What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-11-09 15:57:31 | TeamTNT hackers target your poorly configured Docker servers (lien direct) | Poorly configured Docker servers and being actively targeted by the TeamTNT hacking group in an ongoing campaign started last month. [...] | |||
|
2021-11-09 15:16:29 | (Déjà vu) Microsoft: Windows 10 2004 reaches end of service next month (lien direct) | Microsoft has reminded users today that all editions of Windows 10, version 2004 and Windows Server, version 2004 (also known as the Windows 10 May 2020 Update), will reach end of servicing on December 14, 2021. [...] | |||
|
2021-11-09 14:14:25 | Microsoft urges Exchange admins to patch bug exploited in the wild (lien direct) | Microsoft warned admins today to immediately patch a high severity Exchange Server vulnerability that may allow authenticated attackers to execute code remotely on vulnerable servers. [...] | Vulnerability | ||
|
2021-11-09 13:54:34 | Windows 11 KB5007215 update released with application fixes (lien direct) | Microsoft has released the Windows 11 KB5007215 cumulative update to fix security vulnerabilities and bugs introduced in previous versions. [...] | |||
|
2021-11-09 13:30:03 | (Déjà vu) Microsoft November 2021 Patch Tuesday fixes 6 zero-days, 55 flaws (lien direct) | Today is Microsoft's November 2021 Patch Tuesday, and with it comes fixes for six zero-day vulnerabilities and a total of 55 flaws. The actively exploited vulnerabilities are for Microsoft Exchange and Excel, with the Exchange zero-day used as part of the Tianfu hacking contest. [...] | |||
|
2021-11-09 13:22:58 | Windows 10 KB5007186 & KB5007189 updates released (lien direct) | The new update is now available for Windows 10 version 2004, version 20H2 and version 21H1. As per the official release notes, Microsoft has published cumulative updates KB5007186 and KB5007189. [...] | |||
|
2021-11-09 13:02:22 | Mozilla Firefox, the first Chromium alternative in the Windows Store (lien direct) | Firefox is now available for download through Microsoft's Windows Store for Windows 10 and Windows 11 users, the first major web browser to be added after Opera was included in late September. [...] | |||
|
2021-11-09 12:33:16 | Iranian state hackers use upgraded malware in attacks on ISPs, telcos (lien direct) | The Iranian state-supported APT known as 'Lyceum' (Hexane, Spilrin) targeted ISPs and telecommunication service providers in the Middle East and Africa between July and October 2021. [...] | Malware | ||
|
2021-11-09 11:13:14 | Tor Browser 11 removes V2 Onion URL support, adds new UI (lien direct) | The Tor Project has released Tor Browser 11.0 with a new user interface design and the removal of support for V2 onion services. [...] | |||
|
2021-11-09 10:55:53 | New PowerShell version comes with Microsoft Update support (lien direct) | Microsoft has released PowerShell 7.2 with automatic updates through the Microsoft Update service on Windows 10 and Windows Server devices. [...] | |||
|
2021-11-09 09:54:21 | Clop gang exploiting SolarWinds Serv-U flaw in ransomware attacks (lien direct) | The Clop ransomware gang, also tracked as TA505 and FIN11, is exploiting a SolarWinds Serv-U vulnerability to breach corporate networks and ultimately encrypt its devices. [...] | Ransomware Vulnerability | ||
|
2021-11-09 09:15:45 | Medical software firm urges password resets after ransomware attack (lien direct) | Medatixx, a German medical software vendor whose products are used in over 21,000 health institutions, urges customers to change their application passwords following a ransomware attack that has severely impaired its entire operations. [...] | Ransomware | ||
|
2021-11-08 19:11:32 | U.S. offers $10 million reward for leaders of REvil ransomware (lien direct) | The U.S. is offering up to $10 million for identifying or locating leaders in the REvil (Sodinokibi) ransomware operation, including $5 million leading to the arrest of affiliates. [...] | Ransomware Guideline | ||
|
2021-11-08 16:40:29 | Robinhood discloses data breach impacting 7 million customers (lien direct) | Stock trading platform Robinhood has disclosed a data breach after their systems were hacked and a threat actor gained access to the personal information of approximately 7 million customers. [...] | Data Breach Threat | ||
|
2021-11-08 14:59:16 | Softbank plans to charge electronic gadgets using 5G antennas (lien direct) | Japanese tech giant SoftBank is planning to trial wireless charging of smartwatches and earbuds using power transmitted through 5G antennas. [...] | |||
|
2021-11-08 13:26:45 | (Déjà vu) US sanctions Chatex cryptoexchange used by ransomware gangs (lien direct) | The US Treasury Department announced today sanctions against the Chatex cryptocurrency exchange for helping ransomware gangs evade sanctions and facilitating ransom transactions. [...] | Ransomware | ||
|
2021-11-08 13:18:02 | US seizes $6 million from REvil ransomware, arrest Kaseya hacker (lien direct) | The United States Department of Justice today has announced charges against a REvil ransomware affiliate responsible for the attack against the Kaseya MSP platform on July 2nd and seizing more than $6 million from another REvil partner. [...] | Ransomware | ||
|
2021-11-08 11:56:04 | Sitecore XP RCE flaw patched last month now actively exploited (lien direct) | The Australian Cyber Security Center (ACSC) is alerting web admins of the active exploitation of CVE-2021-42237, a remote code execution flaw in the Sitecore Experience Platform (Sitecore XP). [...] | |||
|
2021-11-08 10:40:20 | Criminal group dismantled after forcing victims to be money mules (lien direct) | The Spanish police have arrested 45 people who are believed to be members of an online fraud group that operated twenty websites to defraud at least 200 people of 1,500,000 Euros ($1.73 million). [...] | |||
|
2021-11-08 09:51:57 | REvil ransomware affiliates arrested in Romania and Kuwait (lien direct) | Romanian law enforcement authorities have arrested two suspects believed to be Sodinokibi/REvil ransomware affiliates, allegedly responsible for infecting thousands of victims. [...] | Ransomware | ||
|
2021-11-08 09:27:49 | (Déjà vu) MediaMarkt hit by Hive ransomware, initial $240 million ransom (lien direct) | Electronics retail giant MediaMarkt has suffered a Hive ransomware with an initial ransom demand of $240 million, causing IT systems to shut down and store operations to be disrupted in Netherlands and Germany. [...] | Ransomware | ||
|
2021-11-08 09:27:49 | Electronics retail giant MediaMarkt hit by ransomware attack (lien direct) | Electronics retail giant MediaMarkt has suffered a ransomware attack causing IT systems to shut down and store operations to be disrupted in Netherlands and Germany. [...] | Ransomware | ||
|
2021-11-08 07:58:54 | Google will kill Chrome sync support on Chrome 48 and earlier (lien direct) | Google will end support for the Chrome sync feature for all users still running Google Chrome 48 and earlier after Chrome 96 reaches the stable channel. [...] | |||
|
2021-11-08 03:34:00 | State hackers breach defense, energy, healthcare orgs worldwide (lien direct) | Cybersecurity firm Palo Alto Networks warned over the weekend of an ongoing hacking campaign that has already resulted in the compromise of at least nine organizations worldwide from critical sectors, including defense, healthcare, energy, technology, and education. [...] | |||
|
2021-11-07 11:46:27 | Operation Cyclone deals blow to Clop ransomware operation (lien direct) | A thirty-month international law enforcement operation codenamed 'Operation Cyclone' targeted the Clop ransomware gang, leading to the previously reported arrests of six members in Ukraine. [...] | Ransomware Guideline | ||
|
2021-11-07 10:00:00 | Microsoft: New Windows driver deployment service coming soon (lien direct) | Microsoft said that the new Windows Update for Business deployment service for drivers and firmware will be available in Microsoft Endpoint Manager and in Microsoft Graph as a public preview starting with the first half of 2022. [...] | |||
|
2021-11-06 11:36:14 | Samsung sued for flawed Chromebook hinges cracking displays (lien direct) | Samsung is being sued for selling the Samsung Chromebook Plus 2-in-1 even though they allegedly knew for years of a defect that caused displays to break. [...] | |||
|
2021-11-06 10:00:00 | OneDrive reaches end of support on Windows 7, 8 in January (lien direct) | Microsoft has announced that the OneDrive desktop application will reach the end of support on legacy Windows 7, 8, and 8.1 starting with January 1, 2022. [...] | |||
|
2021-11-05 18:05:04 | The Week in Ransomware - November 5th 2021 - Placing bounties (lien direct) | Law enforcement continues to keep up the pressure on ransomware operations with infrastructure hacks and million-dollar rewards, leading to the shut down of criminal operations. [...] | Ransomware Guideline | ||
|
2021-11-05 13:52:08 | (Déjà vu) Windows 11 KB5008295 emergency update fixes built-in app mess (lien direct) | Microsoft has released the KB5008295 out-of-band update to address Windows 11 issues while opening or using some built-in apps and features due to an expired Microsoft digital certificate. [...] | |||
|
2021-11-05 13:52:08 | Windows 11 KB5008295 OOB update fixes certificate issue breaking apps (lien direct) | Microsoft has released the KB5008295 out-of-band update to address Windows 11 issues while opening or using some built-in apps and features due to an expired Microsoft digital certificate. [...] | |||
|
2021-11-05 13:25:19 | Pwn2Own: Printer plays AC/DC, Samsung Galaxy S21 hacked twice (lien direct) | Trend Micro's ZDI has awarded $1,081,250 for 61 zero-days exploited at Pwn2Own Austin 2021, with competitors successfully pwning the Samsung Galaxy S21 again and hacking an HP LaserJet printer to play AC/DC's Thunderstruck on the contest's third day. [...] | |||
|
2021-11-05 12:03:55 | FBI: Ransomware gangs hit several tribal-owned casinos in the last year (lien direct) | The Federal Bureau of Investigation (FBI) says that multiple ransomware gangs have hit tribal entities over the last year, taking down their systems and impacting businesses and public services. [...] | Ransomware | ||
|
2021-11-05 11:23:51 | Philips healthcare infomatics solution vulnerable to SQL injection (lien direct) | The Philips Tasy EMR, used by hundreds of hospitals as a medical record solution and healthcare management system, is vulnerable to two critical SQL injection flaws. [...] | |||
|
2021-11-05 10:59:33 | US defense contractor Electronic Warfare hit by data breach (lien direct) | US defense contractor Electronic Warfare Associates (EWA) has disclosed a data breach after threat actors hacked their email system and stole files containing personal information. [...] | Data Breach Threat | ||
|
2021-11-05 09:55:57 | FBI warns of increased use of cryptocurrency ATMs, QR codes for fraud (lien direct) | The Federal Bureau of Investigation (FBI) warns that victims of various fraud schemes are increasingly asked by criminals to use cryptocurrency ATMs and Quick Response (QR) codes, making it harder to recover their financial losses. [...] | |||
|
2021-11-05 09:47:35 | Mozilla Thunderbird 91.3 released to fix high impact flaws (lien direct) | Mozilla released Thunderbird 91.3 to fix several high-impact vulnerabilities that can cause a denial of service, spoof the origin, bypass security policies, and allow arbitrary code execution. [...] | |||
|
2021-11-04 17:00:10 | US targets DarkSide ransomware, rebrands with $10 million reward (lien direct) | The US government is targeting the DarkSide ransomware and its rebrands with up to a $10,000,000 reward for information leading to the identification or arrest of members of the operation. [...] | Guideline | ||
|
2021-11-04 15:15:31 | CISA urges vendors to patch BrakTooth bugs after exploits release (lien direct) | Researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against System-on-a-Chip (SoC) security bugs impacting multiple vendors, including Intel, Qualcomm, Texas Instruments, and Cypress. [...] | Tool | ||
|
2021-11-04 15:03:45 | Phishing emails deliver spooky zombie-themed MirCop ransomware (lien direct) | A new phishing campaign pretending to be supply lists infects users with the MirCop ransomware that encrypts a target system in under fifteen minutes. [...] | Ransomware | ||
|
2021-11-04 14:06:01 | (Déjà vu) Popular \'coa\' NPM library hijacked to steal user passwords (lien direct) | Popular npm library 'coa' was hijacked today with malicious code injected into it, ephemerally impacting React pipelines around the world. The 'coa' library, short for Command-Option-Argument, receives about 9 million weekly downloads on npm, and is used by almost 5 million open source repositories on GitHub. [...] | |||
|
2021-11-04 14:06:01 | Popular npm library \'coa\' hijacked breaking React pipelines worldwide (lien direct) | Popular npm library 'coa' was hijacked today with malicious code injected into it, ephemerally impacting React pipelines around the world. The 'coa' library, short for Command-Option-Argument, receives about 9 million weekly downloads on npm, and is used by almost 5 million open source repositories on GitHub. [...] | |||
|
2021-11-04 13:24:23 | Cisco fixes hard-coded credentials and default SSH key issues (lien direct) | Cisco has released security updates to address critical security flaws allowing unauthenticated attackers to log in using hard-coded credentials or default SSH keys to take over unpatched devices. [...] | |||
|
2021-11-04 12:39:34 | Microsoft Exchange ProxyShell exploits used to deploy Babuk ransomware (lien direct) | A new threat actor is hacking Microsoft Exchange servers and breaching corporate networks using the ProxyShell vulnerability to deploy the Babuk Ransomware. [...] | Ransomware Threat | ||
|
2021-11-04 12:03:35 | Samsung Galaxy S21 hacked on second day of Pwn2Own Austin (lien direct) | Contestants hacked the Samsung Galaxy S21 smartphone during the second day of the Pwn2Own Austin 2021 competition, as well as routers, NAS devices, speakers, and printers from Cisco, TP-Link, Western Digital, Sonos, Canon, Lexmark, and HP. [...] | |||
|
2021-11-04 11:13:09 | Windows 10 21H1 now in broad deployment, available to everyone (lien direct) | Microsoft has designated Windows 10, version 21H1 (aka the May 2021 Update) for broad deployment, making it available to everyone via Windows Update. [...] | |||
|
2021-11-04 09:54:57 | (Déjà vu) Ukraine links members of Gamaredon hacker group to Russian FSB (lien direct) | SSU and the Ukrainian secret service say they have identified five members of the Gamaredon hacking group, a Russian state-sponsored operation known for targeting Ukraine since 2014. [...] | |||
|
2021-11-04 09:54:57 | Ukraine links members of the Gamaredon hacker group to Russian FSB (lien direct) | SSU and the Ukrainian secret service say they have identified five members of the Gamaredon hacking group, a Russian state-sponsored operation known for targeting Ukraine since 2014. [...] | |||
|
2021-11-04 09:23:02 | Crypto investors lose $500,000 to Google Ads pushing fake wallets (lien direct) | Threat actors are using advertisements in Google Search to promote fake cryptocurrency wallets and DEX platforms to steal user's cryptocurrency. [...] | |||
|
2021-11-04 07:22:01 | (Déjà vu) Lockean multi-ransomware affiliates linked to attacks on French orgs (lien direct) | Details about the tools and tactics used by a ransomware affiliate group, now tracked as Lockean, have emerged today in a report from France's Computer Emergency Response Team (CERT). [...] | Ransomware |
To see everything:
Our RSS (filtrered)
