Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-11-04 13:24:23 |
Cisco fixes hard-coded credentials and default SSH key issues (lien direct) |
Cisco has released security updates to address critical security flaws allowing unauthenticated attackers to log in using hard-coded credentials or default SSH keys to take over unpatched devices. [...] |
|
|
|
|
2021-11-04 12:39:34 |
Microsoft Exchange ProxyShell exploits used to deploy Babuk ransomware (lien direct) |
A new threat actor is hacking Microsoft Exchange servers and breaching corporate networks using the ProxyShell vulnerability to deploy the Babuk Ransomware. [...] |
Ransomware
Threat
|
|
|
|
2021-11-04 12:03:35 |
Samsung Galaxy S21 hacked on second day of Pwn2Own Austin (lien direct) |
Contestants hacked the Samsung Galaxy S21 smartphone during the second day of the Pwn2Own Austin 2021 competition, as well as routers, NAS devices, speakers, and printers from Cisco, TP-Link, Western Digital, Sonos, Canon, Lexmark, and HP. [...] |
|
|
|
|
2021-11-04 11:13:09 |
Windows 10 21H1 now in broad deployment, available to everyone (lien direct) |
Microsoft has designated Windows 10, version 21H1 (aka the May 2021 Update) for broad deployment, making it available to everyone via Windows Update. [...] |
|
|
|
|
2021-11-04 09:54:57 |
(Déjà vu) Ukraine links members of Gamaredon hacker group to Russian FSB (lien direct) |
SSU and the Ukrainian secret service say they have identified five members of the Gamaredon hacking group, a Russian state-sponsored operation known for targeting Ukraine since 2014. [...] |
|
|
|
|
2021-11-04 09:54:57 |
Ukraine links members of the Gamaredon hacker group to Russian FSB (lien direct) |
SSU and the Ukrainian secret service say they have identified five members of the Gamaredon hacking group, a Russian state-sponsored operation known for targeting Ukraine since 2014. [...] |
|
|
|
|
2021-11-04 09:23:02 |
Crypto investors lose $500,000 to Google Ads pushing fake wallets (lien direct) |
Threat actors are using advertisements in Google Search to promote fake cryptocurrency wallets and DEX platforms to steal user's cryptocurrency. [...] |
|
|
|
|
2021-11-04 07:22:01 |
(Déjà vu) Lockean multi-ransomware affiliates linked to attacks on French orgs (lien direct) |
Details about the tools and tactics used by a ransomware affiliate group, now tracked as Lockean, have emerged today in a report from France's Computer Emergency Response Team (CERT). [...] |
Ransomware
|
|
|
|
2021-11-04 07:22:01 |
Lockean multi-RaaS affiliate linked to attacks against French businesses (lien direct) |
Details about the tools and tactics used by a ransomware affiliate group, now tracked as Lockean, have emerged today in a report from France's Computer Emergency Response Team (CERT). [...] |
Ransomware
|
|
|
|
2021-11-03 18:55:49 |
Alleged Twitter hacker charged with theft of $784K in crypto via SIM swaps (lien direct) |
The US Department of Justice has indicted a suspected Twitter hacker known as 'PlugWalkJoe' for also stealing $784,000 worth of cryptocurrency using SIM swap attacks. [...] |
|
|
|
|
2021-11-03 14:22:51 |
Beware: Free Discord Nitro phishing targets Steam gamers (lien direct) |
A new Steam phishing promoted via Discord messages promises a free Nitro subscription if a user links their Steam account, which the hackers then use to steal game items or promote other scams. [...] |
|
|
|
|
2021-11-03 13:22:25 |
(Déjà vu) UK Labour Party discloses data breach after ransomware attack (lien direct) |
The UK Labour Party notified members that some of their information was impacted in a data breach after a ransomware attack hit a third-party organization that was managing the party's data. [...] |
Ransomware
Data Breach
|
|
|
|
2021-11-03 12:47:42 |
BlackMatter ransomware moves victims to LockBit after shutdown (lien direct) |
With the BlackMatter ransomware operation shutting down, existing affiliates are moving their victims to the competing LockBit ransomware site for continued extortion. [...] |
Ransomware
|
|
|
|
2021-11-03 12:29:07 |
Stealthier version of Mekotio banking trojan spotted in the wild (lien direct) |
A new version of a banking trojan known as Mekotio is being deployed in the wild, with malware analysts reporting that it's using a new, stealthier infection flow. [...] |
Malware
|
|
|
|
2021-11-03 11:19:37 |
US sanctions NSO Group and three others for spyware and exploit sales (lien direct) |
The U.S. has sanctioned four companies located in Israel, Russia, and Singapore for the development of spyware or the sale of hacking tools used by state-sponsored hacking groups. [...] |
|
|
|
|
2021-11-03 10:28:14 |
Mobile phishing attacks targeting energy sector surge by 161% (lien direct) |
Mobile phishing attacks targeting employees in the energy industry have risen by 161% compared to last year's (H2 2020) data, and the trend is showing no signs of slowing down. [...] |
|
|
|
|
2021-11-03 09:58:30 |
Sonos, HP, and Canon devices hacked at Pwn2Own Austin 2021 (lien direct) |
During the first day of Pwn2Own Austin 2021, contestants won $362,500 after exploiting previously unknown security flaws to hack printers, routers, NAS devices, and speakers from Canon, HP, Western Digital, Cisco, Sonos, TP-Link, and NETGEAR. [...] |
|
|
|
|
2021-11-03 09:42:38 |
Yahoo becomes the next US firm to pull services out of China (lien direct) |
Yahoo is pulling its services out of China, citing an 'increasingly challenging operating environment.' [...] |
|
Yahoo
Yahoo
|
|
|
2021-11-03 08:10:34 |
CISA orders federal agencies to fix hundreds of exploited security flaws (lien direct) |
CISA has issued this year's first binding operational directive (BOD) ordering federal civilian agencies to mitigate security vulnerabilities exploited in the wild within an aggressive timeline. [...] |
|
|
|
|
2021-11-03 07:28:22 |
Microsoft: Windows 11 built-in apps might not open on some systems (lien direct) |
Microsoft says Windows 11 users might experience issues opening or using some built-in apps and features due to an expired digital certificate. [...] |
|
|
|
|
2021-11-03 01:59:46 |
BlackMatter ransomware claims to be shutting down due to police pressure (lien direct) |
The BlackMatter ransomware is allegedly shutting down its operation due to pressure from the authorities and recent law enforcement operations. [...] |
Ransomware
|
|
|
|
2021-11-02 16:08:10 |
Facebook deletes 1 billion faceprints in Face Recognition shutdown (lien direct) |
Facebook announced today that they will no longer use the Face Recognition system on their platform and will be deleting over 1 billion people's facial recognition profiles. [...] |
|
|
|
|
2021-11-02 13:46:57 |
Over 30,000 GitLab servers still unpatched against critical bug (lien direct) |
A critical unauthenticated, remote code execution GitLab flaw fixed on April 14, 2021, remains exploitable, with over 50% of deployments remaining unpatched. [...] |
|
|
|
|
2021-11-02 12:08:04 |
Microsoft 365 outage blocks access to OneDrive, SharePoint files (lien direct) |
A Microsoft 365 outage prevents access to files, such as Excel documents, stored on the SharePoint Online, OneDrive, Office, and Microsoft Teams cloud storage services. [...] |
|
|
|
|
2021-11-02 11:37:57 |
Microsoft announces new endpoint security solution for SMBs (lien direct) |
Microsoft today announced a new endpoint security solution dubbed Microsoft Defender for Business, specially built for small and medium-sized businesses. [...] |
|
|
|
|
2021-11-02 11:00:00 |
Microsoft Edge for Linux out of beta, now generally available (lien direct) |
Microsoft announced today that the Chromium-based Edge web browser is now generally available on the Linux platform via the stable channel. [...] |
|
|
|
|
2021-11-02 10:50:05 |
macOS Monterey update causes some Macs to become unbootable (lien direct) |
A growing number of Mac and Macbook owners report that their devices become unbootable after attempting to update to the latest version of macOS, codenamed 'Monterey.' [...] |
|
|
|
|
2021-11-02 08:27:06 |
MITRE shares list of most dangerous hardware weaknesses (lien direct) |
MITRE shared a list of the topmost dangerous programming, design, and architecture security flaws plaguing hardware this year. [...] |
|
|
|
|
2021-11-02 07:59:18 |
FBI: Ransomware targets companies during mergers and acquisitions (lien direct) |
The Federal Bureau of Investigation (FBI) warns that ransomware gangs are targeting companies involved in "time-sensitive financial events" such as corporate mergers and acquisitions to make it easier to extort their victims. [...] |
Ransomware
|
|
|
|
2021-11-02 07:01:27 |
Android November patch fixes actively exploited kernel bug (lien direct) |
Google has released the Android November 2021 security updates, which address 18 vulnerabilities in the framework and system components, and 18 more flaws in the kernel and vendor components. [...] |
|
|
|
|
2021-11-01 20:07:48 |
\'Trojan Source\' attack method can hide bugs into open-source code (lien direct) |
Academic researchers have released details about a new attack method they call "Trojan Source" that allows injecting vulnerabilities into the source code of a software project in a way that human reviewers can't detect. [...] |
|
|
|
|
2021-11-01 17:55:04 |
Signal now lets you report and block spam messages (lien direct) |
Signal has added an easy way for users to report and block spam straight from message request screens with a single mouse click. [...] |
Spam
|
|
|
|
2021-11-01 17:35:54 |
Microsoft Defender for Windows is getting a massive overhaul (lien direct) |
Microsoft Defender for Windows is getting a massive overhaul allowing home network admins to deploy Android, iOS, and Mac clients to monitor antivirus, phishing, compromised passwords, and identity theft alerts from a single security dashboard. [...] |
|
|
|
|
2021-11-01 13:51:05 |
Canadian province health care system disrupted by cyberattack (lien direct) |
The Canadian provinces of Newfoundland and Labrador have suffered a cyberattack that has led to severe disruption to healthcare providers and hospitals. [...] |
|
|
|
|
2021-11-01 13:25:00 |
Kaspersky\'s stolen Amazon SES token used in Office 365 phishing (lien direct) |
Kaspersky said today that a legitimate Amazon Simple Email Service (SES) token issued to a third-party contractor was recently used by threat actors behind a spear-phishing campaign targeting Office 365 users. [...] |
Threat
|
|
|
|
2021-11-01 10:37:18 |
BlackShadow hackers breach Israeli hosting firm and extort customers (lien direct) |
The BlackShadow hacking group attacked the Israeli hosting provider Cyberserve to steal client databases and disrupt the company's services. [...] |
|
|
|
|
2021-11-01 10:13:59 |
FBI: HelloKitty ransomware adds DDoS attacks to extortion tactics (lien direct) |
The U.S. Federal Bureau of Investigation (FBI) has sent out a flash alert warning private industry partners that the HelloKitty ransomware gang (aka FiveHands) has added distributed denial-of-service (DDoS) attacks to their arsenal of extortion tactics. [...] |
Ransomware
|
|
|
|
2021-10-31 10:00:00 |
Microsoft warns of rise in password sprays targeting cloud accounts (lien direct) |
The Microsoft Detection and Response Team (DART) says it detected an increase in password spray attacks targeting privileged cloud accounts and high-profile identities such as C-level executives. [...] |
|
|
|
|
2021-10-30 11:02:01 |
Chaos ransomware targets gamers via fake Minecraft alt lists (lien direct) |
The Chaos Ransomware gang encrypts gamers' Windows devices through fake Minecraft alt lists promoted on gaming forums. [...] |
Ransomware
|
|
|
|
2021-10-30 08:01:02 |
Microsoft: Windows KB5006674, KB5006670 updates break printing (lien direct) |
Microsoft says Windows customers are experiencing issues with network printing after installing the Windows 11 KB5006674 and Windows 10 KB5006670 updates issued with this month's Patch Tuesday, on October 12. [...] |
|
|
|
|
2021-10-29 17:43:14 |
The Week in Ransomware - October 29th 2021 - Making arrests (lien direct) |
This week, international law enforcement operations went on the offensive, making arrests in numerous countries for ransomware-related activities. [...] |
Ransomware
|
|
|
|
2021-10-29 12:20:10 |
Snake malware biting hard on 50 apps for only $25 (lien direct) |
Cybercriminals are flooding to use the Snake password-stealing trojan, making it one of the popular malware families used in attacks. [...] |
Malware
|
|
|
|
2021-10-29 12:08:44 |
Hive ransomware now encrypts Linux and FreeBSD systems (lien direct) |
The Hive ransomware gang now also encrypts Linux and FreeBSD using new malware variants specifically developed to target these platforms. [...] |
Ransomware
Malware
|
|
|
|
2021-10-29 10:57:54 |
Microsoft PowerToys adds Windows 11 theme, new mouse utility (lien direct) |
Microsoft has added new utilities to the PowerToys toolset and updated the user interface with a new Windows 11 theme for PowerRename. [...] |
|
|
★★★★
|
|
2021-10-29 09:56:08 |
DOJ: Pirated sports streamer hacked accounts, extorted MLB (lien direct) |
The U.S. Attorney's Office for the Southern District of New York has charged a man for illegally streaming MLB, NBA, NFL, and NHL games via the web and hacking into sports leagues' customer accounts. [...] |
|
|
|
|
2021-10-29 06:52:12 |
Microsoft: Windows web content filtering now generally available (lien direct) |
Microsoft has announced that web content filtering has reached general availability and is now available for all Windows enterprise customers. [...] |
|
|
|
|
2021-10-29 05:53:23 |
Google Chromebooks failing to enroll due to network issue (lien direct) |
Since Thursday evening, Google has been investigating reports of customers having issues enrolling their Chromebooks with a network error. [...] |
|
|
|
|
2021-10-29 05:07:49 |
(Déjà vu) Police arrest hackers behind over 1,800 ransomware attacks (lien direct) |
The Europol has announced the arrest of 12 individuals who are believed to be linked to ransomware attacks against 1,800 victims in 71 countries. [...] |
Ransomware
|
|
|
|
2021-10-29 05:07:49 |
Police arrest criminals behind Norsk Hydro ransomware attack (lien direct) |
The Europol has announced the arrest of 12 individuals who are believed to be linked to ransomware attacks against 1,800 victims in 71 countries. [...] |
Ransomware
|
|
|
|
2021-10-28 21:17:36 |
TrickBot malware dev extradited to U.S. faces 60 years in prison (lien direct) |
A Russian national believed to be a member of the TrickBot malware development team has been extradited to the U.S. and is currently facing charges that could get him 60 years in prison. [...] |
Malware
|
|
|