What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-09-29 19:32:34 | Facebook Open-Sources \'Mariana Trench\' Code Analysis Tool (lien direct) | Facebook's security team on Wednesday pulled the curtain on Mariana Trench, an open-source tool that it has been using internally to identify vulnerabilities in Android and Java applications. | Tool | ||
|
2021-09-28 11:19:08 | ImmuniWeb Launches Free Tool for Identifying Unprotected Cloud Storage (lien direct) | Switzerland-based web and application security company ImmuniWeb on Tuesday announced the launch of a free online tool designed to help organizations identify unprotected cloud storage. | Tool | ★★★ | |
|
2021-09-08 01:42:01 | US-built Databases a Potential Tool of Taliban Repression (lien direct) | Over two decades, the United States and its allies spent hundreds of millions of dollars building databases for the Afghan people. The nobly stated goal: Promote law and order and government accountability and modernize a war-ravaged land. | Tool | ||
|
2021-08-24 15:42:13 | New iOS Zero-Click Exploit Defeats Apple \'BlastDoor\' Sandbox (lien direct) | Security researchers at Citizen Lab are documenting a new Apple iOS zero-click exploit being used to hijack data from fully patched iPhones in Bahrain. Citizen Lab said it found technical evidence connecting the new exploit to the Pegasus high-end spyware tool sold by controversial Israeli software vendor NSO Group. | Tool | ||
|
2021-07-29 15:37:25 | How Low-level Hackers Access High-end Malware (lien direct) | Hacking tool downloads from underground forums are increasing, and the tools are becoming more sophisticated; low-level hackers are gaining access to hacked versions of sophisticated tools; access broking is growing; and existing tools are repurposed for more aggressive attacks. | Malware Tool | ||
|
2021-07-27 12:09:31 | Vulnerability in Popular Survey Tool Exploited in Possible Chinese Attacks on U.S. (lien direct) | A recently disclosed vulnerability affecting a popular survey creation tool has been exploited by a threat group that may be linked to China against organizations in the United States. | Tool Vulnerability Threat | ||
|
2021-07-26 12:23:41 | GitLab Releases Open Source Tool for Hunting Malicious Code in Dependencies (lien direct) | GitLab last week announced the release of a new open source tool designed to help software developers identify malicious code in their projects' dependencies. | Tool | ||
|
2021-07-19 14:51:49 | Cisco Discloses Details of Critical Advantech Router Tool Vulnerabilities (lien direct) | Cisco's Talos threat intelligence and research unit has disclosed the details of several critical vulnerabilities affecting a router monitoring application made by Taiwan-based industrial and IoT solutions provider Advantech. The affected tool is R-SeeNet, which is designed to help network administrators monitor their Advantech routers. | Tool Threat | ||
|
2021-07-16 13:34:21 | Vulnerabilities in Etherpad Collaboration Tool Allow Data Theft (lien direct) | XSS and Argument Injection Flaws Found in Popular Etherpad Collaboration Tool | Tool | ||
|
2021-07-03 12:30:24 | IT Software Firm Kaseya Hit By Supply Chain Ransomware Attack (lien direct) | Supply chain cyberattack by REvil ransomware gang on IT management tool could have wide blast radius | Ransomware Tool | ||
|
2021-07-01 11:28:24 | (Déjà vu) CISA Adds Ransomware Module to Cyber Security Evaluation Tool (lien direct) | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday announced the release of a new module for its Cyber Security Evaluation Tool (CSET), namely the Ransomware Readiness Assessment (RRA). | Ransomware Tool | ||
|
2021-06-30 16:59:19 | IBM Gifts Threat Hunting Tool to Open Cybersecurity Alliance (lien direct) | IBM Corp. on Wednesday announced that it is contributing the Kestrel open-source programming language for threat hunting to the Open Cybersecurity Alliance (OCA). | Tool Threat | ||
|
2021-06-22 10:10:19 | Research Shows Many Security Products Fail to Detect Android Malware Variants (lien direct) | A group of academic researchers has created a tool that can be used to clone Android malware and test the resilience of these new variants against anti-malware detection. | Malware Tool | ||
|
2021-06-16 16:55:21 | Google Rolls out E2EE For Android Messages App (lien direct) | Google has finally enabled end-to-end encryption (E2EE) for the Messages app in Android but the privacy-enhancing tool remains somewhat limited. Google announced end-to-end encryption is now available in Android, but only for one-on-one conversations between users of the Messages app. | Tool | ||
|
2021-06-14 21:00:28 | CodeCov Kills Off Bash Uploader Blamed for Supply Chain Hack (lien direct) | Following a major software supply chain compromise that exposed data for several major companies, developer tools startup CodeCov plans to kill off the Bash Uploader tool that was responsible for the breach. | Hack Tool | ||
|
2021-06-11 12:32:49 | Canada Privacy Watchdog Slams Police Use of Facial Recognition Tool (lien direct) | Federal police broke Canada's privacy laws by using a US company's controversial facial recognition software in hundreds of searches, an independent parliamentary watchdog ruled Thursday. | Tool | ||
|
2021-06-07 12:06:12 | New Google Tool Helps Developers Visualize Dependencies of Open Source Projects (lien direct) | Google has launched a new experimental tool designed to help application developers visualize the dependencies of open source projects. | Tool | ||
|
2021-05-21 14:01:52 | Microsoft Unveils SimuLand: Open Source Attack Techniques Simulator (lien direct) | Microsoft this week announced the availability of SimuLand, an open source tool that enables security researchers to reproduce attack techniques in lab environments. | Tool | ||
|
2021-05-10 17:14:57 | Google Releases Open Source Tool for Verifying Containers (lien direct) | Google has released a new open-source tool called cosign to make it easier to manage the process of signing and verifying container images. | Tool | ||
|
2021-05-07 16:32:02 | US-UK Gov Warning: SolarWinds Attackers Add Open-Source PenTest Tool to Arsenal (lien direct) | Agencies in the United States and the United Kingdom on Friday published a joint report providing more details on the activities of the Russian cyberspy group that is believed to be behind the attack on IT management company SolarWinds. The report reveals that the hackers started using the open-source adversary simulation framework Sliver after some of their operations were exposed. | Tool | ★★★★ | |
|
2021-04-29 01:39:41 | US Government Taking Creative Steps to Counter Cyberthreats (lien direct) | An FBI operation that gave law enforcement remote access to hundreds of computers to counter a massive hack of Microsoft Exchange email server software is a tool that is likely to be deployed “judiciously” in the future as the Justice Department, aware of privacy concerns, develops a framework for it | Hack Tool | ||
|
2021-04-27 13:29:38 | Adobe Releases Open Source Anomaly Detection Tool "OSAS" (lien direct) | Adobe this week announced the open-source availability of 'One-Stop Anomaly Shop' (OSAS), a new tool designed to help security teams discover anomalies in datasets. | Tool | ||
|
2021-04-16 02:47:55 | Codecov Bash Uploader Dev Tool Compromised in Supply Chain Hack (lien direct) | Security response professionals are scrambling to measure the fallout from a software supply chain compromise of Codecov Bash Uploader that went undetected since January and exposed sensitive secrets like tokens, keys and credentials from organizations around the world. | Hack Tool | ||
|
2021-04-09 16:55:31 | CISA Releases Tool to Detect Microsoft 365 Compromise (lien direct) | The U.S. Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has released a new tool to help with the detection of potential compromise within Microsoft Azure and Microsoft 365 environments. | Tool | ||
|
2021-03-25 15:36:05 | Mamba Ransomware Leverages DiskCryptor for Encryption, FBI Warns (lien direct) | The Federal Bureau of Investigation (FBI) this week published an alert to warn of the fact that the Mamba ransomware is abusing the DiskCryptor open source tool to encrypt entire drives, including the operating system. | Ransomware Tool | ||
|
2021-03-16 00:22:56 | Microsoft Ships One-Click Mitigation Tool for Exchange Attacks (lien direct) | 
|
Tool | ||
|
2021-02-10 15:07:13 | Apple Patches Recent Sudo Vulnerability in macOS (lien direct) | Apple on Tuesday released macOS security updates to patch a recently disclosed vulnerability in the Sudo utility. Present in most Unix- and Linux-based operating systems out there, Sudo is a tool that allows users to execute programs with the privileges of another user, which by default is superuser. | Tool Vulnerability | ||
|
2021-02-05 13:31:32 | Open Source Tool Helps Organizations Secure GE CIMPLICITY HMI/SCADA Systems (lien direct) | Industrial cybersecurity firm OTORIO this week announced the availability of a new open source tool designed to help organizations secure their GE CIMPLICITY systems. | Tool | ||
|
2021-02-02 16:37:33 | A Swiss Army Knife for Industrial Operations Protection (lien direct) | When we think about a Swiss Army Knife, we immediately picture a high-quality, multi-functional tool to help us tackle a wide array of tasks. The digital equivalent is the smartphone. A more security-specific example is the all-in-one, wireless home protection system. These solutions typically include sensors for windows, doors, and rooms, as well as cameras to remotely see what is happening inside and out, and an app to control everything from wherever you are. | Tool | ||
|
2021-01-19 19:04:57 | FireEye Releases New Open Source Tool in Response to SolarWinds Hack (lien direct) | FireEye Mandiant on Tuesday announced the release of an open source tool designed to check Microsoft 365 tenants for the use of techniques associated with UNC2452, the name currently assigned by the cybersecurity firm to the threat group that attacked IT management company SolarWinds. | Hack Tool Threat | ||
|
2021-01-11 18:47:09 | Decryptor Released for Ransomware That Allegedly Helped Cybercriminals Make Millions (lien direct) | Bitdefender on Monday announced the availability of a free tool that organizations can use to recover files encrypted by DarkSide, a piece of ransomware that cybercriminals claim helped them make millions. | Ransomware Tool | ||
|
2021-01-05 20:34:57 | Crypto-Hijacking Campaign Leverages New Golang RAT (lien direct) | Reseachers are raising the alarm for a newly identified operation leveraging a new Remote Access Tool (RAT) written in Golang to steal crypto-currency from unsuspecting users. | Tool | ||
|
2021-01-05 04:59:54 | Ransomware Attacks Linked to Chinese Cyberspies (lien direct) | China-linked cyber-espionage group APT27 is believed to have orchestrated recent ransomware attacks, including one where a legitimate Windows tool was used to encrypt the victim's files. | Ransomware Tool | APT 27 APT 27 | |
|
2019-10-08 13:45:04 | Code Execution Vulnerability Impacts NSA Reverse Engineering Tool (lien direct) | Versions through 9.0.4 of the Ghidra software reverse engineering (SRE) framework are impacted by a code-execution vulnerability, the National Security Agency (NSA) has revealed. | Tool Vulnerability | ||
|
2019-10-03 15:46:01 | Researcher Shows How Adversaries Can Gather Intel on U.S. Critical Infrastructure (lien direct) | A researcher has used a free tool that he created and open source intelligence (OSINT) to demonstrate how easy it is for adversaries to gather intelligence on critical infrastructure in the United States. | Tool | ||
|
2019-10-02 15:16:09 | Google Expands Use of Password Checkup Tool, Unveils New Privacy Features (lien direct) | Google on Wednesday announced that its Password Checkup tool has been added to the Account password manager, and the company has unveiled some new security and privacy features for YouTube, Maps and Assistant. | Tool | ||
|
2019-09-30 13:25:07 | New Anomali Tool Finds Threat Data in News, Blogs, Social Networks (lien direct) | Threat intelligence firm Anomali on Monday announced the launch of Lens, a new tool designed to make it easier for organizations to find and use threat data from a wide range of sources. | Tool Threat | ||
|
2019-09-13 13:32:06 | Sophos Makes Sandboxie Free in Transition to Open Source (lien direct) | Sophos this week removed the license check and activation requirements from Sandboxie, essentially making the isolation tool free. The move, the cybersecurity firm says, is the first step it makes toward releasing the sandbox-based isolation program open source. | Tool | ||
|
2019-08-23 16:49:04 | New Tool From Cisco Hunts Flaws in Automotive Computers (lien direct) | Cisco has released a new hardware tool designed to help researchers, developers and automakers discover vulnerabilities in automobile computers. | Tool | ||
|
2019-08-23 07:31:03 | Claroty Releases Free Diagnostic Tool for Urgent/11 Vulnerabilities (lien direct) | Industrial cybersecurity firm Claroty this week released a free and open source tool designed to help organizations check whether their operational technology (OT) devices are vulnerable to Urgent/11 attacks. | Tool | ||
|
2019-08-16 16:09:05 | Apple Sues Corellium Over Security Research Tool (lien direct) | Apple has filed a copyright infringement lawsuit against Florida-based virtualization company Corellium for creating “perfect replicas” of iOS that can be used for security research and other purposes. | Tool | ||
|
2019-08-15 11:08:05 | Focus on Use Cases to Improve Security Operations (lien direct) | There was a time when the term “use case” was confined to product development meetings where software and systems engineers worked through defining why and how a product would be used in order to create requirements. Use cases remain a critical tool to ensure teams are building products their customers need and can use. | Tool | ||
|
2019-08-13 13:11:02 | Free MANRS Tool Helps Improve Routing Security (lien direct) | The Mutually Agreed Norms for Routing Security (MANRS) initiative on Tuesday announced the availability of a free tool designed to help network operators identify potential issues and improve routing security. | Tool | ||
|
2019-08-09 15:42:05 | Hidden Injection Flaws Found in BIG-IP Load Balancers (lien direct) | In May 2019 (updated in June), F5 issued a security advisory about a potential injection issue in the Tool Command Language (TCL) as used with its BIG-IP load balancers. Load balancers are essential to ensure consistent web services in high volume circumstances, and BIG-IP is popular with banks, governments and large corporations. | Tool | ||
|
2019-07-10 16:03:02 | Intel Patches Serious Vulnerability in Processor Diagnostic Tool (lien direct) | Intel's Patch Tuesday updates for July 2019 fix a serious vulnerability in the company's Processor Diagnostic Tool and a less serious issue in its Solid State Drives (SSD) for Data Centers (DC) product. | Tool Vulnerability | ||
|
2019-06-18 15:54:01 | Free Cloudflare Tool Helps CAs Securely Issue Certificates (lien direct) | Internet performance and security firm Cloudflare on Tuesday announced the availability of a free API designed to help certificate authorities (CAs) securly issue certificates by ensuring that malicious actors cannot complete the domain control validation process via BGP hijacking and DNS spoofing attacks. | Tool | ||
|
2019-06-17 17:32:05 | (Déjà vu) Decryptor Released for Latest GandCrab Ransomware Variants (lien direct) | A free decryption tool is now available for the victims of the latest variants of the GandCrab ransomware. | Ransomware Tool | ||
|
2019-06-14 15:05:02 | French Authorities Release Free Decryptor for PyLocky Ransomware (lien direct) | The French Ministry of Interior has released a free decryption tool for the PyLocky ransomware to help victims recover their data. | Ransomware Tool | ||
|
2019-06-14 08:41:00 | Amid Privacy Firestorm, Facebook Curbs Research Tool (lien direct) | Facebook has curbed access to a controversial feature allowing searches of the vast content within the social network -- a tool which raised privacy concerns but was also used for research and investigative journalism. | Tool | ||
|
2019-06-11 13:48:05 | Tool Links Internet-Exposed ICS to Google Street View (lien direct) | An open source tool named Kamerka allows users to generate a map of Internet-exposed industrial control systems (ICS) in a specified country and link results to Google Street View. | Tool |
To see everything:
Our RSS (filtrered)
