What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-02-12 11:19:25 | Airport facial recognition scanners didn\'t find a single imposter in 2020 (lien direct) | The US Customs and Border Protection (CBP) used facial recognition scanners in order to monitor the arrivals and departures of more than 23 million travellers at over 30 different entry points in 2020. However, these systems failed to detect a single example of an imposter. The US CBP agency revealed these statistics in their annual […] | |||
|
2021-02-11 14:41:09 | Hack of Florida water plant shows vulnerability of critical national infrastructure (lien direct) | On Monday, officials in Florida announced that hackers came scarily close to poisoning the city of Oldsmar by changing the chemical levels during a breach of the computer system at the local water treatment plant. It was a wake-up call, said Pinellas County Sheriff Bob Gualtieri. “Water systems, like other public utility systems, are part […] | Vulnerability | ★★★ | |
|
2021-02-11 11:54:04 | New Myanmar junta cyber bill violates rights (lien direct) | On Wednesday Myanmar announced its new proposed cyber-security laws, allowing it to ban content it dislikes, restrict internet providers and intercept data. The proposal outline contains 36 pages, which were given to mobile operators and telecoms license holders for comment. However, spokespeople for the government or the telecommunications ministry were unavailable for comment. The document […] | |||
|
2021-02-11 11:32:13 | Europol assisted in arrest of 10 Hackers (lien direct) | On Wednesday, the European police agency, Europol, announced that it had assisted in the arrest of 10 hackers. The 10 individuals are being accused of stealing $100 million in cryptocurrency using “SIM-swapping” attacks. This type of attack allows criminals to gain access to their victims’ phones, by tricking the phone company into deactivating a working […] | |||
|
2021-02-10 18:30:49 | Cyber start-ups to showcase the innovative security solutions of tomorrow (lien direct) | Digital Infrastructure Minister, Matt Warman to deliver keynote at cyber innovation demo day Cyber solutions on show include security applications for people with disabilities and maritime cyber risk assessment Applications for 2021/22 accelerator programme now open The CyberASAP Demo Day on 18 February provides an opportunity to preview a promising pipeline of cyber security products […] | |||
|
2021-02-10 16:48:33 | Researcher manages to hack into 35 tech firms (lien direct) | Security researcher, Alex Birsan had an idea last year while working with Justin Gardner, another researcher. This idea led to him being able to gain access to over 35 major tech companies’ internal systems in a supply chain attack. Among these were Microsoft, Apple, Netflix and Uber. This particular supply chain attack is so sophisticated, […] | Hack | Uber | |
|
2021-02-09 11:54:54 | Iranian surveillance operations targeting dissidents (lien direct) | According to a leading cyber-security company, Iran is targeting dissidents in an effort to install spyware on their PC and mobile devices. More than 1,000 individuals were affected. The spyware was being used to steal call recordings and media files. One of the groups is known as Domestic Kitten or APT-50, which allegedly tricked people […] | Guideline | ||
|
2021-02-09 11:34:17 | Florida drinking water levels modified by hacker (lien direct) | On Friday a hacker accessed the water treatment computer systems for the city of Oldsmar, Florida, and altered the chemical levels of the water to a dangerous level. News of the attacks was only publicised on 8th February, after Oldsmar city officials held a press conference about the matter. It appears that the hacker first […] | |||
|
2021-02-08 16:53:28 | Novel Technique used for phishing attacks (lien direct) | Morse code, invented as a way of transmitting messages across telegraph wire, is being used by cybercriminals to hide malicious URLs within email attachments. This obfuscation technique was discovered last week, and so far there is no record of it being used in phishing attacks before. Numerous samples of the targeted attack have been uploaded […] | |||
|
2021-02-08 15:51:37 | US Patient records leaked on dark web (lien direct) | Leon Medical Centers and Nocona General Hospital suffered a ransomware attack in November, in which attackers stole tens of thousands of patient records. The attack was only officially announced in January. Among the records stolen were scanned diagnostics results and letters to insurers, which include personally identifiable information such as names, addresses and birthdates. The […] | Ransomware | ||
|
2021-02-08 13:01:12 | UK Cyber offensive targeted at Islamic State (lien direct) | The head of GCHQ spoke to Sky News about a secret cyber operation, targeting the Islamic State. The mission of this operation is to target the group’s ability to fly drones, meddle with their phones and affect their propaganda. General Sir Patrick Sanders has warned the UK, that social media is being used to sow […] | |||
|
2021-02-05 18:20:47 | Top 10 events and conferences in cyber (lien direct) | Knowing which events to go to can be a bit of a minefield and the pandemic hasn't helped matters. Remember when we could meet face-to-face and network? Seems like a long time ago. Despite this fact, the importance of conferences is vital for any industry and organisers are doing their upmost to ensure we are […] | |||
|
2021-02-05 16:31:54 | Google releases new version of Chrome Browser (lien direct) | Version 88.0.4324.150 of the Chrome browser was released today. The new version, compatible with Windows, Mac and Linux contains a bugfix for a zero-day vulnerability. The vulnerability was assigned the identifier CVE-2021-21148. Google described it as a “heap overflow” memory corruption bug, which was exploited in attacks before Mattias Buelens found and reported the issue […] | Vulnerability | ★★★★★ | |
|
2021-02-05 16:17:44 | Antifa Hackers expose KKK-affiliates (lien direct) | A group of antifa (anti-fascist) Israeli hackers broke into the website belonging to the Patriotic Brigade Knights, a white supremacist group allied to the Ku Klux Klan (KKK). The hackers published the names, photos and personal information of the members of the fascist group. They also replaced and added some personalised information to the website, […] | |||
|
2021-02-05 15:25:30 | Post-Pandemic Healthcare: the greatest challenges facing cyber professionals (lien direct) | Ransomware attacks and nation-state assaults on vaccine supply chains are only two of the many challenges healthcare cyber professionals have been hit with as a result of COVID-19. How were these challenges overcome? More importantly, though, what challenges are healthcare cyber professionals facing in a post-Pandemic world? The Israeli Economic and trade Missions in London […] | ★★ | ||
|
2021-02-05 15:25:13 | Phishing service provider \'SMS Bandit\' arrested in the UK (lien direct) | The UK's Metropolitan Police force has arrested a 20-year-old man from Birmingham for allegedly operating an online service that provided SMS phishing (or smishing) campaigns. Known in the cyber underworld as “SMS Bandit”, the phishing service would involve cybercriminals distributing fake SMS messages in high volumes to unsuspecting victims, pretending to be from reputable brand […] | ★★ | ||
|
2021-02-05 10:22:03 | Foxtons Group hack: database of stolen data for sale on the dark web (lien direct) | British estate agency Foxtons Group suffered a major data breach in October last year, which enabled attackers to exfiltrate a database of personal and financial information. The personal identifiable information was then uploaded on dark web forums, where evidence suggests it was accessed over 15,073 times. According to iNews, Foxtons Group was informed by the […] | Data Breach | ||
|
2021-02-04 14:32:37 | Kaspersky releases decryptor for Fonix Ransomware (lien direct) | Launched in June 2020, Fonix Ransomware (AKA Xinof and FonixCrypter) has begun to target an increased number of people. Just last Friday a Fonix ransomware Admin tweeted that they have ‘shut down the ransomware operation’. They also released the master decryption key. Fortunately, Kaspersky, multinational cybersecurity and anti-virus provider, also released a decryptor, which is […] | Ransomware | ||
|
2021-02-04 14:01:01 | Ransomware data accidentally destroyed (lien direct) | Q4 of 2020 saw a decline in ransomware victims paying to recover their data. This is a result of being able to recover their data from backups, even if hackers threaten to leak the data before encryption. However, Coveware has picked up on a ‘more insidious phenomenon’ in which data is being destroyed during the […] | Ransomware | ★★★★★ | |
|
2021-02-04 13:57:05 | Oxfam Australia database for sale on dark web (lien direct) | Last week, it had been reported that an Oxfam Australia customer database containing 1.7 million customers’ contact details and donor information was for sale on the dark web. Since this news came to light Oxfam Australia has launched an investigation into the data breach. Oxfam Australia is a charity which aims to alleviate poverty throughout […] | ★★ | ||
|
2021-02-04 13:34:27 | Critical bugs found in Realtek RTL8195A Wi-Fi module (lien direct) | Critical vulnerabilities have been found in one of Realtek’s most popular wifi modules, the Realtek RTL8195A wifi module. Analysis by the IoT security firm Vdoo, discovered that six major vulnerabilities exist in the wifi module. Realteks’s RTL8195A module is a low-powered, compact Wi-Fi module used for embedded devices. The module has supported software from a number […] | ★★★★★ | ||
|
2021-02-04 10:03:48 | (Déjà vu) 1.4 million Washington unemployment claimants affected by state auditor breach (lien direct) | On Monday, The Washington State Auditor Office disclosed that it had suffered a data breach that exposed the personal information of some 1.4 million employment claimants. It appears that the records became exposed in December, following a data breach of Accellion, a software provider used by the State Auditor Office for the transfer of large […] | Data Breach | ||
|
2021-02-03 16:45:48 | Return to base: the ultimate guide to preparing a COVID-19 exit strategy (lien direct) | While governments and public healthcare specialists are looking into the timing and manner of reopening the economy, it is clear that at some point in the hopefully not-too-distant future restrictions will be eased and businesses will return to normal operations. However, just as the shift to working from home required organisations to adapt and act […] | |||
|
2021-02-03 13:39:11 | Singapore: New contact tracing data bill (lien direct) | On Tuesday, Singapore passed the COVID-19 (Temporary Measures) (Amendment) Bill, under a Certificate of Urgency. This allows the government to introduce new legislations they deem to be urgent. This bill was passed as a result of public discontent after it was revealed that the police were able to access the country’s Trace Together contact tracing […] | |||
|
2021-02-03 13:07:52 | Happy Identity Theft Awareness Week (lien direct) | The 1.4 million reports of identity theft throughout 2020 highlights the need for awareness surrounding this crime. 2020’s surge in identity theft can actually be attributed to the nationwide dip in employment. Reportedly, cyber criminals targeted government funds meant for individuals and small businesses that were hard hit financially as a result of the COVID-19 […] | |||
|
2021-02-03 11:28:17 | One Identity introduces new cloud-based offerings to enable Zero Trust architectures (lien direct) | As the transition to remote working has forced many companies’ hands for increased or faster adoption of cloud services, One Identity has announced the availability of its new software-as-a-service (SaaS) identity governance and administration (IGA) and privileged access management (PAM) solutions. Based on the One Identity Security Platform and designed with the full IGA and […] | |||
|
2021-02-03 10:49:10 | Newspaper speculates Foxtons Group data breach (lien direct) | The i newspaper speculated that Foxtons Group has experienced a data breach, with thousands of customers’ personal and financial data leaked on the dark web. The exclusive news for i claims that Foxtons did not take action when they first found out in January that their customers’ data was available on the dark web following […] | Data Breach | ||
|
2021-02-03 10:01:52 | Nozomi Networks Tops 100% Revenue Growth (lien direct) | Nozomi Networks Inc., the leader in OT and IoT security, today announced record 2020 growth and tremendous momentum moving into 2021. As industrial and critical infrastructure cybersecurity threats made operational resilience a top priority for large enterprises around the world, the company experienced 110% growth in annual recurring revenue (ARR) and doubled its customer base […] | Guideline | ||
|
2021-02-02 15:17:21 | Data in a historic era: zero touch or zero trust (lien direct) | After a year of disruption, in which people and organisations relentlessly worked and innovated just to stay afloat, organisations realise that they cannot wait for “normalcy” before making progress. Cyber criminals, regulators, and competitors are already moving, so you cannot afford to wait. We can already declare 2021 a year to focus on cybersecurity and […] | |||
|
2021-02-02 11:57:59 | (Déjà vu) 1.6 million Washington unemployment claims exposed in data breach (lien direct) | The Office of the Washington State Auditor (SAO) has experienced a data breach which has resulted in the exposure of 1.6 million employment claims, and the sensitive personal information that they contain. The Washington SAO revealed that a threat actor had exploited a vulnerability in Accellion, a secure file transfer service that helps organisations share […] | Data Breach Vulnerability Threat | ||
|
2021-02-02 11:54:48 | (Déjà vu) Identity theft in US at all time high (lien direct) | The U.S. Federal Trade Commission (FTC) said today that the number of identity theft reports has doubled during 2020 when compared to 2019, reaching a record 1.4 million reports within a single year. The FTC claimed that: “After the government expanded unemployment benefits to people left jobless by the pandemic, cybercriminals filed unemployment claims using other […] | ★★★★★ | ||
|
2021-02-02 11:28:32 | Ransomware Gangs abusing VMWare ESXi (lien direct) | Ransomware gangs are exploiting the VMWare ESXi product to encrypt the virtual hard drives found in virtual machines. These attacks were first seen in October 2020, and have been linked to a criminal group that deployed the RansomExx ransomware. Evidence from multiple security researchers suggests that the hackers used CVE-2019-5544 and CVE-2020-3992. These are found […] | ★★★ | ||
|
2021-02-02 11:23:13 | Book Review: \'The Smartest Person in the Room: The Root Cause and New Solution for Cybersecurity\' By Christian Espinosa (lien direct) | Growing up was not easy for entrepreneur, Iron Man and author, Christian Espinosa. “I played football, but I was also smart, but I also liked heavy metal, so I felt out of place from each particular clique” Espinosa revealed reminiscing on his formative years. As a response to various socio-economic difficulties beyond control, Espinosa's mindset […] | ★★★ | ||
|
2021-02-02 11:18:46 | Greek police to use biometrics as part of \'Smart Policing\' project (lien direct) | Greek police are planning to introduce new devices into their force in order to allow real-time fingerprint scanning and facial recognition to help verify citizens identities. The introduction of this technology is part of Greece’s 4.5 million euro ‘Smart Policing’ initiative. The ‘Smart Policing’ project began in 2017 and aims to improve the identification process […] | ★★★★ | ||
|
2021-02-01 14:55:16 | (Déjà vu) Severe Bug in Libgcrypt Encryption Library (lien direct) | The flaw was discovered on January 28th by Travis Ormandy of Project Zero, which is a security research unti within Google. It was found in GNU Privacy Guard (GnuPG)’s Libgcrypt encryption software, and potentially allowed attackers to write arbitrary data to the target machine. This is a severe vulnerability, which could lead to remote code […] | Guideline | ★★ | |
|
2021-02-01 14:44:02 | UKRI falls Victim to Ransomware Attack (lien direct) | The UKRI announced this week that it feel victim to a cyberattack, which resulted in “data being encrypted by a third party.” Details are scarce, and it has not been reported who was behind the attack. The incident has been reported to the National Crime Agency, the National Cyber Security Centre and Information Commissioner’s Office. […] | Ransomware | ||
|
2021-02-01 13:16:44 | Florida Medicaid website hacked for the past 7 years (lien direct) | Florida Healthy Kids Corp, a children Medicaid health plan based in Tallahassee has discovered that it has been victim to a 7-year data breach. The health plan was first notified of the breach on 9th December 2020 and soon after launched an investigation into it. During the investigation, they found that there had been “significant […] | |||
|
2021-01-29 18:13:55 | Data Protection Day 2021, the view from the frontline (lien direct) | Robert Meyers, channels solutions architect and fellow of information privacy at One Identity: “2020 was a very tumultuous year and, in privacy, some good things happened, and some bad things happened. On the good side, we had the NIST Privacy Framework 1.0, and on the bad side, breach after breach, let alone things that […] | ★★ | ||
|
2021-01-29 13:49:51 | USCellular suffers data breach (lien direct) | USCellular has suffered a data breach due to hackers gaining access to their CRM. Once the hackers infiltrated the CRM they were then able to view customers’ accounts and personal data. USCellular stated in a data breach notification filed to the attorney general’s office in Vermont, that the retail store’s employees were victims of a […] | Data Breach | ★★ | |
|
2021-01-29 13:38:20 | \'Cyber Threats and Trends: Pandemic Style\' (lien direct) | A report published by Neustar, Inc., titled ‘Cyber Threats and Trends: Pandemic Style’, outlines any security risks companies were faced with throughout the COVID-19 pandemic. The report found a 154% increase in the number of cyber attacks between the years 2019 and 2020. There was particular growth in ransom related DDoS (RDDoS) attacks with a […] | ★★★ | ||
|
2021-01-29 13:36:26 | “Severe” Vulnerability found in Libgcrypt (lien direct) | A serious vulnerability has been found in the latest version of GNU Privacy Guard (GnuPG)‘s free encryption software cryptographic library, Libgcrypt 1.9.0. Libgcrypt is GnuPG’s general purpose cryptographic library GnuPG, but a number of other encryption software’s also employ it. Libgcrypt 1.9.0 was originally been released last week, on 19th January 2021, and was supposed […] | Vulnerability | ||
|
2021-01-29 12:25:41 | Stranded Australians\' Data “unintentionally” Shared (lien direct) | The Australian government admitted to unintentionally sharing sensitive passenger information with one of the department’s consular clients. This data breach occurred on January 24th, in which passenger’s full name, gender, date of birth, email address, passport details (number, expiry, issuing country), Australian citizenship status, phone number, current location, and flight booking reference of those booked […] | Data Breach | ||
|
2021-01-29 11:39:49 | Musings on Data Privacy Day (lien direct) | As always, the phrase makes you think. Data privacy has a day, for people to focus on it and think about the betterment of privacy. Should we call this something more relatable to people? Privacy is all about a person. Data doesn't need privacy. People and what is important to every one of them needs […] | |||
|
2021-01-28 17:49:09 | The White Hat Ball 2021 (lien direct) | We were fortunate enough to sit down with Martin Tyley, Head of UK Cyber, KPMG ahead of this year's annual White Hat Ball. Those with experience at White Hat events know that White Hat's charitable endeavours and KPMG's sponsorship are almost synonymous. Again, KPMG are this year's headline sponsor, as Tyley, and the whole of […] | ★★★★ | ||
|
2021-01-28 12:59:05 | Apple: New App Tracking Transparency (lien direct) | Apple has announced it will introduce a new privacy control feature in the spring. This new feature, known as App Tracking Transparency will prevent iPhone apps from secretly shadowing users. A general date has not yet been disclosed, but the new feature will likely be a part of an update that is planned to arrive […] | |||
|
2021-01-28 11:03:33 | How to stay safe while remote working this Data Privacy Day (lien direct) | As 2020 concluded, it was widely accepted that remote working was here to stay. In fact, 60% of the UK workforce have transferred to a remote model during the first lockdown, and the trend will likely continue long after the pandemic as workers come to expect more flexibility from their employers. However, while this may prompt office workers […] | ★★★★ | ||
|
2021-01-28 11:02:04 | Mozilla: Internet Ecosystem Becoming More Fragmented (lien direct) | Mozilla’s 2020 Internet Health Report deals with some key concerns that could potentially threaten the openness, security and accessibility of the Internet. Over the past year, the Internet has been riddled with problems related to “built-in” racial bias, creating a toxic environment in which discrimination and diversification are rampant. Mozilla believes that the Internet landscape […] | ★★★ | ||
|
2021-01-28 10:57:02 | New toolkit can build phishing pages in real-time (lien direct) | A new phishing tool kit has been developed by a cybercrime group which allows criminals to change text and logos in real-time on phishing pages in order to adapt to victims. The kit is called LogoKit, and according to it RiskIQ is has already been seen in use online. RiskIQ has said that the toolkit […] | Tool | ★★ | |
|
2021-01-28 10:22:31 | Grindr hit with $11.7m data privacy fine (lien direct) | Grindr, the worlds largest gay, bisexual and trans dating app has been hit with a large fine in Norway following an alleged breach of data privacy. Norway's Data Protection Authority (NDPA) announced on Tuesday that they are intending to fine Grindr $11.7m due to the app illegally disclosing user data to advertising firms. The dating app […] | ★★ | ||
|
2021-01-27 16:58:27 | TikTok bug could have exposed millions of users\' data (lien direct) | Research released on Tuesday revealed that a now-patched TikTok security flaw could have exposed millions of the app’s users and their associated phone numbers to attackers who could then use that data for malicious activity. The flaw only affected users who have their phone number linked to their accounts or use their phone numbers to […] |
To see everything:
Our RSS (filtrered)
