What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-11-04 13:24:23 | Cisco fixes hard-coded credentials and default SSH key issues (lien direct) | Cisco has released security updates to address critical security flaws allowing unauthenticated attackers to log in using hard-coded credentials or default SSH keys to take over unpatched devices. [...] | |||
|
2021-11-04 12:39:34 | Microsoft Exchange ProxyShell exploits used to deploy Babuk ransomware (lien direct) | A new threat actor is hacking Microsoft Exchange servers and breaching corporate networks using the ProxyShell vulnerability to deploy the Babuk Ransomware. [...] | Ransomware Threat | ||
|
2021-11-04 12:03:35 | Samsung Galaxy S21 hacked on second day of Pwn2Own Austin (lien direct) | Contestants hacked the Samsung Galaxy S21 smartphone during the second day of the Pwn2Own Austin 2021 competition, as well as routers, NAS devices, speakers, and printers from Cisco, TP-Link, Western Digital, Sonos, Canon, Lexmark, and HP. [...] | |||
|
2021-11-04 11:13:09 | Windows 10 21H1 now in broad deployment, available to everyone (lien direct) | Microsoft has designated Windows 10, version 21H1 (aka the May 2021 Update) for broad deployment, making it available to everyone via Windows Update. [...] | |||
|
2021-11-04 09:54:57 | (Déjà vu) Ukraine links members of Gamaredon hacker group to Russian FSB (lien direct) | SSU and the Ukrainian secret service say they have identified five members of the Gamaredon hacking group, a Russian state-sponsored operation known for targeting Ukraine since 2014. [...] | |||
|
2021-11-04 09:54:57 | Ukraine links members of the Gamaredon hacker group to Russian FSB (lien direct) | SSU and the Ukrainian secret service say they have identified five members of the Gamaredon hacking group, a Russian state-sponsored operation known for targeting Ukraine since 2014. [...] | |||
|
2021-11-04 09:23:02 | Crypto investors lose $500,000 to Google Ads pushing fake wallets (lien direct) | Threat actors are using advertisements in Google Search to promote fake cryptocurrency wallets and DEX platforms to steal user's cryptocurrency. [...] | |||
|
2021-11-04 07:22:01 | (Déjà vu) Lockean multi-ransomware affiliates linked to attacks on French orgs (lien direct) | Details about the tools and tactics used by a ransomware affiliate group, now tracked as Lockean, have emerged today in a report from France's Computer Emergency Response Team (CERT). [...] | Ransomware | ||
|
2021-11-04 07:22:01 | Lockean multi-RaaS affiliate linked to attacks against French businesses (lien direct) | Details about the tools and tactics used by a ransomware affiliate group, now tracked as Lockean, have emerged today in a report from France's Computer Emergency Response Team (CERT). [...] | Ransomware | ||
|
2021-11-03 18:55:49 | Alleged Twitter hacker charged with theft of $784K in crypto via SIM swaps (lien direct) | The US Department of Justice has indicted a suspected Twitter hacker known as 'PlugWalkJoe' for also stealing $784,000 worth of cryptocurrency using SIM swap attacks. [...] | |||
|
2021-11-03 14:22:51 | Beware: Free Discord Nitro phishing targets Steam gamers (lien direct) | A new Steam phishing promoted via Discord messages promises a free Nitro subscription if a user links their Steam account, which the hackers then use to steal game items or promote other scams. [...] | |||
|
2021-11-03 13:22:25 | (Déjà vu) UK Labour Party discloses data breach after ransomware attack (lien direct) | The UK Labour Party notified members that some of their information was impacted in a data breach after a ransomware attack hit a third-party organization that was managing the party's data. [...] | Ransomware Data Breach | ||
|
2021-11-03 12:47:42 | BlackMatter ransomware moves victims to LockBit after shutdown (lien direct) | With the BlackMatter ransomware operation shutting down, existing affiliates are moving their victims to the competing LockBit ransomware site for continued extortion. [...] | Ransomware | ||
|
2021-11-03 12:29:07 | Stealthier version of Mekotio banking trojan spotted in the wild (lien direct) | A new version of a banking trojan known as Mekotio is being deployed in the wild, with malware analysts reporting that it's using a new, stealthier infection flow. [...] | Malware | ||
|
2021-11-03 11:19:37 | US sanctions NSO Group and three others for spyware and exploit sales (lien direct) | The U.S. has sanctioned four companies located in Israel, Russia, and Singapore for the development of spyware or the sale of hacking tools used by state-sponsored hacking groups. [...] | |||
|
2021-11-03 10:28:14 | Mobile phishing attacks targeting energy sector surge by 161% (lien direct) | Mobile phishing attacks targeting employees in the energy industry have risen by 161% compared to last year's (H2 2020) data, and the trend is showing no signs of slowing down. [...] | |||
|
2021-11-03 09:58:30 | Sonos, HP, and Canon devices hacked at Pwn2Own Austin 2021 (lien direct) | During the first day of Pwn2Own Austin 2021, contestants won $362,500 after exploiting previously unknown security flaws to hack printers, routers, NAS devices, and speakers from Canon, HP, Western Digital, Cisco, Sonos, TP-Link, and NETGEAR. [...] | |||
|
2021-11-03 09:42:38 | Yahoo becomes the next US firm to pull services out of China (lien direct) | Yahoo is pulling its services out of China, citing an 'increasingly challenging operating environment.' [...] | Yahoo Yahoo | ||
|
2021-11-03 08:10:34 | CISA orders federal agencies to fix hundreds of exploited security flaws (lien direct) | CISA has issued this year's first binding operational directive (BOD) ordering federal civilian agencies to mitigate security vulnerabilities exploited in the wild within an aggressive timeline. [...] | |||
|
2021-11-03 07:28:22 | Microsoft: Windows 11 built-in apps might not open on some systems (lien direct) | Microsoft says Windows 11 users might experience issues opening or using some built-in apps and features due to an expired digital certificate. [...] | |||
|
2021-11-03 01:59:46 | BlackMatter ransomware claims to be shutting down due to police pressure (lien direct) | The BlackMatter ransomware is allegedly shutting down its operation due to pressure from the authorities and recent law enforcement operations. [...] | Ransomware | ||
|
2021-11-02 16:08:10 | Facebook deletes 1 billion faceprints in Face Recognition shutdown (lien direct) | Facebook announced today that they will no longer use the Face Recognition system on their platform and will be deleting over 1 billion people's facial recognition profiles. [...] | |||
|
2021-11-02 13:46:57 | Over 30,000 GitLab servers still unpatched against critical bug (lien direct) | A critical unauthenticated, remote code execution GitLab flaw fixed on April 14, 2021, remains exploitable, with over 50% of deployments remaining unpatched. [...] | |||
|
2021-11-02 12:08:04 | Microsoft 365 outage blocks access to OneDrive, SharePoint files (lien direct) | A Microsoft 365 outage prevents access to files, such as Excel documents, stored on the SharePoint Online, OneDrive, Office, and Microsoft Teams cloud storage services. [...] | |||
|
2021-11-02 11:37:57 | Microsoft announces new endpoint security solution for SMBs (lien direct) | Microsoft today announced a new endpoint security solution dubbed Microsoft Defender for Business, specially built for small and medium-sized businesses. [...] | |||
|
2021-11-02 11:00:00 | Microsoft Edge for Linux out of beta, now generally available (lien direct) | Microsoft announced today that the Chromium-based Edge web browser is now generally available on the Linux platform via the stable channel. [...] | |||
|
2021-11-02 10:50:05 | macOS Monterey update causes some Macs to become unbootable (lien direct) | A growing number of Mac and Macbook owners report that their devices become unbootable after attempting to update to the latest version of macOS, codenamed 'Monterey.' [...] | |||
|
2021-11-02 08:27:06 | MITRE shares list of most dangerous hardware weaknesses (lien direct) | MITRE shared a list of the topmost dangerous programming, design, and architecture security flaws plaguing hardware this year. [...] | |||
|
2021-11-02 07:59:18 | FBI: Ransomware targets companies during mergers and acquisitions (lien direct) | The Federal Bureau of Investigation (FBI) warns that ransomware gangs are targeting companies involved in "time-sensitive financial events" such as corporate mergers and acquisitions to make it easier to extort their victims. [...] | Ransomware | ||
|
2021-11-02 07:01:27 | Android November patch fixes actively exploited kernel bug (lien direct) | Google has released the Android November 2021 security updates, which address 18 vulnerabilities in the framework and system components, and 18 more flaws in the kernel and vendor components. [...] | |||
|
2021-11-01 20:07:48 | \'Trojan Source\' attack method can hide bugs into open-source code (lien direct) | Academic researchers have released details about a new attack method they call "Trojan Source" that allows injecting vulnerabilities into the source code of a software project in a way that human reviewers can't detect. [...] | |||
|
2021-11-01 17:55:04 | Signal now lets you report and block spam messages (lien direct) | Signal has added an easy way for users to report and block spam straight from message request screens with a single mouse click. [...] | Spam | ||
|
2021-11-01 17:35:54 | Microsoft Defender for Windows is getting a massive overhaul (lien direct) | Microsoft Defender for Windows is getting a massive overhaul allowing home network admins to deploy Android, iOS, and Mac clients to monitor antivirus, phishing, compromised passwords, and identity theft alerts from a single security dashboard. [...] | |||
|
2021-11-01 13:51:05 | Canadian province health care system disrupted by cyberattack (lien direct) | The Canadian provinces of Newfoundland and Labrador have suffered a cyberattack that has led to severe disruption to healthcare providers and hospitals. [...] | |||
|
2021-11-01 13:25:00 | Kaspersky\'s stolen Amazon SES token used in Office 365 phishing (lien direct) | Kaspersky said today that a legitimate Amazon Simple Email Service (SES) token issued to a third-party contractor was recently used by threat actors behind a spear-phishing campaign targeting Office 365 users. [...] | Threat | ||
|
2021-11-01 10:37:18 | BlackShadow hackers breach Israeli hosting firm and extort customers (lien direct) | The BlackShadow hacking group attacked the Israeli hosting provider Cyberserve to steal client databases and disrupt the company's services. [...] | |||
|
2021-11-01 10:13:59 | FBI: HelloKitty ransomware adds DDoS attacks to extortion tactics (lien direct) | The U.S. Federal Bureau of Investigation (FBI) has sent out a flash alert warning private industry partners that the HelloKitty ransomware gang (aka FiveHands) has added distributed denial-of-service (DDoS) attacks to their arsenal of extortion tactics. [...] | Ransomware | ||
|
2021-10-31 10:00:00 | Microsoft warns of rise in password sprays targeting cloud accounts (lien direct) | The Microsoft Detection and Response Team (DART) says it detected an increase in password spray attacks targeting privileged cloud accounts and high-profile identities such as C-level executives. [...] | |||
|
2021-10-30 11:02:01 | Chaos ransomware targets gamers via fake Minecraft alt lists (lien direct) | The Chaos Ransomware gang encrypts gamers' Windows devices through fake Minecraft alt lists promoted on gaming forums. [...] | Ransomware | ||
|
2021-10-30 08:01:02 | Microsoft: Windows KB5006674, KB5006670 updates break printing (lien direct) | Microsoft says Windows customers are experiencing issues with network printing after installing the Windows 11 KB5006674 and Windows 10 KB5006670 updates issued with this month's Patch Tuesday, on October 12. [...] | |||
|
2021-10-29 17:43:14 | The Week in Ransomware - October 29th 2021 - Making arrests (lien direct) | This week, international law enforcement operations went on the offensive, making arrests in numerous countries for ransomware-related activities. [...] | Ransomware | ||
|
2021-10-29 12:20:10 | Snake malware biting hard on 50 apps for only $25 (lien direct) | Cybercriminals are flooding to use the Snake password-stealing trojan, making it one of the popular malware families used in attacks. [...] | Malware | ||
|
2021-10-29 12:08:44 | Hive ransomware now encrypts Linux and FreeBSD systems (lien direct) | The Hive ransomware gang now also encrypts Linux and FreeBSD using new malware variants specifically developed to target these platforms. [...] | Ransomware Malware | ||
|
2021-10-29 10:57:54 | Microsoft PowerToys adds Windows 11 theme, new mouse utility (lien direct) | Microsoft has added new utilities to the PowerToys toolset and updated the user interface with a new Windows 11 theme for PowerRename. [...] | ★★★★ | ||
|
2021-10-29 09:56:08 | DOJ: Pirated sports streamer hacked accounts, extorted MLB (lien direct) | The U.S. Attorney's Office for the Southern District of New York has charged a man for illegally streaming MLB, NBA, NFL, and NHL games via the web and hacking into sports leagues' customer accounts. [...] | |||
|
2021-10-29 06:52:12 | Microsoft: Windows web content filtering now generally available (lien direct) | Microsoft has announced that web content filtering has reached general availability and is now available for all Windows enterprise customers. [...] | |||
|
2021-10-29 05:53:23 | Google Chromebooks failing to enroll due to network issue (lien direct) | Since Thursday evening, Google has been investigating reports of customers having issues enrolling their Chromebooks with a network error. [...] | |||
|
2021-10-29 05:07:49 | (Déjà vu) Police arrest hackers behind over 1,800 ransomware attacks (lien direct) | The Europol has announced the arrest of 12 individuals who are believed to be linked to ransomware attacks against 1,800 victims in 71 countries. [...] | Ransomware | ||
|
2021-10-29 05:07:49 | Police arrest criminals behind Norsk Hydro ransomware attack (lien direct) | The Europol has announced the arrest of 12 individuals who are believed to be linked to ransomware attacks against 1,800 victims in 71 countries. [...] | Ransomware | ||
|
2021-10-28 21:17:36 | TrickBot malware dev extradited to U.S. faces 60 years in prison (lien direct) | A Russian national believed to be a member of the TrickBot malware development team has been extradited to the U.S. and is currently facing charges that could get him 60 years in prison. [...] | Malware |
To see everything:
Our RSS (filtrered)
