What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
bleepingcomputer.png 2019-09-21 13:01:48 Jira Server and Service Desk Fix Critical Security Bugs (lien direct)

Atlassian released updates for Jira Service Desk and Jira Service Desk Data Center to fix a critical-severity security bug that can be exploited by anyone with access to a vulnerable customer portal. [...]

bleepingcomputer.png 2019-09-21 09:45:04 Microsoft Marks Two Windows 10 1903 Issues as Resolved (lien direct)

Microsoft has marked a Windows 10 Chinese IME issue and a Windows Desktop Search or Start Menu issue as resolved in the Windows 10 Health Dashboard. [...]

bleepingcomputer.png 2019-09-20 18:41:58 The Week in Ransomware - September 20th 2019 - Fairly Quiet (lien direct)

This has been a fairly quiet week with no real big news other than further updates from Nemty, the introduction of TFlower, and another Ordinypt campaign targeting Germany. [...]

Ransomware
bleepingcomputer.png 2019-09-20 15:03:00 Meet Stop Ransomware: The Most Active Ransomware Nobody Talks About (lien direct)

Have you ever heard of the STOP Ransomware? Probably not, as few write about it, most researchers don\'t cover it, and for the most part it targets consumers through cracked software, adware bundles, and shady sites. [...]

Ransomware
bleepingcomputer.png 2019-09-20 14:03:47 Windows 7 Voting Systems to Get Free Security Updates Through 2020 Elections (lien direct)

Microsoft announced today that they will be providing free extended security updates for Windows 7 machines that are part of a federally certified voting system. [...]

bleepingcomputer.png 2019-09-20 13:30:24 Windows 7 and Server 2008 Get 0patch Security Fixes After EoS (lien direct)

Microsoft ending support for Windows 7 and Server 2008 early next year will also stop delivery of security patches through the normal channel. But users have an alternative to get security fixes on a regular basis in the form of micropatches. [...]

bleepingcomputer.png 2019-09-20 10:17:50 Twitter Removes State-backed Actors Conducting Information Campaigns (lien direct)

Twitter has removed another batch of state-sponsored actors performing information campaigns on Twitter.  The detected operations announced today involved Qatar, Iran, Yemen, Ecuador, Saudi Arabia, Spain, China, and Hong Kong. [...]

bleepingcomputer.png 2019-09-20 09:50:00 Forcepoint Fixes Privilege Escalation Bug in Windows VPN Client (lien direct)

A vulnerability affecting all versions of Forcepoint VPN Client for Windows, save the latest release, can be used to achieve persistence and evade detection. [...]

Vulnerability
bleepingcomputer.png 2019-09-20 08:49:56 Windows 10 is Getting a New Optional Update Experience (lien direct)

Microsoft is changing the windows update experience in Windows 10 so that "optional" updates are shown in a dedicated screen that will allow you to pick which update you would like to install [...]

bleepingcomputer.png 2019-09-20 03:34:35 Selfie Android Apps with 1.5M+ Installs Push Ads, Can Record Audio (lien direct)

A couple of Android apps found in Google Play included functionality that stealthy recording audio without user consent. The apps posed as selfie camera filters and had been installed over 1.5 million times. [...]

bleepingcomputer.png 2019-09-19 17:41:37 Windows 10 Insider Build 18985 Released With Improved Bluetooth Pairing (lien direct)

Microsoft has released Windows 10 Insider Preview Build 18985 (20H1) to Insiders in the Fast ring, which includes a new optional update experience, a Snip & Sketch update, and a new Bluetooth pairing experience. [...]

bleepingcomputer.png 2019-09-19 17:07:01 Thinkful Resets All User Passwords After Security Breach (lien direct)

Online developer bootcamp company Thinkful is sending out email notifications that state an unauthorized user was able to gain access to employee accounts credentials. Due to this, they are requiring all users to reset their passwords the next time they login. [...]

bleepingcomputer.png 2019-09-19 15:44:37 Emotet Trojan Evolves Since Being Reawakend, Here is What We Know (lien direct)

With the reawakening of the Emotet botnet, the distribution methods, payloads, malicious document templates, and email templates continue to evolve. This article will go over some of the changes that have been observed by various security researchers over the past couple of days. [...]

bleepingcomputer.png 2019-09-19 12:17:59 Celebrity Instagram Accounts Being Hacked to Push Scams (lien direct)

The streak of hacked celebrity Instagram accounts continues as cybercriminals temporarily hijacked Nicole Scherzinger\'s social media profile and promised access to an alleged sex tape of the singer-songwriter. [...]

bleepingcomputer.png 2019-09-19 03:28:26 Critical Bug In Harbor Container Registry Gives Admin Access (lien direct)

Attackers can exploit a critical security vulnerability in Harbor cloud native registry for container images to obtain admin privileges on a vulnerable hosting system. [...]

Vulnerability
bleepingcomputer.png 2019-09-18 19:33:17 Microsoft Acquires Semmle, GitHub Now a CVE Numbering Authority (lien direct)

Microsoft subsidiary GitHub announced today that it has become a CVE Numbering Authority and that it completed its acquisition of Semmle code-analysis platform. [...]

bleepingcomputer.png 2019-09-18 13:27:26 Windows Defender Antivirus Scans Broken After New Update (lien direct)

Microsoft has released a new update for Windows Defender that has broken both the Quick and Full antivirus scans. When users use these scan options, Windows Defender will only scan approximately 40 files. [...]

bleepingcomputer.png 2019-09-18 10:47:41 Microsoft Phishing Page Sends Stolen Logins Using JavaScript (lien direct)

A new landing page for a Microsoft account phishing scam has been discovered that utilizes the SmtpJS service to send stolen credentials via email to the attacker. [...]

bleepingcomputer.png 2019-09-18 10:06:47 Amadey Botnet Targets U.S. Taxpayers with Tax Refund Notice (lien direct)

A phishing campaign has been spotted recently delivering Amadey botnet malware to taxpayers in the U.S. through fake income tax refund emails. [...]

Malware
bleepingcomputer.png 2019-09-18 09:04:53 Smominru Mining Botnet In Cyber Turf War With Rival Malware (lien direct)

The Smominru mining botnet continues to wreck havoc on corporate machines by not only installing cryptominers, but also stealing credentials, installing backdoors, and making system configuration modifications that could affect the proper operation of an infected machine. [...]

Malware
bleepingcomputer.png 2019-09-18 06:00:00 New TortoiseShell Group Hacks 11 IT Providers to Reach Their Customers (lien direct)

A newly discovered threat group that security researchers call TortoiseShell is compromising IT providers in what seems to be supply-chain attacks intended to reach the network of specific customers. [...]

Threat
bleepingcomputer.png 2019-09-18 02:28:29 400 Million Medical Radiological Images Exposed on the Internet (lien direct)

An analysis of medical image storage systems exposed to the public web reveals that almost 600 servers in 52 countries are completely unprotected against unauthorized access. [...]

bleepingcomputer.png 2019-09-17 18:56:14 Windows 10 With Chinese IME Installed Causing High CPU Usage (lien direct)

Recent Windows 10 updates are causing the Input Method Editor (IME) for Chinese languages to become unresponsive or use a lot of CPU. [...]

bleepingcomputer.png 2019-09-17 16:21:50 Beware of Venmo Scams Targeting Users via Text Messages (lien direct)

A local police department in the U.S. are warning of a wave of phishing scams targeting users Venmo mobile payment service with text messages that direct to a fake website. [...]

bleepingcomputer.png 2019-09-17 13:18:17 TFlower Ransomware - The Latest Attack Targeting Businesses (lien direct)

The latest ransomware targeting corporate environments is called TFlower and is being installed on networks after attackers hack into exposed Remote Desktop services. [...]

Ransomware,Hack
bleepingcomputer.png 2019-09-17 09:23:21 Misconfigured Google Calendars Share Events With the World (lien direct)

Thousands of Google users are exposing the contents of their calendars to the public. The information is indexed by search engines and can include email addresses as well as private events from individuals and businesses. [...]

bleepingcomputer.png 2019-09-17 06:31:04 Millions of Lion Air Passenger Records Exposed and Exchanged on Forums (lien direct)

Tens of millions of records from customers of two airline companies owned by Lion Air have been circulating on data exchange forums for at least a month. The info was stored in an Amazon bucket that was open on the web. [...]

bleepingcomputer.png 2019-09-17 03:34:35 Most Cyber Attacks Focus on Just Three TCP Ports (lien direct)

Small to mid-sized businesses can keep safe from most cyberattacks by protecting the ports that threat actors target the most. Three of them stand out in a crowd of more than 130,000 targeted in cyber incidents. [...]

Threat
bleepingcomputer.png 2019-09-16 16:27:14 Emotet Revived with Large Spam Campaigns Around the World (lien direct)

Less than a month after reactivating its command and control (C2) servers, the Emotet botnet has come to like by spewing spam messages to countries around the globe. [...]

Spam
bleepingcomputer.png 2019-09-16 15:41:09 Windows 10 1903 is Now Having Problems with Network Adapters (lien direct)

Microsoft has acknowledged another problem in Windows 10 version 1903 where user\'s are reporting that their network adapters suddenly stop working after installing a cumulative update. [...]

bleepingcomputer.png 2019-09-16 14:40:00 Microsoft Exchange Server 2010 Support Gets a Life Extension (lien direct)

After analyzing the deployment state of existing Microsoft Exchange customers, Microsoft has decided to move the end of support date for Exchange Server 2010 to October 13th, 2020. [...]

bleepingcomputer.png 2019-09-16 13:12:14 Phishing Attack Targets The Guardian\'s Whistleblowing Site (lien direct)

The Guardian\'s SecureDrop whistleblower submission site was targeted with a phishing page that attempted to harvest the unique "codenames" used to identify sources who used the service. In addition, this phishing page promoted an Android app that allowed attackers to perform a variety of malicious activity on a victim\'s device. [...]

bleepingcomputer.png 2019-09-16 08:24:36 Password-Revealing Bug Quickly Fixed in LastPass Extensions (lien direct)

A security vulnerability in the extension of LastPass password manager could have allowed stealing the credentials last used for logging into a website. [...]

Vulnerability
bleepingcomputer.png 2019-09-16 03:35:07 How to Enable Ransomware Protection in Windows 10 (lien direct)

Windows Defender includes a security feature called "Ransomware Protection" that allows you to enable various protections against ransomware infections.  This feature is disabled by default in Windows 10, but with ransomware running rampant, it is important to enable this feature in order to get the most protection on your computer. [...]

Ransomware
bleepingcomputer.png 2019-09-15 17:50:04 Microsoft Edge Gets a new Extensions Menu, Here\'s How to Enable It (lien direct)

The latest version of the Microsoft Edge Dev browser now includes an experimental Extensions menu that offers a more organized way to manage the installed extensions in the browser. In order to use this feature, though, you will need to start Edge with special command line arguments, which we will describe in this article. [...]

bleepingcomputer.png 2019-09-15 10:02:11 Tor\'s Bug Bash Fund Raises $86K to Fix Critical Issues (lien direct)

The Tor Project has raised $86,000 for a Bug Bash Fund that will be used to pay developers to quickly fix critical bugs such as vulnerabilities or privacy issues that leak personal information about a Tor user. [...]

bleepingcomputer.png 2019-09-14 16:12:36 Window 10 1903 OOB Update Released to to Fix USB Microphones (lien direct)

Microsoft has released an out-of-band update for Windows 10 1903 that fixes a bug that could cause USB Audio 2.0 microphones to stop working. [...]

bleepingcomputer.png 2019-09-14 15:11:58 Nemty Ransomware Update Lets It Kill Processes and Services (lien direct)

Nemty ransomware is under active development, although its version number may not show it. Its authors are clearly making efforts to make it a more efficient and sophisticated malware and it begins wider distribution. [...]

Ransomware,Malware
bleepingcomputer.png 2019-09-14 13:12:16 Microsoft Releases Workaround for Windows 10 Audio Issues in Games (lien direct)

In an update to the support bulletin for the Windows 10 1903 KB4515384 cumulative update, Microsoft has acknowledged that a change was made that would cause games to sound different or have low volume. [...]

bleepingcomputer.png 2019-09-14 11:32:31 iOS 13 Passcode Bypass Lets You View Contacts on Locked Devices (lien direct)

Just eight days before Apple plans to release iOS 13, a security researcher has disclosed a passcode bypass that allows you to view the contacts on a locked device. [...]

bleepingcomputer.png 2019-09-14 10:30:12 InnfiRAT Malware Steals Litecoin And Bitcoin Wallet Information (lien direct)

A remote access Trojan (RAT) dubbed InnfiRAT by the Zscaler ThreatLabZ team which took a closer look at its inner-workings comes with extensive sensitive information collection capabilities, including cryptocurrency wallet data. [...]

Malware
bleepingcomputer.png 2019-09-14 01:51:17 (Déjà vu) Destructive Ordinypt Malware Hitting Germany in New Spam Campaign (lien direct)

A new spam campaign is underway that pretends to be a job application from "Eva Richter" who is sending her photo and resume. This resume, though, is actually an executable masquerading as a PDF file that destroys a victim\'s files by installing the Ordinypt Wiper. [...]

Spam,Malware
bleepingcomputer.png 2019-09-14 01:51:17 New Fake \'Eva Richter\' Resume Spam Aims to Destroy Files (lien direct)

A new spam campaign is underway that pretends to be a job application from "Eva Richter" who is sending her photo and resume. This resume, though, is actually an executable masquerading as a PDF file that destroys a victim\'s files by installing the Ordinypt Wiper. [...]

Spam
bleepingcomputer.png 2019-09-13 20:40:25 The Week in Ransomware - September 13th 2019 - Exploit Kits (lien direct)

This week was your standard mix of new variants of existing ransomware and new ransomware families being released. [...]

Ransomware
bleepingcomputer.png 2019-09-13 20:16:20 North Korean Hackers Behind WannaCry and Sony Hack Sanctioned by USA (lien direct)

The U.S. Treasury signed sanctions against three hacking groups actively engaged in cyber operations meant to bring financial assets to the government of North Korea.. [...]

Hack
bleepingcomputer.png 2019-09-13 18:27:34 Suspected Hacker Arrested for Stealing and Selling Unreleased Music (lien direct)

A 19-year-old suspected hacker was arrested for allegedly accessing the cloud and website accounts of award-winning recording artists without authorizations, purportedly stealing unreleased songs and selling the stolen tracks in exchange for cryptocurrency. [...]

bleepingcomputer.png 2019-09-13 13:52:35 \'N1ghTm4r3\' Scam Threatens to Expose Victims Watching Illegal Porn (lien direct)

A new sextortion scam campaign is aiming for the inboxes of targets from Ireland, with the scammers using fictitious recordings of their victims watching child pornography to scare them into sending payments of £5,000 worth of Bitcoins. [...]

bleepingcomputer.png 2019-09-13 10:00:11 Windows 10 1903 KB4515384 Update Affects Audio Quality in Games (lien direct)

The KB4515384 Cumulative Update for Windows 10, version 1903 is causing audio quality downgrade issues in multiple games according to numerous user reports. [...]

bleepingcomputer.png 2019-09-13 05:56:05 Giant Entercom Radio Network Deals with Ransomware-Like Incident (lien direct)

Entercom Communications, one of the largest radio station owners in the U.S. has been dealing with a cyberattack that looks very much like a ransomware incident. The issue occurred over the past weekend and affects all offices the company has across the country. [...]

Ransomware
bleepingcomputer.png 2019-09-12 17:20:02 Garmin SA Shopping Portal Breach Leads to Theft of Payment Data (lien direct)

Garmin Southern Africa (Garmin SA) disclosed today in a series of notifications sent to its customers that payment and sensitive personal information were stolen from orders placed on the shop.garmin.co.za shopping portal. [...]

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21

Information mise à jours le: 2019-09-22 08:07:45
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter