What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-11-10 14:48:59 | Citrix Patches Critical Vulnerability in ADC, Gateway (lien direct) | Citrix this week released patches for a couple of vulnerabilities affecting Citrix ADC, Gateway, and SD-WAN, including a critical bug leading to denial of service (DoS). | Vulnerability Guideline | ||
|
2021-11-02 15:30:30 | Kaspersky Patches Vulnerability That Can Lead to Unbootable System (lien direct) | Microsoft Phishing Messages Come From Kaspersky Email Address Kaspersky published two advisories on Monday to warn customers about a vulnerability that can lead to unbootable systems and a phishing campaign involving messages sent from a Kaspersky email address. | Vulnerability Guideline | ||
|
2021-11-01 14:09:12 | Hackers Threaten to Out Israeli LGBTQ Dating Site Users (lien direct) | A hacking group calling itself Black Shadow threatened Sunday to reveal personal details of users of Israeli's leading LGBTQ dating site, in an attack some cyber experts linked to Iran. "If we have 1 Millions $ in our wallet in the next 48 hours, we will not leak this information and also we will not sell it to anybody," Black Shadow wrote on Telegram. | Guideline | ||
|
2021-10-27 16:23:38 | Washington Secretary of State Appointed CISA\'s Senior Election Security Lead (lien direct) | The United States Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday announced the appointment of Washington Secretary of State Kim Wyman as its Senior Election Security Lead. | Guideline | ||
|
2021-10-22 18:59:43 | REvil Ransomware Gang Hit by Law Enforcement Hack-Back Operation (lien direct) | The global fight against ransomware took a new twist this week with the United States leading a law enforcement effort to hack back and disrupt the extortion group behind the Colonial Pipeline cyberattack. | Ransomware Hack Guideline | ||
|
2021-10-19 14:56:06 | Microsoft, Intel and Goldman Sachs Lead New Supply Chain Security Group at TCG (lien direct) | Microsoft, Intel and Goldman Sachs will lead a new work group focusing on supply chain security at the Trusted Computing Group (TCG). TCG is a non-profit organization that develops, defines and promotes open and vendor-neutral industry specifications and standards for trusted computing platforms, including the widely used Trusted Platform Module (TPM). | Guideline | ||
|
2021-10-15 09:51:02 | S Korea Seeks Interpol Notice for Two Cyber Gang Leaders (lien direct) | South Korea said Friday it's asked Interpol for help to arrest two foreigners it alleges played a leading role in cyberattacks and large-scale extortion that targeted South Korean and U.S. companies. | Guideline | ||
|
2021-10-07 10:44:24 | Medtronic Recalls Medical Devices Due to Security Risks That Can Lead to Injury, Death (lien direct) | Medical device maker Medtronic is recalling remote controllers used with some of its insulin pumps due to cybersecurity risks that could lead to injury and even death. | Guideline | ||
|
2021-09-29 10:40:14 | Russia Detains Head of Cybersecurity Group on Treason Charges (lien direct) | A Moscow court on Wednesday ordered the co-founder of one of Russia's leading cybersecurity firms, Group-IB, to be detained on charges of treason. Founded in 2003, Group-IB specializes in the detection and prevention of cyberattacks and works with Interpol and several other global institutions. | Guideline | ||
|
2021-09-28 10:30:10 | US Cryptocurrency Promoter Pleads Guilty to Advising NKorea (lien direct) | A prominent American cryptocurrency promoter and former hacker has pleaded guilty to advising North Korea on using virtual money to avoid international controls, a New York court said Monday. | Guideline | ||
|
2021-09-21 14:23:27 | Providing Developers Value-Focused Feedback in Security Software Development (lien direct) | I recently wrote an article on attracting and retaining A-Players, and one of the key elements was to ensure that leadership share the mission with developers to create a sense of purpose. | Guideline | ||
|
2021-09-14 19:33:24 | General Promises US \'Surge\' Against Foreign Cyberattacks (lien direct) | The general who leads U.S. efforts to thwart foreign-based cyberattacks, and punish those responsible, says he's mounting a “surge” to fight incursions that have debilitated government agencies and companies responsible for critical infrastructure. | Guideline | ||
|
2021-09-07 20:58:16 | NETGEAR Patches Severe Vulnerabilities in Business Switches (lien direct) | NETGEAR has released patches to address severe vulnerabilities in its business-grade smart switches that could lead to complete device takeover. | Guideline | ||
|
2021-08-26 10:46:42 | Vulnerabilities Allow Hackers to Tamper With Doses Delivered by Medical Infusion Pumps (lien direct) | McAfee security researchers, in partnership with Culinda, identified a series of severe vulnerabilities in B. Braun's Infusomat Space large volume infusion pump and SpaceStation system that they claim could potentially lead to dispensing potentially lethal doses of medication. | Guideline | ||
|
2021-08-26 00:42:32 | Tech Companies Pledge Billions in Cybersecurity Investments (lien direct) | Some of the country's leading technology companies have committed to investing billions of dollars to strengthen cybersecurity defenses and to train skilled workers, the White House announced Wednesday following President Joe Biden's private meeting with top executives. | Guideline | ||
|
2021-08-18 10:23:32 | BadAlloc Flaw Impacts Many Systems Running BlackBerry\'s QNX Embedded OS (lien direct) | BlackBerry this week informed customers that the QNX embedded operating system is affected by a BadAlloc vulnerability leading to arbitrary code execution or denial of service. | Vulnerability Guideline | ||
|
2021-08-16 11:48:00 | Hacker Pleads Guilty to SIM Swapping Attacks, Cryptocurrency Theft (lien direct) | A Rockport, Massachusetts, man has pleaded guilty over his role in a scheme targeting people who had high-value social media accounts or who were believed to have large amounts of cryptocurrency. | Guideline | ||
|
2021-08-10 18:35:36 | Adobe Warns of Critical Flaws in Magento, Connect (lien direct) | Software maker Adobe has shipped security patches for flaws in its Adobe Magento and Connect product lines, warning that exploitation could lead to remote code execution attacks. | Guideline | ||
|
2021-08-10 13:33:44 | Companies Still Exposing Sensitive Data via Known Salesforce Misconfiguration (lien direct) | Organizations have been warned that a misconfiguration in Salesforce Communities can lead to the exposure of sensitive information. | Guideline | ||
|
2021-07-30 11:07:46 | 21-Year-Old Woman Pleads Guilty to Sending Phishing Emails to Political Candidates (lien direct) | A 21-year-old Rhode Island woman has pleaded guilty to targeting candidates for political office and their campaign staff with phishing emails. The woman, Diana Lebeau, of Cranston, R.I., admitted in court to sending phishing emails to roughly 22 members of the campaign staff of a political candidate, posing as the campaign's managers or co-chairs. | Guideline | ||
|
2021-07-28 15:39:17 | Foxit Plugs Multiple Security Holes in PDF Reader, Editor (lien direct) | Foxit Software this week released security updates for its PDF Reader and PDF Editor applications, to address multiple vulnerabilities, including some leading to remote code execution. | Guideline | ||
|
2021-07-28 15:28:56 | US Gov Warning: VPN, Network Perimeter Product Flaws Under Constant Attack (lien direct) | The U.S. government and its allies are pleading with defenders to pay attention to gaping holes in perimeter-type devices, warning that advanced threat actors are feasting on known security defects in VPN appliances, network product gateways and enterprise cloud applications. | Threat Guideline | ||
|
2021-07-23 11:02:17 | Estonian Botnet Operator Pleads Guilty in U.S. Court (lien direct) | An Estonian national has pleaded guilty in a United States court to two counts of computer fraud and abuse over his role in creating and operating a proxy botnet. | Guideline | ||
|
2021-07-21 12:17:17 | Macron Among 14 Heads of States on Potential Spyware List (lien direct) | French President Emmanuel Macron leads a list of 14 current or former heads of state who may have been targeted for hacking by clients of the notorious Israeli spyware firm NSO Group, Amnesty International said Tuesday. | Guideline | ||
|
2021-07-20 10:32:30 | Researchers: Apple Quietly Patched 0-Click Wi-Fi Code Execution Vulnerability in iOS (lien direct) | Apple in early 2021 quietly patched an iOS vulnerability that could lead to remote code execution when connecting to a Wi-Fi access point that had a specially crafted SSID. | Vulnerability Guideline | ||
|
2021-07-16 16:27:17 | Cisco Patches High-Risk Flaw in ASA, FTD Software (lien direct) | Cisco on Thursday released patches for a high severity vulnerability in the Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software, warning that exploitation could lead to crippling denial-of-service attacks. | Vulnerability Threat Guideline | ||
|
2021-07-06 15:01:28 | Swedish Supermarket Closed by Kaseya Cyberattack (lien direct) | Most of one of Sweden's leading supermarket chains' 800 shops remained closed on Monday, three days after they were indirectly affected by the cyberattack targeting US company Kaseya. | Guideline | ||
|
2021-07-06 12:08:34 | Combating China\'s Insider Threat: Can New Laws Curb IP Theft by Foreign Spies? (lien direct) | 
Theft of U.S. IP is a fundamental part of China's stated intention to be the world leader in science and technology by 2050
|
Guideline | ||
|
2021-07-01 14:49:43 | Critical, Exploitable Flaws in NETGEAR Router Firmware (lien direct) | Security researchers at Microsoft are flagging multiple gaping security holes in firmware shipped on NETGEAR routers, warning that exploitation could lead to identity theft and full system compromise. | Guideline | ||
|
2021-06-28 10:19:40 | Cybersecurity Leaders Scramble to Decipher SBOM Mandate (lien direct) | 
|
Guideline | ||
|
2021-06-19 10:22:26 | Major Cyberattack on Poland Came from Russian Territory: Kaczynski (lien direct) | A recent "large scale" cyberattack targeting top Polish politicians was launched from Russia, Jaroslaw Kaczynski, the leader of Poland's governing right-wing party, said on Friday. | Guideline | ||
|
2021-06-17 12:36:11 | Biden Sets Red Line for Putin Over Ransomware Attacks (lien direct) | US President Joe Biden delivered a stern warning Wednesday to Russian leader Vladimir Putin over ransomware attacks emanating from Russia, saying he was prepared to retaliate against any more cyber assaults on American infrastructure. | Ransomware Guideline | ★★★★★ | |
|
2021-06-16 12:10:48 | EU Court Leaves Facebook More Exposed to Privacy Challenges (lien direct) | Facebook is subject to EU privacy challenges from watchdogs in any of the bloc's member states, not just its lead regulator in Ireland, the bloc's top court ruled Tuesday, in a ruling that has implications for other big tech companies. | Guideline | ||
|
2021-06-14 17:49:18 | Researchers Attribute SITA Cyberattack to Chinese Hackers (lien direct) | The cyberattack on SITA that impacted multiple airlines around the world was orchestrated by a Chinese nation-state threat actor tracked as APT41, security researchers at detection and prevention firm Group-IB say. | Threat Guideline | APT 41 | |
|
2021-06-14 13:48:27 | Akamai Taps Boaz Gelbord as New Security Chief (lien direct) | Edge security and content delivery giant Akamai Technologies has tapped Boaz Gelbord to lead its cybersecurity program. | Guideline | ||
|
2021-06-14 13:24:10 | G7 Tells Russia to Crack Down on Ransomware, Other Cybercrime (lien direct) | At the latest Group of Seven (G7) summit, held June 11-13 in the UK, Western leaders called on Russia to take action against those who conduct ransomware attacks and other cybercrimes from within its borders. | Ransomware Guideline | ||
|
2021-06-08 12:29:05 | WAGO Controller Flaws Can Allow Hackers to Disrupt Industrial Processes (lien direct) | A couple of vulnerabilities discovered in industrial controllers made by WAGO, a German company specializing in electrical connection and automation solutions, can be exploited to disrupt technological processes, which in some cases could lead to industrial accidents, according to Russian cybersecurity firm Positive Technologies. | Guideline | ||
|
2021-06-04 12:08:17 | White House Urges Private Companies to Help in Fight Against Ransomware (lien direct) | In an open letter, the White House this week urged corporate executives and business leaders to take the appropriate measures to protect their organizations against ransomware attacks, only days after meat-packaging giant JBS fell victim to such an attack. | Ransomware Guideline | ||
|
2021-05-25 01:38:51 | Russian to be Deported After Failed Tesla Ransomware Plot (lien direct) | A Russian man was sentenced Monday to what amounted to time already served and will be deported after pleading guilty to trying to pay a Tesla employee $500,000 to install computer malware at the company's Nevada electric battery plant in a bid to steal company secrets for ransom. | Ransomware Malware Guideline | ||
|
2021-05-24 11:08:52 | Hacker Who Sold UPMC Employee Information Pleads Guilty (lien direct) | A Michigan man has pleaded guilty to hacking a University of Pittsburgh Medical Center employee database, stealing the personal information of more than 65,000 people and then selling the information online. Justin Johnson, 30, is being held at Butler County Prison and will be sentenced in four months, the Tribune-Review reported. | Guideline | ||
|
2021-05-14 17:05:14 | Investors Pump $90 Million Into Pentesting Firm NetSPI (lien direct) | Private equity giant KKR leads investment to fuel growth of enterprise penetration testing firm NetSPI, a provider of enterprise penetration tools and services, has raised $90 million in growth funding led by private equity giant KKR, with participation from Ten Eleven Ventures. | Guideline | ||
|
2021-05-10 14:57:26 | Four Eastern Europeans Admit in U.S. Court to Providing Bulletproof Hosting (lien direct) | Four individuals from Eastern Europe have pleaded guilty in a United States court to their roles in a RICO conspiracy. Between 2008 and 2015, the four individuals provided “bulletproof hosting” services that threat actors employed for cyberattacks on entities in the United States. | Threat Guideline | ||
|
2021-05-06 02:07:57 | States Push Back Against Use of Facial Recognition by Police (lien direct) | Law enforcement agencies across the U.S. have used facial recognition technology to solve homicides and bust human traffickers, but concern about its accuracy and the growing pervasiveness of video surveillance is leading some state lawmakers to hit the pause button. | Guideline | ||
|
2021-04-16 08:28:22 | Google Broke Australian Law Over Location Data Collection: Court (lien direct) | Google violated Australian law by misleading users of Android mobile devices about the use of their location data, a court ruled Friday in a landmark decision against the global digital giant. | Guideline | ||
|
2021-04-13 19:34:41 | Swedish Sports Body Hacked by Russians, Officials Say (lien direct) | The organization that oversees Sweden's national sports federations was hacked by Russian military intelligence in 2017-18, officials said Tuesday, in a data-breaching campaign that also affected some of the world's leading sporting bodies, including FIFA and the World Anti-Doping Agency. | Guideline | ||
|
2021-04-01 13:55:26 | (Déjà vu) Administrator of Dark Web Portal Pleads Guilty to Money Laundering (lien direct) | An Israeli national has pleaded guilty to his role in operating DeepDotWeb (DDW), a website that functioned as a gateway to various Dark Web marketplaces, the U.S. Justice Department announced on Wednesday. | Guideline | ||
|
2021-03-29 18:30:38 | Vulnerability in \'netmask\' npm Package Affects 280,000 Projects (lien direct) | A vulnerability in the netmask npm package could expose private networks and lead to a variety of attacks, including malware delivery. | Malware Vulnerability Guideline | ||
|
2021-03-26 15:05:29 | (Déjà vu) Severe Flaws in Official \'Facebook for WordPress\' Plugin (lien direct) | A critical vulnerability in the official Facebook for WordPress plugin could be abused to upload arbitrary files, essentially leading to remote code execution, according to a warning from security researchers at Wordfence. | Vulnerability Guideline | ||
|
2021-03-26 15:05:29 | Severe Flaws in Facebook for WordPress Plugin (lien direct) | A critical vulnerability in the official Facebook for WordPress plugin could be abused to upload arbitrary files, essentially leading to remote code execution, according to a warning from security researchers at Wordfence. | Vulnerability Guideline | ||
|
2021-03-26 10:59:11 | (Déjà vu) General Says Attacks by Foreign Hackers Are \'Clarion Call\' (lien direct) | The U.S. Cyber Command conducted more than two dozen operations aimed at thwarting interference in last November's presidential election, the general who leads the Pentagon's cyber force said Thursday. | Guideline |
To see everything:
Our RSS (filtrered)
