What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-06-18 15:18:50 | Carnival Cruise Cyber-Torpedoed by Cyberattack (lien direct) | This is the fourth time in a bit over a year that Carnival's admitted to breaches, with two of them being ransomware attacks. | Ransomware | ||
|
2021-06-18 13:39:22 | Insider Versus Outsider: Navigating Top Data Loss Threats (lien direct) | Troy Gill, manager of security research at Zix, discusses the most common ways sensitive data is scooped up by nefarious sorts. | ★★★ | ||
|
2021-06-18 11:56:22 | Faux \'DarkSide\' Gang Takes Aim at Global Energy, Food Sectors (lien direct) | A DarkSide doppelganger mounts a fraud campaign aimed at extorting nearly $4 million from each target. | |||
|
2021-06-17 20:46:11 | Clop Raid: A Big Win in the War on Ransomware? (lien direct) | Cops arrest six, seize cars and cash in splashy raid, and experts are applauding. | |||
|
2021-06-17 19:30:46 | Cisco Smart Switches Riddled with Severe Security Holes (lien direct) | The intro-level networking gear for SMBs could allow remote attacks designed to steal information, drop malware and disrupt operations. | Malware | ||
|
2021-06-17 17:06:10 | Geek Squad Vishing Attack Bypasses Email Security to Hit 25K Mailboxes (lien direct) | An email campaign asking victims to call a bogus number to suspend supposedly fraudulent subscriptions got right past Microsoft's native email controls. | |||
|
2021-06-17 16:47:56 | CVS Health Records for 1.1 Billion Customers Exposed (lien direct) | A vendor exposed the records, which were accessible with no password or other authentication, likely because of a cloud-storage misconfiguration. | |||
|
2021-06-17 13:00:14 | Threat Actors Use Google Docs to Host Phishing Attacks (lien direct) | Exploit in the widely used document service leveraged to send malicious links that appear legitimate but actually steal victims credentials. | |||
|
2021-06-17 12:50:05 | Hiccup in Akamai\'s DDoS Mitigation Service Triggers Massive String of Outages (lien direct) | An hour-long outage hit airlines, banks and the Hong Kong Stock exchange. It's thought to have been caused by a DDoS mitigation service. | |||
|
2021-06-16 18:01:27 | Ransomware Poll: 80% of Victims Don\'t Pay Up (lien direct) | Meanwhile, in a separate survey, 80 percent of organizations that paid the ransom said were hit by a second attack. | |||
|
2021-06-16 16:39:33 | Takeaways from the Colonial Pipeline Ransomware Attack (lien direct) | Hank Schless, senior manager of security solutions at Lookout, notes basic steps that organizations can take to protect themselves as ransomware gangs get smarter. | Ransomware | ||
|
2021-06-16 15:50:33 | Euros-Driven Football Fever Nets Dumb Passwords (lien direct) | The top easy-to-crack, football-inspired password in a database of 1 billion unique, clear-text, breached passwords? You probably guessed it: "Football." | |||
|
2021-06-16 13:00:45 | 5 Tips to Prevent and Mitigate Ransomware Attacks (lien direct) | Ransomware attacks are increasing in frequency, and the repercussions are growing more severe than ever. Here are 5 ways to prevent your company from becoming the next headline. | Ransomware | ||
|
2021-06-16 12:04:53 | Avaddon Ransomware Gang Evaporates Amid Global Crackdowns (lien direct) | Ransomware group releases decryptors for nearly 3,000 victims, forfeiting millions in payouts. | Ransomware | ||
|
2021-06-16 11:51:31 | Researchers: Booming Cyber-Underground Market for Initial-Access Brokers (lien direct) | Ransomware gangs are increasingly buying their way into corporate networks, purchasing access from 'vendors' that have previously installed backdoors on targets. | Ransomware | ||
|
2021-06-16 11:19:34 | Peloton Bike+ Bug Gives Hackers Complete Control (lien direct) | An attacker with initial physical access (say, at a gym) could gain root entry to the interactive tablet, making for a bevy of remote attack scenarios. | |||
|
2021-06-15 20:51:44 | Millions of Connected Cameras Open to Eavesdropping (lien direct) | A supply-chain component lays open camera feeds to remote attackers thanks to a critical security vulnerability. | |||
|
2021-06-15 17:05:28 | Malicious PDFs Flood the Web, Lead to Password-Snarfing (lien direct) | SolarMarker makers are using SEO poisoning, stuffing thousands of PDFs with tens of thousands of pages full of SEO keywords & links to redirect to the malware. | |||
|
2021-06-15 16:46:53 | Microsoft Disrupts Large-Scale, Cloud-Based BEC Campaign (lien direct) | Varied cloud infrastructure was used to phish email credentials, monitor for and forward finance-related messages and automate operations. | |||
|
2021-06-15 14:47:35 | Insider Risks In the Work-From-Home World (lien direct) | Forcepoint's Michael Crouse talks about risk-adaptive data-protection approaches and how to develop a behavior-based approach to insider threats and risk, particularly with pandemic-expanded network perimeters. | ★★★★ | ||
|
2021-06-15 14:47:17 | SASE & Zero Trust: The Dream Team (lien direct) | Forcepoint's Nico Fischbach, global CTO and VPE of SASE, and Chase Cunningham, chief strategy officer at Ericom Software, on using SASE to make Zero Trust real. | |||
|
2021-06-15 12:39:12 | Microsoft Gets Second Shot at Banning hiQ from Scraping LinkedIn User Data (lien direct) | Decision throws out previous ruling in favor of hiQ Labs that prevented Microsoft's business networking platform to forbid the company from harvesting public info from user profiles. | |||
|
2021-06-15 11:43:20 | Apple Hurries Patches for Safari Bugs Under Active Attack (lien direct) | Apple patched two bugs impacting its Safari browser WebKit engine that it said are actively being exploited. | |||
|
2021-06-14 20:45:49 | Utilities \'Concerningly\' at Risk from Active Exploits (lien direct) | Utilities' vulnerability to application exploits goes from bad to worse in just weeks. | Vulnerability | ||
|
2021-06-14 20:26:52 | Microsoft Teams: Very Bad Tabs Could Have Led to BEC (lien direct) | Attackers could have used the bug to get read/write privileges for a victim user's email, Teams chats, OneDrive, Sharepoint and loads of other services. | |||
|
2021-06-14 17:43:34 | Moobot Milks Tenda Router Bugs for Propagation (lien direct) | An analysis of the campaign revealed Cyberium, an active Mirai-variant malware hosting site. | Malware | ||
|
2021-06-14 15:12:50 | Volkswagen Vendor Exposed Data of 3.3m Drivers (lien direct) | Nearly all of the leaked data was for owners or wannabe owners of the automaker's luxury brand of Audis, now at greater risk for phishing, ransomware or car theft. | Ransomware | ★★★★★ | |
|
2021-06-11 21:09:39 | Unpatched Bugs Found Lurking in Provisioning Platform Used with Cisco UC (lien direct) | A trio of security flaws open the door to remote-code execution and a malware tsunami. | Malware | ||
|
2021-06-11 18:29:48 | Baby Clothes Giant Carter\'s Leaks 410K Customer Records (lien direct) | Purchase automation software delivered shortened URLs without protections. | |||
|
2021-06-11 18:16:45 | REvil Hits US Nuclear Weapons Contractor: Report (lien direct) | "We hereby keep a right (sic) to forward all of the relevant documentation and data to military agencies of our choise (sic)" REvil reportedly wrote. | |||
|
2021-06-11 16:39:10 | Cyberpunk 2077 Hacked Data Circulating Online (lien direct) | CD Projekt Red confirmed that employee and game-related data appears to be floating around the cyber-underground, four months after a hack on the Witcher and Cyberpunk 2077 developer. | Hack | ||
|
2021-06-11 14:23:57 | Monumental Supply-Chain Attack on Airlines Traced to State Actor (lien direct) | Airlines are warned to scour networks for traces of the campaign, likely the work of APT41, lurking in networks. | Guideline | APT 41 | ★★★ |
|
2021-06-11 12:42:46 | Police Grab Slilpp, Biggest Stolen-Logins Market (lien direct) | There were more than 80 million login credentials for sale, used to inflict over $200 million in losses in the U.S. alone. | |||
|
2021-06-11 11:43:18 | Hackers Steal FIFA 21 Source Code, Tools in EA Breach (lien direct) | Raft of other proprietary game data and related software and developer kits also pilfered in the unspecified attack, which the company is investigating. | |||
|
2021-06-10 21:54:21 | \'Fancy Lazarus\' Cyberattackers Ramp up Ransom DDoS Efforts (lien direct) | The group, known for masquerading as various APT groups, is back with a spate of attacks on U.S. companies. | APT 38 | ||
|
2021-06-10 20:07:53 | Chrome Browser Bug Under Active Attack (lien direct) | Google has patched its Chrome browser, fixing one critical cache issue and a second bug being actively exploited in the wild. | |||
|
2021-06-10 18:58:31 | STEM Audio Table Rife with Business-Threatening Bugs (lien direct) | The desktop conferencing IoT gadget allows remote attackers to install all kinds of malware and move laterally to other parts of enterprise networks. | Malware | ||
|
2021-06-10 16:26:28 | Microsoft: Big Cryptomining Attacks Hit Kubeflow (lien direct) | Misconfigured dashboards are yet again at the heart of a widespread, ongoing cryptocurrency campaign squeezing Monero and Ethereum from Kubernetes clusters. | Uber | ||
|
2021-06-10 15:51:26 | Steam Gaming Platform Delivering Malware (lien direct) | Emerging malware is lurking in in Steam profile images. | Malware | ||
|
2021-06-10 13:14:39 | JBS Paid $11M to REvil Gang Even After Restoring Operations (lien direct) | The decision to pay the ransom demanded by the cybercriminal group was to avoid any further issues or potential problems for its customers, according to the company's CEO. | |||
|
2021-06-09 17:24:00 | Mysterious Custom Malware Collects Billions of Stolen Data Points (lien direct) | A nameless malware resulted in a huge data heist of files, credentials, cookies and more that researchers found collected into a cloud database. | Malware | ||
|
2021-06-09 16:17:39 | Intel Plugs 29 Holes in CPUs, Bluetooth, Security (lien direct) | The higher-rated advisories focus on privilege-escalation bugs in CPU firmware: Tough to patch, hard to exploit, tempting to a savvy attacker. | |||
|
2021-06-09 12:58:22 | DarkSide Pwned Colonial With Old VPN Password (lien direct) | Attackers accessed a VPN account that was no longer in use to freeze the company's network in a ransomware attack whose repercussions are still vibrating. | Ransomware | ||
|
2021-06-08 21:45:12 | Microsoft Patch Tuesday Fixes 6 In-The-Wild Exploits, 50 Flaws (lien direct) | Researchers discovered a highly targeted malware campaign launched in April, in which a new, unknown threat actor used two of the vulnerabilities that Microsoft said are under active attack. | Malware Threat | ||
|
2021-06-08 20:45:29 | Lewd Phishing Lures Aimed at Business Explode (lien direct) | Socially engineered BEC attacks using X-rated material spike 974 percent. | |||
|
2021-06-08 20:28:16 | TrickBot Coder Faces Decades in Prison (lien direct) | A Latvian malware developer known as "Max" has been arraigned on 19 counts related to fraud, identity theft, information theft and money laundering. | Malware | ||
|
2021-06-08 19:02:25 | Google Patches Critical Android RCE Bug (lien direct) | Google's June security bulletin addresses 90+ bugs in Android and Pixel devices. | |||
|
2021-06-08 17:02:48 | \'An0m\' Encrypted-Chat Sting Leads to Arrest of 800 (lien direct) | The FBI and Australian law enforcement set up the encrypted chat service and ran it for over 3 years, seizing weapons, drugs and over $48m in cash. | |||
|
2021-06-08 13:00:35 | Billions of Compromised Records and Counting: Why the Application Layer is Still the Front Door for Data Breaches (lien direct) | Security teams should brace for an unsettling and unprecedented year, as we're on pace to see 40 billion records compromised by the end of 2021. Imperva's Terry Ray explains what security teams need to do to bolster their defenses. | |||
|
2021-06-08 12:30:14 | Evil Corp Impersonates PayloadBin Group to Avoid Federal Sanctions (lien direct) | The cybercriminals try to pin new ransomware on Babuk Locker in an effort to fly under the radar of an ongoing FBI investigation. | Ransomware |
To see everything:
Our RSS (filtrered)
