What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-08-03 10:04:08 | Minimizing the security risks of Single Sign On implementations (lien direct) | While the use of Single Sign On resulted in some organizations adopting stronger password policies, it also created additional security risks. Learn what these risks are and how you can make SSO more secure. [...] | |||
|
2022-08-03 07:26:27 | Thousands of Solana wallets drained in attack using unknown exploit (lien direct) | An overnight attack on the Solana blockchain platform drained thousands of software wallets of cryptocurrency worth millions of U.S. dollars. [...] | |||
|
2022-08-03 05:11:19 | 35,000 code repos not hacked-but clones flood GitHub to serve malware (lien direct) | Thousands of GitHub repositories were forked (cloned) and altered to include malware, a software engineer discovered. [...] | Malware | ★★★★ | |
|
2022-08-02 16:01:04 | Chinese hackers use new Cobalt Strike-like attack framework (lien direct) | Researchers have observed a new post-exploitation attack framework used in the wild, named Manjusaka, which can be deployed as an alternative to the widely abused Cobalt Strike toolset or parallel to it for redundancy. [...] | ★★ | ||
|
2022-08-02 15:13:40 | Microsoft Defender now better at blocking ransomware on Windows 11 (lien direct) | Microsoft has released new Windows 11 builds to the Beta Channel with improved Microsoft Defender for Endpoint ransomware attack blocking capabilities. [...] | Ransomware | ||
|
2022-08-02 13:38:57 | Semiconductor manufacturer Semikron hit by LV ransomware attack (lien direct) | German power electronics manufacturer Semikron has disclosed that it was hit by a ransomware attack that partially encrypted the company's network. [...] | Ransomware | ||
|
2022-08-02 12:00:00 | Wolf in sheep\'s clothing: how malware tricks users and antivirus (lien direct) | One of the primary methods used by malware distributors to infect devices is by deceiving people into downloading and running malicious files, and to achieve this deception, malware authors are using a variety of tricks. [...] | Malware | ★★★★★ | |
|
2022-08-02 09:00:00 | Microsoft announces new external attack surface audit tool (lien direct) | Microsoft has announced a new security product allowing security teams to spot Internet-exposed resources in their organization's environment that attackers could use to breach their networks. [...] | Tool | ||
|
2022-08-01 18:33:54 | Over 3,200 apps leak Twitter API keys, some allowing account hijacks (lien direct) | Cybersecurity researchers have uncovered a set of 3,207 mobile apps that are exposing Twitter API keys to the public, potentially enabling a threat actor to take over users' Twitter accounts that are associated with the app. [...] | Threat | ||
|
2022-08-01 10:20:27 | BlackCat ransomware claims attack on European gas pipeline (lien direct) | The ransomware group known as ALPHV (aka BlackCat) has assumed over the weekend responsibility for the cyberattack that hit Creos Luxembourg last week, a natural gas pipeline and electricity network operator in the central European country. [...] | Ransomware | ||
|
2022-07-30 11:14:16 | Facebook ads push Android adware with 7 million installs on Google Play (lien direct) | Several adware apps promoted aggressively on Facebook as system cleaners and optimizers for Android devices are counting millions of installations on Google Play store. [...] | |||
|
2022-07-29 07:31:00 | Microsoft links Raspberry Robin malware to Evil Corp attacks (lien direct) | Microsoft has discovered that an access broker it tracks as DEV-0206 uses the Raspberry Robin Windows worm to deploy a malware downloader on networks where it also found evidence of malicious activity matching Evil Corp tactics. [...] | Malware | ||
|
2022-07-28 17:35:48 | Ransom payments fall as fewer victims choose to pay hackers (lien direct) | Ransomware statistics from the second quarter of the year show that the ransoms paid to extortionists have dropped in value, a trend that continues since the last quarter of 2021. [...] | Ransomware | ||
|
2022-07-28 10:19:52 | Akamai blocked largest DDoS in Europe against one of its customers (lien direct) | The cybersecurity company and cloud service provider Akamai reports having mitigated the largest DDoS (distributed denial of service) attack ever to have been recorded in Europe. [...] | |||
|
2022-07-28 10:13:54 | Malicious npm packages steal Discord users\' payment card info (lien direct) | Multiple npm packages are being used in an ongoing malicious campaign to infect Discord users with malware that steals their payment card information. [...] | Malware | ||
|
2022-07-28 05:00:00 | As Microsoft blocks Office macros, hackers find new attack vectors (lien direct) | Hackers who normally distributed malware via phishing attachments with malicious macros gradually changed tactics after Microsoft Office began blocking them by default, switching to new file types such as ISO, RAR, and Windows Shortcut (LNK) attachments. [...] | Malware | ||
|
2022-07-27 11:09:43 | Microsoft: Windows, Adobe zero-days used to deploy Subzero malware (lien direct) | Microsoft has linked a threat group it tracks as Knotweed to a cyber mercenary outfit (aka private-sector offensive actor) named DSIRF, targeting European and Central American entities using a malware toolset dubbed Subzero. [...] | Malware Threat | ||
|
2022-07-27 10:08:48 | DDoS Attack Trends in 2022: Ultrashort, Powerful, Multivector Attacks (lien direct) | The political situation in Europe and the rest of the world has degraded dramatically in 2022. This has affected the nature, intensity, and geography of DDoS attacks, which have become actively used for political purposes. Find out more in this summary of G-Core Lab's latest DDoS Trends report. [...] | |||
|
2022-07-26 13:21:59 | New Android malware apps installed 10 million times from Google Play (lien direct) | A new batch of malicious Android apps filled with adware and malware was found on the Google Play Store that have been installed close to 10 million times on mobile devices. [...] | Malware | ||
|
2022-07-26 09:38:02 | No More Ransom helps millions of ransomware victims in 6 years (lien direct) | The No More Ransom project celebrates its sixth anniversary today after helping millions of ransomware victims recover their files for free. [...] | Ransomware | ||
|
2022-07-26 07:17:37 | LockBit claims ransomware attack on Italian tax agency (lien direct) | Italian authorities are investigating claims made by the LockBit ransomware gang that they breached the network of the Italian Internal Revenue Service (L'Agenzia delle Entrate). [...] | Ransomware | ||
|
2022-07-25 21:37:04 | CosmicStrand UEFI malware found in Gigabyte, ASUS motherboards (lien direct) | Chinese-speaking hackers have been using since at least 2016 malware that lies virtually undetected in the firmware images for some motherboards, one of the most persistent threats commonly known as a UEFI rootkit. [...] | Malware | ||
|
2022-07-25 14:30:47 | Source code for Rust-based info-stealer released on hacker forums (lien direct) | A malware author released the source code of their info-stealer for free on hacking forums earlier this month, and security analysts already report observing several samples being deployed in the wild. [...] | Malware | ★★★★★ | |
|
2022-07-25 12:16:04 | Hackers exploited PrestaShop zero-day to breach online stores (lien direct) | Hackers are targeting websites using the PrestaShop platform, leveraging a previously unknown vulnerability chain to perform code execution and potentially steal customers' payment information. [...] | Vulnerability | ||
|
2022-07-24 12:11:22 | Amadey malware pushed via software cracks in SmokeLoader campaign (lien direct) | A new version of the Amadey Bot malware is distributed through the SmokeLoader malware, using software cracks and keygen sites as lures. [...] | Malware | ||
|
2022-07-24 11:18:09 | QBot phishing uses Windows Calculator sideloading to infect devices (lien direct) | The operators of the QBot malware have been using the Windows Calculator to side-load the malicious payload on infected computers. [...] | Malware | ||
|
2022-07-23 12:08:04 | North Korean hackers attack EU targets with Konni RAT malware (lien direct) | Threat analysts have uncovered a new campaign attributed to APT37, a North Korean group of hackers, targeting high-value organizations in the Czech Republic, Poland, and other European countries. [...] | Malware Threat Cloud | APT 37 | |
|
2022-07-22 18:00:35 | Hacker selling Twitter account data of 5.4 million users for $30k (lien direct) | Twitter has suffered a data breach after threat actors used a vulnerability to build a database of phone numbers and email addresses belonging to 5.4 million accounts, with the data now up for sale on a hacker forum for $30,000. [...] | Data Breach Vulnerability Threat | ||
|
2022-07-22 11:05:22 | Atlassian: Confluence hardcoded password was leaked, patch now! (lien direct) | Australian software firm Atlassian warned customers to immediately patch a critical vulnerability that provides remote attackers with hardcoded credentials to log into unpatched Confluence Server and Data Center servers. [...] | Vulnerability | ||
|
2022-07-22 06:56:22 | Hackers breach Ukrainian radio network to spread fake news about Zelenskiy (lien direct) | On Thursday, Ukrainian media group TAVR Media confirmed that it was hacked to spread fake news about President Zelenskiy being in critical condition and under intensive care. [...] | |||
|
2022-07-21 12:44:18 | Chrome zero-day used to infect journalists with Candiru spyware (lien direct) | The Israeli spyware vendor Candiru was found using a zero-day vulnerability in Google Chrome to spy on journalists and other high-interest individuals in the Middle East with the 'DevilsTongue' spyware. [...] | Vulnerability | ||
|
2022-07-21 05:42:43 | New \'Lightning Framework\' Linux malware installs rootkits, backdoors (lien direct) | A new and previously undetected malware dubbed 'Lightning Framework' targets Linux systems and can be used to backdoor infected devices using SSH and deploy multiple types of rootkits. [...] | Malware | ||
|
2022-07-20 18:45:38 | Neopets data breach exposes personal data of 69 million members (lien direct) | Virtual pet website Neopets has suffered a data breach leading to the theft of source code and a database containing the personal information of over 69 million members. [...] | Data Breach Guideline | ||
|
2022-07-20 17:13:33 | Google boosts Android privacy with support for DNS-over-HTTP/3 (lien direct) | Google has added support for the DNS-over-HTTP/3 (DoH3) protocol on Android 11 and later to increase the privacy of DNS queries while providing better performance. [...] | |||
|
2022-07-20 10:03:06 | 3rd Party Services Are Falling Short on Password Security (lien direct) | Preventing the use of weak and leaked passwords within an enterprise environment is a manageable task for your IT department, but what about other services where end-users share business-critical data in order to do their work? They could be putting your organization at risk, and the team at Specops Software decided to see for sure. [...] | |||
|
2022-07-19 14:19:59 | Malicious Android apps with 300K installs found on Google Play (lien direct) | Cybersecurity researchers have discovered three Android malware families infiltrating the Google Play Store, hiding their malicious payloads inside many seemingly innocuous applications. [...] | Malware | ||
|
2022-07-19 13:06:41 | Google catches Turla hackers deploying Android malware in Ukraine (lien direct) | Google's Threat Analysis Group (TAG), whose primary goal is to defend Google users from state-sponsored attacks, said today that Russian-backed threat groups are still focusing their attacks on Ukrainian organizations. [...] | Malware Threat | ||
|
2022-07-19 09:52:32 | Air-gapped systems leak data via SATA cable WiFi antennas (lien direct) | An Israeli security researcher has demonstrated a novel attack against air-gapped systems by leveraging the SATA cables inside computers as a wireless antenna to emanate data via radio signals. [...] | |||
|
2022-07-19 05:30:00 | New CloudMensis malware backdoors Macs to steal victims\' data (lien direct) | Unknown threat actors are using previously undetected malware to backdoor macOS devices and exfiltrate information in a highly targeted series of attacks. [...] | Malware Threat | ||
|
2022-07-18 10:42:28 | Roaming Mantis hits Android and iOS users in malware, phishing attacks (lien direct) | After hitting Germany, Taiwan, South Korea, Japan, the US, and the U.K. the Roaming Mantis operation moved to targeting Android and iOS users in France, likely compromising tens of thousands of devices. [...] | |||
|
2022-07-18 10:04:02 | (Déjà vu) Enforcing Password History in Your Windows AD to Curb Password Reuse (lien direct) | 65% of end-users openly admit to reusing the same password for one or more (or all!) of their accounts. Password history requirements discourage this behavior by making it more difficult for a user to reuse their old password. [...] | |||
|
2022-07-18 10:04:02 | Enforcing Password History in Your AD to Curb Password Reuse (lien direct) | 65% of end-users openly admit to reusing the same password for one or more (or all!) of their accounts. Password history requirements discourage this behavior by making it more difficult for a user to reuse their old password. [...] | |||
|
2022-07-16 11:07:04 | Hackers pose as journalists to breach news media org\'s networks (lien direct) | Researchers following the activities of advanced persistent (APT) threat groups originating from China, North Korea, Iran, and Turkey say that journalists and media organizations have remained a constant target for state-aligned actors. [...] | Threat | ||
|
2022-07-16 10:11:12 | (Déjà vu) Elastix VoIP systems hacked in massive campaign to install PHP web shells (lien direct) | Threat analysts have uncovered a large-scale campaign targeting Elastix VoIP telephony servers with more than 500,000 malware samples over a period of three months. [...] | Malware Threat | ||
|
2022-07-16 10:11:12 | Massive campaign hits Elastix VoIP systems with 500,000 unique malware samples (lien direct) | Threat analysts have uncovered a large-scale campaign targeting Elastix VoIP telephony servers with more than 500,000 malware samples over a period of three months. [...] | Malware Threat | ||
|
2022-07-15 13:46:43 | Password recovery tool infects industrial systems with Sality malware (lien direct) | A threat actor is infecting industrial control systems (ICS) to create a botnet through password "cracking" software for programmable logic controllers (PLCs). [...] | Malware Tool Threat | ||
|
2022-07-14 11:53:39 | Mantis botnet behind the record-breaking DDoS attack in June (lien direct) | The record-breaking distributed denial-of-service (DDoS) attack that Cloudflare mitigated last month originated from a new botnet called Mantis, which is currently described as "the most powerful botnet to date." [...] | |||
|
2022-07-14 03:13:23 | New Retbleed speculative execution CPU attack bypasses Retpoline fixes (lien direct) | Security researchers have discovered a new speculative execution attack called Retbleed that affects processors from both Intel and AMD and could be used to extract sensitive information. [...] | |||
|
2022-07-13 17:52:46 | New Lilith ransomware emerges with extortion site, lists first victim (lien direct) | A new ransomware operation has been launched under the name 'Lilith,' and it has already posted its first victim on a data leak site created to support double-extortion attacks. [...] | Ransomware | ||
|
2022-07-13 16:50:18 | Bandai Namco confirms hack after ALPHV ransomware data leak threat (lien direct) | Game publishing giant Bandai Namco has confirmed that they suffered a cyberattack that may have resulted in the theft of customers' personal data. [...] | Ransomware Hack Threat |
To see everything:
Our RSS (filtrered)
