What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-02-21 12:37:59 | Conti Ransomware \'Acquires\' TrickBot as It Thrives Amid Crackdowns (lien direct) | Experts at threat intelligence and ransomware disruption company AdvIntel believe the notorious TrickBot malware has reached its limits, but its development team appears to have been “acquired” by the Conti ransomware gang, which has been thriving amid recent crackdowns. | Ransomware Malware Threat | ||
|
2022-02-21 11:32:36 | Vulnerability in UpdraftPlus Plugin Exposed Millions of WordPress Site Backups (lien direct) | A high-severity vulnerability in the UpdraftPlus WordPress plugin can allow an attacker to obtain website backups that could contain sensitive information. | Vulnerability | ||
|
2022-02-21 10:41:33 | European Cybersecurity Agencies Issue Resilience Guidance for Decision Makers (lien direct) | The European Union Agency for Cybersecurity (ENISA) and the European Union's Computer Emergency Response Team (CERT-EU) last week published a set of best practices to help organizations boost their cyber resilience. | |||
|
2022-02-18 20:31:29 | White House Accuses Russia of Cyberattacks Targeting Ukraine (lien direct) | The White House on Friday accused Russia of being responsible for recent cyberattacks targeting Ukraine's defense ministry and major banks. | |||
|
2022-02-18 17:02:53 | CISA Creates List of Free Cybersecurity Tools and Services for Defenders (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday announced that it has compiled a list of free cybersecurity tools and services that can help organizations reduce risk and improve resilience. | |||
|
2022-02-18 15:22:34 | Fast-Growing Golang-Based \'Kraken\' Botnet Emerges (lien direct) | Over the past several months, a new Golang-based botnet targeting Windows has been ensnaring hundreds of new systems with every newly deployed command and control (C&C) server, cybersecurity firm ZeroFox reports. | |||
|
2022-02-18 14:03:52 | Microsoft Teams Abused for Malware Distribution in Recent Attacks (lien direct) | A recently identified malicious campaign has been abusing Microsoft Teams for the distribution of malware, enterprise email security firm Avanan reports. | Malware | ||
|
2022-02-18 13:10:00 | Patch for Actively Exploited Flaw in Adobe Commerce and Magento Bypassed (lien direct) | Adobe has announced new patches for the Commerce and Magento e-commerce platforms after researchers discovered that a fix for an actively exploited zero-day can be bypassed. | |||
|
2022-02-18 12:18:10 | NSA Provides Guidance on Cisco Device Passwords (lien direct) | The National Security Agency (NSA) this week published recommendations regarding the use of specific passwords when looking to secure Cisco devices. | |||
|
2022-02-18 10:59:43 | VMware NSX Data Center Flaw Can Expose Virtual Systems to Attacks (lien direct) | Details of Recently Patched VMware NSX Vulnerability Disclosed VMware this week announced the availability of a patch for a high-severity vulnerability affecting the NSX Data Center for vSphere network virtualization product. | Vulnerability | ||
|
2022-02-17 16:10:50 | Google Introduces \'Privacy Sandbox\' for Ads on Android (lien direct) | Google this week announced Privacy Sandbox on Android, a new initiative expected to lead to more private advertising solutions for its mobile users. The new solutions, the Internet giant claims, will limit the sharing of user data and will also prevent the use of cross-app identifiers, advertising IDs included. | Guideline | ||
|
2022-02-17 15:42:11 | Intel Software and Firmware Updates Patch 18 High-Severity Vulnerabilities (lien direct) | Intel has released software and firmware updates to address many vulnerabilities found in the company's products. The chipmaker last week released 22 security advisories, including seven that have an overall severity rating of “high.” | |||
|
2022-02-17 15:34:56 | Are You Prepared for 2022\'s More Destructive Ransomware? (lien direct) | We're barely into 2022, and already we're seeing ransomware proliferate. What we saw last year is that while most attacks continue to exploit known vulnerabilities, cybercriminals have also redoubled efforts to target new ones – such as what we saw with Hafnium and new Microsoft Exchange vulnerabilities. | Ransomware | ||
|
2022-02-17 14:35:42 | FBI Warns of BEC Scams Abusing Virtual Meeting Platforms (lien direct) | The Federal Bureau of Investigation (FBI) this week issued an alert regarding the increasing use of virtual meeting platforms to conduct business email compromise (BEC) and email account compromise (EAC) scams. | |||
|
2022-02-17 13:32:30 | Malicious Emails Can Crash Cisco Email Security Appliances (lien direct) | Cisco this week informed customers that its Email Security Appliance (ESA) product is affected by a high-severity denial of service (DoS) vulnerability that can be exploited using specially crafted emails. | Vulnerability | ||
|
2022-02-17 13:04:01 | (Déjà vu) Hackers Had Access to Red Cross Network for 70 Days (lien direct) | One month after disclosing a data breach that affected roughly 515,000 people, the International Committee of the Red Cross (ICRC) announced that the hackers had access to its network for 70 days before the attack was discovered. | Data Breach | ||
|
2022-02-17 11:51:53 | Russian Cyberspies Stole U.S. Defense Data in Attacks on Contractors (lien direct) | Cleared defense contractors working with the United States government have been targeted by Russian cyberspies whose goal is to obtain sensitive defense and intelligence data, according to an advisory issued on Wednesday by U.S. agencies. | ★★ | ||
|
2022-02-17 11:04:12 | Cybersecurity M&A Roundup for February 1-15, 2022 (lien direct) | 
|
★★★★ | ||
|
2022-02-16 17:17:37 | Bot Detection Firm Netacea Closes $12 Million Funding Round (lien direct) | Early-stage bot detection and mitigation company Netacea has closed a $12 million (£9 million) Series A investment to build out its anti-fraud technology platform. The investment was led by Mercia Asset Management, with participation from a wide range of private investors with experience in the cybersecurity industry. | |||
|
2022-02-16 16:05:17 | Solving the Quantum Decryption \'Harvest Now, Decrypt Later\' Problem (lien direct) | There are two important problems for encryption: the keys and their distribution. Distribution is generally done via asymmetric encryption – but the distribution can be intercepted, and the asymmetric encryption cracked. | |||
|
2022-02-16 14:44:19 | High-Severity Vulnerability Found in Apache Database System Used by Major Firms (lien direct) | Researchers detail code execution vulnerability in Apache Cassandra | Vulnerability | ||
|
2022-02-16 12:52:48 | CISA Urges Organizations to Patch Recent Chrome, Magento Zero-Days (lien direct) | The United States Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday announced that it has expanded its Known Exploited Vulnerabilities Catalog with nine more security flaws, including two recently addressed zero-days. | |||
|
2022-02-16 12:02:47 | Security Analytics Firm Securonix Scores $1 Billion+ Growth Investment (lien direct) | Cybersecurity firm Securonix, which provides SIEM and Extended Detection and Response (XDR) technologies, announced this week that it has received more than $1 billion through a mind-boggling growth investment led by Vista Equity Partners. | |||
|
2022-02-16 11:50:22 | Mexican Businessman Pleads Guilty in U.S. to Brokering Hacking Tools (lien direct) | A Mexican businessman has admitted in a United States federal court to conspiring to sell and use interception devices and hacking services from companies in Italy, Israel, and elsewhere. The man, Carlos Guerrero, of Chula Vista, California, and Tijuana, Mexico, owned and operated multiple companies in the U.S. and Mexico. | ★★ | ||
|
2022-02-16 11:15:03 | COVID\'s Silver Lining: The Acceleration of the Extended IoT (lien direct) | Acceleration of XIoT unlocked business opportunities and ignited security innovation | ★★★ | ||
|
2022-02-16 11:04:02 | Ransomware-Related Data Leaks Nearly Doubled in 2021: Report (lien direct) | There was a significant increase in ransomware-related data leaks and interactive intrusions in 2021, according to the 2022 Global Threat Report released on Tuesday by endpoint security firm CrowdStrike. | Threat | ★★★★★ | |
|
2022-02-16 09:37:42 | Meta Agrees $90 Million Settlement in Facebook Privacy Suit (lien direct) | Facebook-parent Meta has agreed to pay $90 million to settle a 10-year-old lawsuit accusing it of tracking users online even after they logged off the social network, court records show. | |||
|
2022-02-16 02:19:52 | Backup Plays Key Role in Ransomware Response, But Not a Complete Solution (lien direct) | Ransomware attacks have increased in volume, sophistication and ransom demanded consistently over the last few years. According to published records, the education and retail industries are the most targeted. | Ransomware | ||
|
2022-02-16 01:25:35 | Cyberattacks Knock Out Sites of Ukrainian Army, Major Banks (lien direct) | A series of cyberattacks on Tuesday knocked the websites of the Ukrainian army, the defense ministry and major banks offline, Ukrainian authorities said, as tensions persisted over the threat of a possible Russian invasion. | Threat | ||
|
2022-02-15 19:25:03 | Swissport Investigating Ransomware Group\'s Data Leak Claims (lien direct) | A ransomware group has taken credit for the recent attack targeting aviation services company Swissport, and the cybercriminals claim to have stolen more than one terabyte of data. | Ransomware | ||
|
2022-02-15 19:09:27 | Google Offering $91,000 Rewards for Linux Kernel, GKE Zero-Days (lien direct) | Technology giant Google is offering bigger cash awards for hackers reporting critical security flaws affecting the Linux Kernel, GKE, Kubernetes, and kCTF. | Uber | ||
|
2022-02-15 15:55:33 | Researchers Dissect Activity of Cybercrime Group Targeting Aviation, Other Sectors (lien direct) | Proofpoint's security researchers have taken a deep dive into the activity of TA2541, a threat actor targeting the aerospace, aviation, defense, manufacturing and transportation sectors for years. | Threat | ||
|
2022-02-15 14:52:09 | VMware Patches Vulnerabilities Reported by Researchers to Chinese Government (lien direct) | VMware vulnerabilities disclosed at China's Tianfu Cup hacking contest were also reported to Chinese government VMware on Tuesday announced that it has patched several high-severity vulnerabilities that were disclosed last year at a major Chinese hacking contest. | |||
|
2022-02-15 12:23:00 | QNAP Extends Security Updates for Some EOL Devices (lien direct) | Taiwan-based NAS and NVR solutions manufacturer QNAP Systems on Monday announced that it is extending the security update window for some devices that have reached end-of-life (EOL) status. QNAP typically provides security updates for four years after a product has reached EOL status. | |||
|
2022-02-15 11:55:33 | FBI Warns of BlackByte Ransomware Attacks on Critical Infrastructure (lien direct) | The BlackByte ransomware has been used in attacks on at least three critical infrastructure sectors in the United States, the Federal Bureau of Investigation (FBI) and the U.S. Secret Service (USSS) warn in a joint advisory. | Ransomware | ||
|
2022-02-15 11:45:09 | Moxa MXview Vulnerabilities Expose Industrial Networks to Attacks (lien direct) | Several vulnerabilities, including some that have been rated “critical,” were found in the past months in Moxa's MXview industrial network management software. | |||
|
2022-02-15 11:16:43 | Google Discovers Attack Exploiting Chrome Zero-Day Vulnerability (lien direct) | Google on Monday announced the release of 11 security patches for Chrome, including one for a vulnerability exploited in the wild. | Vulnerability | ||
|
2022-02-15 10:38:18 | \'Don\'t Be Google\': The Rise of Privacy Focused Startups (lien direct) | Google once used the slogan "don't be evil" to distinguish itself from its competitors, but now a growing number of pro-privacy startups are rallying to the mantra "don't be Google". They are taking on Google Analytics, a product used by more than half of the world's websites to understand people's browsing habits. | |||
|
2022-02-14 18:26:57 | Legit Security Raises $30M to Tackle Supply Chain Security (lien direct) | A team of Israeli entrepreneurs with roots in the application security ecosystem is taking a stab at software supply chain security with big backing from Bessemer Venture Partners. | |||
|
2022-02-14 16:19:09 | Webinar Tomorrow: Meet the Inventors of Onion Routing (lien direct) | Webinar reunites inventors of onion routing to talk about the past, present, and future of their invention | |||
|
2022-02-14 16:07:20 | Over 28,000 Vulnerabilities Disclosed in 2021: Report (lien direct) | Risk Based Security on Monday released its vulnerability report for 2021 and revealed that a record-breaking 28,695 flaws were disclosed last year, which represents a significant increase from the 23,269 disclosed in 2020. | Vulnerability | ||
|
2022-02-14 14:09:29 | Sardine Raises $19.5 Million for Fraud Prevention Platform (lien direct) | Behavior-based financial fraud prevention and compliance platform Sardine has completed a $19.5 million Series A funding round that brings the total raised by the company to $24.5 million. | |||
|
2022-02-14 13:43:17 | Tripwire for Real War? Cyber\'s Fuzzy Rules of Engagement (lien direct) | 
|
|||
|
2022-02-14 13:05:24 | CISA Again Warns U.S. Organizations of Potential Russian Cyberattacks (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is urging organizations to strengthen their security stance and stay on alert for potential Russian cyberattacks. | |||
|
2022-02-14 12:42:48 | Sophisticated FritzFrog P2P Botnet Returns After Long Break (lien direct) | A sophisticated botnet named FritzFrog has returned after a long break with new capabilities, and researchers believe it may be linked to Chinese threat actors. | Threat | ||
|
2022-02-14 11:41:11 | Cambodia Steps Up Surveillance With New Internet Gateway (lien direct) | Cambodia is powering up its new National Internet Gateway, a move activists say will allow the government to further silence the country's embattled opposition voices. | |||
|
2022-02-13 22:37:19 | Ransomware Gang Says it Has Hacked 49ers Football Team (lien direct) | The San Francisco 49ers have been hit by a ransomware attack, with cyber criminals claiming they stole some of the football team's financial data. | Ransomware | ||
|
2022-02-13 18:01:12 | Adobe Releases Emergency Patch for Exploited Commerce Zero-Day (lien direct) | Adobe released an emergency advisory on Sunday to inform Commerce and Magento users of a critical zero-day vulnerability that has been exploited in attacks. | Vulnerability | ||
|
2022-02-12 12:40:30 | CISA Says \'HiveNightmare\' Windows Vulnerability Exploited in Attacks (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added 16 new CVE identifiers to its list of known exploited vulnerabilities, including a Windows flaw that federal agencies are required to patch within two weeks. | Vulnerability | ||
|
2022-02-11 19:31:18 | Feds Oppose Immediate Release of Voting Machine Report (lien direct) | A federal cybersecurity agency is reviewing a report that alleges security vulnerabilities in voting machines used by Georgia and other states and says the document shouldn't be made public until the agency has had time to assess and mitigate potential risks. |
To see everything:
Our RSS (filtrered)
