What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-10-26 16:50:23 | Attackers Hijack Craigslist Emails to Bypass Security, Deliver Malware (lien direct) | Fake Craigslist emails that abuse Microsoft OneDrive warn users that their ads contain 'inappropriate content.” | Malware | ||
|
2021-10-26 15:44:39 | Mozilla Firefox Blocks Malicious Add-Ons Installed by 455K Users (lien direct) | The misbehaving Firefox add-ons were misusing an API that controls how Firefox connects to the internet. | |||
|
2021-10-26 12:09:49 | Millions of Android Users Scammed in SMS Fraud Driven by Tik-Tok Ads (lien direct) | UltimaSMS leverages at least 151 apps that have been downloaded collectively more than 10 million times, to extort money through a fake premium SMS subscription service. | |||
|
2021-10-25 21:41:20 | Defending Assets You Don\'t Know About Against Cyberattacks (lien direct) | No security defense is perfect, and shadow IT means no company can inventory every single asset that it has. David “moose” Wolpoff, CTO at Randori, discusses strategies for core asset protection given this reality. | |||
|
2021-10-25 21:13:17 | Groove Calls for Cyberattacks on US as REvil Payback (lien direct) | The bold move signals a looming clash between Russian ransomware groups and the U.S. | Ransomware | ||
|
2021-10-25 20:51:06 | (Déjà vu) BQE Web Suite Billing App Rigged to Inflict Ransomware (lien direct) | An SQL-injection bug in the BQE Web Suite billing app has not only leaked sensitive information, it's also let malicious actors execute code and deploy ransomware. | Ransomware | ||
|
2021-10-25 20:51:06 | BillQuick Billing App Rigged to Inflict Ransomware (lien direct) | A SQL injection bug in the BillQuick billing app has not only leaked sensitive information, it's also let malicious actors remotely execute code and deploy ransomware. | Ransomware | ||
|
2021-10-25 19:16:45 | SolarWinds APT Targets Tech Resellers in Latest Supply-Chain Cyberattacks (lien direct) | The Nobelium group, linked to Russia's spy agency, is looking to use resellers as a path to infiltrate their valuable downstream customers - and it's working. | |||
|
2021-10-25 15:28:27 | CISA Urges Sites to Patch Critical RCE in Discourse (lien direct) | The patch, urgently rushed out on Friday, is an emergency fix for the widely deployed platform, whose No. 1 most trafficked site is Amazon's Seller Central. | |||
|
2021-10-22 19:59:23 | FIN7 Lures Unwitting Security Pros to Carry Out Ransomware Attacks (lien direct) | The infamous Carbanak operator is moving is looking to juice its ransomware game by recruiting IT staff to its fake Bastion Secure 'pen-testing' company. | Ransomware | ||
|
2021-10-22 17:01:20 | REvil Servers Shoved Offline by Governments – But They\'ll Be Back, Researchers Say (lien direct) | A multi-country effort has given ransomware gang REvil a taste of its own medicine by pwning its backups and pushing its leak site and Tor payment site offline. | Ransomware | ||
|
2021-10-22 14:48:26 | Cisco SD-WAN Security Bug Allows Root Code Execution (lien direct) | The high-severity bug, tracked as CVE-2021-1529, is an OS command-injection flaw. | |||
|
2021-10-22 11:44:40 | Threat Actors Abuse Discord to Push Malware (lien direct) | The platform's Content Delivery Network and core features are being used to send malicious files-including RATs--across its network of 150 million users, putting corporate workplaces at risk. | Malware | ||
|
2021-10-21 19:41:22 | U.S. Ban on Sales of Cyberattack Tools Is Anemic, Experts Warn (lien direct) | Meanwhile, Zerodium's quest to buy VPN exploits is problematic, researchers said. | |||
|
2021-10-21 19:31:40 | TA551 Shifts Tactics to Install Sliver Red-Teaming Tool (lien direct) | A new email campaign from the threat group uses the attack-simulation framework in a likely leadup to ransomware deployment. | Ransomware Tool Threat Guideline | ||
|
2021-10-21 17:33:24 | Gigabyte Allegedly Hit by AvosLocker Ransomware (lien direct) | If AvosLocker stole Gigabyte's master keys, threat actors could force hardware to download fake drivers or BIOS updates in a supply-chain attack a la SolarWinds. | Ransomware Threat | ||
|
2021-10-21 13:16:00 | Why is Cybersecurity Failing Against Ransomware? (lien direct) | Hardly a week goes by without another major company falling victim to a ransomware attack. Nate Warfield, CTO at Prevailion, discusses the immense challenges in changing that status quo. | Ransomware | ||
|
2021-10-21 11:50:34 | Ransomware Sinks Teeth into Candy-Corn Maker Ahead of Halloween (lien direct) | Chicago-based Ferrara acknowledged an Oct. 9 attack that encrypted some systems and disrupted production. | |||
|
2021-10-20 19:45:21 | Google Crushes YouTube Cookie-Stealing Channel Hijackers (lien direct) | Google has caught and brushed off a bunch of cookie-stealing YouTube channel hijackers who were running cryptocurrency scams on, or auctioning off, ripped-off channels. | |||
|
2021-10-20 17:53:42 | VPN Exposes Data for 1M Users, Leading to Researcher Questioning (lien direct) | Experts warn that virtual private networks are increasingly vulnerable to leaks and attack. | |||
|
2021-10-20 13:28:13 | Geriatric Microsoft Bug Exploited by APT Using Commodity RATs (lien direct) | Disguised as an IT firm, the APT is hitting targets in Afghanistan & India, exploiting a 20-year-old+ Microsoft Office bug that's as potent as it is ancient. | |||
|
2021-10-19 21:42:49 | Squirrel Bug Lets Attackers Execute Code in Games, Cloud Services (lien direct) | The out-of-bounds read vulnerability enables an attacker to escape a Squirrel VM in games with millions of monthly players – such as Counter-Strike: Global Offensive and Portal 2 – and in cloud services such as Twilio Electric Imp. | Vulnerability | ||
|
2021-10-19 20:15:01 | Fresh APT Harvester Reaps Telco, Government Data (lien direct) | The group is likely nation-state-backed and is mounting an ongoing spy campaign using custom malware and stealthy tactics. | Malware | ||
|
2021-10-19 17:16:42 | Lyceum APT Returns, This Time Targeting Tunisian Firms (lien direct) | The APT, which targets Middle-Eastern energy firms & telecoms, has been relatively quiet since its exposure but not entirely silent. It's kept up attacks through 2021 and is working on retooling its arsenal yet again. | |||
|
2021-10-19 15:12:06 | A Guide to Doing Cyberintelligence on a Restricted Budget (lien direct) | Cybersecurity budget cuts are everywhere. Chad Anderson, senior security researcher at DomainTools, discusses alternatives to fancy tooling, and good human skills alignment. | |||
|
2021-10-19 13:21:43 | Feds Warn BlackMatter Ransomware Gang is Poised to Strike (lien direct) | An advisory by the CISA, FBI and NSA reveals hallmark tactics of and shares defense tips against the cybercriminal group that's picked up where its predecessor DarkSide left off. | Ransomware | ||
|
2021-10-19 09:00:30 | TA505 Gang Is Back With Newly Polished FlawedGrace RAT (lien direct) | TA505 – cybercrime trailblazers with ever-evolving TTPs – have returned to mass-volume email attacks, flashing retooled malware and exotic scripting languages. | Malware | ||
|
2021-10-18 22:00:24 | Time to Build Accountability Back into Cybersecurity (lien direct) | Chris Hass, director of information security and research at Automox, discusses how to assign security responsibility, punishment for poor cyber-hygiene and IDing 'security champions' to help small businesses. | |||
|
2021-10-18 20:55:23 | Podcast: Could the Zoho Flaw Trigger SolarWinds 2.0? (lien direct) | Companies are worried that the highly privileged password app could let attackers deep inside an enterprise's footprint, says Redscan's George Glass. | |||
|
2021-10-18 20:16:36 | Sinclair Confirms Ransomware Attack That Disrupted TV Stations (lien direct) | A major cyberattack resulted in data being stolen, too, but Sinclair's not sure which information is now in the hands of the crooks. | Ransomware | ||
|
2021-10-18 18:23:40 | TikTok Serves Up Fresh Gamer Targets via Fake Among Us, Steam Offerings (lien direct) | The tween-friendly video app is being used to serve up malvertising, disguised as free Steam game accounts or Among Us game hacks. | |||
|
2021-10-18 16:23:21 | Twitter Suspends Accounts Used to Snare Security Researchers (lien direct) | The accounts were used to catfish security researchers into downloading malware in a long-running cyber-espionage campaign attributed to North Korea. | Malware | ||
|
2021-10-15 18:05:29 | TrickBot Gang Enters Cybercrime Elite with Fresh Affiliates (lien direct) | The group – which also created BazarLoader and the Conti ransomware – has juiced its distribution tactics to threaten enterprises more than ever. | Ransomware | ||
|
2021-10-15 17:44:00 | Missouri Vows to Prosecute \'Hacker\' Who Disclosed Data Leak (lien direct) | Missouri Gov. Mike Parson launched a criminal investigation of a reporter who flagged a state website that exposed 100K+ Social-Security numbers for teachers and other state employees. | |||
|
2021-10-14 20:38:02 | Rickroll Grad Prank Exposes Exterity IPTV Bug (lien direct) | IPTV and IP video security is increasingly under scrutiny, even by high school kids. | |||
|
2021-10-14 18:18:03 | Verizon\'s Visible Wireless Carrier Confirms Credential-Stuffing Attack (lien direct) | Visible says yes, user accounts were hijacked, but it denied a breach. As of today, users are still posting tales of forcibly changed passwords and getting stuck with bills for pricey new iPhones. | |||
|
2021-10-14 15:17:29 | CryptoRom Scam Rakes in $1.4M by Exploiting Apple Enterprise Features (lien direct) | The campaign, which uses the Apple Developer Program and Enterprise Signatures to get past Apple's app review process, remains active. | |||
|
2021-10-14 13:32:16 | Podcast: 67% of Orgs Have Been Hit by Ransomware at Least Once (lien direct) | Fortinet's Derek Manky discusses a recent global survey showing that two-thirds of organizations suffered at least one ransomware attack, while half were hit multiple times. | Ransomware | ||
|
2021-10-13 20:17:09 | FreakOut Botnet Turns DVRs Into Monero Cryptominers (lien direct) | The new Necro Python exploit targets Visual Tool DVRs used in surveillance systems. | Tool | ||
|
2021-10-13 16:05:49 | Brizy WordPress Plugin Exploit Chains Allow Full Site Takeovers (lien direct) | A stored XSS and arbitrary file-upload bug can be paired with an authorization bypass to wreak havoc. | |||
|
2021-10-13 13:22:41 | Mandating a Zero-Trust Approach for Software Supply Chains (lien direct) | Sounil Yu, CISO at JupiterOne, discusses software bills of materials (SBOMs) and the need for a shift in thinking about securing software supply chains. | |||
|
2021-10-13 13:04:37 | OpenSea \'Free Gift\' NFTs Drain Cryptowallet Balances (lien direct) | Cybercriminals exploited bugs in the world's largest digital-goods marketplace to create malicious artwork offered as a perk to unsuspecting users. | |||
|
2021-10-13 11:22:00 | 30 Mins or Less: Rapid Attacks Extort Orgs Without Ransomware (lien direct) | The previously unknown SnapMC group exploits unpatched VPNs and webserver apps to breach systems and carry out quick-hit extortion in less time than it takes to order a pizza. | Ransomware | ||
|
2021-10-12 21:51:06 | Microsoft Kills Bug Being Exploited in MysterySnail Espionage Campaign (lien direct) | Microsoft's October 2021 Patch Tuesday included security fixes for 74 vulnerabilities, one of which is a zero-day being used to deliver the MysterySnail RAT to Windows servers. | |||
|
2021-10-12 19:34:32 | Windows Zero-Day Actively Exploited in Widespread Espionage Campaign (lien direct) | The cyberattacks, linked to a Chinese-speaking APT, deliver the new MysterySnail RAT malware to Windows servers. | Malware | ||
|
2021-10-12 17:46:41 | Office 365 Spy Campaign Targets US Military Defense (lien direct) | An Iran-linked group is taking aim at makers of drones and satellites, Persian Gulf ports and maritime shipping companies, among others. | |||
|
2021-10-12 15:17:38 | Apple Releases Urgent iOS Updates to Patch New Zero-Day Bug (lien direct) | The bug is under attack. Within hours of the patch release, a researcher published POC code, calling it a "great" flaw that can be used for jailbreaks and local privilege escalation. | |||
|
2021-10-11 12:00:13 | Incident Response: 5 Principles to Boost the Infosec/Legal Relationship (lien direct) | Effective cyber-incident response means working well with legal. Matt Dunn, associate managing director for cyber-risk at Kroll, lays out how to do it. | |||
|
2021-10-07 20:27:11 | Navy Warship\'s Facebook Page Hacked to Stream \'Age of Empires\' Gaming (lien direct) | The destroyer-class USS Kidd streamed hours of game play in a funny incident that has serious cybersecurity ramifications. | |||
|
2021-10-07 20:25:32 | Twitch Leak Included Emails, Passwords in Clear Text: Researcher (lien direct) | A researcher combed through the Twitch leak and found what they said was evidence of PayPal chargebacks with names and emails; employees' emails; and more. |
To see everything:
Our RSS (filtrered)
