What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2015-06-26 16:51:08 | Microsoft Word Intruder RTF Sample Analysis (lien direct) | Background Check Point researchers obtained a sample of a malicious Word document that was used in an attack attempt against one of our customers. The sample itself is a Rich Text Format (RTF) file with a .DOC extension. Recently, there has been a resurgence of the trend to use malicious macro code inside office documents. However, […] | |||
|
2015-06-19 17:33:42 | Zero-Day Flaw Victimizes Apple iOS and OSX Apps (lien direct) | Researchers this week disclosed zero-day flaws in Apple's iOS and OSX operating systems that allowed them to raid password keychains, crack secure containers, and circumvent Apple App Store security checks. The group of six researchers from Indiana University, Peking University and Georgia Institute of Technology claims that almost 90% of the over 1,600 OSX apps […] | |||
|
2015-06-18 15:30:10 | Stopping the Next Massive Cyberattack – Step 4: Monitor (lien direct) | With the rise of cyber threats, ensuring your organization is protected against malicious attacks requires constant awareness and visibility into the network's security infrastructure. Monitoring network activity is essential to strengthening an organization's defense against cyberattacks, as it will allow the administrator to observe network and security performance while detecting any problems or failures that […] | |||
|
2015-06-16 17:56:55 | Check Point 2015 Security Report Paints a Picture of the Threat Landscape-And it\'s Not Pretty (lien direct) | This month, Check Point released its annual security report-a trove of statistics and trends culled from collaborative research and in-depth analysis of more than 300,000 hours of monitored network traffic, from more than 16,000 Threat Prevention gateways and one million smartphones. The bottom line, to state the obvious: Things are getting worse out there. Hackers […] | |||
|
2015-06-10 12:00:11 | Critical Infrastructure is at Risk! (lien direct) | Almost all of today's modern conveniences, such as electricity, transportation, water systems, and manufactured products, are managed by industrial control systems (ICS). Many of these systems are considered to be critical infrastructure and operate as the backbone of a nation’s economy, security and health. An attack on these systems and networks has the potential to […] | |||
|
2015-06-09 14:04:37 | New Data: Volatile Cedar Malware Campaign (lien direct) | At the end of March, we published a blog post and a whitepaper about a cyber-espionage campaign dubbed “Volatile Cedar.†This campaign has successfully penetrated targets world-wide, using a variety of attack techniques, in particular, a custom-made malware implant codenamed Explosive. Let’s recap what we know: The Campaign: The Volatile […] | |||
|
2015-06-03 20:33:33 | Stopping the Next Massive Cyberattack – Step 3: Implement Security Controls (lien direct) | After assessing network strengths and weaknesses and building a properly segmented network, the next step to stronger security is to implement security controls. Cybercriminals are using sophisticated methods to attack specific targets and steal valuable information. The only defense against these attacks is an equally advanced security system where multiple layers work together to identify, […] | |||
|
2015-06-02 19:59:24 | New Vulnerabilities Discovered In WordPress (lien direct) | Not Just Another Broken Link… Introduction Check Point researcher Dikla Barda recently discovered critical vulnerabilities in two widely used WordPress plugins: the Broken Link Checker and the Download Manager. These vulnerabilities allow: Access to private data by unauthenticated users via Path Traversal. Execution of malicious code and theft of user sessions via a […] | |||
|
2015-05-27 17:36:39 | CapTipper – Malicious HTTP Traffic Explorer (lien direct) | The Problem  In recent years, the Internet has experienced a large number of “drive-by†attacks, mostly by exploit kits. Exploit kits are a type of malicious toolkit which exploit security holes, such as insecure or outdated software applications, for the purpose of spreading malware. When a victim visits a website whose server has been […] | ★★★★ | ||
|
2015-05-22 20:48:40 | Stopping the Next Massive Cyberattack – Step 2: Segmentation (lien direct) | When it comes to cybersecurity, conducting a thorough assessment of your current environment to identify potential weaknesses in your security network is only the first step toward a stronger security infrastructure. The next step is to segment the network. Segmentation is the process of separating a network into multiple sections, or segments, to better protect information […] | ★★★★★ | ||
|
2015-05-22 16:47:26 | (Déjà vu) Safari Bugs Buzzing, South Korea Spie on Teens, Apple Watch Time Out – Mobile Security Weekly (lien direct) | The post Safari Bugs Buzzing, South Korea Spie on Teens, Apple Watch Time Out – Mobile Security Weekly | ★★ | ||
|
2015-05-20 19:02:54 | Check Point Threat Alert: Logjam (lien direct) | Executive Summary A major flaw was discovered with SSL and was named “Logjam”. The flaw affects a number of fundamental web protocols. 8.4% of the Top 1 Million domains were initially vulnerable. SK106147 – Check Point Response to Logjam Vulnerability. DESCRIPTION The vulnerability affects an algorithm called the “Diffie-Hellman key exchange” which allows protocols […] | |||
|
2015-05-20 15:49:51 | Storm Kit – Changing the rules of the DDoS attack (lien direct) | Background Distributed denial of service (DDoS) is one of the most commonly used cybercriminal methods. It's easy, cheap and difficult to trace, and “service providers†can be found throughout the “dark†Web. As a result, the impact on e-commerce and other online business can be tremendous. According to a recent survey by Neustar, a DDoS […] | |||
|
2015-05-14 16:00:55 | Analysis of the Havij SQL Injection tool (lien direct) | Havij, an automatic SQL Injection tool, is distributed by ITSecTeam, an Iranian security company. The name Havij means “carrotâ€, which is the tool's icon. The tool is designed with a user-friendly GUI that makes it easy for an operator to retrieve the desired data. Such ease of use may be the reason behind the transition […] | |||
|
2015-05-12 19:17:20 | The 1st Step to Stopping the Next Massive Cyberattack: Assess (lien direct) | Given the ever-increasing sophistication of cybercrime methods, organizations must employ advanced assessment tools and practices to reduce or eliminate security gaps. The first step to a successful security posture is to know what your current security network looks like. It's hard to strengthen a security foundation when you don't know where the weaknesses are. […] | |||
|
2015-05-12 18:42:12 | The Microsoft Help File (.chm) May Enslave You (lien direct) |  “Microsoft Compiled HTML Help†is a Microsoft proprietary online help format that consists of a collection of HTML pages, indexing and other navigation tools. These files are compressed and deployed in a binary format with an extension of .CHM (compiled HTML). Check Point researcher Liad Mizrachi has conducted research showing that .chm files can […] | ★★★★★ | ||
|
2015-05-09 17:45:20 | (Déjà vu) Android Under Attack! – Mobile Security Weekly (lien direct) | The post Android Under Attack! – Mobile Security Weekly | ★★★★★ | ||
|
2015-05-01 16:31:55 | (Déjà vu) Apple\'s iOS Proven Vulnerable (Again!) as Android Leaks Biometric Info – Mobile Security Weekly (lien direct) | The post Apple's iOS Proven Vulnerable (Again!) as Android Leaks Biometric Info – Mobile Security Weekly | ★★★★ | ||
|
2015-04-29 13:58:25 | Threat Alert: WordPress Cross-Site Scripting (lien direct) | Overview The WordPress content management system used by millions of websites is vulnerable to two newly discovered threats that allow attackers to take full control of the Web server. The attack code targets one of the latest versions of WordPress, making it a zero-day exploit that could set off a series of site hijackings […] | |||
|
2015-04-24 15:00:04 | Stopping the Next Massive Cyberattack (lien direct) | Cybercriminals are quite pleased with themselves. Their recent handiwork has resulted in breaking news headlines, cover stories of major newspapers and banners flashing with details of the latest data breach. Unfortunately, the headlines displaying their successes leave their victims in a compromised, and often fiscal, mess. These cyber masterminds have become unpredictable in their methods […] | |||
|
2015-04-20 13:59:47 | Analyzing the Magento Vulnerability (Updated) (lien direct) | Check Point researchers recently discovered a critical RCE (remote code execution) vulnerability in the Magento web e-commerce platform that can lead to the complete compromise of any Magento-based store, including credit card information as well as other financial and personal data, affecting nearly two hundred thousand online shops. Check Point privately disclosed the vulnerabilities together […] | Guideline | ||
|
2015-04-16 19:45:00 | Check Point Threat Alert – Simda (lien direct) | Overview The Simda botnet is a network of computers infected with self-propagating malware which has compromised more than 770,000 computers worldwide. Since 2009, cyber criminals have been targeting computers with unpatched software and compromising them with Simda malware. This malware may re-route a user's Internet traffic to websites under criminal control or can […] | |||
|
2015-04-16 17:19:38 | Protecting Beyond the Point of Sale (lien direct) | The sad reality is that retail breaches are becoming too common. With over a billion credit cards in circulation in the US and over 7 billion worldwide, credit card data has become a prime target for cybercriminals. An alarming number of data and network security breaches happen each year in the payment card and retail […] | |||
|
2015-04-15 14:20:57 | Check Point Threat Alert: AAEH/Beebone (lien direct) | Overview AAEH, also known as BeeBone, is a family of polymorphic downloaders created with the primary purpose of downloading other malware, including password stealers, rootkits, fake antivirus, and ransomware. AAEH is often propagated across networks, removable drives (USB/CD/DVD), and through ZIP and RAR archive files. Other aliases include VObfus, VBObfus, and Changeup. The polymorphic […] | |||
|
2015-04-10 15:01:34 | (Déjà vu) Mobile Security Market Grows, iOS Patched (AGAIN!), Encryption Has Hole – Mobile Security Weekly (lien direct) | The post Mobile Security Market Grows, iOS Patched (AGAIN!), Encryption Has Hole – Mobile Security Weekly | |||
|
2015-04-08 14:08:21 | The Curious Incident of the Phish in the Night-Time: a Forensic Case Study (lien direct) | Names have been changed to protect the privacy of the individuals involved. On the morning of February 26, 2015, Laurie logged on to her Google account at work and discovered that overnight, someone had used her account as a stepping stone for a total, indiscriminate phishing campaign. Laurie is the chief administrative assistant […] | ★★★★ | ||
|
2015-04-01 17:54:33 | Segmentation is Great in Theory, but Who Has the Time? (lien direct) | Security is one of those, “pay a little now, or pay a lot later†concepts. Your data, your customer information, your intellectual property, your trade secrets, these are the lifeblood of your company. One bad hack could distract your team for months, set your product position back years or worse, put you out of business […] | ★★★★ | ||
|
2015-03-31 13:59:29 | Volatile Cedar – Analysis of a Global Cyber Espionage Campaign (lien direct) | Today, we announced the discovery of Volatile Cedar, a persistent attacker group originating possibly in Lebanon with political ties. Beginning in late 2012, the carefully orchestrated attack campaign we call Volatile Cedar has been targeting individuals, companies and institutions worldwide. This campaign, led by a persistent attacker group, has successfully penetrated a large number of […] | ★★★★★ | ||
|
2015-03-27 16:20:14 | What Can We Learn from Clinton\'s “Email-gateâ€? (lien direct) | Hillary Clinton has been scrutinized for using her private email account for Department of State-related correspondence. The so-called “email-gate†has put Mrs. Clinton in a hot-spot forcing her to provide explanations to what appears to be not only an attempt to hide official correspondence from the public but, more importantly, a breach in security. […] | ★★★★ | ||
|
2015-03-27 15:15:13 | (Déjà vu) Half of Androids Vulnerable, Half of App Makers Eschew Security, iOS Jailbreak Coming – Mobile Security Weekly (lien direct) | The post Half of Androids Vulnerable, Half of App Makers Eschew Security, iOS Jailbreak Coming – Mobile Security Weekly | ★★★ | ||
|
2015-03-26 18:08:10 | Intelligence Report: Equation Group (lien direct) | Executive Summary The Equation Group, active since 2001, is a highly advanced and secretive computer espionage organization. The first report on Equation was published by Kaspersky during their 2015 Security Analyst Summit. The malware used in their operations, dubbed EquationDrug and GrayFish, is capable of reprogramming hard disk drive firmware. The group is using advanced techniques, predilection […] | ★★★★★ | ||
|
2015-03-24 20:08:40 | CuckooDroid – Fighting the Tide of Android Malware (lien direct) | The future is mobile. Few experts doubt this conclusion these days. The accelerating proliferation of smartphones and other devices powered by the Android operating system throughout the world has created a corresponding increase in mobile apps – especially malicious mobile apps. This relatively new, but rapidly evolving, type of malware poses previously unseen dangers. […] | ★★★★★ | ||
|
2015-03-23 16:30:06 | Go Atomic or Go Home (lien direct) | Have you never heard the term 'Atomic Segment' used in security? Me neither. That is, until I came to Check Point. If you think about it, it makes a lot of sense. An atomic segment is a set of computing and networking elements that: (1) share a common security profile; (2) cannot further be subdivided […] | ★★★★ | ||
|
2015-03-20 16:46:56 | (Déjà vu) FREAK Lives On, Play Has Adware, iOS Brute-Force Attack – Mobile Security Weekly (lien direct) | The post FREAK Lives On, Play Has Adware, iOS Brute-Force Attack – Mobile Security Weekly | ★★★★ | ||
|
2015-03-19 17:23:12 | Check Point Reveals New RCE Vulnerability in BitDefender Anti-Virus (lien direct) | Check Point’s Malware and Vulnerability Research Group today revealed new research into potential attacks of a crucial component in the Windows operating system, and demonstrated the use of such an attack by revealing a previously unknown vulnerability in Bitdefender Anti-Virus. The operating system component, known as NDIS, serves as the connecting layer between the […] | |||
|
2015-03-13 14:49:17 | Shiver Me Timbers! DDoS Attacks Caused by Pirate Bay Trackers and DNS Misconfigurations? (lien direct) | In January of 2015 the Check Point Incident Response team (CPIR) had two DDoS attack cases from separate customers with similar characteristics: The first case: On Saturday January 10th a US Children's Hospital called the CPIR Emergency Hotline because they were suffering a DDoS attack.. After quick examination, the attack traffic was found to have […] | ★★★★★ | ||
|
2015-03-12 20:28:54 | Segmentation – the Simplest Security Policy Most People Miss (lien direct) | In our 2014 Security Report, we highlighted a quote from Bill Cheswick, a world-renowned computer security expert, who in 1990 talked about first-generation network security focusing on perimeter protection. He called this simple perimeter security concept 'a sort of crunchy shell around a soft, chewy center.' The idea used to be that an organization's internal […] | ★★★★★ | ||
|
2015-03-06 15:51:43 | (Déjà vu) FREAK (Out!) Attack, Fake Amazon Voucher, Google Doesn\'t Encrypt – Mobile Security Weekly (lien direct) | The post FREAK (Out!) Attack, Fake Amazon Voucher, Google Doesn’t Encrypt – Mobile Security Weekly | ★★ | ||
|
2015-02-27 15:54:37 | (Déjà vu) iOS Crowned Insecure, Google Gets to Work, Budget Tablets Dangerous – Mobile Security Weekly (lien direct) | The post iOS Crowned Insecure, Google Gets to Work, Budget Tablets Dangerous – Mobile Security Weekly | ★★ | ||
|
2015-02-24 15:06:20 | Is Software Defined Protection the New Software Defined Networking? (lien direct) | Software Defined Networking (SDN) is the latest buzz term to take over the networking world – and is not to be overlooked. With the goal of automating network infrastructure functions that used to be fixed or manual, the aim is to take complex configuration tasks and make them programmable. When implemented correctly, it should make […] | |||
|
2015-02-20 22:24:23 | Angler Exploit Kit – Blocking Attacks Even Before Zero Day (lien direct) | The Story Blocking attempts to use exploit kits (EK) against our customers is one of Check Point’s main targets in IPS. Thus, our Intelligence Teams follow closely the trends in this world. On late December, we noticed hype around a specific EK, namely, Angler EK, and decided to give high priority to writing an IPS […] | |||
|
2015-02-19 22:22:22 | Malware Analysis 101 (lien direct) | Introduction A common misconception about malware is the great difficulty of performing malware analysis and the technical requirements involved. When many technical users are faced with a malware infection and asked to analyze it, they may think, “Hey, I’ve heard about this kind of malware. I’ve even read some malware reports, and they sound really […] | |||
|
2015-02-19 20:45:14 | Malware Analysis – CTB-Locker (lien direct) | Executive Summary CTB (Curve-Tor-Bitcoin) Locker is a crypto-ransomware variant. It is based on advanced algorithms which are used in different combinations, making CTB-Locker significantly more difficult to detect and neutralize. CTB-Locker (aka Critroni or Onion) is based on a so-called encryptor, which encrypts all of a user's personal data and extorts payment to decrypt the […] | |||
|
2015-02-19 12:51:46 | Targeted Attacks on Enterprise Mobile Exposed in New Threat Research (lien direct) | The post Targeted Attacks on Enterprise Mobile Exposed in New Threat Research | |||
|
2015-02-13 16:42:30 | (Déjà vu) New Android Trojans, Gremlins Inside Play, iPhone\'s Safe and Sound – Mobile Security Weekly (lien direct) | The post New Android Trojans, Gremlins Inside Play, iPhone's Safe and Sound – Mobile Security Weekly | ★★ | ||
|
2015-02-10 16:20:39 | Demystifying iOS Enterprise Certificates (lien direct) | The post Demystifying iOS Enterprise Certificates | ★★★★★ | ||
|
2015-02-06 17:37:08 | (Déjà vu) iOS Attacked (Again), Play\'s Got Adware, Outlook Has Security Flaws – Mobile Security Weekly (lien direct) | The post iOS Attacked (Again), Play’s Got Adware, Outlook Has Security Flaws – Mobile Security Weekly | ★★★★★ | ||
|
2015-02-06 17:31:26 | Your Malware Would Like To Phone a Friend (lien direct) | The post Your Malware Would Like To Phone a Friend | ★★★ | ||
|
2015-02-05 17:30:43 | Clever and Persistent Android Banking Trojan Discovered (lien direct) | The post Clever and Persistent Android Banking Trojan Discovered | ★★★★★ | ||
|
2015-02-03 21:02:35 | Cyberthieves Can Score a Data Touchdown with Unencrypted Apps (lien direct) | The post Cyberthieves Can Score a Data Touchdown with Unencrypted Apps | ★★★ |
To see everything:
Our RSS (filtrered)
