What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-03-25 17:09:07 | US Cyber Experts Conducted Operations to Safeguard Election (lien direct) | The U.S. Cyber Command conducted more than two dozen operations aimed at preventing interference in last November's presidential election, the general who leads the Pentagon's cyber force said Thursday. | Guideline | ||
|
2021-03-09 14:37:19 | (Déjà vu) Intel to Speak at SecurityWeek Supply Chain Security Summit on March 10th (lien direct) | Join Intel on Wednesday, March 10, at SecurityWeek's Supply Chain Security Summit, where industry leaders will examine the current state of supply chain attacks. Hear Intel's experts discuss the need for transparency and integrity across the complete product lifecycle, from build to retire. | Guideline | ||
|
2021-03-04 17:27:32 | Privilege Escalation Bugs Patched in Linux Kernel (lien direct) | A total of five vulnerabilities that could lead to local privilege escalation were recently identified and fixed in the Linux kernel. Identified by Positive Technologies security researcher Alexander Popov, the high severity bugs resided in the virtual socket implementation of the Linux kernel. | Guideline | ★★★★★ | |
|
2021-03-03 19:21:06 | New CISO Hires at Uber, Square, SailPoint (lien direct) | Ride-sharing giant Uber has quietly snapped up veteran security leader Latha Maripuri to be its Chief Information Security Officer (CISO). A formal announcement has not yet been made but Maripuri, a security leader with stints at IBM and NewsCorp, has shared the news on her LinkedIn profile. | Guideline | Uber Uber | ★★★★★ |
|
2021-03-03 15:23:03 | VMware Patches Remote Code Execution Vulnerability in View Planner (lien direct) | VMware this week announced the availability of a security patch for VMware View Planner, to address a vulnerability leading to remote code execution. | Vulnerability Guideline | ||
|
2021-02-24 01:11:22 | Tech Firms Say There\'s Little Doubt Russia Behind Major Hack (lien direct) | Leading technology companies said Tuesday that a months-long breach of corporate and government networks was so sophisticated, focused and labor-intensive that a nation had to be behind it, with all the evidence pointing to Russia. | Hack Guideline | ||
|
2021-02-23 01:27:36 | Robinhood Taps Caleb Sima to Lead Security (lien direct) | Caleb Sima to Join Robinhood as Chief Security Officer Veteran cybersecurity practitioner, entrepreneur and executive Caleb Sima has been tapped to lead security at mobile stock trading startup Robinhood. | Guideline | ||
|
2021-02-12 18:24:03 | U.S. Gov Warning on Water Supply Hack: Get Rid of Windows 7 (lien direct) | On the heels of last week's lye-poisoning attack against a small water plant in Florida, the U.S. government's cybersecurity agency is pleading with critical infrastructure defenders to rip-and-replace Windows 7 from their networks as a matter of urgency. | Guideline | ||
|
2021-02-11 13:19:47 | White House Names SolarWinds Response Leader Amid Criticism (lien direct) | After members of Congress criticized as “disorganized” the U.S. response to a massive breach of government departments and private corporations discovered late last year, the White House announced Wednesday that a senior national security official had been leading the effort since the first day of the Biden administration. | Guideline | ||
|
2021-02-03 04:38:32 | Google Patches Over a Dozen High-Severity Privilege Escalation Flaws in Android (lien direct) | Google this week published its Android security bulletin for February 2021, which includes information on more than 40 vulnerabilities, most of which could lead to elevation of privilege. | Guideline | ||
|
2021-01-22 16:03:09 | Biden Orders Intel Agencies to Provide Full Assessment of SolarWinds Hack (lien direct) | Just says into his leadership role, U.S. President Joe Biden has instructed U.S. intelligence agencies to provide him with a detailed assessment of the SolarWinds hack, which fueled a global cyber espionage campaign impacting many high-profile government agencies and businesses. | Hack Guideline | ||
|
2021-01-13 03:13:37 | Watchdog Raises Concerns About Census Bureau\'s IT Security (lien direct) | A watchdog agency for the U.S. Census Bureau says that proper information-technology security safeguards weren't in place leading up to the start of the 2020 census last year, but the statistical agency disputes some of the findings and says no data was compromised. | Guideline | ||
|
2021-01-08 01:44:51 | Russian Hacker Gets 12 Years in Massive Data Theft Scheme (lien direct) | A prolific Russian hacker who stole data from over a dozen U.S. companies and information about over 100 million U.S. consumers was sentenced Thursday to 12 years in prison after admitting involvement in one of the biggest thefts of consumer data from a U.S. financial institution. | Guideline | ||
|
2019-10-02 08:45:36 | Ransomware Hits Hundreds of US Schools, Local Governments: Study (lien direct) | Hundreds of US municipalities, schools and health organizations have been hit by ransomware in 2019, leading to massive service disruptions, researchers said Tuesday. | Ransomware Guideline | ||
|
2019-10-01 13:24:45 | Former Yahoo Programmer Pleads Guilty to Hacking User Accounts (lien direct) | A former Yahoo software engineer has admitted in court to hacking into the accounts of thousands of the platform's users. The man, Reyes Daniel Ruiz, 34, of Tracy, California, pleaded guilty to accessing about 6,000 Yahoo accounts, in search of private and personal records, mainly sexual images and videos. | Guideline | Yahoo | |
|
2019-09-30 16:47:04 | Critical Remote Code Execution Vulnerability Patched in Exim Email Server (lien direct) | A Critical vulnerability recently addressed in the popular open-source email server Exim could lead to remote code execution. Exim is an open source mail transfer agent (MTA) widely used in systems running Linux and macOS. At the moment, Exim powers over half of email servers out there. | Vulnerability Guideline | ||
|
2019-09-26 14:25:42 | There Is Life for the CISO After a Breach (lien direct) | A new survey of CISO attitudes conducted by Symantec and Dr Chris Brauer of Goldsmiths, University of London will surprise few CISOs, but should be required reading for other business leaders. It describes adrenaline junkies that fear burnout and worry about being scapegoats in an impossible position, but remain dedicated to their job. | Guideline | ||
|
2019-09-26 08:46:48 | iOS 13 Bug Gives Third-Party Keyboards "Full Access" Permissions (lien direct) | An update that Apple will soon release for iOS 13 and iPadOS should resolve an issue that leads to third-party keyboard apps getting elevated permissions without the user's approval. | Guideline | ||
|
2019-09-24 15:42:37 | Russian Pleads Guilty to Hacking U.S. Financial Firms (lien direct) | A Russian man this week pleaded guilty in a Manhattan federal court to the hacking of various financial institutions in the United States, including JPMorgan Chase and Dow Jones. | Guideline | ||
|
2019-09-24 13:03:50 | Cyber Insurance Firm Cowbell Emerges From Stealth With $3.3 Million Seed Funding (lien direct) | Pleasanton, California-based cyber insurance firm Cowbell Cyber has emerged from stealth, announcing its Cowbell Factor product with $3.3 million seed funding from leading insurance, cybersecurity and artificial intelligence venture funds, including ManchesterStory Group, Holmes Murphy & Associates, Tri-Valley Ventures and the Global Insurance Accelerator. | Guideline | ||
|
2019-09-20 04:38:45 | Key Senate Panel Approves $250 Million for Election Security (lien direct) | A key Senate panel on Thursday approved $250 million to help states beef up their election systems, freeing up the money after Senate Majority Leader Mitch McConnell came under criticism from Democrats for impeding separate election security legislation. | Guideline | ||
|
2019-09-19 04:42:48 | Zuckerberg Sets Talks in Washington on \'Future Regulation\' (lien direct) | Facebook chief executive Mark Zuckerberg was expected in Washington Thursday for private talks with policymakers as the leading social network faces a myriad of regulatory and legal issues. Zuckerberg's visit comes five months after his stormy appearance before Congress, where he was grilled on Facebook's data protection and privacy missteps. | Guideline | ||
|
2019-09-18 12:14:40 | Facebook Takes Down Misleading Campaigns From Iraq, Ukraine (lien direct) | Facebook this week announced that it removed multiple pages, groups, and accounts engaged in misleading behavior on the social platform. | Guideline | ||
|
2019-09-13 18:23:25 | Car Dealer Marketing Firm Exposed 198 Million Data Records (lien direct) | A publicly accessible, unprotected database belonging to car dealership marketing firm Dealer Leads was found to expose 198 million records, including personally identifiable information, Security Discovery reports. | Guideline | ||
|
2019-09-13 11:02:01 | Ukrainian Man Pleads Guilty to Hacking, Wire Fraud Charges (lien direct) | A member of a sophisticated international hacking group that authorities say targeted businesses in 47 states to steal credit and debit card records pleaded guilty to hacking and wire fraud charges in Seattle. | Guideline | ||
|
2019-09-09 13:29:02 | Man Pleads Guilty for Trying to Access Trump\'s Tax Returns (lien direct) | A Philadelphia man has pleaded guilty to trying to hack the IRS to obtain President Donald Trump's tax returns. Andrew Harris pleaded guilty Thursday to two computer fraud counts in federal court. The 23-year-old faces up to two years in prison and $200,000 fine. | Hack Guideline | ||
|
2019-09-07 17:02:04 | Apple: Security Report on iPhone Hack Created \'False Impression\' (lien direct) | Apple hit back Friday at a Google research report suggesting iPhones may have been targeted by a long-running hacking operation, calling it inaccurate and misleading. | Hack Guideline | ||
|
2019-09-03 12:47:04 | Pitfalls to Avoid in Ransomware Incident Response Plan (lien direct) | Targeted ransomware attacks with larger ransom demands have persisted as a fixture of the news cycle and scourge for security practitioners and business leaders alike over the last two years. And because, unfortunately, these types of attacks show no signs of slowing down anytime soon, having an adequate incident response (IR) plan prepared is essential. Here are some common pitfalls to avoid when developing your ransomware IR plan: | Ransomware Guideline | ||
|
2019-08-27 06:31:05 | Code Execution Flaw in QEMU Mostly Impacts Development, Test VMs (lien direct) | The open source machine emulator QEMU is affected by a vulnerability that can lead to a denial-of-service (DoS) condition or arbitrary code execution, but developers say users should not be too concerned about its impact. | Vulnerability Guideline | ||
|
2019-08-20 12:24:02 | VideoLAN Patches Dozen Vulnerabilities in VLC (lien direct) | VideoLAN this week released a software update to its highly popular VLC media player to address a dozen vulnerabilities, the most important of which could lead to arbitrary code execution. | Guideline | ||
|
2019-08-15 09:54:03 | Owners of Fake Tech Company Plead Guilty to Fraud Charges (lien direct) | Two Florida men have pleaded guilty to wire fraud charges filed in southern Illinois, where they targeted people with fake technical support services. Michael Austin Seward of Deerfield Beach and Kevin James McCormick of Delray Beach admitted Wednesday they operated a scam called Client Care Experts. | Guideline | ||
|
2019-08-02 10:17:04 | Congress Wants Capital One, Amazon to Explain Data Breach (lien direct) | Leaders of House and Senate committees want Capital One and Amazon to explain to Congress how a hacker accessed personal information from more than 100 million Capital One credit card customers and applicants. | Data Breach Guideline | ||
|
2019-08-01 12:24:02 | How to Prep Your Security Strategy for Today\'s Cyber Risks (lien direct) | There is no shortage of breaking news on data breaches and vulnerabilities that have very real financial and reputational consequences for enterprises. It seems impossible for business leaders and board members to escape the barrage of forewarning headlines and resulting bombardment of experts who line up to share cybersecurity advice on how to avoid such devastation. | Guideline | ||
|
2019-07-22 13:38:05 | Questions to Ask Before Choosing a Threat Intelligence RFI Service (lien direct) | Much like deep & dark web (DDW) coverage and anti-fraud solutions, request for intelligence (RFI) services have quickly become both ubiquitous and prone to misleading claims in the threat intelligence market. | Threat Guideline | ||
|
2019-07-11 12:10:02 | SAP Patches Critical Flaw in Diagnostics Agent (lien direct) | SAP this week released 11 Security Notes as part of the Patch Day – July 2019, one of which was a Hot News Note addressing a Critical vulnerability in Diagnostics Agent. Tracked as CVE-2019-0330 and featuring a CVSS score of 9.1, the bug is an OS command injection that could lead to the compromise of the entire SAP system. | Vulnerability Guideline | ||
|
2019-06-20 13:38:05 | Why Diversity of Thought in the Workplace Matters (lien direct) | Organizations Need Strong Leadership Backing in Order Train Managers on More Inclusive Management Styles | Guideline | ||
|
2019-06-11 04:20:00 | Customs Says Hack Exposed Traveler, License Plate Images (lien direct) | Customs and Border Protection said Monday that photos of travelers and license plates collected at a single U.S. border point have been exposed in a malicious cyberattack in what a leading congressman called a “major privacy breach.” | Hack Guideline | ||
|
2019-05-28 16:15:02 | Research Shows Twitter Manipulation in Weeks Before EU Elections (lien direct) | This is an age of large scale political social engineering through social media, both by advertising and the presentation of misleading data. International social engineering became frontpage news with the 2016 US presidential elections, but has not abated since. Researchers with the Sherpa project analyzed the use of social media as a recommendation system -- specifically Twitter -- ahead of the European elections in May 2019. | Guideline | ||
|
2019-05-23 15:42:02 | Authorities Take Down Cryptocurrency Mixing Service Bestmixer.io (lien direct) | Authorities in Europe this week said they took down Bestmixer.io, one of the leading cryptocurrency mixing service in the world. The takedown was possible due to a collaboration between the Dutch Fiscal Information and Investigation Service (FIOD), Europol, and authorities in Luxembourg. | Guideline | ||
|
2019-05-20 16:42:05 | Linux Kernel Privilege Escalation Vulnerability Found in RDS Over TCP (lien direct) | A memory corruption vulnerability recently found in Linux Kernel's implementation of RDS over TCP could lead to privilege escalation. Tracked as CVE-2019-11815 and featuring a CVSS base score of 8.1, the flaw impacts Linux kernels prior to 5.0.8, but only systems that use the Reliable Datagram Sockets (RDS) for the TCP module. | Vulnerability Guideline | ||
|
2019-05-15 17:21:00 | Hackers Exploit ASUS Update Process to Install Backdoor (lien direct) | The BlackTech cyber-espionage group has been performing man-in-the-middle (MitM) attacks on the update process of the ASUS WebStorage application to deliver the Plead backdoor to their targeted victims, ESET reports. | Guideline | ★★ | |
|
2019-05-11 12:53:02 | Facebook Sues South Korea Data Analytics Firm (lien direct) | Facebook is suing South Korean data analytics firm Rankwave to make sure it isn't breaking the leading social network's rules, the US company said Friday. | Guideline | ||
|
2019-03-29 05:55:05 | Ex-NSA Contractor Pleads Guilty in Theft of Secret Documents (lien direct) | A former National Security Agency contractor accused in a theft of classified documents from the agency's headquarters pleaded guilty Thursday to willful retention of national defense information. | Guideline | ||
|
2019-03-28 14:47:03 | Ex-NSA Contractor Expected to Plead Guilty in Document Theft (lien direct) | A former National Security Agency contractor accused in a massive theft of classified information is expected to plead guilty Thursday in what U.S. prosecutors had once portrayed as a “breathtaking” breach at the nation's biggest spy shop. | Guideline | ||
|
2019-03-27 17:43:00 | (Déjà vu) NVIDIA Patches Serious Flaw in GeForce Experience Software (lien direct) | A security update released recently by NVIDIA for its GeForce Experience software patches a potentially serious vulnerability that could lead to arbitrary code execution, a denial-of-service (DoS) condition, or privilege escalation. | Vulnerability Guideline | ||
|
2019-03-20 18:01:01 | Man Pleads Guilty Over $100M BEC Scheme Targeting Google, Facebook (lien direct) | A 50-year-old Lithuanian citizen has pleaded guilty over his role in a business email compromise (BEC) scheme in which Google and Facebook employees were tricked into wiring a total of more than $100 million to bank accounts he controlled. | Guideline | ||
|
2019-03-14 13:50:02 | US Warns of Sophisticated Cyberattacks From Russia, China (lien direct) | Cyberattacks from Russia, China, North Korea and Iran are increasingly sophisticated and, until recently, were done with little concern for the consequences, the top Pentagon cyber leaders told a congressional committee on Wednesday. | Guideline | ||
|
2019-03-05 18:12:02 | Huawei Opens Brussels Security Lab in Bid to Reassure EU (lien direct) | Chinese tech company Huawei on Tuesday opened a cybersecurity lab in Brussels, the heart of the European Union, as it tries to win over government leaders and fight back U.S. allegations that its equipment poses a national security risk. | Guideline | ||
|
2019-03-04 13:09:00 | Cisco Publishes Annual CISO Benchmark Study (lien direct) | A new survey of senior security leader attitudes and practices concentrates on 'anticipating the unknowns'. It's a clever choice of words. 'Anticipating' implies getting ahead of and being prepared for the unknowns -- which is different and more accurate than the more usual use of the word as simply 'expecting' the unknowns. This is the task of the security leader: to be prepared for the unknown rather than to wait for and respond to the unknown. | Guideline | ||
|
2019-03-02 13:37:03 | DDoS-for-Hire Service Admin Pleads Guilty (lien direct) | An Illinois man pleaded guilty earlier this week for owning, administrating, and supporting an illegal booting service that launched millions of distributed denial of service attacks, the U.S. Department of Justice announced. | Guideline |
To see everything:
Our RSS (filtrered)
