What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
SecurityWeek.png 2019-05-16 05:59:05 Google\'s Titan Security Keys Vulnerable to Bluetooth Attacks (lien direct)

Google announced on Wednesday that it\'s offering a free replacement for its Titan Security Key dongles following the discovery of a potentially serious vulnerability.

read more

The_Hackers_News.png 2019-05-16 05:55:03 \'GozNym\' Banking Malware Gang Dismantled by International Law Enforcement (lien direct)

In a joint effort by several law enforcement agencies from 6 different countries, officials have dismantled a major cybercrime network behind GozNym banking malware. GozNym banking malware is responsible for stealing nearly $100 million from over 41,000 victims across the globe for years. GozNym was created by combining two known powerful Trojans-Gozi ISFB malware, a banking

bleepingcomputer.png 2019-05-16 05:05:01 Microsoft Tech Support Scams Invade Azure Cloud Services (lien direct)

Tech support scams have always been a problem, but they typically were located on small web hosting services throughout the world. Researchers have now observed these scams increasingly moving towards the Microsoft Azure cloud platform for ease of deployment and inexpensive web hosting. [...]

The_Hackers_News.png 2019-05-16 03:55:05 Bluetooth Flaw Found in Google Titan Security Keys; Get Free Replacement (lien direct)

A team of security researchers at Microsoft discovered a potentially serious vulnerability in the Bluetooth-supported version of Google\'s Titan Security Keys that could not be patched with a software update. However, users do not need to worry as Google has announced to offer a free replacement for the affected Titan Security Key dongles. In a security advisory published Wednesday, Google

The_State_of_Security.png 2019-05-16 03:00:02 A Simple Data Breach Guide (Interpreting GDPR) (lien direct)

Perhaps it\'s too melodramatic to claim that the debate over how to define a data breach “rages on” because we haven\'t seen bodies flying out of windows yet, but it is a serious question with genuine financial ramifications now that the General Data Protection Regulation (GDPR) and its accompanying fines for mishandling data have arrived […]… Read More

The post A Simple Data Breach Guide (Interpreting GDPR) appeared first on The State of Security.

NetworkWorld.png 2019-05-16 03:00:00 WhatsApp attacked by spyware | TECH(feed) (lien direct)

WhatsApp\'s recent spyware hack took advantage of a security vulnerability and allowed attackers to access private, digital communication. In this episode of TECH(feed), Juliet walks through the hack, who was affected and how you can secure your devices ASAP.

zataz.png 2019-05-16 01:37:02 Pourquoi WhatsApp ne sera jamais sécurisé (lien direct)

Le monde semble choqué par le fait que WhatsApp a transformé tout téléphone en logiciel espion. Tout sur votre téléphone, y compris les photos, les courriels et les textes, était accessible aux attaquants simplement parce que vous aviez WhatsApp installé. Explication de Pavel Durov, fondateur de la ...

Cet article Pourquoi WhatsApp ne sera jamais sécurisé est apparu en premier sur ZATAZ.

zataz.png 2019-05-16 01:03:01 Le FBI lance une alerte concernant le programme malveillant ELECTRICFISH (lien direct)

Le département américain de la Sécurité intérieure et le FBI publient une alerte concernant le programme malveillant Electric Fish. Des pirates informatiques nord-coréens en seraient les créateurs. Le DHS et le FBI indique, dans leur alerte datée du 9 mai 2019, ont découvert une nouvelle variante du...

Cet article Le FBI lance une alerte concernant le programme malveillant ELECTRICFISH est apparu en premier sur ZATAZ.

WiredThreatLevel.png 2019-05-16 00:53:01 SpaceX Is Banking on Satellite Internet. Maybe It Shouldn\'t (lien direct)

The first satellites of Elon Musk\'s mega-constellation Starlink are heading to space, but the satellite internet project faces tough economics on Earth.

SecurityWeek.png 2019-05-16 00:45:05 Trump Bars U.S. Companies From Foreign Telecoms Posing Security Risk (lien direct)

President Donald Trump declared a national emergency Wednesday barring US companies from using foreign telecoms equipment deemed a security risk -- a move that appeared aimed at Chinese giant Huawei.

read more

ZDNet.png 2019-05-16 00:30:04 Microsoft releases new version of Attack Surface Analyzer utility (lien direct)

New Attack Surface Analyzer 2.0 works on Windows, but also Mac and Linux.

zataz.png 2019-05-15 23:57:04 L\'Eurovision attaqué par des pirates informatiques du Hamas! (lien direct)

Le site web officiel en charge de la diffusion de l’Eurovision attaqué par des pirates informatiques pro Hamas. Une fausse alerte et des menaces affichées à l’encontre de l’Eurovision et d\'Israël diffusées sur le site officiel de la compétition. La première demi-finale de l’E...

Cet article L’Eurovision attaqué par des pirates informatiques du Hamas! est apparu en premier sur ZATAZ.

zataz.png 2019-05-15 23:39:03 Le pirate Fxsmsp tente de rançonner Symantec, McAfee et Trend Micro (lien direct)

Le groupe de pirates présumé Russe, Fxsmsp, tente de faire chanter des éditeurs de solutions de cybersécurité. Symantec, McAfee et Trend Micro dans la ligne de mire! Nous vous parlions, il y a peu, des maîtres chanteurs sur la toile: Rex Mundi, Dark Overlord, Snatch ou encore Fxsmsp. Se dernier a an...

Cet article Le pirate Fxsmsp tente de rançonner Symantec, McAfee et Trend Micro est apparu en premier sur ZATAZ.

WiredThreatLevel.png 2019-05-15 23:07:02 Trump Is Hiding Obamacare, A Major Microsoft Bug, and More News (lien direct)

Catch up on the most important news today in 2 minutes or less.

TechRepublic.png 2019-05-15 22:32:00 Network documentation: Why a simple checklist may be your best option (lien direct)

As the number of network-connected devices grows, IT needs a reliable method of keeping track of device info. Erik Eckel advocates using a simple checklist for quick access to the critical details.

ZDNet.png 2019-05-15 22:10:04 Trump signs executive order banning US telcos from buying or using foreign gear (lien direct)

Executive order doesn\'t mention Huawei, but it\'s a Huawei ban for all intents and purposes.

Chercheur.png 2019-05-15 22:09:01 A Tough Week for IP Address Scammers (lien direct)

In the early days of the Internet, there was a period when Internet Protocol 4 (IPv4) addresses (e.g. 4.4.4.4) were given out like cotton candy to anyone who asked. But these days companies are queuing up to obtain new IP space from the various regional registries that periodically dole out the prized digits. With the value of a single IP hovering between $15-$25, those registries are now fighting a wave of shady brokers who specialize in securing new IP address blocks under false pretenses and then reselling to spammers. Here\'s the story of one broker who fought back in the courts, and lost spectacularly. On May 14, South Carolina U.S. Attorney Sherri Lydon filed criminal wire fraud charges against Amir Golestan, alleging he and his Charleston, S.C. based company Micfo LLC orchestrated an elaborate network of phony companies and aliases to gather more than 735,000 IPs from the American Registry for Internet Numbers (ARIN), a nonprofit which oversees IP addresses assigned to entities in the U.S., Canada, and parts of the Caribbean.

WiredThreatLevel.png 2019-05-15 22:07:02 The FCC\'s Robocall Plan Sounds Awfully Familiar (lien direct)

FCC chairman Ajit Pai has proposed a set of rules to combat robocalls. Don\'t get your hopes up quite yet.

WiredThreatLevel.png 2019-05-15 21:53:01 VW Will Make Its Own Batteries to Power an Electric Future (lien direct)

The German automaker plans 70 electric models by 2028. So it\'s building a gigafactory to ensure it has enough batteries.

no_ico.png 2019-05-15 21:19:00 Report: Most Organizations Are Dissatisfied With Their Web Application Firewalls (WAFs) (lien direct)

Ineffective protection, time-consuming management, high cost of ownership all play a role   Cequence Security, a provider of innovative software solutions that protect web, mobile, and API-based applications from cyberattacks, today released a new Ponemon Institute report – “The State of Web Application Firewalls”- showing that only 40% of organizations are satisfied with their WAF. The report is …

The ISBuzz Post: This Post Report: Most Organizations Are Dissatisfied With Their Web Application Firewalls (WAFs) appeared first on Information Security Buzz.

SecurityAffairs.png 2019-05-15 21:08:00 SAP Security Patch Day for May 2019 fixes many missing authorization checks (lien direct)

SAP released SAP Security Patch Day for May 2019 that includes 8 Security Notes, 5 of which are updates to previously released Notes. Five Security Notes included in SAP Security Patch Day for May 2019 addressed missing authorization checks in SAP products, including Treasury and Risk Management, Solution Manager and ABAP managed systems, dbpool administration, […]

The post SAP Security Patch Day for May 2019 fixes many missing authorization checks appeared first on Security Affairs.

WiredThreatLevel.png 2019-05-15 21:03:01 The Open World of \'Rage 2\' Is More Barren Than It Should Be (lien direct)

The new shooter from Avalanche Studios and id Software attempts to hybridize two disparate game design approaches-and neither of them fully work.

SecurityWeek.png 2019-05-15 20:27:01 Researchers Link Disparate Chinese Hacking Groups (lien direct)

The Chinese government appears to have centralized control over several hacking groups previously believed to be separate threat actors, the BlackBerry Cylance Threat Intelligence security researchers say. 

read more

TechRepublic.png 2019-05-15 20:22:02 5 best on-premises cloud storage options (lien direct)

You don\'t have to depend solely on third-party cloud storage solutions. Deploy one of these on-premises tools for your own, in-house cloud.

ZDNet.png 2019-05-15 20:20:01 Russian government sites leak passport and personal data for 2.25 million users (lien direct)

Passport data for high-ranking Russian politicians among the leaked information.

onapsis.png 2019-05-15 20:14:00 Onapsis Appoints Gerhard Eschelbeck, Former Google CISO, to Board of Directors (lien direct)

Onapsis, the global leader in business application cyber resilience, today announced the appointment of former Google Vice President of Security & Privacy Engineering (CISO) Gerhard Eschelbeck to the company\'s board of directors.

Board MemberCorporateMariano Nunez
05/15/2019
Kaspersky.png 2019-05-15 20:01:03 Google Titan Security Key Recalled After Bluetooth Pairing Bug (lien direct)

Google is offering free replacements for its Titan Security Key after discovering a misconfiguration in its pairing protocols.

no_ico.png 2019-05-15 19:31:04 Experts Reactions On Intel Flaw Lets Hackers Siphon Secrets From Millions Of PCs (lien direct)

Researchers have uncovered yet another flaw in Intel’s hardware. It can allow attackers to eavesdrop on virtually every bit of raw data that a victim’s processor touches.   A supergroup of security researchers around the world found a new speculative execution attack against Intel chips that lets an attacker who can run code on a victim …

The ISBuzz Post: This Post Experts Reactions On Intel Flaw Lets Hackers Siphon Secrets From Millions Of PCs appeared first on Information Security Buzz.

securityintelligence.png 2019-05-15 19:30:02 Get Ahead of Cybersecurity AI Maturation by Building a Cognitive SOC (lien direct)

>Cybersecurity AI is approaching maturity. Are you prepared to defend against a new wave adversarial machine learning risks?

The post Get Ahead of Cybersecurity AI Maturation by Building a Cognitive SOC appeared first on Security Intelligence.

no_ico.png 2019-05-15 19:18:04 Uniqlo Data Breach Commentary (lien direct)

Fast Retailing, the company behind multiple Japanese retail brands, announced that the UNIQLO Japan and GU Japan online stores have been hacked and third parties accessed 461,091 customer accounts following a credential stuffing attack. Information accessed includes customer names, addresses, phone numbers, email addresses, genders, dates of birth, purchase history, clothing measurements and partial payment …

The ISBuzz Post: This Post Uniqlo Data Breach Commentary appeared first on Information Security Buzz.

DarkReading.png 2019-05-15 18:35:00 New Intel Vulnerabilities Bring Fresh CPU Attack Dangers (lien direct)

Four newly discovered vulns from the speculative-execution family bring Meltdown-like threats to Intel\'s processors.

WiredThreatLevel.png 2019-05-15 18:17:03 Google Recalls Titan Security Key Over a Bluetooth Flaw (lien direct)

Google will replace any Titan BLE branded security key, after disclosing that a nearby attacker could use it to compromise your accounts.

ZDNet.png 2019-05-15 18:12:01 Google to replace faulty Titan security keys (lien direct)

Vulnerability in Bluetooth pairing protocol forces Google to replace Titan keys sold in the US.

TechRepublic.png 2019-05-15 18:05:00 10 reasons to consider switching your company\'s phone service to Google Voice (lien direct)

Google Voice for G Suite is integrated with other G Suite apps. Find out how it might help businesses modernize and consolidate voice communications.

WiredThreatLevel.png 2019-05-15 18:03:03 When Google Serves Ads in Iran, Advertisers Pay the Price (lien direct)

Advertisers say that Google makes it far too easy to accidentally run ads in countries under US sanctions like Iran, North Korea, or Syria.

TechRepublic.png 2019-05-15 18:00:00 Why MDS vulnerabilities present a threat as serious as Spectre and Meltdown (lien direct)

Microarchitectural Data Sampling are CPU side-channel vulnerabilities that allow attackers to view in-flight data from CPU-internal buffers. Learn more about MDS attacks in this comprehensive guide.

WiredThreatLevel.png 2019-05-15 17:53:01 James Charles, Tati Westbrook, and the Future of Beauty YouTube (lien direct)

Fans are setting their Charles-branded makeup on fire, but his feud with Westbrook is about public loyalties-not business.

TechRepublic.png 2019-05-15 17:39:00 Tech news roundup: Microsoft Office 365, Facebook scandal, and AI adoption (lien direct)

This week\'s TechRepublic and ZDNet news stories include a security warning from Microsoft, a rundown of the Facebook privacy scandal, and a look at the highest paying internships for 2019.

SecurityWeek.png 2019-05-15 17:21:00 Hackers Exploit ASUS Update Process to Install Backdoor (lien direct)

The BlackTech cyber-espionage group has been performing man-in-the-middle (MitM) attacks on the update process of the ASUS WebStorage application to deliver the Plead backdoor to their targeted victims, ESET reports.

read more

bleepingcomputer.png 2019-05-15 17:10:00 Over 757K Fraudulently Obtained IPv4 Addresses Revoked by ARIN (lien direct)

The American Registry for Internet Numbers, Ltd. (ARIN) discovered a fraud scheme through which 757,760 IPv4 addresses worth between $9,850,880 and $14,397,440 were fraudulently obtained. [...]

TechWorm.png 2019-05-15 17:05:04 WhatsApp confirms vulnerability in its app after report of spyware attack (lien direct)

WhatsApp vulnerability allowed hackers to snoop on users\' calls and messages via spyware Facebook-owned WhatsApp recently confirmed vulnerability in its app that allowed attackers to install malicious spyware that could have been used for surveillance on phone calls made over the app without users\' knowledge. The vulnerability, which was first reported by The Financial Times, has […]

The post WhatsApp confirms vulnerability in its app after report of spyware attack appeared first on TechWorm.

bleepingcomputer.png 2019-05-15 17:03:04 Windows 10 Insider Build 18898 Now Shows Drive Types in Task Manager (lien direct)

Microsoft has released Windows 10 Insider Preview Build 18898 to Insiders in the Fast ring. This build includes a new feature in the Task Manager performance tab that shows the drive type of installed disks as well as fixes for crashes in Explorer and DWM. [...]

MalwarebytesLabs.png 2019-05-15 16:57:01 Microsoft pushes patch to prevent \'WannaCry\' level vulnerability (lien direct) This month marks two years since the infamous WannaCry attack. Now a Remote Desktop Protocol (RDP) vulnerability has been discovered that could be used in a similar large-scale attack-though Microsoft has released a patch. Have you updated yet?

Categories:

Cybercrime Exploits

Tags:

(Read more...)

The post Microsoft pushes patch to prevent ‘WannaCry’ level vulnerability appeared first on Malwarebytes Labs.

Kaspersky.png 2019-05-15 16:48:01 Intel ZombieLoad Side-Channel Attack: 10 Takeaways (lien direct)

Here are 10 top takeaways from Intel\'s most recent class of Spectre-like speculative execution vulnerabilities, disclosed this week.

SecurityWeek.png 2019-05-15 16:41:04 UK Supreme Court Overturns Ultimate Authority of Investigatory Powers Tribunal (lien direct)

The UK Supreme Court has delivered a ruling that ensures that intelligence agency surveillance action can be challenged in the courts, and is subject to the rule of law.

read more

SecurityWeek.png 2019-05-15 16:34:05 The Shortcomings of Network Monitoring in Fighting ICS Threats (lien direct)

Passive and Active Threat Detection is Needed to Secure Operational Technology (OT) Environments

read more

no_ico.png 2019-05-15 16:30:04 San Francisco Is The First US City To Ban Facial Recognition – Experts Comments (lien direct)

Following the news that San Francisco has become the first city to ban the use of facial recognition in local agencies, such as law enforcement, please see a comment below from Matthew Aldridge, Senior Solution Architect at Webroot, who believes that while the technology can work well, the risk of biometric data being stolen is too great …

The ISBuzz Post: This Post San Francisco Is The First US City To Ban Facial Recognition – Experts Comments appeared first on Information Security Buzz.

WiredThreatLevel.png 2019-05-15 16:28:01 Microsoft\'s First Windows XP Patch in Years Is a Very Bad Sign (lien direct)

A very bad vulnerability in Windows XP could have serious ramifications, even with a patch.

SecurityWeek.png 2019-05-15 16:26:01 Security Automation Firm Respond Raises $20 Million (lien direct)

Respond Software, a California-based company that specializes in helping security teams become more efficient through automation technology, on Tuesday announced that it raised $20 million in a Series B funding round.

read more

MalwarebytesLabs.png 2019-05-15 16:02:01 Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses (lien direct) CrySIS, aka Dharma, is a ransomware family making waves over the last two months, often being used in targeted attacks through RDP access. What other tricks are up its sleeve?

Categories:

Malware Threat analysis

Tags:

(Read more...)

The post Threat spotlight: CrySIS, aka Dharma ransomware, causing a crisis for businesses appeared first on Malwarebytes Labs.

6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26

Information mise à jours le: 2019-05-27 08:01:36
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter