What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-11-14 17:06:00 | Chinese Hackers Target UK Engineering Company: Report (lien direct) | Recent attacks on an engineering company in the United Kingdom were attributed to a China-related cyber-espionage group despite the use of techniques usually associated with Russian threat actors. | Threat | ||
|
2018-11-14 15:41:00 | iPhone X Exploits Earn Hackers Over $100,000 (lien direct) | The Zero Day Initiative's Pwn2Own Tokyo hacking competition has come to an end, with participants earning over $300,000 for disclosing vulnerabilities affecting iPhone X, Xiaomi Mi 6 and Samsung Galaxy S9 smartphones. | |||
|
2018-11-14 15:25:00 | Cathay Apologizes Over Data Breach but Denies Cover-up (lien direct) | The top two executives at Hong Kong carrier Cathay Pacific on Wednesday apologized for the firm's handling of the world's biggest airline hack that saw millions of customers' data breached but denied trying to cover it up. | Data Breach | ||
|
2018-11-14 14:44:03 | US Panel Warns Against Government Purchase of Chinese Tech (lien direct) | A congressional advisory panel says the purchase of internet-linked devices manufactured in China leaves the United States vulnerable to security breaches that could put critical infrastructure at risk. | |||
|
2018-11-14 14:35:00 | Siemens Releases 7 Advisories for SIMATIC, SCALANCE Vulnerabilities (lien direct) | Siemens on Tuesday released 7 new advisories to inform customers of potentially serious vulnerabilities affecting various SIMATIC and SCALANCE products. Patches and/or mitigations are available for all impacted products. | |||
|
2018-11-14 11:59:04 | DUST Identity Emerges From Stealth to Protect Device Supply Chain (lien direct) | Boston, MA-based start-up firm DUST Identity has emerged from stealth with $2.3 million seed funding led by Kleiner Perkins, with participation from New Science Ventures, Angular Ventures, and Castle Island Ventures. It was founded in 2018 by Ophir Gaathon (CEO), Jonathan Hodges (VP engineering) and Dirk Englund (board member). | |||
|
2018-11-14 11:31:02 | Digital Takeaways From the Supreme Court Fight (lien direct) | It's always interesting to watch how the ongoing digital transformation of our lives is changing the world in ways we never would have anticipated years ago. Financial information, social interactions, even our physical locations may be up for grabs in cyberspace, with real-world ramifications. | |||
|
2018-11-14 07:14:01 | (Déjà vu) APT Group Uses Windows Zero-Day in Middle East Attacks (lien direct) | A Windows zero-day vulnerability addressed this week by Microsoft with its November 2018 Patch Tuesday updates has been exploited by an advanced persistent threat (APT) group in attacks aimed at entities in the Middle East. | Threat | ||
|
2018-11-13 21:47:00 | Microsoft Patches Actively Exploited Windows Vulnerability (lien direct) | Microsoft's Patch Tuesday updates for November 2018 address more than 60 vulnerabilities, including zero-days and publicly disclosed flaws. | Vulnerability | ||
|
2018-11-13 20:08:02 | (Déjà vu) Adobe Patches Disclosed Acrobat Vulnerability (lien direct) | Adobe has released Patch Tuesday updates for Flash Player, Acrobat and Reader, and Photoshop CC to address three vulnerabilities – one in each product. | Vulnerability | ||
|
2018-11-13 19:30:01 | SAP Patches Critical Vulnerability in HANA Streaming Analytics (lien direct) | SAP this week published its November 2018 set of security patches, which include 11 new Security Patch Day Notes, along with 3 updates for previously released notes. | Vulnerability | ||
|
2018-11-13 19:12:03 | Seven Hacking Groups Operate Under “Magecart” Umbrella, Analysis Shows (lien direct) | At least seven different cybercrime groups referred to as "Magecart hackers" are placing digital credit card skimmers on compromised e-commerce sites, Flashpoint and RiskIQ reveal in a joint report. Active since at least 2015, the Magecart hackers steal credit card information by placing digital skimmers on the websites they visit. | |||
|
2018-11-13 18:14:01 | State vs. Federal Privacy Laws: The Battle for Consumer Data Protection (lien direct) | The Battle for Privacy in the United States is Just Beginning | |||
|
2018-11-13 17:12:05 | Cathay Says \'Most Intense\' Period of Data Breach Lasted Months (lien direct) | The world's biggest airline data breach, affecting millions of Cathay Pacific customers, was the result of a sustained cyber attack that lasted for three months, the carrier admitted, while insisting it was on alert for further intrusions. | Data Breach | ||
|
2018-11-13 16:24:01 | Sophisticated Cyberattack Targets Pakistani Military (lien direct) | A previously undisclosed threat actor is targeting nuclear-armed government and military in Pakistan as part of a new, unusually complex espionage campaign, Cylance security researchers warn. | Threat | ||
|
2018-11-13 15:40:02 | What the Onslow Water and Sewer Authority Can Teach About Responsible Disclosure (lien direct) | Critical Infrastructure Operators Must Plan for Scenarios in Which a Physical and Cyber Event Occur Simultaneously | |||
|
2018-11-13 15:36:03 | APT Simulation Provider XM Cyber Raises $22 Million (lien direct) | XM Cyber, an Israel-based company that provides an automated APT simulation and remediation platform, on Tuesday announced that it has raised $22 million in a Series A funding round. | |||
|
2018-11-13 14:08:00 | Cloud Security Firm Netskope Raises $168.7 Million (lien direct) | Cloud security firm Netskope on Tuesday announced that it has raised $168.7 million in a Series F funding round, which brings the total raised by the company to date to over $400 million. | |||
|
2018-11-13 13:06:02 | Samsung Galaxy S9, iPhone X Hacked at Pwn2Own Tokyo (lien direct) | Apple iPhone X, Samsung Galaxy S9 and Xiaomi Mi 6 smartphones have all been hacked on the first day of the Pwn2Own Tokyo 2018 contest taking place these days alongside the PacSec security conference in Tokyo, Japan. | |||
|
2018-11-13 06:45:02 | Google Services Inaccessible Due to BGP Leak (lien direct) | Important Google services were inaccessible for some users on Monday due to a BGP leak that caused traffic to be directed through Russia, China and Nigeria. It's unclear if the incident was caused by a configuration issue or if it was the result of a malicious attack. | |||
|
2018-11-13 05:23:02 | 51 States Pledge Support for Global Cybersecurity Rules (lien direct) | Fifty-one states, including all EU members, have pledged their support for a new international agreement to set standards on cyberweapons and the use of the internet, the French government said Monday. | |||
|
2018-11-12 19:34:00 | Researcher Bypasses Windows UAC by Spoofing Trusted Directory (lien direct) | A security researcher from Tenable, Inc. recently discovered that it is possible to bypass Windows' User Account Control (UAC) by spoofing the execution path of a file in a trusted directory. | |||
|
2018-11-12 18:43:00 | New Cloudflare DNS App Brings Increased Privacy for Mobile Devices (lien direct) | Web security and performance company Cloudflare is making it easier for smartphone users to secure their Internet connections, courtesy of a new DNS resolver app for mobile devices. | ★★★ | ||
|
2018-11-12 18:23:02 | Intel Asks for Comments on Draft Federal Privacy Law (lien direct) | Intel Proposes "Innovative and Ethical Data Use Act of 2018" to Improve Protection of Personal Privacy Through Nationwide Standards | |||
|
2018-11-12 14:28:03 | Cyberattacks Top Risk to Business in North America, EAP, Europe: WEF (lien direct) | Cyberattacks are seen as the top risk to doing business in Europe, North America, and the East Asia and Pacific (EAP) region, according to a report published on Monday by the World Economic Forum (WEF). | |||
|
2018-11-12 13:28:02 | Google Introduces Security Transparency Report for Android (lien direct) | Google last week added a quarterly Android Ecosystem Security Transparency Report to its Transparency Report site. | |||
|
2018-11-12 13:14:05 | Phishing Training is a Tool, Not a Solution (lien direct) | If You Find Yourself Frequently Blaming Users for Successful Attacks, You Know Your Security is Not Working | |||
|
2018-11-12 11:55:00 | France Seeks Global Talks on Cyberspace Security (lien direct) | The French government announced Monday a "Paris Call" for talks to lay out a common framework for ensuring internet security, following a surge in cyberattacks which has dented confidence in global networks. | |||
|
2018-11-12 06:54:00 | Hackers Exploit Flaw in GDPR Compliance Plugin for WordPress (lien direct) | A critical security flaw affecting a GDPR compliance plugin for WordPress has been exploited in the wild to take control of vulnerable websites, users have been warned. | |||
|
2018-11-09 15:43:00 | "Inception Attackers" Combine Old Exploit and New Backdoor (lien direct) | A malicious group known as the “Inception” attackers has been using a year-old Office exploit and a new backdoor in recent attacks, Palo Alto Networks security researchers warn. | |||
|
2018-11-09 15:21:02 | VMware Patches VM Escape Flaw Disclosed at Chinese Hacking Contest (lien direct) | VMware informed customers on Friday that patches are available for a critical virtual machine (VM) escape vulnerability disclosed recently by a researcher at the GeekPwn2018 hacking competition. | Vulnerability | ||
|
2018-11-09 14:03:03 | Flaws in Roche Medical Devices Can Put Patients at Risk (lien direct) | Vulnerabilities discovered in several medical devices made by the diagnostics division of Swiss-based healthcare company Roche can put patients at risk, a cybersecurity firm has warned. | |||
|
2018-11-09 11:40:00 | Entrust Datacard Acquires Spanish Firm Safelayer (lien direct) | Minneapolis-based identity firm Entrust Datacard has acquired Barcelona, Spain firm Safelayer Secure Communications. Financial details have not been disclosed. | |||
|
2018-11-09 07:15:02 | Prioritizing Flaws Based on Severity Increasingly Ineffective: Study (lien direct) | The large number of vulnerabilities found every year has made it increasingly difficult for organizations to effectively prioritize the security holes exposing their applications and networks, according to a new report published on Wednesday by Tenable. | |||
|
2018-11-09 06:16:04 | Adobe ColdFusion Vulnerability Exploited in the Wild (lien direct) | A recently patched remote code execution vulnerability affecting the Adobe ColdFusion web application development platform has been exploited in the wild by one or more threat groups, Volexity warned on Thursday. | Vulnerability Threat | ||
|
2018-11-08 21:45:03 | ForeScout Acquires Industrial Security Firm SecurityMatters for $113 Million in Cash (lien direct) | Network access security firm ForeScout Technologies (NASDAQ:FSCT) announced on Thursday that has acquired operational technology (OT) network security firm SecurityMatters for approximately $113 million in cash. | |||
|
2018-11-08 18:25:03 | New Spam Botnet Likely Infected 400,000 Devices (lien direct) | A newly discovered botnet that appears designed to send spam emails likely infected around 400,000 machines to date, 360 Netlab security researchers warn. | Spam | ||
|
2018-11-08 17:57:01 | Getting ROI From a Security Advisory Board That Works: Part 1 - Why (lien direct) | The Biggest Mistake People Make With Security Advisory Boards is Not Using Them | ★★★★★ | ||
|
2018-11-08 17:10:01 | Several Vulnerabilities Patched in nginx (lien direct) | Updates released this week for the nginx open source web server software address several denial-of-service (DoS) vulnerabilities. | ★★★★ | ||
|
2018-11-08 14:34:01 | DJI Drone Vulnerability Exposed Customer Data, Flight Logs, Photos and Videos (lien direct) | Vulnerability Exposed DJI Customer Data and Drone Flight Logs, Photos and Videos Generated During Drone Flights | Vulnerability | ★★★ | |
|
2018-11-08 11:03:05 | Default Account Exposes Cisco Switches to Remote Attacks (lien direct) | A default account present in Cisco Small Business switches can allow remote attackers to gain complete access to vulnerable devices. The networking giant has yet to release patches, but a workaround is available. | |||
|
2018-11-08 10:44:05 | First Came GDPR, Then Comes ePrivacy - What to Expect with Global Data Regulations (lien direct) | Ever since the General Data Protection Regulation (GDPR) came into effect on May 25, 2018, many have wondered how the law may evolve and potentially add further regulations. One of these evolutions that is still in early stages is ePrivacy, which was born from the GDPR. | |||
|
2018-11-08 06:28:01 | U.S. Cyber Command Shares Malware via VirusTotal (lien direct) | The U.S. Cyber Command (USCYBERCOM) this week started sharing malware samples with the cybersecurity industry via Chronicle's VirusTotal intelligence service. | Malware | ||
|
2018-11-08 02:37:02 | 30 Years Ago, the World\'s First Cyberattack Set the Stage for Modern Cybersecurity Challenges (lien direct) | (THE CONVERSATION) - Back in November 1988, Robert Tappan Morris, son of the famous cryptographer Robert Morris Sr., was a 20-something graduate student at Cornell who wanted to know | |||
|
2018-11-07 17:05:02 | Google Wants More Projects Integrated With OSS-Fuzz (lien direct) | Google this week revealed plans to reach out to critical open source projects and invite them to integrate with OSS-Fuzz. | |||
|
2018-11-07 16:36:04 | Microsoft Releases Guidance for Users Concerned About Flawed SSD Encryption (lien direct) | After security researchers discovered vulnerabilities in the encryption mechanism of several types of solid-state drives (SSDs), Microsoft decided to explain how one can enforce software encryption instead. | |||
|
2018-11-07 15:55:02 | BehavioSec Adds New Features to Behavioral Biometrics Platform (lien direct) | The relationship between security and user friction remains problematic. Businesses can increase security by strengthening authentication procedures, for example, by requiring multi-factor authentication in the form of soft tokens or biometric proof of identity. But this invariably makes it more time-consuming and complex for the user. This complexity, usually known as user friction, deters online visitors and encourages in-house staff to seek ways to bypass it. | |||
|
2018-11-07 15:23:05 | Evernote Flaw Allows Hackers to Steal Files, Execute Commands (lien direct) | A serious cross-site scripting (XSS) vulnerability discovered in the Evernote application for Windows can be exploited to steal files and execute arbitrary commands. | Vulnerability | ||
|
2018-11-07 15:03:00 | China Telecom Constantly Misdirects Internet Traffic (lien direct) | Over the past years, China Telecom has been constantly misdirecting Internet traffic through China, researchers say. | |||
|
2018-11-07 14:24:05 | The Starter Pistol Has Been Fired for Artificial Intelligence Regulation in Europe (lien direct) | 
Regulation of Artificial Intelligence Could Potentially be More Complex and Far Reaching Than GDPR
|
To see everything:
Our RSS (filtrered)
