What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-03-13 15:42:30 | Anonymous sent a message to Russians: “remove Putin” (lien direct) | Anonymous has published a new message for Russian citizens inviting them to remove Putin that is sacrificing them and killing Ukrainians. The hacker collective Anonymous has published a new message for Russians inviting them to wake up and remove Putin, who is responsible for war crimes against Ukrainian. Putin is killing a defenseless population, it […] | |||
|
2022-03-13 14:47:13 | The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years (lien direct) | The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years. Lampion trojan is one of the most active banking trojans impacting Portuguese Internet end users since 2019. This piece of malware is known for the usage of the Portuguese Government Finance & Tax (Autoridade Tributária e Aduaneira) email […] | Malware | ||
|
2022-03-13 13:23:58 | Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict (lien direct) | This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. March 12 – Russian Internet watchdog Roskomnadzor is going to ban Instagram Russian Internet watchdog Roskomnadzor is going to ban Instagram in Russia to prevent the spreading of info related to the Ukraine invasion. March […] | |||
|
2022-03-13 10:08:56 | LockBit ransomware group claims to have hacked Bridgestone Americas (lien direct) | LockBit ransomware gang claimed to have hacked Bridgestone Americas, one of the largest manufacturers of tires. LockBit ransomware gang claimed to have compromised the network of Bridgestone Americas, one of the largest manufacturers of tires, and stolen data from the company. The Bridgestone Americas family of enterprises includes more than 50 production facilities and 55,000 […] | Ransomware | ||
|
2022-03-12 16:40:23 | Attackers use website contact forms to spread BazarLoader malware (lien direct) | Threat actors are spreading the BazarLoader malware via website contact forms to evade detection, researchers warn. Researchers from cybersecurity firm Abnormal Security observed threat actors spreading the BazarLoader/BazarBackdoor malware via website contact forms. TrickBot operation has recently arrived at the end of the journey, according to AdvIntel some of its top members move under the Conti ransomware gang, […] | Malware Threat | ||
|
2022-03-12 13:13:45 | Russian Internet watchdog Roskomnadzor is going to ban Instagram (lien direct) | Russian Internet watchdog Roskomnadzor is going to ban Instagram in Russia to prevent the spreading of info related to the Ukraine invasion. Russia will ban Instagram, the decision was announced by Russian Internet watchdog Roskomnadzor. Officially the Russian Internet watchdog Roskomnadzor explained that the decision is the response of Meta that the posting of information […] | |||
|
2022-03-12 10:46:32 | Ubisoft suffered a cyber security incident that caused a temporary disruption (lien direct) | Video game company Ubisoft has suffered a ‘cyber security incident’ that had a severe impact on games, systems, and services. The rumors of a cyber attack against Ubisoft circulated online in the last few days, while data extortion group LAPSUS$ claimed to have hacked the company. Over the last few days, multiple users reported problems accessing […] | |||
|
2022-03-11 14:55:42 | Anonymous hacked Roskomnadzor agency revealing Russian disinformation (lien direct) | The Anonymous collective continues to launch attacks against Russian entities, this is a summary of recent offensives. Anonymous announced to have hacked the Russian Federal Service for Supervision of Communications, Information Technology and Mass Media, also known as Roskomnadzor. The agency is responsible for monitoring, controlling and censoring Russian mass media and according to Anonymous, […] | |||
|
2022-03-11 11:06:17 | Open database leaves major Chinese ports exposed to shipping chaos (lien direct) | The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could disrupt the supply chain of up to 70,000 tonnes of cargo a day, with potentially serious consequences for international shipping. The cybernews® research team identified an open ElasticSearch database, which contained more than 243GB of […] | |||
|
2022-03-11 06:15:24 | Vodafone investigates claims of a data breach made by Lapsus$ gang (lien direct) | Vodafone is investigating a recently suffered cyberattack, after a ransomware gang Lapsus$ claimed to have stolen its source code. Vodafone announced to have launched an investigation after the Lapsus$ cybercrime group claimed to have stolen its source code. The Lapsus$ gang claims to have stolen approximately 200 GB of source code files, allegedly contained in […] | Ransomware Data Breach | ||
|
2022-03-10 21:51:37 | Crooks target Ukraine\'s IT Army with a tainted DDoS tool (lien direct) | Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have uncovered a malware campaign targeting Ukraine’s IT Army, threat actors are using infostealer malware mimicking a DDoS tool called the “Liberator.” The Liberator tool is circulating among pro-Ukraina hackers that use it to target Russian […] | Malware Tool Threat | ||
|
2022-03-10 16:10:10 | CISA added 98 domains to the joint alert related to Conti ransomware gang (lien direct) | The U.S. CISA has updated the alert on Conti ransomware and added 98 domain names used by the criminal gang. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated the alert on Conti ransomware operations, the agency added 100 domain names used by the group. The joint report published by CISA, the Federal Bureau […] | Ransomware | ||
|
2022-03-10 11:34:39 | New Emotet botnet is rapidly growing, with +130K unique bots spread across 179 countries (lien direct) | A few months after its return the Emotet botnet has already infected over 130,000 unique bots spread across 179 countries. The Emotet botnet continues to grow and has infected approximately 130,000 hosts since its resurrection in November 2021. Early 2021, law enforcement and judicial authorities worldwide conducted a joint operation, named Operation Ladybird, which disrupted the EMOTET […] | |||
|
2022-03-10 05:37:58 | TLStorm flaws allow to remotely manipulate the power of millions of enterprise UPS devices (lien direct) | Three flaws in APC Smart-UPS devices, tracked as TLStorm, could be exploited by remote attackers to hack and destroy them. Researchers from IoT security company Armis have discovered three high-impact security flaws, collectively tracked as TLStorm, affecting APC Smart-UPS devices. The flaws can allow remote attackers to manipulate the power of millions of enterprise devices carrying out extreme […] | Hack | ||
|
2022-03-09 21:09:28 | (Déjà vu) Google blocked China-linked APT31\'s attacks targeting U.S. Government (lien direct) | Google has blocked a phishing campaign conducted by China-linked group APT31 aimed at Gmail users associated with the U.S. government. Google announced to have blocked a phishing campaign originating conducted by China-linked cybereaspionage group APT31 (aka Zirconium, Judgment Panda, and Red Keres) and aimed at Gmail users associated with the U.S. government. The campaign took […] | APT 31 | ||
|
2022-03-09 15:57:44 | Multiple Russian government websites hacked in a supply chain attack (lien direct) | Threat actors hacked Russian federal agencies’ websites in a supply chain attack involving the compromise of a stats widget. Some Russian federal agencies’ websites were compromised in a supply chain attack, threat actors compromised the stats widget used to track the number of visitors by several government agencies. Threat actors were able to deface the […] | Threat | ||
|
2022-03-09 14:53:24 | Anonymous hacked Russian cams, websites, announced a clamorous leak (lien direct) | The collective Anonymous has hacked public cameras in Russia and transmitted their live feed on a website, it also announced a clamorous leak. Anonymous and other hacker groups continue to target Russia, in a recent attack the collective has taken over more than 400 Russian cameras in support of Ukraine. The hacktivist shared the live feed […] | |||
|
2022-03-09 11:40:50 | HP addressed 16 UEFI firmware flaws impacting laptops, desktops, PoS systems (lien direct) | Researchers disclosed 16 high-severity flaws in different implementations of Unified Extensible Firmware Interface (UEFI) firmware impacting multiple HP enterprise devices. Researchers from cybersecurity firm Binarly discovered 16 high-severity vulnerabilities in various implementations of Unified Extensible Firmware Interface (UEFI) firmware impacting multiple HP enterprise devices. An attacker can exploit these vulnerabilities to implant a firmware that survives […] | |||
|
2022-03-09 07:50:04 | Samsung data breach: Lapsus$ gang stole Galaxy devices\' source code (lien direct) | Samsung confirmed that threat actors had access to the source code of its Galaxy smartphones in recent security breach. Samsung this week disclosed a data breach, threat actors had access to internal company data, including the source code of Galaxy models. Last week the Lapsus$ ransomware gang claimed to have stolen a huge trove of sensitive data […] | Threat | ||
|
2022-03-09 00:26:41 | Microsoft March 2022 Patch Tuesday updates fix 89 vulnerabilities (lien direct) | Microsoft March 2022 Patch Tuesday security updates address 89 vulnerabilities in multiple products, including 3 zero-days. Microsoft March 2022 Patch Tuesday security updates address 89 vulnerabilities in multiple products, including Microsoft Windows components, Azure and Azure DevOps, Azure Sphere, Internet Explorer and Edge (EdgeHTML), Exchange Server, Office and Office Services and Web Apps, SharePoint Server, […] | |||
|
2022-03-08 21:44:44 | Google TAG: Russia, Belarus-linked APTs targeted Ukraine (lien direct) | Google TAG observed Russian, Belarusian, and Chinese threat actors targeting Ukraine and European government and military orgs. Google Threat Analysis Group (TAG), which focuses on the analysis of nation-state threat actors, revealed to have blocked attacks against hundreds of Ukrainians conducted by Belarus and Russian state-sponsored hackers. The attacks have been attributed to the Russia-linked […] | Threat | ||
|
2022-03-08 19:55:17 | Access:7 flaws impact +150 device models from over 100 manufacturers (lien direct) | Many IoT and medical devices are affected by seven serious flaws, collectively tracked as Access:7, in widely used Axeda platform. Researchers from medical device cybersecurity company CyberMDX have discovered seven serious flaws, collectively tracked as Access:7, in the widely used Axeda platform of IIoT solutions provider PTC. “Access:7 could enable hackers to remotely execute malicious […] | |||
|
2022-03-08 15:01:53 | (Déjà vu) Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors (lien direct) | The US FBI warns that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations from multiple US critical infrastructure sectors. The US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations across […] | Ransomware | ||
|
2022-03-08 12:16:38 | (Déjà vu) Ukraine\'s CERT-UA warns of phishing attacks against Ukrainian citizens (lien direct) | Ukraine’s CERT-UA warned citizens of new phishing attacks launched through compromised email accounts belonging to Indian entities. Ukraine’s Computer Emergency Response Team (CERT-UA) is warning of new phishing attacks targeting Ukrainian citizens through compromised email accounts belonging to three different Indian entities. The attacks were aimed at stealing sensitive information from compromised accounts. The malicious […] | |||
|
2022-03-08 07:53:39 | Dirty Pipe Linux flaw allows gaining root privileges on major distros (lien direct) | Dirty Pipe is a Linux vulnerability, tracked as CVE-2022-0847, that can allow local users to gain root privileges on all major distros. Security expert Max Kellermann discovered a Linux flaw, dubbed Dirty Pipe and tracked as CVE-2022-0847, that can allow local users to gain root privileges on all major distros. The vulnerability affects Linux Kernel […] | Vulnerability | ||
|
2022-03-07 21:16:37 | Coinbase blocked 25,000 crypto addresses linked to Russian individuals and entities (lien direct) | Coinbase announced that it’s blocking access to more than 25,000 blockchain addresses linked to Russian individuals and entities. The popular cryptocurrency exchange Coinbase announced today that it’s blocking access to more than 25,000 blockchain addresses linked to Russian people and entities. Coinbase chief legal officer Paul Grewal explained that its company is complying with sanctions […] | |||
|
2022-03-07 15:46:40 | SharkBot, the new generation banking Trojan distributed via Play Store (lien direct) | SharkBot banking malware was able to evade Google Play Store security checks masqueraded as an antivirus app. SharkBot is a banking trojan that has been active since October 2021, it allows to steal banking account credentials and bypass multi-factor authentication mechanisms. The malware was spotted at the end of October by researchers from cyber security firms […] | Malware | ||
|
2022-03-07 09:43:52 | Anonymous hacked Russian streaming services to broadcast war footage (lien direct) | Anonymous hacked into the most popular Russian streaming services to broadcast war footage from Ukraine. The popular hacker collective Anonymous continues to target Russian entities, a few hours ago the group hacked into the most popular Russian streaming services to broadcast war footage from Ukraine and demonstrate to Russians the atrocity of the invasion ordered […] | |||
|
2022-03-07 07:35:22 | Mozilla addresses two actively exploited zero-day flaws in Firefox (lien direct) | Mozilla fixed two critical actively exploited zero-day bugs in Firefox with the release of 97.0.2, ESR 91.6.1, Firefox for Android 97.3.0, and Focus 97.3.0. Mozilla has released Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus 97.3.0 to address a couple of critical zero-day vulnerabilities, tracked as CVE-2022-26485 and CVE-2022-26485, actively exploited in […] | |||
|
2022-03-06 23:26:57 | Anonymous offers $52,000 worth of Bitcoin to Russian troops for surrendered tank. Is it fake news? (lien direct) | The popular hacker collective Anonymous is offering to Russian troops $52,000 in BTC for each surrendered tank. The popular hacker collective Anonymous will reportedly pay $52,000 in BTC for a tank surrendered by Russian troops. Ukrainian media reported that the hacker group claims to have collected over RUB 1 billion (worth £7.8 million at the […] | |||
|
2022-03-06 18:46:11 | CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape (lien direct) | A Linux kernel flaw, tracked as CVE-2022-0492, can allow an attacker to escape a container to execute arbitrary commands on the container host. A now-patched high-severity Linux kernel vulnerability, tracked as CVE-2022-0492 (CVSS score: 7.0), can be exploited by an attacker to escape a container to execute arbitrary commands on the container host. The issue is […] | |||
|
2022-03-06 13:20:00 | Security Affairs newsletter Round 356 (lien direct) | A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Charities and NGOs providing support in Ukraine hit by malware Lapsus$ gang leaks data […] | Malware | ||
|
2022-03-06 11:40:29 | Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict (lien direct) | This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. March 5 – Anonymous #OpRussia Thousands of sites hacked, data leaks and more Anonymous and its affiliates continue to target Russia and Belarus, it is also targeting the Russian disinformation machine. March 5 – Thousands […] | |||
|
2022-03-06 10:48:53 | Charities and NGOs providing support in Ukraine hit by malware (lien direct) | Malware based attacks are targeting charities and non-governmental organizations (NGOs) providing support in Ukraine Charities and non-governmental organizations (NGOs) that in these weeks are providing support in Ukraine are targeted by malware attacks aiming to disrupt their operations. The news was reported by Amazon that associates the attacks with state-sponsored hackers and confirmed that it […] | Malware | ||
|
2022-03-05 22:11:44 | Lapsus$ gang leaks data allegedly stolen from Samsung Electronics (lien direct) | The Lapsus$ ransomware group claimed to have hacked Samsung Electronics and leaked alleged stolen confidential data. The Lapsus$ ransomware gang claims to have stolen a huge trove of sensitive data from Samsung Electronics and leaked 190GB of alleged Samsung data as proof of the hack. The gang announced the availability of the sample data on […] | Ransomware | ||
|
2022-03-05 15:24:49 | Anonymous #OpRussia Thousands of sites hacked, data leaks and more (lien direct) | Anonymous and its affiliates continue to target Russia and Belarus, it is also targeting the Russian disinformation machine. Anonymous announced to have hacked more than 2,500 websites linked to the Russian and Belarusian governments, state-owned media outlets spreading disinformation, Russian private organizations, banks, hospitals, airports. The attacks were conducted as part of the #OpRussia launched […] | |||
|
2022-03-05 09:51:30 | Thousands of satellite users offline in Europe following a cyberattack, is it a conflict spillover? (lien direct) | Thousands of satellite internet users across Europe were disconnected from the internet by a cyber-event, experts suspect a cyber attack. Orange confirmed that “nearly 9,000 subscribers” of a satellite internet service provided by its subsidiary Nordnet in France were offline following a “cyber event” that took place on February 24 at Viasat, the US giant […] | |||
|
2022-03-04 22:12:03 | Russian watchdog Roskomnadzor also blocked Facebook in Russia (lien direct) | State communications watchdog Roskomnadzor has ordered to block access to Facebook in Russia amid the ongoing invasion of Ukraine. State communications watchdog Roskomnadzor ordered to block access to Facebook over its decision to ban Russian media and state information resources. The block comes after Facebook recently deactivated or restricted access to accounts belonging to media […] | |||
|
2022-03-04 20:34:12 | CISA adds 95 flaws to the Known Exploited Vulnerabilities Catalog (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 95 vulnerabilities to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added 95 vulnerabilities to its Known Exploited Vulnerabilities Catalog. According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, FCEB agencies have to address the identified vulnerabilities […] | |||
|
2022-03-04 15:23:46 | These are the sources of DDoS attacks against Russia, local NCCC warns (lien direct) | Russian government released a list containing IP addresses and domains behind DDoS attacks that hit Russian infrastructure after the invasion. While the conflict on the battlefield continues, hacktivists continue to target Russian infrastructure exposed online. The Russian National Coordinating Center for Computer Incidents (NCCC) released a massive list containing 17,576 IP addresses and 166 domains that were involved […] | |||
|
2022-03-04 10:09:07 | Russia-Ukraine, who are the soldiers that crowd cyberspace? (lien direct) | While Russia is invading Ukraine, multiple forces are joining in the conflict, especially in the cyber space, let’s analyze them The analysis of the current scenario in cyberspace is not easy due to the presence of multiple threat actors and the difficulty of attributing the attacks. Security group CyberKnow shared an interesting analysis about the […] | Threat | ||
|
2022-03-03 22:51:03 | Avast released a free decryptor for the HermeticRansom that hit Ukraine (lien direct) | Avast released a decryptor for the HermeticRansom ransomware used in recent targeted attacks against Ukrainian entities. Avast has released a free decryptor for the HermeticRansom ransomware employed in targeted attacks against Ukrainian systems since February 23. The security firms aim at helping Ukrainians victims in recovering their file for free. The HermeticRansomware was one of […] | Ransomware | ||
|
2022-03-03 19:45:44 | 75% of medical infusion pumps affected by known vulnerabilities (lien direct) | Researchers analyzed more than 200,000 network-connected medical infusion pumps and discovered that over 100,000 of them are vulnerable. Researchers from Palo Alto Networks have analyzed more than 200,000 medical infusion pumps on the networks of hospitals and other healthcare organizations and discovered that 75% are affected by known vulnerabilities that could be exploited by attackers. […] | |||
|
2022-03-03 13:00:09 | (Déjà vu) Cisco fixed two critical flaws in Expressway, TelePresence VCS solutions (lien direct) | Cisco fixed critical flaws in its Expressway Series and TelePresence Video Communication Server (VCS) unified communications products. Cisco announced security patches for a couple of critical vulnerabilities, tracked as CVE-2022-20754 and CVE-2022-20755 (CVSS score of 9.0), in its Expressway Series and TelePresence Video Communication Server (VCS) unified communications products. “Multiple vulnerabilities in the API and […] | |||
|
2022-03-03 12:01:24 | The Difference Between Human and Machine Identities (lien direct) | As digital transformation is advancing and automation is becoming an essential component of modern enterprises, collaboration between humans and machines is crucial. With this level of interaction, a new identity problem is emerging as machines operate on behalf of humans. Collaboration between humans and machines is a working reality today. Along with this comes the […] | |||
|
2022-03-03 11:37:45 | Ukrainian WordPress sites under massive complex attacks (lien direct) | Researchers observed a spike in the attacks against Ukrainian WordPress sites since the beginning of the military invasion of the country. Cyber attacks are an important component of the military strategy against Ukraine, experts observed a spike in the attacks against Ukrainian WordPress sites since the beginning of the military invasion of the country. The […] | |||
|
2022-03-02 23:47:11 | A cyberattack on Russian satellites is an act of war, the invasion of Ukraine no (lien direct) | Russia considers it legitimate to invade another country but warns it will consider cyberattacks on its satellites an act of war. Anonymous and the numerous hacker groups that declared war on Russia continue to target Russian government entities and private businesses. Yesterday, the hacking group Network Battalion 65 ('NB65') which is affiliated with Anonymous, announced to have […] | |||
|
2022-03-02 22:41:45 | Popular open-source PJSIP library is affected by critical flaws (lien direct) | Researchers from JFrog’s Security Research team discovered five vulnerabilities in the PJSIP open-source multimedia communication library. Researchers from JFrog’s Security Research team discovered five vulnerabilities in the popular PJSIP open-source multimedia communication library. PJSIP is a communication library written in C language implementing standard-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. It […] | |||
|
2022-03-02 20:40:55 | Asylum Ambuscade spear-phishing campaign targets EU countries aiding Ukrainian refugees (lien direct) | A spear-phishing campaign, tracked as Asylum Ambuscade, targets European government personnel aiding Ukrainian refugees. Researchers from cybersecurity firm Proofpoint uncovered a spear-phishing campaign, likely conducted by a nation-state actor, that compromised a Ukrainian armed service member's email account to target European government personnel involved in managing the logistics of refugees fleeing Ukraine. The phishing messages […] | |||
|
2022-03-02 15:36:17 | (Déjà vu) NVIDIA discloses data breach after the recent ransomware attack (lien direct) | Chipmaker giant Nvidia confirmed a data breach after the recently disclosed security incident, proprietary information stolen. The chipmaker giant Nvidia was recentty victim of a ransomware attack that impacted some of its systems for two days. The security breach is not connected to the ongoing crisis in Ukraine, according to a person familiar with the […] | Ransomware Data Breach |
To see everything:
Our RSS (filtrered)
