What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-01-25 15:06:27 | TrickBot now crashes researchers\' browsers to block malware analysis (lien direct) | The notorious TrickBot malware has received new features that make it more challenging to research, analyze, and detect in the latest variants, including crashing browser tabs when it detects beautified scripts. [...] | Malware | ||
|
2022-01-25 13:45:44 | UK govt releasing Nmap scripts to find unpatched vulnerabilities (lien direct) | The United Kingdom's National Cyber Security Centre (NCSC), the government agency that leads UK's cyber security mission, is releasing NMAP Scripting Engine scripts to help defenders scan for and remediate vulnerable systems on their networks. [...] | Guideline | ||
|
2022-01-25 13:26:47 | New DazzleSpy malware targets macOS users in watering hole attack (lien direct) | A new watering hole attack has been discovered targeting macOS users and visitors of a pro-democracy radio station website in Hong Kong and infecting them with the DazzleSpy malware [...] | Malware | ||
|
2022-01-25 11:56:28 | Linux kernel bug can let hackers escape Kubernetes containers (lien direct) | A vulnerability affecting Linux kernel and tracked as CVE-2022-0185 can be used to escape Kubernetes containers, giving access to resources on the host system. [...] | Vulnerability | Uber | |
|
2022-01-25 11:31:34 | Google Drive now warns you of suspicious phishing, malware docs (lien direct) | Google is rolling out new warning banners in Google Drive to alert users of potentially suspicious files that threat actors could use for malware delivery and in phishing attacks. [...] | Malware Threat | ||
|
2022-01-25 09:59:33 | Segway store hacked to steal customers\' credit cards (lien direct) | Segway's online store was compromised to include a malicious Magecart script that potentially allowed threat actors to steal credit cards and customer information during checkout. [...] | Threat | ||
|
2022-01-25 09:15:00 | Missing Microsoft Intune certs break email, VPN on Samsung devices (lien direct) | Microsoft says Samsung devices enrolled in Microsoft Intune using a work profile will experience email and VPN connectivity issues due to missing certificates after upgrading to Android 12. [...] | |||
|
2022-01-25 09:00:55 | Russia arrests leader of “Infraud Organization” hacker group (lien direct) | The Russian Federal Security Service (FSB) and law enforcement have arrested Andrey Sergeevich Novak, the alleged leader of the Infraud Organization, a hacker group that caused losses of more than $560 million in seven years of activity. [...] | Guideline | ||
|
2022-01-25 03:08:02 | Google Drive flags nearly empty files for \'copyright infringement\' (lien direct) | Users were left startled as Google Drive's automated detection systems flagged a nearly empty file for copyright infringement. The file, according to one Drive user, contained nothing other than just the digit "1" within. [...] | |||
|
2022-01-25 01:38:13 | Canada\'s foreign affairs ministry hacked, some services down (lien direct) | The Canadian government department for foreign and consular relations, Global Affairs Canada was hit by a cyberattack last week. While critical services remain accessible, access to some online services is currently not available, as government systems continue to recover from the attack. [...] | |||
|
2022-01-24 16:48:56 | Attackers now actively targeting critical SonicWall RCE bug (lien direct) | A critical severity vulnerability impacting SonicWall's Secure Mobile Access (SMA) gateways addressed last month is now targeted in ongoing exploitation attempts. [...] | Vulnerability | ||
|
2022-01-24 15:39:03 | Tor Project appeals Russian court\'s decision to block access to Tor (lien direct) | US-based Tor Project and Russian digital-rights protection org RosKomSvoboda are appealing a Russian court's decision to block access to public Tor nodes and the project's website. [...] | |||
|
2022-01-24 14:34:39 | CWP bugs allow code execution as root on Linux servers, patch now (lien direct) | Two security vulnerabilities that impact the Control Web Panel (CWP) software can be chained by unauthenticated attackers to gain remote code execution (RCE) as root on vulnerable Linux servers. [...] | |||
|
2022-01-24 12:55:28 | Android malware BRATA wipes your device after stealing data (lien direct) | The Android malware known as BRATA has added new and dangerous features to its latest version, including GPS tracking, the capacity to use multiple communication channels, and a function that performs a factory reset on the device to wipe all traces of malicious activity. [...] | Malware | ||
|
2022-01-24 12:34:14 | Hackers say they encrypted Belarusian Railway servers in protest (lien direct) | A group of hackers (self-dubbed Belarusian Cyber-Partisans) claim they breached and encrypted servers belonging to the Belarusian Railway, Belarus's national state-owned railway company. [...] | |||
|
2022-01-24 11:40:20 | Ransomware gangs increase efforts to enlist insiders for attacks (lien direct) | A recent survey of 100 large (over 5,000 employees) North American IT firms shows that ransomware actors are making greater effort to recruit insiders in targeted firms to aid in attacks. [...] | Ransomware | ||
|
2022-01-24 10:07:38 | SonicWall explains why firewalls were caught in reboot loops (lien direct) | In a weekend update, SonicWall said the widespread reboot loops that impacted next-gen firewalls worldwide were caused by signature updates published on Thursday evening not being correctly processed. [...] | |||
|
2022-01-24 09:37:15 | Malicious PowerPoint files used to push remote access trojans (lien direct) | Since December 2021, a growing trend in phishing campaigns has emerged that uses malicious PowerPoint documents to distribute various types of malware, including remote access and information-stealing trojans. [...] | |||
|
2022-01-24 06:58:22 | (Déjà vu) Dark Souls servers taken down to prevent hacks using critical bug (lien direct) | Bandai Namco has deactivated the online PvP mode for the Dark Souls role-playing game, taking its servers offline to investigate reports about a severe security issue that may pose a risk to players. [...] | |||
|
2022-01-24 06:58:22 | Dark Souls PvP servers taken down to investigate severe RCE flaw (lien direct) | Bandai Namco has deactivated the online PvP mode for the Dark Souls role-playing game, taking its servers offline to investigate reports about a severe security issue that may pose a risk to players. [...] | |||
|
2022-01-23 10:00:00 | FBI warns of malicious QR codes used to steal your money (lien direct) | The Federal Bureau of Investigation (FBI) warned Americans this week that cybercriminals are using maliciously crafted Quick Response (QR) codes to steal their credentials and financial info. [...] | |||
|
2022-01-22 15:36:18 | (Déjà vu) CISA adds 17 vulnerabilities to list of bugs exploited in attacks (lien direct) | This week, the Cybersecurity and Infrastructure Security Agency (CISA) added seventeen actively exploited vulnerabilities to the 'Known Exploited Vulnerabilities Catalog. [...] | |||
|
2022-01-22 11:16:08 | School District reports a 334% hike in cybersecurity insurance costs (lien direct) | Bloomington School District 87 in Illinois has published its cyber-insurance renewal details, and the cost has jumped from $6,661 in 2021 to $22,229 this year. [...] | |||
|
2022-01-22 10:00:00 | Dutch cybersecurity agency warns of lingering Log4j risks (lien direct) | In a warning issued on Thursday, the Dutch National Cybersecurity Centre (NCSC) says organizations should still be aware of risks connected to Log4j attacks and remain vigilant for ongoing threats. [...] | |||
|
2022-01-21 16:40:51 | The Week in Ransomware - January 21st 2022 - Arrests, Wipers, and More (lien direct) | It has been quite a busy week with ransomware, with law enforcement making arrests, data-wiping attacks, and the return of the Qlocker ransomware. [...] | Ransomware | ||
|
2022-01-21 14:49:50 | Microsoft backpedals on Windows 11 NCPA control panel removal (lien direct) | Microsoft has backpedaled its decision to forcefully redirect users from the Network Connections (ncpa.cpl) control panel to the Advanced Network Settings screen. [...] | |||
|
2022-01-21 12:54:28 | Phishing impersonates shipping giant Maersk to push STRRAT malware (lien direct) | A new phishing campaign using fake shipping delivery lures installs the STRRAT remote access trojan on unsuspecting victim's devices. [...] | Malware | ★★★★★ | |
|
2022-01-21 10:56:21 | Microsoft disables Excel 4.0 macros by default to block malware (lien direct) | Microsoft has announced that Excel 4.0 (XLM) macros will now be disabled by default to protect customers from malicious documents. [...] | Malware | ||
|
2022-01-21 10:34:01 | Over 90 WordPress themes, plugins backdoored in supply chain attack (lien direct) | A massive supply chain attack compromised 93 WordPress themes and plugins to contain a backdoor, giving threat-actors full access to websites. [...] | |||
|
2022-01-21 08:22:24 | McAfee Agent bug lets hackers run code with Windows SYSTEM privileges (lien direct) | McAfee has patched a security vulnerability discovered in the company's McAfee Agent software for Windows enabling attackers to escalate privileges and execute arbitrary code with SYSTEM privileges. [...] | Vulnerability | ||
|
2022-01-21 06:36:25 | SonicWall shares temp fix for firewalls stuck in reboot loop (lien direct) | Following a stream of customer reports that started yesterday evening, security hardware manufacturer SonicWall has provided a temporary workaround for reviving next-gen firewalls running SonicOS 7.0 stuck in a reboot loop. [...] | |||
|
2022-01-21 05:58:22 | Microsoft starts force installing Windows 10 21H2 on more devices (lien direct) | Microsoft has started the forced rollout of Windows 10, version 21H2 to more devices approaching the end of service (EOS) as part of a first machine learning (ML) training phase. [...] | |||
|
2022-01-20 17:53:34 | Microsoft lists the Windows 10 group policies to avoid (lien direct) | Microsoft released a list of twenty-five group policies that admins should not use in Windows 10 and Windows 11 as they do not provide optimal behavior or cause unexpected results. [...] | |||
|
2022-01-20 16:29:45 | \'Anomalous\' spyware stealing credentials in industrial firms (lien direct) | Researchers have uncovered several spyware campaigns that target industrial enterprises, aiming to steal email account credentials and conduct financial fraud or resell them to other actors. [...] | |||
|
2022-01-20 13:37:25 | FBI links Diavol ransomware to the TrickBot cybercrime group (lien direct) | The FBI has formally linked the Diavol ransomware operation to the TrickBot Group, the malware developers behind the notorious TrickBot banking trojan. [...] | Ransomware Malware | ||
|
2022-01-20 11:37:06 | US sanctions former Ukrainian official for helping Russian cyberspies (lien direct) | The U.S. Treasury Department announced today sanctions against Volodymyr Oliynyk, a former Ukrainian official, for collecting and sharing info on critical Ukrainian infrastructure with Russia's Federal Security Service (FSB). [...] | |||
|
2022-01-20 11:25:12 | ProtonMail introduces a new email tracker blocking system (lien direct) | ProtonMail has introduced an enhanced email tracking protection system for its web-based email solution that prevents senders from being tracked by recipients who open their messages. [...] | |||
|
2022-01-20 10:50:25 | WordPress plugin flaw puts users of 20,000 sites at phishing risk (lien direct) | The WordPress WP HTML Mail plugin, installed in over 20,000 sites, is vulnerable to a high-severity flaw that can lead to code injection and the distribution of convincing phishing emails. [...] | Guideline | ||
|
2022-01-20 10:41:20 | Indonesia\'s central bank confirms ransomware attack, Conti leaks data (lien direct) | Bank Indonesia (BI), the central bank of the Republic of Indonesia, has confirmed today that a ransomware attack hit its networks last month. [...] | Ransomware | ||
|
2022-01-20 08:57:00 | Biden signs memo to boost US national security systems\' defenses (lien direct) | President Joe Biden signed a national security memorandum (NSM) on Wednesday to increase the security of national security systems part of critical US government networks used in military and intelligence activities when storing or transferring classified info. [...] | |||
|
2022-01-20 08:15:00 | Cisco bug gives remote attackers root privileges via debug mode (lien direct) | Cisco has fixed a critical security flaw discovered in the Cisco Redundancy Configuration Manager (RCM) for Cisco StarOS Software during internal security testing. [...] | |||
|
2022-01-20 07:55:29 | New MoonBounce UEFI malware used by APT41 in targeted attacks (lien direct) | Security analysts have discovered and linked MoonBounce, "the most advanced" UEFI firmware implant found so far in the wild, to the Chinese-speaking APT41 hacker group (also known as Winnti). [...] | Malware Guideline | APT 41 | |
|
2022-01-20 05:08:45 | (Déjà vu) Microsoft fixes Outlook search issues for Windows 10 users (lien direct) | Microsoft has fixed a known issue causing search issues for Outlook users after installing Windows 10 security updates released since November 2021. [...] | |||
|
2022-01-20 05:08:45 | Microsoft fixes Windows 10 search issues in Outlook desktop app (lien direct) | Microsoft has fixed a known issue causing search issues for Outlook users after installing Windows 10 security updates released since November 2021. [...] | |||
|
2022-01-20 04:10:00 | (Déjà vu) Crypto.com confirms 483 accounts hacked, $34 million withdrawn (lien direct) | Crypto.com has confirmed that a multi-million dollar cyberattack led to the compromise of 483 of its customer accounts. Although, the company's CEO stresses that customer funds are not at risk. Crypto.com is reportedly the world's third-largest cryptocurrency trading platform. [...] | |||
|
2022-01-20 04:10:00 | 483 Crypto.com accounts compromised in $34 million hack (lien direct) | Crypto.com has confirmed that a multi-million dollar cyberattack led to the compromise of 483 of its customer accounts. Although, the company's CEO stresses that customer funds are not at risk. Crypto.com is reportedly the world's third-largest cryptocurrency trading platform. [...] | Hack | ||
|
2022-01-19 18:26:50 | Red Cross cyberattack exposes data of 515,000 people seeking missing family (lien direct) | A cyberattack on a Red Cross contactor has led to the theft of personal data for more than 515,000 people in 'Restoring Family Links,' a program that helps reunite families separated by war, disaster, and migration. [...] | |||
|
2022-01-19 17:32:23 | Microsoft: SolarWinds fixes Serv-U bug exploited for Log4j attacks (lien direct) | SolarWinds has patched a Serv-U vulnerability discovered by Microsoft that threat actors actively used to propagate Log4j attacks to internal devices on a network. [...] | Vulnerability Threat | ||
|
2022-01-19 16:25:11 | Marketing giant RRD confirms data theft in Conti ransomware attack (lien direct) | RR Donnelly has confirmed that threat actors stole data in a December cyberattack, confirmed by BleepingComputer to be a Conti ransomware attack. [...] | Ransomware Threat | ||
|
2022-01-19 13:33:32 | CISA urges US orgs to prepare for data-wiping cyberattacks (lien direct) | The Cybersecurity and Infrastructure Security Agency (CISA) urges U.S. organizations to strengthen their cybersecurity defenses against data-wiping attacks recently seen targeting Ukrainian government agencies and businesses. [...] |
To see everything:
Our RSS (filtrered)
