What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-03-15 17:45:51 | Lookout Acquires CipherCloud to Deliver Security from Endpoint to Cloud (lien direct) | Mobile cybersecurity specialists, Lookout, has acquired CipherCloud, a cloud-native security company that operates in the emerging Secure Access Service Edge (SASE) market. Through this acquisition, which combines the Lookout Mobile Endpoint Security with the CipherCloud SASE technologies, Lookout believes it is in the best position to provide industry's first end-to-end platform that secures an organisation's entire data path from endpoint to cloud. […] | |||
|
2021-03-15 16:19:35 | Arrest warrants out for Canadians behind ECC cryptophone networks (lien direct) | The US issued arrest warrants on the 12th March 2021, for Jean-François Eap, Sky Global’s Canadian Chief Executive Officer, and Thomas Herman, former phone distributer. The two executives have been indicted for racketeering and knowingly facilitating the import and distribution of illegal drugs, while running the largest encrypted phone service. The warrants came after Belgian […] | |||
|
2021-03-15 15:46:29 | Blue-tooth Virus to improve COVID-10 tracking (lien direct) | Researchers from the University of Queensland, the University of Melbourne, and the Massachusetts Institute of Technology (MIT) have developed a virtual “virus” that could be used to more accurately assess the spread of COVID-19. The joint project could also reduce the lag between the time people catch the virus and get diagnosed. The now dubbed […] | |||
|
2021-03-15 11:51:26 | Twitter users suspended due to “Memphis” bug (lien direct) | A Twitter bug was banning users who tweeted the word “Memphis” recently. Users flagged the bug to the social media platform after dozens of account were suspended. Since the incidents took place Twitter has resolved the bug but has not issued any comments. The French football club, Olympique Lyonnais, were banned due to the bug […] | |||
|
2021-03-12 16:30:41 | (Déjà vu) West Ham supporters have data leaked by club website (lien direct) | English Premier League football club, West Ham, has suffered an accidental data breach with personal information of supporters leaked via the clubs official website. Having first been reported by Forbes, error messages were being displayed on the West Ham’s website before showcasing the profile information of supporters to other fans who were attempting to log […] | Data Breach | ||
|
2021-03-12 14:39:39 | Internet providers aid Home Office in web-spying (lien direct) | A trial of new powers granted by the controversial Investigatory Powers Act of 2016 has been going on for months, which involves the internet providers creating internet connection records (ICRs). These can be used to show which websites individual people have visited and when. This has caused digital rights campaigners to voice their concerns: “We […] | |||
|
2021-03-12 14:11:47 | Fastway Couriers suffers data breach (lien direct) | An investigation has been opened into the data breach at Fastway Couriers, during which hackers stole the personal details of thousands of Irish online shoppers. The company has confirmed that the names, addresses, email accounts and phone numbers of 446,143 customers have been accessed. Fortunately, no financial information or other personal data was accessed or […] | Data Breach | ||
|
2021-03-12 12:02:11 | Molson Coors hit by suspected ransomware attack (lien direct) | Molson Coors, a beverage giant responsible for brands such as Coors, Miller Lite and Foster's, has released details for what seems to be a ransomware attack. The company filled the attack yesterday with the Securities and Exchange Commission (SEC), claiming that it has experienced a “systems outage caused by a cybersecurity incident”. In the report, […] | Ransomware | ||
|
2021-03-12 11:34:55 | Netflix to trial restrictions on password sharing (lien direct) | Netflix has announced that it will be trialling new restrictions for password sharing on its streaming platform. Streaming services, such as including HBO Go, Amazon Prime, Netflix and Disney+, all allow users to create multiple profiles which can be used across a number of devices. However, it is specified in their terms and conditions that […] | |||
|
2021-03-11 17:36:46 | Developing a Strong Security Posture in the Era of Remote Work (lien direct) | Many of us have had to adopt remote working for a large proportion of the past year. But remote working is about more than saving yourself time on the morning commute and navigating Zoom etiquette: The security implications for thousands of businesses sending their employees home to work for a year have been massive. In […] | |||
|
2021-03-11 15:04:59 | Norway\'s Stortingnet becomes newest victim of Microsoft Exchange malware (lien direct) | Norway’s Parliament becomes the newest organisation to fall victim to the vulnerabilities in Microsoft’s Exchange Server. A press release was issued, confirming that the great assembly Stortingnet had been breached by ‘backdoor-installing miscreants’. Marianne Andreassen, the director at Stortingnet stated: “We know that data has been extracted, but we do not yet have a full […] | Malware | ||
|
2021-03-11 12:39:25 | Three UK universities hit by cyber-attacks (lien direct) | Three UK universities have been hit by a series of cyberattacks this week. The University of Central Lancashire in Preston, the University of the Highlands and Islands in Scotland, and Queen’s University in Belfast were all hit by separate attacks. On Sunday the University of Central Lancashire (UCLAN) experienced an incident that left remote-learning students […] | |||
|
2021-03-11 12:29:35 | Spanish employment agency hit by major cyberattack (lien direct) | The Spanish employment agency has been targeted by a ransomware attack which has resulted in hundreds of offices being knocked offline. The SEPE published a note on their website which said, “currently, work is being done with the objective of restoring priority services as soon as possible, among which is the portal of the State […] | Ransomware | ||
|
2021-03-11 11:36:11 | AT&T Cybersecurity Launches Managed SASE Solution with Fortinet (lien direct) | AT&T has announced it is expanding its portfolio of Managed Security Services through its alliance with Fortinet to make Secure Access Service Edge (SASE) a reality for enterprises. AT&T SASE with Fortinet is the first, global managed SASE solution at scale that unifies software-defined wide-area network (SD-WAN) with essential network security functions of the SASE […] | ★★★★ | ||
|
2021-03-10 17:19:57 | Leveraging Automation to Secure Your Remote & Hybrid Workforce (lien direct) | Adopting end-to-end security automation is a top priority for many organisations, and the rapid shift to remote work due to the COVID-19 pandemic has forced many businesses to accelerate their Digital Transformation strategy. Faced with the challenge of managing identities and securing access to data and applications from a growing number of endpoints, IT and […] | |||
|
2021-03-10 17:02:15 | The risks of social selling (lien direct) | Facebook recently announced the introduction of carts to WhatsApp to streamline online purchases. While this move will reduce some online friction and make the purchasing process easier for customers, it can also introduce many security and fraud risks. Cybercriminals are always looking for new ways to target unsuspecting customers with social engineering scams through various […] | ★★★★ | ||
|
2021-03-10 13:19:10 | Adobe releases security patches for a number of their apps (lien direct) | Adobe has just released patches for critical security problems which were affecting their Connect, Framemaker and Creative Cloud applications. Following Adobe’s monthly security update the vulnerability, tracked as CVE-2021-21056, has been patched in the document processor Framemaker. Three vulnerabilities in Adobe’s Creative Cloud were also patched – CVE-2021-21068; CVE-2021-21078; and CVE-2021-21069 following the update. Another […] | |||
|
2021-03-10 11:06:05 | Researchers discover flaws in Apple\'s offline \'find my device\' feature (lien direct) | Apple’s OF (Offline Finding) technology uses online finder devices running the ‘Find My’ app to detect the location of missing offline devices (for instance iPads using Bluetooth and AirTags). The security and privacy of Apple’s Bluetooth location-tracking system earned praise from researchers who discovered two flaws in the technology. Computer scientists from the Technische Universität […] | |||
|
2021-03-10 10:46:06 | Russia threatens to block Twitter over banned content (lien direct) | On Wednesday Russia threatened to block the U.S. social media platform if it did not comply with its deletion demands. This came after Twitter’s speed was already reduced in retaliation for its alleged failure to remove banned content. Russian authorities had already accused Twitter of failing to delete posts that were supposedly urging children to […] | |||
|
2021-03-09 12:29:43 | GitHub bug invalidated users\' sessions and logged them out of their accounts (lien direct) | Yesterday, GitHub users were automatically logged out of their accounts after their sessions were invalidated in order to protect accounts from a potentially dangerous security vulnerability. Last week GitHub received reports that they were being targetted by suspicious behaviour from an external party. This suspicious behaviour related to a rare race condition vulnerability. The vulnerability was […] | Vulnerability | ||
|
2021-03-09 12:04:17 | QNAP storage devices hijacked by UnityMiner cryptocurrency malware (lien direct) | Early last week researchers at 360Netlab received reports that QNAP NAS devices were being targetted by a new form of attacks. QNAP is a Taiwanese manufacturer of hardware, including network-attached storage (NAS) devices. Internet of Things (IoT) and NAS devices are usually hijacked using credential theft or brute-force attacks. However, with this wave of attacks, […] | Malware | ||
|
2021-03-09 11:57:58 | Sarbloh ransomware supports Indian Farmers (lien direct) | Last year a new bill was passed in India, called the ‘Indian agriculture acts of 2020’. Also known as the Farm Bills, these new laws have caused social discontent among farmers, who believe these will harm their livelihoods and make it more difficult to generate revenue. The news laws remove restrictions on how farmers can […] | Ransomware | ||
|
2021-03-09 11:25:03 | Microsoft Exchange Server Hack (lien direct) | Hafnium, a Chinese-based hacker group has doubled its hack count of Microsoft’s Exchange Servers. It is estimated that the group breached nearly 60,000 Servers globally, primarily targeting organisations and their emails. According to the BBC, the European Banking Authority has admitted to being one of the victims. Microsoft was allegedly aware of the vulnerabilities in […] | Hack | ||
|
2021-03-08 14:40:11 | International Women\'s Day: the road towards equality is still long for the cybersecurity industry (lien direct) | A new study has revealed that women hold only 10 percent of board positions and 16 percent of management positions within the world's leading cybersecurity companies. The study was carried out by cybersecurity specialists Eskenzi PR and Marketing, and looked at the websites of 138 companies from the Cybersecurity Ventures Hot 150 to understand the […] | Guideline | ||
|
2021-03-04 12:09:47 | Fraud attempts skyrocketed in 2020 according to latest Financial Crime Report from Feedzai (lien direct) | Feedzai, a cloud-based risk management platform, has announced its Financial Crime Report Q1, 2021. Feedzai's data from financial transactions across the world shows a stark difference in consumer behaviour and financial crime in the Asia-Pacific (APAC) region as compared to Europe (EU) and North America (NA). A clear image appears – a hyper-digital world where east […] | ★★★ | ||
|
2021-03-03 13:00:13 | Identity theft: US Congressional Medal of Honor (lien direct) | The identities of a third of the living holders of the US government’s highest and most prestigious military decoration were stolen and used to purchase goods from military exchanges. The United States Secret Service “is currently investigating a matter in which the personally identifiable information (PII) of 22 of 75 living Congressional Medal of Honor […] | ★★★★ | ||
|
2021-03-02 11:41:05 | Learning from past hacking attacks (lien direct) | A hacker venturing to poison the Florida water system by tampering with the chemical levels. Fortunately nobody was harmed by the Oldsmar water treatment facility hack, due to the changes being spotted in time. The attempt, however, is a reminder to all organisations that their networks must be sufficiently secured against cyberattacks. This is especially […] | |||
|
2021-03-02 11:23:37 | Twitter tightens rules on the spread of misinformation (lien direct) | On Monday, Twitter announced its plan to introduce a new strike system to halt the spread of misinformation on the platform. The social media platform will start labelling tweets that “may contain misleading information about COVID-19 vaccines” and remove any that violate Twitter guidelines. The company has already removed thousands of tweets and examined over […] | Guideline | ||
|
2021-03-01 17:02:53 | “GabLeaks”: Far-Right platform Gab is hacked, with posts leaked online (lien direct) | Distributed Denial of Secrets announced that it will be revealing a collection of over 40 million posts from the far-right platform Gab. The group are calling the data reveal “GabLeaks”. According to DDoSecrets a hacktivist who identifies as “JaXpArO and My Little Anonymous Revival Project” collected Gab’s data from the platforms backend databases with hopes […] | ★★★★ | ||
|
2021-03-01 16:48:17 | Go is becoming the language of choice for malware developers (lien direct) | The Go programming language is growing in popularity after being adopted by cybercriminals to build and design malware. The amount of malware strains coded using Go has increased by almost 2,000% since 2017. These findings have confirmed the trend that malware designers are moving away from C and C++ and towards news languages such as Go. […] | Malware | ||
|
2021-03-01 11:39:56 | AOL Phishing scam threatens to close account (lien direct) | Attackers have been targeting AOL users in an attempt to steal login name and password with a phishing link. Many older people are still using AOL, because they find it too complicated to switch to a different email service such as Gmail or Outlook. This makes them prime targets for phishing scams, especially as AOL’s […] | |||
|
2021-03-01 11:08:05 | Chinese Hackers blamed for Mumbai Blackout (lien direct) | A “technical failure” caused nearly 5 million homes in Mumbai to suffer power outages on the 13th of October 2020. Suburban train services and stock market operations were also affected, interrupting normal operations for several hours. Now, Recorded Future, a US-based cybersecurity company blames Beijing for the citywide outage. The Recorded Future report states: “10 […] | |||
|
2021-02-26 16:04:59 | Npower shuts down app after hackers steal customer bank info (lien direct) | Major UK energy supplier, Npower, has had to scrap its app after cybercriminals stole sensitive customer information, including financial data. Having first been reported by MoneySavingExpert.com, Npower has stated customer information was exploited after login details were taken from other websites. This common cyberattack tactic – known as credential stuffing – allowed the hackers to […] | |||
|
2021-02-26 11:56:40 | Edgescan partners with BSI to deliver safe and secure client solutions (lien direct) | Edgescan, providers of the award winning Fullstack Vulnerability Management™ range of services, today announces its partnership with BSI, the business improvement company. The partnership will enable BSI clients to access Edgescan's Continuous Vulnerability Management, API Security Assessments, Penetration Testing as a Service (PTaaS) and Application Testing services, which can be tailored to meet their customer's […] | Vulnerability | ||
|
2021-02-26 11:07:04 | Microsoft failed to fix known problems that could have prevented SolarWinds hack (lien direct) | According to the office of U.S. Senator Ron Wyden and a number of American security experts, Microsoft could have prevented some of the damage caused by the SolarWinds hack had they fixed known problems in the cloud software that facilitated the hack. As these issues were not fixed it resulted in at least nine federal […] | Hack | ★★★ | |
|
2021-02-26 10:53:25 | Dutch Research Council experience ransomware attack (lien direct) | The Dutch Research Council (NWO) has taken its servers offline after it was victim to a cyberattack by the DoppelPaymer ransomware gang. The Dutch Research Council is the main funding research body for institutes in the Netherlands, with investments of around one billion euros per year. They announced in early February that their network had […] | Ransomware | ||
|
2021-02-26 10:41:53 | Energy provider NPower hit by cyberattack (lien direct) | Npower, an energy provider owned by E.ON, one of the UK’s biggest energy providers, removed its app after it experienced a cyberattack in which users’ login data was stolen and used to access customer accounts. Although the energy provider has not yet revealed how many customers were affected by the breach, it has been speculated […] | |||
|
2021-02-26 10:31:15 | Hackers break into an Oxford University Covid-19 laboratory (lien direct) | An Oxford University lab that has been researching the Covid-19 pandemic has been hacked. Forbes reported that Oxford University confirmed that an incident has been detected at the Division of Structural Biology. Since the attack was confirmed the university has contacted the National Cyber Security Center (NCSC) who will now investigate the attack. A representative […] | |||
|
2021-02-25 18:25:39 | Research shows that a lack of attention is being paid to patching vulnerabilities and something has to be done about it (lien direct) | Edgescan, a full-stack vulnerability management service, has just released their Vulnerability Stat Report for 2021, and it's confirmed that 2020 really was as bad as we all thought it was. The stats report reveals a number of alarming statistics and trends from 2020, taking a deep-dive into vulnerability metrics from known vulnerabilities (CVE), Malware, Ransomware […] | Ransomware Vulnerability Patching | ||
|
2021-02-25 12:12:46 | NHS face legal action following involvement with Palantir (lien direct) | Palantir is a US data firm that has had long-term involvement in the analysis of large amounts of NHS public health data. Open Democracy, an independent global media platform, has taken legal action against the NHS over its contract and involvement with Palantir, also stating that the firm lobbied a top NHS official. Palantir has […] | |||
|
2021-02-25 11:51:10 | (Déjà vu) Federal Reserve experience nationwide outage (lien direct) | Last night the US Federal Reserve suffered a major IT systems outage which stopped all ACH transactions, wire transfers, as well as a number of other services from operating. The system outage affected the majority of electronic service provided by the Federal Reserve Bank. The outage prevented services such as Check 21, Central Bank, Account […] | |||
|
2021-02-25 11:02:11 | Government websites leaking COVID-19 test results (lien direct) | Following the report last month, that multiple Indian government websites were leaking COVID-19 test reports, Sourajeet Majumder has discovered another website exposing millions more. The security researcher shared his findings last week: “I have found an issue in an Indian Government site which is resulting in the leakage of test reports of EVERYONE who took […] | ★★ | ||
|
2021-02-25 10:44:12 | GCHQ to fully embrace AI Revolution (lien direct) | GCHQ has announced that it has embraced artificial intelligence to uncover patterns in global data to counter misinformation and catch child abusers. Jeremy Fleming, the director of GCHQ stated: “AI, like so many technologies, offers great promise for society, prosperity and security. Its impact on GCHQ is equally profound.” AI allows modern computers to learn […] | ★★★★★ | ||
|
2021-02-24 15:33:24 | DHL Express and FedEx targeted by phishing scam (lien direct) | Researchers have discovered that around 10,000 employee mailboxes at DHL Express and FedEx have been hit by two phishing attacks that sought to extract recipients work email account. A blog post shared by Armorblox this week detailed the attacks. The post explained how there were two different attacks, one which pretended to share shipping details […] | FedEx FedEx | ★★ | |
|
2021-02-24 14:59:24 | How Security Culture Invokes Secure Behaviour (lien direct) | It has always been suspected that security culture and secure behaviour were closely linked, although proof was hard to produce. Today, KnowBe4 released research that shows not only have researchers been able to validate that link, but they also give data that provides conclusive evidence related to the importance of focusing on the human side […] | |||
|
2021-02-24 10:55:32 | Bombardier suffers ransomware and data leak (lien direct) | The Canadian airplane manufacturer has today revealed that it suffered a security breach. In a press release, Bombardier disclosed that some of its data has been published on the dark web portal operated by the Clop ransomware gang: “An initial investigation revealed that an unauthorized party accessed and extracted data by exploiting a vulnerability affecting […] | Ransomware Vulnerability | ||
|
2021-02-24 10:02:24 | Healthcare Organisations increasingly targeted in cyberattacks (lien direct) | Research has shown that in the past year cyberattackers have increasingly targeted healthcare organisations for deploying ransomware and other cyber-attacks. The annual X-Force Threat Intelligence research was released on Wednesday, which tracks the evolution of new threats, malware development and cyberattacks. The most notable trend was how many threat actors targeted their malicious campaigns at […] | Ransomware Malware Threat | ||
|
2021-02-23 10:39:56 | Transport for NSW affected by Accellion breach (lien direct) | Accellion systems are used to share and store files by as many as 300 organisations all around the world. Recently, they suffered a data breach following an attack linked to the ransomware gangs, Clop and FIN11. Accellion has claimed that less than 100 customers were affected by the attack, including Transport for New South Wales. […] | Ransomware Data Breach | ||
|
2021-02-23 10:35:51 | Sequoia Capital investor information stolen (lien direct) | Sequoia Capital, one of the most famous venture capital firms in Silicon Valley announced that it suffered a data breach. The firm officially referred to it as a “cybersecurity incident”, in which investor data, including personal information, was likely stolen. The attack vector is alleged to have been a phishing link received by an employee. […] | |||
|
2021-02-23 09:56:40 | Austin Energy: Scammers threaten to cut power (lien direct) | Unknown individuals have been impersonating Austin Energy in an attempt to scam customers. The scammers were threatening to cut customers’ power unless a fictitious overdue bill was paid immediately. They typically requested reloadable prepaid debit cards or other non-traceable form of payments. As a result, Austin Energy warned: “Scammers are trying to take advantage of […] |
To see everything:
Our RSS (filtrered)
