What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-03-24 11:29:18 | Ransomware payments peaked in 2021 (lien direct) | Ransomware payments reached all-time highs last year, with related data leaks and ransom demands also surging, according to Palo Alto Networks. The stats were compiled from cases worked on by the security vendor’s Unit 42 security consulting business. The 2022 Unit 42 Ransomware Threat Report published by Palo Alto Networks today claimed the average ransomware payment reached […] | Ransomware Threat | ★★ | |
|
2022-03-22 10:49:09 | AvosLocker ransomware hits critical infrastructure (lien direct) | Several US authorities issued an alert warning of the threat to critical national infrastructure (CNI) providers from the AvosLocker ransomware group. The group is a ransomware-as-a-service affiliate operation known for targeting financial services, manufacturing and government entities, as well as other sectors, the report indicated. AvosLocker seems to be geographically indiscriminate, with some victims hailing […] | Ransomware Threat | ||
|
2022-03-21 10:28:15 | Hubspot breach spreads to BlockFi, Swan Bitcoin (lien direct) | Hubspot, a widely used Customer Relationship Management (CRM) platform, was hacked on Friday by a threat actor accessing an employee account. The hacker then used the account to target 30 as yet unnamed cryptocurrency stakeholders, with BlockFi and Swan Bitcoin confirming that they suffered a breach. As Hubspot is a third party vendor, the hacker […] | Threat | ||
|
2022-03-21 09:57:32 | More Conti group source code leaked (lien direct) | A Ukrainian security researcher has released further source code from the Conti ransomware group in retaliation for their siding with Russia over the ongoing Russia-Ukraine conflict. Conti is a prolific ransomware operation run by Russia-based threat actors. The group has been involved in developing numerous malware families, and is considered one of the most active […] | Ransomware Malware Threat | ||
|
2022-03-18 11:25:52 | (Déjà vu) New “initial access broker” working with Conti gang (lien direct) | Google’s Threat Analysis Group (TAG) has new initial access broker that it alleges is closely affiliated to a Russian cyber-crime gang infamous for its Conti and Diavol ransomware operations. The financially motivated threat actor, dubbed Exotic Lily, has been detected exploiting a recently patched critical flaw in the Microsoft Windows MSHTML platform (CVE-2021-40444). The exploit […] | Ransomware Threat | ||
|
2022-03-17 12:01:27 | New ransomware threatens to wipe Windows PCs (lien direct) | A relatively new Ransomware, LokiLocker, uses the standard extortion-through-encryption racket but also incorporates disk-wiper functionality. Double extortion soared in popularity last year, with ransomware gangs stealing files before encrypting them to threaten victims with a sensitive data leak if they didn’t pay up. BlackBerry Threat Intelligence is warning that LokiLock, first seen in August 2021, […] | Ransomware Threat | ||
|
2022-03-15 09:45:39 | Ransomware groups target “enemies of Russia” (lien direct) | A new report Accenture suggests that cyber-criminals have split into pro-Ukraine and pro-Russia factions, with the latter focusing on western critical national infrastructure (CNI). The consulting giant’s Accenture Cyber Threat Intelligence (ACTI) arm has warned that the recent ideological split could mean increased risk for Western organizations, as pro-Kremlin groups morph into quasi-activists. Government, media, […] | Threat | ||
|
2022-03-14 10:32:49 | Malware hidden in fake Valorant aim-bot (lien direct) | Security analysts from Korea have detected a malware distribution campaign using Valorant cheat lures on YouTube in order to trick players into downloading RedLine, a powerful information stealer. This kind of lure is relatively common as threat actors can easily avoid YouTube’s new content submission reviews, or simply create new accounts when old ones are […] | Malware Threat | ||
|
2022-03-11 10:58:59 | Microsoft calls for more women in cyber (lien direct) | The tech giant Microsoft has claimed that encouraging women into cybersecurity jobs is “mission critical” to addressing the labour shortage in the cybersecurity industry. The company’s corporate vice president of security, compliance, identity and management, Vasu Jakkal argues that diversity is sorely needed in the industry in order to address the evolving threat landscape and […] | Threat | ||
|
2022-03-10 10:15:07 | Up to 30% of WordPress plugin bugs don\'t get patched (lien direct) | A global leader in WordPress security and threat intelligence, Patchstack, recently released a whitepaper highlighting the sorry state of WordPress security in 2021. Reported vulnerabilities grew 150% in 2021 from the previous year. Perhaps most alarmingly, 29% of the critical flaws in WordPress plugins never received an update. WordPress is used in 43.2% of websites […] | Threat Guideline | ||
|
2022-03-08 13:00:51 | TLStorm: Armis finds Three Critical Zero-Days in APC Smart-UPS devices that could impact over 7 in 10 organisations worldwide (lien direct) | Armis, unified asset visibility and security company, announced the discovery of three zero-day vulnerabilities in APC Smart-UPS devices that can allow attackers to gain remote access. If exploited, these vulnerabilities, collectively known as TLStorm, allow threat actors to disable, disrupt, and even destroy APC Smart-UPS devices and attached assets, researchers have warned. Uninterruptible […] | Threat | ||
|
2022-03-03 11:57:39 | Cyber attack attempts on Ukraine surge tenfold (lien direct) | A threat actor in support of Russia has compromised at least 30 Ukrainian universities as vulnerability exploit attempts have surged, according to Wordfence. The security firm has generated useful intelligence on the the attacks campaign as it protects over 8300 Ukrainian WordPress sites, including those of private businesses, government, military and police. The attack campaign […] | Vulnerability Threat | ||
|
2022-02-23 11:57:05 | EU cyber-response team deployed (lien direct) | The European Union’s newly formed Cyber Rapid-Response Team (CRRT) has been deployed to Ukraine to aid in combat against Russian threat actors. In a tweet yesterday, the Lithuanian Ministry of Defence confirmed the CRRT is to be deployed at the request of the Ukrainian government. Lithuania will sit at the head of a coalition of […] | Threat | ★★ | |
|
2022-02-23 11:18:52 | Hackers focused on supply chains in 2021 (lien direct) | Cybercriminals have put most of their time into breaking supply chains over the last year. The manufacturing sector has emerged as a top target. IBM’s annual X-Force Threat Intelligence Index, a report based on threat data and security incidents over 2021, suggests that businesses are being “imprisoned” by criminals exploiting vulnerabilities and deploying ransomware. Researchers for […] | Threat | ★★ | |
|
2022-02-22 10:44:08 | UK companies Omniscope and Searchlight Security team up to provide next-level threat intelligence (lien direct) | Two UK cybersecurity companies Searchlight Security, the provider of specialist deep and dark web monitoring products, and Omniscope, the digital threat intelligence and investigations business, have announced a partnership that brings next-level threat intelligence to enterprise customers and law enforcement agencies alike. The solution combines Omniscope's Smarti3 Intelligence platform for open-source threat intelligence of the […] | Threat | ||
|
2022-02-18 10:39:49 | Vulnerability found in major WordPress plugin (lien direct) | UpdraftPlus, a WordPress plugin with over 3 million installations, has been patched following the discovery of a vulnerability by security researcher Marc Montpas. The Wordfence Threat Intelligence team explained in a blog post that the vulnerability enables any logged in user, including subscriber-level users, to download backups made with the plugin. The WordPress security company […] | Vulnerability Threat | ||
|
2022-02-16 11:06:54 | 3 out of 5 cyber-attacks in 2021 were malware-free (lien direct) | A new report from CrowdStrike has revealed that ransomware-related data leaks increased by 82% year-on-year in 2021, but three-fifths of cyber attacks involved no malware whatsoever. The security company's 2022 Global Threat Report was put together using an analysis of its own incident response engagements and security telemetry. The report revealed that 62% of attacks used legitimate […] | Malware Threat | ||
|
2022-02-15 17:17:51 | Small businesses facing upwards of 11 cyberthreats per day per device (lien direct) | BlackBerry Limited has released the 2022 BlackBerry Annual Threat Report, highlighting a cybercriminal underground which it says has been optimised to better target local small businesses. Small businesses will continue to be an epicentre for cybercriminal focus as SMBs facing upward of 11 cyberthreats per device per day, which only stands to accelerate as cybercriminals […] | Threat | ||
|
2022-02-11 17:08:40 | Microsoft fixes Defender flaw (lien direct) | Microsoft has addressed in the Microsoft Defender Antivirus that allowed attackers to plant and execute malicious payloads while avoiding Defender’s malware detection engine. The flaw affected even the latest Windows 10 versions and threat attackers have been able to exploit it since at least 2014. As BleepingComputer previously reported, the flaw resulted from lax security settings […] | Malware Threat | ||
|
2022-02-09 10:57:38 | Cryptocurrency organisations hit with fake job offers (lien direct) | North Korean threat actors, known as the Lazarus group have been posting fake job listings to target the cryptocurrency vertical in the US, UK, Germany, Singapore and more. Lazarus hackers, also known as HIDDEN COBRA by the United States Intelligence Community and Zinc by Microsoft, have targeted cryptocurrency organisations in the past. The North Koreans are […] | Threat Medical | APT 38 APT 28 | ★★ |
|
2022-02-08 11:06:15 | QBot steals data in 30 minutes (lien direct) | Qbot, also known as Qakbot or QuakBot, has recently returned to lightning speed attacks, with analysts reporting that it only takes 30 minutes from infection to steal emails and credentials. A new report by DFIR suggests that Qbot was carrying out data-snatching operations in October 2021. It is now believed that the threat actors behind […] | Threat | ||
|
2022-02-04 16:36:50 | Ransomware gangs and supply chain vulnerabilities: Nozomi Networks Labs reports on the current threat landscape (lien direct) | While vulnerability disclosures increased 21% in the second half of 2021 and increasingly sophisticated criminal attacks made regular news, organizations are fighting back with targeted remediation efforts A new OT/IoT security trends report from Nozomi Networks Labs finds cyber threats have becoming a never-ending reality for critical business operations. In a review of the threat […] | Vulnerability Threat | ★★★★ | |
|
2022-02-04 11:11:20 | Zimbra zero-day vulnerability exploited to steal emails (lien direct) | Attacks linked to a Chinese threat actor have exploited a Zimbra’s zero-day vulnerability and are stealing emails linked to European government and media. Researchers say that at the time of writing the exploit has no available patch. Zimbra says that more than 200,000 businesses from over 140 countries are using its software, including over 1,000 […] | Vulnerability Threat | ||
|
2022-02-02 09:54:44 | Business leaders are confident in their defences, despite over half falling victim to ransomware (lien direct) | New research from Adarma, the UK's largest independent cyber threat management company, has discovered a major disconnect in the way organisations think and act in the face of ransomware. Adarma’s nationwide ransomware study surveyed 500 C-level executives at UK businesses with over 2,000 employees and found that 58% of respondents have experienced a ransomware attack, with […] | Ransomware Threat | ||
|
2022-01-27 17:05:20 | FluBot and TeaBot malware targeting androids worldwide (lien direct) | Bitdefender’s Mobile Threat researchers have warned about some newly discovered Flubot and Teabot campaigns. The researchers claim that since December 2021 they have intercepted over 100,000 malicious SMS messages which were aiming to distribute Flubot malware. The researchers have said that they have observed that the attacks are more active in Germany, Spain, Poland, Australia, […] | Malware Threat | ||
|
2022-01-18 11:13:32 | DHL most imitated brand in phishing scams (lien direct) | In Q4 of 2021, DHL was threat actors’ preferred brand to imitate when launching phishing campaigns. This pushed Microsoft into second place and Google into fourth. These findings were unsurprising as the last three months of the year include holidays such as Black Friday, Cyber Monday and Christmas; holidays that hackers frequently exploit as victims […] | Threat | ||
|
2022-01-13 14:02:59 | Lazarus Group, Cobalt Gang and FIN7 the Worst Threat Actors Targeting the Financial Services Sector (lien direct) | A new industry report by Blueliv, an Outpost24 company, has deep dived into the evolving threat landscape that is surrounding the financial services sector. Using advanced threat intelligence gathered by Blueliv's Threat Compass; the 'Follow the Money' report reveals the main cyber threats and the culprits behind these malicious attacks to forewarn these vital institutions. Threat intelligence gathered by Blueliv from the dark web and deep web showed that the main cyberthreats targeting the industry included: Phishing, […] | Threat | APT 38 | |
|
2022-01-10 11:25:50 | The latest on the Log4j vulnerability (lien direct) | The threat posed by the Log4j vulnerability hasn’t gone away over the holidays, with the UK’s National Health Service (NHS) issuing a warning that hackers are actively targeting the security flaw and recommending that organisations within the health service apply the necessary updates in order to protect themselves. “Affected organisations should review the VMware Horizon […] | Vulnerability Threat | ||
|
2022-01-04 13:44:32 | Vulnerability lets anyone send emails from Uber.com (lien direct) | Researcher Seif Elsallamy recently discovered a vulnerability in Uber’s emailing system, which allows anyone to send an email on behalf of the company. If exploited, threat actors would be able to email the 57 million Uber users and drivers whose data was leaked in the 2016 data breach. Uber has been made aware of the […] | Vulnerability Threat | Uber Uber | |
|
2021-12-24 11:24:05 | New CoinSpot phishing campaign discovered (lien direct) | A new phishing campaign is targeting CoinSpot cryptocurrency exchange users in order to steal two-factor authentication (2FA) codes. The threat actors are sending emails from a Yahoo email address, which replicates CoinSpot emails, asking recipients to cancel or confirm a withdrawal transaction. The researchers who discovered the campaign said “the threat actor observed here been […] | Threat | Yahoo Yahoo | |
|
2021-12-23 11:56:33 | World\'s top cybsersecurity agencies warn of Apache vulnerability threats (lien direct) | The Fives Eyes intelligence alliance have warned that threat actors are actively exploiting an Apache vulnerability in the Log4j logging library. The Five Eyes alliance, consisting of cybersecurity agencies in US, UK, Australia, Canada and New Zealand, announced in a joint statement on Wednesday that, “sophisticated cyber threat actors are actively scanning networks to potentially […] | Vulnerability Threat | ||
|
2021-12-23 11:18:29 | Belgium\'s Military hit by cyber attack (lien direct) | The Belgium Defense Ministry has announced that it has experienced a cyberattack after threat actors exploited a Log4j vulnerability. The attack took place on December 16 and was confirmed this week. According to a Belgium military spokesman, Commander Olivier Séverin, the incident caused damage to internet-connected services, which in turn halted part of the ministry’s […] | Threat | ||
|
2021-12-08 11:03:58 | (Déjà vu) Ransomware attack locks hotel guests out of rooms (lien direct) | Earlier this week, Nordic Choice Hotels announced an attack on its IT systems, which they believed to be a “computer virus”. However it has since been revealed that it was the target of Conti ransomware, leading to hotel guests being locked out of their rooms. As IoT becomes more connected the threat of home and corporate […] | Threat Guideline | ||
|
2021-12-03 12:46:27 | Expert comment: CS Energy ransomware attack (lien direct) | On Tuesday, energy generator CS Energy, which is owned by the Queensland government, fell victim to a ransomware attack that impacted operations. The incident occurred over the weekend, in yet the latest cyber threat to target critical infrastructure. As per the organisation’s announcement, the incident occurred on CS Energy's corporate network and has not impacted […] | Ransomware Threat | ||
|
2021-11-19 15:00:20 | (Déjà vu) Most Inspiring Women in Cyber 2021: Rea James, Global Cyber Strategic Threat Intelligence Lead at Vodafone (lien direct) | The IT Security Guru's Most Inspiring Women in Cyber Awards aims to shed a light on the remarkable women in our industry. The following is a feature on just one of the many phenomenal women put forward for the 2021 awards. Presented in a Q&A format, the nominee's answers are written in their own words […] | Threat | ||
|
2021-11-17 13:35:06 | Bugcrowd correlates $27bn risk reduction with ethical hacking to find vulnerabilities (lien direct) | Bugcrowd, the crowdsourced cybersecurity platform, has published its Inside the Mind of a Hacker '21 report, which it says provides CIOs and CISOs valuable insight on ethical hackers and the economics of security research. Some new findings indicate a shift in the threat landscape with 8 out of 10 ethical hackers recently having identified a […] | Threat | ||
|
2021-11-11 10:33:43 | Don\'t get held to ransom – cause, prevention, recovery (lien direct) | Ransomware is one of the top earners of the dark economy, lining the coffers of cybercriminals. Expected to generate over $265bn USD in revenue for bad actors within the next decade, ransomware continues to pose an acute threat to businesses. It's no wonder then that cybercriminals have commoditised their skills in ransomware as a service to maximise their return on investment. They understand how to build a successful business from […] | Ransomware Threat | ||
|
2021-11-02 14:08:52 | Mobile phishing threats surged 161% in 2021 – Lookout Energy Threat Report (lien direct) | A new report has shown the energy sector is under immense cyber threat as hackers continue to target this vital industry. The threat report by Lookout shows that mobile phishing exposure had surged by 161% within the energy industry between the second half of 2020 and the first half of 2021. Further key findings include: 20% […] | Threat | ||
|
2021-10-13 14:13:47 | AT&T Cybersecurity Launches New Managed XDR Solution (lien direct) | AT&T Cybersecurity has launched a dedicated managed Extended Detection and Response (XDR) offering which is available immediately. The AT&T Managed XDR solution features a cloud-based security platform with security threat analytics, machine learning, and third-party connectors to protect endpoint, network, and cloud assets with automated and orchestrated malware prevention, threat detection, and response. At a time where there are increasing complexities, attack surfaces are […] | Malware Threat | ||
|
2021-08-20 13:39:16 | DemonWare ransomware gang attempts to recruit disgruntled employees in insider threat scheme (lien direct) | According to a report by Abnormal Security, on August 12, 2021, their team identified and blocked a number of emails sent to customers soliciting them to become accomplices in an insider threat scheme. The goal was for them to infect their companies' networks with ransomware. These emails allege to come from someone with ties to […] | Ransomware Threat | ||
|
2021-07-28 08:10:15 | Praying Mantis hacker group strikes IIS web servers (lien direct) | An APT group dubbed Praying Mantis or TG1021, by researchers from incident response firm Sygnia, has hit IIS web servers with deserialization flaws and memory-resident malware. It says Praying Mantis group is likely a nation-state threat actor using custom malware that is especially good at avoiding detection to compromise major public and private organisations over […] | Malware Threat | ||
|
2021-07-23 16:09:09 | Departing employees pose significant cloud security risks, report finds (lien direct) | This week, cybersecurity provider Netskope released the July 2021 Netskope Cloud and Threat Report, the latest installment of Netskope Threat Labs’ biannual research analyzing critical trends in enterprise cloud service and app use, web and cloud-enabled threats, and cloud data migrations and transfers. The results revealed that some departing employees present disproportionately significant cloud security […] | Threat | ||
|
2021-07-21 14:46:43 | Back to work: Onslaught of personal devices could pose serious cybersecurity risk (lien direct) | A nationwide survey of 2,000 UK employees conducted by Censuswide on behalf of Armis, the unified asset visibility and security platform provider, analyses the new working culture and security of personal devices before the inevitable return to the office. The results demonstrate a heightened cybersecurity threat as the majority of the UK workforce (61%) intend […] | Threat | ||
|
2021-07-19 13:59:17 | Preparing for the ever-growing threat of ransomware (lien direct) | Ransomware is a growing threat to every organisation on the planet; it seems we can't go a day without seeing another high-profile ransomware attack being detailed in mainstream media. Cyber-criminals are innovating at a phenomenal pace in this growing 'industry', because they have the funds to do so. In fact, many cyber-criminal groups have more […] | Ransomware Threat | ||
|
2021-07-14 11:34:14 | Outpost24 acquires threat intelligence provider Blueliv (lien direct) | Outpost24 has acquired Blueliv, one of the world’s leading cyber threat intelligence companies which will create one of the largest cybersecurity providers in Europe. The objective: to provide the most advanced threat landscape monitoring solution to help businesses identify threats targeting their organizations and dramatically reduce risk exposure. “It has been a difficult 18 months […] | Threat Guideline | ||
|
2021-06-16 10:47:10 | Business security remains resilient in the wake of coronavirus (lien direct) | The coronavirus pandemic has put cybersecurity under a renewed spotlight. New ways of working and a fragmented workforce has challenged CISOs and their security teams; as the threat landscape has grown, nefarious actors have jumped at the chance to exploit the ever-fluid situation. We have seen attacks grow in frequency and sophistication; Telstra's Agility Report, […] | Threat | ||
|
2021-06-07 11:49:31 | New AT&T Cybersecurity USM Anywhere Advisors Service Helps to Establish and Maintain Threat Detection and Response Effectiveness (lien direct) | AT&T Cybersecurity has announced its AT&T USM Anywhere platform will now offer on-demand advisory service for new and existing customers to tackle threat detection and response faster. The company recognises that security teams are often overwhelmed and understaffed. Therefore, the ability to confidently respond to threats is limited by the maturity of their cybersecurity technologies to react quickly to alerts. Also, […] | Threat | ||
|
2021-05-19 13:19:51 | KnowBe4 launches PhishFlip (lien direct) | KnowBe4, the provider of the world's largest security awareness training and simulated phishing platform, has announced a new product feature called PhishFlipTM, which turns real-world phishing attacks into safe, simulated phishing templates. A majority of data breaches begin with a phishing attack and the threat continues to grow. According to the fourth quarter 2020 Phishing Activity […] | Threat | ||
|
2021-05-14 09:50:05 | Heightened work-related stress and increased workloads are taking their toll on technology leader\'s mental wellbeing (lien direct) | A CISOs workday is riddled with high-stress situations as they constantly battle the deluge of threats emerging from the ever-expanding threat landscape. Therefore it is no wonder that the majority of technology leaders are feeling stressed. In recent years the challenges that CISOs face have only intensified. Since the pandemic, security professionals have had […] | Threat Guideline | ||
|
2021-04-30 07:46:47 | Microsoft identifies critical code execution flaws in IoT and OT devices (lien direct) | The 25 security flaws are known collectively as BadAlloc and affect Internet of Things (IoT) devices and Operational Technology (OT) industrial systems. The flaws are caused by memory allocation Integer Overflow or Wraparound bugs. Threat actors can exploit the vulnerabilities to trigger system crashes and execute malicious code remotely on susceptible IoT and OT systems. | Threat |
To see everything:
Our RSS (filtrered)
