What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-05-07 11:46:44 | Smashing Security #177: Elon Musk, Roblox, and Love Bug author found (lien direct) | What can X Æ A-12 Musk teach us about passwords? How did our guest finally hunt down in Manila the author of one of history’s biggest virus outbreaks? And what on earth is a hacker doing breaching Roblox security? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist Geoff White. | |||
|
2020-05-05 22:08:06 | Kaiji – a new strain of IoT malware seizing control and launching DDoS attacks (lien direct) | Kaiji, a new botnet campaign, created from scratch rather than resting on the shoulders of those that went before it, is infecting Linux-based servers and IoT devices with the intention of launching distributed denial-of-service (DDoS) attacks. Read more in my article on the Bitdefender BOX blog. | Malware | ||
|
2020-05-04 13:57:15 | Tarkett floored by cyber attack (lien direct) | French flooring company Tarkett has revealed that it was hit by a cyber attack on April 29th, and that its operations continue to be disrupted as a result. | |||
|
2020-05-04 12:52:20 | It was 20 years ago today… The Love Bug remembered (lien direct) | It was twenty years ago today, that the Love Bug hit computer systems worldwide. Which means I know what I was doing exactly twenty years ago! James Griffiths at CNN interviewed me about my memories of that historic day | |||
|
2020-05-04 11:57:53 | My old-fashioned view on the terms “blacklist” and “whitelist” (lien direct) | The UK's National Cyber Security Centre (NCSC) has said that it will be changing the terminology it uses on its website, causing some to describe it as “political correctness gone mad.” Here’s what I think… | |||
|
2020-05-03 13:39:46 | Ghost blogging platform suffers security breach (lien direct) | Scary stuff as hackers exploit Salt vulnerability in attempt to mine cryptocurrency on breached blogging platform’s servers. | Vulnerability | ||
|
2020-04-30 14:58:54 | Cybercriminals are using Google reCAPTCHA to hide their phishing attacks (lien direct) | Security researchers say that they are seeing cybercriminals deploying Google's reCAPTCHA anti-bot tool in an effort to avoid early detection of their malicious campaigns. Read more in my article on the Hot for Security blog. | Tool | ||
|
2020-04-30 13:08:36 | Newly-discovered Android malware steals banking passwords and 2FA codes (lien direct) | Security researchers are warning of a new mobile banking trojan that steals details from over 200 financial apps and intercepts SMS messages to bypass two-factor authentication mechanisms. Read more in my article on the Tripwire State of Security blog. | Malware | ||
|
2020-04-29 23:01:06 | Smashing Security #176: Hacking hacks and university attacks (lien direct) | Journalists spying on their rivals, the NHS rejects Apple and Google’s approach to Coronavirus-tracing, and universities are hit by an old-fashioned sexy lady attack. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Rik Ferguson. | |||
|
2020-04-29 16:04:23 | Shade ransomware calls it a day, 750,000 decryption keys released (lien direct) | Even if you can’t pay the ransom and don’t have a backup, don’t destroy your garbled data believing that you’ll never be able to recover it. Maybe one day someone will build a tool that can do a job, or a ransomware gang will have a change of heart. | Ransomware Tool | ||
|
2020-04-27 19:11:36 | A GIF image could have let hackers hijack Microsoft Teams at your firm (lien direct) | A critical vulnerability has been patched in the Microsoft Teams work collaboration platform after security researchers discovered a way in which hackers could compromise accounts and steal data with a seemingly harmless .GIF image. Read more in my article on the Bitdefender Business Insights blog. | Vulnerability | ||
|
2020-04-27 09:58:28 | Don\'t vote for me and Smashing Security in the EU Security awards (lien direct) | The seventh annual European Cybersecurity Blogger Awards are now open to the public vote. Let them know what your favourite security blogs, podcasts, Twitter accounts etc are… Here’s my explanation of why you shouldn’t vote for me in various categories. | |||
|
2020-04-26 10:16:26 | Hackers\' malicious script skimmed credit card details off Robert Dyas website (lien direct) | UK DIY, electricals, and houseware chain Robert Dyas has revealed that malicious code on Robert Dyas’s payment page was secretly skimming the credit card details of customers and sending them to hackers. | |||
|
2020-04-26 09:15:16 | Called to an urgent Zoom meeting with HR? It might be a phishing attack (lien direct) | Cybercriminals have sent out emails attempting to trick remote workers into believing they need to join a Zoom meeting to discuss their future employment. | |||
|
2020-04-24 10:21:56 | Text \'bomb\' crashes iPhones, iPads, Macs and Apple Watches – what you need to know (lien direct) | An innocent-looking message, containing characters in the Sindhi language, can cause your iPhone to crash without warning. Read more in my article on the Hot for Security blog. | |||
|
2020-04-23 13:02:28 | Maze ransomware – what you need to know (lien direct) | Maze is a particularly sophisticated strain of Windows ransomware that has hit companies and organisations around the world, demanding a cryptocurrency payment be made in return for the safe recovery of encrypted data. But what makes Maze so dangerous is that it also steals the data it finds, and threatens to publish it if the ransom is not paid. Read more in my article on the Tripwire State of Security blog. | Ransomware | ||
|
2020-04-23 08:34:43 | Smashing Security #175: Zoom deepfakes, Zardoz, and \'Rona tracing (lien direct) | Will deepfake disguises hit a video conference near you, can Coronavirus-tracing apps be trusted, and should Facebook shut down anti-quarantine events? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. | |||
|
2020-04-22 20:06:16 | This Zoom trick would have saved swearing politician\'s blushes (lien direct) | The Welsh Assembly had a Zoom meeting today to discuss the government’s response to the Coronavirus pandemic. It… err.. didn’t go entirely to plan. See what happened and how you can prevent it from happening to you. | |||
|
2020-04-22 14:03:59 | How to protect your Nintendo account from hackers with two-step verification (2SV) (lien direct) | Nintendo, like many other companies, offers two-step verification (2SV) to help users protect their online accounts from hackers. Here’s what you need to know. | |||
|
2020-04-20 13:06:58 | Prioritize alerts and jump-start your investigations with Recorded Future\'s free browser extension. Sign up now. (lien direct) | Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! Access real-time security intelligence from any web-based SIEM, vulnerability solution, or webpage. Stop opening multiple browser tabs and pivoting between them to collect all of your data manually. Recorded Future Express does […] | Vulnerability | ||
|
2020-04-20 12:50:38 | IT services giant Cognizant hit by Maze ransomware attack (lien direct) | The Maze group’s attacks see corporate victims not only infected with file-encrypting ransomware, but also threatened with the publication of stolen data if extortion demands are not met. Read more in my article on the Hot for Security blog. | Ransomware | ||
|
2020-04-17 12:10:23 | Google declares war on Android fleeceware scamming users through sneaky subscriptions (lien direct) | The Google Play Store has announced new policies that aim to kick out “free trial” Android apps that you use underhand techniques to trick unsuspecting users into signing-up for expensive subscriptions. | |||
|
2020-04-17 09:51:51 | I\'ve sent my worst enemies to Earworm Island (lien direct) | Imagine marooning your worst enemy on a desert island, along with the four most terrible records ever made. That’s the premise of a brand new podcast, hosted by technology journalist Geoff White. And I’m his first guest! Not on the island, you understand. But I get to choose who I send to the island, and what tunes I torture them with. Yeah, this isn’t security-related – but I figure we all could do with a break right now. | |||
|
2020-04-16 14:34:17 | A Zoom zero-day exploit is up for sale for $500,000 (lien direct) | There are reportedly two zero-day vulnerabilities present in the latest versions of Zoom for Windows and macOS – and exploits for the unpatched flaws are being actively hawked to anyone who might be prepared to pay. Read more in my article on the Tripwire State of Security blog. | |||
|
2020-04-16 12:29:13 | 49 crypto-wallet pickpocketing browser extensions booted from the Chrome web store (lien direct) | Hackers have been using Google Ads to target unsuspecting cryptocurrency investors into installing malicious browser extensions, with the aim of stealing passphrases and private keys and draining funds from their wallets. Read more in my article on the Hot for Security blog. | |||
|
2020-04-16 09:25:59 | Password security is critical in a remote work environment – see where businesses are putting themselves at risk (lien direct) | Graham Cluley Security News is sponsored this week by the folks at LastPass. Thanks to the great team there for their support! LastPass has analyzed over 47,000 businesses to bring you insights into security behavior worldwide. The takeaway is clear: Many businesses are making significant strides in some areas of password and access security – […] | LastPass | ||
|
2020-04-15 23:02:52 | Smashing Security #174: Garry Kasparov and Animal Crossing (lien direct) | World-chess-champion-turned-activist Garry Kasparov joins us as we discuss celebrity lookalikes, smartphone fleeceware, the impact Coronavirus is having on security, and how a popular new video game is being used for political ends. All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault. | |||
|
2020-04-15 15:49:00 | How to host safer Zoom meetings (lien direct) | The Coronavirus pandemic has forced many people to work from home for the first time, and use video conferencing apps that they’re not familiar with. Guest contributor Philip Le Riche takes a closer look at what you can do to better protect your Zoom meetings. | |||
|
2020-04-09 15:56:07 | Report: Travelex paid hackers $2.3 million worth of Bitcoin after ransomware attack (lien direct) | Travelex reportedly paid US $2.3 million worth of Bitcoin to the REvil ransomware gang, who had threatened to publish personal data of customers stolen from the foreign currency exchange service. | Ransomware | ||
|
2020-04-09 15:06:22 | Zoom takes action after meeting IDs leak in careless screenshots (lien direct) | The video-conferencing app Zoom has been updated to remove the display of meeting IDs from its title bar, after a series of high profile privacy blunders by those sharing screenshots of their online meetings. Read more in my article on the Hot for Security blog. | |||
|
2020-04-09 11:32:06 | Smashing Security #173: 5G fiascos, Zoom gloom, and butt biometrics (lien direct) | We take a look at the stinky backside of surveillance, gas about the latest video-conferencing threats, and jump into the murky world of 5G conspiracy theories. All this and much much more is discussed in the latest edition of the “Smashing Security” podcast, with special guest technology broadcaster David McClelland. | |||
|
2020-04-07 09:52:35 | Crazy cryptomining Cooking Mama rumours spread as game pulled from Nintendo Switch online store (lien direct) | This weekend rumours circulated that the Nintendo Switch video game “Cooking Mama: Cookstar” contained code that would secretly hijack the game console’s processing power to mine for cryptocurrency. Probably not the kind of think you expect as you attempt to conjour up everything from burritos to Baked Alaska. | |||
|
2020-04-03 17:12:10 | Hacking the iOS/macOS webcam – Apple pays out $75,000 to bug hunter (lien direct) | A vulnerability researcher has received a bug bounty after discovering security holes in Apple’s software that could allow malicious parties to hijack an iPhone or Mac user’s camera and spy upon them. Read more in my article on the Hot for Security blog. | Vulnerability | ||
|
2020-04-02 13:57:17 | Zoom promises to improve its security and privacy as usage (and concern) soars (lien direct) | Having suddenly found itself with a gigantic increase in usage, Zoom was facing a crisis. It risked losing a large amount of the goodwill it had received because of revelations about its less-than-perfect attitude towards security and privacy. Lets hope it keeps to its word and begins to threat the safety of its users as a priority. Read more in my article on the Tripwire State of Security blog. | Threat | ||
|
2020-04-02 10:18:03 | Smashing Security #172: UncleF***Face (lien direct) | Carole details how companies are spying on their stay-at-home workers, Mikko Hyppönen discusses the trustworthiness of video chat apps, and Graham gets embarrassed when he admits he’s bought a Facebook Portal for his in-laws. All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast with Graham Cluley and Carole Theriault. | |||
|
2020-03-31 15:06:49 | The UK Cabinet is meeting on Zoom… here\'s the meeting ID (lien direct) | In case you’ve lost the Zoom meeting ID for today’s UK Cabinet meeting, here it is. | |||
|
2020-03-31 11:14:21 | Has Houseparty been hacked? $1 million reward offered to unearth who is behind widespread claims (lien direct) | In recent days warnings have spread rapidly across social networking sites that the Houseparty app – which makes it easy for anyone to drop in for a video chat with friends locked down during the Coronavirus pandemic – is unsafe. But is there any evidence? | |||
|
2020-03-30 15:51:02 | Cyber volunteers needed to help protect our health services during the Coronavirus outbreak (lien direct) | The aim of Cyber Volunteers 19 (CV19) is to help people volunteer their IT security expertise and services to health services, during the Covid-19 Coronavirus pandemic. | |||
|
2020-03-30 12:17:28 | I made a guest appearance on Technado, talking cybersecurity from the safety of my shed (lien direct) | Last week I was delighted to be invited onto ITPro.TV’s “Technado” show with Don Pezet, Justin Dennison, and Peter VanRysdam to discuss anything and everything that’s going on in the tech world. So, if you have wondered what the inside of my podcast pleasure palace looks like, be sure to check out the video. | |||
|
2020-03-27 14:05:45 | Cybersecurity insurance firm Chubb investigates its own ransomware attack (lien direct) | A notorious ransomware gang claims to have successfully compromised the infrastructure… of a company selling cyberinsurance. Read more in my article on the Hot for Security blog. | Ransomware | ||
|
2020-03-26 11:39:37 | Smashing Security #171: WhatsApp hoaxes, Zoombombs, and 8-bit love (lien direct) | Blackmailers are threatening to infect your family with Coronavirus, trolls are making Zoom an unsafe place for those of a sensitive disposition, and what is the mysterious Dr Negrin audio message spreading on WhatsApp? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast. | |||
|
2020-03-24 14:30:52 | Free Netflix pass because of Coronavirus? It\'s a scam (lien direct) | The public is being warned about fraudulent messages being shared on social media platforms that Netflix is offering free passes to its platform because of the Coronavirus pandemic. Read more in my article on the Hot for Security blog. | |||
|
2020-03-23 22:52:58 | Have you patched your IoT devices against the KrØØk Wi-Fi chip flaw? (lien direct) | Unpatched IoT gadgets, smartphones, tablets, laptops, Wi-Fi access points and routers with Broadcom chips are all at risk from the KrØØk vulnerability. Read more in my article on the Bitdefender BOX blog. | |||
|
2020-03-23 22:34:50 | The Shield: the open source Israeli Government app which warns of Coronavirus exposure (lien direct) | The Israeli health ministry released a smartphone app which takes location data from users’ phones in an attempt to determine if they might have been exposed to the COVID-19 Coronavirus. Should you be worried about your privacy? Perhaps not. | |||
|
2020-03-22 14:28:43 | The Dance of the Pope virus hoax (lien direct) | Friends don’t share virus hoaxes with their friends. They spend five minutes checking their facts before sharing poppycock on social media. | |||
|
2020-03-20 16:50:38 | Security firm leaves more than five billion records exposed on unsecured database (lien direct) | A massive database, containing more than five billion records derived from past security breaches between 2012 and 2019, has been left unprotected, without any password protection on the internet. And who left it exposed? A security firm. | |||
|
2020-03-19 16:22:04 | Whatever happened to cryptojacking? (lien direct) | A couple of years ago it felt like you couldn't turn your head in any direction without seeing another headline about cryptomining and – its more evil sibling – cryptojacking. So, what happened? Read more in my article on the Tripwire State of Security blog. | |||
|
2020-03-19 11:28:01 | Smashing Security #170: PornHub, Coronavirus apps, and remote working (lien direct) | It’s a self-isolated Coronavirus special as we discuss with our quarantined special guest how COVID-19 is making itself felt in the world of cybersecurity, and we offer tips on how to better protect yourself if you’re unexpectedly working from home. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast with Graham Cluley and Carole Theriault, joined this week by Malicious Life’s Ran Levi from his attic. | |||
|
2020-03-19 10:51:28 | More business websites hit by credit-card skimming malware (lien direct) | In the last few days it has come to light that blender manufacturer NutriBullet and guitar tuition website Truefire fell foul of hackers who planted Magecart-style malicious code on their sites which went undetected for months, stealing the credit card details and personal information from users. Read more in my article on the Bitdefender Business Insights blog. | Malware | ||
|
2020-03-17 11:42:05 | Talking love and viruses on the BBC World Service (lien direct) | Can you believe it’s very nearly exactly 20 years since the Love Bug virus spread around the world, infecting millions of computers? No, I can’t either… A few weeks ago it was my pleasure to be interviewed by the BBC’s Gabriela Jones for a World Service “Witness History” documentary all about the Love Bug virus (aka ILOVEYOU or LoveLetter), and now you can listen to it too! |
To see everything:
Our RSS (filtrered)
