What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2023-01-11 14:13:11 | Kinsing Malware Hits Kubernetes Clusters By Flawed PostgreSQL (lien direct) | As of late, Kubernetes clusters have been actively breached by the Kinsing malware, which exploits vulnerabilities in container images and misconfigured, exposed PostgreSQL containers. While not new, the Defender for Cloud team at Microsoft has noticed a spike in recent months, suggesting that the threat actors are increasingly focusing on narrow access points. Kinsing is […] | Malware Threat | Uber | ★★ |
|
2022-12-13 20:32:46 | Tequivity Cloud Server Compromise Leads to Uber Breached, Experts Reacted (lien direct) | Uber experienced yet another prominent data breach that exposed private employee and business information. This time, attackers gained access to the company through a Tequivity cloud server that was used by Amazon Web Services (AWS), which gives Uber asset management and tracking services. The incident was initially reported by the New York Times. The hacker […] | Data Breach | Uber Uber | ★★★ |
|
2022-09-08 14:18:20 | Uber\'s Ex-security Officer Facing Criminal Charges After Data Breach (lien direct) | It has been reported that Uber's former security officer, Joe Sullivan, is standing trial this week in what is believed to be the first case of an executive facing criminal charges in relation to a data breach. The US district court in San Francisco will start hearing arguments on whether Sullivan, the former head of security at the […] | Data Breach | Uber | |
|
2022-07-26 11:34:02 | Uber Admits Covering Up 2016 Data Breach That Exposed 57M Users\' Data (lien direct) | Uber has admitted to covering up a massive cybersecurity attack that took place in October 2016, exposing the confidential data of 57 million customers and drivers, as part of a settlement with the US Department of Justice in order to avoid prosecution. More on the story here: https://www.theverge.com/2022/7/25/23277161/uber-2016-data-breach-settlement-cover-up | Data Breach | Uber Uber | |
|
2022-06-29 16:10:18 | Kubernetes API: Over 900,000 Exposures Found Across The Internet (lien direct) | Cyble Research Labs observed over 900,000 Kubernetes exposures across the internet. … it emphasizes the existence of seemingly simple misconfiguration practices that might make companies lucrative targets for TAs in the future. Kubernetes, often known as K8s, is an open-source system for automating containerized application deployment, scaling, and administration. K8s incorporates virtual and real machines […] | Uber | ||
|
2022-06-20 22:05:15 | Why 93% Of Kubernetes Users Struggle With Security (lien direct) | Following the news that: 93% of Kubernetes users struggle with security 2022 state of Kubernetes security report (redhat.com) | Uber | ||
|
2022-06-08 12:08:30 | Google Ordered To Pay Australian Politician Over Defamatory Youtube Videos (lien direct) | An Australian court on Monday ordered Google to pay a former lawmaker A$715,000 ($515,000), saying its refusal to remove a YouTuber’s “relentless, racist, vilificatory, abusive and defamatory” videos drove him out of politics. More on the story here: Google ordered to pay Australian politician over defamatory YouTube videos | Uber | ||
|
2022-04-21 19:54:06 | Cybercriminals Are Shifting Their Gaze To Kubernetes (lien direct) | Cybercriminals are now using a more varied arsenal of attack methods to target cloud environments, including shifting focus from Docker to Kubernetes. These findings were revealed in recent research from Aqua Security, which discovered that attackers are increasingly utilising cryptominers, backdoors, rootkits and credential stealers to infiltrate cloud environments. | Uber | ||
|
2022-02-17 13:29:28 | Google Almost Doubles Linux Kernel, Kubernetes Zero-day Rewards (lien direct) | Google says it’s paying researchers for reporting vulnerabilities in its latest operating systems, including Google Kubernetes Engine (GKE), and that it’s offering bigger bonuses to those who report zero-day bugs and exploits. Google says it increased rewards to match the community’s expectations, but also that “because we consider the program a success,” they’re extending the […] | Uber | ||
|
2021-06-08 12:07:44 | New Kubernetes Malware Backdoors Clusters Via Windows Containers, Expert Weighs In (lien direct) | BACKGROUND: A new malware designed to compromise Kubernetes and create backdoors into businesses. This new malware has been active for more than a year and is compromising Windows containers to… | Malware | Uber | |
|
2021-06-04 10:00:59 | Experts React: White House Open Letter To Companies Re Ransomware (lien direct) | BACKGROUND: Anne Neuberger, Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technology, has issued an open letter to corporate executives and business leaders on… | Ransomware Guideline | Uber | |
|
2021-02-10 13:12:44 | Microsoft, Uber And Tesla Amongst Tech Companies Vulnerable To New Automated Supply Chain Attack – Expert Insight (lien direct) | A novel form of software supply chain attack has been uncovered by ethical hacker Alex Birsan, who managed to breach the systems of over 35 major tech companies, including Microsoft,… | Uber Uber | ||
|
2021-02-05 18:53:56 | New Malware Hijacks Kubernetes Clusters To Mine Monero – Experts Insight (lien direct) | Yesterday researchers from Palo Alto Networks' Unit 42 published their discovery of a never-before-seen malware, dubbed Hildegard, that is being used by the TeamTNT threat group to target Kubernetes clusters.… | Malware Threat | Uber | ★★★★ |
|
2020-12-02 12:20:16 | Expert Insight: Docker Malware Is Now Common – Devs Need To React Accordingly (lien direct) | Towards the end of 2017, there was a major shift in the malware scene. As cloud-based technologies became more popular, cybercrime gangs began targeting Docker and Kubernetes systems. Most of… The ISBuzz Post: This Post Expert Insight: Docker Malware Is Now Common – Devs Need To React Accordingly | Malware | Uber | |
|
2020-08-24 15:21:46 | Former Uber Security Chief Charged With Paying Hush Money To Cover Up 2016 Hack (lien direct) | As reported by The Verge, Uber's former security chief has been charged with obstruction of justice for trying to hide a data breach from the Federal Trade Commission and Uber management, according to a statement from the Department of Justice. Joseph Sullivan, who was Uber's chief security officer from April 2015 to November 2017, allegedly concealed … The ISBuzz Post: This Post Former Uber Security Chief Charged With Paying Hush Money To Cover Up 2016 Hack | Data Breach Hack | Uber | |
|
2020-08-24 03:38:10 | Expert Commentary: Uber Covers-up Ransom Payment For PII Of 57M Drivers (lien direct) | Today, the Department of Justice issued a release disclosing the charges of Former Uber CISO Joseph Sullivan. The charges result from Sullivan's attempt to cover up paying out a ransom, requested by malicious hackers after obtaining access to and downloading Uber's database containing personally identifying information associated with approximately 57 million Uber users and drivers, in the … The ISBuzz Post: This Post Expert Commentary: Uber Covers-up Ransom Payment For PII Of 57M Drivers | Uber | ||
|
2020-07-23 07:46:55 | Twilio\'s SDK Compromised by Attackers – Expert Reaction (lien direct) | Twilio, a cloud communications platform as a service (CPaaS) company, disclosed that attackers compromised its TaskRouter JS SDK after gaining access to one of its misconfigured Amazon AWS S3 buckets. This left the SDK’s path publicly readable and writable since 2015. Twilio's customers include Twitter, Netflix, Uber, Shopify, Morgan Stanley, Airbnb, and others. The ISBuzz Post: This Post Twilio’s SDK Compromised by Attackers – Expert Reaction | Uber | ||
|
2020-05-04 14:50:47 | Cracking The Code To Balance Kubernetes Security With Operational Pace (lien direct) | Kubernetes is fast becoming a cornerstone technology for organisational agility, development speed, and business growth. While it was quickly adopted by major technology companies like Spotify and IBM, its deployment is now widespread across a diverse range of organisations including Goldman Sachs, Nokia, Adidas, and the UK's Home Office. As companies continue the drive to digital … The ISBuzz Post: This Post Cracking The Code To Balance Kubernetes Security With Operational Pace | Uber | ||
|
2020-04-30 14:34:09 | What Are The Top 5 Kubernetes Security Challenges And Risks? (lien direct) | Software containers have become more popular in recent years as many organizations have discovered the benefits of containerization. Kubernetes is the most widely used container orchestrator in the market, and Kubernetes adoption – especially in production environments – is taking off. According to Gartner, “by 2022, more than 75% of global organizations will be running … The ISBuzz Post: This Post What Are The Top 5 Kubernetes Security Challenges And Risks? | Uber | ||
|
2020-04-26 19:35:37 | Why Kubernetes Needs More Network Visibility And Protection (lien direct) | Kubernetes' popularity has skyrocketed. In 2018, Forrester declared it the victor in the “war for container orchestration dominance”. However, a 2019 Gartner report highlights both the immaturity of the container ecosystem and a general lack of operational best practice. Another issue is that Kubernetes adoption can significantly increase both internal application and associated management-related traffic. … The ISBuzz Post: This Post Why Kubernetes Needs More Network Visibility And Protection | Uber | ||
|
2019-09-12 13:27:01 | Uber Account Takeover Vulnerability Discovered (lien direct) | According to this link, https://www.forbes.com/sites/daveywinder/2019/09/12/uber-confirms-account-takeover-vulnerability-found-by-forbes-30-under-30-honoree/#16085ecf9b87, a security vulnerability has been discovered that could allow attackers to compromise and control any Uber account. The vulnerability could be exploited to track a user's location and take rides from their account via an application programming interface (API) request This involved first acquiring the user universally unique identifier (UUID) of … The ISBuzz Post: This Post Uber Account Takeover Vulnerability Discovered | Vulnerability | Uber | |
|
2019-08-01 17:15:05 | Practicing Safe Containerisation (lien direct) | Everyone knows that Kubernetes has won the container wars. Except what Kubernetes has won is the container runtime wars. You see, the container image war was won by Docker. That can be seen in the statistic that more than 1 billion Docker containers are downloaded every two weeks according to the State of Open Source Security Report 2019. … The ISBuzz Post: This Post Practicing Safe Containerisation | Uber | ||
|
2019-02-13 23:30:05 | New Container Runtime Security Flaw Targets Kubernetes, Docker (lien direct) | It has been reported that a security vulnerability in Docker and Kubernetes containers can be used to go after any host system running containers. The vulnerability allows malicious containers to overwrite the host and gain root-level code execution on the host machine. Tim Mackey, Technical Evangelist at Synopsys: “With the disclosure of CVE-2019-5736, the topic … The ISBuzz Post: This Post New Container Runtime Security Flaw Targets Kubernetes, Docker | Vulnerability | Uber | |
|
2019-01-31 21:45:02 | YouTube Impersonation Scam Tricks 70,000 (lien direct) | In light of the news that around 70,000 people have been tricked by a scam that encourages users to click on malicious links by personating popular YouTubers. Don't be fooled: Scammers are pretending to be top YouTube stars and offering 'gifts' (GOOG, GOOGL) A YouTube scam reported this week is upholding the age-old adage -if … The ISBuzz Post: This Post YouTube Impersonation Scam Tricks 70,000 | Uber | ||
|
2018-12-05 18:38:00 | Kubernetes Security Flaw Could Enable Remote Hacking (lien direct) | It has been reported that a severe vulnerability in Kubernetes, the popular, open-source software for managing Linux applications deployed within containers, could allow an attacker to remotely steal data or crash production applications. Andrew van der Stock, Senior Principal Consultant at Synopsys: “APIs make the friction of doing business much less. We expect to see continued explosive growth of APIs … The ISBuzz Post: This Post Kubernetes Security Flaw Could Enable Remote Hacking | Vulnerability | Uber | |
|
2018-11-28 12:45:04 | Expert Commentary: Uber Breach (lien direct) | Following the announcement that Uber has been fined £385,000 by the ICO over ‘a series of avoidable data security flaws’ which allowed hackers to collect sensitive information on 2.7 million customers, IT security experts commented below. Rich Campagna, CMO at Bitglass: “This fine shows that even the most prominent public organisations need to pay more attention to data security … The ISBuzz Post: This Post Expert Commentary: Uber Breach | Uber | ||
|
2018-05-11 23:21:04 | Uber To Resume Tests With Self-Driving Cars, Just A Few Months After Fatal Crash (lien direct) | The ISBuzz Post: This Post Uber To Resume Tests With Self-Driving Cars, Just A Few Months After Fatal Crash | Uber | ||
|
2018-01-23 21:00:52 | Security Flaw Ignored By Uber That Renders “ (lien direct) | The ISBuzz Post: This Post Security Flaw Ignored By Uber That Renders “ | Uber | ||
|
2017-12-12 21:00:09 | How Not To Uber Your Data Breach: A Guide For Handling A Cyber-Attack (lien direct) | The ISBuzz Post: This Post How Not To Uber Your Data Breach: A Guide For Handling A Cyber-Attack | Uber | ||
|
2017-12-06 21:00:11 | STEALTHbits re PayPal\'s Discovery Of TIO Data Breach (Contrasting With Uber) (lien direct) | The ISBuzz Post: This Post STEALTHbits re PayPal’s Discovery Of TIO Data Breach (Contrasting With Uber) | Uber | ||
|
2017-11-30 19:00:40 | Uber Reveals 2.7 Million British Users Hit By Data Breach (lien direct) | The ISBuzz Post: This Post Uber Reveals 2.7 Million British Users Hit By Data Breach | Uber | ||
|
2017-11-22 23:03:43 | Uber Hack (lien direct) | The ISBuzz Post: This Post Uber Hack | Uber | ||
|
2017-08-21 11:00:16 | Uber Agrees To 20 Years Of Privacy Audits After FTC Says It \'Failed Consumers\' (lien direct) | The ISBuzz Post: This Post Uber Agrees To 20 Years Of Privacy Audits After FTC Says It ‘Failed Consumers’ | Uber |
1
We have: 33 articles.
We have: 33 articles.
To see everything:
Our RSS (filtrered)
