What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
SecurityWeek.png 2019-05-25 10:33:03 Georgia Supreme Court Rules that State Has No Obligation to Protect Personal Information (lien direct)

Almost exactly one year after the stringent European General Data Protection Regulation came into effect (May 25, 2019), the Supreme Court of the state of Georgia has ruled (May 20,  2019) that the state government does not have an inherent obligation to protect citizens\' personal information that it stores.

read more

SecurityWeek.png 2019-05-24 17:12:00 GitHub Adds New Tools to Help Developers Secure Code (lien direct)

Microsoft-owned GitHub on Thursday announced the introduction of several new security tools and features designed to help developers secure their code.

read more

SecurityWeek.png 2019-05-24 16:19:02 Microsoft Defender ATP for Mac Now in Public Preview (lien direct)

Microsoft\'s unified endpoint security solution is now publicly available for Mac users, following two months of limited preview. 

read more

SecurityWeek.png 2019-05-24 14:24:02 One Year on, EU\'s GDPR Sets Global Standard for Data Protection (lien direct)

The EU\'s strict data laws have set the global benchmark for protecting personal information online since coming into force a year ago, but some worry that many users have barely noticed the change.

read more

SecurityWeek.png 2019-05-24 14:03:00 New York Department of Financial Services Launches Cybersecurity Unit (lien direct)

The New York State Department of Financial Services (DFS) this week announced that it has launched a new cybersecurity division whose role is to protect consumers and financial services organizations from cyber threats.

read more

SecurityWeek.png 2019-05-24 13:49:01 Microsoft Brings Hardware-Based Isolation to Chrome, Firefox (lien direct)

Microsoft this week made the Windows Defender Application Guard extensions generally available, which now provides hardware-based isolation to all Chrome and Firefox users on Windows 10.

read more

SecurityWeek.png 2019-05-24 13:07:05 The Intelligent SOC Can be a Reality Today (lien direct)

External factors, including security tools shifting to the cloud, the rise of Endpoint Detection and Response (EDR) solutions, and the cybersecurity talent shortage, are presenting challenges for security operations centers (SOCs). There is a lot of talk right now about the need for SOCs to become more efficient and effective to address not only these factors but to also become more \'intelligent.\' However, this notion of an intelligent SOC is not new.

read more

SecurityWeek.png 2019-05-24 10:59:02 Assange Charged With 17 New Counts Under Espionage Act (lien direct)

A superseding indictment returned by a U.S. federal grand jury on Thursday charges WikiLeaks founder Julian Assange with 18 counts related to illegally obtaining and disclosing classified information.

read more

SecurityWeek.png 2019-05-24 04:55:00 Facebook Figures Five Percent of Accounts Are Fake (lien direct)

Facebook on Thursday said it recently disabled billions of bogus accounts set up by "bad actors" and that five percent of active accounts are likely fakes.

read more

SecurityWeek.png 2019-05-24 04:52:01 US Officials Say Foreign Election Hacking Is Inevitable (lien direct)

The hacking of U.S. election systems, including by foreign adversaries, is inevitable, and the real challenge is ensuring the country is resilient enough to withstand catastrophic problems from cyber breaches, government officials said Wednesday.

read more

SecurityWeek.png 2019-05-24 02:02:03 Researcher Drops 3 Separate 0-Day Windows Exploits in 24 Hours (lien direct)

SandboxEscaper, the security researcher who posted a claimed zero-day Windows 10 vulnerability on GitHub Tuesday, has now posted the remaining four exploits (two yesterday and the final two today) that he or she (we\'ll say \'she\') said she possessed. 

read more

SecurityWeek.png 2019-05-24 01:52:04 Instagram Says Not Source of Contact Info for Influential Users (lien direct)

Instagram on Thursday said it was not the source of private contact information for millions of influential users of the service recently found in an unguarded online database.

read more

SecurityWeek.png 2019-05-23 18:19:04 Siemens Teams With Chronicle on Cybersecurity Solutions for Energy Industry (lien direct)

Siemens and Alphabet-owned cybersecurity firm Chronicle this week announced a partnership whose goal is to provide industrial monitoring and detection solutions for the energy sector.

read more

SecurityWeek.png 2019-05-23 16:49:04 NATO Warns Russia of \'Full Range\' of Responses to Cyberattack (lien direct)

The head of NATO told Russia and other potential foes Thursday that the Western military alliance was ready to use all means at its disposal to respond to cyber attacks.

Jens Stoltenberg\'s warning came with the bloc\'s members on alert for interference in European Parliament elections that kicked off in Britain and the Netherlands on Thursday.

read more

SecurityWeek.png 2019-05-23 16:17:02 Best Practices for Securely Moving Workloads Into the Cloud (lien direct)

Gartner\'s latest IT spending forecast predicts that spending on data center systems will reach $195 billion in 2019, but decrease to $190 billion through 2022. In contrast, spending on cloud infrastructure services will grow from $39.5 billion in 2019 to $63 billion through 2021. This cloud shift would be even more pronounced if many organizations still weren\'t reluctant to embark on cloud transformation projects or concerned about security risks of moving workloads to the cloud.

read more

SecurityWeek.png 2019-05-23 15:49:05 Comodo Issued Most Certificates for Signed Malware on VirusTotal (lien direct)

Comodo CA (now known as Sectigo) is the Certificate Authority (CA) that issued the largest number of digital certificates used to sign malware samples found on VirusTotal over the past year, Chronicle\'s security researchers have discovered. 

read more

SecurityWeek.png 2019-05-23 15:42:02 Authorities Take Down Cryptocurrency Mixing Service Bestmixer.io (lien direct)

Authorities in Europe this week said they took down Bestmixer.io, one of the leading cryptocurrency mixing service in the world. 

The takedown was possible due to a collaboration between the Dutch Fiscal Information and Investigation Service (FIOD), Europol, and authorities in Luxembourg. 

read more

SecurityWeek.png 2019-05-23 12:52:04 PoC Exploits Created for Wormable Windows RDS Flaw (lien direct)

Several proof-of-concept (PoC) exploits, including ones that can be used for remote code execution, have been developed for the recently patched Windows Remote Desktop Services (RDS) vulnerability tracked as CVE-2019-0708 and dubbed BlueKeep.

read more

SecurityWeek.png 2019-05-23 12:04:01 Moody\'s Downgrades Equifax Outlook to Negative Over 2017 Data Breach (lien direct)

Moody\'s has revised its Equifax outlook from stable to negative, citing the effect of the 2017 data breach. This is the first time that a cybersecurity incident has resulted in a Moody\'s outlook downgrading.

read more

SecurityWeek.png 2019-05-23 11:58:04 5 Things Every SMB Should Know to Strengthen Defenses (lien direct)

You may find it surprising that small businesses make up more than 97% of total businesses in North America, according to the Better Business Bureau (BBB). Given this statistic, I suppose the good news is that fewer than half of all cyberattacks target small businesses. The bad news is that when small/midmarket businesses (SMBs) are attacked, the majority don\'t survive. But this doesn\'t have to be the case.

read more

SecurityWeek.png 2019-05-23 10:30:05 UK Has Warned 16 NATO Allies of Russia Hacking Attempts: Foreign Minister (lien direct)

Britain has shared with 16 NATO allies details of malicious Russian cyber activity in their countries over the last 18 months, foreign minister Jeremy Hunt was to say on Thursday.

read more

SecurityWeek.png 2019-05-23 00:59:04 Amazon Shareholders Support Selling Face Recognition Tech to Police (lien direct)

Amazon on Wednesday confirmed that shareholders rejected proposals to prohibit sales of facial recognition technology to governments and study how it might threaten privacy or civil rights.

read more

SecurityWeek.png 2019-05-22 17:38:01 GDPR: One Year Down…Now What? (lien direct)

On May 25, 2018 the General Data Protection Regulation came into law for European Union countries, created to protect data relating to E.U. citizens, ensuring the right to know what is being stored, where and why. 

read more

SecurityWeek.png 2019-05-22 16:31:05 Attackers Could Use Mobile Device Sensors to Generate Unique Device Fingerprint: Research (lien direct)

Researchers at Cambridge University have determined that attackers could use the built-in motion sensors in mobile devices to generate a unique device fingerprint.

read more

SecurityWeek.png 2019-05-22 15:47:05 Critical Vulnerabilities Plague South Korean ActiveX Controls (lien direct)

Tens of very basic but Critical vulnerabilities were found in 10 South Korean ActiveX controls as part of a short research project, security researchers with Risk Based Security say. 

read more

SecurityWeek.png 2019-05-22 15:43:03 LinkedIn Allowed TLS Certificate to Expire-Again (lien direct)

Microsoft-owned social media giant LinkedIn has once again put user data and privacy at risk by allowing a TLS certificate to expire.

read more

SecurityWeek.png 2019-05-22 15:34:00 Magecart Skimmer Poses as Payment Service Provider (lien direct)

The skimmer used in a recently discovered Magecart attack on a Magento-based e-commerce website was posing as a payment service provider via a rogue iframe, Malwarebytes reports.

read more

SecurityWeek.png 2019-05-22 15:22:03 One Year On, EU Has 145,000 Data Law Complaints (lien direct)

One year after the entry into force of landmark EU rules to better protect personal data, nearly 145,000 complaints have been registered, an initial assessment revealed on Wednesday.

read more

SecurityWeek.png 2019-05-22 15:14:02 No Root Password for 20% of Popular Docker Containers (lien direct)

An analysis of 1,000 popular Docker containers revealed that nearly 20% of them have nulled root passwords, Kenna Security says. 

read more

SecurityWeek.png 2019-05-22 14:20:00 Flaw Exposes Mitsubishi PLCs to Remote DoS Attacks (lien direct)

Researchers discovered that some programmable logic controllers (PLCs) made by Japanese electrical equipment maker Mitsubishi Electric are affected by a serious denial-of-service (DoS) vulnerability.

read more

SecurityWeek.png 2019-05-22 13:25:01 Hunters.AI Emerges From Stealth With $5.4M in Seed Funding (lien direct)

Hunters.AI, an Israel-based company specializing in autonomous threat hunting, on Wednesday emerged from stealth mode and announced that it raised $5.4 million in seed funding from YL Ventures and Blumberg Capital.

read more

SecurityWeek.png 2019-05-22 12:19:01 EU Adopts Powers to Respond to Cyberattacks (lien direct)

The European Union on Friday adopted powers to punish those outside the bloc who launch cyberattacks that cripple hospitals and banks, sway elections and steal company secrets or funds.

read more

SecurityWeek.png 2019-05-20 23:17:05 US Delays Huawei Ban for 90 Days (lien direct)

US officials have issued a 90-day reprieve on their ban on dealing with Chinese tech giant Huawei, saying breathing space was needed to avoid huge disruption.

read more

SecurityWeek.png 2019-05-20 20:44:00 DHS Highlights Common Security Oversights by Office 365 Customers (lien direct)

As organizations migrate to Microsoft Office 365 and other cloud services, many fail to use proper configurations that ensure good security practices, the U.S. Department of Homeland Security\'s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) warns. 

read more

SecurityWeek.png 2019-05-20 19:27:05 Siemplify Raises $30 Million in Series C Funding (lien direct)

Siemplify, a New York, NY-based provider of security orchestration, automation and response (SOAR) tools, today announced that it has secured $30 million in a Series C funding round led by Georgian Partners.

read more

SecurityWeek.png 2019-05-20 16:42:05 Linux Kernel Privilege Escalation Vulnerability Found in RDS Over TCP (lien direct)

A memory corruption vulnerability recently found in Linux Kernel\'s implementation of RDS over TCP could lead to privilege escalation. 

Tracked as CVE-2019-11815 and featuring a CVSS base score of 8.1, the flaw impacts Linux kernels prior to 5.0.8, but only systems that use the Reliable Datagram Sockets (RDS) for the TCP module.

read more

SecurityWeek.png 2019-05-20 15:39:04 Faulty Database Script Exposed Salesforce Data to Wrong Users (lien direct)

Salesforce Shuts Down Instances After Database Script Erroneously Enabled All Permissions on User Profiles

read more

SecurityWeek.png 2019-05-20 15:06:01 Huawei Vows to Deliver Android Security Updates After Google Cut-Off (lien direct)

Future Huawei phones may stop using Android

read more

SecurityWeek.png 2019-05-20 12:51:05 TeamViewer Confirms It Was Hacked in 2016 (lien direct)

Remote control and support solutions provider TeamViewer has confirmed that hackers likely operating out of China breached its systems back in 2016, but the company decided not to disclose the incident at the time as it found no evidence that it affected customers.

read more

SecurityWeek.png 2019-05-20 12:09:01 How to Evaluate Threat Intelligence Vendors That Cover the Deep & Dark Web (lien direct)

Deep & dark web (DDW) communities have long been must-have data sources for threat intelligence programs, but only recently has the market caught up with this need.

read more

SecurityWeek.png 2019-05-20 05:33:01 User Data Exposed in Stack Overflow Hack (lien direct)

Hackers had access to Stack Overflow systems for nearly one week before the attack was detected and some user data was exposed after all, the company has admitted.

read more

SecurityWeek.png 2019-05-17 15:46:02 Hacktivist Attacks Declined 95 Percent Since 2015: IBM (lien direct)

The number of hacktivist attacks that resulted in quantifiable damage to the victim has declined by 95 percent since 2015, according to IBM.

read more

SecurityWeek.png 2019-05-17 14:47:03 Slack Flaw Allows Hackers to Steal, Manipulate Downloads (lien direct)

A recently patched vulnerability in the Slack desktop application for Windows can be exploited by malicious actors to steal and manipulate a targeted user\'s downloaded files.

read more

SecurityWeek.png 2019-05-17 13:29:01 Tenable Updates Free Vulnerability Assessment Solution (lien direct)

Tenable this week announced Nessus Essentials, an expanded version of its free vulnerability assessment solution previously known as Nessus Home. 

read more

SecurityWeek.png 2019-05-17 12:34:03 Wormable Windows RDS Vulnerability Poses Serious Risk to ICS (lien direct)

A critical remote code execution vulnerability patched recently by Microsoft in Windows Remote Desktop Services (RDS) poses a serious risk to industrial environments, experts have warned.

read more

SecurityWeek.png 2019-05-17 05:47:03 Stack Overflow Discloses Security Breach (lien direct)

Stack Overflow, the popular Q&A platform for programmers, revealed on Thursday that someone gained access to its production systems over the weekend.

read more

SecurityWeek.png 2019-05-16 17:21:02 How to Securely Blend Your IoT Data with Business Data (lien direct)

Opportunities Created by the Integration of IoT Data With the Rest of Your Business Environment Are Vast

read more

SecurityWeek.png 2019-05-16 16:41:05 Authorities Takedown GozNym Cybercrime Group That Stole an Estimated $100 Million (lien direct)

Authorities in the United States and Europe on Thursday announced the takedown of an organized cybercrime network that used the GozNym malware to steal an estimated $100 million from victims. 

read more

SecurityWeek.png 2019-05-16 16:13:02 Cisco Patches Critical Vulnerabilities in Prime Infrastructure (PI) Software (lien direct)

Cisco has released patches for numerous vulnerabilities affecting its products, including Critical flaws in the Cisco Prime Infrastructure (PI) Software that could allow remote code execution.

A total of three vulnerabilities were identified in the PI software, namely CVE-2019-1821, CVE-2019-1822, and CVE-2019-1823, featuring a CVSS score of 9.8.

read more

SecurityWeek.png 2019-05-16 15:46:01 Group Seeks Investigation of Deep Packet Inspection Use by ISPs (lien direct)

European Digital Rights Organization Seeks Investigation Into Internet Service Providers\' Use of Deep Packet Inspection (DPI)

read more

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21

Information mise à jours le: 2019-05-27 08:01:36
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter