What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-06-14 10:31:34 | Cloudflare mitigates record-breaking HTTPS DDoS attack (lien direct) | Internet infrastructure firm Cloudflare said today that it mitigated a 26 million request per second distributed denial-of-service (DDoS) attack, the largest HTTPS DDoS attack detected to date. [...] | |||
|
2022-06-13 18:54:20 | Kaiser Permanente data breach exposes health data of 69K people (lien direct) | Kaiser Permanente, one of America's leading not-for-profit health plans and health care providers, has recently disclosed a data breach that exposed the health information of more than 69,000 individuals. [...] | Data Breach Guideline | ||
|
2022-06-13 17:56:20 | Gallium hackers backdoor finance, govt orgs using new PingPull malware (lien direct) | The Gallium state-sponsored hacking group has been spotted using a new 'PingPull' remote access trojan against financial institutions and government entities in Europe, Southeast Asia, and Africa. [...] | Malware | ||
|
2022-06-13 17:12:27 | Internet Explorer (almost) breathes its final byte on Wednesday (lien direct) | Microsoft will finally end support for Internet Explorer on multiple Windows versions on Wednesday, June 15, almost 27 years after its launch on August 24, 1995. [...] | |||
|
2022-06-13 15:32:59 | Hackers clone Coinbase, MetaMask mobile wallets to steal your crypto (lien direct) | Security researchers have uncovered a large-scale malicious operation that uses trojanized mobile cryptocurrency wallet applications for Coinbase, MetaMask, TokenPocket, and imToken services. [...] | |||
|
2022-06-13 14:15:20 | Metasploit 6.2.0 improves credential theft, SMB support features, more (lien direct) | Metasploit 6.2.0 has been released with 138 new modules, 148 new improvements/features, and 156 bug fixes since version 6.1.0 was released in August 2021. [...] | |||
|
2022-06-13 13:14:14 | Microsoft: Exchange servers hacked to deploy BlackCat ransomware (lien direct) | Microsoft says BlackCat ransomware affiliates are now attacking Microsoft Exchange servers using exploits targeting unpatched vulnerabilities. [...] | Ransomware | ||
|
2022-06-13 11:13:00 | New Syslogk Linux rootkit uses magic packets to trigger backdoor (lien direct) | A new rootkit malware named 'Syslogk' has been spotted in the wild, and it features advanced process and file hiding techniques that make detection highly unlikely. [...] | Malware | ||
|
2022-06-13 10:28:07 | Russian hackers start targeting Ukraine with Follina exploits (lien direct) | Ukraine's Computer Emergency Response Team (CERT) is warning that the Russian hacking group Sandworm may be exploiting Follina, a remote code execution vulnerability in Microsoft Windows Support Diagnostic Tool (MSDT) currently tracked as CVE-2022-30190. [...] | Tool Vulnerability | ||
|
2022-06-12 15:03:44 | PyPI package \'keep\' mistakenly included a password stealer (lien direct) | PyPI packages 'keep,' 'pyanxdns,' 'api-res-py' were found to contain a password-stealer and a backdoor due to the presence of malicious 'request' dependency within some versions. [...] | |||
|
2022-06-12 13:25:22 | New Vytal Chrome extension hides location info that your VPN can\'t (lien direct) | A new Google Chrome browser extension called Vytal prevents webpages from using programming APIs to find your geographic location leaked, even when using a VPN. [...] | |||
|
2022-06-12 10:11:04 | Hello XD ransomware now drops a backdoor while encrypting (lien direct) | Cybersecurity researchers report increased activity of the Hello XD ransomware, whose operators are now deploying an upgraded sample featuring stronger encryption. [...] | Ransomware | ||
|
2022-06-11 11:46:31 | WiFi probing exposes smartphone users to tracking, info leaks (lien direct) | Researchers at the University of Hamburg in Germany have conducted a field experiment capturing hundreds of thousands of passersby's WiFi connection probe requests to determine the type of data transmitted without the device owners realizing it. [...] | |||
|
2022-06-11 10:31:49 | Confluence servers hacked to deploy AvosLocker, Cerber2021 ransomware (lien direct) | Ransomware gangs are now targeting a recently patched and actively exploited remote code execution (RCE) vulnerability affecting Atlassian Confluence Server and Data Center instances for initial access to corporate networks. [...] | Ransomware Vulnerability | ||
|
2022-06-10 18:18:21 | The Week in Ransomware - June 10th 2022 - Targeting Linux (lien direct) | It has been relatively quiet this week with many companies and researchers at the RSA conference. However, we still had some interesting ransomware reports released this week. [...] | Ransomware | ||
|
2022-06-10 15:15:17 | New PACMAN hardware attack targets Macs with Apple M1 CPUs (lien direct) | A new hardware attack targeting Pointer Authentication in Apple M1 CPUs with speculative execution enables attackers to gain arbitrary code execution on Mac systems. [...] | |||
|
2022-06-10 14:06:32 | Iranian hackers target energy sector with new DNS backdoor (lien direct) | The Iranian Lycaeum APT hacking group uses a new .NET-based DNS backdoor to conduct attacks on companies in the energy and telecommunication sectors. [...] | |||
|
2022-06-10 11:29:46 | Hackers exploit recently patched Confluence bug for cryptomining (lien direct) | A cryptomining hacking group has been observed exploiting the recently disclosed remote code execution flaw in Atlassian Confluence servers to install miners on vulnerable servers. [...] | |||
|
2022-06-09 17:43:34 | Microsoft starts rolling out Windows 11 File Explorer tabs (lien direct) | Microsoft is finally rolling out the new File Explorer tabbed interface with the release of Windows 11 Insider Preview Build 25136 to the Dev Channel. [...] | |||
|
2022-06-09 15:29:09 | (Déjà vu) Roblox Game Pass store used to sell ransomware decryptor (lien direct) | A new ransomware is taking the unusual approach of selling its decryptor on the Roblox gaming platform using the service's in-game Robux currency. [...] | Ransomware | ||
|
2022-06-09 14:09:24 | New Notepad, Media Player updates out for Windows 11 Insiders (lien direct) | Microsoft has announced that the Windows 11 Notepad and Media Player applications are getting some new updates for Windows Insiders. [...] | |||
|
2022-06-09 12:35:04 | Microsoft Defender now isolates hacked, unmanaged Windows devices (lien direct) | Microsoft has announced a new feature for Microsoft Defender for Endpoint (MDE) to help organizations prevent attackers and malware from using compromised unmanaged devices to move laterally through the network. [...] | Malware | ||
|
2022-06-09 11:43:51 | Vice Society ransomware claims attack on Italian city of Palermo (lien direct) | The Vice Society ransomware group has claimed responsibility for the recent cyber attack on the city of Palermo in Italy, which has caused a large-scale service outage. [...] | Ransomware | ||
|
2022-06-09 08:30:00 | (Déjà vu) Dark web sites selling alleged Western weapons sent to Ukraine (lien direct) | Several weapon marketplaces on the dark web have listed military-grade firearms allegedly coming from Western countries that sent them to support the Ukrainian army in its fight against the Russian invaders. [...] | |||
|
2022-06-09 08:30:00 | Dark web sites selling Western weapons allegedly sent to Ukraine (lien direct) | Several weapon marketplaces on the dark web have listed military-grade firearms allegedly coming from Western countries that sent them to support the Ukrainian army in its fight against the Russian invaders. [...] | |||
|
2022-06-09 08:00:24 | New Symbiote malware infects all running processes on Linux systems (lien direct) | Threat analysts have discovered a new malware targeting Linux systems that operates as a symbiote in the host, blending perfectly with running processes and network traffic to steal account credentials and give its operators backdoor access. [...] | Malware Threat | ★★ | |
|
2022-06-09 07:00:00 | Chinese hacking group Aoqin Dragon quietly spied orgs for a decade (lien direct) | A previously unknown Chinese-speaking threat actor has been uncovered by threat analysts SentinelLabs who were able to link it to malicious activity going as far back as 2013. [...] | Threat | ||
|
2022-06-08 17:26:23 | Kali Linux team to stream free penetration testing course on Twitch (lien direct) | Offensive Security, the creators of Kali Linux, announced today that they would be offering free access to their live-streamed 'Penetration Testing with Kali Linux (PEN-200/PWK)' training course later this month. [...] | |||
|
2022-06-08 14:54:04 | Massive Facebook Messenger phishing operation generates millions (lien direct) | Researchers have uncovered a large-scale phishing operation that abused Facebook and Messenger to lure millions of users to phishing pages, tricking them into entering their account credentials and seeing advertisements. [...] | |||
|
2022-06-08 14:22:49 | Linux botnets now exploit critical Atlassian Confluence bug (lien direct) | Several botnets are now using exploits targeting a critical remote code execution (RCE) vulnerability to infect Linux servers running unpatched Atlassian Confluence Server and Data Center installs. [...] | Vulnerability | ||
|
2022-06-08 12:20:26 | Emotet malware now steals credit cards from Google Chrome users (lien direct) | The Emotet botnet is now attempting to infect potential victims with a credit card stealer module designed to harvest credit card information stored in Google Chrome user profiles. [...] | Malware | ||
|
2022-06-08 10:55:57 | Cuba ransomware returns to extorting victims with updated encryptor (lien direct) | The Cuba ransomware operation has returned to regular operations with a new version of its malware found used in recent attacks. [...] | Ransomware Malware | ||
|
2022-06-08 09:52:37 | Poisoned CCleaner search results spread information-stealing malware (lien direct) | Malware that steals your passwords, credit cards, and crypto wallets is being promoted through search results for a pirated copy of the CCleaner Pro Windows optimization program. [...] | Malware | CCleaner CCleaner | |
|
2022-06-07 22:05:10 | Surfshark, ExpressVPN pull out of India over data retention laws (lien direct) | Surfshark announced today they are shutting down its VPN (virtual private network) services in India in response to the new requirements in the country that demand all providers to keep customer logs for 180 days. [...] | |||
|
2022-06-07 19:58:35 | Telegram to soon launch its premium plan at $4.99 per month (lien direct) | In addition to official advertisements in the messaging app, Telegram is also bringing a new premium subscription to the messaging app. [...] | |||
|
2022-06-07 19:47:45 | US seizes SSNDOB market for selling personal info of 24 million people (lien direct) | SSNDOB, an online marketplace that sold the names, social security numbers, and dates of birth of approximately 24 million US people, has been taken offline following an international law enforcement operation. [...] | |||
|
2022-06-07 18:43:21 | US: Chinese govt hackers breached telcos to snoop on network traffic (lien direct) | Several US federal agencies today revealed that Chinese-backed threat actors have targeted and compromised major telecommunications companies and network service providers to steal credentials and harvest data. [...] | Threat | ||
|
2022-06-07 18:24:11 | New SVCReady malware loads from Word doc properties (lien direct) | A previously unknown malware loader named SVCReady has been discovered in phishing attacks, featuring an unusual way of loading the malware from Word documents onto compromised machines. [...] | Malware | ||
|
2022-06-07 18:03:35 | Qbot malware now uses Windows MSDT zero-day in phishing attacks (lien direct) | A critical Windows zero-day vulnerability, known as Follina and still waiting for an official fix from Microsoft, is now being actively exploited in ongoing phishing attacks to infect recipients with Qbot malware. [...] | Malware | ||
|
2022-06-07 15:06:36 | Linux version of Black Basta ransomware targets VMware ESXi servers (lien direct) | Black Basta is the latest ransomware gang to add support for encrypting VMware ESXi virtual machines running on enterprise Linux servers. [...] | Ransomware | ||
|
2022-06-07 13:59:11 | Windows 11 22H2 closer to release, lands in the Release channel (lien direct) | Microsoft has moved Windows 11, version 22H2, to the Windows Insider Release channel, indicating that it is in its final round of testing before it's likely released this fall. [...] | |||
|
2022-06-07 12:59:01 | (Déjà vu) New \'DogWalk\' Windows zero-day bug gets free unofficial patches (lien direct) | Free unofficial patches for a new Windows zero-day vulnerability in the Microsoft Support Diagnostic Tool (MSDT) have been released today through the 0patch platform. [...] | Tool Vulnerability | ||
|
2022-06-07 12:59:01 | Two-year-old Windows DIAGCAB zero-day gets unofficial patches (lien direct) | Free unofficial patches for a new Windows zero-day vulnerability in the Microsoft Support Diagnostic Tool (MSDT) have been released today through the 0patch platform. [...] | Tool Vulnerability | ||
|
2022-06-07 12:27:24 | Online gun shops in the US hacked to steal credit cards (lien direct) | Rainier Arms and Numrich Gun Parts, two American gun shops that operate e-commerce sites on rainierarms.com and gunpartscorp.com, have disclosed data breach incidents resulting from card skimmer infections on their sites. [...] | Data Breach | ||
|
2022-06-07 10:53:17 | Shields Health Care Group data breach affects 2 million patients (lien direct) | Shields Health Care Group (Shields) suffered a data breach that exposed the data of approximately 2,000,000 people in the United States after hackers breached their network and stole data. [...] | Data Breach | ||
|
2022-06-07 10:01:02 | Why Netflix isn\'t the Only One Bummed About Password Sharing (lien direct) | Carnegie Mellen found that as much as 28% of end-users willingly share passwords with others, and a Specops study found that of those who share passwords 21% of people don't know who else their password has been shared with. That's a lot of sharing going on. [...] | |||
|
2022-06-07 09:14:02 | Android June 2022 updates bring fix for critical RCE vulnerability (lien direct) | Google has released the June 2022 security updates for Android devices running OS versions 10, 11, and 12, fixing 41 vulnerabilities, five rated critical. [...] | Vulnerability | ||
|
2022-06-06 17:01:20 | QBot now pushes Black Basta ransomware in bot-powered attacks (lien direct) | The Black Basta ransomware gang has partnered with the QBot malware operation to gain spread laterally through hacked corporate environments. [...] | Ransomware Malware | ||
|
2022-06-06 15:54:02 | Mandiant: “No evidence” we were hacked by LockBit ransomware (lien direct) | American cybersecurity firm Mandiant is investigating LockBit ransomware gang's claims that they hacked the company's network and stole data. [...] | Ransomware | ||
|
2022-06-06 14:25:45 | Microsoft bug banned Rewards accounts when redeeming points (lien direct) | Microsoft has fixed a bug where the Microsoft Rewards accounts of customers who redeemed points would get suspended without warning. [...] |
To see everything:
Our RSS (filtrered)
