What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-02-22 14:06:57 | Mobile Malware Attacks Dropped in 2021 but Sophistication Increased (lien direct) | The number of mobile malware attacks saw a significant drop in 2021, but attacks were more sophisticated, according to the latest mobile malware report from Kaspersky. | Malware | ||
|
2022-02-22 13:04:49 | Webinar Today: Highly Evasive Adaptive Threats (HEAT) (lien direct) | 
|
Ransomware | ||
|
2022-02-22 12:24:10 | Cookware Distribution Giant Meyer Discloses Data Breach (lien direct) | Cookware and bakeware distribution giant Meyer Corporation has started informing employees of a cyberattack that resulted in the theft of some of their personal data. A subsidiary of Meyer Manufacturing Co. Ltd, the California-based company is the largest distributor of cookware in the United States, and the second largest in the world. | Data Breach | ||
|
2022-02-22 11:53:28 | Israeli Probe Finds Police Spied on Citizen With Pegasus (lien direct) | An Israeli government probe into allegations of police spying on citizens using Pegasus malware on Monday said police successfully infected the phone of one individual subject to a court order. | Malware | ||
|
2022-02-22 11:03:47 | SynSaber Launches Palm-Sized Threat Sensor for OT Environments (lien direct) | Industrial asset and network monitoring solutions provider SynSaber has announced the general availability of its product, a small device that enables organizations to gain visibility into their operational technology (OT) environments and detect potential threats. | Threat | ||
|
2022-02-22 09:45:28 | Beyond Identity Becomes Unicorn With $100 Million Series C Funding Round (lien direct) | Identity management solutions provider Beyond Identity on Tuesday announced raising $100 million in an oversubscribed Series C funding round that brings the total raised by the company to $205 million. With this funding round, led by Evolution Equity Partners, Beyond Identity achieves unicorn status, with a valuation of $1.1 billion. | |||
|
2022-02-21 20:23:44 | Wiper Used in Attack on Iran National Media Network (lien direct) | An analysis of a January attack targeting Iran's national media corporation has found the use of multiple malware families, including a data-wiper and custom backdoors. | Malware | ||
|
2022-02-21 19:39:48 | Coinbase Pays $250K for \'Market-Nuking\' Security Flaw (lien direct) | Cryptocurrency exchange Coinbase has shelled out its largest ever bug bounty payment -- a quarter of a million dollars -- for what was described as a “market-nuking” security flaw that could have allowed users to sell bitcoins they didn't own. | |||
|
2022-02-21 17:54:14 | Researchers Devise Method to Decrypt Hive Ransomware-Encrypted Data (lien direct) | A group of academic researchers has found a way to exploit a security flaw in the encryption algorithm used by the Hive ransomware to recover hijacked and encrypted data. | Ransomware | ||
|
2022-02-21 13:38:47 | At Olympics, Cybersecurity Worries Linger in Background (lien direct) | Warnings to use disposable “burner” phones and laptops. Privacy-protecting software. Concerns about a security flaw in an official Games smartphone app. | |||
|
2022-02-21 13:00:59 | CISA Warns Critical Infrastructure Organizations of Foreign Influence Operations (lien direct) | Newly published guidance from the United States Cybersecurity and Infrastructure Security Agency (CISA) provides critical infrastructure organizations with instructions on how to prepare for and mitigate foreign influence operations. | |||
|
2022-02-21 12:37:59 | Conti Ransomware \'Acquires\' TrickBot as It Thrives Amid Crackdowns (lien direct) | Experts at threat intelligence and ransomware disruption company AdvIntel believe the notorious TrickBot malware has reached its limits, but its development team appears to have been “acquired” by the Conti ransomware gang, which has been thriving amid recent crackdowns. | Ransomware Malware Threat | ||
|
2022-02-21 11:32:36 | Vulnerability in UpdraftPlus Plugin Exposed Millions of WordPress Site Backups (lien direct) | A high-severity vulnerability in the UpdraftPlus WordPress plugin can allow an attacker to obtain website backups that could contain sensitive information. | Vulnerability | ||
|
2022-02-21 10:41:33 | European Cybersecurity Agencies Issue Resilience Guidance for Decision Makers (lien direct) | The European Union Agency for Cybersecurity (ENISA) and the European Union's Computer Emergency Response Team (CERT-EU) last week published a set of best practices to help organizations boost their cyber resilience. | |||
|
2022-02-18 20:31:29 | White House Accuses Russia of Cyberattacks Targeting Ukraine (lien direct) | The White House on Friday accused Russia of being responsible for recent cyberattacks targeting Ukraine's defense ministry and major banks. | |||
|
2022-02-18 17:02:53 | CISA Creates List of Free Cybersecurity Tools and Services for Defenders (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday announced that it has compiled a list of free cybersecurity tools and services that can help organizations reduce risk and improve resilience. | |||
|
2022-02-18 15:22:34 | Fast-Growing Golang-Based \'Kraken\' Botnet Emerges (lien direct) | Over the past several months, a new Golang-based botnet targeting Windows has been ensnaring hundreds of new systems with every newly deployed command and control (C&C) server, cybersecurity firm ZeroFox reports. | |||
|
2022-02-18 14:03:52 | Microsoft Teams Abused for Malware Distribution in Recent Attacks (lien direct) | A recently identified malicious campaign has been abusing Microsoft Teams for the distribution of malware, enterprise email security firm Avanan reports. | Malware | ||
|
2022-02-18 13:10:00 | Patch for Actively Exploited Flaw in Adobe Commerce and Magento Bypassed (lien direct) | Adobe has announced new patches for the Commerce and Magento e-commerce platforms after researchers discovered that a fix for an actively exploited zero-day can be bypassed. | |||
|
2022-02-18 12:18:10 | NSA Provides Guidance on Cisco Device Passwords (lien direct) | The National Security Agency (NSA) this week published recommendations regarding the use of specific passwords when looking to secure Cisco devices. | |||
|
2022-02-18 10:59:43 | VMware NSX Data Center Flaw Can Expose Virtual Systems to Attacks (lien direct) | Details of Recently Patched VMware NSX Vulnerability Disclosed VMware this week announced the availability of a patch for a high-severity vulnerability affecting the NSX Data Center for vSphere network virtualization product. | Vulnerability | ||
|
2022-02-17 16:10:50 | Google Introduces \'Privacy Sandbox\' for Ads on Android (lien direct) | Google this week announced Privacy Sandbox on Android, a new initiative expected to lead to more private advertising solutions for its mobile users. The new solutions, the Internet giant claims, will limit the sharing of user data and will also prevent the use of cross-app identifiers, advertising IDs included. | Guideline | ||
|
2022-02-17 15:42:11 | Intel Software and Firmware Updates Patch 18 High-Severity Vulnerabilities (lien direct) | Intel has released software and firmware updates to address many vulnerabilities found in the company's products. The chipmaker last week released 22 security advisories, including seven that have an overall severity rating of “high.” | |||
|
2022-02-17 15:34:56 | Are You Prepared for 2022\'s More Destructive Ransomware? (lien direct) | We're barely into 2022, and already we're seeing ransomware proliferate. What we saw last year is that while most attacks continue to exploit known vulnerabilities, cybercriminals have also redoubled efforts to target new ones – such as what we saw with Hafnium and new Microsoft Exchange vulnerabilities. | Ransomware | ||
|
2022-02-17 14:35:42 | FBI Warns of BEC Scams Abusing Virtual Meeting Platforms (lien direct) | The Federal Bureau of Investigation (FBI) this week issued an alert regarding the increasing use of virtual meeting platforms to conduct business email compromise (BEC) and email account compromise (EAC) scams. | |||
|
2022-02-17 13:32:30 | Malicious Emails Can Crash Cisco Email Security Appliances (lien direct) | Cisco this week informed customers that its Email Security Appliance (ESA) product is affected by a high-severity denial of service (DoS) vulnerability that can be exploited using specially crafted emails. | Vulnerability | ||
|
2022-02-17 13:04:01 | (Déjà vu) Hackers Had Access to Red Cross Network for 70 Days (lien direct) | One month after disclosing a data breach that affected roughly 515,000 people, the International Committee of the Red Cross (ICRC) announced that the hackers had access to its network for 70 days before the attack was discovered. | Data Breach | ||
|
2022-02-17 11:51:53 | Russian Cyberspies Stole U.S. Defense Data in Attacks on Contractors (lien direct) | Cleared defense contractors working with the United States government have been targeted by Russian cyberspies whose goal is to obtain sensitive defense and intelligence data, according to an advisory issued on Wednesday by U.S. agencies. | ★★ | ||
|
2022-02-17 11:04:12 | Cybersecurity M&A Roundup for February 1-15, 2022 (lien direct) | 
|
★★★★ | ||
|
2022-02-16 17:17:37 | Bot Detection Firm Netacea Closes $12 Million Funding Round (lien direct) | Early-stage bot detection and mitigation company Netacea has closed a $12 million (£9 million) Series A investment to build out its anti-fraud technology platform. The investment was led by Mercia Asset Management, with participation from a wide range of private investors with experience in the cybersecurity industry. | |||
|
2022-02-16 16:05:17 | Solving the Quantum Decryption \'Harvest Now, Decrypt Later\' Problem (lien direct) | There are two important problems for encryption: the keys and their distribution. Distribution is generally done via asymmetric encryption – but the distribution can be intercepted, and the asymmetric encryption cracked. | |||
|
2022-02-16 14:44:19 | High-Severity Vulnerability Found in Apache Database System Used by Major Firms (lien direct) | Researchers detail code execution vulnerability in Apache Cassandra | Vulnerability | ||
|
2022-02-16 12:52:48 | CISA Urges Organizations to Patch Recent Chrome, Magento Zero-Days (lien direct) | The United States Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday announced that it has expanded its Known Exploited Vulnerabilities Catalog with nine more security flaws, including two recently addressed zero-days. | |||
|
2022-02-16 12:02:47 | Security Analytics Firm Securonix Scores $1 Billion+ Growth Investment (lien direct) | Cybersecurity firm Securonix, which provides SIEM and Extended Detection and Response (XDR) technologies, announced this week that it has received more than $1 billion through a mind-boggling growth investment led by Vista Equity Partners. | |||
|
2022-02-16 11:50:22 | Mexican Businessman Pleads Guilty in U.S. to Brokering Hacking Tools (lien direct) | A Mexican businessman has admitted in a United States federal court to conspiring to sell and use interception devices and hacking services from companies in Italy, Israel, and elsewhere. The man, Carlos Guerrero, of Chula Vista, California, and Tijuana, Mexico, owned and operated multiple companies in the U.S. and Mexico. | ★★ | ||
|
2022-02-16 11:15:03 | COVID\'s Silver Lining: The Acceleration of the Extended IoT (lien direct) | Acceleration of XIoT unlocked business opportunities and ignited security innovation | ★★★ | ||
|
2022-02-16 11:04:02 | Ransomware-Related Data Leaks Nearly Doubled in 2021: Report (lien direct) | There was a significant increase in ransomware-related data leaks and interactive intrusions in 2021, according to the 2022 Global Threat Report released on Tuesday by endpoint security firm CrowdStrike. | Threat | ★★★★★ | |
|
2022-02-16 09:37:42 | Meta Agrees $90 Million Settlement in Facebook Privacy Suit (lien direct) | Facebook-parent Meta has agreed to pay $90 million to settle a 10-year-old lawsuit accusing it of tracking users online even after they logged off the social network, court records show. | |||
|
2022-02-16 02:19:52 | Backup Plays Key Role in Ransomware Response, But Not a Complete Solution (lien direct) | Ransomware attacks have increased in volume, sophistication and ransom demanded consistently over the last few years. According to published records, the education and retail industries are the most targeted. | Ransomware | ||
|
2022-02-16 01:25:35 | Cyberattacks Knock Out Sites of Ukrainian Army, Major Banks (lien direct) | A series of cyberattacks on Tuesday knocked the websites of the Ukrainian army, the defense ministry and major banks offline, Ukrainian authorities said, as tensions persisted over the threat of a possible Russian invasion. | Threat | ||
|
2022-02-15 19:25:03 | Swissport Investigating Ransomware Group\'s Data Leak Claims (lien direct) | A ransomware group has taken credit for the recent attack targeting aviation services company Swissport, and the cybercriminals claim to have stolen more than one terabyte of data. | Ransomware | ||
|
2022-02-15 19:09:27 | Google Offering $91,000 Rewards for Linux Kernel, GKE Zero-Days (lien direct) | Technology giant Google is offering bigger cash awards for hackers reporting critical security flaws affecting the Linux Kernel, GKE, Kubernetes, and kCTF. | Uber | ||
|
2022-02-15 15:55:33 | Researchers Dissect Activity of Cybercrime Group Targeting Aviation, Other Sectors (lien direct) | Proofpoint's security researchers have taken a deep dive into the activity of TA2541, a threat actor targeting the aerospace, aviation, defense, manufacturing and transportation sectors for years. | Threat | ||
|
2022-02-15 14:52:09 | VMware Patches Vulnerabilities Reported by Researchers to Chinese Government (lien direct) | VMware vulnerabilities disclosed at China's Tianfu Cup hacking contest were also reported to Chinese government VMware on Tuesday announced that it has patched several high-severity vulnerabilities that were disclosed last year at a major Chinese hacking contest. | |||
|
2022-02-15 12:23:00 | QNAP Extends Security Updates for Some EOL Devices (lien direct) | Taiwan-based NAS and NVR solutions manufacturer QNAP Systems on Monday announced that it is extending the security update window for some devices that have reached end-of-life (EOL) status. QNAP typically provides security updates for four years after a product has reached EOL status. | |||
|
2022-02-15 11:55:33 | FBI Warns of BlackByte Ransomware Attacks on Critical Infrastructure (lien direct) | The BlackByte ransomware has been used in attacks on at least three critical infrastructure sectors in the United States, the Federal Bureau of Investigation (FBI) and the U.S. Secret Service (USSS) warn in a joint advisory. | Ransomware | ||
|
2022-02-15 11:45:09 | Moxa MXview Vulnerabilities Expose Industrial Networks to Attacks (lien direct) | Several vulnerabilities, including some that have been rated “critical,” were found in the past months in Moxa's MXview industrial network management software. | |||
|
2022-02-15 11:16:43 | Google Discovers Attack Exploiting Chrome Zero-Day Vulnerability (lien direct) | Google on Monday announced the release of 11 security patches for Chrome, including one for a vulnerability exploited in the wild. | Vulnerability | ||
|
2022-02-15 10:38:18 | \'Don\'t Be Google\': The Rise of Privacy Focused Startups (lien direct) | Google once used the slogan "don't be evil" to distinguish itself from its competitors, but now a growing number of pro-privacy startups are rallying to the mantra "don't be Google". They are taking on Google Analytics, a product used by more than half of the world's websites to understand people's browsing habits. | |||
|
2022-02-14 18:26:57 | Legit Security Raises $30M to Tackle Supply Chain Security (lien direct) | A team of Israeli entrepreneurs with roots in the application security ecosystem is taking a stab at software supply chain security with big backing from Bessemer Venture Partners. |
To see everything:
Our RSS (filtrered)
