What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
grahamcluley.png 2019-03-13 12:04:01 Man arrested for selling one million Netflix, Spotify, Hulu passwords (lien direct)
Man arrested for selling one million Netflix, Spotify, Hulu passwords

The WickedGen website bragged that it had over 120,000 users and almost one million sets of account details, offering monthly and yearly membership plans for those who wanted “access to thousands of premium accounts across a huge range of services.”

Read more in my article on the Hot for Security blog.

itsecurityguru.png 2019-03-13 12:04:00 Phishing scams impact students of Central Michigan University. (lien direct)

Many students of the Central Michigan University were hacked after they opened emails having the bright blue button which says “click here to read message”, and then inevitably clicks them. The emails look like being sent by somebody already known to the student, as the subject line was already exchanged previously with that person. “One […]

The post Phishing scams impact students of Central Michigan University. appeared first on IT Security Guru.

WiredThreatLevel.png 2019-03-13 12:00:00 The World\'s Recycling Is in Chaos. Here\'s What Has to Happen (lien direct)

China\'s decision to no longer accept the world\'s recycled waste has left countries scrambling to adapt. They have a long way to go.

WiredThreatLevel.png 2019-03-13 12:00:00 The Departure of HBO\'s Boss Reveals AT&T\'s Plan for Empire (lien direct)

With Time Warner in the fold, AT&T is now a three-headed conglomerate of media and communications.

WiredThreatLevel.png 2019-03-13 12:00:00 Somewear Global Hotspot Review: A Good Hiking Companion (lien direct)

We review a simple, easy-to-use safety beacon that pairs to your phone via Bluetooth, so you can text or call anywhere on the planet using the Iridium satellite network.

itsecurityguru.png 2019-03-13 11:58:00 Flaw found in Swiss electronic voting systems. (lien direct)

The Swiss Federal Chancellery (SFC) on Tuesday said security researchers have found an fascinating flaw in the Swiss Post’s e-voting system as part of an ongoing penetration test. Said flaw, if successfully exploited by miscreants, would prevent officials from detecting unauthorized changes to citizens’ electronically-cast votes. Swiss authorities released the source code of their computer-based voting system and began […]

The post Flaw found in Swiss electronic voting systems. appeared first on IT Security Guru.

no_ico.png 2019-03-13 11:55:00 Blue Whale – Still Offering Advice (lien direct)

The debate on the subject of self-half images hosted on Instagram seems to have got lost in translation by the Press, MP\', and the incumbent Agencies who are supposed to be empowered to look after the on-line welfare of young people. Here, all of those expressing interest seem to be missing the real point. It …

The ISBuzz Post: This Post Blue Whale – Still Offering Advice appeared first on Information Security Buzz.

itsecurityguru.png 2019-03-13 11:52:04 New strain of ransomware spreads using NSA\'s EternalBlue exploit. (lien direct)

A new Ransomware-as-a-Service called Yatron is being promoted on Twitter that plans on using the EternalBlue and DoublePulsar exploits to spread to other computer on a network. This ransomware will also attempt to delete encrypted files if a payment has not been made in 72 hours. BleepingComputer was first notified about the Yatron RaaS by a […]

The post New strain of ransomware spreads using NSA\'s EternalBlue exploit. appeared first on IT Security Guru.

WiredThreatLevel.png 2019-03-13 11:30:00 Facebook Can Make VR Avatars Look-and Move-Exactly Like You (lien direct)

"Codec avatars," as Facebook researchers call them, are all but indistinguishable from the humans they represent-and may be a staple of our virtual lives sooner than we think.

bleepingcomputer.png 2019-03-13 11:18:04 Wordpress 5.1.1 Fixes XSS Vulnerability Leading to Website Takeovers (lien direct)

The WordPress team fixed a software flaw introduced in the 5.1 release that could allow potential attackers to perform stored cross-site scripting (XSS) attacks with the help of maliciously crafted comments on WordPress websites with the comments module enabled. [...]

TechRepublic.png 2019-03-13 11:00:01 How to help new hires acclimate to their new city (lien direct)

Moving to a different city or state can be jarring for new recruits, but here\'s how companies can make them feel at home.

Korben.png 2019-03-13 11:00:00 ArchiveBox – Un clone d\'Archive.org à héberger vous-même (lien direct)

Vous connaissez sans doute Archive.org et la WayBack Machine qui permettent de remonter dans le passé en allant explorer les versions archivées de milliers de pages web. Et bien avec ArchiveBox c’est un peu le même délire, sauf que là c’est vous qui gérez et autohébergez l’archivage. Simplement en indiquant … Suite

WiredThreatLevel.png 2019-03-13 11:00:00 Will Machines Be Able to Tell When Patients Are About to Die? (lien direct)

What one experience with palliative care says about the capacity of artificial intelligence to make medical decisions.

no_ico.png 2019-03-13 10:45:01 Bristol Council Is Phishing Its Own Employees To Improve Security (lien direct)

Phishing attacks have been launched by Bristol City Council IT chiefs against the authority\'s own staff to beef up cyber security after a “worrying” report revealed the danger of a breach has increased. Bristol City Council employees who fall for the “scams”, staged by their own colleagues, are redirected to a training programme to help them avoid succumbing to …

The ISBuzz Post: This Post Bristol Council Is Phishing Its Own Employees To Improve Security appeared first on Information Security Buzz.

bleepingcomputer.png 2019-03-13 10:13:04 SimBad Adware Found in 210 Android Apps With Over 150M Installs (lien direct)

Google has removed 210 Android apps with a combined total of 150 million installs that allowed attackers to display ads and open web sites once a device has been started. [...]

SecurityWeek.png 2019-03-13 10:05:04 Windows Zero-Day Exploited by FruityArmor, SandCat Threat Groups (lien direct)

One of the zero-day vulnerabilities patched this week by Microsoft has been exploited in targeted attacks by several threats groups, including the ones known as FruityArmor and SandCat, Kaspersky Lab revealed on Wednesday.

read more

Korben.png 2019-03-13 08:00:00 Firefox Send en ligne de commande (lien direct)

En juillet 2018, je vous annonçais l’arrivée de Firefox Send, un service permettant de partager des fichiers volumineux de manière sécurisée. Depuis l’année dernière, le service a un peu évolué et permet d’uploader des fichiers jusqu’à 2,5 GB. Tout ça c’est très bien mais ça ne serait pas vraiment barbu(e)s … Suite

SecurityAffairs.png 2019-03-13 07:21:01 Russia attempts to prevent Russian citizens from using ProtonMail (lien direct)

ProtonMail back after the Russian government has been attempting to prevent Russian citizens from sending messages to ProtonMail. ProtonMail is now running normally in Russia, the popular encrypted email service was blocked after students at a sports competition were using it to spread anti-regime propaganda. The Russian news aggregator service Habr reported that Russian telcos […]

The post Russia attempts to prevent Russian citizens from using ProtonMail appeared first on Security Affairs.

SecurityWeek.png 2019-03-13 06:21:01 Venezuelan \'Cyber-Attack\' Possible But Unlikely, Experts Say (lien direct)

Venezuelan President Nicolas Maduro\'s government has accused the United States of "cyber sabotage" to knock out the country\'s central hydroelectric complex and leave the nation largely without electricity since Thursday afternoon.

read more

SecurityAffairs.png 2019-03-13 06:20:02 Microsoft Patch Tuesday updates for March 2019 patches two Windows flaws exploited in targeted attacks (lien direct)

Microsoft Patch Tuesday updates for March 2019 address 64 flaws, including two Windows zero-day vulnerabilities exploited in targeted attacks. Microsoft Patch Tuesday updates for March 2019 address 64 vulnerabilities, including two Windows zero-day flaws that have been exploited in targeted attacks. Four of the vulnerabilities addressed by Microsoft were publicly disclosed before fixes were released, […]

The post Microsoft Patch Tuesday updates for March 2019 patches two Windows flaws exploited in targeted attacks appeared first on Security Affairs.

SecurityWeek.png 2019-03-13 06:12:05 Cloudflare Raises $150 Million (lien direct)

California-based internet performance and security firm Cloudflare on Tuesday announced that it raised $150 million in a new funding round led by Franklin Templeton.

read more

Chercheur.png 2019-03-13 04:55:02 Patch Tuesday, March 2019 Edition (lien direct)

Microsoft on Tuesday pushed out software updates to fix more than five dozen security vulnerabilities in its Windows operating systems, Internet Explorer, Edge, Office and Sharepoint. If you (ab)use Microsoft products, it\'s time once again to start thinking about getting your patches on. Malware or bad guys can remotely exploit roughly one-quarter of the flaws fixed in today\'s patch batch without any help from users.

The_Hackers_News.png 2019-03-13 01:40:04 Firefox Send - Free Encrypted File Transfer Service Now Available For All (lien direct)

Mozilla has made it easy for you to share large files securely and privately with whomever you want, eliminating the need to depend upon less secure free third-party services or file upload tools that burn a hole in your pocket. Mozilla has finally launched its free, end-to-end encrypted file-transfer service, called Firefox Send, to the public, allowing users to securely share large files like

SecurityWeek.png 2019-03-13 01:24:01 New Variant of Ursnif Targeting Japan (lien direct)

A new variant of the Ursnif trojan has been discovered targeting Japan since the beginning of 2019. Japan is a common target for Ursnif, but the latest version, delivered by Bebloh, goes to increased lengths to ensure that the victim is indeed Japanese.

read more

WiredThreatLevel.png 2019-03-13 01:02:04 How the FAA Decides When to Ground a Jet Like Boeing\'s 737 MAX 8 (lien direct)

Here\'s what might be happening inside the US aviation regulator as questions swirl around the Boeing 737-8 MAX jet that crashed in Ethiopia.

ZDNet.png 2019-03-12 23:44:00 Google Chrome 73 released with dark mode support on macOS (lien direct)

Chrome 73 also comes with built-in support for the multimedia keys on your keyboard.

WiredThreatLevel.png 2019-03-12 22:33:00 Firefox Send Is an Easy Way to Share Large Files Securely (lien direct)

Mozilla has made public an encrypted file-sharing service with a self-destruct twist.

ZDNet.png 2019-03-12 21:52:00 Microsoft March Patch Tuesday comes with fixes for two Windows zero-days (lien direct)

Microsoft patches 64 vulnerabilities in the March 2019 Patch Tuesday, 17 of which are rated critical.

no_ico.png 2019-03-12 21:45:02 Smart \'Unhackable\' Car Alarms Open The Doors Of 3 Million Vehicles To Hackers (lien direct)

Viper – known as Clifford in the United Kingdom – and Pandora Car Alarm System, which cater for at least three million customers between them, recently became the topic of interest to researchers from Pen Test Partners.  On Friday, the cybersecurity researchers published their findings into the true security posture of these “smart” alarms and found them …

The ISBuzz Post: This Post Smart ‘Unhackable’ Car Alarms Open The Doors Of 3 Million Vehicles To Hackers appeared first on Information Security Buzz.

Blog.png 2019-03-12 21:40:00 Podcast Episode 137 Sponsored by Code42: GirlScouts to the Rescue and Rethinking Enterprise DLP (lien direct)

In this week\'s episode (#137): Hewlett Packard Enterprise (HPE) Chief Information Security Officer Elizabeth Joyce joins us to talk about HPE\'s collaboration with Girl Scouts of America to bolster teenagers cyber security chops and encourage more young women to explore cyber security as a profession. Also: we talk with Vijay Ramanathan about the...

Read the whole entry...  _!fbztxtlnk!_ https://feeds.feedblitz.com/~/599456842/0/thesecurityledger -->»

WiredThreatLevel.png 2019-03-12 21:15:00 A Genetic Mutation Might Explain Why Birth Control Can Fail (lien direct)

All hormonal contraceptives sometimes fail, for unknown reasons. As genetics trickles into women\'s health, one study suggests a possible cause.

Kaspersky.png 2019-03-12 21:05:05 Federal Focus on Cyber Plays Out in President\'s Budget, IoT Legislation (lien direct)

Money earmarked for the Defense Department and DHS, and bipartisan bills to address the security of federal IoT devices, showcase growing federal cyber-efforts.

TechRepublic.png 2019-03-12 20:54:05 G Suite: How to quickly filter files with Google Drive Search and Cloud Search (lien direct)

G Suite users can filter multiple Google Drive files with a few clicks (or taps) on desktop and mobile devices.

Kaspersky.png 2019-03-12 20:52:03 Microsoft Patches Two Win32k Bugs Under Active Attack (lien direct)

Microsoft\'s March Patch Tuesday updates include 64 fixes, 17 of which are rated critical.

WiredThreatLevel.png 2019-03-12 20:40:04 Proposing a "Declaration of Digital Independence" (lien direct)

Opinion: Larry Sanger, the co-founder of Wikipedia and chief information officer of Everpedia, suggests how to spark a decentralized social media movement.

Kaspersky.png 2019-03-12 19:48:02 ThreatList: Phishing Attacks Doubled in 2018 (lien direct)

Scammers used both older, tested-and-true phishing tactics in 2018 - but also newer tricks, such as fresh distribution methods, according to a new report.

SecurityAffairs.png 2019-03-12 19:26:01 Users claim Samsung Galaxy S10 Face Recognition can be bypassed (lien direct)

The screen lock feature in the Samsung Galaxy S10 that is based on face recognition can be easily bypassed using a photo or a video of the owner. The discovery was made by users and tech reviewers that demonstrated how to bypass face recognition screen lock implemented in the Samsung Galaxy S10 model. Even if […]

The post Users claim Samsung Galaxy S10 Face Recognition can be bypassed appeared first on Security Affairs.

SecurityWeek.png 2019-03-12 19:20:02 Microsoft Patches Two Windows Flaws Exploited in Targeted Attacks (lien direct)

Microsoft\'s Patch Tuesday updates for March 2019 address over 60 vulnerabilities, including two Windows zero-day flaws that have been exploited in targeted attacks.

read more

WiredThreatLevel.png 2019-03-12 19:20:01 Why It\'s So Hard to Restart Venezuela\'s Power Grid (lien direct)

Approaching a full week, Venezuela\'s national power outage shows just how hard it is to restart a grid from scratch.

WiredThreatLevel.png 2019-03-12 19:03:05 Game of Thrones Marketing Is Out for Blood-Mine (lien direct)

At SXSW, HBO is partnering with the American Red Cross to drain the blood of fans. For Westeros!

SecurityWeek.png 2019-03-12 18:44:03 F5 Networks to Acquire NGINX for $670 Million (lien direct)

Cloud and application security provider F5 Networks is acquiring NGINX, a provider of technologies for application development and delivery, for approximately $670 million. 

read more

ErrataRob.PNG 2019-03-12 18:43:41 Some notes on the Raspberry Pi (lien direct)

I keep seeing this article in my timeline today about the Raspberry Pi. I thought I\'d write up some notes about it.

The Raspberry Pi costs $35 for the board, but to achieve a fully functional system, you\'ll need to add a power supply, storage, and heatsink, which ends up costing around $70 for the full system. At that price range, there are lots of alternatives. For example, you can get a fully function $99 Windows x86 PC, that\'s just as small and consumes less electrical power.

There are a ton of Raspberry Pi competitors, often cheaper with better hardware, such as a Odroid-C2, Rock64, Nano Pi, Orange Pi, and so on. There are also a bunch of "Android TV boxes" running roughly the same hardware for cheaper prices, that you can wipe and reinstall Linux on. You can also acquire Android phones for $40.

However, while "better" technically, the alternatives all suffer from the fact that the Raspberry Pi is better supported -- vastly better supported. The ecosystem of ARM products focuses on getting Android to work, and does poorly at getting generic Linux working. The Raspberry Pi has the worst, most out-of-date hardware, of any of its competitors, but I\'m not sure I can wholly recommend any competitor, as they simply don\'t have the level of support the Raspberry Pi does.

The defining feature of the Raspberry Pi isn\'t that it\'s a small/cheap computer, but that it\'s a computer with a bunch of GPIO pins. When you look at the board, it doesn\'t just have the recognizable HDMI, Ethernet, and USB connectors, but also has 40 raw pins strung out across the top of the board. There\'s also a couple extra connectors for cameras.

The concept wasn\'t simply that of a generic computer, but a maker device, for robot servos, temperature and weather measurements, cameras for a telescope, controlling christmas light displays, and so on.

I think this is underemphasized in the above story. The reason it finds use in the factories is because they have the same sorts of needs for controlling things that maker kids do. A lot of industrial needs can be satisfied by a teenager buying $50 of hardware off Adafruit and writing a few Python scripts.

On the other hand, support for industrial uses is nearly nonexistant. The reason commercial products cost $1000 is because somebody will answer your phone, unlike the teenager whose currently out at the movies with their friends. However, with more and more people having experience with the Raspberry Pi, presumably you\'ll be able to hire generic consultants soon that can maintain th
no_ico.png 2019-03-12 18:30:00 Cookie Walls And EU GDPR (lien direct)

The Dutch Data Protection Authority says that cookie walls that force consumers to accept tracking cookies is not compliant with The EU\'s General Data Protection Regulation.   Dutch DPA rules that "Agree or Get Out" cookie walls are non-compliant with #GDPR. Great article by @riptari of @TechCrunch outlines why this practice doesn't work, and what this …

The ISBuzz Post: This Post Cookie Walls And EU GDPR appeared first on Information Security Buzz.

WiredThreatLevel.png 2019-03-12 18:19:00 Plenty of Tech Companies Still Want Military Contracts (lien direct)

Protests at companies like Google and Microsoft have grabbed headlines, but an Air Force demo day last week hosted dozens of startups eager to work with the Pentagon.

bleepingcomputer.png 2019-03-12 18:15:00 Windows 7 Gets SHA-2 Support To Enable Future Updates (lien direct)

An update was released today that adds SHA-2 code signing support to Windows 7 SP1 and Windows Server 2008 R2 SP1. If this update is not installed, these Windows operating systems will no longer be able to receive Windows updates starting on July 16th, 2019. [...]

DarkReading.png 2019-03-12 17:55:00 Citrix Breach Underscores Password Perils (lien direct)

Attackers used a short list of passwords to knock on every digital door to find vulnerable systems in the vendor\'s network.

no_ico.png 2019-03-12 17:30:00 Samsung S10 Face Unlock Flaws (lien direct)

Samsung could no longer offer the sophisticated recognition system based on face and iris scan the company is working for the last few years as officially confirmed last month. Instead, the company is offering more basic face unlock functionality on its new Samsung’s Galaxy 10 offering which has been found to be very easy to …

The ISBuzz Post: This Post Samsung S10 Face Unlock Flaws appeared first on Information Security Buzz.

bleepingcomputer.png 2019-03-12 17:16:05 Microsoft March 2019 Patch Tuesday Includes Fixes for 64 Vulnerabilities (lien direct)

Today is Microsoft\'s March 2019 Patch Tuesday, which means it is time to get those security updates installed. Included in this month\'s are fixed for two vulnerabilities that are known to be actively exploited in the wild. [...]

TechRepublic.png 2019-03-12 17:13:02 How the RealSelf digital platform is transforming beauty tech (lien direct)

Find out how RealSelf is making its content accessible without being penalized by search engines due to the nude and graphic images visible on the site.

DarkReading.png 2019-03-12 17:10:00 Microsoft Patch Tuesday: 64 Vulnerabilities Patched, 2 Under Attack (lien direct)

Seventeen vulnerabilities patches today are rated critical, four are publicly known, and two have been exploited in the wild.

8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28

Information mise à jours le: 2019-03-26 04:01:32
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter