What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-09-15 13:35:15 | New malware bundle self-spreads through YouTube gaming videos (lien direct) | A new malware bundle uses victims' YouTube channels to upload malicious video tutorials advertising fake cheats and cracks for popular video games to spread the malicious package further. [...] | Malware | ||
|
2022-09-15 10:38:02 | Russian hackers use new info stealer malware against Ukrainian orgs (lien direct) | Russian hackers have been targeting Ukrainian entities with previously unseen info-stealing malware during a new espionage campaign that is still active. [...] | Malware | ||
|
2022-09-15 06:00:00 | Webworm hackers modify old malware in new attacks to evade attribution (lien direct) | Chinese cyberespionage hackers of the 'Webworm' group are undergoing experimentation, using modified decade-old RATs (remote access trojans) in the wild. [...] | Malware | ||
|
2022-09-14 10:06:03 | Securing your IoT devices against cyber attacks in 5 steps (lien direct) | How is IoT being used in the enterprise, and how can it be secured? We will demonstrate important security best practices and how a secure password policy is paramount to the security of devices. [...] | |||
|
2022-09-14 08:07:28 | Chinese hackers create Linux version of the SideWalk Windows malware (lien direct) | State-backed Chinese hackers have developed a Linux variant for the SideWalk backdoor used against Windows systems belonging to targets in the academic sector. [...] | Malware | ||
|
2022-09-13 11:21:48 | Hackers breach software vendor for Magento supply-chain attacks (lien direct) | Hackers have injected malware in multiple extensions from FishPig, a vendor of Magento-WordPress integrations that count over 200,000 downloads. [...] | Malware | ||
|
2022-09-13 06:00:00 | Cyberspies drop new infostealer malware on govt networks in Asia (lien direct) | Security researchers have identified new cyber-espionage activity focusing on government entities in Asia, as well as state-owned aerospace and defense firms, telecom companies, and IT organizations. [...] | Malware | ||
|
2022-09-12 16:28:35 | U-Haul discloses data breach exposing customer driver licenses (lien direct) | Moving and storage giant U-Haul International (U-Haul) disclosed a data breach after a customer contract search tool was hacked to access customers' names and driver's license information. [...] | Data Breach Tool | ||
|
2022-09-12 14:20:48 | Apple fixes eighth zero-day used to hack iPhones and Macs this year (lien direct) | Apple has released security updates to address the eighth zero-day vulnerability used in attacks against iPhones and Macs since the start of the year. [...] | Hack Vulnerability | ||
|
2022-09-12 12:00:00 | Lorenz ransomware breaches corporate network via phone systems (lien direct) | The Lorenz ransomware gang now uses a critical vulnerability in Mitel MiVoice VOIP appliances to breach enterprises using their phone systems for initial access to their corporate networks. [...] | Ransomware Vulnerability | ||
|
2022-09-09 10:00:00 | Lampion malware returns in phishing attacks abusing WeTransfer (lien direct) | The Lampion malware is being distributed in greater volumes lately, with threat actors abusing WeTransfer as part of their phishing campaigns. [...] | Threat Malware | ||
|
2022-09-08 16:51:52 | Bumblebee malware adds post-exploitation tool for stealthy infections (lien direct) | A new version of the Bumblebee malware loader has been spotted in the wild, featuring a new infection chain that uses the PowerSploit framework for stealthy reflective injection of a DLL payload into memory. [...] | Malware Tool | ||
|
2022-09-08 15:28:21 | GIFShell attack creates reverse shell using Microsoft Teams GIFs (lien direct) | A new attack technique called 'GIFShell' allows threat actors to abuse Microsoft Teams for novel phishing attacks and covertly executing commands to steal data using ... GIFs. [...] | Threat | ||
|
2022-09-07 11:47:25 | Ukraine dismantles more bot farms spreading Russian disinformation (lien direct) | The Cyber Department of the Ukrainian Security Service (SSU) dismantled two more bot farms that spread Russian disinformation on social networks and messaging platforms via thousands of fake accounts. [...] | |||
|
2022-09-07 10:40:53 | 200,000 North Face accounts hacked in credential stuffing attack (lien direct) | Outdoor apparel brand 'The North Face' was targeted in a large-scale credential stuffing attack that has resulted in the hacking of 194,905 accounts on the thenorthface.com website. [...] | |||
|
2022-09-07 10:18:39 | New Iranian hacking group APT42 deploys custom Android spyware (lien direct) | A new Iranian state-sponsored hacking group known as APT42 has been discovered using a custom Android malware to spy on targets of interest. [...] | Malware | APT 42 | |
|
2022-09-07 07:00:00 | Google says former Conti ransomware members now attack Ukraine (lien direct) | Google says some former Conti cybercrime gang members, now part of a threat group tracked as UAC-0098, are targeting Ukrainian organizations and European non-governmental organizations (NGOs). [...] | Threat Ransomware | ||
|
2022-09-06 16:40:11 | Moobot botnet is coming for your unpatched D-Link router (lien direct) | The Mirai malware botnet variant known as 'MooBot' has re-emerged in a new attack wave that started early last month, targeting vulnerable D-Link routers with a mix of old and new exploits. [...] | Malware | ||
|
2022-09-06 15:53:09 | Minecraft is hackers\' favorite game title for hiding malware (lien direct) | Security researchers have discovered that Minecraft is the most heavily abused game title by cybercriminals, who use it to lure unsuspecting players into installing malware. [...] | Malware | ||
|
2022-09-06 11:34:48 | New Linux malware evades detection using multi-stage deployment (lien direct) | A new stealthy Linux malware known as Shikitega has been discovered infecting computers and IoT devices with additional payloads. [...] | Malware | ||
|
2022-09-06 07:41:11 | Second largest U.S. school district LAUSD hit by ransomware (lien direct) | Los Angeles Unified (LAUSD), the second largest school district in the U.S., disclosed that a ransomware attack hit its Information Technology (IT) systems over the weekend. [...] | Ransomware | ||
|
2022-09-05 09:52:03 | (Déjà vu) TikTok denies security breach after hackers leak user data, source code (lien direct) | TikTok denies recent claims it was breached, and source code and user data were stolen, telling BleepingComputer that data posted to a hacking forum is "completely unrelated" to the company. [...] | |||
|
2022-09-05 09:52:03 | TikTok denies hack following leak of user data, source code (lien direct) | TikTok denies recent claims it was breached, and source code and user data were stolen, telling BleepingComputer that data posted to a hacking forum is "completely unrelated" to the company. [...] | Hack | ||
|
2022-09-04 10:07:14 | SharkBot malware sneaks back on Google Play to steal your logins (lien direct) | A new and upgraded version of the SharkBot malware has returned to Google's Play Store, targeting banking logins of Android users through apps that have tens of thousands of installations. [...] | Malware | ||
|
2022-09-03 16:39:41 | IRS data leak exposes personal info of 120,000 taxpayers (lien direct) | The Internal Revenue Service has accidentally leaked confidential information for approximately 120,000 taxpayers who filed a form 990-T as part of their tax returns. [...] | |||
|
2022-09-03 10:12:14 | Malware dev open-sources CodeRAT after being exposed (lien direct) | The source code of a remote access trojan (RAT) dubbed 'CodeRAT' has been leaked on GitHub after malware analysts confronted the developer about attacks that used the tool. [...] | Malware | ||
|
2022-09-02 16:05:55 | BlackCat ransomware claims attack on Italian energy agency (lien direct) | The BlackCat/ALPHV ransomware gang claimed responsibility for an attack that hit the systems of Italy's energy agency Gestore dei Servizi Energetici SpA (GSE) over the weekend. [...] | Ransomware | ||
|
2022-09-02 14:47:17 | Dev backdoors own malware to steal data from other hackers (lien direct) | Cybercriminals using Prynt Stealer to collect data from victims are being swindled by the malware developer, who also receives a copy of the info over Telegram messaging service. [...] | Malware | ||
|
2022-09-02 13:23:29 | Samsung discloses data breach after July hack (lien direct) | Electronics giant Samsung has confirmed a new data breach today after some of its U.S. systems were hacked to steal customer data. [...] | Data Breach Hack | ||
|
2022-09-02 12:25:17 | Hive ransomware hits Damart clothing store with $2 million ransom (lien direct) | Damart, a French clothing company with over 130 stores across the world, is being extorted for $2 million after a cyberattack from the Hive ransomware gang. [...] | Ransomware | ||
|
2022-09-02 09:12:27 | San Francisco 49ers: Blackbyte ransomware gang stole info of 20K people (lien direct) | NFL's San Francisco 49ers are mailing notification letters confirming a data breach affecting more than 20,000 individuals following a ransomware attack that hit its network earlier this year. [...] | Ransomware | ||
|
2022-09-01 09:00:00 | Thousands lured with blue badges in Instagram phishing attack (lien direct) | A new Instagram phishing campaign is underway, attempting to scam users of the popular social media platform by luring them with a blue-badge offer. [...] | ★★★★★ | ||
|
2022-09-01 07:14:28 | Neopets says hackers had access to its systems for 18 months (lien direct) | Neopets has released details about the recently disclosed data breach incident that exposed personal information of more than 69 million members. [...] | Data Breach | ||
|
2022-08-31 13:01:07 | Ragnar Locker ransomware claims attack on Portugal\'s flag airline (lien direct) | The Ragnar Locker ransomware gang has claimed an attack on the flag carrier of Portugal, TAP Air Portugal, disclosed by the airline last Friday. [...] | Ransomware | ||
|
2022-08-31 12:00:00 | Microsoft found TikTok Android flaw that let hackers hijack accounts (lien direct) | Microsoft found and reported a high severity flaw in the TikTok Android app in February that allowed attackers to "quickly and quietly" take over accounts with one click by tricking targets into clicking a specially crafted malicious link. [...] | |||
|
2022-08-30 18:08:01 | Hackers hide malware in James Webb telescope images (lien direct) | Threat analysts have spotted a new malware campaign dubbed 'GO#WEBBFUSCATOR' that relies on phishing emails, malicious documents, and space images from the James Webb telescope to spread malware. [...] | Threat Malware | ||
|
2022-08-30 16:15:18 | Russian streaming platform confirms data breach affecting 7.5M users (lien direct) | Russian media streaming platform 'START' (start.ru) has confirmed rumors of a data breach impacting millions of users. [...] | Data Breach | ||
|
2022-08-30 13:26:40 | Chinese hackers target Australian govt with ScanBox malware (lien direct) | China-based threat actors have been targeting Australian government agencies and wind turbine fleets in the South China Sea by directing select individuals to a fake impersonating an Australian news media outlet. [...] | Threat Malware | ||
|
2022-08-30 07:00:00 | Google launches open-source software bug bounty program (lien direct) | Google will now pay security researchers to find and report bugs in the latest versions of Google-released open-source software (Google OSS). [...] | |||
|
2022-08-29 14:16:46 | Nelnet Servicing breach exposes data of 2.5M student loan accounts (lien direct) | Nelnet Serving, a Nebraska-based student loan technology services provider, has been breached by unauthorized network intruders who exploited a vulnerability in its systems. [...] | Vulnerability | ||
|
2022-08-29 13:19:02 | Windows malware delays coinminer install by a month to evade detection (lien direct) | A new malware campaign disguised as Google Translate or MP3 downloader programs was found distributing cryptocurrency mining malware across 11 countries. [...] | Malware | ||
|
2022-08-28 13:15:05 | (Déjà vu) Okta one-time MFA passcodes exposed in Twilio cyberattack (lien direct) | The threat actor behind the Twilio hack used their access to steal one-time passwords (OTPs) delivered over SMS to from customers of Okta identity and access management company. [...] | Threat Hack | ||
|
2022-08-28 13:15:05 | Twilio breach let hackers see Okta\'s one-time MFA passwords (lien direct) | The threat actor behind the Twilio hack used their access to steal one-time passwords (OTPs) delivered over SMS to from customers of Okta identity and access management company. [...] | Threat Hack | ||
|
2022-08-27 11:14:07 | Fake \'Cthulhu World\' P2E project used to push info-stealing malware (lien direct) | Hackers have created a fake 'Cthulhu World' play-to-earn community, including websites, Discord groups, social accounts, and a Medium developer site, to distribute the Raccoon Stealer, AsyncRAT, and RedLine password-stealing malware infections on unsuspecting victims. [...] | Malware | ||
|
2022-08-26 16:32:59 | The Week in Ransomware - August 26th 2022 - Fighting back (lien direct) | We saw a bit of ransomware drama this week, mostly centered around LockBit, who saw their data leak sites taken down by a DDoS attack after they started leaking the allegedly stolen Entrust data. [...] | Ransomware | ||
|
2022-08-26 15:30:34 | (Déjà vu) DoorDash discloses new data breach tied to Twilio hackers (lien direct) | Food delivery firm DoorDash has disclosed a data breach exposing customer and employee data that is linked to the recent cyberattack on Twilio. [...] | Data Breach | ★★★★ | |
|
2022-08-26 15:30:34 | DoorDash discloses new data breach tied to Twilio hack (lien direct) | Food delivery firm DoorDash has disclosed a data breach exposing customer and employee data that is linked to the recent cyberattack on Twilio. [...] | Data Breach Hack | ||
|
2022-08-26 12:20:04 | Twilio breach let hackers gain access to Authy 2FA accounts (lien direct) | Twilio's investigation into the attack on August 4 reveals that hackers gained access to some Authy user accounts and registered unauthorized devices. [...] | |||
|
2022-08-25 18:33:35 | How \'Kimsuky\' hackers ensure their malware only reach valid targets (lien direct) | The North Korean 'Kimsuky' threat actors are going to great lengths to ensure that their malicious payloads are only downloaded by valid targets and not on the systems of security researchers. [...] | Threat Malware | ||
|
2022-08-25 16:59:05 | LastPass developer systems hacked to steal source code (lien direct) | Password management firm LastPass was hacked last week, allowing threat actors to steal the company's source code and proprietary technical information. [...] | Threat | LastPass |
To see everything:
Our RSS (filtrered)
