What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-02-17 12:57:48 | High-Severity RCE Bug Found In Popular Apache Cassandra Database (lien direct) | According to researchers, a high-severity security bug in Apache Cassandra was discovered that has been listed as CVE-2021-445. The bug exists in how the database creates user defined functions for custom processing of data. It is easy to exploit, if not yet patched, and is rated at 8.4 (high). | |||
|
2022-02-17 12:47:33 | Breaking Comments On Red Cross Cyber Attack (lien direct) | It’s been confirmed the Red Cross cyber attack was the work of nation-state actors. SonicWall’s latest report, released today, confirms this is not a standalone development, revealing a +1885% and +755% of ransomware attacks on the global government and healthcare sectors respectively. | Ransomware | ||
|
2022-02-16 12:17:25 | Cyberattack On Ukraine Amid Tensions With Russia (lien direct) | Ukraine's Ministry of Defense on Tuesday said it had been hit with a cyberattack amid heightened tensions with Russia and concerns Moscow could launch aggressive actions against the country, including a potential ground invasion. In addition, at least two Ukrainian banks and some ATMs lost connectivity, according the Ukrainian Center for Strategic Communications and Information […] | |||
|
2022-02-16 12:13:24 | Nude Photos Shared On Telegram Without Consent (lien direct) | As reported by BBC News, women’s intimate pictures are being shared to harass, shame and blackmail them on a massive scale, on the social media app Telegram. A BBC investigation into Telegram found large groups and channels sharing thousands of secretly filmed, stolen or leaked images of women in at least 20 countries. And there’s […] | |||
|
2022-02-16 12:10:11 | New Attack Targeting Microsoft Exchange Servers (lien direct) | Researchers have discovered a new malware that is designed to be used with two existing exploits in order to transfer fraudulent money. According to an article published Tuesday, this malware combines ProxyLogon and ProxyShell in order to initiate these fraudulent transfers. An attempted attack that was flagged by the target's bank just before the transaction […] | Malware | ||
|
2022-02-15 12:13:18 | Worry For Hackers As Popular Online Forum Raidforums Goes Down (lien direct) | Popular online hacker platform raidforums.com has been down for weeks, prompting rumours that the site was a legal target of a breach by government authorities. The site is especially popular with lower level or beginner-level cyber criminals and provides tools and techniques for hackers to use. Users attempting to access the site were met with the message: […] | |||
|
2022-02-15 12:03:02 | BlackByte Ransomware Breached US Critical Infrastructure (lien direct) | In response to reports that the FBI has announced that BlackByte ransomware has breached the networks of at least three organizations from US critical infrastructure sectors in the last three months, experts at cybersecurity firms Cerberus Sentinel, RiskLens, and KnowBe4 offer the following comments. | Ransomware | ||
|
2022-02-15 12:00:27 | Apple Patches Actively Exploited Zero-day (lien direct) | Apple has released emergency security updates to combat a new zero-day bug in its WebKit browser engine that is allowing threat actors to execute arbitrary code on vulnerable versions of iPads, iPhones, and MacOS devices. Apple said that it was aware of reports that this bug may have been actively exploited by cyber criminals. This […] | Threat | ||
|
2022-02-15 11:56:43 | Ransom payments are tip of the iceberg for the true cost of ransomware (lien direct) | Calculating the true cost of a ransomware attack is a notoriously difficult task for businesses. There is the immediate cost of getting business operations up-and-running again but there is the reputational damage and break down in investor confidence to consider as well. According to a Ransomware Victims Report carried out in 2021, over half (55%) […] | Ransomware | ||
|
2022-02-14 15:53:30 | Can AI and Technology Can Wipe Out Dating Paltforms Frauds? Expert Weighs In (lien direct) | The year’s Valentine's Day and recent buzz around Tinder Swindler reminds us of the painful persistence of romance scams, which is set to reach an ‘industrial scale‘. However, the onslaught of social media comments bashing victims – the majority of which were women – for being “stupid women” and “naive” is unacceptable. In light of this, Industry Leader comments on how AI […] | Guideline | ||
|
2022-02-14 14:30:03 | Faxploiting Or How Fax Machines Can Be Hacked (lien direct) | There are very few cyber security scandals that caught the headlines like the Sony Pictures Hack. Thousands of documents were stolen and displayed online, including emails and messages between executives. In the wake of the hacks, Sony's management team sought a way to avoid the vulnerabilities of email that caused such great problems. The result was they turned to […] | |||
|
2022-02-14 14:24:20 | How To Cybersecurity: Gravity Is A Harsh Mistress (lien direct) | I love the boundless possibilities of modern software development. Anyone with a computer and an internet connection can code. More than any other time in human history, each of us has the power to build something in software, to realise whatever we can imagine. At the same time, a thriving ecosystem of open source software […] | |||
|
2022-02-14 12:19:02 | Confidential Health Data Of Thousands Of Dorset Patients Leaked By Accident (lien direct) | It has been reported that the private data of thousands of NHS patients across Dorset was breached during a five-year-period – among the highest in the country. A new study has shown Dorset Healthcare University NHS Foundation Trust (DHC) experienced the fourth highest number of data breaches in the UK, however the trust says this […] | |||
|
2022-02-14 12:12:37 | Cost Of Cyber Insurance Surging, Whats Your View? (lien direct) | As reported by the Financial Times, the cost of cyber insurance has risen steeply over the past year. According to Marsh, the price of cover in the US grew by 130 per cent in the fourth quarter of 2021 alone, while in the UK it grew by 92 per cent. That has increased pressure on […] | |||
|
2022-02-14 12:08:23 | Thousands Of WordPress Sites Threatened By PHP Everywhere RCE Flaws (lien direct) | Following the news that thousands of Wordpress sites have been threatened by PHP Everywhere RCE flaws – PHP Everywhere RCE flaws threaten thousands of WordPress sites (bleepingcomputer.com) – Jamie Akhtar, co-founder and CEO of CyberSmart explains the importance of regular patches and the danger of zero-day vulnerabilities. | |||
|
2022-02-14 12:01:14 | Redline Stealer Malware Hidden In Windows 11 Upgrade (lien direct) | HP researchers are reporting Attackers Disguise RedLine Stealer as a Windows 11 Upgrade. Windows 10 users are being duped into downloading a fake Windows 11 installers that are being used to spread the info-stealing RedLine malware. Excerpt: On 27 January 2022, the day after the final phase of the Windows 11 upgrade was announced, we […] | Malware | ||
|
2022-02-10 13:31:51 | Blocking API Attacks: 3 Things To Consider (lien direct) | The 2020s are making a name for themselves as the decade of API attacks. In February 2021, for example, Dark Reading covered a report in which 91% of organizations revealed that they had suffered an API security-related issue during the previous year. More than half (54%) of those respondents said that the problem had stemmed […] | |||
|
2022-02-10 13:27:24 | 2021 Trends Show Increased Globalized Threat Of Ransomware – Expert Commentaries (lien direct) | The cyber security experts from the UK, US, and Australia have issued a joint alert about the “growing wave of increasingly sophisticated ransomware attacks” which could have “devastating consequences”. | Ransomware Threat | ||
|
2022-02-10 13:25:37 | (Déjà vu) Mass Hack Of 500 Stores Running Magento 1 (lien direct) | Breaking story – Analysts at Sancec have found the source of a mass breach of over 500 e-commerce stores running the Magento 1 platform and involves a single domain loading a credit card skimmer on all of them. According to Sansec, the attack became evident late last month when their crawler discovered 374 infections on […] | Hack | ||
|
2022-02-10 13:13:38 | FCA Warns Banks On Cyber Threats, Expert Reaction (lien direct) | The FCA has warned financial firms to strengthen their cyber-defences amid worries of rising cyberattacks against banks. | |||
|
2022-02-10 13:06:19 | Men Are 35% Less Likely Than Women To Have No Home Security Measures In Place, Despite Rise In Burglaries Warning (lien direct) | Men are less security-conscious in their homes than women, according to new UK study People of the West Midlands are the most security-conscious in their homes, while the Scottish are the least Almost one in three Brits now own a security camera either inside or outside our home When it comes to home security measures, […] | |||
|
2022-02-10 12:59:53 | Data From Washington Data Breach May Be On \'Dark Web\' (lien direct) | The personal data of more than 250,000 licensed professionals in Washington may have made it to the “dark web,” where identity thieves gather information to enact their various schemes. Personal information of some of the hundreds of thousands of licensed professionals potentially exposed in a breach of a Washington state database may already have shown […] | Data Breach | ||
|
2022-02-10 12:57:00 | $100K Bounty To Hack ExpressVPN – YouAttest Comments (lien direct) | Express VPN is challenging researchers to crack into their TrustedServer challenging researchers to crack into their TrustedServer system with a $100K bug bounty. $100K Ground Rules: The first person to submit a valid vulnerability will receive an additional US$100,000 bonus bounty. This bonus will be valid until the prize has been claimed. Avoid violating the […] | Hack Vulnerability | ||
|
2022-02-10 12:35:04 | Russia: The Cyber Global Protagonist (lien direct) | Since 1989, after Russia ceased military operations in the Afghanistan conflict, there was a period of reflection and soul searching amongst the country's military and political leadership – not unlike the post-Vietnam era for the United States. Afghanistan was a quagmire: as Russia discovered and then the eastern powers realised in their failure at the […] | Guideline | ||
|
2022-02-10 12:24:25 | Mobile Device Management: A Journey Through A Decade (lien direct) | During the past decade, a seismic shift happened in the realm of personal computing. Mobile devices overthrew a domain that was once dominated by legacy desktops. These devices range from handheld smartphones and tablets to laptop computers. In 2021, the number of active mobile devices stood at almost 15 billion and it predicted to rise […] | |||
|
2022-02-09 15:33:43 | Why Things MUST Change This Safer Internet Day, Experts Weigh In (lien direct) | ||||
|
2021-07-01 13:08:19 | Peloton Vulnerability | Expert Reaction (lien direct) | BACKGROUND: McAfee finds security vulnerabilities in Peloton products. BACKGROUND: McAfee finds security vulnerabilities in Peloton products. | Vulnerability | ||
|
2021-07-01 13:03:32 | (Déjà vu) Hackers Use Zero-day To Mass-wipe My Book Live Devices (lien direct) | BACKGROUND: A zero-day vulnerability in Western Digital My Book Live NAS device has allowed a threat actor to perform a mass-factory reset of devices last week including admin passwords. Once… | Vulnerability Threat | ||
|
2021-07-01 12:58:11 | (Déjà vu) CISA Ransomware Assessment Tool Released (lien direct) | BACKGROUND: The Cybersecurity and Infrastructure Security Agency (CISA) has released the Ransomware Readiness Assessment (RRA), a new module for its Cyber Security Evaluation Tool (CSET). RRA is a security audit self-assessment… | Ransomware Tool | ||
|
2021-07-01 12:52:30 | International Collaboration To Nuke DoubleVPN Service Favoured By Cybercriminals (lien direct) | BACKGROUND: Europol, the US Department of Justice, and Britain’s National Crime Agency have joined forces to take down a Russian-language VPN service since it is believed to be used by… | |||
|
2021-07-01 12:08:51 | PoC Exploit Accidentally Leaks for Dangerous Windows PrintNightmare Bug (lien direct) | Cybersecurity researchers published a proof-of-concept code to GitHub along with additional technical information. It appears this publication was accidental and the post was removed, but not before it was cloned. The PoC… | |||
|
2021-07-01 11:49:28 | Expert React: McAfee Mobile Threat Report: C-19 Vax Appointment Trojans, Etinu Billing Fraud Malware (lien direct) | McAfee's latest Mobile Threat Report: A Year of Lockdown Sees a Surge in Mobile Malware Targeting Banking, Billing and COVID-19 Vaccines includes key findings such as: COVID-related malware – more than 90%… | Malware Threat | ||
|
2021-07-01 08:00:41 | Is The NHS Rushing Into Tackling Record Waiting Lists With AI (lien direct) | The NHS plans to deploy AI to tackle the backlog of waiting lists exacerbated by the coronavirus pandemic. A £160 million scheme announced last month plans to implement some radical… | |||
|
2021-06-30 15:42:04 | What the UK Can Learn from the US Colonial Pipeline Attack (lien direct) | Critical National Infrastructure is the backbone of the UK. Our quality of life as a nation depends on the prosperity of our NHS, the reliability of our electricity, water, and… | |||
|
2021-06-30 15:10:47 | Modeling Consumer Trends with Large-Scale Scraping (lien direct) | There exists a classic example explaining the Modern Portfolio Theory (MPT) in finance. It goes thus: there are only two businesses on a small island, one selling umbrellas and the… | |||
|
2021-06-30 14:07:08 | WhatsApp Scam That Hijacks Account Resurfaces (lien direct) | BACKGROUND: It has been reported that multiple police forces in the UK are warning WhatsApp users about scammers that could hijack their accounts. The scam involves security codes and has existed for… | |||
|
2021-06-25 18:37:22 | Expert On Report: 79% Of Developers Don\'t Update Third-party Libraries In Their Code (lien direct) | BACKGROUND: It has been reported that 79% percent of the time, third-party libraries are never updated by developers after being included in a codebase – despite the fact that more than two thirds… | |||
|
2021-06-25 18:15:47 | Vaccine Documentation Needs To Be Kept Secure (lien direct) | BACKGROUND: As Malta, Madeira and the Balearic Islands were announced on the UK green list last night, many brits are now hopeful for summer sun. It is clear that proof of tests, vaccines and identification… | |||
|
2021-06-23 16:59:34 | iPhone Hacking Tool GrayKey Techniques Outlined in Leaked Instructions (lien direct) | Appleinsider report iPhone hacking tool GrayKey techniques outlined in leaked instructions “Leaked instructions for GrayShift’s GrayKey iPhone unlocking device have surfaced, giving an idea of what the device intended for law enforcement… | Tool | ★★ | |
|
2021-06-23 16:38:22 | (Déjà vu) Expert Commentary – EU to Launch Rapid Response Cybersecurity Team (lien direct) | With the breaking news which found that the European Union wants to launch a new cyber unit to respond to cyberattacks, according to a draft of the plan seen by POLITICO.… | |||
|
2021-06-23 13:38:24 | Australians Lost 3x More To Scammers Via Bank Transactions Than Bitcoin Payments In 2020 (lien direct) | Bitcoin remains the most popular cryptocurrency playing a role as an investment vehicle and also a payment medium. However, scammers are exploring the payment aspect to defraud victims resulting in… | |||
|
2021-06-23 13:35:07 | (Déjà vu) Tech Experts Discuss International Women in Engineering Day (lien direct) | International Women in Engineering Day 2021: How has the pandemic impacted gender diversity? Every June, the tech industry comes together to celebrate International Women in Engineering Day. Ada Lovelace springs… | |||
|
2021-06-23 13:30:05 | International Women In Engineering Day (lien direct) | BACKGROUND: Today marks International Women in Engineering Day and we wanted to share a comment on how our education systems need to highlight female leaders and experiences. IWED is an… | Guideline | ||
|
2021-06-23 13:05:47 | Threat Intelligence Expert On EU Joint Cyber Unit (lien direct) | BACKGROUND: The European Commission is today laying out a vision to build a new Joint Cyber Unit to tackle the rising number of serious cyber incidents impacting public services, businesses… | |||
|
2021-06-22 14:14:33 | Build These Five Habits To Reduce The Risk Of Ransomware (lien direct) | Following a spate of high-profile attacks, it is all too easy to consider ransomware as a threat more for large, well-known, businesses. Research, however, suggest this is far from the… | Ransomware Threat | ||
|
2021-06-22 14:06:30 | Ethical Hacker Shares Insight On My Egg Bank Ransomware Attack (lien direct) | BACKGROUND: Ethical Hacker Shares Insight on the latest ransomware attack on My Egg Bank, a Georgia-based fertility clinic. BACKGROUND: Ethical Hacker Shares Insight on the latest ransomware attack on My Egg Bank, a Georgia-based fertility clinic. | Ransomware | ||
|
2021-06-22 14:03:02 | 4.3 Million** Uk Small And Medium-sized Businesses Believe They Are Vulnerable To Cyber Attacks (lien direct) | New research from Arctic Wolf reveals: Three quarters (73%) of UK small and medium-sized business leaders think their workforces lack the capability and expertise to withstand a cybersecurity attack 'Alert… | Guideline | ||
|
2021-06-22 13:52:20 | Expert Commentary – Australian Firms Could Be Forced To Declare Ransom Payments (lien direct) | BACKGROUND: News has broken that a bill has been introduced into the Australian House of Representatives that requires organisations to disclose when they make ransomware payments. The Ransomware Payments Bill 2021 was introduced on Monday… | Ransomware | ||
|
2021-06-21 13:02:06 | Turbotax Customer Data Breach – Cyber Expert Comments (lien direct) | BACKGROUND: TurboTax has warned customers of a data breach, apparently caused by people reusing passwords from other sites. BACKGROUND: TurboTax has warned customers of a data breach, apparently caused by… | Data Breach | ||
|
2021-06-21 12:55:45 | Int\'l. Cybercrime Prevention Act Rafted To Boost CI Security (lien direct) | BACKGROUND: A bipartisan group of senators introduced legislation yesterday to invoke stronger penalties for ransomware and other attacks against critical infrastructure (CI). The legislation would also equip the Justice Department… | Ransomware |
To see everything:
Our RSS (filtrered)
