What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-08-13 11:08:16 | Google fined $60 million over Android location data collection (lien direct) | The Australian Competition and Consumer Commission (ACCC) announced that Google was fined $60 million for misleading Australian Android users regarding the collection and use of their location data for almost two years, between January 2017 and December 2018. [...] | Guideline | ★★★★ | |
|
2022-08-13 10:12:06 | SOVA malware adds ransomware feature to encrypt Android devices (lien direct) | The SOVA Android banking trojan continues to evolve with new features, code improvements, and the addition of a new ransomware feature that encrypts files on mobile devices. [...] | Ransomware Malware | ★★★ | |
|
2022-08-12 16:45:00 | Chinese hackers backdoor chat app with new Linux, macOS malware (lien direct) | Versions of a cross-platform instant messenger application focused on the Chinese market known as 'MiMi' have been trojanized to deliver a new backdoor (dubbed rshell) that can be used to steal data from Linux and macOS systems. [...] | Malware | ★★★★ | |
|
2022-08-12 13:44:23 | Twilio: 125 customers affected by data breach, no passwords stolen (lien direct) | Cloud communications giant Twilio, the owner of the highly popular two-factor authentication (2FA) provider Authy, says that it has so far identified 125 customers who had their data accessed during a security breach discovered last week. [...] | |||
|
2022-08-11 15:32:34 | Zimbra auth bypass bug exploited to breach over 1,000 servers (lien direct) | An authentication bypass Zimbra security vulnerability is being exploited to compromise Zimbra Collaboration Suite (ZCS) email servers worldwide. [...] | Vulnerability | ||
|
2022-08-11 12:18:40 | UK NHS service recovery may take a month after MSP ransomware attack (lien direct) | Managed service provider (MSP) Advanced confirmed that a ransomware attack on its systems caused the disruption of emergency services (111) from the United Kingdom's National Health Service (NHS). [...] | Ransomware | ||
|
2022-08-10 18:21:40 | 7-Eleven Denmark confirms ransomware attack behind store closures (lien direct) | 7-Eleven Denmark has confirmed that a ransomware attack was behind the closure of 175 stores in the country on Monday. [...] | Ransomware | ||
|
2022-08-10 14:04:44 | Hacker uses new RAT malware in Cuba Ransomware attacks (lien direct) | A member of the Cuba ransomware operation is employing previously unseen tactics, techniques, and procedures (TTPs), including a novel RAT (remote access trojan) and a new local privilege escalation tool. [...] | Ransomware Malware | ★★★★★ | |
|
2022-08-10 12:50:17 | Phishing attack abuses Microsoft Azure, Google Sites to steal crypto (lien direct) | A new large-scale phishing campaign targeting Coinbase, MetaMask, Kraken, and Gemini users is abusing Google Sites and Microsoft Azure Web App to create fraudulent sites. [...] | |||
|
2022-08-09 13:28:10 | Cloudflare employees also hit by hackers behind Twilio breach (lien direct) | Cloudflare says some of its employees' credentials were also stolen in an SMS phishing attack very similar to the one that led to Twilio's network being breached last week. [...] | |||
|
2022-08-09 11:00:05 | Maui ransomware operation linked to North Korean \'Andariel\' hackers (lien direct) | The Maui ransomware operation has been linked to the North Korean state-sponsored hacking group 'Andariel,' known for using malicious cyber activities to generate revenue and causing discord in South Korea. [...] | Ransomware | ||
|
2022-08-09 10:02:04 | Hackers install Dracarys Android malware using modified Signal app (lien direct) | Researchers have discovered more details on the newly discovered Android spyware 'Dracarys,' used by the Bitter APT group in cyberespionage operations targeting users from New Zealand, India, Pakistan, and the United Kingdom. [...] | Malware | ||
|
2022-08-08 14:17:51 | Email marketing firm hacked to steal crypto-focused mailing lists (lien direct) | Email marketing firm Klaviyo disclosed a data breach after threat actors gained access to internal systems and downloaded marketing lists for cryptocurrency-related customers. [...] | Data Breach Threat | ||
|
2022-08-08 10:37:06 | Twilio discloses data breach after SMS phishing attack on employees (lien direct) | Cloud communications company Twilio says some of its customers' data was accessed by attackers who breached internal systems after stealing employee credentials in an SMS phishing attack. [...] | Data Breach | ||
|
2022-08-08 09:36:53 | Chinese hackers use new Windows malware to backdoor govt, defense orgs (lien direct) | An extensive series of attacks detected in January used new Windows malware to backdoor government entities and organizations in the defense industry from several countries in Eastern Europe. [...] | Malware | ||
|
2022-08-05 17:35:24 | The Week in Ransomware - August 5th 2022 - A look at cyber insurance (lien direct) | For the most part, it has been a quiet week on the ransomware front, with a few new reports, product developments, and attacks revealed. [...] | Ransomware | ||
|
2022-08-05 13:44:59 | Slack resets passwords after exposing hashes in invitation links (lien direct) | Slack notified roughly 0.5% of its users that it reset their passwords after fixing a bug exposing salted password hashes when creating or revoking shared invitation links for workspaces. [...] | |||
|
2022-08-05 12:00:00 | Twitter confirms zero-day used to expose data of 5.4 million accounts (lien direct) | Twitter has confirmed a recent data breach was caused by a now-patched zero-day vulnerability used to link email addresses and phone numbers to users' accounts, allowing a threat actor to compile a list of 5.4 million user account profiles. [...] | Data Breach Vulnerability Threat | ||
|
2022-08-05 10:40:33 | Facebook finds new Android malware used by APT hackers (lien direct) | Meta (Facebook) has released its Q2 2022 adversarial threat report, and among the highlights is the discovery of two cyber-espionage clusters connected to hacker groups known as 'Bitter APT' and APT36 (aka 'Transparent Tribe') using new Android malware. [...] | Malware Threat | APT 36 | |
|
2022-08-04 12:22:22 | New Linux malware brute-forces SSH servers to breach networks (lien direct) | A new botnet called 'RapperBot' has emerged in the wild since mid-June 2022, focusing on brute-forcing its way into Linux SSH servers and then establishing persistence. [...] | Malware | ||
|
2022-08-04 11:55:29 | Cybersecurity agencies reveal last year\'s top malware strains (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a list of the topmost detected malware strains last year in a joint advisory with the Australian Cyber Security Centre (ACSC). [...] | Malware | ||
|
2022-08-03 18:35:14 | Russian organizations attacked with new Woody RAT malware (lien direct) | Unknown attackers target Russian entities with newly discovered malware that allows them to control and steal information from compromised devices remotely. [...] | Malware | ||
|
2022-08-03 17:43:59 | Cloned Atomic Wallet website is pushing Mars Stealer malware (lien direct) | A fake website impersonating the official portal for the Atomic wallet, a popular decentralized wallet that also operates as a cryptocurrency exchange portal, is, in reality, distributing copies of the Mars Stealer information-stealing malware. [...] | Malware | ||
|
2022-08-03 16:50:05 | Spanish research agency still recovering after ransomware attack (lien direct) | The Spanish National Research Council (CSIC) last month was hit by a ransomware attack that is now attributed to Russian hackers. [...] | Ransomware | ||
|
2022-08-03 16:35:51 | Windows 11 Smart App Control blocks files used to push malware (lien direct) | Smart App Control, a Windows 11 security feature that blocks threats at the process level, now comes with support for blocking several new file types threat actors have recently adopted to infect targets with malware in phishing attacks. [...] | Malware Threat | ||
|
2022-08-03 11:51:05 | Ukraine takes down 1,000,000 bots used for disinformation (lien direct) | The Ukrainian cyber police (SSU) has shut down a massive bot farm of 1,000,000 bots used to spread disinformation on social networks. [...] | |||
|
2022-08-03 10:04:08 | Minimizing the security risks of Single Sign On implementations (lien direct) | While the use of Single Sign On resulted in some organizations adopting stronger password policies, it also created additional security risks. Learn what these risks are and how you can make SSO more secure. [...] | |||
|
2022-08-03 07:26:27 | Thousands of Solana wallets drained in attack using unknown exploit (lien direct) | An overnight attack on the Solana blockchain platform drained thousands of software wallets of cryptocurrency worth millions of U.S. dollars. [...] | |||
|
2022-08-03 05:11:19 | 35,000 code repos not hacked-but clones flood GitHub to serve malware (lien direct) | Thousands of GitHub repositories were forked (cloned) and altered to include malware, a software engineer discovered. [...] | Malware | ★★★★ | |
|
2022-08-02 16:01:04 | Chinese hackers use new Cobalt Strike-like attack framework (lien direct) | Researchers have observed a new post-exploitation attack framework used in the wild, named Manjusaka, which can be deployed as an alternative to the widely abused Cobalt Strike toolset or parallel to it for redundancy. [...] | ★★ | ||
|
2022-08-02 15:13:40 | Microsoft Defender now better at blocking ransomware on Windows 11 (lien direct) | Microsoft has released new Windows 11 builds to the Beta Channel with improved Microsoft Defender for Endpoint ransomware attack blocking capabilities. [...] | Ransomware | ||
|
2022-08-02 13:38:57 | Semiconductor manufacturer Semikron hit by LV ransomware attack (lien direct) | German power electronics manufacturer Semikron has disclosed that it was hit by a ransomware attack that partially encrypted the company's network. [...] | Ransomware | ||
|
2022-08-02 12:00:00 | Wolf in sheep\'s clothing: how malware tricks users and antivirus (lien direct) | One of the primary methods used by malware distributors to infect devices is by deceiving people into downloading and running malicious files, and to achieve this deception, malware authors are using a variety of tricks. [...] | Malware | ★★★★★ | |
|
2022-08-02 09:00:00 | Microsoft announces new external attack surface audit tool (lien direct) | Microsoft has announced a new security product allowing security teams to spot Internet-exposed resources in their organization's environment that attackers could use to breach their networks. [...] | Tool | ||
|
2022-08-01 18:33:54 | Over 3,200 apps leak Twitter API keys, some allowing account hijacks (lien direct) | Cybersecurity researchers have uncovered a set of 3,207 mobile apps that are exposing Twitter API keys to the public, potentially enabling a threat actor to take over users' Twitter accounts that are associated with the app. [...] | Threat | ||
|
2022-08-01 10:20:27 | BlackCat ransomware claims attack on European gas pipeline (lien direct) | The ransomware group known as ALPHV (aka BlackCat) has assumed over the weekend responsibility for the cyberattack that hit Creos Luxembourg last week, a natural gas pipeline and electricity network operator in the central European country. [...] | Ransomware | ||
|
2022-07-30 11:14:16 | Facebook ads push Android adware with 7 million installs on Google Play (lien direct) | Several adware apps promoted aggressively on Facebook as system cleaners and optimizers for Android devices are counting millions of installations on Google Play store. [...] | |||
|
2022-07-29 07:31:00 | Microsoft links Raspberry Robin malware to Evil Corp attacks (lien direct) | Microsoft has discovered that an access broker it tracks as DEV-0206 uses the Raspberry Robin Windows worm to deploy a malware downloader on networks where it also found evidence of malicious activity matching Evil Corp tactics. [...] | Malware | ||
|
2022-07-28 17:35:48 | Ransom payments fall as fewer victims choose to pay hackers (lien direct) | Ransomware statistics from the second quarter of the year show that the ransoms paid to extortionists have dropped in value, a trend that continues since the last quarter of 2021. [...] | Ransomware | ||
|
2022-07-28 10:19:52 | Akamai blocked largest DDoS in Europe against one of its customers (lien direct) | The cybersecurity company and cloud service provider Akamai reports having mitigated the largest DDoS (distributed denial of service) attack ever to have been recorded in Europe. [...] | |||
|
2022-07-28 10:13:54 | Malicious npm packages steal Discord users\' payment card info (lien direct) | Multiple npm packages are being used in an ongoing malicious campaign to infect Discord users with malware that steals their payment card information. [...] | Malware | ||
|
2022-07-28 05:00:00 | As Microsoft blocks Office macros, hackers find new attack vectors (lien direct) | Hackers who normally distributed malware via phishing attachments with malicious macros gradually changed tactics after Microsoft Office began blocking them by default, switching to new file types such as ISO, RAR, and Windows Shortcut (LNK) attachments. [...] | Malware | ||
|
2022-07-27 11:09:43 | Microsoft: Windows, Adobe zero-days used to deploy Subzero malware (lien direct) | Microsoft has linked a threat group it tracks as Knotweed to a cyber mercenary outfit (aka private-sector offensive actor) named DSIRF, targeting European and Central American entities using a malware toolset dubbed Subzero. [...] | Malware Threat | ||
|
2022-07-27 10:08:48 | DDoS Attack Trends in 2022: Ultrashort, Powerful, Multivector Attacks (lien direct) | The political situation in Europe and the rest of the world has degraded dramatically in 2022. This has affected the nature, intensity, and geography of DDoS attacks, which have become actively used for political purposes. Find out more in this summary of G-Core Lab's latest DDoS Trends report. [...] | |||
|
2022-07-26 13:21:59 | New Android malware apps installed 10 million times from Google Play (lien direct) | A new batch of malicious Android apps filled with adware and malware was found on the Google Play Store that have been installed close to 10 million times on mobile devices. [...] | Malware | ||
|
2022-07-26 09:38:02 | No More Ransom helps millions of ransomware victims in 6 years (lien direct) | The No More Ransom project celebrates its sixth anniversary today after helping millions of ransomware victims recover their files for free. [...] | Ransomware | ||
|
2022-07-26 07:17:37 | LockBit claims ransomware attack on Italian tax agency (lien direct) | Italian authorities are investigating claims made by the LockBit ransomware gang that they breached the network of the Italian Internal Revenue Service (L'Agenzia delle Entrate). [...] | Ransomware | ||
|
2022-07-25 21:37:04 | CosmicStrand UEFI malware found in Gigabyte, ASUS motherboards (lien direct) | Chinese-speaking hackers have been using since at least 2016 malware that lies virtually undetected in the firmware images for some motherboards, one of the most persistent threats commonly known as a UEFI rootkit. [...] | Malware | ||
|
2022-07-25 14:30:47 | Source code for Rust-based info-stealer released on hacker forums (lien direct) | A malware author released the source code of their info-stealer for free on hacking forums earlier this month, and security analysts already report observing several samples being deployed in the wild. [...] | Malware | ★★★★★ | |
|
2022-07-25 12:16:04 | Hackers exploited PrestaShop zero-day to breach online stores (lien direct) | Hackers are targeting websites using the PrestaShop platform, leveraging a previously unknown vulnerability chain to perform code execution and potentially steal customers' payment information. [...] | Vulnerability |
To see everything:
Our RSS (filtrered)
