What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
Korben.png 2019-09-11 07:00:04 Comment accélérer jusqu\'à 10x la sauvegarde Time Machine ? (lien direct)

Si vous êtes sous Mac et que vous faites vos sauvegardes à l’aide de Time Machine, vous avez dû constater que c’était quand même assez long. Il faut savoir que par défaut, macOS limite la consommation du CPU de certains processus fonctionnant en tâche de fond. Cela est important, car … Suite

SecurityAffairs.png 2019-09-11 06:29:04 (Déjà vu) Adobe September 2019 Patch Tuesday updates fix 2 code execution flaws in Flash Player (lien direct)

Adobe September 2019 Patch Tuesday updates address two code execution bugs in Flash Player and a DLL hijacking flaw in Application Manager. Adobe has released September 2019 Patch Tuesday updates that address two code execution vulnerabilities in Flash Player and a DLL hijacking flaw in Application Manager. The two flaws addressed with the Flash Player 32.0.0.255 release […]

The post Adobe September 2019 Patch Tuesday updates fix 2 code execution flaws in Flash Player appeared first on Security Affairs.

bleepingcomputer.png 2019-09-11 06:15:00 Intel Patches Privilege Escalation Flaw in Easy Streaming Wizard (lien direct)

Intel issued two security updates for software and hardware products to patch vulnerabilities that may allow escalation of privilege and information disclosure. [...]

The_Hackers_News.png 2019-09-11 06:09:04 NetCAT: New Attack Lets Hackers Remotely Steal Data From Intel CPUs (lien direct)

Unlike previous side-channel vulnerabilities disclosed in Intel CPUs, researchers have discovered a new flaw that can be exploited remotely over the network without requiring an attacker to have physical access or any malware installed on a targeted computer. Dubbed NetCAT, short for Network Cache ATtack, the new network-based side-channel vulnerability could allow a remote attacker to sniff

Malware,Vulnerability
SecurityAffairs.png 2019-09-11 06:05:00 Microsoft Patch Tuesday updates for September 2019 fix 2 privilege escalation flaws exploited in attacks (lien direct)

Microsoft Patch Tuesday updates for September 2019 address 80 flaws, including two privilege escalation issues exploited in attacks. Microsoft Patch Tuesday security updates for September 2019 address 80 vulnerabilities, including two privilege escalation flaws that have been exploited in attacks in the wild. The updates cover Microsoft Windows, Internet Explorer, Microsoft Edge, ChakraCore, Office and Microsoft Office […]

The post Microsoft Patch Tuesday updates for September 2019 fix 2 privilege escalation flaws exploited in attacks appeared first on Security Affairs.

Trend.png 2019-09-11 05:40:03 September Patch Tuesday Bears More Remote Desktop Vulnerability Fixes and Two Zero-Days (lien direct)

Microsoft\'s September Patch Tuesday covered 80 CVEs, 17 of which were rated critical, and included patches for Azure DevOps Server, Chakra Scripting engine, and Microsoft SharePoint. Sixty-two were labeled as important and included patches for Microsoft Excel, Microsoft Edge, and Microsoft Exchange. Only one was rated as moderate.

The post September Patch Tuesday Bears More Remote Desktop Vulnerability Fixes and Two Zero-Days appeared first on .

Vulnerability
01net.png 2019-09-11 05:39:00 Les applis de suivi de règles envoient des données beaucoup trop personnelles à Facebook (lien direct)

Date d\'ovulation, état d\'humeur, dernier rapport sexuel… Sur Android, certaines applications de gestion de la menstruation transmettent des informations particulièrement sensibles à des entreprises tierces, sans que l\'on sache vraiment pourquoi.

SecurityWeek.png 2019-09-11 05:21:04 Hundreds Arrested in Joint US-Nigeria Crackdown on Cyber Scams (lien direct)

Nigerian and US authorities said Tuesday that nearly 300 people had been arrested in a months-long global crackdown on online scams to hijack wire transfers from companies and individuals.

read more

bleepingcomputer.png 2019-09-11 05:15:00 (Déjà vu) Chrome 77 Released With Removed EV Certificate Indicator (lien direct)

Google has released Chrome 77 to the Stable desktop channel, with new features and 36 security fixes, with 1 being marked as Critical and 8 as High severity. [...]

The_Hackers_News.png 2019-09-11 04:54:04 Breach Protection in the Palm of Your Hand (lien direct)

CISOs and CIOs need to know better than anyone the security pulse of their organizations. On the other hand, they cannot be flooded with every changing detail. Finding the right balance that enables them to clearly grasp the big picture required in making sound decisions is a task many security executives find challenging. Threat actors do not acknowledge off-hours or weekends, introducing

Threat
The_Hackers_News.png 2019-09-11 03:58:03 Google to Experiment \'DNS over HTTPS\' (DoH) Feature in Chrome 78 (lien direct)

Immediately after Mozilla announced its plan to soon enable \'DNS over HTTPS\' (DoH) by default for Firefox users in the United States, Google today says it is planning an experiment with this privacy-focused technology in its upcoming Chrome 78. Under development since 2017, \'DNS over HTTPS\' performs DNS lookups-finding the server IP address of a certain domain name-over an encrypted HTTPS

bleepingcomputer.png 2019-09-11 03:33:03 New NetCAT Attack Can Leak Sensitive Data From Intel CPUs (lien direct)

A weakness named NetCAT (Network Cache ATtack) affects all Intel server-grade processors since 2012 and allows sniffing sensitive details by mounting a side-channel attack over the network. [...]

01net.png 2019-09-11 03:14:33 Kaspersky protège les tournois e-sport contre les tricheurs (lien direct)

Une solution dédiée permet aux organisateurs de surveiller les flux et les actions des joueurs et, le cas échéant, de détecter ceux qui utilisent des techniques de fraude.

The_State_of_Security.png 2019-09-11 03:00:01 What Is the ISA/IEC 62443 Framework? (lien direct)

Cybersecurity threats to manufacturing and process plants are coming from a wide range of attack vectors including supply chain, logistics, enterprise computing, remote connections, operator stations, programmable logic controllers, distributed control systems (DCSs), smart sensors and new smart devices. Many emerging Internet of Things (IoT) and communications technologies offer greater connectivity, but they make the […]… Read More

The post What Is the ISA/IEC 62443 Framework? appeared first on The State of Security.

no_ico.png 2019-09-11 02:56:05 Capture the Flag events and eSports (lien direct)

Looking at what is popular with smaller niche crowds can give greater insight into the “next thing”. This natural selection…

SecurityWeek.png 2019-09-11 02:10:05 Ransomware Attack Hits School District Twice in 4 Months (lien direct)

A Connecticut school district\'s teachers are working without computer access less than a week after a second malware attack targeted the district\'s servers.

The Republican American reports the district shut any computers connected to the Wolcott school district networks Sept. 4 after a staff member reported suspicious activity on a district computer.

read more

Ransomware,Malware
The_Hackers_News.png 2019-09-11 00:48:02 Mozilla Launches \'Firefox Private Network\' VPN Service as a Browser Extension (lien direct)

Mozilla has officially launched a new privacy-focused VPN service, called Firefox Private Network, as a browser extension that aims to encrypt your online activity and limit what websites and advertisers know about you. Firefox Private Network service is currently in beta and available only to desktop users in the United States as part of Mozilla\'s recently expunged "Firefox Test Pilot"

The_Hackers_News.png 2019-09-10 23:32:04 Hundreds of BEC Scammers Arrested in Nigeria and U.S. - $3.7 Million Recovered (lien direct)

Breaking News - The Nigerian prince and his allies who might have also asked you over an email for your assistance to help save "the first African astronaut lost in space" have finally been arrested by the FBI. Don\'t take it too seriously, as there\'s no Nigerian prince or an astronaut seeking your help. Instead, it was an infamous \'Nigerian 419\' scam email template where fraudsters try to

ZDNet.png 2019-09-10 22:47:01 281 suspects arrested in massive crackdown against BEC scammers (lien direct)

Operation reWired: 167 suspects arrested in Nigeria, 74 in the US.

WiredThreatLevel.png 2019-09-10 22:46:05 281 Alleged Email Scammers Arrested in Massive Global Sweep (lien direct)

The most sweeping takedown yet of so-called BEC scammers involved arrests in nearly a dozen countries.

TechRepublic.png 2019-09-10 21:32:05 iPhone 11: A cheat sheet (lien direct)

This iPhone 11 comprehensive guide covers features, pricing, and more details that pros need to know about Apple\'s latest mobile devices.

TechRepublic.png 2019-09-10 21:08:03 Apple wants to connect Watch data to PhDs, not MDs (lien direct)

Apple latest health tracking services will link new apps with researchers who are actually interested in the data.

ZDNet.png 2019-09-10 20:38:00 Intel server-grade CPUs impacted by new NetCAT attack (lien direct)

Academics develop new network-based attack that steals keystrokes from an active SSH session.

TechRepublic.png 2019-09-10 20:35:00 Apple Watch Series 5: A cheat sheet (lien direct)

The Apple Watch Series 5 has been unveiled. Here\'s what pros need to know about Apple\'s latest smartwatch.

SecurityWeek.png 2019-09-10 20:12:03 SD-WAN: Disruptive Technology That Requires Careful Security Consideration (lien direct)

A recent survey has shown that software defined wide area network (SD-WAN) is the most disruptive of the current crop of disruptive technologies. An August 2019 survey found that SD-WAN disruption is affecting companies of all sizes, although at a greater rate among smaller companies with a revenue size of less than $10 million.

read more

Chercheur.png 2019-09-10 20:09:01 Patch Tuesday, September 2019 Edition (lien direct)

Microsoft today issued security updates to plug some 80 security holes in various flavors of its Windows operating systems and related software. The software giant assigned a "critical" rating to almost a quarter of those vulnerabilities, meaning they could be used by malware or miscreants to hijack vulnerable systems with little or no interaction on the part of the user.

Malware
WiredThreatLevel.png 2019-09-10 20:04:03 Apple iPhone Event 2019: Everything That Was Announced (lien direct)

New iPhones of course, plus quite a bit more.

mcafee.png 2019-09-10 19:27:03 How Visiting a Trusted Site Could Infect Your Employees (lien direct)

The Artful and Dangerous Dynamics of Watering Hole Attacks A group of researchers recently published findings of an exploitation of multiple iPhone vulnerabilities using websites to infect final targets. The key concept behind this type of attack is the use of trusted websites as an intermediate platform to attack others, and it\'s defined as a watering hole […]

The post How Visiting a Trusted Site Could Infect Your Employees appeared first on McAfee Blogs.

WiredThreatLevel.png 2019-09-10 19:26:00 iPhone 11 and iPhone 11 Pro: Price, Specs, Release Date (lien direct)

The company showed off three new models of iPhone on Tuesday. The new flagship, called iPhone 11 Pro, has a camera that looks truly nutty.

WiredThreatLevel.png 2019-09-10 19:22:01 (Déjà vu) Apple Event Breakdown, a Honkin\'-Huge Car Screen, and More News (lien direct)

Catch up on the most important news from today in two minutes or less.

TechRepublic.png 2019-09-10 19:22:01 Women\'s health arrives on Apple Health priority list (lien direct)

Inspired by the Apple Heart Study, the company launches new studies of women\'s health, movement, and hearing. Data will come from apps on the new Apple Watch Series 5.

Studies
TechRepublic.png 2019-09-10 19:15:00 Most exciting features of the iPhone 11 series (lien direct)

Apple announced the latest iPhone models 11, 11 Pro, and 11 Pro Max at its annual Apple event on Tuesday. Here\'s what all the buzz is about.

ZDNet.png 2019-09-10 19:07:04 (Déjà vu) Microsoft patches two zero-days in massive September 2019 Patch Tuesday (lien direct)

Microsoft\'s September 2019 Patch Tuesday comes with 80 fixes, 17 of which are for critical bugs.

SecurityWeek.png 2019-09-10 18:51:04 (Déjà vu) Microsoft Patches Two Privilege Escalation Flaws Exploited in Attacks (lien direct)

Microsoft\'s Patch Tuesday updates for September 2019 fix 80 vulnerabilities, including two Windows flaws that have been exploited in attacks.

read more

WiredThreatLevel.png 2019-09-10 18:42:02 Apple Watch Series 5: Price, Specs, Release Date (lien direct)

The new Apple Watch is here, with new cases and a face that never turns off.

bleepingcomputer.png 2019-09-10 18:32:04 (Déjà vu) Microsoft Releases Servicing Stack Updates for All Windows 10 Versions (lien direct)

Microsoft released quality improvements to the servicing stack for all Windows 10 versions, the component designed to allow users to receive and install Windows updates. [...]

bleepingcomputer.png 2019-09-10 18:03:05 Google Unveils DNS-over-HTTPS (DoH) Plan, Mozilla\'s Faces Criticism (lien direct)

Google has announced that they would soon be performing a trial of utilizing DNS-over-HTTPS (DoH) in the Google Chrome browser. This experiment will be conducted in Chrome 78 and will attempt to upgrade a user\'s DNS server to a corresponding DoH server, and if available, use that for DNS resolution. [...]

WiredThreatLevel.png 2019-09-10 17:39:03 Apple TV+ Launches November 1, Subs Will Cost $5 a Month (lien direct)

Another giant joins the streaming fray.

DarkReading.png 2019-09-10 17:30:00 Third-Party Features Leave Websites More Vulnerable to Attack (lien direct)

A new report points out the dangers to customer data of website reliance on multiple third parties.

ZDNet.png 2019-09-10 17:28:00 Mozilla launches Firefox VPN extension for US users (lien direct)

New Firefox VPN extension expected to become Mozilla\'s first commercial service.

TEAM_CYMRU_Blog.png 2019-09-10 17:27:02 May 6 – 7: RISE Colombia (lien direct)

Team Cymru is pleased to announce RISE Colombia! Come see us there! We will be in Colombia from May 6 – 7. We are happy to be working with our partners from LACNIC to host this event alongside LACNIC33! For more information and to register for this event, please register here. Don’t know the password?... Continue Reading →

TEAM_CYMRU_Blog.png 2019-09-10 17:23:00 January 13 – 15: RISE Finland (lien direct)

Team Cymru is pleased to announce RISE Finland! Come see us there! This event runs from January 13 – 15, 2019. We are happy to be coming back to the beauty of Finland and the Baltic Sea a second time! For more information and to register for this event, please register here. Don’t know the... Continue Reading →

TEAM_CYMRU_Blog.png 2019-09-10 17:00:01 December 2 – 4: RISE USA (lien direct)

Team Cymru is pleased to announce RISE USA! Come see us there! This event is slated to take place December 2 – 4, 2019, in beautiful Lake Mary, Florida, where Team Cymru has our global Headquarters. We are happy to invite you to our backyard! For more information and to register for this event, please... Continue Reading →

MalwarebytesLabs.png 2019-09-10 16:41:04 300 shades of gray: a look into free mobile VPN apps (lien direct)
Mobile VPN apps are one of the best tools for protecting user privacy. Unfortunately, a notable number of are deemed unsafe. Read on to find out how to assess the best mobile VPN for you.

Categories:

Tags:

bleepingcomputer.png 2019-09-10 16:41:03 281 Arrested in Worldwide Business Email Compromise Crackdown (lien direct)

281 people were arrested over a four-month period in the U.S. and in countries around the world as part of Operation reWired, a coordinated effort of multiple law enforcement agencies from several countries. [...]

SecurityWeek.png 2019-09-10 16:27:02 New Stealth Falcon Backdoor Discovered (lien direct)

ESET security researchers have discovered a new backdoor associated with the United Arab Emirates (UAE)-linked Stealth Falcon threat actor

read more

Threat
SecurityAffairs.png 2019-09-10 16:27:00 Million of Telestar Digital GmbH IoT radio devices can be remotely hacked (lien direct)

A security researcher disclosed zero-day flaws in Telestar Digital GmbH IoT radio devices that could be exploited by remote attackers to hijack systems without any user interaction. The security researcher Benjamin Kunz from Vulnerability-Lab disclosed zero-day flaws in Telestar Digital GmbH IoT radio devices that could be exploited by remote attackers to hijack devices without any user […]

The post Million of Telestar Digital GmbH IoT radio devices can be remotely hacked appeared first on Security Affairs.

Securifera.png 2019-09-10 16:17:03 PreAuth RCE on Palo Alto GlobalProtect Part II (CVE-2019-1579) (lien direct)

Background Before I get started I want to clearly state that I am in no way affiliated, sponsored, or endorsed with/by Palo Alto Networks. All graphics are being displayed under fair use for the purposes of this article. I recently encountered several unpatched Palo Alto firewall devices during a routine red team [...]

TechRepublic.png 2019-09-10 16:07:01 Gartner proposes framework to manage regulations for our digital society (lien direct)

The myriad rules and regulations that govern data protection and privacy need some type of framework to tie them together in our cyber society.

no_ico.png 2019-09-10 15:57:02 Course announcement: Tampering in Depth! (lien direct)

I’m excited to announce that I’m hitting my STRIDE and Linkedin has released the second course in my in-depth exploration of STRIDE: Tampering. I’m finding it fascinating to dive deep into the threats, organize my knowledge, and in doing so, hopefully help us chunk and remember what we’re learning.

8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28

Information mise à jours le: 2019-09-22 08:07:45
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter