What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-05-25 07:21:30 | BPFDoor malware uses Solaris vulnerability to get root privileges (lien direct) | New research into the inner workings of the stealthy BPFdoor malware for Linux and Solaris reveals that the threat actor behind it leveraged an old vulnerability to achieve persistence on targeted systems. [...] | Malware Vulnerability Threat | ||
|
2022-05-24 18:42:48 | Windows 11 KB5014019 update fixes app crashes, slow copying (lien direct) | Microsoft has released optional cumulative update previews for Windows 11, Windows 10 version 1809, and Windows Server 2022, with fixes for Direct3D issues impacting client and server systems. [...] | |||
|
2022-05-24 18:07:00 | DuckDuckGo browser allows Microsoft trackers due to search agreement (lien direct) | The privacy-focused DuckDuckGo browser purposely allows Microsoft trackers on third-party sites due to an agreement in their syndicated search content contract between the two companies. [...] | |||
|
2022-05-24 17:31:59 | Mozilla fixes Firefox, Thunderbird zero-days exploited at Pwn2Own (lien direct) | Mozilla has released security updates for multiple products to address zero-day vulnerabilities exploited during the Pwn2Own Vancouver 2022 hacking contest. [...] | |||
|
2022-05-24 15:27:50 | Hackers target Russian govt with fake Windows updates pushing RATs (lien direct) | Hackers are targeting Russian government agencies with phishing emails that pretend to be Windows security updates and other lures to install remote access malware. [...] | |||
|
2022-05-24 14:44:22 | Microsoft: Credit card stealers are getting much stealthier (lien direct) | Microsoft's security researchers have observed a worrying trend in credit card skimming, where threat actors employ more advanced techniques to hide their malicious info-stealing code. [...] | Threat | ||
|
2022-05-24 13:50:55 | (Déjà vu) CISA adds 41 vulnerabilities to list of bugs used in cyberattacks (lien direct) | The Cybersecurity & Infrastructure Security Agency (CISA) has added 41 vulnerabilities to its catalog of known exploited flaws over the past two days, including flaws for the Android kernel and Cisco IOS XR. [...] | |||
|
2022-05-24 13:34:32 | US Senate: Govt\'s ransomware fight hindered by limited reporting (lien direct) | A report published today by U.S. Senator Gary Peters, Chairman of the Senate Homeland Security and Governmental Affairs Committee, says law enforcement and regulatory agencies lack insight into ransomware attacks to fight against them effectively. [...] | Ransomware | ||
|
2022-05-24 12:45:41 | Screencastify Chrome extension flaws allow webcam hijacks (lien direct) | The popular Screencastify Chrome extension has fixed a vulnerability that allowed malicious sites to hijack users' webcams and steal recorded videos. However, security flaws still exist that could be exploited by unscrupulous insiders. [...] | Vulnerability | ||
|
2022-05-24 12:09:07 | Trend Micro fixes bug Chinese hackers exploited for espionage (lien direct) | Trend Micro says it patched a DLL hijacking flaw in Trend Micro Security used by a Chinese threat group to side-load malicious DLLs and deploy malware. [...] | Threat | ||
|
2022-05-24 10:16:24 | Researchers to release exploit for new VMware auth bypass, patch now (lien direct) | Proof-of-concept exploit code is about to be published for a vulnerability that allows administrative access without authentication in several VMware products. [...] | Vulnerability | ||
|
2022-05-24 07:42:58 | (Déjà vu) Popular Python and PHP libraries hijacked to steal AWS keys (lien direct) | PyPI module 'ctx' that gets downloaded over 20,000 times a week has been compromised in a software supply chain attack with malicious versions stealing the developer's environment variables. Additionally, versions of a 'phpass' fork published to the PHP/Composer package repository Packagist had been altered to steal secrets. [...] | |||
|
2022-05-24 07:42:58 | Popular PyPI and PHP libraries hijacked to steal AWS keys (lien direct) | PyPI module 'ctx' that gets downloaded over 20,000 times a week has been compromised in a software supply chain attack with malicious versions stealing the developer's environment variables. Additionally, versions of a 'phpass' fork published to the PHP/Composer package repository Packagist had been altered to steal secrets. [...] | |||
|
2022-05-23 18:53:52 | (Déjà vu) General Motors credential stuffing attack exposes car owners info (lien direct) | US car manufacturer GM disclosed that it was the victim of a credential stuffing attack last month that exposed customer information and allowed hackers to redeem rewards points for gift cards. [...] | |||
|
2022-05-23 18:53:52 | GM credential stuffing attack exposed car owners\' personal info (lien direct) | US car manufacturer GM disclosed that it was the victim of a credential stuffing attack last month that exposed customer information and allowed hackers to redeem rewards points for gift cards. [...] | |||
|
2022-05-23 16:12:01 | Fake Windows exploits target infosec community with Cobalt Strike (lien direct) | A threat actor targeted security researchers with fake Windows proof-of-concept exploits that infected devices with the Cobalt Strike backdoor. [...] | Threat | ||
|
2022-05-23 14:30:55 | Photos of abused victims used in new ID verification scam (lien direct) | Scammers are now leveraging dating apps like Tinder and Grindr to pose themselves as former victims of physical abuse to gain your trust and sympathy and sell you "ID verification" services. BleepingComputer came across multiple instances of users on online dating apps being approached by these catfishing profiles. [...] | |||
|
2022-05-23 13:02:01 | Hackers can hack your online accounts before you even register them (lien direct) | Security researchers have revealed that hackers can hijack your online accounts before you even register them by exploiting flaws that have been already been fixed on popular websites, including Instagram, LinkedIn, Zoom, WordPress, and Dropbox. [...] | Hack | ||
|
2022-05-23 12:26:19 | New RansomHouse group sets up extortion market, adds first victims (lien direct) | Yet another data-extortion cybercrime operation has appeared on the darknet named 'RansomHouse' where threat actors publish evidence of stolen files and leak data of organizations that refuse to make a ransom payment. [...] | Threat | ||
|
2022-05-23 09:14:43 | Russian hackers perform reconnaissance against Austria, Estonia (lien direct) | In a new reconnaissance campaign, the Russian state-sponsored hacking group Turla was observed targeting the Austrian Economic Chamber, a NATO platform, and the Baltic Defense College. [...] | |||
|
2022-05-22 14:22:09 | (Déjà vu) Elon Musk deep fakes promote new BitVex cryptocurrency scam (lien direct) | Cryptocurrency scammers are using deep fake videos of Elon Musk and other prominent cryptocurrency advocates to promote a BitVex trading platform scam that steals deposited currency. [...] | |||
|
2022-05-22 14:22:09 | Elon Musk deep fakes promote new cryptocurrency scam (lien direct) | Cryptocurrency scammers are using deep fake videos of Elon Musk and other prominent cryptocurrency advocates to promote a BitVex trading platform scam that steals deposited currency. [...] | |||
|
2022-05-22 12:15:10 | PDF smuggles Microsoft Word doc to drop Snake Keylogger malware (lien direct) | Threat analysts have discovered a recent malware distribution campaign using PDF attachments to smuggle malicious Word documents that infect users with malware. [...] | Malware Threat | ||
|
2022-05-22 11:07:14 | Microsoft tests new Windows 11 Desktop search that only works with Edge (lien direct) | Microsoft is testing a new feature in the latest Windows 11 preview build that displays an Internet search box directly on the desktop. The problem is that it does not honor your default browser and only uses Bing and Microsoft Edge instead. [...] | |||
|
2022-05-22 10:00:00 | Google: Predator spyware infected Android devices using zero-days (lien direct) | Google's Threat Analysis Group (TAG) says that state-backed threat actors used five zero-day vulnerabilities to install Predator spyware developed by commercial surveillance developer Cytrox. [...] | Threat | ||
|
2022-05-21 13:32:30 | Ransomware attack exposes data of 500,000 Chicago students (lien direct) | The Chicago Public Schools has suffered a massive data breach that exposed the data of almost 500,000 students and 60,000 employee after their vendor, Battelle for Kids, suffered a ransomware attack in December. [...] | Ransomware Data Breach | ||
|
2022-05-21 11:16:08 | Malicious PyPI package opens backdoors on Windows, Linux, and Macs (lien direct) | Yet another malicious Python package has been spotted in the PyPI registry performing supply chain attacks to drop Cobalt Strike beacons and backdoors on Windows, Linux, and macOS systems. [...] | |||
|
2022-05-21 10:00:00 | Windows 11 hacked three more times on last day of Pwn2Own contest (lien direct) | On the third and last day of the 2022 Pwn2Own Vancouver hacking contest, security researchers successfully hacked Microsoft's Windows 11 operating system three more times using zero-day exploits. [...] | |||
|
2022-05-20 20:08:20 | The Week in Ransomware - May 20th 2022 - Another one bites the dust (lien direct) | Ransomware attacks continue to slow down, likely due to the invasion of Ukraine, instability in the region, and subsequent worldwide sanctions against Russia. [...] | Ransomware | ||
|
2022-05-20 16:39:13 | Cisco urges admins to patch IOS XR zero-day exploited in attacks (lien direct) | Cisco has addressed a zero-day vulnerability in its IOS XR router software that allowed unauthenticated attackers to remotely gain access to Redis instances running in NOSi Docker containers. [...] | Vulnerability | ||
|
2022-05-20 14:20:26 | Microsoft disables telemetry in Windows 11 Subsystem for Android by default (lien direct) | Microsoft has updated the Windows Subsystem for Android in Windows 11 to make telemetry collection optional and announced an upgrade to Android 12.1. [...] | |||
|
2022-05-20 14:02:19 | Backdoor baked into premium school management plugin for WordPress (lien direct) | Security researchers have discovered a backdoor in a premium WordPress plugin built as a complete management solution for schools. The malicious code enables a threat actor to execute PHP code without authenticating. [...] | Threat | ||
|
2022-05-20 11:21:28 | Emergency Windows 10 updates fix Microsoft Store app issues (lien direct) | Microsoft has released out-of-band (OOB) updates on Thursday evening to address a newly acknowledged issue impacting Microsoft Store apps. [...] | |||
|
2022-05-20 08:10:00 | Windows 11 hacked again at Pwn2Own, Telsa Model 3 also falls (lien direct) | During the second day of the Pwn2Own Vancouver 2022 hacking competition, contestants hacked Microsoft's Windows 11 OS again and demoed zero-days in Tesla Model 3's infotainment system. [...] | |||
|
2022-05-20 07:53:39 | Russian Sberbank says it\'s facing massive waves of DDoS attacks (lien direct) | Sberbank's vice president and director of cybersecurity, Sergei Lebed, has told participants of the Positive Hack Days forum that the company is going through a period of unprecedented targeting by hackers. [...] | Hack | ||
|
2022-05-20 06:35:47 | Canada bans Huawei and ZTE from 5G networks over security concerns (lien direct) | The Government of Canada announced its intention to ban the use of Huawei and ZTE telecommunications equipment and services across the country's 5G and 4G networks. [...] | ★★ | ||
|
2022-05-19 19:32:59 | Conti ransomware shuts down operation, rebrands into smaller units (lien direct) | The notorious Conti ransomware gang has officially shut down their operation, with infrastructure taken offline and team leaders told that the brand is no more. [...] | Ransomware Guideline | ||
|
2022-05-19 19:08:58 | Netgear fixes bad Orbi firmware update that locked admin console (lien direct) | Netgear is pushing out fixes for a bad Orbi firmware update released earlier this month that prevents users from accessing the device's admin console. [...] | |||
|
2022-05-19 17:41:47 | Microsoft emergency updates fix Windows AD authentication issues (lien direct) | Microsoft has released emergency out-of-band (OOB) updates to address Active Directory (AD) authentication issues after installing Windows Updates issued during the May 2022 Patch Tuesday on domain controllers. [...] | |||
|
2022-05-19 14:26:06 | Media giant Nikkei\'s Asian unit hit by ransomware attack (lien direct) | Publishing giant Nikkei disclosed that the group's headquarters in Singapore was hit by a ransomware attack almost one week ago, on May 13th. [...] | Ransomware | ||
|
2022-05-19 13:45:00 | Microsoft detects massive surge in Linux XorDDoS malware activity (lien direct) | A stealthy and modular malware used to hack into Linux devices and build a DDoS botnet has seen a massive 254% increase in activity during the last six months, as Microsoft revealed today. [...] | Malware Hack | ★★★★★ | |
|
2022-05-19 13:24:57 | U.S. DOJ will no longer prosecute ethical hackers under CFAA (lien direct) | The U.S. Department of Justice (DOJ) has announced a revision of its policy on how federal prosecutors should charge violations of the Computer Fraud and Abuse Act (CFAA), carving out "good-fath" security research from being prosecuted. [...] | ★★★★ | ||
|
2022-05-19 11:24:04 | Lazarus hackers target VMware servers with Log4Shell exploits (lien direct) | The North Korean hacking group known as Lazarus is exploiting the Log4J remote code execution vulnerability to inject backdoors that fetch information-stealing payloads on VMware Horizon servers. [...] | Vulnerability | APT 38 | |
|
2022-05-19 09:00:00 | Phishing websites now use chatbots to steal your credentials (lien direct) | Threat analysts have observed a new trend in the phishing space which is to incorporate interactive chatbots on sites that guide visitors through the process of losing their sensitive data. [...] | Threat | ★★★ | |
|
2022-05-19 07:39:11 | Microsoft Teams, Windows 11 hacked on first day of Pwn2Own (lien direct) | During the first day of Pwn2Own Vancouver 2022, contestants won $800,000 after successfully exploiting 16 zero-day bugs to hack multiple products, including Microsoft's Windows 11 operating system and the Teams communication platform. [...] | |||
|
2022-05-19 06:38:26 | QNAP alerts NAS customers of new DeadBolt ransomware attacks (lien direct) | Taiwan-based network-attached storage (NAS) maker QNAP warned customers on Thursday to secure their devices against attacks pushing DeadBolt ransomware payloads. [...] | Ransomware | ||
|
2022-05-19 05:36:56 | Ransomware gangs rely more on weaponizing vulnerabilities (lien direct) | Security researchers are warning that external remote access services continue to be the main vector for ransomware gangs to breach company networks. [...] | Ransomware | ||
|
2022-05-18 18:27:02 | Microsoft releases first ISO image for new Windows 11 Dev builds (lien direct) | Microsoft has released the first ISO image for the new Windows 11 Preview builds in the Dev channel, allowing Windows Insiders to perform clean installs of the operating system. [...] | |||
|
2022-05-18 17:36:18 | Spanish police dismantle phishing gang that emptied bank accounts (lien direct) | The Spanish police have announced the arrest of 13 people and the launch of investigations on another 7 for their participation in a phishing ring that defrauded at least 146 people. [...] | |||
|
2022-05-18 17:12:57 | Critical Jupiter WordPress plugin flaws let hackers take over sites (lien direct) | WordPress security analysts have discovered a set of vulnerabilities impacting the Jupiter Theme and JupiterX Core plugins for WordPress, one of which is a critical privilege escalation flaw. [...] |
To see everything:
Our RSS (filtrered)
