What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-07-01 14:11:42 | Babuk Ransomware Builder Mysteriously Appears in VirusTotal (lien direct) | The gang's source code is now available to rivals and security researchers alike - and a decryptor likely is not far behind. | Ransomware | ||
|
2021-07-01 13:00:44 | Data Exfiltration: What You Should Know to Prevent It (lien direct) | Data leaks are a serious concern for companies of all sizes; if one occurs, it may put them out of business permanently. Here's how you can protect your organization from data theft. | |||
|
2021-07-01 11:30:35 | Netgear Authentication Bypass Allows Router Takeover (lien direct) | Microsoft researchers discovered the firmware flaws in the DGN-2200v1 series router that can enable authentication bypass to take over devices and access stored credentials. | |||
|
2021-07-01 10:00:12 | Dropbox Used to Mask Malware Movement in Cyberespionage Campaign (lien direct) | The ongoing spear-phishing campaign targeting the Afghan government uses Dropbox as an API that leaves no traces of communications with weirdo websites. | Malware | ||
|
2021-06-30 20:19:28 | Indexsinas SMB Worm Campaign Infests Whole Enterprises (lien direct) | The self-propagating malware's attack chain is complex, using former NSA cyberweapons, and ultimately drops cryptominers on targeted machines. | |||
|
2021-06-30 16:28:48 | Why MTTR is Bad for SecOps (lien direct) | Kerry Matre, senior director at Mandiant, discusses the appropriate metrics to use to measure SOC and analyst performance, and how MTTR leads to bad behavior. | Guideline | ||
|
2021-06-30 16:08:46 | Zero-Day Used to Wipe My Book Live Devices (lien direct) | Threat actors may have been duking it out for control of the compromised devices, first using a 2018 RCE, then password-protecting a new vulnerability. | Threat | ||
|
2021-06-30 16:02:29 | PoC Exploit Circulating for Critical Windows Print Spooler Bug (lien direct) | The "PrintNightmare" bug may not be fully patched, some experts are warning, leaving the door open for widespread remote code execution attacks. | |||
|
2021-06-30 12:39:15 | Feds Told to Better Manage Facial Recognition, Amid Privacy Concerns (lien direct) | A GAO report finds government agencies are using the technology regularly in criminal investigations and to identify travelers, but need stricter management to protect people's privacy and avoid inaccurate identification | |||
|
2021-06-29 19:49:24 | Users Clueless About Cybersecurity Risks: Study (lien direct) | The return to offices, coupled with uninformed users (including IT pros) has teed up an unprecedented risk of enterprise attack. | |||
|
2021-06-29 16:34:21 | Microsoft Translation Bugs Open Edge Browser to Trivial UXSS Attacks (lien direct) | The bug in Edge's auto-translate could have let remote attackers pull off RCE on any foreign-language website just by sending a message with an XSS payload. | |||
|
2021-06-29 11:34:38 | Details of RCE Bug in Adobe Experience Manager Revealed (lien direct) | Disclosure of a bug in Adobe's content-management solution - used by Mastercard, LinkedIn and PlayStation – were released. | |||
|
2021-06-29 09:00:51 | Cobalt Strike Usage Explodes Among Cybercrooks (lien direct) | The legit security tool has shown up 161 percent more, year-over-year, in cyberattacks, having “gone fully mainstream in the crimeware world.” | Tool | ||
|
2021-06-28 23:24:06 | Data for 700M LinkedIn Users Posted for Sale in Cyber-Underground (lien direct) | After 500 million LinkedIn enthusiasts were affected in a data-scraping incident in April, it's happened again - with big security ramifications. | |||
|
2021-06-28 21:17:16 | 5G Security Vulnerabilities Fluster Mobile Operators (lien direct) | A survey from GSMA and Trend Micro shows a concerning lack of security capabilities for private 5G networks (think factories, smart cities, industrial IoT, utilities and more). | |||
|
2021-06-28 20:38:29 | NVIDIA Patches High-Severity GeForce Spoof-Attack Bug (lien direct) | A vulnerability in NVIDIA's GeForce Experience software opens the door to remote data access, manipulation and deletion. | Vulnerability | ||
|
2021-06-28 19:11:15 | Russian Attackers Breach Microsoft Customer Service Accounts (lien direct) | American IT companies and government have been targeted by the Nobelium state-sponsored group. | |||
|
2021-06-28 16:36:45 | Microsoft Signs Malware That Spreads Through Gaming (lien direct) | The driver, called "Netfilter," is a rootkit that talks to Chinese C2 IPs and aims to spoof gamers' geo-locations to cheat the system and play from anywhere, Microsoft said. | Malware | ||
|
2021-06-28 16:00:11 | Critical CISO Initiatives for the Second Half of 2021 (lien direct) | Nilesh Dherange, CTO at Gurucul, goes over what defenses CISOs need now, and how and why to prioritize the options. | |||
|
2021-06-25 21:31:58 | Mercedes-Benz Customer Data Flies Out the Window (lien direct) | For over three years, a vendor was recklessly driving the cloud-stored data of luxury-car-owning customers and wannabe buyers. | |||
|
2021-06-25 21:03:14 | PS3 Players Ban: Latest Victims of Surging Attacks on Gaming Industry (lien direct) | Every Sony PlayStation 3 ID out there was compromised, provoking bans of legit players on the network. | |||
|
2021-06-25 18:06:39 | FIN7 \'Pen Tester\' Headed to Jail Amid $1B in Payment-Card Losses (lien direct) | One of the Carbanak cybergang's highest-level hackers is destined to serve seven years while making $2.5 million in restitution payments. | |||
|
2021-06-25 16:08:38 | Cisco ASA Bug Now Actively Exploited as PoC Drops (lien direct) | In-the-wild XSS attacks have commenced against the security appliance (CVE-2020-3580), as researchers publish exploit code on Twitter. | |||
|
2021-06-25 15:50:32 | My Book Live Users Wake Up to Wiped Devices, Active RCE Attacks (lien direct) | “I am totally screwed,” one user wailed after finding years of data nuked. Western Digital advised yanking the NAS storage devices offline ASAP: There's an exploit. | |||
|
2021-06-25 13:20:08 | Hackers Crack Pirated Games with Cryptojacking Malware (lien direct) | Threat actors have so far made about $2 million from Crackonosh, which secretly mines Monero cryptocurrency from affected devices. | Malware Threat | ||
|
2021-06-25 01:05:45 | Spam Downpour Drips New IcedID Banking Trojan Variant (lien direct) | The primarily IcedID-flavored banking trojan spam campaigns were coming in at a fever pitch: Spikes hit more than 100 detections a day. | Spam | ||
|
2021-06-24 19:52:35 | Oh FCUK! Fashion Label, Medical Diagnostics Firm Latest REvil Victims (lien direct) | The infamous ransomware group hit two big-name companies within hours of each other. | Ransomware | ||
|
2021-06-24 15:44:56 | Musk-Themed \'$SpaceX\' Cryptoscam Invades YouTube Advertising (lien direct) | Beware: The swindle uses legitimately purchased YouTube ads, real liquidity, legitimate DEX Uniswap, and the real wallet extension MetaMask to create an entirely convincing fake coin gambit. | |||
|
2021-06-24 15:31:31 | Critical VMware Carbon Black Bug Allows Authentication Bypass (lien direct) | The 9.4-rated bug in AppC could give attackers admin rights, no authentication required, letting them attack anything from PoS to industrial control systems. | |||
|
2021-06-24 13:14:56 | Tulsa\'s Police-Citation Data Leaked by Conti Gang (lien direct) | A May 6 ransomware attack caused disruption across several of the municipality's online services and websites. | Ransomware | ||
|
2021-06-24 10:00:47 | Atlassian Bugs Could Have Led to 1-Click Takeover (lien direct) | A supply-chain attack could have siphoned sensitive information out of Jira, such as security issues on Atlassian cloud, Bitbucket and on-prem products. | |||
|
2021-06-24 10:00:42 | 30M Dell Devices at Risk for Remote BIOS Attacks, RCE (lien direct) | Four separate security bugs would give attackers almost complete control and persistence over targeted devices, thanks to a faulty update mechanism. | |||
|
2021-06-23 19:23:35 | Iran Media Websites Seized by U.S. in Disinformation Campaign (lien direct) | DoJ uses sanctions laws to shut down an alleged Iranian government malign influence campaign. | |||
|
2021-06-23 16:53:01 | Pandemic-Bored Attackers Pummeled Gaming Industry (lien direct) | Akamai's 2020 gaming report shows that cyberattacks on the video game industry skyrocketed, shooting up 340 percent in 2020. | |||
|
2021-06-23 15:39:06 | Critical Palo Alto Cyber-Defense Bug Allows Remote \'War Room\' Access (lien direct) | Remote, unauthenticated cyberattackers can infiltrate and take over the Cortex XSOAR platform, which anchors unified threat intelligence and incident responses. | Threat | ||
|
2021-06-23 15:11:48 | REvil Ransomware Code Ripped Off by Rivals (lien direct) | The LV ransomware operators likely used a hex editor to repurpose a REvil binary almost wholesale, for their own nefarious purposes. | Ransomware | ★★ | |
|
2021-06-23 11:58:06 | Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE (lien direct) | A pair of zero-days affecting Pling-based marketplaces could allow for some ugly attacks on unsuspecting Linux enthusiasts -- with no patches in sight. | |||
|
2021-06-23 10:44:07 | SonicWall \'Botches\' October Patch for Critical VPN Bug (lien direct) | Company finally rolls out the complete fix this week for an RCE flaw affecting some 800,000 devices that could result in crashes or prevent users from connecting to corporate resources. | |||
|
2021-06-22 20:41:10 | BEC Losses Top $1.8B as Tactics Evolve (lien direct) | BEC attacks getting are more dangerous, and smart users are the ones who can stop it. | |||
|
2021-06-22 19:27:35 | Cryptominers Slither into Python Projects in Supply-Chain Campaign (lien direct) | These code bombs lurk in the PyPI package repository, waiting to be inadvertently baked into software developers' applications. | |||
|
2021-06-22 18:07:54 | Email Bug Allows Message Snooping, Credential Theft (lien direct) | A year-old proof-of-concept attack that allows an attacker to bypass TLS email protections to snoop on messages has been patched. | |||
|
2021-06-22 16:24:02 | Kids\' Apps on Google Play Rife with Privacy Violations (lien direct) | One in five of the most-popular apps for kids under 13 on Google Play don't comply with COPPA regulations on how children's information is collected and used. | ★★★★ | ||
|
2021-06-22 16:17:10 | Lexmark Printers Open to Arbitrary Code-Execution Zero-Day (lien direct) | “No remedy available as of June 21, 2021," according to the researcher who discovered the easy-to-exploit, no-user-action-required bug. | |||
|
2021-06-22 11:14:29 | Six Flags to Pay $36M Over Collection of Fingerprints (lien direct) | Illinois Supreme Court rules in favor of class action against company's practice of scanning people's fingers when they enter amusement parks. | |||
|
2021-06-21 21:52:49 | Wegmans Exposes Customer Data in Misconfigured Databases (lien direct) | Cleanup in aisle "Oops": The supermarket chain said that it misconfigured two cloud databases, exposing customer data to public scrutiny. | |||
|
2021-06-21 20:21:36 | Bugs in NVIDIA\'s Jetson Chipset Opens Door to DoS Attacks, Data Theft (lien direct) | Chipmaker patches nine high-severity bugs in its Jetson SoC framework tied to the way it handles low-level cryptographic algorithms. | |||
|
2021-06-21 19:56:22 | Embryology Data Breach Follows Fertility Clinic Ransomware Hit (lien direct) | Approximately 38,000 of RBA's customers had their embryology data stolen by a ransomware gang. | Ransomware Data Breach | ★★★ | |
|
2021-06-21 17:20:24 | Agent Tesla RAT Returns in COVID-19 Vax Phish (lien direct) | An unsophisticated campaign shows that the pandemic still has long legs when it comes to being social-engineering bait. | |||
|
2021-06-21 16:58:52 | iPhone Wi-Fi Crushed by Weird Network (lien direct) | … until you reset network settings and stop connecting to a weirdly named network, that is. FUD is spreading. iOS Wi-Fi demolition is not. | |||
|
2021-06-18 15:35:41 | What\'s Making Your Company a Ransomware Sitting Duck (lien direct) | What's the low-hanging fruit for ransomware attackers? What steps could help to fend them off, and what's stopping organizations from implementing those steps? | Ransomware |
To see everything:
Our RSS (filtrered)
