What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-12-15 11:53:50 | Rumour has it that WhatsApp data can be hacked by spyware, but they deny these allegations (lien direct) | On Monday WhatsApp denied allegations in the U.S Supreme Court that it’s encrypted data can be hacked by Pegasus, an Israeli spyware. These allegations led to controversy in 2019, as it was thought that WhatsApp experienced a privacy breach after there were global claims by Indian journalists and human rights activists that they had been […] | |||
|
2020-12-15 11:48:52 | Over 45 Million Medical Images available online (lien direct) | CybelAngel, a world leader in digital risk protection, discovered over 45 million medical imaging files – such as CT scans and X-rays– which were accessible online on unprotected servers. These findings were released in CybelAngels’s report “Full Body Exposure”, which is the result of a six-month research investigation into Digital Imaging and Communications in Medicine […] | Guideline | ||
|
2020-12-15 11:40:21 | Dataset of 20 million malware samples exposed online (lien direct) | On Monday the cybersecurity firms ReversingLabs and Sophos joined forces in order to release the first-ever production-scale dataset of malware research to be available to the public. They released the dataset in a bid to drive industry-wide improvements in security detection, as well as build defences against attacks. The dataset is called SoReL-20M, which is […] | Malware | ||
|
2020-12-15 11:31:14 | Department of Homeland Security hacked in cyberattack (lien direct) | The Department of Homeland Security (DHS) was breached on Monday as part of an attack on U.S. federal agencies which many speculate to be done by Russian hackers. Alexei Woltornist, DHS spokesperson, said that they have not directly confirmed the breach, but Woltornist told The Hill that “the Department of Homeland Security is aware of […] | |||
|
2020-12-14 13:00:54 | Office 365\'s SharePoint infected with critical bug (lien direct) | Microsoft Office 365’s SharePoint has got a dangerous remote code execution flaw. On Tuesday, Office365 released their latest patches which addressed bugs affecting Microsoft Edge and Office apps, like Excel and Outlook. The recent Patch Tuesday release, and the last patch release for 2020, had over 58 overall fixes, with nine critical bug fixes. The […] | |||
|
2020-12-14 12:45:22 | Subway UK\'s marketing system hacked (lien direct) | Subway UK has revealed that their marketing campaign’s system was hacked, which resulted in malware-ridden phishing emails being sent to customers on Friday. As of Friday morning, Subway’s customers in the UK began to received emails from ‘Subcard’ about a Subway order that they had supposedly placed. The email included links to documents which claimed […] | |||
|
2020-12-14 12:33:27 | New \'Drive-By Attack\' Targets Edge, Chrome and Firefox Users (lien direct) | Microsoft has revealed that a well-organized threat campaign is distributing malware across web browsers, including Edge, Chrome, and Firefox. The attacks can result in users having malicious extensions added to their browser, malicious ads injected into search results, and users having their credentials stolen in the worst cases of the attack. In order to avoid […] | Malware Threat | ||
|
2020-12-14 12:24:34 | Russian hackers potentially spied on U.S. Treasury emails (lien direct) | It has been speculated that Russian hackers have been monitoring internal email traffic of U.S. Treasury and Commerce departments. Those who are involved in the matter are fearing that this specific hack is only a small part of a much larger attack. The hack has led a National Security Council meeting on Saturday to discuss […] | Hack | ||
|
2020-12-11 12:52:36 | Ledger cryptocurrency wallets stolen in fake data breach (lien direct) | Ledger wallet users have been targetted by a phishing scam which used a fake data breach notification in order to steal cryptocurrency. The wallets were secured using a 24-word recovery phrase and support 12, 18, or 24-word recovery phrases used by other wallets. If someone knows the recovery phrase then they are able to access […] | Data Breach | ||
|
2020-12-11 12:40:38 | Gamers can crash opponents computers with streaming flaw (lien direct) | Valve, a game developer, has recently fixed 4 critical bugs in its Stream game platform. If these flaws were exploited, they could have allowed users to attack their opponent remotely, crashing their opponent’s game client. The Stream service has over 25 million users, acting as a platform for popular games such as Counter Strike: Global […] | |||
|
2020-12-11 12:33:04 | Critical vulnerability found in Glassdoor\'s platform (lien direct) | Glassdoor, a platform for posting anonymous company reviews and job hunting, has recently fixed a critical issue that could have been exploited by bad actors to take over accounts. The bug bounty researcher “Tabahi (https://twitter.com/_tabahi) ” discovered the vulnerability and described it as a site-wide cross-site request forgery (CSRF) bug with an estimated severity score […] | Vulnerability | ||
|
2020-12-10 13:39:13 | AT&T Cybersecurity Insights Report: Fewer than 10% of security professionals feel prepared for 5G rollout (lien direct) | The dawn of 5G technology is upon us and this new wireless power promises to be a superior successor to 4G networks. With more devices connecting to more data, both enterprises and the general consumer will greatly benefit from 5G's arrival. But how ready are businesses for this new era in connectivity and how secure […] | |||
|
2020-12-09 12:09:54 | Netgain forced to take down data centre after ransomware attack (lien direct) | Netgain, the cloud hosting and IT services provider has been forced to take a number of their data centres offline following a ransomware attack in November. Netgain is a technology company that provides hosting and cloud IT solutions, such as desktop-as-a-service environments and managed IT services, to companies in accounting and healthcare sectors. In a […] | Ransomware | ||
|
2020-12-09 12:02:09 | Cybereason uncover Middle East malware attack via Dropbox and Facebook (lien direct) | The Israeli cybersecurity firm Cybereason has recently announced that it has uncovered an active effort to control the computers and steal data belonging to Facebook, Google Docs, Dropbox, and Simplenote users. Cybereason has attributed the campaign to the Arab group ‘Molerats’, who also go by the name 'The Gaza Cybergang,' who have been operating in […] | Malware | ||
|
2020-12-09 11:51:19 | Target\'s gift card page spoofed by scammers (lien direct) | The online fraud prevention company, Bolster, has reported that in November they saw an increase in new websites related to gift card fraud, with a rate of more than 220 fraud cases per day. The research team noted that Target’s balance checking page has been one of the most impersonated this holiday season. Some of […] | |||
|
2020-12-09 11:44:58 | Why a fear of cyber threats is not paranoia (lien direct) | Booking.com and Expedia recently made the headlines – and not because of the hotel deals they were offering as people eased out of lockdown. Instead, it had been discovered that one of their software providers had not stored sensitive data correctly, running the risk that the details of millions of hotel customers could have been […] | |||
|
2020-12-09 11:37:05 | FireEye hacked by a Nation-State (lien direct) | FireEye has been the go-to for protection against sophisticated attackers for government agencies and companies around the world for years. However, the cybersecurity firm has recently fallen victim to what they protect against, as FireEye have recently reported that they have been hacked by what are thought to be Russian intelligence agencies exacting revenge. On […] | |||
|
2020-12-08 14:24:11 | Shared power banks could transmit malware (lien direct) | In China, one of the most successful enterprises to come from their sharing economy has been power bank rentals. However, police in China are warning that mobile battery packs can be used to spread malware. On Sunday the Ministry of Public Security’s online security department published a warning on their official WeChat account which said […] | Malware | ||
|
2020-12-08 14:13:34 | Coronavirus vaccine side-effect tracker vulnerable to manipulation (lien direct) | A new smartphone tool which can track live side-effect of those vaccinated with the new American coronavirus vaccine is thought to be vulnerable to manipulation. This has raised concerns that malicious actors could access the tools system in order to undermine confidence in the shots, according to both federal and state health officials. The text-messaging […] | Tool | ||
|
2020-12-08 14:01:18 | PlayStation Now bugs spreads malicious code on Windows PCs (lien direct) | A security bug has been found on the PlayStation Now cloud gaming Windows application which has allowed malicious actors to put arbitrary code on Windows devices which are running vulnerable app versions. PlayStation Now has over 2.2 million subscribers in 2020, with this bug potentially harming a large number of users. A bug bounty hunter, […] | ★★ | ||
|
2020-12-08 13:52:21 | 2,732 PickPoint package lockers opened in Moscow by hacker (lien direct) | A hacker has forced open 2,732 package delivery lockers in Moscow using a cyber-attack. The attack by an unknown hacker too place on Friday afternoon, December 4, targeting PickPoint’s network, a local delivery service which looks after a network of over 8,000 package lockers in Moscow and Saint Petersburg. PickPoint’s service allows Russians to order products […] | |||
|
2020-12-08 12:21:41 | A Guide to Kubernetes Security (lien direct) | Organizations are bringing a variety of new technologies into their IT infrastructure as they continue to undergo their digital transformations. Many are embracing containers and Kubernetes, in particular. In a 2020 report, for instance, 56% of surveyed organizations expected their use of containers to increase within the next 12 months, wrote The Enterprisers Project. Another […] | Uber | ||
|
2020-12-07 13:02:55 | Kazakhstan government is catching HTTPS traffic (lien direct) | The government of Kazakhstan is forcing citizens in Nur-Sultan, the countries capital, to install digital certificates on their devices in order to access foreign internet services. The initiative is working under the guise of a “cybersecurity exercise”, however, once the certificate is installed it allows the government access to a users device in order to […] | |||
|
2020-12-07 12:48:39 | Middle East facing \'cyber pandemic\' (lien direct) | United Arab Emirates government's cyber security chief has said that the Middle East region is currently facing a “cyber pandemic” after a rise in COVID-19 related attacks. On Sunday Mohamed al-Kuwaiti, head of UAE Government Cyber Security said “As we moved into a full online life, we saw a huge increase in many of those […] | |||
|
2020-12-07 11:43:09 | MetaMask cryptocurrency wallets stolen via Google ads (lien direct) | Users of the MetaMask cryptocurrency wallet have been targetted by a phishing scam over the past week which has been luring in victims with Google search ads. MetaMask has a user base of over one million customers. They offer an Ethereum cryptocurrency wallet in the Google browser via an extension which allows distributed applications to […] | |||
|
2020-12-07 11:29:56 | (Déjà vu) Construction firm hit by cyber attack (lien direct) | The construction firm RMD Kwikform has been targeted by a cyber-attack. The company based in Walsall said that they are investigating the breach, which took place in November. RMD Kwikform provides engineering services globally for major infrastructure projects, with 1,400 employees, and around 300 of their employees are based in the UK. The incident was […] | |||
|
2020-12-04 16:32:18 | Furlough a testing time for UK employees – lack of support leads to less loyalty as many begin returning to work (lien direct) | New research has found that over a quarter (28%) of furloughed employees in the UK admitted to feeling less loyal to their employer upon returning to work. According to a recent survey of 1,000 people, conducted by Censuswide on behalf of KnowBe4, 70 percent stated they either did not feel supported by their employer, received […] | |||
|
2020-12-04 11:09:59 | TrickBot has returned with a TrickBoot (lien direct) | TrickBot has released a new “TrickBoot” module which scans for vulnerable firmware and also has the ability to read, write and erase it on devices. The TrickBot malware has once again morphed and adapted, with the malware now being able to inspect the UEFI/BIOS firmware of targeted systems. TrickBot has seen a major resurgence after […] | Malware | ||
|
2020-12-04 10:53:17 | Israeli insurance company extorted by BlackShadow hackers (lien direct) | An Israeli insurance company has suffered a data breach with the attackers demanding almost $1 million in bitcoin as a ransom to prevent the companies stolen data being exposed. On November 30 the cybercrime group BlackShadow tweeted that they hacked into Shirbit, an Israeli insurance company, and had stolen files during the attack. “A huge […] | Data Breach | ||
|
2020-12-04 10:38:48 | Kmart suffers ransomware attack (lien direct) | The US department store Kmart has been victim to a ransomware attack which has impacted back-end services within the company. Kmart has been targetted by the Egregor ransomware operation this week which encrypted devices and servers on the network. A ransom note showed that the ‘KMART’ Windows domain was compromised as a result of the […] | Ransomware | ||
|
2020-12-04 10:20:52 | Vancouver public transport agency hit by ransomware attack (lien direct) | TransLink, the public transport agency for Vancouver, Canada, has been hit by a ransomware attack which has halted their operations. The attack took place on December 1, and has resulted in the residents of Vancouver being unable to use their metro cards, or pay for new tickets, at TransLink’s Compass ticket kiosks. TransLink initially thought […] | Ransomware | ||
|
2020-12-03 14:00:45 | Xerox DocuShare Bugs could result in major data leaks (lien direct) | Xerox released a fix for two vulnerabilities in regards to DocuShare, their document management platform. If these bugs were exploited they could have made DocuShare users vulnerable to a malicious attack resulting in sensitive data loss. Yesterday, the Cybersecurity and Infrastructure Security Agency (CISA) issued a security bulletin to alert users and administrators to urgently […] | |||
|
2020-12-03 13:31:20 | Ransomware gang steals 2 million credit cards from E-Land (lien direct) | The ransomware gang Clop has claimed to be responsible for a cyberattack on E-Land Retail. Clop have said that they have stolen around 2 million credit card’s details over the past year, with the attack ending last month. E-Land Retail is a subsidiary of E-Land Global, which manages a number of retail clothing stores, such […] | Ransomware | ||
|
2020-12-03 13:20:44 | Aerospace firm hit by cyber attack (lien direct) | Embraer, a Brazilian defence and aerospace group has recently been a target of a cyber attack which has halted the company’s operations. According to a statement released by Embraer this week, the attack forced the “disclosure of data allegedly attributed to the company”. The incident was only reported to the Brazilian Securities and Exchange Commission […] | |||
|
2020-12-02 12:09:11 | FBI warn that email forwarding rules are being abused by hackers (lien direct) | The US Federal Bureau of Investigation (FBI) says that it is getting more common for cyber-criminals to use email forwarding rules in order to disguise themselves inside hacked email accounts. The FBI sent out a PIN (Private Industry Notification) alert last week, which was made public yesterday, which said that the technique has been seen […] | |||
|
2020-12-02 11:40:59 | Malicious npm packages were installing remote access trojans (lien direct) | The security team in charge of the ‘npm’ repository used for JavaScript libraries has removed two of the npm packages on Monday after they were found to contain malicious code that installed a remote access trojan (RAT) onto computers of developers who were working on JavaScript projects. The names of the packages were jdb.js and […] | |||
|
2020-12-02 10:52:17 | Supreme Court to rule on outdated anti-hacking law (lien direct) | The Supreme Court will possibly be reining in of one of the main anti-hacking laws in America, which has not been revised by Congress since 1986, and has tormented cybersecurity researches since the internet began. The American Supreme Court heard a number of arguments yesterday for the first time in a case which aims to […] | |||
|
2020-12-02 10:42:26 | New exploit could let hackers remotely access iPhones (lien direct) | A Google Project Zero security researcher, Ian Beer, has revealed that, until recently, a number of varieties of Apple iPhones and other iOS devices were vulnerable to an exploit which would allow hackers to remotely reboot a device and then take complete control of it, without being anywhere near the device. This means that a […] | |||
|
2020-12-01 17:26:18 | The Challenge of Secure Wi-Fi (lien direct) | It's fair to say that we have all been spending less time jumping onto Wi-Fi hotspots at cafes, hotels, airports or company guest networks, over the last sixth months. But as lockdown measures were eased, we saw more people looking for a change of scenery in coffee bars and pubs offering workspaces. Whether at home or out […] | |||
|
2020-12-01 17:18:53 | Glasswall successfully raises £18 million from leading investors to fund continued expansion (lien direct) | Glasswall, the leading cybersecurity technology group, announces that it has successfully raised £18 million in additional equity capital to finance its continued expansion. The funding round was led by IPGL, Lord Spencer's private investment group, and a number of other high net worth investors including Lord Rose, Chairman of Ocado, Lance Uggla, Chairman and CEO […] | Guideline | ||
|
2020-12-01 11:28:20 | Security flaw could manipulate scientists into creating viruses (lien direct) | Cyber-security researchers at Ben-Gurion University of the Negev have discovered a cyber attack which could allow hackers to remotely manipulate laboratory scientists into creating viruses and toxins. Medical researchers use synthetic DNA for a variety of reasons, one of which is to develop immunogens in order to create vaccines, which is especially popular at the […] | |||
|
2020-12-01 11:11:20 | MacOS users targeted with updated malware (lien direct) | A new form of malware has been discovered to be targeting Apple MacOS user, with researches saying that it is tied to a state-backed hacking operation. The malware campaign has been identified by cybersecurity analysts at Trend Micro, who have linked campaign back to the Vietnamese backed group OceanLotus, also known as APT32. OceanLotus has […] | Malware | APT 32 | |
|
2020-12-01 10:58:33 | Vietnamese state-backed hackers linked to crypto-mining malware campaign by Microsoft (lien direct) | Microsoft has recently identified Vitemanese government-backed hackers to be deploying cryptocurrency-mining malware alongside their usual cyber-espionage toolkits. The report by Microsoft highlights a growing trend in cyber-security where an increasing number of state-funded hacking groups are trying their hand at regular cybercrime operations, making it harder to distinguish intelligence-gathering operations from financially motivated crime. The […] | Malware | ||
|
2020-11-30 11:11:05 | COVID-19 vaccine manufacturer targeted by hackers (lien direct) | The British drug manufacturer AstraZeneca has recently been targetted by what are suspected to be North Korean hackers, who have tried to break into their systems. AstraZeneca is one of the many pharmaceutical companies racing to release a vaccine for COVID-19. The hackers posed as recruiters for professional social networking site, LinkedIn, and the networking […] | |||
|
2020-11-30 10:38:10 | Ransomware gang targets TV producers for Big Brother, The Voice and more (lien direct) | The Endemol Shine Group, an Amsterdam-based production and distribution company that produces shows such as The Voice, Big Brother and Master Chef has been hit by a ransomware attack. The ransomware gang behind the attack is DopplePaymer, who Microsoft warned the public about in November. DopplePaymer claimed responsibility for the attack with Endemol Shine being […] | Ransomware | ||
|
2020-11-30 10:20:22 | Hundreds of C-level email accounts sold on the internet (lien direct) | A treat actor has recently stolen an unknown number of C-level executive’s email passwords from across the world and is selling hundreds of them online. The data is being sold on a closed-access forum called Exploit.in, which is primarily for Russian hackers. Both emails and passwords for Microsoft and Office 365 accounts are being sold […] | |||
|
2020-11-27 16:24:58 | Why the power to neutralise the threat of ransomware lies within your network (lien direct) | Ransomware attacks are on the up. Due to low execution costs, high rates of return, as well as a low risk of being caught, ransomware has become the preferred method of attack for those operating illegally within the online space. In fact, research highlights a surge in the number of ransomware attacks against businesses. In […] | Ransomware Threat | ||
|
2020-11-27 11:19:40 | Canon confirms data theft in August\'s ransomware attack (lien direct) | Months after the attack Canon publically confirmed that the cyberattack in August was caused by ransomware, and that data was stolen from servers by hackers during this attack. The attack was first reported by BleepingComputer when they found that there was a suspicious outage on cannons cloud photo storage service, image.canon, which caused users to […] | Ransomware | ||
|
2020-11-27 10:56:32 | Fertility patients\' data stolen in ransomware attack (lien direct) | One of the largest group of fertility clinics in the United States, U.S. Fertility, has recently been hit by a ransomware attack, with patient and company data stolen. U.S. Fertility said that hackers “acquired a limited number of files” while they were in the system. The hackers remained in the system for a month, until […] | Ransomware | ||
|
2020-11-27 10:36:05 | Personal data of 16 million COVID-19 patients in Brazil leaked online (lien direct) | The personal and health data of over 16 million Brazilian COVID-19 patients has been exposed after a hospital employee foolishly uploaded a spreadsheet or names, passwords, and access keys to sensetive government systems on GitHub. Two government databases, E-SUS-VE and Sivep-Gripe, used to store patients COVID-19 data, were among the systems exposed. The Sivep-Gripe database […] |
To see everything:
Our RSS (filtrered)
