare is experiencing "wide-spread" latency issues with their network and services, causing websites to load slowly and customers to experience performance issues accessing the customer dashboard. [...] |
|
|
|
|
2021-12-16 13:39:13 |
Google Calendar now lets you block invitation phishing attempts (lien direct) |
Google now makes it easy to block unwanted calendar invitations, commonly used by threat actors in phishing and malicious campaigns, from being added to your Google Calendar. [...] |
Threat
|
|
|
|
2021-12-16 12:20:59 |
Microsoft: Khonsari ransomware hits self-hosted Minecraft servers (lien direct) |
Microsoft urges admins of self-hosted Minecraft servers to upgrade to the latest release to defend against Khonsari ransomware attacks exploiting the critical Log4Shell security vulnerability. [...] |
Ransomware
|
|
|
|
2021-12-16 11:20:10 |
Gumtree classifieds site leaked personal info via the F12 key (lien direct) |
British classifieds site Gumtree.com suffered a data leak after a security researcher revealed that he could access sensitive personally identifiable data of advertisers simply by pressing F12 on the keyboard. [...] |
|
|
|
|
2021-12-16 10:56:29 |
Lenovo laptops vulnerable to bug allowing admin privileges (lien direct) |
Lenovo laptops, including ThinkPad and Yoga models, are vulnerable to a privilege elevation bug in the ImControllerService service allowing attackers to execute commands with admin privileges. [...] |
|
|
|
|
2021-12-16 06:00:00 |
Phorpiex botnet returns with new tricks making it harder to disrupt (lien direct) |
The previously shutdown Phorpiex botnet has re-emerged with new peer-to-peer command and control infrastructure, making the malware more difficult to disrupt. [...] |
Malware
|
|
|
|
2021-12-16 03:15:13 |
Firefox users can\'t reach Microsoft.com - here\'s what to do (lien direct) |
Those using the Mozilla Firefox web browser are left unable to access Microsoft.com domain. Tests by BleepingComputer confirm the issue relates to SSL certificate validation errors. Below we explain what can you do to remedy the issue. [...] |
|
|
|
|
2021-12-15 16:59:27 |
Emotet starts dropping Cobalt Strike again for faster attacks (lien direct) |
Right in time for the holidays, the notorious Emotet malware is once again directly installing Cobalt Strike beacons for rapid cyberattacks. [...] |
Malware
|
|
|
|
2021-12-15 15:19:53 |
Microsoft to set Windows Terminal as default console in Windows 11 (lien direct) |
Microsoft is working on making Windows Terminal the default terminal emulator program in Windows 11 instead of the Windows Console Host, starting next year. [...] |
|
|
|
|
2021-12-15 14:24:41 |
Large-scale phishing study shows who bites the bait more often (lien direct) |
A large-scale phishing study involving 14,733 participants over a 15-month experiment has produced some surprising findings that contradict previous research results that formed the basis for popular industry practices. [...] |
|
|
|
|
2021-12-15 13:47:39 |
CISA warns critical infrastructure to stay vigilant for ongoing threats (lien direct) |
The Cybersecurity and Infrastructure Security Agency (CISA) warned critical infrastructure organizations today to strengthen their cybersecurity defenses against potential and ongoing threats. [...] |
|
|
|