Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-06-03 10:00:10 |
Tor\'s latest release makes it easier to find secure onion services (lien direct) |
Tor Browser 9.5 is also working towards making Dark Web addresses easier to remember. |
|
|
|
|
2020-06-03 09:06:43 |
Google opens up Advanced Protection Program to Nest devices (lien direct) |
The move follows integration with services including Android and Chrome. |
|
|
|
|
2020-06-03 00:29:05 |
Ransomware gang says it breached one of NASA\'s IT contractors (lien direct) |
DopplePaymer ransomware gang claims to have breached DMI, a major US IT and cybersecurity provider, and one of NASA IT contractors. |
Ransomware
|
|
|
|
2020-06-02 20:19:48 |
New cold boot attack affects seven years of LG Android smartphones (lien direct) |
LG has released a firmware fix in May 2020. Attack requires physical access. |
|
|
|
|
2020-06-02 16:04:00 |
REvil ransomware gang launches auction site to sell stolen data (lien direct) |
Ransomware gang takes extortion to a whole new level. Threatens to auction Madonna's legal documents in a future auction. |
Ransomware
|
|
|
|
2020-06-02 11:34:34 |
G Suite Marketplace primed for a privacy scandal, researchers warn (lien direct) |
G Suite apps that have access to Drive and Gmail data found communicating with undisclosed external services. |
|
|
|
|
2020-06-02 08:34:08 |
Amtrak discloses data breach, potential leak of customer account data (lien direct) |
The rail service says that customer PII may have been compromised. |
|
|
|
|
2020-06-02 05:00:08 |
VMware Cloud Director vulnerability could lead to hijack of enterprise server infrastructure (lien direct) |
The security flaw handed over the keys to enterprise infrastructure. |
Vulnerability
|
|
|
|
2020-06-01 20:58:49 |
White House says security incidents at US federal agencies went down in 2019 (lien direct) |
US federal agencies reported 28,581 cyber-security incidents in 2019, down by 8% from 31,107 in 2018. |
|
|
|
|
2020-06-01 17:39:14 |
After a breach, users rarely change their passwords, study finds (lien direct) |
Only a third of users changed their password following a data breach. |
|
|
|
|
2020-06-01 10:25:54 |
Researcher lands $100,000 reward for \'Sign in with Apple\' authentication bypass bug (lien direct) |
User accounts could be hijacked through missing validation processes on Apple servers. |
|
|
|
|
2020-06-01 02:05:28 |
Joomla team discloses data breach (lien direct) |
Joomla says a team member left an unencrypted backup of the JRD portal on a private AWS S3 bucket. |
Data Breach
|
|
|
|
2020-05-31 10:43:56 |
Hacker leaks database of dark web hosting provider (lien direct) |
Leaked data contains email addresses, site admin passwords, and .onion domain private keys. |
|
|
|
|
2020-05-29 12:16:01 |
NCA launches UK ad campaign to divert kids searching for cybercrime tools (lien direct) |
DDoS-for-hire and Trojan-related searches are on the agency's radar. |
|
|
|
|
2020-05-29 10:51:03 |
Judge demands Capital One release Mandiant cyberforensic report on data breach (lien direct) |
Attorneys suing the company will now have access to the report in preparation for a potential trial. |
Data Breach
|
|
|
|
2020-05-29 05:00:05 |
GitHub warns Java developers of new malware poisoning NetBeans projects (lien direct) |
The malware's end goal was to install a remote access trojan and grant hackers access to highly sensitive workstations were sensitive projects were being developed. |
Malware
|
|
|
|
2020-05-28 20:56:33 |
Google to enable the Chrome anti-notification spam system in July 2020 (lien direct) |
Chrome will block sites from showing notification spam by default. Has been an opt-in feature since February. |
Spam
|
|
|
|
2020-05-28 19:16:01 |
Fortune 500 company NTT discloses security breach (lien direct) |
Japanese telecommunications giant NTT says hackers breached its internal network and stole data on 621 customers. |
|
|
|
|
2020-05-28 18:05:37 |
Cisco discloses security breach that impacted VIRL-PE infrastructure (lien direct) |
Hackers used vulnerabilities in the SaltStack data center software to breach six Cisco servers. |
|
|
|
|
2020-05-28 15:31:00 |
NSA warns of new Sandworm attacks on email servers (lien direct) |
NSA says Russia's military hackers have been attacking Exim email servers to plant backdoors since August 2019. |
|
|
|
|
2020-05-28 04:20:05 |
All the security features added in the Windows 10 May 2020 update (lien direct) |
Windows 10 v2004 comes with Windows Sandbox improvements, WiFi 6, WPA3, and Windows Hello in Safe Mode. |
|
|
|
|
2020-05-28 04:00:05 |
Valak targets Microsoft Exchange servers to steal enterprise data (lien direct) |
The malware has been “dramatically changed” in the past six months. |
Malware
|
|
|
|
2020-05-28 01:53:09 |
Michigan State University hit by ransomware gang (lien direct) |
The operators of the NetWalker ransomware gang have given MSU officials seven days to pay the ransom or they will leak stolen university files. |
Ransomware
|
|
|
|
2020-05-27 21:43:00 |
Google highlights Indian \'hack-for-hire\' companies in new TAG report (lien direct) |
Google also discloses seven coordinated political influence campaigns that took place on its platforms during Q1 2020. |
|
|
|
|
2020-05-27 16:58:00 |
Microsoft warns about attacks with the PonyFinal ransomware (lien direct) |
PonyFinal infections have been reported in India, Iran, and the US. |
Ransomware
|
|
|
|
2020-05-27 14:45:36 |
OpenSSH to deprecate SHA-1 logins due to security risk (lien direct) |
Breaking a SHA-1-generated SSH authentication key now costs roughly $50,000, putting high-profile remote servers at risk of attacks. |
|
|
|
|
2020-05-27 11:23:43 |
New fuzzing tool finds 26 USB bugs in Linux, Windows, macOS, and FreeBSD (lien direct) |
Eighteen of the 26 bugs impact Linux. Eleven have been patched already. |
Tool
|
|
|
|
2020-05-27 00:55:00 |
26 million LiveJournal credentials leaked online, sold on the dark web (lien direct) |
LiveJournal credentials were obtained in a 2014 hack, but leaked online earlier this month. |
|
|
|
|
2020-05-26 15:18:26 |
Qihoo & Baidu disrupt malware botnet with hundreds of thousands of victims (lien direct) |
There's malware in China, too. Meet DoubleGuns, one of China's largest malware botnets. |
Malware
|
|
|
|
2020-05-26 12:01:08 |
Europol, Capgemini team up in cybercrime prevention, awareness campaigns (lien direct) |
Capgemini is now also supporting the No More Ransom Project. |
|
|
|
|
2020-05-26 11:26:56 |
Forescout files lawsuit against Advent for withdrawal of merger plans due to COVID-19 (lien direct) |
Advent says the pandemic has resulted in “material” changes at Forescout. The company disagrees. |
|
|
|
|
2020-05-26 10:38:01 |
EasyJet faces £18 billion class-action lawsuit over data breach (lien direct) |
The lawsuit aims to secure up to £2,000 per impacted customer. |
Data Breach
|
|
|
|
2020-05-26 09:30:05 |
Turla hacker group steals antivirus logs to see if its malware was detected (lien direct) |
Turla, one of Russia's most advanced hacker groups, has created malware that gets its orders from email attachments sent to an arbitrary Gmail inbox. |
Malware
|
|
|
|
2020-05-25 21:28:05 |
RangeAmp attacks can take down websites and CDN servers (lien direct) |
Twelve of thirteen CDN providers said they fixed or planned to fix the problem. |
|
|
|
|
2020-05-25 14:33:16 |
Thousands of enterprise systems infected by new Blue Mockingbird malware gang (lien direct) |
Hackers are exploiting a dangerous and hard to patch vulnerability to go after enterprise servers. |
Malware
Vulnerability
|
|
|
|
2020-05-24 10:52:55 |
New Unc0ver jailbreak released, works on all recent iOS versions (lien direct) |
New "Unc0ver" jailbreak unlocks devices, even those running the current iOS 13.5 release. |
|
|
|
|
2020-05-23 06:00:05 |
Chrome: 70% of all security bugs are memory safety issues (lien direct) |
Google software engineers are looking into ways of eliminating memory management-related bugs from Chrome. |
|
|
|
|
2020-05-22 16:45:00 |
25 million user records leak online from popular math app Mathway (lien direct) |
The Mathway user data has been previously on sale on the dark web, hacker forums, and Telegram channels for the past two weeks. |
|
|
|
|
2020-05-22 14:50:38 |
Windows malware opens RDP ports on PCs for future remote access (lien direct) |
Security experts believe the malware's operators are very likely to sell access to infected hosts to other hacker groups. |
Malware
|
|
|
|
2020-05-22 12:21:19 |
Privilege escalation vulnerability patched in Docker Desktop for Windows (lien direct) |
The security flaw could be used to trick the service into connecting to malicious processes. |
Vulnerability
|
|
|
|
2020-05-22 11:05:47 |
Silent Night Zeus financial botnet sold in underground forums (lien direct) |
The botnet is being spread through the RIG exploit kit and COVID-19 spam campaigns. |
Spam
|
|
|
|
2020-05-22 00:49:27 |
Ransomware deploys virtual machines to hide itself from antivirus software (lien direct) |
The operators of the RagnarLocker ransomware are running Oracle VirtualBox to hide their presence on infected computers inside a Windows XP virtual machine. |
Ransomware
|
|
|
|
2020-05-21 21:22:00 |
New \'Spectra\' attack breaks the separation between Wi-Fi and Bluetooth (lien direct) |
Technical details to be presented in August at the Black Hat 2020 security conference. |
|
|
|
|
2020-05-21 18:40:00 |
RSA Conference moves 2021 event from February to May (lien direct) |
RSA plays it safe for 2021 after ignoring COVID-19 warnings earlier this year and getting at least two attendees infected. |
|
|
|
|
2020-05-21 17:03:00 |
Hackers tried (and failed) to install ransomware using a zero-day in Sophos firewalls (lien direct) |
Sophos acted quickly to put out a patch that stopped the hackers' attempts to deploy ransomware on enterprise networks protected by Sophos firewall devices. |
Ransomware
|
|
|
|
2020-05-21 11:38:02 |
Thousands of Israeli sites defaced with code seeking permission to access users\' webcams (lien direct) |
The hacks have been linked back to a local Israeli WordPress hosting provider. |
|
|
|
|
2020-05-21 11:21:41 |
Japan investigates potential leak of prototype missile data in Mitsubishi hack (lien direct) |
The country is analyzing how such a leak could impact national security. |
Hack
|
|
|
|
2020-05-21 09:30:04 |
Video game developers under siege by cyberattacks seeking to plunder in-game cash (lien direct) |
The Winnti Group is targeting gaming vendors once more with a new backdoor. |
|
|
|
|
2020-05-21 03:57:35 |
BlockFi discloses failed hack attempt after SIM swapping incident (lien direct) |
BlockFi says a hacker SIM swapped an employee to gain access to its platform, but the hacker failed in their attempt to steal BlockFi customer funds. |
Hack
|
|
|
|
2020-05-20 23:07:17 |
Hacker selling 40 million user records from popular Wishbone app (lien direct) |
Seller claims the data was obtained following a hack that took place earlier this year. |
Hack
|
|
★★★
|