What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2016-10-17 14:43:08 | Nordic IT Security - hear me speak in Stockholm (lien direct) |  Come hear me talk in Stockholm about my time in the anti-virus industry, as I give the keynote presentation at Nordic IT Security.
|
★★★★★ | ||
|
2016-10-17 14:12:23 | NyaDrop exploiting Internet of Things insecurity to infect Linux devices with malware (lien direct) |  A Linux threat known as NyaDrop is exploiting a lack of security in Internet of Things (IoT) devices to infect them with malware.
David Bisson reports.
|
★★★ | ||
|
2016-10-14 15:13:11 | Domain name hijacking – what it is, and how you can stop your company being the next victim (lien direct) |  How do you think your customers would feel if they visited your business's website and were greeted with an offensive image or malicious code? And how would you feel knowing that hackers could pull off an attack like this without changing a single byte of your site?
Read more in my article on the Bitdefender Business Insights blog.
|
|||
|
2016-10-14 14:34:43 | Verizon is playing hard ball with Yahoo after hack (lien direct) |  Verizon could reduce the price it will pay to acquire Yahoo, or walk away from the $5 billion deal completely.
|
Yahoo | ||
|
2016-10-13 17:21:18 | Enjoy taking selfies? That plays right into the hands of this identity-stealing malware... (lien direct) |  A new Android malware loves users' love of selfies. How much? Enough to ask them to take one so that it can steal access to their accounts.
David Bisson reports.
|
|||
|
2016-10-13 13:07:19 | Clinton campaign chief tweets "Vote Trump", after his account is hacked (lien direct) |  Clinton campaign chief John Podesta tweeted what must have been a surprising turn of events, even in the most dramatic of presidential races.
Read more in my article on the Hot for Security blog.
|
|||
|
2016-10-13 11:22:10 | Odinaff trojan targets SWIFT users, financial organisations (lien direct) |  Malware takes cues from Carbanak, and comes equipped with lots of hacking tools...
David Bisson reports.
|
|||
|
2016-10-12 12:42:15 | Yahoo accused of deliberately making it hard to close your account (lien direct) |  It's not as easy to up sticks and leave your Yahoo account for dead as it used to be...
|
Yahoo | ||
|
2016-10-12 11:01:25 | Decrypt THIS! Ransomware dev taunts security researchers in support forum (lien direct) |  DXXD doesn't display a ransom note like other ransomware...
David Bisson reports.
|
|||
|
2016-10-10 22:20:45 | Samsung tells Galaxy Note 7 users to stop using it, and turn it off NOW (lien direct) |  Gives a whole new meaning for an expensive gadget burning a hole in your pocket...
|
|||
|
2016-10-10 21:43:23 | \'Cyber terrorist\' trades cufflinks for handcuffs (lien direct) |  Would the fact that you have an operating system installed on your USB cufflink prove that you're up to no good, or just a bit of a geek?
|
|||
|
2016-10-10 20:43:37 | Yahoo has a creepy plan for advertising billboards to spy on you (lien direct) |  The billboards would use a variety of sensor systems, including cameras and proximity technology, to capture real-time audio, video and even biometric information about potential target audiences.
David Bisson reports.
|
Yahoo | ||
|
2016-10-10 13:43:52 | These 60 dumb passwords can hijack over 500,000 IoT devices into the Mirai botnet (lien direct) |  As long as there is a demand for cheap IoT devices, there will be plenty of manufacturers happy to cut corners and put the internet community at risk.
|
|||
|
2016-10-09 21:34:53 | Spy program could have given hacker access to all Yahoo email, claims ex-employee (lien direct) |  According to a report in "The Intercept", the snooping code was implemented in such a way that it could have allowed a hacker to "basically read everyone's Yahoo mail."
|
Yahoo | ||
|
2016-10-09 21:04:54 | How to find your lost or stolen laptop (lien direct) |  What you should do *before* your computer or laptop is lost or stolen, and what you should do after!
David Bisson reports.
|
|||
|
2016-10-09 19:38:21 | EU privacy watchdogs concerned by Yahoo\'s email scanning (lien direct) |  Privacy watchdogs based in the European Union are concerned Yahoo violated European users' privacy with its secret email-scanning program.
David Bisson reports.
|
Yahoo | ||
|
2016-10-06 14:50:12 | Attack allows Mac malware to piggyback on your webcam, while it\'s in use (lien direct) |  A new attack allows OS X malware to record video and audio whenever a victim legitimately turns on their webcam, without drawing attention to itself.
David Bisson reports.
|
|||
|
2016-10-06 10:14:00 | Apple Messages could be exposing your privacy when it previews a link (lien direct) |  Apple's iMessage isn't doing all it can to protect users' information when it previews a link in a conversation.
David Bisson reports.
|
|||
|
2016-10-05 15:11:19 | TalkTalk fined record £400,000 for failing to prevent hack (lien direct) |  Webpages vulnerable to SQL injection and software left unpatched for 3.5 years...
ICO investigation reveals the shoddy state of security at TalkTalk.
|
|||
|
2016-10-05 12:13:24 | This is how little Signal knows about its privacy-loving users (lien direct) |  Signal got hit by a US government subpoena, demanding the encrypted messaging app cough up any information they had on accounts associated with two phone numbers...
And it turned into a victory for those who believe in online privacy.
|
|||
|
2016-10-05 12:09:59 | Finally everyone can encrypt their Facebook conversations. Here\'s how (lien direct) |  Facebook has finally finished rolling out "Secret Conversations" to its billion-or-so users, making it the biggest end-to-end encrypted messaging network on the internet. But it hasn't turned it on by default.
Read more in my article on the Bitdefender blog.
|
|||
|
2016-10-04 20:05:08 | It\'s time to close your Yahoo account (lien direct) |  Hundreds of millions of Yahoo Mail accounts had their emails scanned on behalf of US intelligence, reports Reuters.
|
Yahoo | ||
|
2016-10-04 14:19:28 | 48 characters enough to crash most Linux distros, says sysadmin (lien direct) |  You'll be surprised to hear that there is a disagreement in the world of Linux admins about how serious a systemd vulnerability really is.
David Bisson reports.
|
|||
|
2016-10-04 09:28:21 | 400 Android apps hiding DressCode malware on Google Play Store (lien direct) |  Trojanised apps continue to be uncovered in the official Google Play Android app store, including a Grand Theft Auto-themed mod for Minecraft.
David Bisson reports.
|
|||
|
2016-10-03 14:05:09 | Shellshock two years on – has your company forgotten about it? (lien direct) |  It's just over two years since a critical Shellshock vulnerability was uncovered. But it has far from disappeared...
Read more in my article on the Bitdefender Business Insights blog.
|
|||
|
2016-10-03 13:44:52 | iOS 10 comes with some privacy trade-offs. Here is how to lock down your device (lien direct) |  Find out what new steps you can take to better protect your privacy on iOS 10.
Yasin Soliman reports.
|
|||
|
2016-10-03 13:25:07 | How to disable macros in Microsoft Office (lien direct) |  Macros can be malicious, as David Bisson reports.
Make sure you have disabled them by default in Microsoft Office.
|
|||
|
2016-10-03 09:14:26 | (Déjà vu) Discover VASCO\'s top 10 tips for a successful and secure Mobile First Strategy (lien direct) |  Graham Cluley Security News is sponsored this week by the folks at VASCO. Thanks to the great team there for their support!
VASCO, a global leader in authentication, electronic signatures, and identity management, is sharing its expertise in a free on-demand webinar entitled "Top 10 tips for a successful and secure mobile first strategy."
Mobile banking has definitely shifted focus from transaction to customer interaction, enabling users to engage with their bank anytime, anywhere and more frequently.
But how can you establish a successful and secure mobile first strategy, while keeping an eye on user convenience?
Check out this FREE on-demand webinar now!
Discover the necessary tips to establish a successful and secure mobile first strategy:
Enable more services on mobile
Make user experience fast, convenient and secure
Score your user's device and context
Combat malware and other attacks
Adopt mobile as the key to all your banking channels
and many more...
If you're interested in sponsoring my site for a week, and reaching an IT-savvy audience that cares about computer security, you can find more information here. |
Guideline | ||
|
2016-10-03 08:52:29 | Download the Mirai source code, and you can run your own Internet of Things botnet (lien direct) |  Hijacking millions of IoT devices for evil just became that little bit easier.
|
|||
|
2016-09-30 17:26:23 | Security firm pours cold water on Yahoo\'s state-sponsored hack claim (lien direct) |  A security company has found evidence that suggests state-sponsored attackers may not have been responsible for the hack that saw 500 million Yahoo users' account details stolen.
David Bisson reports.
|
Yahoo | ||
|
2016-09-30 16:48:14 | Virtual desktop and cloud service pays £18,600 to ransomware extortionists (lien direct) |  Hosted desktop and cloud provider VESK pays hackers almost £20,000 after being hit by ransomware, even though it had backups.
|
|||
|
2016-09-30 10:26:27 | Earn $1.5 million by remotely jailbreaking iOS 10 (lien direct) |  If you had a zero-day vulnerability for remotely hacking an iPhone who would you tell? The people who will give you $1.5 million dollars or the company that can protect every iOS user in the world?
|
|||
|
2016-09-29 16:01:26 | Russian hackers likely targeted journalists investigating Flight MH17 (lien direct) |  When investigative journalists reporting on the shooting down of Malaysia Airlines flight MH17 in eastern Ukraine are targeted by hackers, it doesn't take long before conclusions are made as to who might be responsible.
David Bisson reports.
|
|||
|
2016-09-29 10:55:00 | Lab test reveals 10x productivity gain from real-time threat intelligence for SIEMs (lien direct) |  Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support!
Make sure to download your free copy of the industry's first lab test measuring productivity gains from threat intelligence.
Recorded Future provides deep, detailed insight into emerging threats by automatically collecting, analyzing, and organizing billions of data points from the Web.
Operational defenders want threat intelligence to add tangible and quantifiable value to their organization's security. As a provider of real-time threat intelligence, Recorded Future strives to provide measurable benefits to its customers, who have reported back some impressive results.
Inspired by this feedback, Recorded Future commissioned an independent lab test to measure the quantifiable value - in terms of productivity and security - that a SOC (security operations center) analyst gains from integrating Recorded Future with a SIEM (security information and event management) solution.
The results showed that one SOC analyst, in a controlled environment, experienced a 10x gain in productivity after Recorded Future real-time threat intelligence was integrated with a SIEM.
To review the full independent lab test, download the report.
If you're interested in sponsoring my site for a week, and reaching an IT-savvy audience that cares about computer security, you can find more information here. |
|||
|
2016-09-29 00:24:27 | Yahoo could have reset all user passwords two years ago, but chose not to (lien direct) |  Yahoo insiders say that protecting against hackers took a back seat.
|
Yahoo | ||
|
2016-09-28 15:52:39 | Hacker downloads 2.2 million PLAINTEXT passwords from teen social site (lien direct) |  An unknown hacker has downloaded 2.2 million plaintext passwords from a teen social site. To make matters worse, a further 3.3 million are up for grabs...
David Bisson reports.
|
|||
|
2016-09-28 13:28:09 | TheDarkOverlord holds investment bank to ransom, or else hacked files will be released (lien direct) |  No-one knows who TheDarkOverlord is. No-one even knows if he or she is one lone hacker, or a group of hackers. But one thing is certain, TheDarkOverlord must be giving some companies sleepless nights as they struggle to work out the best way to respond.
Read more in my article on the Hot for Security blog.
|
|||
|
2016-09-28 00:29:59 | Donald Trump says hackers sit in their bedrooms, weighing 400lb (lien direct) |  Some are tall, some are short, some may even be Mexican.
But Donald Trump takes prime-time TV to paint a stereotypical portrait of hackers.
|
|||
|
2016-09-28 00:01:28 | Aerospace industry warned of targeted attacks from the Komplex OS X trojan (lien direct) |  The Sofacy hacking group (also known as APT28, Sednit, and Fancy Bear) has developed a new trojan called 'Komplex' to help it target OS X users.
David Bisson reports.
|
APT 28 | ||
|
2016-09-27 10:15:51 | The hacker\'s guide to boosting your ransomware\'s brand (lien direct) |  Janus Cybercrime Solutions are the outfit behind the notorious Petya and Mischa ransomware business.
And, it seems, they're keen on building their brand.
David Bisson reports.
|
|||
|
2016-09-26 14:27:10 | Yahoo is being sued over its massive hack (lien direct) |  Could Yahoo could have done more to protect itself, and why didn't it notice it had suffered a data breach sooner?
While those questions are being pondered, legal eagles will be earning a pretty penny working on this lawsuit...
|
Yahoo | ||
|
2016-09-26 13:53:43 | Don\'t have a Yahoo email address and think you\'re safe from the hack? (lien direct) |  It turns out it's not as simple as just checking whether you have a Yahoo, BT Yahoo Mail or Sky email address...
You could have a Yahoo account without even knowing it.
|
Yahoo | ||
|
2016-09-26 09:31:06 | Xiny Android trojan evolves to root phones and infect system processes (lien direct) |  The latest member of a notorious family of Android trojans downloads and launches malicious apps without the user's knowledge on infected devices. Its purpose? To display ads, intercepts IM chat messages and target online bankers.
David Bisson reports.
|
|||
|
2016-09-23 13:23:41 | Upgrading to iOS 10 may have made your backups a lot faster to crack (lien direct) |  Password cracking a local iTunes backup is now 2,500 faster than with iOS 9, claims Russian firm.
|
|||
|
2016-09-23 13:00:46 | Hackers hit White House staffer\'s Gmail account, raises security concerns by leaking sensitive emails (lien direct) |  A scan seemingly of Michelle Obama's passport is amongst the haul of leaked information.
Read more in my article on the Hot for Security blog.
|
|||
|
2016-09-23 10:43:06 | Sky customers told to change passwords after massive Yahoo hack (lien direct) |  Do you have a Sky email account? There's potentially bad news - that service comes courtesy of Yahoo.
|
Yahoo | ||
|
2016-09-23 10:30:56 | BT investigates Yahoo hack, tells BT Yahoo mail users to reset passwords (lien direct) |  With at least 500 million Yahoo users exposed by the 2014 hack, other services are also advising customers to reset their passwords.
|
Yahoo | ||
|
2016-09-22 19:01:25 | Yahoo confirms: at least 500 million accounts hacked in 2014 data breach (lien direct) | Yahoo CISO Bob Lord writes: We have confirmed that a copy of certain user account information was stolen from the company's network in late 2014 by what it believes is a state-sponsored actor. The account information may have included names, email addresses, telephone numbers, dates of birth, hashed passwords (the vast majority with bcrypt) and, in some cases, encrypted or unencrypted security questions and answers. The ongoing investigation suggests that stolen information did not include unprotected passwords, payment card data, or bank account information; payment card data and bank account information are not stored in the system that the investigation has found to be affected. Based on the ongoing investigation, Yahoo believes that information associated with at least 500 million user accounts was stolen and the investigation has found no evidence that the state-sponsored actor is currently in Yahoo's network. My advice? Reset your Yahoo password. Make it a strong, complex password - and make sure that you are not using the same password anywhere else on the net. If you were using the same password in multiple places, you need to get out of that habit right now. Reusing passwords is a disaster waiting to happen, and could allow hackers to crack open other accounts using the same credentials. Invest in a decent password manager program to generate random, hard-to-crack passwords, store them securely and remember them for you. If you haven't already done so, enable two-step verification on your Yahoo account. Watch out for phishing emails that pretend to come from Yahoo. More as this news develops. | Yahoo | ||
|
2016-09-22 15:12:27 | Hackers are automatically seeding trackers with malware disguised as most popular downloads (lien direct) |  Cybercriminals are spreading malware via torrent distribution networks, using an automated tool to disguise the downloads as trending audio, video and other digital content...
David Bisson reports.
|
|||
|
2016-09-22 08:24:29 | Yahoo \'expected to confirm massive data breach\', says Recode (lien direct) |  As Yahoo poises to sell up to Verizon, it may have some bad news to share. Recode reports that "several hundred million" account credentials may have been impacted by a data breach.
|
Yahoo |
To see everything:
Our RSS (filtrered)
