What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-03-08 10:01:41 | KnowBe4 tackles Security Culture with new Maturity Model (lien direct) | With 85% of data breaches caused by social engineering or human error, creating a company-wide security culture has risen up the agenda for many organisations. However, the phrase can be problematic in itself – as definitions vary, with some even equating it to security awareness training. KnowBe4 says it wants to change this and recognise […] | ★★★★★ | ||
|
2022-03-08 09:55:16 | Cyberattack hits PressReader (lien direct) | The worlds largest digital newspaper and magazine distributor has been hit with a cyberattack, leaving users without access to more than 7000 publications. PressReader is headquartered in Vancouver, Canada, but has offices in both Dublin, Ireland and Manila, Philippines. The organisation began experiencing network outages on Thursday, affecting its Branded Editions website and apps, alongside […] | |||
|
2022-03-08 09:41:42 | 25,000 Russian-linked accounts blocked by Coinbase (lien direct) | Coinbase has announced its full support of Russian sanctions, revealing the extent to which it has worked with governments. The organisation has also revealed that they have blocked 25,000 accounts linked to Russians suspected of illicit activity. “Many of which we have identified through our own proactive investigations,” the company said. “Once we identified these […] | |||
|
2022-03-07 13:25:10 | Ukraine will join NATO cyber hub (lien direct) | Ukraine is set to join the NATO cyber-defence centre following a vote confirming its admission. The move is expected to anger Russia and bring Ukraine closer to NATO. The Cooperative Cyber Defence Centre of Excellence (CCDCOE) announced that Ukraine and several other non-NATO countries will become a “contributing participant”. “Capability and knowledge comes from experience, […] | |||
|
2022-03-04 11:00:46 | Ukraine\'s request to block Russia\'s internet rejected (lien direct) | As Russia invaded Ukraine, the besieged country asked the Internet Corporation for Assigned Names and Numbers (ICANN) to take away Russia’s top-level domains (TLD), such as .ru, .рф, and .su be revoked, as well as the nation’s associated Secure Sockets Layer (SSL) certificates. Andrii Nabok, ICANN’s Ukrainian representative, and Mykhailo Fedorov, Ukraine’s vice prime minister […] | ★★ | ||
|
2022-03-04 10:50:16 | Telegram now favoured by hacktivists, cybercriminals (lien direct) | As the conflict in Ukraine progresses, Telegram messaging has emerged as a favourite tool for both hacktivists and cybercriminals alike. Research from the cybersecurity company Check Point suggests that there are six times as many groups on the messaging apps since February 24. Some topic-specific groups have grown significantly, some even reaching more than 250,000 members. […] | Tool | ★★★ | |
|
2022-03-04 10:18:32 | Blackouts hit Ukraine (lien direct) | Several Ukrainian cities are experiencing power outages as the Russian invasion rages on. NetBlocks, a Global internet access tracker, has shared data highlighting widespread internet outages across Mariupol, Sumy and other regions of the country. This comes alongside an increase in bombing campaigns and rocket fire from Russian units. Alp Toker, director of NetBlocks, told […] | |||
|
2022-03-03 11:57:39 | Cyber attack attempts on Ukraine surge tenfold (lien direct) | A threat actor in support of Russia has compromised at least 30 Ukrainian universities as vulnerability exploit attempts have surged, according to Wordfence. The security firm has generated useful intelligence on the the attacks campaign as it protects over 8300 Ukrainian WordPress sites, including those of private businesses, government, military and police. The attack campaign […] | Vulnerability Threat | ||
|
2022-03-03 10:52:35 | Medical infusion pumps vulnerable to attack (lien direct) | Researchers at Palo Alto Networks have collected data from 200,000 medical infusion pumps used to administer medicines and fluids to patients, finding that 75% of them are running with known security issues. Research has revealed that tens of thousands of devices are vulnerable to six critical severity flaws (9.8 out of 10) reported in 2019 […] | ★★★★ | ||
|
2022-03-02 11:41:42 | Cyberattacks in Ukraine could reach other countries (lien direct) | While the majority of cyberattacks in Ukraine are planned and highly targeted, there are signs that things are set to change. A new Trojan dubbed “FoxBlade” was discovered by Microsoft researchers on Ukrainian government systems that would allow attackers to use infected PCs in DDoS attacks. Experts are concerned that malware operators will try to infect […] | Malware | ||
|
2022-03-02 11:25:45 | TeaBot malware resurfaces on Google Play Store (lien direct) | TeaBot malware has been spotted on the Google Play Store posing as a QR code app, already spreading to more than 10,000 devices. Its distributors used this trick in January, and while Google ousted those entries the malware has found its way back onto the Android repository. Cleafy, an online fraud management and prevention company, […] | Malware | ||
|
2022-03-02 11:07:11 | Conti ransomware group suffers another leak (lien direct) | A Ukrainian researcher retaliating to Conti siding with Ukraine has dealt another devastating blow to the ransomware operation. More internal conversations have been leaked, alongside the source for their ransomware, administrative panels and more. The Ukrainian researcher,, who uses the Twitter handle @ContiLeaks leaked 393 JSON files containing over 60,000 internal messages on Sunday. The messages […] | Ransomware | ||
|
2022-03-02 10:39:36 | Hackers steal employee and internal data from Nvidia (lien direct) | Nvidia has admitted that employee and internal data was stolen in an apparent ransomware attack last week. The chip behemoth initially gave little away, announcing only that its “business and commercial activities continue uninterrupted” while the attack was investigated. A new statement provided more information: “Shortly after discovering the incident, we further hardened our network, […] | Ransomware | ||
|
2022-03-01 10:39:18 | Toyota hit with ransomware attack, stops production (lien direct) | Toyota, the worlds largest car maker has stopped production at all of its plants in Japan following a ransomware attack, reports suggest. Toyota announced it would suspend 28 production lines at 14 factories on Tuesday, planning to resume on Wednesday, according to Nikkei. The report claimed that the cyberattack targeted Kojima Industries, a plastic parts […] | Ransomware | ||
|
2022-03-01 10:21:02 | Russian state media hacked (lien direct) | The international hacking organisation Anonymous have claimed responsibility for taking down Russian media sites. Among those affected were the state-owned news agency TASS and daily newspaper Kommersant, having been temporarily taken offline on Monday, while St Petersburg-based news outlet Fontanka's content was replaced with a message that read, “This is not our war, let's stop […] | |||
|
2022-03-01 10:07:38 | Moscow exchange hit with cyberattack (lien direct) | Hackers endorsed by Kyiv officials have claimed responsibility for a cyberattack on the Moscow Stock Exchange. The website for the Moscow Stock Exchange was offline and inaccessible on Monday. The Ukraine IT Army posted a message on Telegram claiming that it had taken only five minutes to take down the website. The hackers claiming responsibility are […] | |||
|
2022-02-28 11:30:40 | Starlink activated to keep Ukraine\'s internet running (lien direct) | In response to several Russian cyberattacks on the country, Ukraine’s Vice Prime Minister and Minister of Digital Transformation Mykhailo Fedorov requested help from SpaceX and Tesla billionaire Elon Musk. Responding on Twitter, Musk confirmed “Starlink service is now active in Ukraine. More terminals en route.” SpaceX’s low-earth-orbit (LEO), high speed, low latency internet service, which […] | |||
|
2022-02-28 11:18:24 | Meta restricts Russian state-controlled media (lien direct) | Nick Clegg, VP of global affairs for Meta, announced yesterday that the firm has restricted access to several accounts in Ukraine at the request of its government. “We are also reviewing other government requests to restrict Russian state-controlled media. In the meantime, we will continue to label and fact check these outlets as well as […] | |||
|
2022-02-28 10:44:00 | Conti sides with Russia, internal chats leaked (lien direct) | A Ukrainian security researcher leaked the messages after the gang sided with Russia over the invasion of Ukraine. BleepingComputer has independently confirmed the validity of these messages from internal conversations previously shared with BleepingComputer regarding Conti’s attack on Shutterfly. Vitali Kremez, CEO of Advintel, has been tracking the Conti/TrickBot operation for the past two years […] | |||
|
2022-02-28 10:24:25 | Hackers will return focus to consumers in 2022 (lien direct) | Research by ReasonLabs suggests that hackers will return their focus to consumers in 2022. The detailed report claims that a number of factors have led to consumers being a more lucrative target for hackers when compared to large companies. One of these factors is the continued shift to remote working and bigger budgets for on-site […] | |||
|
2022-02-25 15:22:14 | Cato Networks experiences near 100% revenue growth for second year in a row (lien direct) | Cato Networks has recently reported its 2021 business results, showing a growing revenue by 96% YoY, increasing headcount by 66%, and a doubling in valuation to $2.5 billion with an added $200 million investment. In a new Total Economic Impact (TEI) study, Forrester Research found that Cato delivers 246% ROI in under six months. Along with performance improvements, increased […] | ★★ | ||
|
2022-02-25 13:59:10 | 1 in 6 Enterprise Endpoints exposed to identity risks (lien direct) | Yesterday, Illusive released its Analysing Identity Risks (AIR) 2022 report, which examines the unmanaged, misconfigured and exposed identity risks within organisations. The report shows that all organisations are vulnerable to attack, despite the deployment of privileged account management (PAM), multi-factor authentication (MFA) and other identity and access management (IAM) solutions. Illusive’s security teams witnessed these […] | ★★★★ | ||
|
2022-02-25 11:37:10 | Biden considers “massive” cyber attack on Russia (lien direct) | An NBC News report suggests that the US could be preparing for its most significant cyber offensive campaign in recent memory as Biden considers his options for action against Russia. The report cites two US intelligence officials, one Western intelligence official and an unnamed person, claiming that a “menu” of options have been placed in […] | |||
|
2022-02-25 11:21:15 | Ukraine calls for volunteer hackers to aid in cyber-war (lien direct) | Ukraine’s government has reportedly called for volunteers with hacking skills to aid in the protection of the country’s critical infrastructure. Reuters reported on February 24 that government-backed notices have appeared in online forums. Co-founder of Cyber Unit Technologies and major Ukrainian promotor of ethical hacking Yegor Aushev told the news agency that he wrote the […] | |||
|
2022-02-25 10:54:15 | (Déjà vu) Free Cyber Skills Training Launched for UK Pupils (lien direct) | The UK government has announced plans to provide free cyber skills training secondary school pupils. The program, dubbed Cyber Explorers, intends to educate 30,000 11 to 14-year-olds on many cybersecurity concepts, including open-source intelligence, digital forensics and social engineering. Students will use a new online learning platform to explore a range of scenarios, collecting virtual […] | ★★★ | ||
|
2022-02-24 13:03:52 | Ransomware extortion doesn\'t end after paying up (lien direct) | A study carried out by cyber security specialist Venafi has confirmed existing fears that in most cases of paying the ransom, extortion simply continues. Key findings include: 18% of victims who paid the ransom still had their data exposed on the dark web. 8% refused to pay the ransom, and the attackers tried to extort […] | |||
|
2022-02-24 10:27:50 | Expert opinion: NHS reveals data leak (lien direct) | This week, the NHS reported a data leak incident to the Information Commissioner’s Office, which puts third-party contractor cybersecurity risks in the spotlight. What happened? A former employee of PSL Print Management, a consultancy used by the NHS, requested all emails and text messages regarding his employment at the company. PSL obliged, but sent […] | ★★★ | ||
|
2022-02-23 16:03:29 | The Inside Man Season 4: The Future of Cybersecurity Awareness Training (lien direct) | Corporate training videos. The words alone make you feel bored. They summon dreary memories of wasted hours, terrible acting and worse storytelling. If I told you that it doesn't have to be that way, that training videos can be informative, engaging and even exciting, would you believe me? You'd be forgiven if you didn't. But […] | |||
|
2022-02-23 11:57:05 | EU cyber-response team deployed (lien direct) | The European Union’s newly formed Cyber Rapid-Response Team (CRRT) has been deployed to Ukraine to aid in combat against Russian threat actors. In a tweet yesterday, the Lithuanian Ministry of Defence confirmed the CRRT is to be deployed at the request of the Ukrainian government. Lithuania will sit at the head of a coalition of […] | Threat | ★★ | |
|
2022-02-23 11:36:18 | LockBit, Conti ransomware targets industrial sector (lien direct) | A new report from Dragos suggests that the industrial sector has become a common target for both financially motivated and state sponsored attacks. Ransomware groups known as LockBit and Conti have been most active in targeting organisations with and Industrial Control System (ICS)/Operational Technology (OT) environment in 2021. Researchers noted that the manufacturing vertical was […] | Ransomware | ★★★★ | |
|
2022-02-23 11:18:52 | Hackers focused on supply chains in 2021 (lien direct) | Cybercriminals have put most of their time into breaking supply chains over the last year. The manufacturing sector has emerged as a top target. IBM’s annual X-Force Threat Intelligence Index, a report based on threat data and security incidents over 2021, suggests that businesses are being “imprisoned” by criminals exploiting vulnerabilities and deploying ransomware. Researchers for […] | Threat | ★★ | |
|
2022-02-22 16:06:32 | Virsec Appoint Greg Kelton as Senior Regional Director for EMEA (lien direct) | Following on from their recent announcement of their Deterministic Protection Platform (DPP), California based software security firm Virsec have todayannounced the appointment of Greg Kelton as the new Senior Regional Director for EMEA, an appointment which will help to drive growth and expansion for Virsec in a key region. Greg is a hugely experienced software […] | ★★★★★ | ||
|
2022-02-22 12:50:50 | UK Defence Secretary warns Russia of cyber-retaliation (lien direct) | The UK's Secretary of State for Defence has reportedly warned Russia that they will retaliate with cyber attacks if the Kremlin targets British networks. The House of Commons statement from Ben Wallace follows President Putin’s order to Russian troops to invade the separatist Donetsk and Luhansk regions of Ukraine. “I'm a soldier – I was always […] | |||
|
2022-02-22 11:39:37 | Ukraine police arrest phishing group (lien direct) | The Ukrainian cyberpolice have arrested five individuals who stole credit card data from at least 70,000 people. The group of phishing actors lured people to fake mobile top up service sites. According to law enforcement, the actors used the stolen information to empty their victims’ bank accounts. The phishing operation relied on marketing and advertising […] | ★★★★★ | ||
|
2022-02-22 11:27:24 | IRS offers live interview to replace facial recognition (lien direct) | US taxpayers signing up for an online account now have the option of a live interview to verify their identity instead of using ID.me facial recognition. Following discomfort surrounding their collection of biometric data, the IRS has offered the interviews as a short term solution for this year’s filing system. The agency previously required taxpayers […] | |||
|
2022-02-22 10:44:08 | UK companies Omniscope and Searchlight Security team up to provide next-level threat intelligence (lien direct) | Two UK cybersecurity companies Searchlight Security, the provider of specialist deep and dark web monitoring products, and Omniscope, the digital threat intelligence and investigations business, have announced a partnership that brings next-level threat intelligence to enterprise customers and law enforcement agencies alike. The solution combines Omniscope's Smarti3 Intelligence platform for open-source threat intelligence of the […] | Threat | ||
|
2022-02-18 11:38:26 | DSbD\'s Four Nations Roadshow Begins (lien direct) | Next week, UK Research and Innovation’s Digital Security by Design (DSbD) challenge’s Four Nations Roadshow begins. The roadshow will journey across England, Scotland, Wales, and Ireland and will feature talks from multiple speakers highlighting the developments in computing across the decades, the state of computing in the present day, and how we can move towards […] | |||
|
2022-02-18 11:07:38 | French Dad tries to block his kids internet, wipes out town WiFi (lien direct) | A French father attempting to use a signal jammer to prevent his children from accessing the internet accidentally knocked out an entire town’s internet connection. A complaint was sent to the French Agence Nationale des Fréquences, who are responsible for managing radio frequencies in the country received an unusual complaint (translated) from a mobile phone operator. […] | |||
|
2022-02-18 10:48:50 | Major vape vendor hacked (lien direct) | According to BleepingComputer, Element Vape, a major online vendor of e-cigarettes and vaping kits is serving a credit card skimmer on its live site, presumably after being hacked. The company sells e-cigarettes, vaping equipment, e-liquids and CBD products and has significant presence across the US and Canada. Element Vape’s website is hosting a malicious JavaScript […] | ★★★★ | ||
|
2022-02-18 10:39:49 | Vulnerability found in major WordPress plugin (lien direct) | UpdraftPlus, a WordPress plugin with over 3 million installations, has been patched following the discovery of a vulnerability by security researcher Marc Montpas. The Wordfence Threat Intelligence team explained in a blog post that the vulnerability enables any logged in user, including subscriber-level users, to download backups made with the plugin. The WordPress security company […] | Vulnerability Threat | ||
|
2022-02-17 11:05:55 | Trickbot hits top brands, attacks customers (lien direct) | Trickbot, the bane of many cybersecurity professionals lives’, has begun to target the customers of 60 major institutions including Wells Fargo and Bank of America. The attacks come through web injections and phishing campaigns. Initially, Trickbot was a relatively simple Banking Trojan similar to Zeus, Agent Tesla, Dridex and DanaBot. Following the retirement of the […] | ★★ | ||
|
2022-02-17 10:06:55 | Baltimore tricked out of $375k (lien direct) | The Office of the Inspector General (OIG) has released a report revealing that Baltimore city was tricked out of hundreds of thousands of dollars last year by a cyber-criminal posing as a vendor. After receiving information from Baltimore’s Bureau of Accounting and Payroll Services (BAPS) in regards to a suspected fraudulent Electronic Funds Transfer (EFT), […] | ★★★★ | ||
|
2022-02-16 15:20:43 | Lessons Learned From the 2022 NPM Corruption (lien direct) | Marak Squires is the maintainer of the 'colors' and 'faker' libraries. The two projects accumulate ~23 million weekly downloads and support ~23,000 projects. In January of 2022, he intentionally introduced an infinite loop that bricked every project relying on either one of these libraries. Consequently, GitHub suspended the developer's account. The justification provided by the […] | ★★★★ | ||
|
2022-02-16 11:52:22 | Hackers targeting people with fake Track and Trace texts (lien direct) | Scan text messages claiming to be from NHS Test and Trace have been circulating recently, Cornwall council warns. The messages falsely claim that the recipient has been in close contact with someone that has tested positive for Covid and asks them to click on a link to book a test. The texts are sent from […] | |||
|
2022-02-16 11:36:03 | Google doubles bug bounties (lien direct) | Google has announced that they have doubled the rewards for anyone who can who can demonstrate working exploits for a range of zero-day and one-day vulnerabilities across a variety of platforms. The reward increases are applicable to exploits discovered in the Linux Kernel, Kubernetes, Google Kubernetes Engine (GKE), or kCTF (Kubernetes-based infrastructure for capture the […] | Uber | ||
|
2022-02-16 11:06:54 | 3 out of 5 cyber-attacks in 2021 were malware-free (lien direct) | A new report from CrowdStrike has revealed that ransomware-related data leaks increased by 82% year-on-year in 2021, but three-fifths of cyber attacks involved no malware whatsoever. The security company's 2022 Global Threat Report was put together using an analysis of its own incident response engagements and security telemetry. The report revealed that 62% of attacks used legitimate […] | Malware Threat | ||
|
2022-02-16 10:37:29 | DDoS attack hits Ukraine Defence and Bank Networks (lien direct) | The attacks knocked out the Ukrainian defence ministry’s website and two bank networks were knocked out. According to the internet monitoring organisation NetBlocks, the attack hit on Tuesday afternoon and lasted for several hours. In a statement yesterday, the organisation revealed that “NetBlocks metrics confirm the loss of service to multiple banking and online platforms […] | |||
|
2022-02-15 17:17:51 | Small businesses facing upwards of 11 cyberthreats per day per device (lien direct) | BlackBerry Limited has released the 2022 BlackBerry Annual Threat Report, highlighting a cybercriminal underground which it says has been optimised to better target local small businesses. Small businesses will continue to be an epicentre for cybercriminal focus as SMBs facing upward of 11 cyberthreats per device per day, which only stands to accelerate as cybercriminals […] | Threat | ||
|
2022-02-15 11:20:04 | One Identity launches Cloud Infrastructure Entitlement Management (lien direct) | One Identity, the provider of unified identity security, has announced the availability of One Identity Cloud Infrastructure Entitlement Management (CIEM), enabling businesses to support governance and privileged access for cloud infrastructure objects. The company said this innovation along with other new releases such as its Application Governance module and a new connector to Microsoft Teams, […] | |||
|
2022-02-15 11:06:35 | (Déjà vu) Google update fixes zero-day vulnerability (lien direct) | Google has released Chrome 98.0.4758.102 for Windows, Mac, and Linux, as fix for a high-severity zero-day vulnerability used by cyber-attackers. “Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild,” the company said in a security advisory released today. Chrome update will roll out over the coming weeks but it is possible […] | Vulnerability |
To see everything:
Our RSS (filtrered)
