What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-02-20 17:09:01 | HardBit ransomware wants insurance details to set the perfect price (lien direct) | A ransomware threat called HardBit has moved to version 2.0 and its operators are trying to negotiate a ransom payment that would be covered by the victim's insurance company. [...] | Ransomware Threat | ★★★★ | |
|
2023-02-20 16:27:42 | New Stealc malware emerges with a wide set of stealing capabilities (lien direct) | A new information stealer called Stealc has emerged on the dark web gaining traction due to aggressive promotion of stealing capabilities and similarities with malware of the same kind like Vidar, Raccoon, Mars, and Redline. [...] | Malware | ★★ | |
|
2023-02-20 08:16:23 | Samsung adds zero-click attack protection to Galaxy devices (lien direct) | Samsung has developed a new security system called Samsung Message Guard to help Galaxy smartphone users keep safe from the so-called "zero-click" exploits that use malicious image files. [...] | ★★ | ||
|
2023-02-18 10:14:24 | New WhiskerSpy malware delivered via trojanized codec installer (lien direct) | Security researchers have discovered a new backdoor called WhiskerSpy used in a campaign from a relatively new advanced threat actor tracked as Earth Kitsune, known for targeting individuals showing an interest in North Korea. [...] | Malware Threat | ★★★ | |
|
2023-02-17 12:27:16 | GoDaddy: Hackers stole source code, installed malware in multi-year breach (lien direct) | Web hosting giant GoDaddy says it suffered a breach where unknown attackers have stolen source code and installed malware on its servers after breaching its cPanel shared hosting environment in a multi-year attack. [...] | Malware | ★★★ | |
|
2023-02-17 12:19:21 | Norwegian police recover $5.8M crypto from massive Axie Infinity hack (lien direct) | Norwegian police (Økokrim) have seized 60 million kroner ($5,800,000) worth of cryptocurrency stolen by the North Korean Lazarus hacking group last year from Axie Infinity's Ronin Bridge. [...] | Hack | APT 38 | ★★ |
|
2023-02-17 09:23:28 | FBI is investigating a cybersecurity incident on its network (lien direct) | The U.S. Federal Bureau of Investigation (FBI) is reportedly investigating malicious cyber activity on the agency's network. [...] | ★★ | ||
|
2023-02-16 17:12:12 | New Mirai malware variant infects Linux devices to build DDoS botnet (lien direct) | A new Mirai botnet variant tracked as 'V3G4' targets 13 vulnerabilities in Linux-based servers and IoT devices to use in DDoS (distributed denial of service) attacks. [...] | Malware | ★★★ | |
|
2023-02-16 16:03:35 | Microsoft Exchange ProxyShell flaws exploited in new crypto-mining attack (lien direct) | A new malware dubbed 'ProxyShellMiner' exploits the Microsoft Exchange ProxyShell vulnerabilities to deploy cryptocurrency miners throughout a Windows domain to generate profit for the attackers. [...] | Malware | ★★★ | |
|
2023-02-16 15:32:09 | Scandinavian Airlines says cyberattack caused passenger data leak (lien direct) | Scandinavian Airlines (SAS) has posted a notice warning passengers that a recent multi-hour outage of its website and mobile app was caused by a cyberattack that also exposed customer data. [...] | ★★ | ||
|
2023-02-16 12:41:16 | (Déjà vu) Atlassian data leak caused by stolen employee credentials (lien direct) | Atlassian has confirmed that a breach at a third-party vendor caused a recent leak of company data and that their network and customer information is secure. [...] | ★★★★ | ||
|
2023-02-16 12:41:16 | Atlassian says recent data leak stems from third-party vendor hack (lien direct) | Atlassian has confirmed that a breach at a third-party vendor caused a recent leak of company data and that their network and customer information is secure. [...] | Hack | ★★★ | |
|
2023-02-16 11:38:40 | Hackers backdoor Microsoft IIS servers with new Frebniis malware (lien direct) | Hackers are deploying a new malware named 'Frebniss' on Microsoft's Internet Information Services (IIS) that stealthily executes commands sent via web requests. [...] | Malware | ★★ | |
|
2023-02-15 13:11:25 | Hyundai, Kia patch bug allowing car thefts with a USB cable (lien direct) | Automakers Hyundai and KIA are rolling out an emergency software update on several of their car models impacted by an easy hack that makes it possible to steal them. [...] | Hack | ★★★★ | |
|
2023-02-15 12:01:28 | Emsisoft says hackers are spoofing its certs to breach networks (lien direct) | A hacker is using fake code-signing certificates impersonating cybersecurity firm Emsisoft to target customers using its security products, hoping to bypass their defenses. [...] | ★★ | ||
|
2023-02-15 10:47:25 | City of Oakland declares state of emergency after ransomware attack (lien direct) | Oakland has declared a local state of emergency because of the impact of a ransomware attack that forced the City to take all its IT systems offline on February 8th. [...] | Ransomware | ★★ | |
|
2023-02-15 10:06:12 | My Password Manager was Hacked! How to Prevent a Catastrophe (lien direct) | A recent password manager breach sent a shockwave through the security community. No service is perfect, and that goes for password managers, so what can you do to protect yourself? [...] | ★★ | ||
|
2023-02-14 17:37:57 | RedEyes hackers use new malware to steal data from Windows, phones (lien direct) | The APT37 threat group (aka 'RedEyes' or 'ScarCruft') has been spotted using a new evasive malware named 'M2RAT' along with steganography to attack specific individuals for intelligence collection. [...] | Malware Threat Cloud | APT 37 | ★★ |
|
2023-02-14 12:25:11 | NPM packages posing as speed testers install crypto miners instead (lien direct) | A new set of 16 malicious NPM packages are pretending to be internet speed testers but are, in reality, coinminers that hijack the compromised computer's resources to mine cryptocurrency for the threat actors. [...] | Threat | ★★ | |
|
2023-02-14 11:26:54 | Healthcare giant CHS reports first data breach in GoAnywhere hacks (lien direct) | Community Health Systems (CHS) says it was impacted by a recent wave of attacks targeting a zero-day vulnerability in Fortra's GoAnywhere MFT secure file transfer platform. [...] | Data Breach Vulnerability | ★★ | |
|
2023-02-14 09:44:19 | New stealthy \'Beep\' malware focuses heavily on evading detection (lien direct) | A new stealthy malware named 'Beep' was discovered last week, featuring many features to evade analysis and detection by security software. [...] | Malware | ★★ | |
|
2023-02-14 01:34:11 | Eurostar forces \'password resets\' - then fails and locks users out (lien direct) | Eurostar is emailing its users this week, forcing them to reset their account passwords in a bid to "upgrade" security. But when users visit the password reset link, they are met with "technical problems," thereby making it impossible to reset their password or access their account. [...] | ★★ | ||
|
2023-02-13 14:50:00 | Cloudflare blocks record-breaking 71 million RPS DDoS attack (lien direct) | This weekend, Cloudflare blocked what it describes as the largest volumetric distributed denial-of-service (DDoS) attack to date. [...] | ★ | ||
|
2023-02-13 14:18:37 | Apple fixes new WebKit zero-day exploited to hack iPhones, Macs (lien direct) | Apple has released emergency security updates to address a new zero-day vulnerability used in attacks to hack iPhones, iPads, and Macs. [...] | Hack Vulnerability | ★★ | |
|
2023-02-13 05:33:19 | Pepsi Bottling Ventures suffers data breach after malware attack (lien direct) | Pepsi Bottling Ventures LLC suffered a data breach caused by a network intrusion that resulted in the installation of information-stealing malware and the extraction of data from its IT systems. [...] | Data Breach Malware | ★★ | |
|
2023-02-13 00:06:25 | Ransomware hits Technion university to protest tech layoffs and Israel (lien direct) | A new ransomware group going by the name 'DarkBit' has hit Technion - Israel Institute of Technology, one of Israel's leading research universities. The ransom note posted by DarkBit is littered with messaging protesting tech layoffs and promoting anti-Israel rhetoric, as well as the group demanding a $1.7 million payment. [...] | Ransomware Guideline | ★★ | |
|
2023-02-12 10:12:24 | Devs targeted by W4SP Stealer malware in malicious PyPi packages (lien direct) | Five malicious packages were found on the Python Package Index (PyPI), stealing passwords, Discord authentication cookies, and cryptocurrency wallets from unsuspecting developers. [...] | Malware | ★★ | |
|
2023-02-10 17:04:52 | City of Oakland systems offline after ransomware attack (lien direct) | The City of Oakland was hit by a ransomware attack on Wednesday night that forced it to take all systems offline until the network is secured and affected services are brought back online. [...] | Ransomware | ★★ | |
|
2023-02-10 15:30:15 | A10 Networks confirms data breach after Play ransomware attack (lien direct) | The California-based networking hardware manufacturer 'A10 Networks' has confirmed to BleepingComputer that the Play ransomware gang briefly gained access to its IT infrastructure and compromised data. [...] | Ransomware Data Breach | ★★ | |
|
2023-02-10 12:36:22 | California medical group data breach impacts 3.3 million patients (lien direct) | Multiple medical groups in the Heritage Provider Network in California have suffered a ransomware attack, exposing sensitive patient information to cybercriminals. [...] | Ransomware Data Breach Medical | Heritage Heritage | ★★★ |
|
2023-02-09 17:04:42 | Hackers breach Reddit to steal source code and internal data (lien direct) | Reddit suffered a cyberattack Sunday evening, allowing hackers to access internal business systems and steal internal documents and source code. [...] | ★★ | ||
|
2023-02-09 16:34:47 | Hackers use fake crypto job offers to push info-stealing malware (lien direct) | A campaign operated by Russian threat actors uses fake job offers to target Eastern Europeans working in the cryptocurrency industry, aiming to infect them with a modified version of the Stealerium malware named 'Enigma.' [...] | Malware Threat | ★★ | |
|
2023-02-09 12:39:25 | Hacker develops new \'Screenshotter\' malware to find high-value targets (lien direct) | A new threat actor tracked as TA886 targets organizations in the United States and Germany with new custom malware to perform surveillance and data theft on infected systems. [...] | Malware Threat | ★★ | |
|
2023-02-09 10:21:02 | U.S. and U.K. sanction TrickBot and Conti ransomware operation members (lien direct) | The United States and the United Kingdom have sanctioned seven Russian individuals for their involvement in the TrickBot cybercrime group, whose malware was used to support attacks by the Conti and Ryuk ransomware operation. [...] | Ransomware Malware | ★ | |
|
2023-02-08 16:21:24 | Weee! grocery service confirms data breach, 1.1 million affected (lien direct) | The Weee! Asian and Hispanic food delivery service suffered a data breach exposing the personal information of 1.1 million customers. [...] | Data Breach | ★★★ | |
|
2023-02-08 13:09:54 | (Déjà vu) Malicious Dota 2 game mods infected players with malware (lien direct) | Security researchers have discovered four malicious Dota 2 game mods that were used by a threat actor to backdoor the players' systems. [...] | Malware Threat | ★★★ | |
|
2023-02-08 13:09:54 | Malicious Dota 2 game modes infected players with malware (lien direct) | Security researchers have discovered four malicious Dota 2 game modes that were used by a threat actor to backdoor the players' systems. [...] | Malware Threat | ★★★ | |
|
2023-02-08 13:00:00 | Android 14 to block malware from abusing sensitive permissions (lien direct) | Google has announced the release of the first developer preview for Android 14, the next major version of the world's most popular mobile operating system, which comes with security and privacy enhancements, among other things. [...] | Malware | ★★★★ | |
|
2023-02-08 10:57:19 | Money Lover for Android & iOS leaked email addresses, transactions (lien direct) | A flaw in the Money Lover financial app for Android, iOS, and Windows allowed any logged-in member to see the email addresses and live transaction metadata for other users' shared wallets. [...] | ★★★ | ||
|
2023-02-08 10:04:08 | Lessons Learned on Ransomware Prevention from the Rackspace Attack (lien direct) | The ransomware attack on Rackspace has taught us the importance of good cybersecurity habits. Let's see what we can learn from the attack and how organizations can protect themselves. [...] | Ransomware | ★★★ | |
|
2023-02-08 09:59:22 | Drug distributor AmerisourceBergen confirms security breach (lien direct) | Pharmaceutical distributor AmerisourceBergen confirmed that hackers compromised the IT system of one of its subsidiaries after threat actors began leaking allegedly stolen data. [...] | Threat | ★★ | |
|
2023-02-08 06:00:00 | Russian hackers using new Graphiron information stealer in Ukraine (lien direct) | The Russian hacking group known as 'Nodaria' (UAC-0056) is using a new information-stealing malware called 'Graphiron' to steal data from Ukrainian organizations. [...] | Malware | ★★ | |
|
2023-02-07 17:21:02 | New QakNote attacks push QBot malware via Microsoft OneNote files (lien direct) | A new QBot malware campaign dubbed "QakNote" has been observed in the wild since last week, using malicious Microsoft OneNote' .one' attachments to infect systems with the banking trojan. [...] | Malware | ★★★ | |
|
2023-02-07 06:00:00 | Clop ransomware flaw allowed Linux victims to recover files for months (lien direct) | The Clop ransomware gang is now also using a malware variant that explicitly targets Linux servers, but a flaw in the encryption scheme has allowed victims to quietly recover their files for free for months. [...] | Ransomware Malware | ★★★ | |
|
2023-02-05 12:17:34 | Dashlane password manager open-sourced its Android and iOS apps (lien direct) | Dashlane announced it had made the source code for its Android and iOS apps available on GitHub under the Creative Commons Attribution-NonCommercial 4.0 license. [...] | ★★ | ||
|
2023-02-05 10:15:32 | Linux version of Royal Ransomware targets VMware ESXi servers (lien direct) | Royal Ransomware is the latest ransomware operation to add support for encrypting Linux devices to its most recent malware variants, specifically targeting VMware ESXi virtual machines. [...] | Ransomware Malware | ★★ | |
|
2023-02-04 11:23:17 | NY attorney general forces spyware vendor to alert victims (lien direct) | The New York attorney general's office has announced a $410,000 fine against a stalkerware developer who used 16 companies to promote surveillance tools illegally. [...] | ★★ | ||
|
2023-02-03 18:24:05 | TruthFinder, Instant Checkmate confirm data breach affecting 20M customers (lien direct) | PeopleConnect, the owners of the TruthFinder and Instant Checkmate background check services, confirmed they suffered a data breach after hackers leaked a 2019 backup database containing the info of millions of customers. [...] | Data Breach | ★★★ | |
|
2023-02-03 14:20:48 | Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide (lien direct) | Admins, hosting providers, and the French Computer Emergency Response Team (CERT-FR) warn that attackers actively target VMware ESXi servers unpatched against a two-year-old remote code execution vulnerability to deploy ransomware. [...] | Ransomware Vulnerability | ★★★ | |
|
2023-02-03 11:39:05 | GoAnywhere MFT zero-day vulnerability lets hackers breach servers (lien direct) | The developers of the GoAnywhere MFT file transfer solution are warning customers of zero-day remote code execution vulnerability on exposed administrator consoles. [...] | Vulnerability | ★★★ |
To see everything:
Our RSS (filtrered)
