What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2017-11-27 14:37:30 | Three Things to Consider Before Incorporating Machine Learning into Your Security Efforts (lien direct) | We have been hearing a lot of buzz about artificial intelligence (AI) for years, but more recently, the discussion within the cybersecurity industry has centered around machine learning (ML), an approach to AI that focuses on using algorithms to sift through data, learn from it and inform action based on the analytics, such as automatically preventing an unknown threat. | |||
|
2017-11-27 09:11:58 | (Déjà vu) Facebook Flaw Allowed Removal of Any Photo (lien direct) | A researcher says he received a $10,000 bounty from Facebook after finding a critical vulnerability that could have been exploited to delete any photo from the social media network. | |||
|
2017-11-27 05:46:43 | Imgur Discloses 2014 Breach Affecting 1.7 Million Users (lien direct) | Popular image hosting website Imgur notified users on Friday that hackers had stolen data associated with 1.7 million accounts as a result of a breach that occurred back in 2014. | |||
|
2017-11-24 18:44:40 | Victimized Twice: Cyber Criminals Target Natural Disasters (lien direct) | In the aftermath of recent fires in California, Spain and Portugal, hurricanes in Texas, Florida, and Puerto Rico, and recent earthquakes in Mexico and on the Iran-Iraq border, there has been a global uptick in the number of phishing scams aimed at stealing personal data and money. | |||
|
2017-11-24 18:26:08 | Necurs Returns With New Scarab Ransomware Campaign (lien direct) | The world's largest spam botnet, Necurs, is delivering a new version of the Scarab ransomware. The campaign started at 07:30 UTC on Thanksgiving Day. By 13:30 UTC, security firm Forcepoint had already blocked more than 12.5 million Necurs emails. | |||
|
2017-11-24 06:43:55 | Device Manufacturers Working on Patches for Intel Chip Flaws (lien direct) | Acer, Dell, Fujitsu, HPE, Lenovo, Intel and Panasonic are working on releasing patches for the recently disclosed vulnerabilities affecting Intel CPUs, but it could take a while until firmware updates become available to all customers. | |||
|
2017-11-22 18:52:34 | Uber in Legal Crosshairs Over Hack Cover-up (lien direct) | Two US states on Wednesday confirmed they are investigating Uber's cover-up of a hack at the ride-sharing giant that compromised the personal information of 57 million users and drivers. | Uber | ||
|
2017-11-22 17:30:31 | ERPScan Launches AI-Driven SAP Security Platform (lien direct) | ERPScan, a company that specializes in security solutions for SAP and Oracle enterprise resource planning (ERP) products, announced this week the launch of a new AI-driven cybersecurity platform for SAP systems. | |||
|
2017-11-22 15:52:08 | Should Uber Users be Worried About Data Hack? (lien direct) | 
|
Uber | ||
|
2017-11-22 15:38:44 | \'Advanced\' Cyber Attack Targets Saudi Arabia (lien direct) | Saudi authorities said Monday they had detected an "advanced" cyber attack targeting the kingdom, in a fresh attempt by hackers to disrupt government computers. | |||
|
2017-11-22 15:31:51 | Apple Patches USB Code Execution Flaw in macOS (lien direct) | One of the vulnerabilities addressed by Apple in its latest set of security patches for macOS is an arbitrary code execution flaw, which could be exploited via malicious USB devices. | |||
|
2017-11-22 15:08:27 | Curing The Security Sickness in Medical Devices (lien direct) | Just as the rapid development of the Internet of Things (IoT) has transformed traditional industries and service sectors, it is also having a great impact in the world of healthcare. It's easy to argue, in fact, that no area is being transformed by digital technologies as rapidly or with as many benefits for society as new medical technologies. | |||
|
2017-11-22 14:11:14 | ProtonMail Launches Encrypted Contacts Manager (lien direct) | Swiss-based encrypted email services provider ProtonMail announced on Tuesday the launch of a new tool designed to help users securely manage their contacts. | |||
|
2017-11-22 13:16:30 | Meg Whitman Steps Down at HP Enterprise (lien direct) | Meg Whitman, one of the most prominent women in Silicon Valley and a onetime candidate for California governor, announced Tuesday she was stepping down as chief executive of Hewlett Packard Enterprise. | |||
|
2017-11-22 09:26:19 | More Industrial Products at Risk of KRACK Attacks (lien direct) | An increasing number of vendors have warned customers over the past weeks that their industrial networking products are vulnerable to the recently disclosed Wi-Fi attack method known as KRACK. | |||
|
2017-11-22 00:46:15 | Uber Hacked: Information of 57 Million Users Accessed in Covered-Up Breach (lien direct) | 
Uber Covered Up Massive Hack in 2016 for More Than a Year
|
Uber | ||
|
2017-11-21 21:26:56 | Symantec Patches Vulnerability in Management Console (lien direct) | Symantec has released an update to address a directory traversal vulnerability in the Symantec Management Console. | |||
|
2017-11-21 19:49:51 | House Committees Get Serious in New Letter to Equifax (lien direct) | The chairpersons of the House Science, Space, and Technology Committee and the House Oversight and Government Reform Committee on Monday sent a new letter (PDF) to Paulino Barros, the interim CEO of Equifax. | Equifax | ||
|
2017-11-21 19:14:07 | Code Execution Flaw Found in HP Enterprise Printers (lien direct) | Researchers have found a potentially serious remote code execution vulnerability in some of HP's enterprise printers. The vendor claims to have already developed a patch that will be made available to customers sometime this week. | |||
|
2017-11-21 18:25:12 | macOS Malware Spread Via Fake Symantec Blog (lien direct) | A newly observed variant of the macOS-targeting Proton malware is spreading through a blog spoofing that of legitimate security company Symantec. | |||
|
2017-11-21 17:54:30 | Has Everyone Really Been Hacked? (lien direct) | There is little doubt that fear sells security products, hikes law enforcements agency (LEA) budgets and sells newspapers. Both the security industry and government agencies benefit from sensational headlines; leaving people wondering what the real truth may be. So when UK newspaper The Times ran a headline, 'Everyone has been hacked, say police', it leaves the question, is this just more scaremongering or a true reflection on the state of security? | |||
|
2017-11-21 17:04:58 | Cobalt Hackers Now Targeting Banks Directly (lien direct) | The notorious Cobalt hackers have shown a change in tactics recently, switching their attacks to targeting banks themselves, instead of bank customers, Trend Micro reports. | |||
|
2017-11-21 16:09:51 | U.S. Charges Iranian Over \'Game of Thrones\' HBO Hack (lien direct) | The United States on Tuesday charged an Iranian computer whiz with hacking into HBO, stealing scripts and plot summaries for "Games of Thrones," and trying to extort $6 million in Bitcoin out of the network. | |||
|
2017-11-21 15:05:59 | Final Version of 2017 OWASP Top 10 Released (lien direct) | The final version of the 2017 OWASP Top 10 was released on Monday and some types of vulnerabilities that don't longer represent a serious risk have been replaced with issues that are more likely to pose a significant threat. | |||
|
2017-11-21 13:41:02 | Intel Chip Flaws Expose Millions of Devices to Attacks (lien direct) | Intel has conducted an in-depth security review of its Management Engine (ME), Trusted Execution Engine (TXE) and Server Platform Services (SPS) technologies and discovered several vulnerabilities. The company has released firmware updates, but it could take some time until they reach the millions of devices exposed to attacks due to these flaws. | |||
|
2017-11-21 09:59:48 | North Korean Hackers Target Android Users in South (lien direct) | At least two cybersecurity firms have noticed that the notorious Lazarus threat group, which many experts have linked to North Korea, has been using a new piece of Android malware to target smartphone users in South Korea. | APT 38 | ||
|
2017-11-20 19:42:43 | Windows 8 and Later Fail to Properly Apply ASLR (lien direct) | Address Space Layout Randomization (ASLR) isn't properly applied on versions of Microsoft Windows 8 and newer, an alert from Carnegie Mellon University-run CERT Coordination Center (CERT/CC) warns. | |||
|
2017-11-20 19:31:42 | Secureworks Releases Open Source IDS Tools (lien direct) | Secureworks has released two open source tools, Flowsynth and Dalton, designed to help analysts test rules for intrusion detection systems (IDS) and intrusion prevention systems (IPS) such as Snort and Suricata. | |||
|
2017-11-20 19:12:51 | Dealing With Data Loss Your Firewall Can\'t Stop (lien direct) | Information security is built on the pillars of confidentiality, integrity, and availability. Confidentiality is about making sure your secrets stay secret. | |||
|
2017-11-20 17:01:17 | Flaw in F5 Products Allows Recovery of Encrypted Data (lien direct) | A crypto vulnerability affecting some F5 Networks products can be exploited by a remote attacker for recovering encrypted data and launching man-in-the-middle (MitM) attacks, the company told customers on Friday. | |||
|
2017-11-20 15:25:20 | Microsoft Manually Patched Office Component: Researchers (lien direct) | Microsoft engineers appear to have manually patched a 17 year-old vulnerability in Office, instead of altering the source code of the vulnerable component, ACROS Security researchers say. | |||
|
2017-11-20 15:14:20 | Ongoing Adwind Phishing Campaign Discovered (lien direct) | A new phishing campaign delivering the Jsocket variant of Adwind (also known as AlienSpy) was detected in October, and is ongoing. Adwind and its variants have been around since at least 2012. It is a cross-platform backdoor able to install additional malware, steal information, log keystrokes, capture screenshots, take video and audio recordings, and update its own configuration. | |||
|
2017-11-20 15:07:55 | Screen/Audio Capture Vulnerability Impacts Lion\'s Share of Android Devices (lien direct) | A vulnerability that allows malicious applications to capture screen contents and record audio without a user's knowledge impacts over 78% of Android devices, researchers claim. | |||
|
2017-11-20 14:22:43 | Five Ways to Overcome the Cultural Barriers to IT/OT Security Convergence (lien direct) | Working Together, IT and OT Must Mitigate Risk and Address the Inevitable Mandates that Follow Successful Attacks | |||
|
2017-11-20 14:11:47 | StartCom CA to Shut Down After Ban by Browser Vendors (lien direct) | The board of directors of China-based certificate authority StartCom announced on Friday that it has decided to shut down the company following the decision of major browser vendors to ban its certificates. | |||
|
2017-11-20 10:42:36 | Unprotected Pentagon Database Stored 1.8 Billion Internet Posts (lien direct) | Researchers have found an unprotected database storing 1.8 billion posts collected from social media services, news websites and forums by a contractor for the U.S. Department of Defense. | |||
|
2017-11-17 18:36:03 | EMOTET Trojan Variant Evades Malware Analysis (lien direct) | A recently observed variant of the EMOTET banking Trojan features new routines that allow it to evade sandbox and malware analysis, Trend Micro security researchers say. | |||
|
2017-11-17 17:39:30 | Group Launches Secure DNS Service Powered by IBM Threat Intelligence (lien direct) | A newly announced free Domain Name System (DNS) service promises automated immunity from known Internet threats by blocking access to websites flagged as malicious. | |||
|
2017-11-17 17:26:11 | GitHub Warns Developers When Using Vulnerable Libraries (lien direct) | Code hosting service GitHub now warns developers if certain software libraries used by their projects contain any known vulnerabilities and provides advice on how to address the issue. | |||
|
2017-11-17 16:16:12 | New Cyber Insurance Firm Unites Insurance With Cyber Intelligence (lien direct) | Mountain View, Calif-based cyber insurance firm At-Bay has emerged from stealth with a mission to shake up the status quo in cyber insurance. It brings a new model of security cooperation between insured and insurer to reduce risk and exposure to both parties. | |||
|
2017-11-17 15:49:16 | Ransomware Targets SMBs via RDP Attacks (lien direct) | A series of ransomware attacks against small-to-medium companies are leveraging Remote Desktop Protocol (RDP) access to infect systems, Sophos reports. | |||
|
2017-11-17 15:29:33 | Moxa NPort Devices Vulnerable to Remote Attacks (lien direct) | Hundreds of Moxa Devices Similar to Ones Targeted in Ukraine Power Grid Hack Vulnerable to Remote Attacks | |||
|
2017-11-17 10:02:26 | Drone Maker DJI, Researcher Quarrel Over Bug Bounty Program (lien direct) | China-based Da-Jiang Innovations (DJI), one of the world's largest drone makers, has accused a researcher of accessing sensitive information without authorization after the expert bashed the company's bug bounty program. | |||
|
2017-11-16 20:28:41 | Google Discloses Details of $100,000 Chrome OS Flaws (lien direct) | Google has made public the details of a code execution exploit chain for Chrome OS that has earned a researcher $100,000. | |||
|
2017-11-16 20:24:45 | China May Delay Vulnerability Disclosures For Use in Attacks (lien direct) | The NSA and CIA exploit leaks have thrown the spotlight on US government stockpiles of 0-day exploits -- and possibly led to this week's government declassification of the Vulnerabilities Equities Policy (VEP) process used to decide whether to disclose or retain the exploits it discovers. | |||
|
2017-11-16 17:28:52 | Middle East \'MuddyWater\' Attacks Difficult to Clear Up (lien direct) | Long-lasting targeted attacks aimed at entities in the Middle East are difficult to attribute despite being analyzed by several researchers, Palo Alto Networks said this week. | |||
|
2017-11-16 16:57:14 | Terdot Banking Trojan Could Act as Cyber-Espionage Tool (lien direct) | The Terdot banking Trojan packs information-stealing capabilities that could easily turn it into a cyber-espionage tool, Bitdefender says in a new report. | |||
|
2017-11-16 15:54:52 | What Can The Philosophy of Unix Teach Us About Security? (lien direct) | 
|
|||
|
2017-11-16 15:20:00 | Kaspersky Shares More Details on NSA Incident (lien direct) | Kaspersky Lab on Thursday shared more details from its investigation into reports claiming that Russian hackers stole data belonging to the U.S. National Security Agency (NSA) by exploiting the company's software. | |||
|
2017-11-16 15:16:20 | \'Fake news\' Becomes a Business Model: Researchers (lien direct) | Cyber criminals have latched onto the notion of "fake news" and turned it into a profitable business model, with services starting at under $10, security researchers said Thursday. |
To see everything:
Our RSS (filtrered)
