Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-03-07 12:20:18 |
Google Fights Phishing With Updated Workspace Notifications (lien direct) |
Google has made some changes to Google Workspace comment notifications in an effort to protect users against malware and phishing attacks.
Previously, email notifications that were automatically sent to a user when someone mentioned them in a comment in a Google Workspace document only included the comment and the commenter's name.
|
Malware
|
|
|
|
2022-03-07 11:35:15 |
Emergency Firefox Update Patches Two Actively Exploited Zero-Day Vulnerabilities (lien direct) |
Mozilla over the weekend issued an emergency security update for Firefox to address two zero-day vulnerabilities that have been exploited in attacks.
|
|
|
|
|
2022-03-07 11:01:17 |
CISA Informs Organizations of Flaws in Unsupported Industrial Telecontrol Devices (lien direct) |
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) last week released an advisory to inform organizations about potentially serious vulnerabilities affecting ipDIO telecontrol communication devices that are no longer supported by the vendor.
|
|
|
|
|
2022-03-05 16:41:31 |
Ukraine Digital Army Brews Cyberattacks, Intel and Infowar (lien direct) |
Formed in a fury to counter Russia's blitzkrieg attack, Ukraine's hundreds-strong volunteer “hacker” corps is much more than a paramilitary cyberattack force in Europe's first major war of the internet age. It is crucial to information combat and to crowdsourcing intelligence.
|
|
|
|
|
2022-03-04 21:32:27 |
Cyberattack Knocks Thousands Offline in Europe (lien direct) |
Thousands of internet users across Europe have been thrown offline after what sources said Friday was a likely cyberattack at the beginning of Russia's offensive in Ukraine.
|
|
|
|
|
2022-03-04 20:18:17 |
Ukraine Cyber Official: We Only Attack Military Targets (lien direct) |
|
|
|
|
|
2022-03-04 19:27:00 |
Russia Blocks Access to Facebook Over War (lien direct) |
Russia's state communications watchdog has ordered to completely block access to Facebook in Russia amid the tensions over the war in Ukraine.
|
|
|
|
|
2022-03-04 15:05:56 |
Slight Increase in Attacks on ICS Computers in 2021: Report (lien direct) |
Kaspersky said it saw only a small increase in the percentage of industrial control system (ICS) computers targeted in 2021 compared to the previous year, but there was a more significant rise for certain types of threats.
|
|
|
|
|
2022-03-04 13:02:07 |
VISO Trust Raises $11 Million for Cyber Risk Management Platform (lien direct) |
Third-party cyber risk management solutions provider VISO Trust this week announced that it has raised $11 million in Series A funding, which brings the total investment in the company to $14 million.
|
|
|
|
|
2022-03-04 12:39:02 |
Credentials of 71,000 NVIDIA Employees Leaked Following Cyberattack (lien direct) |
The email addresses and passwords of more than 71,000 NVIDIA employees were likely stolen in a recent cyberattack and are now circulating within underground communities.
On February 23, hackers managed to compromise NVIDIA's network and steal not only employee credentials but also proprietary information.
|
|
|
|
|
2022-03-04 12:03:16 |
NSA Publishes Best Practices for Improving Network Defenses (lien direct) |
The National Security Agency (NSA) this week published a set of best practices for organizations looking to improve the overall security of their networks.
The guidance is meant to be generic, applicable to a broad range of network devices, and should help administrators prevent adversaries from exploiting their networks.
|
|
|
|
|
2022-03-04 10:58:37 |
Tens of Cybersecurity Firms Found Exposing Their Assets: Study (lien direct) |
Tens of cybersecurity companies expose a large number of assets to the internet, according to a study conducted recently by attack surface management firm Reposify.
|
|
|
★★★★
|
|
2022-03-03 20:17:53 |
Infusion Pumps Impacted by Years-Old Critical Vulnerabilities: Report (lien direct) |
More than 100,000 infusion pumps were found susceptible to severe vulnerabilities that were disclosed roughly three years ago, according to researcher at Palo Alto Networks' Unit 42.
|
|
|
|
|
2022-03-03 16:10:15 |
Intel Unveils vPro Security Enhancements for 12th Gen Core Processors (lien direct) |
Intel on Thursday presented the vPro platform security enhancements introduced with the new 12th Gen Core processors, codenamed Alder Lake.
|
|
|
|
|
2022-03-03 15:57:36 |
BastionZero Raises $6M Seed for Secure Remote Access Tech (lien direct) |
BastionZero, a provider of remote access to backend infrastructure, has raised $6 million in seed investment.
The funding round was led by Dell Technologies Capital, with added investments from participation from Akamai and DG Lab Fund (Japan).
|
|
|
|
|
2022-03-03 15:55:10 |
British Firm Tackles \'Harvest Now, Decrypt Later\' Problem With Sharding Technology (lien direct) |
Quantum-proof secure data distribution platform released to enterprise market
A UK firm believes it has solved the 'harvest now, decrypt later problem'.
|
|
|
|
|
2022-03-03 15:01:09 |
Healthcare Company Mon Health Discloses Second Data Breach (lien direct) |
Monongalia Health System (Mon Health) this week started notifying patients, employees, and partners of a cyberattack that may have resulted in their data being stolen.
|
Data Breach
|
|
|
|
2022-03-03 14:49:28 |
Universities Should Prepare for Attacks (lien direct) |
Universities have a long tradition of open learning and collaboration, where information is shared freely among students and researchers alike. In fact, universities played a key role in growing the internet from its early military roots to the global communication platform it has become. Unfortunately, in today's world, ransomware gangs and other bad actors have become a regular part of online life.
|
Ransomware
|
|
|
|
2022-03-03 13:22:20 |
CardinalOps Raises $17.5 Million for Threat Coverage Optimization Platform (lien direct) |
CardinalOps, which describes itself as a threat coverage optimization company, on Thursday announced raising $17.5 million in a Series A funding round that brings the total raised by the firm to $24 million.
The investment, led by Viola Ventures, will be used by the Israel-based company to improve its product and for go-to-market activities.
|
Threat
|
|
|
|
2022-03-03 11:51:29 |
Hacked Ukrainian Military Emails Used in Attacks on European Governments (lien direct) |
Staff at European government organizations have been receiving malicious emails that appear to be coming from email accounts belonging to members of the Ukrainian military.
|
|
|
|
|
2022-03-03 10:54:26 |
(Déjà vu) U.S. Gov Issues Stark Warning, Calling Firmware Security a \'Single Point of Failure\' (lien direct) |
|
|
|
|
|
2022-03-03 10:54:26 |
U.S. Gov: Firmware Security is \'Single Point of Failure\' (lien direct) |
U.S. government issues stark warning that firmware presents “a large and ever-expanding attack surface.”
|
|
|
|
|
2022-03-03 09:45:40 |
Cisco Patches Critical Vulnerabilities in Expressway, TelePresence VCS Products (lien direct) |
Cisco this week announced patches that address a couple of critical vulnerabilities in its Expressway Series and TelePresence Video Communication Server (VCS) unified communications products.
|
|
|
|
|
2022-03-03 00:40:08 |
Maryland Officials Outline Package to Tighten Cybersecurity (lien direct) |
Maryland lawmakers highlighted a package of measures Wednesday to tighten cybersecurity in the state.
|
|
|
|
|
2022-03-02 19:22:58 |
Army of Cyber Hackers Rise Up to Back Ukraine (lien direct) |
An army of volunteer hackers is rising up in cyberspace to defend Ukraine, though internet specialists are calling on geeks and other "hacktivists" to stay out of a potentially very dangerous computer war.
|
|
|
|
|
2022-03-02 18:31:24 |
Microsoft Defender Takes Aim at Mid-Market (lien direct) |
Microsoft this week announced the general availability of Defender for Business, an endpoint security solution aimed small- and medium-sized businesses (SMBs).
|
|
|
|
|
2022-03-02 17:26:27 |
The Many Faces of Threat Intelligence Part 1: Identifying the Problems (lien direct) |
Threat intelligence data has become more and more crucial to effective enterprise security practices. Threat intelligence solutions gather raw data and indicators about existing and emerging threat actors and threats. This data is then analyzed with the hope of informing and preparing organizations for cybersecurity risks like zero-day risks, threat actor attacks, advanced persistent threats, and the exploitation of known vulnerabilities. Many organizations view threat intelligence exclusively in this context.
|
Threat
|
|
|
|
2022-03-02 15:49:39 |
Cybersecurity Posture Management Firm Balbix Raises $70 Million (lien direct) |
Cybersecurity posture management company Balbix this week announced raising $70 million in a Series C funding round, which brings the total investment in the firm to more than $100 million.
|
|
|
|
|
2022-03-02 14:56:11 |
Cyber Incident Disclosure Bill Passes in Senate Amid Fears of Russian Attacks (lien direct) |
A recently introduced legislative package whose goal is to strengthen the cybersecurity of critical infrastructure and government networks has passed in the Senate as the U.S. is increasingly concerned about Russian cyberattacks.
|
|
|
|
|
2022-03-02 14:17:36 |
Bright Security (NeuraLegion) Raises $20 Million in Series A Funding (lien direct) |
Application security platform NeuraLegion today announced a $20 million Series A funding round complemented by its rebranding as Bright Security. To date, the company received over $25 million in venture money.
|
|
|
|
|
2022-03-02 12:42:50 |
Conti Ransomware Source Code Leaked (lien direct) |
A hacker who claims to be Ukrainian has leaked the source code of the notorious Conti ransomware after the cybercrime gang expressed its support for Russia.
|
Ransomware
|
|
|
|
2022-03-02 12:21:50 |
(Déjà vu) Google Paid Out Over $100,000 for Vulnerabilities Patched by Chrome 99 (lien direct) |
Google this week released Chrome 99 to the stable channel with a total of 28 security fixes inside, including 21 for vulnerabilities reported by external researchers.
|
|
|
|
|
2022-03-02 11:57:33 |
Fraud Prevention Startup nSure.ai Raises $18 Million (lien direct) |
Fraud prevention startup nSure.ai has closed an $18 million Series A funding round that brings the total investment in the company to $25.4 million.
The funding round was led by MoreTech Ventures and received participation from previous investors DisruptiveAI, Gryffin Ventures, and Moneta Seeds.
|
|
|
|
|
2022-03-02 11:37:59 |
Open Source Security Foundation Now Counts 60 Members (lien direct) |
The Open Source Security Foundation (OpenSSF) on Tuesday announced that 19 more organizations have joined the initiative, showing commitment towards identifying and addressing vulnerabilities in open source software. OpenSSF now has a total of 60 members.
|
|
|
|
|
2022-03-02 11:02:18 |
Cybersecurity M&A Roundup: 35 Deals Announced in February 2022 (lien direct) |
Thirty-five cybersecurity-related merger and acquisition (M&A) deals were announced in February 2022.
|
|
|
|
|
2022-03-01 16:52:50 |
NVIDIA Confirms Employee Credentials Stolen in Cyberattack (lien direct) |
NVIDIA this week acknowledged that employee credentials were stolen during a cyberattack on February 23 and confirmed the attackers have started leaking the information online.
The compromise occured on February 23 and impacted certain "IT resources," an NVIDIA spokesperson told SecurityWeek.
|
|
|
|
|
2022-03-01 15:54:04 |
DDoS Attacks Abuse Network Middleboxes for Reflection, Amplification (lien direct) |
Threat actors specializing in distributed denial-of-service (DDoS) attacks have started abusing network middleboxes for reflection and amplification, Akamai warns.
|
|
|
★★
|
|
2022-03-01 15:35:11 |
Cyberattacks in Ukraine: New Worm-Spreading Data-Wiper With Ransomware Smokescreen (lien direct) |
Cybersecurity researchers tracking destructive data-wiping malware attacks in Ukraine are finding signs of new malware with worm-spreading capabilities and what appears to be a rudimentary ransomware decoy.
|
Ransomware
Malware
|
|
|
|
2022-03-01 14:30:26 |
Three Ways to Defeat Ransomware (lien direct) |
Ransomware is very difficult to stop, mostly because the attackers are adept at locking up a network long before anybody in an organization even sees a ransom note. In many attacks, the malware combines an encryption payload with automated propagation.
|
Ransomware
Malware
|
|
|
|
2022-03-01 12:56:03 |
Insurance Broker Aon Investigating Cyber Incident (lien direct) |
Global insurance broker Aon on Monday revealed that it's investigating a cyber incident impacting some of its systems.
|
|
|
|
|
2022-03-01 11:41:48 |
Critical Vulnerabilities Impact Widely Used Printed Circuit Board File Viewer (lien direct) |
Security researchers with Cisco's Talos division this week disclosed six critical-severity vulnerabilities affecting Gerbv, an open source file viewer for printed circuit board (PCB) designs.
|
|
|
|
|
2022-03-01 11:01:31 |
Schneider Relay Flaws Can Allow Hackers to Disable Electrical Network Protections (lien direct) |
Vulnerabilities discovered by researchers in some of Schneider Electric's Easergy relays can allow hackers to disable protections for electrical networks. The vendor has released patches that should address the security flaws.
|
|
|
|
|
2022-03-01 02:49:28 |
A Free-for-All But No Crippling Cyberattacks in Ukraine War (lien direct) |
Russia has some of the best hackers in the world, but in the early days of the war in Ukraine, its ability to create mayhem through malware hasn't had much of a noticeable impact.
|
Malware
|
|
|
|
2022-02-28 21:51:06 |
Microsoft: Cyberattacks in Ukraine Hitting Civilian Digital Targets (lien direct) |
Microsoft is calling attention to a surge in cyber attacks on Ukrainian civilian digital targets, warning that the new “digital war” includes destructive malware attacks on emergency response services and humanitarian aid efforts.
The Redmond, Wash. software giant said the attacks on civilian targets raise serious concerns under the Geneva Convention.
|
Malware
|
|
|
|
2022-02-28 21:32:13 |
Twitter to Label Tweets Linking to Russian State Media (lien direct) |
Twitter will put warnings on tweets sharing links to Russian state-affiliated media, the platform said Monday, as Kremlin-tied outlets are accused of spreading misinformation on Moscow's invasion of Ukraine.
|
|
|
|
|
2022-02-28 21:06:40 |
Toyota\'s Japan Production Halted Over Suspected Cyberattack (lien direct) |
Toyota is suspending production at all 28 lines of its 14 plants in Japan starting Tuesday, because of a “system malfunction” that a domestic supplier suspects is a cyberattack.
|
|
|
|
|
2022-02-28 16:52:01 |
Symantec: Super-Stealthy \'Daxin\' Backdoor Linked to Chinese Threat Actor (lien direct) |
Threat hunters at Symantec are calling global attention to a new, highly sophisticated piece of malware being used by a Chinese threat actor to burrow into -- and hijack data from -- government and critical infrastructure targets.
|
Malware
Threat
|
|
|
|
2022-02-28 16:06:59 |
CISA, FBI Issue Warnings on WhisperGate, HermeticWiper Attacks (lien direct) |
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau of Investigation (FBI) released indicators of compromise to help threat hunters look for signs of WhisperGate and HermeticWiper, two destructive malware files seen in recent attacks against organizations in Ukraine.
|
Malware
Threat
|
|
|
|
2022-02-28 16:03:01 |
Swedish Security Solutions Provider Axis Hit by Cyberattack (lien direct) |
Axis Communications, a Sweden-based company whose network cameras and other physical security solutions are used by government and private sector organizations from around the world, was recently hit by a cyberattack that disrupted its operations.
|
|
|
|
|
2022-02-28 15:13:38 |
Anonymous Hacker Group Targets Russian State Media (lien direct) |
Hacker group Anonymous claimed responsibility on Monday for disrupting the work of websites of pro-Kremlin Russian media in protest of the invasion of Ukraine.
|
|
|
★★
|