Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2020-04-18 11:56:09 |
FBI says cybercrime reports quadrupled during COVID-19 pandemic (lien direct) |
FBI official also says foreign hackers targeted andCOVID-19 research |
|
|
|
|
2020-04-18 06:30:08 |
(Déjà vu) German government loses tens of millions of euros in COVID-19 phishing attack (lien direct) |
German state of North Rhine-Westphalia failed to put in place a citizen verification procedure and allowed fraudsters to steal millions of euros. |
|
|
|
|
2020-04-18 06:30:00 |
German government might have lost tens of millions of euros in COVID-19 phishing attack (lien direct) |
German state of North Rhine-Westphalia failed to put in place a citizen verification procedure and allowed fraudsters to steal millions of euros. |
|
|
|
|
2020-04-17 23:02:00 |
Details of 20 million Aptoide app store users leaked on hacking forum (lien direct) |
Hacker claims to be in possession of 39 million Aptoide user records. Leaks 20 million today. |
|
|
|
|
2020-04-17 12:52:50 |
DHS CISA: Companies are getting hacked even after patching Pulse Secure VPNs (lien direct) |
Hackers compromised Pulse Secure VPNs, stole AD credentials, and are now using the stolen passwords to access internal networks even after companies patched their VPN servers. |
Patching
|
|
|
|
2020-04-17 11:55:36 |
PoetRAT Trojan targets energy sector using coronavirus lures (lien direct) |
Wind turbine operators are the focus of a new data-stealing campaign. |
|
|
|
|
2020-04-17 10:24:47 |
Facebook will now warn you if you\'ve interacted with fake, dangerous coronavirus posts (lien direct) |
The fight against COVID-19 scams, misinformation, and fake cures continues. |
|
|
|
|
2020-04-17 09:57:50 |
Clipboard hijacking malware found in 725 Ruby libraries (lien direct) |
The malware would replace Bitcoin addresses copied to the clipboard with one controlled by the attacker. |
Malware
|
|
|
|
2020-04-17 04:20:04 |
Academics steal data from air-gapped systems using PC fan vibrations (lien direct) |
Israeli researchers use vibrations from CPU, GPU, or PC chassis fans to broadcast stolen information through solid materials and to nearby receives, breaking air-gapped system protections. |
|
|
|
|
2020-04-16 16:49:13 |
Linksys asks users to reset passwords after hackers hijacked home routers last month (lien direct) |
Linksys locks Smart WiFi cloud accounts and asks users to reset passwords after hackers hijacked routers to redirect traffic to malware sites. |
Malware
|
|
|
|
2020-04-16 13:38:53 |
Kernel vulnerabilities in Android devices using Qualcomm chips explored (lien direct) |
The security flaws that allowed attackers to achieve root capabilities on handsets have now been described in detail. |
|
|
|
|
2020-04-16 13:00:00 |
ICEBUCKET group mimicked smart TVs to steal ad money (lien direct) |
White Ops: The ICEBUCKET operation is the largest case of SSAI spoofing that has been uncovered to date. |
|
|
|
|
2020-04-16 11:56:00 |
SentinelOne researcher trolled in new MBRLocker ransomware campaign (lien direct) |
Malware was released using the researcher's name as author, alongside his contact details. |
Ransomware
Malware
|
|
|
|
2020-04-16 10:11:49 |
Zoom to revamp bug bounty program, bring in more security experts (lien direct) |
Zoom brings in Luta Security to reboot bug bounty program. |
|
|
|
|
2020-04-16 09:04:57 |
Zoom-bombing disrupted a House Oversight Committee meeting (lien direct) |
Zoom-bombing has now disrupted a meeting at the highest level of the US government. |
|
|
|
|
2020-04-15 22:49:16 |
Wappalyzer discloses security breach after hacker starts emailing users (lien direct) |
Wappalyzer tells ZDNet that only 16,000 users have been impacted in the incident. |
|
|
|
|
2020-04-15 18:01:18 |
US offers $5 million reward for information on North Korean hackers (lien direct) |
US says North Korean hackers pose a significant threat to the integrity and stability of the international financial system. |
Threat
|
|
|
|
2020-04-15 13:03:42 |
Rapid7 launches AttackerKB, a service for crowdsourcing vulnerability assessments (lien direct) |
AttackerKB portal enters public beta. |
Vulnerability
|
|
|
|
2020-04-15 13:00:07 |
New tool detects AWS intrusions where hackers abuse self-replicating tokens (lien direct) |
New SkyWrapper tool generates Excel spreadsheets so AWS account owners can easily spot compromised tokens. |
Tool
|
|
|
|
2020-04-15 09:50:00 |
Nemty ransomware operation shuts down (lien direct) |
Another ransomware operation bites the dust. Good riddance! |
Ransomware
|
|
|
|
2020-04-15 09:00:04 |
Phishing kit prices skyrocketed in 2019 by 149% (lien direct) |
The average price for a phishing kit in 2019 was $304, up from $122 recorded in 2018. |
|
|
|
|
2020-04-14 22:23:23 |
Microsoft opens AccountGuard to healthcare providers on the COVID-19 front lines (lien direct) |
Microsoft says the service will remain free for all healthcare organizations "until the COVID-19 pandemic subsides." |
|
|
|
|
2020-04-14 18:59:32 |
(Déjà vu) Microsoft April 2020 Patch Tuesday comes with fixes for four zero-days (lien direct) |
Microsoft fixes another 113 bugs this month after patching a whopping 115 last month. |
Patching
|
|
|
|
2020-04-14 18:59:00 |
Microsoft April 2020 Patch Tuesday comes with fixes for three zero-days (lien direct) |
Microsoft fixes another 113 bugs this month after patching a whopping 115 last month. |
Patching
|
|
|
|
2020-04-14 18:00:07 |
Exclusive: Google removes 49 Chrome extensions caught stealing crypto-wallet keys (lien direct) |
The Chrome extensions were mimicking cryptocurrency wallet apps like Ledger, MyEtherWallet, Trezor, Electrum, and others, but, in reality, they were stealing users' private keys and mnemonic phrases. |
|
|
|
|
2020-04-14 13:46:46 |
Russian state hackers behind San Francisco airport hack (lien direct) |
ESET says a Russian hacker group known as Energetic Bear (DragonFly) is behind a hack of two of the airport's websites. |
Hack
|
|
|
|
2020-04-14 12:49:00 |
Zoom security: Your meetings will be safe and secure if you do these 10 things (lien direct) |
Is Zoom video conferencing safe to use or isn't it? That all depends on how well you follow these best practices. |
|
|
|
|
2020-04-14 06:54:48 |
Account details for 4 million Quidd users shared on hacking forum (lien direct) |
Users of Quidd, an online marketplace for trading stickers, cards, toys, and other collectibles, are advised to change account passwords as soon as possible. |
|
|
|
|
2020-04-13 16:28:17 |
Dell releases new tool to detect BIOS attacks (lien direct) |
Dell makes new tool named SafeBIOS Events & Indicators of Attack available for download for all Dell commercial PCs. |
Tool
|
|
|
|
2020-04-10 17:52:25 |
Dutch police take down 15 DDoS services in a week (lien direct) |
Dutch authorities launch sudden strike against DDoS-for-hire operators; take down 15 sites in a week. |
|
|
|
|
2020-04-10 15:16:15 |
Gambling company to set aside $30 million to deal with cyber-attack fallout (lien direct) |
In the middle of a merger, SBTech will have $30 million placed in escrow to deal with the repercussions of a suspected ransomware infection. |
Ransomware
|
|
|
|
2020-04-10 10:04:43 |
SEC settles with two suspects in EDGAR hacking case (lien direct) |
Hacker directly responsible for the hack is still at large, though. |
Hack
|
|
|
|
2020-04-09 21:14:15 |
Senator calls on FTC to create guidelines for video teleconferencing software (lien direct) |
Senator says online conferencing software needs to be regulated and follow basic privacy and security rules. |
|
|
|
|
2020-04-09 17:56:11 |
(Déjà vu) US Senate, German government tell employees not to use Zoom (lien direct) |
The two organizations now join a list that also includes the Taiwanese government, the Australian government, SpaceX, Google, and New York state area schools. |
|
|
|
|
2020-04-09 17:56:00 |
US Senate, German government tell staff not to use Zoom (lien direct) |
The two organizations now join a list that also includes the Taiwanese government, the Australian government, SpaceX, Google, and New York state area schools. |
|
|
|
|
2020-04-09 13:00:04 |
Bugcrowd vulnerability bounty platform snags $30 million in fresh funding round (lien direct) |
The Series D round capitalizes on enterprise booking growth of 100%. |
Vulnerability
|
|
|
|
2020-04-09 12:55:04 |
(Déjà vu) Fleeceware apps discovered on the iOS App Store (lien direct) |
More than 3.5 million iOS users installed 'fleeceware' apps from the Apple App Store. |
|
|
|
|
2020-04-09 11:21:00 |
Bisq Bitcoin exchange slams on the brakes after exploit of critical security flaw, crypto theft (lien direct) |
Over $250,000 in cryptocurrency has been stolen from users. |
|
|
|
|
2020-04-09 07:46:32 |
Cloudflare dumps reCAPTCHA as Google intends to charge for its use (lien direct) |
Cloudflare says its moving to hCaptcha, an alternative CAPTCHA service, more private than reCAPTCHA. |
|
|
|
|
2020-04-09 05:12:46 |
Zoom removes meeting IDs from app title bar to improve privacy (lien direct) |
Zoom app won't show meeting ID in the title bar going forward to avoid accidental leaks and Zoom-bombing disruptions. |
|
|
|
|
2020-04-08 18:31:37 |
Microsoft: Under 2% of all daily malspam uses COVID-19 lures (lien direct) |
Malicious email campaigns have not increased due to COVID-19. Attackers merely changed lures. |
|
|
|
|
2020-04-08 13:33:03 |
Former Facebook CSO Alex Stamos to join Zoom as outside security consultant (lien direct) |
Zoom also announces the creation of a CISO Council and Advisory Board to help its CEO through the current security and user privacy-related issues. |
|
|
|
|
2020-04-08 13:00:07 |
Can fingerprint authentication on smartphones be fooled with 3D printing? Researchers find out (lien direct) |
Extensive tests of optical, capacitance, and ultrasonic sensors have revealed interesting bypass rates. |
|
|
|
|
2020-04-08 11:42:36 |
This is why the vicious xHelper malware resists factory wipes and reboots (lien direct) |
The malware is a prime example of why you should not download apps from third-party sources. |
Malware
|
|
|
|
2020-04-08 08:00:04 |
Dark_nexus botnet outstrips other malware with new, potent features (lien direct) |
Researchers have found a botnet that borrows from Qbot and Mirai but goes much further in terms of power. |
Malware
|
|
|
|
2020-04-08 07:57:00 |
Tails, the security-focused OS, adds support for Secure Boot (lien direct) |
Tails, an OS recommended by Edward Snowden, is now capable of booting on systems where UEFI Secure Boot is enabled. |
|
|
|
|
2020-04-08 04:58:00 |
Microsoft to add DANE and DNSSEC support to Exchange Online servers (lien direct) |
Support for both protocols to roll out in two phases, with the last completing by the end of 2021. |
|
|
|
|
2020-04-07 19:38:25 |
Chrome 81 released with initial support for the Web NFC standard (lien direct) |
Chrome 81 was initially scheduled for release on March 17, but delayed to today due to the COVID-19 outbreak. |
|
|
|
|
2020-04-07 18:16:00 |
Google backs Apple\'s SMS OTP standard proposal (lien direct) |
Apple's proposal to standardize the format of SMS OTPs (one-time passcodes) moves to the WICG. |
|
|
|
|
2020-04-07 09:16:35 |
Europol arrests man for coronavirus business email scam peddling masks, sanitizer (lien direct) |
European police continue to fight criminal activity linked to the spread of COVID-19. |
|
|
|