What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-02-02 10:00:05 | Smart, Smarter… Dumbest… (lien direct) | While the evolution of new smartphones creates more possibilities for the user, these new devices also creates more possibilities for hackers. | |||
|
2018-01-31 14:17:46 | Google smashed over 700,000 bad Android apps last year (lien direct) | Google says that it is getting better than ever at protecting Android users against bad apps and malicious developers. | |||
|
2018-01-30 11:44:09 | Privacy of fitness tracking apps in the spotlight after soldiers\' exercise routes shared online (lien direct) | People exercising on far-flung military bases are being exposed by their fitness tracker. | |||
|
2018-01-26 15:15:20 | Babies\' personal data hawked on dark web (lien direct) | The price puts the data records at a significant premium when compared to other stolen datasets. While, in general, many adverts in the dark recesses of the internet are fake, children's personally identifiable information (PII) has for long been viewed as a particularly valuable commodity. | |||
|
2018-01-26 13:57:43 | FriedEx: BitPaymer ransomware the work of Dridex authors (lien direct) | ESET research has found that the ransomware FriedEx, also known as BitPaymer, is actually the work of the notorious gang responsible for the Dridex banking trojan. | |||
|
2018-01-26 13:02:13 | Jail for man who hacked 1000 student email accounts in search for sexually explicit images (lien direct) | A poorly-secured password reset utility allowed a man to access more than 1,000 email accounts at a New York City-area university in a hunt for sexually explicit photographs and videos. | |||
|
2018-01-25 14:58:00 | How well can bug hunting pay? (lien direct) | In some countries, the financial allure of looking for security vulnerabilities is (even) more striking, according to the findings of a survey released recently by bug bounty platform provider HackerOne. | |||
|
2018-01-25 12:58:21 | Data Privacy vs. Data Protection: Reflections on Privacy Day and GDPR (lien direct) | Data privacy is also a topic that can spark big debates, like the one between the US and the EU as to what protections should be accorded to data pertaining to people, specifically by those who collect, control, or process such data. | |||
|
2018-01-24 12:43:47 | 10 Linux distributions recommended for 2018 (lien direct) | The new features included all the patches, fixes, and updates to the tools and Kernel that were released over the preceding period, which is no small matter, especially if you use Maltego or SET. | |||
|
2018-01-23 17:50:20 | ESET\'s guide makes it possible to peek into FinFisher (lien direct) | To help malware analysts and security researchers overcome FinFisher's advanced anti-disassembly obfuscation and virtualization features, ESET researchers have framed some clever tricks into a whitepaper, “ESET's guide to deobfuscating and devirtualizing FinFisherâ€. | |||
|
2018-01-23 14:59:13 | South Korea moves to ban anonymous cryptocurrency trading (lien direct) | As part of the policy, underage individuals and foreigners without local bank accounts will be barred from trading in virtual currencies. Banks will be required to share information about cryptocurrency exchanges with each other. | |||
|
2018-01-23 12:58:32 | Five ways to check if your router is configured securely (lien direct) | In a dynamic environment where threats continually evolve and new vulnerabilities are identified almost daily, it is necessary to use the most up-to-date security tools, since they deal with protection measures for new and ever-shifting attack vectors. | |||
|
2018-01-22 14:28:14 | Up to 40,000 OnePlus customers potentially hit by credit card hack (lien direct) | The breach put at risk 'only' the customers who entered their payment data on oneplus.net between the middle of November 2017 and January 11, 2018. Those who paid with previously saved credit card details or via PayPal are believed to be out of harm's way. | |||
|
2018-01-22 09:53:34 | World Economic Forum: Cyberthreats rising in prominence in global risk landscape (lien direct) | The latest survey marks a shift from optimism regarding technological risks in the previous years. The heightened levels of worry come on the back of an escalation in cybersecurity threats, which, as noted by the WEF, are growing in prevalence and in disruptive potential alike. | |||
|
2018-01-19 10:00:14 | Are mobile devices insecure by nature? (lien direct) | Granted, not all that glitters is gold, and mobiles also come with some drawbacks in terms of the protection of information. There are a number of risks that users may face when trying to secure their information on mobiles and tablets. | |||
|
2018-01-18 12:58:15 | CES 2018 cybersecurity: Now in every single \'whatchamacallit\' (lien direct) | Not content anymore to just have a bed made of soft plushy stuff, now you can adjust everything about the bed, from electronically sitting up in bed to the lighting surrounding your nap: connected digital technology everywhere. | |||
|
2018-01-18 10:58:32 | Trends 2018: Personal data in the new age of technology and legislation (lien direct) | The depth of data collected from our online habits could easily allow profiles to be constructed, showing what may be considered extremely personal interests, drawing on information that we don't realize someone is collecting. | |||
|
2018-01-17 13:15:43 | Carphone Warehouse faces hefty fine for 2015 breach (lien direct) | The attackers gained access to a range of customer data such as names, addresses, phone numbers, dates of birth, and marital status. Making matters worse, the historical payment card details of some 18,000 customers were also compromised. | |||
|
2018-01-17 10:55:03 | CES 2018: Blockchain will solve everything (lien direct) | The first obvious candidate was banking, a sector that has been hard at work trying to implement blockchain to secure the vast troves of digital transactions that happen every microsecond of every day. | |||
|
2018-01-16 12:59:05 | Scammers and jobhunters (lien direct) | It's easier to have scruples about how you earn your living when you're not one of millions of people chasing just a few thousand jobs. | |||
|
2018-01-15 13:01:06 | CES 2018: Why doesn\'t everyone use VR already? (lien direct) | One side effect of slower than expected uptake of VR is that virtual reality application developers have been slow to invest in creating content. In this sort of chicken-and-egg cycle, growth tends to be slow, not explosive. | |||
|
2018-01-13 02:43:23 | Fruitfly malware spied on Mac users for 13 years – man charged (lien direct) | US authorities have charged a 28-year-old Ohio man who is alleged to have created and installed creepy spyware on thousands of computers for 13 years. | |||
|
2018-01-12 09:29:13 | Security event in Taiwan \'rewards\' quiz winners with malware-laden USB drives (lien direct) | The distribution of the USB sticks was halted on December 12 after some of the quiz's successful entrants reported that their rewards had been flagged by their security software as containing malware. | |||
|
2018-01-11 10:22:16 | CES 2018: The price of tech is dropping, kids can do this! (lien direct) | Row after row of startup tech here has tiny modules designed to be mashed up into the next big thing if their founders have anything to say about it, and the trend continues. | |||
|
2018-01-10 12:58:23 | Tank-traps versus trappings in virtual currencies: A cybersecurity minefield (lien direct) | Bitcoin, the progenitor of the entire cryptocurrency boom and still the most popular virtual currency, experienced a truly heady run-up in value. Its price surge was punctuated with a crescendo midway through December, when a single bitcoin approached $20,000. | |||
|
2018-01-09 14:00:15 | ESET research: Appearances are deceiving with Turla\'s backdoor-laced Flash Player installer (lien direct) | In order to establish persistence on the system, the installer tampers with the operating system's registry. It also creates an administrative account that allows remote access. | |||
|
2018-01-08 10:58:16 | MADIoT – The nightmare after XMAS (and Meltdown, and Spectre) (lien direct) | It is not feasible, in fact not even possible, to replace all CPUs in all devices. It would be too costly, besides the success rate for unsoldering and resoldering pin-throughs in multi-layer boards will never be 100%. | |||
|
2018-01-05 09:14:21 | Meltdown and Spectre CPU Vulnerabilities: What You Need to Know (lien direct) | The first few days of 2018 have been filled with anxious discussions concerning a widespread and wide-ranging vulnerability in the architecture of processors based on Intel's Core architecture used in PCs for many years, and also affecting ARM processors commonly used in tablets and smartphones. | |||
|
2018-01-04 12:59:36 | ESET Research: Wauchos now headed for extinction? (lien direct) | As Wauchos was sold on underground forums, there were various monetization schemes. One of them was to use the form grabber plugin to steal passwords for online accounts. | |||
|
2018-01-03 10:58:24 | Now is the best time to craft your breach response (lien direct) | Taking time to think logically and deliberately about your assets can help you determine what needs to be secured. Preparing for the worst can help you see the best course of action to prevent those emergencies in the present. | |||
|
2017-12-28 12:58:53 | Cybersecurity review of 2017: The year of wake-up calls – part 2 (lien direct) | Courtesy of its highly customizable nature – along with its ability to persist in the system and to provide valuable information for fine-tuning the highly configurable payloads – the malware can be adapted for attacks against any environment, making it extremely dangerous. | |||
|
2017-12-27 14:49:04 | The worst passwords of the year revealed (lien direct) | Need a New Year's resolution? How about this one? Start taking password security more seriously. | |||
|
2017-12-27 12:58:52 | Cybersecurity review of 2017: The year of wake-up calls – part 1 (lien direct) | Ransomware and data breaches remain major thorns in the sides of users and organizations across the world, often piercing their defenses without too much effort. | |||
|
2017-12-21 13:58:28 | Sednit update: How Fancy Bear Spent the Year (lien direct) | Over the past few years the Sednit group has used various techniques to deploy their various components on targets computers. The attack usually starts with an email containing either a malicious link or malicious attachment. | APT 28 | ||
|
2017-12-21 10:07:16 | What does revoking Net Neutrality mean for security? (lien direct) | Imagine the scenario where an Internet Service Provider (ISP) allows a security company providing malware protection the option to pay for their traffic to be prioritized and a lower the priority level imposed on all other providers. | |||
|
2017-12-20 16:57:24 | Adventures in cybersecurity research: risk, cultural theory, and the white male effect – part 2 (lien direct) | Armed with the cultural theory described in part one as a possible explanation for why some people do not heed expert advice, we fielded a survey that queried US adults about their attitudes to 15 different technology hazards, including six that were cyber-related. | |||
|
2017-12-19 12:57:10 | Why we should fight for Net Neutrality (lien direct) | Granting ISPs the right to shape traffic, allowing for some traffic to be prioritized due to a commercial agreement, may have a negative effect on the outcome of using the service for both the consumer and the company providing the service. | |||
|
2017-12-18 16:58:41 | Adventures in cybersecurity research: risk, cultural theory, and the white male effect (lien direct) | Again and again we have seen security breaches occur because people did not heed advice that we and other people with expertise in security have been disseminating for years, advice about secure system design, secure system operation, and appropriate security strategy. | |||
|
2017-12-15 10:00:25 | UK banks urged to do more to tackle rampant online fraud (lien direct) | Banks are being urged to step up to the plate and to “work together to tackle this problem head onâ€, as their response has been found to be disproportionate to the scale of the problem. | |||
|
2017-12-14 13:55:37 | Cybersecurity Trends 2018: The costs of connection (lien direct) | To help the reader navigate through the maze of such threats, ESET's thought leaders have zeroed in on several areas that top the priority list in our exercise in looking forward. | Guideline | ||
|
2017-12-13 12:58:15 | Memes: the explanation of nearly everything – including computer viruses (lien direct) | We still don't have a solid scientific theory of memes; nonetheless, they already allow us to understand why certain things happen the way they do. Memes are “aliveâ€; they reproduce, mutate, and evolve according to Darwinian laws. | |||
|
2017-12-12 22:31:59 | It\'s time to patch your Microsoft and Adobe software again against vulnerabilities (lien direct) | It's the second Tuesday of the month, and you know what that means... Yep, it's time for another bundle of essential security updates from Microsoft. | |||
|
2017-12-12 14:08:36 | Cryptocurrency in kilowatt hours: Counting the costs of anonymous transactions (lien direct) | The energy costs are not the only charges in a transaction: the bitcoin network itself levies a charge which, according to a blog from Valve, the gaming provider behind the Steam network, has skyrocketed from $0.20 in 2016 to $20 per transaction today | |||
|
2017-12-12 10:48:28 | Enterprise security spend to continue to trend higher (lien direct) | A breakdown of the 'spending pie' shows that the 'security services' segment is projected to make up nearly 60% of the total IT security budgets, followed by the 'infrastructure protection' segment on a little over 18%. | |||
|
2017-12-11 13:58:11 | Banking malware on Google Play targets Polish banks (lien direct) | Besides delivering the promised functionalities, the malicious apps can display fake notifications and login forms seemingly coming from legitimate banking applications, harvest credentials entered into the fake forms, as well as intercept text messages to bypass SMS-based 2-factor authentication. | |||
|
2017-12-11 10:38:06 | Happy holidays, scam spotters! (lien direct) | Businesses are often sent fake invoices and waybills which install ransomware. Teach staff to avoid these. If questionable, ask your IT dept to look at it. E-cards have been a target in the past and may be used again in holiday-themed attacked. | |||
|
2017-12-08 13:58:21 | StrongPity2 spyware replaces FinFisher in MitM campaign – ISP involved? (lien direct) | As we reported in September, in campaigns we detected in two different countries, man-in-the-middle attacks had been used to spread FinFisher, with the “man†in both cases most likely operating at the ISP level. | |||
|
2017-12-07 14:17:07 | Virtual keyboard app exposes personal data of 31 million users (lien direct) | The developer's keyboard apps boast 40 million users across Android and iOS, but “only†Android users were affected by the security lapse. | |||
|
2017-12-06 15:01:41 | Cryptocurrency exchange Bitfinex plagued by DDoS attacks (lien direct) | The cast of characters behind the attacks, or their motives, are unclear. However, the onslaughts come at a time when the bitcoin price hits new highs, possibly triggering efforts on the part of cybercriminals to manipulate and cash in on the price. | |||
|
2017-12-06 12:59:09 | Six things to consider before implementing an ISMS (lien direct) | These factors can be key to the success or failure of the ISMS implementation, due to the day-to-day activities in the organization and the resources required for system operation. |
To see everything:
Our RSS (filtrered)
