What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-11-05 09:30:01 | Nikkei worker tricked into transferring $29 million into scammer\'s bank account (lien direct) | Nikkei, one of the largest media companies in Japan, with an empire spanning broadcasting, digital media, magazines, and newspapers such as the Financial Times, says that its US subsidiary, Nikkei America, has been scammed out of $29 million. Read more in my article on the Hot for Security blog. | |||
|
2019-11-04 11:47:37 | After months of worry, BlueKeep vulnerability is now being exploited in mass-hacking campaign (lien direct) | The BlueKeep vulnerability, discovered by the UK’s NCSC, is being exploited at scale in an attempt to install a cryptocurrency minder on unpatched Windows PCs. | Vulnerability | ||
|
2019-11-01 15:28:17 | A guest appearance on the IT Pro podcast… (lien direct) | I was honoured to be invited as a guest onto the inaugural episode of the “ITPro podcast” hosted by reviews and community editor Adam Shepherd and features editor Jane McCallion. Give it a listen. | |||
|
2019-10-31 22:20:11 | (Déjà vu) Men who were paid $100,000 by Uber to hush-up hack plead guilty to extortion scheme (lien direct) | Two hackers face up to five years in prison after pleading guilty to their involvement in a scheme which saw them attempt to extort money from Uber and LinkedIn in exchange for the deletion of stolen data. Read more in my article on the Tripwire State of Security blog. | Hack Guideline | Uber | |
|
2019-10-31 15:31:38 | Untitled Goose Game security hole could have allowed hackers to wreak havoc (lien direct) | The highly popular “Untitled Goose Game” has been found to be vulnerable to an attack that could allow hackers to run malicious code on your computer. Read more in my article on the Hot for Security blog. | |||
|
2019-10-31 00:27:39 | Smashing Security #152: Cats, hoodies, and rent (lien direct) | What’s the problem with IoT-enabled pet feeders? Can hacking ever be illustrated without a hoodie? And just how are landlords using smart home technology to snoop upon their residents? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist and broadcaster David McClelland. | |||
|
2019-10-30 14:05:45 | Medical data is being leaked by NHS pagers, and then broadcast for the world to see… (lien direct) | Medical data is being broadcast unencrypted by hospitals across the UK, as ambulances are directed to respond to 999 emergency calls. | |||
|
2019-10-28 19:16:01 | How Facebook helps an abusive ex-partner find out your new identity, even after you\'ve blocked them (lien direct) | Imagine you're in an abusive relationship, and things have turned violent. You leave him, block his Facebook account, and update the name on your profile to hide your identity. Would you expect your ex-partner to be able to see what your new name is? | |||
|
2019-10-28 15:20:53 | Update your iPhone 5 before November 3 2019, or lose its internet access (lien direct) | Listen up if you’re still using an iPhone 5 – you need to update to iOS 10.3.4 before Sunday November 3, or you may find your smartphone loses access to the internet. Read more in my article on the Hot for Security blog. | |||
|
2019-10-28 11:12:26 | See you at NISC, the National Information Security Conference, next week (lien direct) | I’m delighted to announce that I will be moderating NISC 2019 in Cheshire next week. It’s a great conference with some terrific cybersecurity speakers. Find out more about how you can participate too. | |||
|
2019-10-25 13:55:13 | Japanese hotel robots can be hacked to spy on guests in their bedrooms (lien direct) | A Japanese hotel chain has had to update its in-room robots, after a security researcher discovered they could be easily hacked to allow anyone access to their camera and microphone. | |||
|
2019-10-25 08:45:34 | Sensitive US government and military travel details left exposed online (lien direct) | Significant amounts of sensitive data about employees of the US government military personnel data could now be in the public domain following its exposure in a data leak. Read more in my article on the Hot for Security blog. | ★★ | ||
|
2019-10-24 13:43:22 | 12 year jail sentence for man who hacked Los Angeles Superior Court to send two million phishing emails (lien direct) | A Texas man has been sentenced to over 12 years in prison after being found guilty of hacking into the computer system of the Los Angeles Superior Court, and then using it to send two million phishing emails. Read more in my article on the Tripwire State of Security blog. | |||
|
2019-10-24 10:59:44 | Smashing Security #151: Frankly, sometimes paying the ransom is a good idea (lien direct) | Remember how the City of Baltimore was badly hit by ransomware earlier this year? Turns out that wasn’t the end of their problems. Also, Carole takes a look at how smart speakers can be hacked to trick you into giving criminals your passwords or even credit card details. And we discuss the findings of the LastPass global password security report. All this, and much much more, in the latest “Smashing Security” podcast. | Ransomware | LastPass | |
|
2019-10-21 22:41:27 | Action Fraud? Inaction Fraud (lien direct) | In recent months serious questions have been raised about whether victims of cybercrime are getting the support they deserve from the UK’s national fraud reporting centre. | |||
|
2019-10-21 14:14:13 | Alexa and Google Home devices can be exploited to eavesdrop on users, phish passwords (lien direct) | Researchers have shown just how easy it is for third-parties to exploit the so-called “smart” speakers that many home owners have purchased to eavesdrop on conversations and even steal passwords and credit card details. Read more in my article on the Bitdefender BOX blog. | |||
|
2019-10-21 12:42:19 | Avast fends off hacker who breached its internal network in copycat CCleaner attack (lien direct) | Czech anti-virus firm Avast has been targeted for a second time by hackers seemingly attempting to plant malware inside a malicious CCleaner update. | Malware | CCleaner | |
|
2019-10-17 14:35:14 | About that “Any fingerprint can unlock your Samsung Galaxy S10” report (lien direct) | Plenty of headlines are warning about anyone’s fingerprint being able to unlock a Samsung Galaxy S10, but I’m not sure it’s quite as simple as that… | |||
|
2019-10-16 23:48:07 | Smashing Security #150: Liverpool WAGs, Facebook politics, and a selfie stalker (lien direct) | Footballers’ wives go to war over Instagram leaks, it turns out fake news is fine on Facebook (just so long as it’s in a political ad), and things take a horrific turn in Japan, as a stalker uses a scary technique to find out where his pop idol lives. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Dave Bittner. | |||
|
2019-10-16 07:13:28 | Ransomware attack hits Pitney Bowes, impacting company mail rooms around the world (lien direct) | Global shipping and mailing service Pitney Bowes has fallen foul of a ransomware attack that has encrypted data on its computer systems and disrupted customer access to its online services. Read more in my article on the Hot for Security blog. | Ransomware | ||
|
2019-10-15 22:38:03 | Fake iOS Checkra1n jailbreak site installs slot machine game, generates click-fraud revenue (lien direct) | A website that promises to jailbreak your iPhone using the Checkm8 exploit actually installs apps with the intention of generating click-fraud revenue. | |||
|
2019-10-14 12:48:55 | Alleged “Psycho” hacker in court over EtherDelta cryptocurrency robbery (lien direct) | An alleged hacker has appeared in a US federal court to answer charges related to the theft of at least $1.4 million in cryptocurrency from the EtherDelta cryptocurrency exchange platform in December 2017. Read more in my article on the Hot for Security blog. | |||
|
2019-10-12 00:08:10 | Stalker zoomed in on Japanese idol\'s eyes to find out where she lived (lien direct) | An obsessed fan assaulted J-Pop star Ena Matsuoka after determining where she lived by zooming in on selfies she had posted on social media, and examining the reflection in her eyes. | |||
|
2019-10-10 08:37:46 | Smashing Security #149: Falling in love with fraudsters (lien direct) | We take a trip to Staten Island, New York, to hear how a case of cyberstalking resulted in the arrest of 20 alleged mobsters, learn about the nude photo-loving insider threat at Yahoo, and discover how fraudsters might be boosting Match.com’s profits. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by Graham Cluley and Carole Theriault, joined this week by Ran Levi of “Malicious Life.” | Threat | Yahoo | |
|
2019-10-09 12:31:45 | Ransomware victim hacks attacker, turning the tables by stealing decryption keys (lien direct) | A victim of the Muhstik ransomware paid his attackers money to recover his files, but then wrought his revenge by hacking them right back. Read more in my article on the Tripwire State of Security blog. | Ransomware | ||
|
2019-10-08 12:42:46 | Yes, MFA isn\'t perfect. But that\'s not a reason for your company not to use it (lien direct) | Multi-factor authentication is one of the simplest steps you can take to harden your security. It would be an enormous mistake to think it is worthless just because it’s not a perfect solution. Read more in my article on the Bitdefender Business Insights blog. | |||
|
2019-10-07 16:24:15 | Toms Shoes newsletter “hacked by a nice man” (lien direct) | Footwear retailer Toms has had its email newsletter compromised by someone who calls himself “a nice man”. And he has strong opinions on the behaviour of other hackers… | |||
|
2019-10-07 15:22:26 | How a GIF could let a hacker view your WhatsApp messages (lien direct) | A flaw in WhatsApp could have allowed hackers to snoop upon your chat history just by tricking you into opening a boobytrapped GIF image. If you’re going to run WhatsApp, make sure that it’s properly updated. | |||
|
2019-10-04 12:51:28 | Former Yahoo employee admits he hacked 6000 users\' accounts, stole nude photos and videos (lien direct) | A former Yahoo software engineer has admitted hacking into thousands of Yahoo users’ accounts in a search for naked images and videos of young women. Read more in my article on the Hot for Security blog. | Yahoo | ||
|
2019-10-03 13:54:05 | A short history of hacked billboards and road signs (lien direct) | Hacked roadside billboards are in the news again, so here is a look back on some of the more notable incidents that have caught the media’s attention in the past… | |||
|
2019-10-03 13:14:09 | FBI: Don\'t pay ransomware demands, stop encouraging cybercriminals to target others (lien direct) | The FBI has some unambiguous advice for organisations on how they should handle ransomware demands: Don’t pay. Read more in my article on the Tripwire State of Security blog. | Ransomware | ||
|
2019-10-02 23:10:59 | Smashing Security #148: Billboard boobs, face forensics, and Alexa gets way too personal (lien direct) | Drivers are distracted by a hacked billboard, we take a deeper look at how the deepfake problem has… uh… deepened, and Carole is less than happy about Amazon’s announcement about new Alexa integrations. All this, an annoying goose, and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. | ★★ | ||
|
2019-09-30 23:16:46 | It\'s been a couple of days, so Apple releases yet another iOS update (lien direct) | Yup, there’s a new update to iOS. But don’t expect it to have resolved the worrying Checkm8 exploit one hacker found in the iPhone’s secure ROM. | |||
|
2019-09-30 13:22:54 | Hack strikes Words with Friends and Draw Something, amid claims 218 million players\' details breached (lien direct) | Players of the popular Words with Friends and Draw Something smartphone games are being advised to change their passwords following what sounds like a security breach at game developer Zynga. Read more in my article on the Hot for Security blog. | Hack | ||
|
2019-09-26 15:26:39 | Hearing aid manufacturer hit by cyber attack slashes profits by $95 million (lien direct) | Demant, the manufacturer of Oticon hearing aids, has said that it expects losses of up to 650 million kroner (approximately $95 million) following a cyber attack earlier this month. | |||
|
2019-09-26 14:02:31 | Who is reading your CEO\'s email? And how to stop it (lien direct) | With Business Email Compromise such a significant and growing threat, it makes sense to keep a close eye on who is forwarding email out of your business, and where it is going to… Read more in my article on the Bitdefender Business Insights blog. | |||
|
2019-09-26 13:57:37 | WordPress sites hacked through defunct Rich Reviews plugin (lien direct) | An estimated 16,000 websites are believed to be running a vulnerable and no-longer-maintained WordPress plugin that can be exploited to display pop-up ads and redirect visitors to webpages containing porn, scams, and–worst of all–malware designed to infect users' computers. Read more in my article on the Tripwire State of Security blog. | |||
|
2019-09-25 23:02:53 | Smashing Security #147: Don\'t Snapchat and drive (lien direct) | How is private medical data leaking onto the streets of Milton Keynes, what is widening the cybersecurity skills gap, and how is Australia controversially tackling the problem of drivers using their mobile phones? All this and more can be heard in the latest “Smashing Security” podcast. | |||
|
2019-09-25 11:43:14 | Teenage TalkTalk hacker accused of $800,000 cryptocurrency theft in the United States (lien direct) | Elliott Gunton – aka “Glubz” – is charged in relation to the December 2017 security breach of cryptocurrency exchange EtherDelta. | |||
|
2019-09-24 16:26:11 | CafePress finally warns customers that it was hacked (lien direct) | Online merchandise retailer CafePress, used by millions of people to host an online store where they can sell custom-designed t-shirts, mugs, stickers, and more, has finally informed its customers that its systems were hacked and their personal details stolen. | |||
|
2019-09-24 09:06:13 | World of Warcraft\'s suspected DDoS attacker has been arrested (lien direct) | Blizzard, the developers of World of Warcraft Classic, has revealed that a person suspected of orchestrating a disruptive Distributed Denial of Service (DDoS) attack against the games’ servers has been arrested. Read more in my article on the Hot for Security blog. | |||
|
2019-09-23 14:38:56 | I\'m keynoting about cybercrime at the CRN MSP conference in London next week (lien direct) | I’m the opening keynote speaker at CRN’s MSP conference in London next week, where – amongst other things – I’ll be describing to managed service providers how it’s possible to make a billion dollars through cybercrime. I hope to see some of you there! | |||
|
2019-09-19 23:36:53 | 15,000 private webcams left open to snooping, no password required (lien direct) | Once again concerns are being raised about the sorry state of IoT security, after a security researcher discovered over 15,000 private webcams that have been left wide open for anyone with an internet connection to spy upon. Read more in my article on the Bitdefender BOX blog. | |||
|
2019-09-18 23:04:47 | Smashing Security 146: Password secrets and baking brownies (lien direct) | In the latest edition of the “Smashing Security” podcast, hosted by computer security veterans Graham Cluley and Carole Theriault, Carole has suffered an injury, we journey back in time to one of our earliest episodes to discuss the perils of passwords, and Rachael Stockton from LastPass drops by for a chat. | LastPass | ||
|
2019-09-18 11:13:39 | How to get away with hacking a US satellite (lien direct) | The US Air Force wants to know if you can hijack control of an orbiting satellite and turn its camera from staring at Earth to point at the moon instead. Read more in my article on the Hot for Security blog. | |||
|
2019-09-17 14:19:04 | Medical images and details of 24.3 million patients left exposed on the internet (lien direct) | Researchers discover that confidential images of X-rays, CT and MRI scans related to millions of patients has been left unprotected on hundreds of servers used by health providers worldwide. | |||
|
2019-09-17 12:21:21 | Police raids after data on most of Ecuador\'s citizens leaks online (lien direct) | If you’re a citizen of Ecuador, chances are that you’ve had your personal and financial information exposed after an ElasticSearch server was left unsecured. Victims even include Wikileaks founder Julian Assange… | |||
|
2019-09-17 08:08:04 | LastPass users automatically updated to fix security vulnerability in browser extension (lien direct) | Popular password manager LastPass says that it has fixed a vulnerability in its Chrome and Opera browser extensions that could have potentially seen an attacker steal the username and password previously filled-in by the software. | Vulnerability | LastPass | |
|
2019-09-11 23:21:03 | Smashing Security #145: Apple and Google willy wave while home assistants spy – DoH! (lien direct) | Apple’s furious with Google over iPhone hacking attacks against Uyghur Muslims in China, DNS-over-HTTPS is good for privacy but makes ISPs angry, and concern over digital assistants listening to our private moments continues to rise. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by journalist John Leyden. | |||
|
2019-09-11 14:21:00 | Toyota parts supplier loses $37 million in email scam (lien direct) | Toyota Boshoku, a seating and interiors supplier for Toyota cars, has revealed that it was tricked into moving a large amount of money into a bank account controlled by scammers. Read more in my article on the Tripwire State of Security blog. |
To see everything:
Our RSS (filtrered)
