Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2018-11-23 15:32:05 |
North Korean Hackers Hit Latin American Banks (lien direct) |
The North Korean hacking group know as Lazarus recently targeted financial institutions in Latin America, Trend Micro security researchers have discovered.
|
|
APT 38
|
|
|
2018-11-23 13:55:05 |
(Déjà vu) VMware Patches Workstation Flaw Disclosed at Hacking Contest (lien direct) |
VMware Fixes Vulnerability That Earned Researcher $100,000 at Hacking Contest
VMware has patched a critical Workstation and Fusion vulnerability disclosed recently by a researcher at a hacking competition in China.
|
Vulnerability
|
|
|
|
2018-11-21 17:18:03 |
European Privacy Search Engines Aim to Challenge Google (lien direct) |
In the battle for online privacy, U.S. search giant Google is a Goliath facing a handful of European Davids.
The backlash over Big Tech's collection of personal data offers new hope to a number of little-known search engines that promise to protect user privacy.
|
|
|
|
|
2018-11-21 17:14:01 |
Attackers Exploit Recently Patched Popular WordPress Plugin (lien direct) |
Recently patched vulnerabilities in the popular AMP for WP plugin are being targeted in an active Cross-Site Scripting (XSS) campaign, Wordfence reports.
|
|
|
|
|
2018-11-21 16:07:01 |
Researchers Reveal Identity of Hacker Behind Massive Data Breaches (lien direct) |
Who is tessa88? Security Researchers Believe They Know Hacker's True Identity
Recorded Future security researchers believe they were able to correctly identify the individual who in 2016 leaked data stolen in high profile data breaches such as LinkedIn, Twitter, Tumblr, and others.
|
|
|
|
|
2018-11-21 15:40:03 |
Amazon Exposes Customer Names, Email Addresses (lien direct) |
Amazon informed some customers this week that their name and email address were exposed due to a “technical error,” but the company provided very few other details.
|
|
|
|
|
2018-11-21 15:25:00 |
US Says China Hacking Increasing Ahead of Trump-Xi Meeting (lien direct) |
BEIJING (AP) - A U.S. government report ahead of a meeting between Presidents Donald Trump and Xi Jinping accuses China of stepping up hacking aimed at stealing American technology as a tariff dispute escalated.
|
|
|
|
|
2018-11-21 14:46:03 |
When to Cut Your Losses on a Wasteful Security Project (lien direct) |
In a December 2011 Forbes article entitled "How To Waste $100 Billion: Weapons That Didn't Work Out", author Loren Thompson discusses a number of government weapons programs that were scrapped after billions of dollars were sunk. The circumstances under which each project went south vary, but they do share one very interesting point in common.
|
|
|
|
|
2018-11-21 08:06:02 |
Patches Released for Flaws Affecting Dell EMC, VMware Products (lien direct) |
Several vulnerabilities have been found by researchers in Dell EMC Avamar and Integrated Data Protection Appliance products. VMware's vSphere Data Protection, which is based on Avamar, is also impacted.
|
|
|
|
|
2018-11-21 06:43:00 |
Facebook Increases Rewards for Account Hacking Vulnerabilities (lien direct) |
|
|
|
|
|
2018-11-20 18:34:03 |
Infamous Russian Hacking Group Used New Trojan in Recent Attacks (lien direct) |
A well known Russian state-sponsored cyber-espionage group has used a new Trojan as a secondary payload in recent attacks targeting government entities around the globe, Palo Alto Networks reports.
|
|
|
|
|
2018-11-20 17:05:03 |
U.S. Mulls Curbs on Artificial Intelligence Exports (lien direct) |
The administration of US President Donald Trump is exploring curbing exports of sensitive technologies including artificial intelligence for national security reasons, according to a proposal this week.
|
|
|
|
|
2018-11-20 16:28:05 |
Is Facebook Out of Control? Investigations and Complaints Are Rising (lien direct) |
|
|
|
|
|
2018-11-20 16:14:01 |
Flash Player Update Patches Disclosed Code Execution Flaw (lien direct) |
Security updates released on Tuesday by Adobe for Flash Player address a critical vulnerability whose details were disclosed a few days earlier.
|
Vulnerability
|
|
|
|
2018-11-20 15:37:01 |
Vision Direct Reveals Data Breach (lien direct) |
Popular European online contact lenses supplier Vision Direct on Monday revealed that customer data was compromised in a data breach earlier this month.
|
Data Breach
|
|
|
|
2018-11-20 15:20:01 |
Attackers Target Drupal Web Servers with Chained Vulnerabilities (lien direct) |
A recent attack targeted Drupal web servers with a chain of vulnerabilities that included the infamous Drupalgeddon2 and DirtyCOW flaws, Imperva security researchers say.
The attack was short and impacted only some Linux-based systems, but it was noteworthy for attempting to persistently infect vulnerable servers and take over machines.
|
|
|
|
|
2018-11-20 15:00:00 |
OSIsoft Warns Employees, Contractors of Data Breach (lien direct) |
Software company OSIsoft recently warned employees, interns, consultants and contractors that all domain accounts have likely been compromised as a result of a data breach.
|
Data Breach
|
|
|
|
2018-11-20 08:56:05 |
TalkTalk Hackers Sentenced to Prison (lien direct) |
Two individuals were sentenced to prison on Monday for their roles in the 2015 hacking of British telecoms company TalkTalk.
Connor Allsopp, 21, and Matthew Hanley, 23, both from Tamworth, Staffordshire, pleaded guilty to hacking-related charges last year. Allsopp has been sentenced to 8 months in jail and Hanley to 12 months.
|
Guideline
|
|
|
|
2018-11-20 06:48:01 |
Surge in China Theft of Australia Company Secrets: Report (lien direct) |
China has sharply escalated cyberattacks on Australian companies this year in a "constant, significant effort" to steal intellectual property, according to a report published Tuesday.
|
|
|
|
|
2018-11-19 19:28:01 |
TP-Link Patches Remote Code Execution Flaws in SOHO Router (lien direct) |
Vulnerabilities recently addressed by WiFi device maker TP-Link in its TL-R600VPN small and home office (SOHO) router could allow remote code execution, Cisco Talos security researchers warn.
|
|
|
★★★★
|
|
2018-11-19 17:25:01 |
New Vehicle Hack Exposes Users\' Private Data Via Bluetooth (lien direct) |
People who have synced their mobile phones with a wide variety of vehicle infotainment systems may have have their personal information exposed to a new type of vehicle hack, security researchers say.
|
Hack
|
|
|
|
2018-11-19 16:40:05 |
Instagram Download Tool Exposes User Passwords (lien direct) |
Instagram informed some users last week that their passwords may have been exposed as a result of using the “Download Your Data” tool.
|
Tool
|
|
|
|
2018-11-19 15:41:04 |
Microsoft Enhances Windows Defender ATP (lien direct) |
Microsoft has unveiled several enhancements to its Windows Defender Advanced Threat Protection (ATP) product to improve its protection capabilities.
|
Threat
|
|
|
|
2018-11-19 14:56:05 |
Small Businesses, Big Breaches (lien direct) |
I love the fall. Brisk morning weather. Football. And politicians tripping over themselves to say nice things about small businesses. In this age of divisive politics, it's nice that politicians of all stripes can agree that small businesses are awesome.
|
|
|
|
|
2018-11-19 14:26:03 |
Iran-Linked Hackers Use Just-in-Time Creation of Weaponized Attack Docs (lien direct) |
Researchers Analyzed How the Iran-linked "OilRig" Hacking Group Tests Malicious Documents Before Use in Attacks
|
|
APT 34
|
|
|
2018-11-19 13:32:03 |
Singapore Signs Cybersecurity Agreements With US, Canada (lien direct) |
Singapore last week signed cybersecurity-related agreements with both Canada and the United States as officials from both countries visited Singapore for the 33rd ASEAN Summit.
|
|
|
|
|
2018-11-19 11:42:04 |
Hackers Earn $1 Million for Zero-Day Exploits at Chinese Competition (lien direct) |
White hat hackers earned more than $1 million for exploits disclosed at the Tianfu Cup PWN hacking competition that took place on November 16-17 in Chengdu, the capital of China's Sichuan province.
|
|
|
|
|
2018-11-18 02:03:00 |
Suspected Russian Hackers Impersonate State Department Aide (lien direct) |
WASHINGTON (AP) - U.S. cybersecurity experts say hackers impersonating a State Department official have targeted U.S. government agencies, businesses and think tanks in an attack that bears similarity to past campaigns linked to Russia.
The "spear phishing" attempts began on Wednesday, sending e-mail messages purported to come from a department public affairs official.
|
|
|
|
|
2018-11-16 20:14:05 |
Smartphones: A Double-edged Sword for Terrorists (lien direct) |
Bombs and guns aside, a smartphone can be a powerful weapon in the hands of a terrorist -- but it can also provide intelligence services with the tools to track them down.
Three years ago to the day, the Paris attacks of November 13, 2015 remain one of the best known examples of a large-scale assault that could not have been planned without phones.
|
|
|
|
|
2018-11-16 20:06:01 |
Does Not Compute: Japan Cyber Security Minister Admits Shunning PCs (lien direct) |
A Japanese minister in charge of cyber security has provoked astonishment by admitting he has never used a computer in his professional life, and appearing confused by the concept of a USB drive.
|
|
|
|
|
2018-11-16 18:55:04 |
SamSam and GandCrab Illustrate Evolution of Ransomware (lien direct) |
|
Ransomware
|
|
|
|
2018-11-16 18:09:00 |
AWS Adds New Feature for Preventing Data Leaks (lien direct) |
Amazon announced this week that a new feature designed to prevent data leaks has been added to Amazon Web Services (AWS).
|
|
|
|
|
2018-11-16 16:04:03 |
Google Scours the Internet for Dirty Android Apps (lien direct) |
Google is analyzing all the apps that it can find across the Internet in an effort to keep Android users protected from Potentially Harmful Applications (PHAs).
|
|
|
|
|
2018-11-16 15:43:03 |
Europol, Diebold Nixdorf to Share Information on Cyber Threats (lien direct) |
Europol on Friday announced that it has signed a cybersecurity-focused memorandum of understanding (MoU) with Diebold Nixdorf, one of the world's largest providers of ATM and point-of-sale (PoS) services.
|
|
|
|
|
2018-11-16 15:05:04 |
Many ATMs Can be Hacked in Minutes: Report (lien direct) |
Many automated teller machines (ATMs) lack adequate security mechanisms and can be compromised in minutes using various methods, according to a new report from vulnerability assessment firm Positive Technologies.
|
Vulnerability
|
|
|
|
2018-11-16 13:19:00 |
Google Helps G Suite Admins Enforce Strong Passwords (lien direct) |
Google this week announced new features to G Suite designed to help administrators enforce rigorous password requirements and increase security.
|
|
|
|
|
2018-11-16 11:10:04 |
BlackBerry to Acquire Cylance for $1.4 Billion in Cash (lien direct) |
BlackBerry on Friday announced that it has agreed to acquire next-generation endpoint security firm Cylance for US $1.4 billion in cash.
|
|
|
|
|
2018-11-16 07:20:04 |
Trend Micro, Moxa Form New IIoT Security Company (lien direct) |
Cybersecurity firm Trend Micro and industrial networking solutions provider Moxa on Thursday announced plans to form a joint venture corporation focusing on securing industrial internet of things (IIoT) environments.
|
|
|
|
|
2018-11-16 02:53:03 |
Dridex/Locky Operators Unleash New Malware in Recent Attack (lien direct) |
The threat actor(s) behind many Dridex and Locky campaigns have been using a new Remote Access Trojan (RAT), Proofpoint security researchers warn.
|
Malware
Threat
|
|
|
|
2018-11-15 20:00:00 |
Data Protection Firm Cognigo Raises $8.5 Million (lien direct) |
Cognigo, a Tel Aviv, Israel-based startup focused on data protection and compliance, this week announced that it has completed an $8.5 million Series A round of funding.
|
|
|
|
|
2018-11-15 15:57:05 |
Firefox Alerts Users When Visiting Breached Sites (lien direct) |
Mozilla has added a new feature to Firefox to alert users when they visit a website that has been part of a data breach in the past.
|
Data Breach
|
|
|
|
2018-11-15 15:43:03 |
Adversaries Take Advantage of the Seams. Let\'s Close Them. (lien direct) |
Adversaries are Increasingly Masterful at Taking Advantage of Seams Between Technologies and Teams to Infiltrate Organizations
|
|
|
|
|
2018-11-15 15:18:05 |
\'Tis the Season for Mobile Threats (lien direct) |
Keeping Your Organization Safe From Mobile Threats During the Holidays
|
|
|
|
|
2018-11-15 15:04:00 |
Report Shows Increase in Email Attacks Using .com File Extensions (lien direct) |
Leesburg, VA-based anti-phishing firm Cofense (formerly PhishMe) has discovered an uptick in the use of .com file extensions in phishing emails.
|
|
|
|
|
2018-11-15 14:47:02 |
GreatHorn Expands Email Security Platform (lien direct) |
Waltham, MA-based GreatHorn has expanded its machine-learning phishing protection system into a complete email security platform. "This major new expansion of the Company's flagship solution," it announced on November 14, "addresses every potential stage of a phishing attack with integrated threat detection, protection, defense, and incident response."
|
Threat
|
|
|
|
2018-11-15 13:52:00 |
OPM Security Improves, But Many Issues Still Unresolved: GAO (lien direct) |
The U.S. Office of Personnel Management (OPM) has improved its security posture since the data breaches disclosed in 2015, but many issues are still unresolved, according to a report published this week by the Government Accountability Office (GAO).
|
|
|
|
|
2018-11-15 13:06:01 |
What Does Your Cloud Strategy Include, and Are You Transitioning Securely? (lien direct) |
Organizations Need the Right Technologies and Talent in Place to Ensure a Secure Transition to the Cloud
|
|
|
|
|
2018-11-15 09:10:02 |
Congress Passes Bill Creating Cybersecurity Agency at DHS (lien direct) |
The U.S. House of Representatives this week passed a bill that creates a new cybersecurity agency at the Department of Homeland Security (DHS).
|
|
|
|
|
2018-11-15 08:07:04 |
(Déjà vu) Industrial Cybersecurity Firm Dragos Raises $37 Million (lien direct) |
Industrial cybersecurity firm Dragos on Wednesday announced that it has raised $37 million in a Series B funding round, which brings the total raised by the company to date to over $48 million.
|
|
|
|
|
2018-11-14 17:59:04 |
Researchers Disclose 7 New Meltdown, Spectre Attacks (lien direct) |
A team of researchers has described seven new variants of the notorious Meltdown and Spectre attacks, and they claim some of these methods are not mitigated by existing patches, but Intel disagrees.
|
|
|
|