What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-09-03 09:37:03 | India\'s Prime Minister Narendra Modi Twitter Account hacked (lien direct) | Followers were asked through a number of tweets to donate cryptocurrency to a relief fund supposedly set up by Modi’s office. Twitter reported being aware of such activity and set about putting precautions in place in order to secure the account. This is the most recent high-profile Twitter breach following similar attacks in July targeting […] | |||
|
2020-09-02 13:21:55 | How to avoid personal and corporate account takeovers (lien direct) | by Ben Hartwig, web operations director at InfoTracer. Account takeover (ATO) is a form of online identity theft that occurs when a fraudster gains unauthorised access to someone else's account like a bank account, loyalty account, or e-commerce account, changes information such as login credentials or the email address associated with the account and then […] | |||
|
2020-09-02 13:06:00 | The cybersecurity mindset: think like a pro (lien direct) | by Dr Amel Bennaceur, lead educator Cyber Security Operations microcredential, FutureLearn.com; academic in Computing at the Open University As our reliance on digital, connected devices increases, so does our need for security. Secure systems must provide the necessary capabilities to protect assets from harm. These systems rely on an explicit definition of their security requirements […] | Guideline | ||
|
2020-09-02 11:09:04 | Tesla employee offered $1 million in bitcoin by hacker in \'serious\' Russian ransomware attack. (lien direct) | Elon Musk, chief executive of Tesla TSLA -4.7% confirmed in a tweet that the company dealt with a potentially harmful attack planned by Russian National to install ransomware software on Tesla's computer network. The ransomware attack would have encrypted Tesla's files exposing them to the hacker's servers. However, the Tesla employee notified the $1 million […] | Ransomware | ||
|
2020-09-02 10:57:42 | Smart doorbells could be a threat to police (lien direct) | In a recent document published in 2019, the FBI has identified potential threats and challenges for law enforcement around the usage of smart doorbell cameras, such as Ring. This document outlines how homeowners that use such technologies can hinder the privacy of police officers because of its ability to notify users who is outside their […] | Threat | ||
|
2020-09-02 10:20:34 | IoT attacks could result in jail sentences for CEOs by 2024 (lien direct) | Gartner anticipates that up to 75% of CEOs could be liable for IoT attacks due to an introduction of heightened regulations regarding “cyber-physical systems” (CPSs) and operational technology (OT). These so called CPSs, such as IoT attacks, are described as “engineered to orchestrate sensing, computation, control, networking and analytics to interact with the physical world, […] | |||
|
2020-09-01 16:23:12 | Weathering IT budget cuts and workforce strain through AMS (lien direct) | by Allen Abell, VP of AMS, Syntax Remote work exacerbates IT challenges for internal teams already stretched thin, but Applied Managed Services (AMS) can provide some relief. As the coronavirus continues to strain economies and businesses worldwide, IT executives now expect a 4% decrease in IT budgets in 2020. At the same time, companies are […] | |||
|
2020-09-01 15:53:21 | Norway\'s Parliament Allegedly Hit by Cyberattack (lien direct) | The New York Times reported breaking story that Norway's parliament was hit by a 'significant' cyberattack. As of yet we are unsure what the reason or motive was but a “limited number” of lawmakers and employees were impacted, and have been informed. Several members and staff of Norway’s main opposition Labour Party were affected, a […] | |||
|
2020-09-01 10:57:29 | Researchers discover new malware family (lien direct) | A new trojan malware family has been identified by researchers that targets cryptocurrency. Researchers at ESET said the: “previously undocumented trojan malware family spreads through malicious torrents and that uses multiple tricks to squeeze as many cryptocoins as possible from its victims while staying under the radar.” ESET named the threat KryptoCibule, and it primarily […] | Malware Threat | ★★ | |
|
2020-09-01 10:47:05 | Slack-Files.com exploited for phishing attacks (lien direct) | Slack, the communication and collaboration platform, has been gaining attention lately as a potential phishing platform and it has been targeted by malicious actors. Mainly bad actors have been developing various methods to phish users within the platform itself – with concerns ranging from DMs to Slackbot reminders and public Slack channels or workspaces. In […] | |||
|
2020-08-28 15:14:38 | How to choose a SAST tool to secure your development? (lien direct) | When it comes to secure development, how do you integrate a code scanner into the process, what are the traps and pitfalls? Аll developers face static analysis (static application security testing or SAST, which means code analysis without execution). However, we still rarely see full-fledged SAST solutions in use capable of detecting advanced vulnerabilities. Well-known […] | Tool | ||
|
2020-08-28 14:18:43 | Fortnite credentials fetch for big bucks on the dark web (lien direct) | Cybercriminals have their eyes set on exploiting Fortnite, the world’s most popular game, with stolen data from this game fetching for high prices on the dark web and other underground web forums. Hackers have been known to use automated software that can check for stolen credentials and whether these match up with those used by […] | |||
|
2020-08-28 13:50:40 | Tesla factory targeted by Russian hackers says Elon Musk (lien direct) | Elon Musk has confirmed that Russian hackers were plotting cyberattacks against the Tesla factory in Nevada. Just this week, US authorities had arrested a Russian national for trying to lure an employee to plant malware on the network for a $1 million reward. Initially, the court indictment did not name the company, but a lot […] | Malware | ||
|
2020-08-28 13:41:13 | Come 2021 the cost of cybercrime per minute expected to hit $11.4 million (lien direct) | A new report by RiskIQ has shown that the cost of cybercrime per-minute will cost organisations $11.4 million by the year 2021. This global trend shows that there is a YOY increase of more than $2 every minute to total $24.7 – a 100% increase from 2015. Given the surge in cybercriminal activity during the […] | |||
|
2020-08-27 18:03:53 | The UK\'s exposure & resilience to cyberattacks (lien direct) | The interconnected world provides us with untold opportunities and conveniences. From shopping online to e-banking to something as simple as ordering a pizza, all made possible by the internet. However, these conveniences do not come risk-free, the internet also has a darker side. It is predicted that cybercrime could cost the global community up to […] | |||
|
2020-08-27 13:58:05 | New technique designed to prevent medical imaging cyberthreats (lien direct) | A new artificial intelligence technique has been created to protect medical devices from malicious operating instructions in a cyberattack as well as other human and system errors. Tom Mahler, a researcher at Ben-Gurion University of the Negev, Israel, presented his research, “A Dual-Layer Architecture for the Protection of Medical Devices from Anomalous Instructions” on August […] | |||
|
2020-08-27 13:49:12 | Clar Rosso appointed CEO (ISC)² (lien direct) | Clar Rosso has been appointed the new Chief Executive Officer of (ISC)² and will take up the new role from 1 October when she leaves the AICPA & CIMA, where she is executive vice president of engagement and learning innovation, “Cybersecurity professionals play a critical role in our global society, and I look forward to joining the […] | ★★★★★ | ||
|
2020-08-26 16:38:37 | How can the Government avoid yet more tech disasters? (lien direct) | After spending several months and millions of pounds on technology that experts had repeatedly warned would not work, the UK Government was forced to abandon its centralised Covid-19 contact tracing app. A stream of IT failures in recent years has earned the Government a chequered reputation when it comes overpromising and underdelivering where digital transformation […] | |||
|
2020-08-26 15:21:03 | 7 key advantages of using a VPN when working from home (lien direct) | VPN software has been prevalent in the digital market for decades now, however for most SMEs, the use of a virtual private network gained immense popularity more recently. Based on a recent report, hackers are using the coronavirus pandemic to spread malware on a colossal scale. Since the COVID-19 pandemic, people are now often working […] | Malware | ||
|
2020-08-26 14:25:30 | Corelight Appoints Brian Dye CEO and Michele Bettencourt as Executive Chair of the Board (lien direct) | Corelight, provider of the industry's first open network detection and response (NDR) platform, announced three new leadership appointments today as the company prepares for its next phase of growth amid increasing demand for NDR and rising interest in open source security platforms, architectures and techniques. Brian Dye, formerly chief product officer, has been named chief […] | Guideline | ||
|
2020-08-26 11:10:34 | Russian Man Arrested for Failed Insider Threat Recruitment Attempt (lien direct) | In July, Russian citizen Egor Igorevich Kriuchkov, a 27 year old Russian, was identified as a member of a wider Russian cybercriminal gang, seeking to extort a Nevada company through malware. Kriuchkov offered the employee of a major company $1,000,000 to install malware on corporate networks while the Russian gang would distract security teams with […] | Malware Threat | ||
|
2020-08-26 10:35:10 | New Zealand\'s Stock Exchange Hit by Cyberattack (lien direct) | New Zealand’s stock exchange ceased trading for several hours after being targeted by a suspected DDoS attack. This comes as the second attack in as many days disrupted operations, overwhelming digital infrastructures with a flood of internet traffic. Authorities announced that cash market trading was halted at 11:24 a.m. local time (2324 GMT) on Wednesday and […] | |||
|
2020-08-25 11:09:07 | Members of the US Military Targeted by Cybercriminals (lien direct) | Cybercriminals truly have no shame when it comes to their trade. No one is safe from these nefarious criminals when it comes to fraud and phishing attempts. An investigation from AtlasVPN published in CISOMag revealed that the U.S Military personnel have lost around $379.6 million (£290 million) to a range of fraudulent schemes from 2015 […] | |||
|
2020-08-25 10:47:09 | Android Anguish (lien direct) | It is well known that convenience breeds attack vectors in tech, and this is all the more true when considering cheap hardware. Unfortunately, the consequences of cheap devices often comes at the expense of security. Pre-installed Triada and xhelper malware have so far carried out a total of 19.2 million suspicious transactions from over 200,000 […] | Malware | ||
|
2020-08-24 08:05:55 | FBI and CISA Issue Warning over Increase in Vishing Attacks (lien direct) | Last week, the Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) issued a joint release cautioning the public of a rise in ‘vishing’ or voice phishing attacks on organisations. The release indicates that this tactic was employed more prevalently from mid-July, and is the result of a “mass shift to working […] | |||
|
2020-08-24 07:43:12 | New Ransomware Operation – DarkSide – On the Market (lien direct) | With attacks on organisations beginning earlier this month, DarkSide is the latest ransomware operation to emerge. Having announced themselves through a ‘press release’, as revealed in BleepingComputer, this ransomware has already garnered million-dollar payouts for their attacks. The threat actors have allegedly worked with other ransomware operations making millions of dollars. However, this new product […] | Ransomware Threat | ||
|
2020-08-24 07:24:58 | Darknet Empire Market Potentially Victim of DDoS Attack (lien direct) | For over 36 hours, the popular darknet market – Empire Market – has remained offline. This is according to a range of sources, not least the researcher and analyst Dark.fail who has been tweeting about this blackout. Moreover, this subject has been attracting significant attention in various online forums, including the Reddit threat r/darknet and […] | Threat | ★★★ | |
|
2020-08-21 13:36:02 | Ransomware hit University of Utah pays up (lien direct) | After suffering a ransomware attack the University of Utah has reportedly paid the ransom to hackers in an attempt to stop the criminals from exposing the encrypted student data. It is believed only 0.02% of data was taken from the servers and in a statement the university said: “After careful consideration, the university decided to […] | Ransomware | ||
|
2020-08-21 13:33:43 | Cybersecurity has become the fastest growing start-up sector in UK (lien direct) | Research has found that since the beginning of lockdown, there has been an increase of 940% in the amount funded for UK cybersecurity start-ups. Despite the Covid-19 pandemic, it is believed that £496m had been raised in the first half of 2020 – this eclipsed the total amount raised in 2019 which was £521m. Furthermore, […] | |||
|
2020-08-21 13:30:08 | (Déjà vu) Instacart customer data reportedly safe despite security incident caused by Third-party contractors (lien direct) | It has been reported that the sensitive data on almost 2000 Instacart shoppers may have been exposed to third-party contractors who were providing IT and Security support. Instacart released a press release which states the two employees “may have reviewed more shopper profiles than was necessary in their roles as support agents.” It is believed once […] | |||
|
2020-08-20 16:41:05 | Submit your nominations now for the Most inspiring Women in Cyber 2020 (lien direct) | Image: Commodore Grace M. Hopper On Thursday 8th October the 25 most inspiring women in cyber security in the UK for 2020 will be honoured in an online event designed to highlight their achievements and inspire the next generation of women active or considering a career in cyber security. You can nominate someone who inspires […] | |||
|
2020-08-19 12:52:05 | Report finds only 7% of analysed organisations have a good security culture (lien direct) | In the 2020 “Security Culture Report”, data was collected from 120,050 employees in 1,107 organisations across 24 countries. There was a total of 17 industry sectors examined in detail and results revealed a large gap between the best performers and the poor performers when it comes to security culture. Only 7% of the analysed organisations […] | |||
|
2020-08-18 11:18:22 | Pandemic Phishing Prevails (lien direct) | According to data obtained from a Freedom of Information inquiry conducted by the Lanop Accountancy Group, Her Majesty’s Revenue and Customs (HMRC) is investigating 10,428 email, SMS, social media, and phone scams exploiting the Covid-19 pandemic. The highest rate of phishing scams occurred shortly after many countries went into lockdown in May with 5,152 reports […] | |||
|
2020-08-18 10:49:16 | What it Means to Be a Cybersecurity Pathfinder (lien direct) | The field of cybersecurity can be a somewhat unforgiving working environment. Bad actors will quite literally stop at nothing to wreak havoc for their own personal gain, financial or otherwise. Unfortunately, no public holiday or even pandemic, offers a hiatus from their malicious pursuits. Security professionals are burdened with unrelenting pressure to protect their organisation; […] | |||
|
2020-08-18 10:08:38 | Cruise Control, Carnival Catastrophe (lien direct) | As if times weren’t hard enough for the travel industry, BleepingComputer revealed that the cruise line operator Carnival Corporation has disclosed that one of their brands suffered a ransomware attack over the past weekend. When it comes to passenger travel, data breaches and ransomware can be especially catastrophic. Biographical information, travel details and potentially passport […] | Ransomware | ||
|
2020-08-17 14:12:34 | Webinar: How to keep the UK secure as it reopens (lien direct) | At the time of writing, the UK is on the long, anxious road back to normality as we continue to come slowly out of the nation-wide lockdown facilitated by the Covid-10 pandemic. Where questions a few months ago were related to how we can flatten the curve, protect the NHS and the economy, now the […] | |||
|
2020-08-17 11:29:29 | A Level results: can we trust an algorithm? (lien direct) | At a time when students' lives in the UK have already been upended with the school year being cut short by a deadly pandemic, an added layer of chaos and controversy has erupted after officials decided to entrust establishing pupils' A-Level grades to a computer algorithm. In theory, the algorithm used to determine the grades […] | |||
|
2020-08-17 08:03:58 | Canadian Government Services Face Cyberattack (lien direct) | According to BleepingComputer, the Office of the Chief Information Office of Government of Canada has admitted that its online portal, GCKey, had fallen victim to a cyberattack. This portal allows the public to gain access to numerous government services, not least services for immigration, taxes, benefits. The attack was supposedly an attempt to steal COVID-19 […] | |||
|
2020-08-17 07:57:18 | Konica Minolta Victim of Ransomware Attack (lien direct) | At the end of July, Konica Minolta, the business technology giant, fell victim to a ransomware attack that interrupted its operations for close to a week, shares BleepingComputer. The multinational corporation made over $9 billion in revenue in 2019 and has nearly 44,000 employees, offering various services and products – including healthcare technology and printing […] | Ransomware | ||
|
2020-08-17 07:48:55 | Momentum Metropolitan Suffer from Cyberattack (lien direct) | The South African financial services group, Momentum Metropolitan, has suffered a cyberattack last Thursday, according to Business Insider. Data from one of its subsidiaries has now been accessed by hackers but, investigations suggest that client information has not been stolen. “Information accessed contains administrative and financial data that is not expected to prejudice any stakeholders […] | |||
|
2020-08-14 12:51:35 | (Déjà vu) Data breaches in the healthcare sector down by 10% in the first half of 2020 (lien direct) | CI Security has released today its healthcare data breach report, which analysed data from the US Department of Health and Human Services (HHS). The analysis found that healthcare breach reports in the first half of this year were down 10.4% compared to the second half of 2019, with the number of breached records falling by nearly […] | Data Breach | ||
|
2020-08-14 12:47:01 | BootHole vulnerability in Linux systems renders servers unbootable (lien direct) | It was reported this week by Naked Security that Linux systems are affected by a vulnerability that can render those Linux servers unbootable. BootHole leverages a vulnerability in both GRUB2 and Secure Boot, explains TechRepublic. To make BootHole a bit more daunting, it’s actually a really easy hack to pull off. The only thing blocking […] | Hack Vulnerability | ||
|
2020-08-14 11:25:41 | Researchers uncover critical flaw within Amazon Alexa which can lead to stolen voice history and data (lien direct) | Security researchers at Check Point have discovered the Amazon Alexa assistant can be hacked to make it hand over sensitive data including voice recordings due to flaws within the services subdomains. The researchers explained that these critical issues could occur because the services subdomains are prone to Cross-Origin Resource Sharing (CORS) misconfiguration and cross-site scripting […] | |||
|
2020-08-14 11:23:45 | Data from US Gun exchange exposed by hackers (lien direct) | Cybercriminals have infiltrated a Gun Exchange in Utah, US and released highly sensitive information on a cybercrime forum. It is estimated that records over 200,000 user records were stolen from a variety of linked sites which include 195,000 user records for the utahgunexchange.com, 45,000 records for their video site, 15,000 records from the hunting site […] | |||
|
2020-08-14 11:21:58 | Google attempting new URL displays to tackle phishing and other scams (lien direct) | Some Google Chrome users can expect a big change in how the browser displays URLs as the company tests out how domain names are seen in a bid to thwart online scams. The test is expected on Chrome 86 which is slated for release at the end of August. The experiment will involve some “randomly […] | |||
|
2020-08-14 11:20:00 | Unprotected AWS Server exposes over 350m passwords (lien direct) | Ethical hackers have discovered 350 million exposed email addresses on an unsecured server which were likely to have either been stolen or acquired back in October 2018. The find was made after the CyberNews threat researchers came across an unprotected depository (also known as a bucket) on an Amazon S3 server which is said […] | Threat | ||
|
2020-08-12 13:41:29 | Update your browser now! Chrome bug allows bypassing of CSP protection (lien direct) | If you haven’t recently updated your Chrome, Opera, or Edge web browser to the latest available version, it would be an excellent idea to do so as quickly as possible, The Hacker News advises. Cybersecurity researchers on Monday disclosed details about a zero-day flaw in Chromium-based web browsers for Windows, Mac and Android that could […] | |||
|
2020-08-12 13:38:51 | #SorryNotSorry: Seek apologises for leaking user details but won\'t report it as a notifiable data breach (lien direct) | Job search engine Seek confirmed while it suffered an “internal technical issue” on Monday, which resulted in the exposure of other candidate details when they were logged into their Seek Profiles, it does not view the incident as a notifiable data breach and will not be reporting it to the Office of Australian Information Commissioner […] | Data Breach | ||
|
2020-08-12 13:34:41 | (Déjà vu) Citrix\'s Xen Mobile Servers for ednpoint management affected by critical flaw (lien direct) | Citrix today released patches for multiple new security vulnerabilities affecting its Citrix Endpoint Management (CEM), also known as XenMobile, a product made for enterprises to help companies manage and secure their employees’ mobile devices remotely, The Hacker News reported. Citrix Endpoint Management offers businesses mobile device management (MDM) and mobile application management (MAM) capabilities. It […] | |||
|
2020-08-11 14:03:30 | Securing Emails in the Modern Age (lien direct) | In the age of modern connectivity, emails are the de facto mode of communication. Securing emails from cybercriminals is a difficult task, and many businesses are left scratching their heads when deciding how to keep corporate data and privileged information secure. Zix a provider of cloud email security, productivity and compliance solutions has announced the […] |
To see everything:
Our RSS (filtrered)
