What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-04-08 13:47:05 | Chat Services: Be Diligent With This Must-Have Data Source for Intelligence Programs (lien direct) | Deep & Dark Web (DDW) forums and marketplaces have long served as hubs for illicit activity and, consequently, as invaluable data sources for defenders looking to combat such activity. However, threat actors continue to be drawn to the immediacy-and in many cases, the enhanced security and privacy-of encrypted chat services such as Telegram and Discord. | Threat | ||
|
2019-04-04 15:40:05 | Build Versus Buy: Threat Intelligence and Digital Risk (lien direct) | An increasing reliance on online digital technologies, driven in no small part by the many operational benefits they deliver, has prompted organizations to consider investing in capabilities that protect against the digital risks that can often characterize their adoption. Unfortunately, when it comes to digital risk there is no universal remedy for establishing maturity. | Threat | ||
|
2019-03-27 15:55:03 | Nearly Half of ICS Devices Protected by Kaspersky Targeted in 2018 (lien direct) | Nearly half of the industrial control system (ICS) computers protected by Kaspersky Lab were targeted by malware and other threats in 2018, according to the company's latest industrial threat landscape report. | Malware Threat | ||
|
2019-03-27 13:32:02 | ASUS Patches Hijacked System Update Utility (lien direct) | ASUS says it has released a fix for the Live Update utility that threat actors abused in Operation ShadowHammer supply chain attack to deliver malware to hundreds of users. | Malware Threat | ||
|
2019-03-22 15:43:03 | Microsoft Launches Defender ATP Endpoint Security for macOS (lien direct) | Microsoft Brings Defender Advanced Threat Protection to macOS | Threat | ||
|
2019-03-21 19:33:02 | Threat Hunting Tips to Improve Security Operations (lien direct) | From Ferdinand Magellan to Lewis and Clark to Neil Armstrong – humans have an innate desire to understand the unknown. In security operations, we see this phenomenon every day in several forms, one of which is threat hunting. Threat hunting is not triggered by an event, but by the unknown. It is the practice of proactively and iteratively searching for abnormal indications within networks and systems. | Threat | ||
|
2019-03-15 15:50:03 | Hackers Bypass MFA on Cloud Accounts via IMAP Protocol (lien direct) | Over the past several months, threat actors have been increasingly targeting Office 365 and G Suite cloud accounts that are using the legacy IMAP protocol, in an attempt to bypass multi-factor authentication (MFA), Proofpoint reports. | Threat | ||
|
2019-03-15 15:18:04 | Recently Patched WinRAR Flaw Exploited in APT Attacks (lien direct) | A recently patched WinRAR vulnerability has been exploited by several threat groups, including advanced persistent threat (APT) actors. | Threat | ||
|
2019-03-13 10:05:04 | Windows Zero-Day Exploited by FruityArmor, SandCat Threat Groups (lien direct) | One of the zero-day vulnerabilities patched this week by Microsoft has been exploited in targeted attacks by several threats groups, including the ones known as FruityArmor and SandCat, Kaspersky Lab revealed on Wednesday. | Threat | ||
|
2019-03-06 16:58:03 | Massive Singapore Healthcare Breach Linked to \'Whitefly\' Cyberspy Group (lien direct) | A threat group that has been targeting organizations in Singapore since at least 2017 is likely behind the massive data breach suffered by SingHealth last year, Symantec reported on Wednesday. | Threat | ||
|
2019-03-05 15:30:05 | Iran-Linked Hackers Use Python-Based Backdoor in Recent Attacks (lien direct) | The Iran-linked Chafer threat group has used a new Python-based backdoor in November 2018 attacks targeting a Turkish government entity, Palo Alto Networks reveals. | Threat Prediction | APT 39 | |
|
2019-02-28 14:05:03 | Microsoft Unveils New Azure, Windows Defender ATP Tools (lien direct) | Microsoft on Thursday unveiled two new cloud-based security products and services - Microsoft Azure Sentinel and Microsoft Threat Experts - designed to make it easier for security teams to do their job. | Threat | ||
|
2019-02-20 14:31:05 | Cyber and Physical Convergence Opens Doors for Attackers: Report (lien direct) | 2018 saw the convergence of three separate threat trends -- two that have evolved over the last few years, and one that came to the fore during 2018. These are the merging of IoT botnets, destructive malware and cryptojacking. | Malware Threat | ★★★★★ | |
|
2019-02-19 15:28:05 | Russian State-Sponsored Hackers Are Fastest: CrowdStrike (lien direct) | It takes Russian state-sponsored hackers less than 20 minutes to start moving laterally within a targeted organization's network after the initial breach, according to CrowdStrike's 2019 Global Threat Report. | Threat | ||
|
2019-02-08 11:54:04 | Don\'t Search for a Needle in a Haystack: Use Cases for Threat Intelligence (lien direct) | Threat Intelligence Can be Used to Support Effective and Automated Incident Response | Threat | ||
|
2019-01-31 17:21:03 | Dell Teams With CrowdStrike, Secureworks for New Endpoint Security Offering (lien direct) | Dell on Thursday announced that it has teamed up with its subsidiary Secureworks and CrowdStrike for a new endpoint security offering that includes threat prevention, detection and response services. | Threat | ★★★ | |
|
2019-01-30 11:08:04 | 5 New Year\'s Resolutions for Your IoT Security Strategy (lien direct) | A new year has arrived, and with it comes the opportunity to make all kinds of transformations to help your business. No matter how you navigated the dangerous threat landscape during the past years, it's time for all of us in operational technology (OT) security to make firm decisions to do or not do something for the safety of our business and environment. | Threat | ||
|
2019-01-30 07:16:02 | U.S. Intel Community: Russia, China Can Disrupt Critical Infrastructure (lien direct) | Russia and China are capable of disrupting critical infrastructure in the United States, and Iran is not far behind, according to the Worldwide Threat Assessment made public by the U.S. intelligence community on Tuesday. | Threat | ||
|
2019-01-21 18:16:02 | DarkHydrus Hackers Use Google Drive in Recent Attacks (lien direct) | The DarkHydrus threat group has added new functionality to the payloads used in recent attacks and is also leveraging Google Drive for command and control (C&C) purposes, Palo Alto Networks security researchers say. | Threat | ||
|
2019-01-17 18:26:01 | New Magecart Group Targets French Ad Agency (lien direct) | A new threat actor operating under the “Magecart” umbrella landed a malicious skimmer on hundreds of websites through a supply chain attack, security firms reveal. | Threat | ||
|
2019-01-11 14:43:01 | Juniper Networks Patches Over 60 Flaws in Junos, ATP Products (lien direct) | Juniper Networks this week released patches for more than 60 vulnerabilities in its Juniper Advanced Threat Prevention (ATP) appliance, Junos OS operating system, and Junos Space network management platform. Many of the security holes impact third-party components. | Threat | ||
|
2019-01-02 17:17:01 | Inside PolySwarm\'s Decentralized Threat Intelligence Marketplace (lien direct) | New Threat Detection Marketplace Connects AV Companies and Enterprises to Improve Protection Coverage Against New Threats | Threat | ||
|
2018-12-21 15:51:02 | Industry Reactions to U.S. Charging APT10 Hackers: Feedback Friday (lien direct) | The United States, United Kingdom, Canada, Australia, New Zealand and Japan have pointed the finger at China for sophisticated cyberattacks launched by a threat group known as APT10 against organizations around the world. The U.S. | Threat | APT 10 | |
|
2018-12-21 07:24:01 | \'Five Eyes\' Nations Blame China for APT10 Attacks (lien direct) | The United States, United Kingdom, Canada, Australia and New Zealand officially blamed China on Thursday for the cyberattacks launched by a threat group known as APT10 against organizations around the world. | Threat | APT 10 | |
|
2018-12-18 06:55:04 | Czech Warning Over Huawei, ZTE Security \'Threat\' (lien direct) | A Czech cyber-security agency on Monday warned against using the software and hardware of China's Huawei and ZTE companies, saying they posed a threat to state security. | Threat | ||
|
2018-12-17 18:44:00 | Shamoon 3 Attacks Targeted Several Sectors (lien direct) | New details have emerged about the recent Shamoon 3 attacks, including information on several malware samples, targets in additional sectors, and some links to threat groups believed to be operating out of Iran. | Malware Threat | ||
|
2018-12-12 08:53:02 | Claroty Adds New Capabilities to Industrial Security Platform (lien direct) | Industrial cybersecurity firm Claroty on Tuesday announced significant enhancements to its threat detection product, along with technology integrations with several cybersecurity, network infrastructure and industrial automation providers. | Threat | ||
|
2018-12-07 12:04:04 | North Korea-linked Hackers Target Academic Institutions (lien direct) | A threat group possibly originating from North Korea has been targeting academic institutions since at least May of this year, NetScout's security researchers reveal. | Threat | ||
|
2018-12-05 17:11:02 | Russian Hospital Targeted With Flash Zero-Day After Kerch Incident (lien direct) | Security updates released by Adobe on Wednesday for Flash Player patch two vulnerabilities, including a critical flaw exploited by a sophisticated threat actor in attacks aimed at a healthcare organization associated with the Russian presidential administration. The attack may be related to the recent Kerch Strait incident involving Russia and Ukraine. | Threat | ||
|
2018-12-03 05:55:04 | NATO Exercises Cyber Defences as Threat Grows (lien direct) | In a nondescript brick building on the snowy edge of Estonia's second city Tartu, soldiers in camouflage tap silently at computers. They are troops manning the 21st century's front line. | Threat | ||
|
2018-11-30 15:48:02 | MITRE Uses ATT&CK Framework to Evaluate Enterprise Security Products (lien direct) | MITRE Corporation's ATT&CK framework has been used to evaluate enterprise security products from several vendors to determine how efficient they are in detecting and responding to attacks launched by sophisticated threat groups. | Threat | ||
|
2018-11-30 15:31:03 | New PowerShell Backdoor Resembles "MuddyWater" Malware (lien direct) | A recently discovered PowerShell-based backdoor is strikingly similar to malware employed by the MuddyWater threat actor, Trend Micro reports. | Malware Threat | ||
|
2018-11-28 21:08:04 | Threat Actor Targets Middle East With DNS Redirections (lien direct) | A previously undocumented threat actor has been targeting entities in the Middle East with new malware and DNS redirections, Cisco's Talos security researchers say. | Malware Threat | ||
|
2018-11-28 04:17:01 | Cylance Adds AWS Support to CylancePROTECT (lien direct) | Threat prevention provider Cylance this week announced support for Amazon Web Services (AWS) in its CylancePROTECT threat prevention solution. | Threat | ||
|
2018-11-23 15:53:02 | Attackers Are Landing Email Inboxes Without the Need to Phish (lien direct) | We've all heard the proverb: Give a man a fish and you feed him for a day. Teach a man to fish and you feed him for a lifetime. Well now, threat actors don't even have to exert the effort to phish to land business email accounts. | Threat | ||
|
2018-11-19 15:41:04 | Microsoft Enhances Windows Defender ATP (lien direct) | Microsoft has unveiled several enhancements to its Windows Defender Advanced Threat Protection (ATP) product to improve its protection capabilities. | Threat | ||
|
2018-11-16 02:53:03 | Dridex/Locky Operators Unleash New Malware in Recent Attack (lien direct) | The threat actor(s) behind many Dridex and Locky campaigns have been using a new Remote Access Trojan (RAT), Proofpoint security researchers warn. | Malware Threat | ||
|
2018-11-15 14:47:02 | GreatHorn Expands Email Security Platform (lien direct) | Waltham, MA-based GreatHorn has expanded its machine-learning phishing protection system into a complete email security platform. "This major new expansion of the Company's flagship solution," it announced on November 14, "addresses every potential stage of a phishing attack with integrated threat detection, protection, defense, and incident response." | Threat | ||
|
2018-11-14 17:06:00 | Chinese Hackers Target UK Engineering Company: Report (lien direct) | Recent attacks on an engineering company in the United Kingdom were attributed to a China-related cyber-espionage group despite the use of techniques usually associated with Russian threat actors. | Threat | ||
|
2018-11-14 07:14:01 | (Déjà vu) APT Group Uses Windows Zero-Day in Middle East Attacks (lien direct) | A Windows zero-day vulnerability addressed this week by Microsoft with its November 2018 Patch Tuesday updates has been exploited by an advanced persistent threat (APT) group in attacks aimed at entities in the Middle East. | Threat | ||
|
2018-11-13 16:24:01 | Sophisticated Cyberattack Targets Pakistani Military (lien direct) | A previously undisclosed threat actor is targeting nuclear-armed government and military in Pakistan as part of a new, unusually complex espionage campaign, Cylance security researchers warn. | Threat | ||
|
2018-11-09 06:16:04 | Adobe ColdFusion Vulnerability Exploited in the Wild (lien direct) | A recently patched remote code execution vulnerability affecting the Adobe ColdFusion web application development platform has been exploited in the wild by one or more threat groups, Volexity warned on Thursday. | Vulnerability Threat | ||
|
2018-11-05 10:35:05 | ICS Devices Vulnerable to Side-Channel Attacks: Researcher (lien direct) | Side-channel attacks can pose a serious threat to industrial control systems (ICS), a researcher warned last month at SecurityWeek's ICS Cyber Security Conference in Atlanta, GA. | Threat | ||
|
2018-10-23 19:22:00 | Fortinet Tackles Insider Threats with ZoneFox Acquisition (lien direct) | Cybersecurity solutions provider Fortinet today announced that it has completed the acquisition of insider threat detection and response company ZoneFox. | Threat | ||
|
2018-10-16 08:58:03 | Russia-Linked Hackers Target Diplomatic Entities in Central Asia (lien direct) | Cybersecurity companies have been monitoring the activities of a threat group that focuses on espionage campaigns aimed at diplomatic entities in Central Asia. | Threat | ||
|
2018-10-15 12:52:04 | Collection Strategies: The Key Differentiator Among Threat Intelligence Vendors (lien direct) | The outcome of an intelligence operation depends largely on the data that fuels it. Even the most sophisticated operation will fail to produce intelligence of value of its data is not also of value. This concept highlights the biggest differentiator and most important factor to consider when choosing a threat intelligence vendor: data source coverage and, more specifically, collection strategy. | Threat | ||
|
2018-10-11 19:09:05 | Hackers Exploit Drupalgeddon2 to Install Backdoor (lien direct) | A threat actor was observed targeting Drupal vulnerabilities patched earlier this year to install a backdoor on compromised servers, IBM reports. | Threat | ★★ | |
|
2018-10-10 18:06:02 | MuddyWater Threat Actor Expands Targets List (lien direct) | The MuddyWater cyber-espionage campaign was observed using spear-phishing emails to target entities in more countries, Kaspersky Lab reports. | Threat | ||
|
2018-10-10 06:50:03 | Windows Zero-Day Exploited in Attacks Aimed at Middle East (lien direct) | One of the vulnerabilities patched by Microsoft with its latest Patch Tuesday updates is a Windows zero-day exploited by an advanced persistent threat (APT) group in attacks aimed at entities in the Middle East. | Threat | ||
|
2018-10-09 20:07:00 | Microsoft Patches Windows Zero-Day Exploited by \'FruityArmor\' Group (lien direct) | Microsoft's Patch Tuesday updates for October 2018 resolve nearly 50 vulnerabilities, including a Windows zero-day flaw exploited by an advanced persistent threat (APT) actor known as FruityArmor. | Threat |
To see everything:
Our RSS (filtrered)
