What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-10-08 13:45:04 | Code Execution Vulnerability Impacts NSA Reverse Engineering Tool (lien direct) | Versions through 9.0.4 of the Ghidra software reverse engineering (SRE) framework are impacted by a code-execution vulnerability, the National Security Agency (NSA) has revealed. | Tool Vulnerability | ||
|
2019-10-03 15:46:01 | Researcher Shows How Adversaries Can Gather Intel on U.S. Critical Infrastructure (lien direct) | A researcher has used a free tool that he created and open source intelligence (OSINT) to demonstrate how easy it is for adversaries to gather intelligence on critical infrastructure in the United States. | Tool | ||
|
2019-10-02 15:16:09 | Google Expands Use of Password Checkup Tool, Unveils New Privacy Features (lien direct) | Google on Wednesday announced that its Password Checkup tool has been added to the Account password manager, and the company has unveiled some new security and privacy features for YouTube, Maps and Assistant. | Tool | ||
|
2019-09-30 13:25:07 | New Anomali Tool Finds Threat Data in News, Blogs, Social Networks (lien direct) | Threat intelligence firm Anomali on Monday announced the launch of Lens, a new tool designed to make it easier for organizations to find and use threat data from a wide range of sources. | Tool Threat | ||
|
2019-09-13 13:32:06 | Sophos Makes Sandboxie Free in Transition to Open Source (lien direct) | Sophos this week removed the license check and activation requirements from Sandboxie, essentially making the isolation tool free. The move, the cybersecurity firm says, is the first step it makes toward releasing the sandbox-based isolation program open source. | Tool | ||
|
2019-08-23 16:49:04 | New Tool From Cisco Hunts Flaws in Automotive Computers (lien direct) | Cisco has released a new hardware tool designed to help researchers, developers and automakers discover vulnerabilities in automobile computers. | Tool | ||
|
2019-08-23 07:31:03 | Claroty Releases Free Diagnostic Tool for Urgent/11 Vulnerabilities (lien direct) | Industrial cybersecurity firm Claroty this week released a free and open source tool designed to help organizations check whether their operational technology (OT) devices are vulnerable to Urgent/11 attacks. | Tool | ||
|
2019-08-16 16:09:05 | Apple Sues Corellium Over Security Research Tool (lien direct) | Apple has filed a copyright infringement lawsuit against Florida-based virtualization company Corellium for creating “perfect replicas” of iOS that can be used for security research and other purposes. | Tool | ||
|
2019-08-15 11:08:05 | Focus on Use Cases to Improve Security Operations (lien direct) | There was a time when the term “use case” was confined to product development meetings where software and systems engineers worked through defining why and how a product would be used in order to create requirements. Use cases remain a critical tool to ensure teams are building products their customers need and can use. | Tool | ||
|
2019-08-13 13:11:02 | Free MANRS Tool Helps Improve Routing Security (lien direct) | The Mutually Agreed Norms for Routing Security (MANRS) initiative on Tuesday announced the availability of a free tool designed to help network operators identify potential issues and improve routing security. | Tool | ||
|
2019-08-09 15:42:05 | Hidden Injection Flaws Found in BIG-IP Load Balancers (lien direct) | In May 2019 (updated in June), F5 issued a security advisory about a potential injection issue in the Tool Command Language (TCL) as used with its BIG-IP load balancers. Load balancers are essential to ensure consistent web services in high volume circumstances, and BIG-IP is popular with banks, governments and large corporations. | Tool | ||
|
2019-07-10 16:03:02 | Intel Patches Serious Vulnerability in Processor Diagnostic Tool (lien direct) | Intel's Patch Tuesday updates for July 2019 fix a serious vulnerability in the company's Processor Diagnostic Tool and a less serious issue in its Solid State Drives (SSD) for Data Centers (DC) product. | Tool Vulnerability | ||
|
2019-06-18 15:54:01 | Free Cloudflare Tool Helps CAs Securely Issue Certificates (lien direct) | Internet performance and security firm Cloudflare on Tuesday announced the availability of a free API designed to help certificate authorities (CAs) securly issue certificates by ensuring that malicious actors cannot complete the domain control validation process via BGP hijacking and DNS spoofing attacks. | Tool | ||
|
2019-06-17 17:32:05 | (Déjà vu) Decryptor Released for Latest GandCrab Ransomware Variants (lien direct) | A free decryption tool is now available for the victims of the latest variants of the GandCrab ransomware. | Ransomware Tool | ||
|
2019-06-14 15:05:02 | French Authorities Release Free Decryptor for PyLocky Ransomware (lien direct) | The French Ministry of Interior has released a free decryption tool for the PyLocky ransomware to help victims recover their data. | Ransomware Tool | ||
|
2019-06-14 08:41:00 | Amid Privacy Firestorm, Facebook Curbs Research Tool (lien direct) | Facebook has curbed access to a controversial feature allowing searches of the vast content within the social network -- a tool which raised privacy concerns but was also used for research and investigative journalism. | Tool | ||
|
2019-06-11 13:48:05 | Tool Links Internet-Exposed ICS to Google Street View (lien direct) | An open source tool named Kamerka allows users to generate a map of Internet-exposed industrial control systems (ICS) in a specified country and link results to Google Street View. | Tool | ||
|
2019-05-16 11:11:05 | Microsoft Releases Attack Surface Analyzer 2.0 (lien direct) | Microsoft has rewritten its Attack Surface Analyzer tool to take advantage of modern, cross-platform technologies, the company announced this week. | Tool | ||
|
2019-04-08 14:15:02 | NSA Releases Reverse Engineering Tool\'s Source Code (lien direct) | The National Security Agency (NSA) has made the source code for its "Ghidra" reverse engineering tool available for everyone. | Tool | ||
|
2019-04-03 19:02:00 | Canadian Authorities Raid RAT Developer (lien direct) | Canadian authorities last week raided a residence in connection with Orcus Technologies, the developer of Orcus RAT, a tool sold on underground markets for its remote access capabilities. | Tool | ||
|
2019-03-25 19:17:00 | Microsoft Finds Privilege Escalation, Code Execution Flaws in Huawei Tool (lien direct) | Microsoft researchers have identified potentially serious privilege escalation and arbitrary code execution vulnerabilities in a tool from Huawei. The vendor has released updates that should patch the flaws. | Tool | ||
|
2019-03-20 19:23:02 | Vulnerability in NSA\'s Reverse Engineering Tool Allows Remote Code Execution (lien direct) | A vulnerability in Ghidra, the generic disassembler and decompiler released by the National Security Agency (NSA) in early March, could be exploited to execute code remotely, researchers say. | Tool Vulnerability | ||
|
2019-03-14 16:41:05 | Code Execution Flaw Found in Sonatype Nexus Repository Manager (lien direct) | A critical remote code execution vulnerability has been found and patched in Sonatype's Nexus Repository Manager (NXRM), a popular open-source tool that allows developers to manage software components. | Tool Vulnerability | ||
|
2019-03-08 14:37:00 | How China Exploits Social Media to Influence American Public (lien direct) | The growth of Russia's attempts to manipulate American public opinion since 2015 is well known and documented. At heart, it is basic political propaganda -- which is an accepted tool of international diplomacy. Russia, however, is commonly perceived as having over-stepped the mark by actively seeking to sow discord, weaken western democracy, and influence elections. | Tool | ||
|
2019-03-06 12:12:03 | NSA Makes Reverse Engineering Tool Freely Available (lien direct) | The United States National Security Agency (NSA) this week released its in-house reverse engineering tool Ghidra to the public, for free. | Tool | ||
|
2019-02-23 18:43:02 | Report: Apps Give Facebook Sensitive Health and Other Data (lien direct) | Several phone apps are sending sensitive user data, including health information, to Facebook without users' consent, according to a report by The Wall Street Journal. An analytics tool called "App Events" allows app developers to record user activity and report it back to Facebook, even if the user isn't on Facebook, according to the report . | Tool | ||
|
2019-02-21 13:47:04 | WinRAR Vulnerability Exposes Millions of Users to Attacks (lien direct) | WinRAR, the popular data compression tool utilized by over 500 million users worldwide, is affected by a serious vulnerability that can allow arbitrary code execution through specially crafted ACE archives. | Tool Vulnerability | ||
|
2018-12-31 14:43:00 | French Startup Offers Dark Web Compass, But Not for Everyone (lien direct) | For years criminal websites shrouded in secrecy have thrived beyond the reach of traditional search engines, but a group of French engineers has found a way to navigate this dark web -- a tool they don't want to fall into the wrong hands. | Tool | ||
|
2018-12-19 17:17:01 | Russian Cyberspies Build \'Go\' Version of Their Trojan (lien direct) | The Russian-linked cyber-espionage group Sofacy has developed a new version of their Zebrocy tool using the Go programming language, Palo Alto Networks security researchers warn. | Tool | ||
|
2018-11-19 16:40:05 | Instagram Download Tool Exposes User Passwords (lien direct) | Instagram informed some users last week that their passwords may have been exposed as a result of using the “Download Your Data” tool. | Tool | ||
|
2018-10-19 18:39:04 | NSA-Linked \'DarkPulsar\' Exploit Tool Detailed (lien direct) | Kaspersky Lab security researchers have analyzed another exploit tool that was supposedly stolen from the National Security Agency-linked Equation Group. | Tool | ||
|
2018-10-10 18:10:04 | Triangulating Beyond the Hack: Stolen Records Just One Tool in a Comprehensive Kit (lien direct) | Technical Hacks to Compromise Sensitive Systems Are Just One Tool in a Much Larger Toolkit In simpler times, cybersecurity was a fairly straightforward proposition. You had your firewall, your gateway. You monitored traffic and scanned for viruses. The bad guys weren't even always that bad, per se. Sometimes they were just there for kicks. | Tool | ||
|
2018-10-05 10:26:03 | D-Link Patches Code Execution, XSS Flaws in Management Tool (lien direct) | D-Link has released patches for several remote code execution and cross-site scripting (XSS) vulnerabilities found by researchers in the company's Central WiFiManager access point management tool. | Tool | ||
|
2018-10-04 12:27:04 | Wickr Announces General Availability of Anti-Censorship Tool (lien direct) | As the balkanization of the internet continues, traveling businessmen are left with concerns over the integrity of their communications from some regions of the globe. Increasing censorship, blocking and other restrictions in many world regions have left internet users unprotected because secure communications are banned. | Tool | ||
|
2018-09-20 16:38:04 | Rapid7 Adds Automation, Orchestration Capabilities to Insight Platform (lien direct) | Rapid7 announced on Thursday that its Insight Platform now features automation and orchestration capabilities through a new tool called InsightConnect. | Tool | ||
|
2018-09-19 15:40:01 | NSA Leak Fuels Rise in Hacking for Crypto Mining: Report (lien direct) | Illicit cryptocurrency mining has been surging over the past year, in part due to a leaked software tool from the US National Security Agency, researchers said Wednesday. | Tool | ||
|
2018-09-19 13:22:04 | New Tool Helps G Suite Admins Uncover Security Threats (lien direct) | Google on Tuesday announced the general availability of a tool that helps G Suite customers identify security issues within their domains, and take action. | Tool | ||
|
2018-09-12 15:06:03 | Flaws Found in Fuji Electric Tool That Links Corporate PCs to ICS (lien direct) | Several vulnerabilities rated “high severity” have been discovered by researchers in Fuji Electric V-Server. The vendor has released updates that should address the flaws. The existence of the security holes, all of which could allow a remote attacker to execute arbitrary code, was made public this week when ICS-CERT published two advisories. | Tool | ||
|
2018-09-04 14:38:01 | Automating in Security With Intelligence (lien direct) | No Automated Tool is Capable of Providing the Full Context in Which a Threat Was Developed and Deployed | Tool Threat | ||
|
2018-08-20 13:19:05 | Code of App Security Tool Posted to GitHub (lien direct) | Code of DexGuard, software designed to secure Android applications and software development kits (SDKs), was removed from GitHub last week, after being illegally posted on the platform. | Tool | ||
|
2018-08-20 12:30:05 | NCC Group Releases Open Source DNS Rebinding Attack Tool (lien direct) | Cyber security and risk mitigation company NCC Group has released a new open source tool designed to make it easier for penetration testers and others to perform DNS rebinding attacks. | Tool | ||
|
2018-08-09 13:39:00 | Flaws in Siemens Tool Put ICS Environments at Risk (lien direct) | Serious vulnerabilities discovered by researchers in Siemens' TIA Portal for SIMATIC STEP7 and SIMATIC WinCC can be exploited by threat actors for lateral movement and other purposes in ICS environments. | Tool Threat | ★★★ | |
|
2018-08-09 02:58:00 | DarkHydrus Uses Open Source Phishery Tool in Middle-East Attacks (lien direct) | The recently detailed DarkHydrus threat group is leveraging the open-source Phishery tool to create malicious documents used in attacks on government entities in the Middle East, Palo Alto Networks warns. | Tool Threat | ||
|
2018-08-07 12:44:05 | New Method Discovered for Cracking WPA2 Wi-Fi Passwords (lien direct) | Developers of the popular password cracking tool Hashcat have identified a new method that can in some cases be used to obtain a network's Wi-Fi Protected Access (WPA) or Wi-Fi Protected Access II (WPA2) password. | Tool | ★★ | |
|
2018-08-06 06:56:03 | Carbon Black Launches Real-Time Query and Response Tool (lien direct) | Endpoint security provider Carbon Black has taken the wraps off Cb LiveOps, a new tool to provide organizations with real-time query and response. | Tool | ||
|
2018-07-19 09:28:05 | ABB to Patch Code Execution Flaw in HMI Tool (lien direct) | Swiss industrial tech company ABB is working on a patch for a serious arbitrary code execution vulnerability affecting one of its engineering tools. | Tool Vulnerability | ||
|
2018-07-09 15:12:02 | Intel Patches Security Flaws in Processor Diagnostic Tool (lien direct) | Intel has updated its Processor Diagnostic Tool to address vulnerabilities that could lead to arbitrary code execution and escalation of privileges. | Tool Guideline | ||
|
2018-06-27 16:37:04 | Free Thanatos Ransomware Decryptor Released (lien direct) | Cisco's Talos team this week announced the availability of a free decryption tool to help victims of the Thanatos ransomware recover their files without paying the ransom. | Ransomware Tool |
To see everything:
Our RSS (filtrered)
