What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-06-01 01:31:43 | Cyber Agency: Voting Software Vulnerable in Some States (lien direct) | Electronic voting machines from a leading vendor used in at least 16 states have software vulnerabilities that leave them susceptible to hacking if unaddressed, the nation's leading cybersecurity agency says in an advisory sent to state election officials. | Guideline | ||
|
2022-06-01 00:30:00 | Costa Rica Public Health System Targeted by Ransomware (lien direct) | Another attempted hacking of a Costa Rican government agency's computer system led the country's public health agency to shut down its systems Tuesday to protect itself, complicating the medical care of thousands of people. | Ransomware | ||
|
2022-05-31 18:17:48 | Three Nigerian Users of Agent Tesla RAT Arrested (lien direct) | Interpol on Monday announced the arrest of three Nigerians accused on using the Agent Tesla remote access trojan (RAT) in financial scams. | |||
|
2022-05-31 18:10:10 | Surefire Cyber Tackles Incident Response With $10M Series A Funding (lien direct) | Forgepoint Capital, a venture capital firm focused on cybersecurity investments, is pumping $10 million into an early-stage startup created to provide incident response services within the lucrative cyber-insurance ecosystem. | |||
|
2022-05-31 13:15:56 | Cybersecurity Training Firm Hoxhunt Raises $40 Million (lien direct) | Cybersecurity training firm Hoxhunt today announced that it has raised $40 million in Series B investment, which brings the total raised by the company to over $43 million. The funding round was led by Level Equity Management, with participation from previous investor Icebreaker.vc. | |||
|
2022-05-31 12:10:01 | Seemplicity Launches With Cybersecurity Productivity Platform, $32 Million in Funding (lien direct) | Cybersecurity workflow and productivity startup Seemplicity has emerged from stealth mode after raising a total of $32 million in seed and Series A funding. | |||
|
2022-05-31 11:54:08 | Seventh Member of International Cyber Fraud Ring Sentenced to Prison (lien direct) | The US Department of Justice on Friday announced the sentencing of John Telusma, a former member of the international cybercrime enterprise known as the “Infraud Organization.” | |||
|
2022-05-31 10:25:25 | Microsoft Confirms Exploitation of \'Follina\' Zero-Day Vulnerability (lien direct) | Microsoft has confirmed that Windows is affected by a zero-day vulnerability after researchers warned of exploitation in the wild. | Vulnerability | ||
|
2022-05-30 11:10:12 | Document Exploiting New Microsoft Office Zero-Day Seen in the Wild (lien direct) | Cybersecurity researchers have issued a warning after spotting what appears to be a new Microsoft Office zero-day vulnerability that may have been exploited in the wild. | Vulnerability | ||
|
2022-05-27 18:15:33 | Exploitation of VMware Vulnerability Imminent Following Release of PoC (lien direct) | When VMware announced patches for a critical vulnerability on May 18, users were warned that exploitation in the wild would likely start soon, and now a proof-of-concept (PoC) exploit targeting the flaw has been made public. | Vulnerability | ||
|
2022-05-27 17:34:49 | Microsoft Finds Major Security Flaws in Pre-Installed Android Apps (lien direct) | Bug hunters at Microsoft are calling attention to several high-severity vulnerabilities in a mobile framework used in pre-installed Android System apps, warning that exploitation could have allowed the implantation of a persistent backdoor on Android devices. | |||
|
2022-05-27 11:16:54 | FBI: Higher Education Credentials Sold on Cybercrime Forums (lien direct) | The FBI issued an alert on Thursday to inform the higher education sector about the exposure of credentials that can allow threat actors to access user accounts or an organization's network. According to the FBI, cybercriminals have been selling usernames and passwords on various public and dark web forums. | Threat | ||
|
2022-05-27 10:57:07 | Google Announces New Chrome and Chrome OS Security Features for Enterprises (lien direct) | Google on Thursday announced several new security features for enterprises that are using Chrome and Chrome OS. | |||
|
2022-05-27 10:36:52 | Hundreds Stranded After Ransomware Attack on Indian Airline (lien direct) | Hundreds of Indian air travellers were stranded inside their planes after the low-cost airline SpiceJet cancelled or delayed flights due to an "attempted ransomware attack", the company has said. | Ransomware | ||
|
2022-05-26 16:20:42 | Spain to Tighten Control Over Secret Services After Spying Scandal (lien direct) | Spain's prime minister vowed Thursday to tighten oversight of the country's secret services in the wake of a scandal over the hacking of top politicians' mobile phones that has roiled his fragile coalition government. | |||
|
2022-05-26 15:45:37 | SYN Ventures Closes $300M Fund for Cybersecurity Bets (lien direct) | SYN Ventures, a Florida-based venture capital firm placing early-stage bets in cybersecurity startups, has closed a new $300 million fund and announced the addition of serial entrepreneur Ryan Permeh as full-time operating partner. | |||
|
2022-05-26 15:03:32 | Cloud Security Firm Lacework Lays Off 20% of Workforce (lien direct) | Cloud security company Lacework is laying off a significant chunk of its workforce as a result of restructuring. The firm blamed the layoffs on a “seismic shift” in public and private markets, which have forced it to restructure and change its plan. | |||
|
2022-05-26 14:19:42 | VMware to Absorb Broadcom Security Solutions Following $61 Billion Deal (lien direct) | Chipmaker Broadcom on Thursday announced an agreement to acquire virtualization giant VMware for roughly $61 billion in cash and stock. | |||
|
2022-05-26 14:10:26 | Greg Johnson to Take Reins as McAfee CEO (lien direct) | McAfee Corp. announced this week that Greg Johnson has been appointed President and Chief Executive Officer, effective June 13, 2022. | |||
|
2022-05-26 13:04:32 | QCT Servers Affected by \'Pantsdown\' BMC Vulnerability (lien direct) | Servers made by Quanta Cloud Technology (QCT) are affected by the baseboard management controller (BMC) vulnerability known as CVE-2019-6260 and “Pantsdown.” | Vulnerability | ||
|
2022-05-26 11:09:44 | Critical Vulnerabilities Found in Open Automation Software Platform (lien direct) | Cisco's Talos research and threat intelligence unit revealed on Wednesday that one of its employees discovered several critical and high-severity vulnerabilities in the Open Automation Software Platform. | Threat | ||
|
2022-05-26 01:08:03 | Twitter to Pay $150M Penalty Over Privacy of Users\' Data (lien direct) | Twitter will pay a $150 million penalty and put in new safeguards to settle federal regulators' allegations that the social platform failed to protect the privacy of users' data over a six-year span. | |||
|
2022-05-25 17:23:07 | OT Remote Access Firm Xona Raises $7.2 Million in Series A Funding (lien direct) | Xona Systems, an Annapolis MD-based provider of frictionless remote authentication and access to the critical infrastructure, has raised $7.2 million in a Series A funding round led by DataTribe Opportunities Fund with participation from TFX Capital and individual investors. It brings the total raised to date to $9.4 million. | |||
|
2022-05-25 15:02:53 | Alleged Cybercrime Ringleader Arrested in Nigeria (lien direct) | An unnamed Nigerian man has been arrested over his alleged role leading a cybercrime group that specialized in phishing and business email compromise (BEC). The arrest, announced on Wednesday by Interpol, is the result of an international operation involving law enforcement and several cybersecurity companies. | Guideline | ||
|
2022-05-25 14:58:27 | Webinar Today: Missing Links for Managing OT Cyber Risk (lien direct) | 
|
|||
|
2022-05-25 14:42:33 | Tapping Neurodiverse Candidates Can Address Cybersecurity Skills Shortage (lien direct) | While neurodiverse candidates don't fit the traditional mold of applicants, they can often excel at highly focused, analytical work | |||
|
2022-05-25 14:26:26 | Tidelift Raises $27 Million to Tackle Open Source Supply Chain Security (lien direct) | Boston, Mass.-based Tidelift, a company on a mission to address open source supply chain “health and security,” has raised $27 million in Series C funding. | |||
|
2022-05-25 13:43:44 | WhiteSource Becomes Mend, Adds Automatic Code Remediation (lien direct) | WhiteSource Changes Company Name to Mend | |||
|
2022-05-25 12:31:10 | Two Cybersecurity Companies Offering Free Risk Assessments (lien direct) | Endpoint security company Tanium and risk management solutions provider Reciprocity have each announced free risk assessment offerings this week. | |||
|
2022-05-25 11:23:47 | Notorious Vietnamese Hacker Turns Government Cyber Agent (lien direct) | At the height of his career, Vietnamese hacker Ngo Minh Hieu made a fortune stealing the personal data of hundreds of millions of Americans. Now he has been recruited by his own authoritarian government to hunt, he says, the kind of cyber criminal he once used to be. | |||
|
2022-05-25 11:12:13 | Chrome 102 Patches 32 Vulnerabilities (lien direct) | Google on Tuesday announced the stable channel release of Chrome 102, which patches 32 vulnerabilities, including a critical flaw reported by an anonymous researcher. | |||
|
2022-05-25 10:37:49 | Google Discloses Details of Zoom Zero-Click Remote Code Execution Exploit (lien direct) | Google's Project Zero has disclosed the details of a zero-click remote code execution exploit targeting the Zoom video conferencing software. | |||
|
2022-05-25 10:05:50 | Trend Micro Patches Vulnerability Exploited by Chinese Cyberspies (lien direct) | Cybersecurity company Trend Micro has updated one of its products to patch a vulnerability that has been exploited by a threat actor linked to China. | Vulnerability Threat | ||
|
2022-05-24 18:13:54 | Video: Fireside Chat With Shane Huntley, Director at Google\'s Threat Analysis Group (lien direct) | Threat | |||
|
2022-05-24 15:08:40 | PyPI Served Malicious Version of Popular \'Ctx\' Python Package (lien direct) | A popular Python package was compromised recently and replaced with a malicious version apparently designed to help the attacker obtain AWS credentials. | |||
|
2022-05-24 14:48:56 | Semperis Banks $200 Million to Scale Enterprise ID Protection Tech (lien direct) | Enterprise identity protection vendor Semperis has banked $200 million in a new round of funding that values the company north of $1 billion. | |||
|
2022-05-24 14:16:32 | Red Access Raises $6 Million for Secure Browsing Tech (lien direct) | Israeli startup scores investor interest in technology to help businesses block web-borne cyberattacks An early-stage Israeli startup working on secure browsing technology has banked $6 million in seed-round investment led by Elron Ventures and Ten Eleven Ventures. | |||
|
2022-05-24 13:59:51 | LimaCharlie Banks $5.45 Million in Seed Funding (lien direct) | LimaCharlie, a California company supplying tools to run an MSSP or SOC on a pay-as-you-use model, has attracted $5.45 million in seed round financing. | Tool | ||
|
2022-05-24 12:57:19 | Hackers Can \'Pre-Hijack\' Online Accounts Before They Are Created by Users (lien direct) | Threat actors could gain access to users' online accounts by leveraging a new type of technique that involves pre-hijacking an account before it's actually registered by the victim. “Account pre-hijacking” is a new class of attacks that can be used to gain access to a targeted account, and many online services could be vulnerable. | |||
|
2022-05-24 10:41:48 | Cybersecurity Community Warned of Fake PoC Exploits Delivering Malware (lien direct) | Researchers have spotted fake proof-of-concept (PoC) exploits that appear to have been created by threat actors in an effort to deliver malware to members of the cybersecurity community. | Malware Threat | ||
|
2022-05-24 01:31:45 | DC Sues Zuckerberg Over Cambridge Analytica Privacy Breach (lien direct) | The District of Columbia on Monday sued Meta chief Mark Zuckerberg, seeking to hold him personally liable for the Cambridge Analytica scandal, a privacy breach of millions of Facebook users' personal data that became a major corporate and political scandal. | |||
|
2022-05-23 13:41:16 | Conti Ransomware Operation Shut Down After Brand Becomes Toxic (lien direct) | The Conti ransomware operation has undergone some significant organizational structure changes in the past months after the brand became toxic due to its affiliation with the Russian government. | Ransomware | ||
|
2022-05-23 13:24:30 | Facial Recognition Firm Clearview AI Fined $9.4 Million by UK Regulator (lien direct) | ICO orders Clearview AI to delete all UK data | |||
|
2022-05-23 11:31:22 | Over $1.1 Million Awarded at Pwn2Own Vancouver 2022 for 25 Zero-Day Vulnerabilities (lien direct) | 
Participants earned a total of more than $1.15 million at the Pwn2Own Vancouver 2022 hacking contest last week.
|
|||
|
2022-05-23 10:23:44 | Cisco Warns of Exploitation Attempts Targeting New IOS XR Vulnerability (lien direct) | Cisco informed customers on Friday that it's aware of in-the-wild exploitation attempts targeting a new vulnerability affecting its IOS XR software. | Vulnerability | ||
|
2022-05-23 08:52:29 | IBM Dives Into TrickBot Gang\'s Malware Crypting Operation (lien direct) | Researchers with IBM Security's X-Force division have analyzed 13 crypters employed by the cybercrime group behind the infamous TrickBot and Conti malware. | Malware | ||
|
2022-05-23 01:06:44 | Breach Exposed Data of Half-Million Chicago Students, Staff (lien direct) | The personal information of more than half a million Chicago Public Schools students and staff was compromised in a ransomware attack last December, but the vendor didn't report it to the district until last month, officials said. | Ransomware | ||
|
2022-05-20 12:37:19 | Nikkei Says Customer Data Likely Impacted in Ransomware Attack (lien direct) | Asian media giant Nikkei has disclosed a ransomware attack that might have impacted customer data. | Ransomware | ||
|
2022-05-20 12:15:12 | New Brute Force Attacks Against SQL Servers Use PowerShell Wrapper (lien direct) | Microsoft has warned organizations of a new wave of brute force cyberattacks that target SQL servers and use a rather uncommon living-off-the-land binary (LOLBin). Specifically, the attackers rely on a legitimate utility called sqlps.exe to achieve fileless persistence on SQL servers that use weak or default passwords. | |||
|
2022-05-20 11:45:29 | (Déjà vu) DoJ Will No Longer Use CFAA to Charge Ethical Hackers (lien direct) | The United States Department of Justice has announced that it would no longer charge ethical hackers under the controversial Computer Fraud and Abuse Act (CFAA). |
To see everything:
Our RSS (filtrered)
