What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-01-17 18:09:38 | (Déjà vu) Hackers push malware via Google search ads for VLC, 7-Zip, CCleaner (lien direct) | Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results. [...] | Malware | CCleaner CCleaner | ★ |
|
2023-01-17 18:09:38 | Hackers turn to Google search ads to push info-stealing malware (lien direct) | Hackers are setting up fake websites for popular free and open-source software to promote malicious downloads through advertisements in Google search results. [...] | Malware | ★★★ | |
|
2023-01-17 14:53:40 | Hackers can use GitHub Codespaces to host and deliver malware (lien direct) | GitHub Codespaces, a cloud-hosted integrated development environment (IDE), has a port forwarding feature that malicious actors can abuse to host and distribute malware to unaware developers. [...] | Malware | ★ | |
|
2023-01-17 09:50:18 | Nissan North America data breach caused by vendor-exposed database (lien direct) | Nissan North America has begun sending data breach notifications informing customers of a breach at a third-party service provider that exposed customer information. [...] | Data Breach | ★★★★ | |
|
2023-01-16 14:08:19 | Datadog rotates RPM signing key exposed in CircleCI hack (lien direct) | Cloud security firm Datadog says that one of its RPM GPG signing keys and its passphrase have been exposed during a recent CircleCI security breach. [...] | Hack | ★★ | |
|
2023-01-16 11:41:30 | Malicious \'Lolip0p\' PyPi packages install info-stealing malware (lien direct) | A threat actor has uploaded to the PyPI (Python Package Index) repository three malicious packages that carry code to drop info-stealing malware on developers' systems. [...] | Malware Threat | ★★★ | |
|
2023-01-16 07:15:34 | Avast releases free BianLian ransomware decryptor (lien direct) | Security software company Avast has released a free decryptor for the BianLian ransomware strain to help victims of the malware recover locked files without paying the hackers. [...] | Ransomware Malware | ★★ | |
|
2023-01-14 17:28:34 | CircleCI\'s hack caused by malware stealing engineer\'s 2FA-backed session (lien direct) | Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee's 2FA-backed SSO session, allowing access to the company's internal systems. [...] | Malware Hack | ★★★★ | |
|
2023-01-13 19:17:55 | The Week in Ransomware - January 13th 2023 - LockBit in the spotlight (lien direct) | The LockBit ransomware operation has again taken center stage in the ransomware news, as we learned yesterday they were behind the attack on Royal Mail. [...] | Ransomware | ★★ | |
|
2023-01-13 11:47:56 | NortonLifeLock warns that hackers breached Password Manager accounts (lien direct) | Gen Digital, formerly Symantec Corporation and NortonLifeLock, is sending data breach notifications to customers, informing them that hackers have successfully breached Norton Password Manager accounts in credential-stuffing attacks. [...] | Data Breach | ★★★ | |
|
2023-01-12 17:24:02 | RAT malware campaign tries to evade detection using polyglot files (lien direct) | Operators of the StrRAT and Ratty remote access trojans (RAT) are running a new campaign using polyglot MSI/JAR and CAB/JAR files to evade detection from security tools. [...] | Malware | ★★★ | |
|
2023-01-12 15:41:56 | Android TV box on Amazon came pre-installed with malware (lien direct) | A Canadian system administrator discovered that an Android TV box purchased from Amazon was pre-loaded with persistent, sophisticated malware baked into its firmware. [...] | Malware | ★★★ | |
|
2023-01-12 11:31:36 | Vice Society ransomware claims attack on Australian firefighting service (lien direct) | Australia's Fire Rescue Victoria has disclosed a data breach caused by a December cyberattack that is now claimed by the Vice Society ransomware gang. [...] | Ransomware Data Breach | ★★ | |
|
2023-01-11 16:55:47 | Scattered Spider hackers use old Intel driver to bypass security (lien direct) | A financially motivated threat actor tracked as Scattered Spider was observed attempting to deploy Intel Ethernet diagnostics drivers in a BYOVD (Bring Your Own Vulnerable Driver) attack to evade detection from EDR (Endpoint Detection and Response) security products. [...] | Threat | ★★★ | |
|
2023-01-11 12:24:19 | Gootkit malware abuses VLC to infect healthcare orgs with Cobalt Strike (lien direct) | The Gootkit loader malware operators are running a new SEO poisoning campaign that abuses VLC Media Player to infect Australian healthcare entities with Cobalt Strike beacons. [...] | Malware | ★★ | |
|
2023-01-11 02:00:00 | New Dark Pink APT group targets govt and military with custom malware (lien direct) | Attacks targeting government agencies and military bodies in multiple countries in the APAC region have been attributed to what appears to be a new advanced threat actor that leverages custom malware to steal confidential information. [...] | Malware Threat | ★★ | |
|
2023-01-10 18:05:01 | Over 1,300 fake AnyDesk sites push Vidar info-stealing malware (lien direct) | A massive campaign using over 1,300 domains to impersonate the official AnyDesk site is underway, all redirecting to a Dropbox folder recently pushing the Vidar information-stealing malware. [...] | Malware | ★★★★ | |
|
2023-01-10 15:20:13 | Trojan Puzzle attack trains AI assistants into suggesting malicious code (lien direct) | Researchers at the universities of California, Virginia, and Microsoft have devised a new poisoning attack that could trick AI-based coding assistants into suggesting dangerous code. [...] | ★★★★ | ||
|
2023-01-10 10:30:50 | (Déjà vu) StrongPity hackers target Android users via trojanized Telegram app (lien direct) | The StrongPity APT hacking group is distributing a fake Shagle chat app that is a trojanized version of the Telegram for Android app with an added backdoor. [...] | ★ | ||
|
2023-01-10 10:30:50 | Hackers target Android users with fake Shagle video-chat app (lien direct) | The StrongPity APT hacking group is distributing a fake Shagle chat app that is a trojanized version of the Telegram for Android app with an added backdoor. [...] | ★★★ | ||
|
2023-01-09 16:16:26 | Microsoft: Kubernetes clusters hacked in malware campaign via PostgreSQL (lien direct) | The Kinsing malware is now actively breaching Kubernetes clusters by leveraging known weaknesses in container images and misconfigured, exposed PostgreSQL containers. [...] | Malware | Uber | ★★ |
|
2023-01-09 15:13:05 | Darknet drug markets move to custom Android apps for increased privacy (lien direct) | Online markets selling drugs and other illegal substances on the dark web have started to use custom Android apps for increased privacy and to evade law enforcement. [...] | ★★ | ||
|
2023-01-07 10:12:06 | Malicious PyPi packages create CloudFlare Tunnels to bypass firewalls (lien direct) | Six malicious packages on PyPI, the Python Package Index, were found installing information-stealing and RAT (remote access trojan) malware while using Cloudflare Tunnel to bypass firewall restrictions for remote access. [...] | Malware | ★★ | |
|
2023-01-06 13:11:19 | FCC wants telecom carriers to report data breaches faster (lien direct) | The U.S. Federal Communications Commission wants to strengthen federal law enforcement and modernize breach notification requirements for telecommunications companies so that they notify customers of security breaches faster. [...] | ★★ | ||
|
2023-01-05 17:58:30 | Rackspace: Customer email data accessed in ransomware attack (lien direct) | Rackspace revealed on Thursday that attackers behind last month's incident accessed some of its customers' Personal Storage Table (PST) files which can contain a wide range of information, including emails, calendar data, contacts, and tasks. [...] | Ransomware | ★ | |
|
2023-01-05 10:17:25 | SpyNote Android malware infections surge after source code leak (lien direct) | The Android malware family tracked as SpyNote (or SpyMax) has had a sudden increase in detections in the final quarter of 2022, which is attributed to a source code leak of one of its latest, known as 'CypherRat.' [...] | Malware | ★★ | |
|
2023-01-05 00:39:59 | CircleCI warns of security breach - rotate your secrets! (lien direct) | CircleCI, a software development service has disclosed a security incident and is urging users to rotate their secrets. The CI/CD platform touts having a user base comprising more than one million engineers who rely on the service for "speed and reliability" of their builds. [...] | ★★ | ||
|
2023-01-04 17:29:46 | New SHC-compiled Linux malware installs cryptominers, DDoS bots (lien direct) | A new Linux malware downloader created using SHC (Shell Script Compiler) has been spotted in the wild, infecting systems with Monero cryptocurrency miners and DDoS IRC bots. [...] | Malware | ★★ | |
|
2023-01-04 15:16:06 | 200 million Twitter users\' email addresses allegedly leaked online (lien direct) | A data leak described as containing email addresses for 200 million Twitter users has been published on a popular hacker forum for about $2. BleepingComputer has confirmed the validity of many of the email addresses listed in the leak. [...] | ★★ | ||
|
2023-01-04 12:16:37 | Hackers abuse Windows error reporting tool to deploy malware (lien direct) | Hackers are abusing the Windows Problem Reporting (WerFault.exe) error reporting tool for Windows to load malware into a compromised system's memory using a DLL sideloading technique. [...] | Malware Tool | ★★ | |
|
2023-01-03 15:13:35 | Rail giant Wabtec discloses data breach after Lockbit ransomware attack (lien direct) | U.S. rail and locomotive company Wabtec Corporation has disclosed a data breach that exposed personal and sensitive information. [...] | Ransomware Data Breach | ★★ | |
|
2023-01-03 13:10:01 | BitRAT malware campaign uses stolen bank data for phishing (lien direct) | Threat actors behind a recent malware campaign have been using the stolen information of bank customers in Colombia as lures in phishing emails designed to infect targets with the BitRAT remote access trojan, according to cloud security firm Qualys. [...] | Malware Threat | ★★ | |
|
2023-01-03 11:40:00 | Royal ransomware claims attack on Queensland University of Technology (lien direct) | The Royal ransomware gang has claimed responsibility for a recent cyberattack on the Queensland University of Technology and begun to leak data allegedly stolen during the security breach. [...] | Ransomware | ★★ | |
|
2023-01-01 15:54:56 | Ransomware gang cloned victim\'s website to leak stolen data (lien direct) | The ALPHV ransomware operators have gotten creative with their extortion tactic and, in at least one case, created a replica of the victim's site to publish stolen data on it. [...] | Ransomware | ★★★ | |
|
2023-01-01 01:26:52 | PyTorch discloses malicious dependency chain compromise over holidays (lien direct) | PyTorch has identified a malicious dependency with the same name as the framework's 'torchtriton' library. This has led to a successful compromise via the dependency confusion attack vector. [...] | ★★★ | ||
|
2022-12-30 11:44:55 | LockBit ransomware claims attack on Port of Lisbon in Portugal (lien direct) | A cyberattack hitting the Port of Lisbon Administration (APL), the third-largest port in Portugal, on Christmas day has been claimed by the LockBit ransomware gang. [...] | Ransomware | ★★ | |
|
2022-12-30 11:09:56 | Canadian mining firm shuts down mill after ransomware attack (lien direct) | The Copper Mountain Mining Corporation (CMMC), a Canadian copper mining company in British Columbia, has announced it has become the target of a ransomware attack that impacted its operations. [...] | Ransomware | ★★★ | |
|
2022-12-30 10:41:11 | New Linux malware uses 30 plugin exploits to backdoor WordPress sites (lien direct) | A previously unknown Linux malware has been exploiting 30 vulnerabilities in multiple outdated WordPress plugins and themes to inject malicious JavaScript. [...] | Malware | ★★★ | |
|
2022-12-29 10:03:07 | Crypto trading platform 3Commas admits massive API key leak (lien direct) | An anonymous Twitter user published yesterday a set of 10,000 API keys allegedly obtained from the 3Commas cryptocurrency trading platform. [...] | ★★★ | ||
|
2022-12-28 14:12:16 | Hackers abuse Google Ads to spread malware in legit software (lien direct) | Malware operators have been increasingly abusing the Google Ads platform to spread malware to unsuspecting users searching for popular software products. [...] | Malware | ★★★ | |
|
2022-12-28 13:40:37 | Royal ransomware claims attack on Intrado telecom provider (lien direct) | The Royal Ransomware gang claimed responsibility for a cyber attack against telecommunications company Intrado on Tuesday. [...] | Ransomware | ★★ | |
|
2022-12-28 08:54:26 | Ransomware attack at Louisiana hospital impacts 270,000 patients (lien direct) | The Lake Charles Memorial Health System (LCMHS) is sending out notices of a data breach affecting thousands of people who have received care at one of its medical centers. [...] | Ransomware Data Breach Medical | ★★ | |
|
2022-12-27 08:39:20 | EarSpy attack eavesdrops on Android phones via motion sensors (lien direct) | A team of researchers has developed an eavesdropping attack for Android devices that can, to various degrees, recognize the caller's gender and identity, and even discern private speech. [...] | ★★★ | ||
|
2022-12-24 10:08:16 | New info-stealer malware infects software pirates via fake cracks sites (lien direct) | A new information-stealing malware named 'RisePro' is being distributed through fake cracks sites operated by the PrivateLoader pay-per-install (PPI) malware distribution service. [...] | Malware | ★★ | |
|
2022-12-23 10:06:30 | Massive Twitter data leak investigated by EU privacy watchdog (lien direct) | The Irish Data Protection Commission (DPC) has launched an inquiry regarding a massive Twitter data leak following last month's news reports that non-public information belonging to over 5.4 million Twitter user records has been leaked on a hacking forum. [...] | ★★ | ||
|
2022-12-22 17:25:27 | Leading sports betting firm BetMGM discloses data breach (lien direct) | Leading sports betting company BetMGM disclosed a data breach after a threat actor stole personal information belonging to an undisclosed number of customers. [...] | Data Breach Threat Guideline | ★★★★ | |
|
2022-12-22 16:12:09 | Lastpass: Hackers stole customer vault data in cloud storage breach (lien direct) | LastPass revealed today that attackers stole customer vault data after breaching its cloud storage earlier this year using information stolen during an August 2022 incident. [...] | LastPass | ★ | |
|
2022-12-22 14:32:57 | Comcast Xfinity accounts hacked in widespread 2FA bypass attacks (lien direct) | Comcast Xfinity customers report their accounts being hacked in widespread attacks that bypass two-factor authentication. These compromised accounts are then used to reset passwords for other services, such as the Coinbase and Gemini crypto exchanges. [...] | ★★ | ||
|
2022-12-22 08:00:00 | FIN7 hackers create auto-attack platform to breach Exchange servers (lien direct) | The notorious FIN7 hacking group uses an auto-attack system that exploits Microsoft Exchange and SQL injection vulnerabilities to breach corporate networks, steal data, and select targets for ransomware attacks based on financial size. [...] | Ransomware | ★★★ | |
|
2022-12-21 17:44:16 | Samsung and Google fix Microsoft Intune Android 13 enrollment issue (lien direct) | Microsoft has confirmed today that Samsung and Google have fixed an Intune enrollment issue affecting Galaxy S22 smartphones running Android 13. [...] | ★★★ |
To see everything:
Our RSS (filtrered)
