What's new arround internet

Src Date (GMT) Titre Description Tags Stories Notes
ZDNet.png 2019-09-09 10:35:01 Telnet backdoor vulnerabilities impact over a million IoT radio devices (lien direct)

Devices can be remotely exploited as root without any need for user interaction.

no_ico.png 2019-09-09 10:28:01 (Déjà vu) Danger Of Phone Numbers Exposed On The Internet (lien direct)

Millions of Phone numbers associated with names and other personal information has been exposed on the Internet in recent days from both the breach at Monsters.com and from an exposed Facebook database. These incidents and others like it expose consumers to not only identity theft but other hazards as well.

The ISBuzz Post: This Post Danger Of Phone Numbers Exposed On The Internet appeared first on Information Security Buzz.

SecurityWeek.png 2019-09-09 10:07:02 China-Linked \'Thrip\' Cyberspies Continue Attacks on Southeast Asia (lien direct)

The China-linked threat actor tracked by Symantec as Thrip has continued to target entities in Southeast Asia even after the cybersecurity firm exposed its operations.

read more

Threat
grahamcluley.png 2019-09-09 09:54:01 Hackers who hit Texas with ransomware attack demanded $2.5 million, got nothing (lien direct)

Although it may have cost Texas more to recover from the ransomware attack than paying the ransom, in the long term a refusal to pay extortionists will help to discourage future attacks.

Ransomware
ESET.png 2019-09-09 09:30:03 ESET discovered an undocumented backdoor used by the infamous Stealth Falcon group (lien direct)

>ESET researchers discovered a backdoor linked to malware used by the Stealth Falcon group, an operator of targeted spyware attacks against journalists, activists and dissidents in the Middle East

The post ESET discovered an undocumented backdoor used by the infamous Stealth Falcon group appeared first on WeLiveSecurity

Malware
itsecurityguru.png 2019-09-09 09:26:05 GitHub and Bitbucket customer logins exposed in CirclCL data breach. (lien direct)

The software integration firm CircleCI has informed its clients that a third-party analytics vendor suffered an incident exposing login information for their GitHub and Bitbucket accounts. The company said in a statement it was informed of the breach on 31 August, but affected customers who accessed the CircleCI platform starting June 30, 2019. The information compromised included […]

The post GitHub and Bitbucket customer logins exposed in CirclCL data breach. appeared first on IT Security Guru.

itsecurityguru.png 2019-09-09 09:25:03 Module Exposed by Public BlueKeep. (lien direct)

A public exploit module for the BlueKeep Windows vulnerability has been added today to the open-source Metasploit penetration testing framework, developed by Rapid7 in collaboration with the open-source community. BlueKeep is a wormable remote code execution (RCE) security flaw discovered in the Windows Remote Desktop Protocol (RDP) service which enables unauthenticated attackers to run arbitrary code remotely, to launch denial of […]

The post Module Exposed by Public BlueKeep. appeared first on IT Security Guru.

Vulnerability
itsecurityguru.png 2019-09-09 09:22:04 (Déjà vu) Nemty Ransomware Spread From Fake PaylPal Site. (lien direct)

A web page pretending to offer an official application from PayPal is currently spreading a new variant of Nemty ransomware to unsuspecting users. It appears that the operators of this file-encrypting malware are trying various distribution channels as it was recently observed as a payload from the RIG exploit kit (EK). Source: Bleeping Computer

The post Nemty Ransomware Spread From Fake PaylPal Site. appeared first on IT Security Guru.

Ransomware,Malware
bleepingcomputer.png 2019-09-09 09:22:00 Microsoft Removes Two Windows 10 1903 Upgrade Blocks (lien direct)

Microsoft removed two Windows 10 version 1903 upgrade blocks after resolving the known issues behind them on August 30 with the release of the KB4512941 optional cumulative update. [...]

itsecurityguru.png 2019-09-09 09:20:05 (Déjà vu) Monster File Leak as Job-Seeker data is Exposed. (lien direct)

The job website says it cannot notify users since the exposure occurred on a third-party organization’s servers. An unprotected Web server has been offering information on Monster.com users for some time - and neither Monster nor the third party it says purchased the data has notified the victims. According to reports, private information on job seekers […]

The post Monster File Leak as Job-Seeker data is Exposed. appeared first on IT Security Guru.

itsecurityguru.png 2019-09-09 09:19:05 \'Joke\' Spyware attacking Android smartphones. (lien direct)

Android smartphone users have been hit by a new malware – Joker. Aleksejs Kuprins, a security researcher at cybersecurity threat intelligence specialists CSIS Security Group, said ‘Joker’ spyware — which derives its name from one of the command-and-control servers found by CSIS researchers — has been detected in 24 apps that have collectively been installed […]

The post \'Joke\' Spyware attacking Android smartphones. appeared first on IT Security Guru.

Malware,Threat
ZDNet.png 2019-09-09 09:01:00 Malicious Android apps containing Joker malware set up shop on Google Play (lien direct)

Apps infected with the Trojan managed to circumvent Google store protections.

Malware
ANSSI.png 2019-09-09 08:44:04 3ème édition du colloque SecNumeco en Bretagne pour la sensibilisation, l\'éducation et la formation à la sécurité économique et à la sécurité numérique (lien direct)

La sécurité économique et la sécurité numérique seront de nouveau à l’honneur, les 19 et 20 septembre 2019 à Ploufragan et à Saint-Brieuc. Ces deux journées seront coorganisées par l’Agence nationale de la sécurité des systèmes d\'information (ANSSI), le Service de l\'information stratégique et de la sécurité économiques (SISSE) de la Direction générale des entreprises […]

ZDNet.png 2019-09-09 08:27:02 Cyber-security incident at US power grid entity linked to unpatched firewalls (lien direct)

Hackers used a DoS flaw to reboot firewalls at an electric power grid operator for hours.

ZDNet.png 2019-09-09 08:17:01 HackerOne bug bounty platform closes new $36.4m funding round (lien direct)

The Series D round brings overall funding to $110.4 million.

SecurityWeek.png 2019-09-09 08:09:02 Cisco Releases GhIDA and Ghidraaas Tools for IDA Pro (lien direct)

Cisco Talos has released two new open source tools for IDA Pro, namely GhIDA, an IDA Pro plugin, and Ghidraaas (Ghidra as a Service), a docker container.

read more

Korben.png 2019-09-09 07:00:02 Comment contrôler Spotify depuis Visual Studio Code ? (lien direct)

La semaine dernière, j’ai mis en ligne un article sur différents clients Spotify et suite à cela, le très sympathique Ludorg m’a parlé de VSCode Spotify. Merci !!! Ce plugin pour Visual Studio Code permet aux utilisateurs de l’éditeur de code de Microsoft, de piloter leur Spotify directement depuis leur … Suite

SecurityAffairs.png 2019-09-09 06:52:00 China-linked APT3 was able to modify stolen NSA cyberweapons (lien direct)

China-linked APT3 stole cyberweapons from the NSA and reverse engineered them to create its arsenal. In 2010, security firm FireEye identified the Pirpi Remote Access Trojan (RAT) which exploited a then 0-day vulnerability in Internet Explorer versions 6, 7 and 8. FireEye named the threat group APT3 which has also been described as TG-0100, Buckeye, […]

The post China-linked APT3 was able to modify stolen NSA cyberweapons appeared first on Security Affairs.

Vulnerability,Threat
SecurityAffairs.png 2019-09-09 06:24:05 Belarusian authorities seized XakFor, one of the largest Russian-speaking hacker sites (lien direct)

Ministry of Internal Affairs announced that Belarusian police have seized and shutdown XakFor, one of the largest hacking forums on the internet. Belarusian police have seized the servers of XakFor (xakfor[.]net), a popular hacking forum a place frequented by hackers, malware authors, scammers and cybercriminals. The news was first reported by the Belarusian news outlet […]

The post Belarusian authorities seized XakFor, one of the largest Russian-speaking hacker sites appeared first on Security Affairs.

Malware
The_Hackers_News.png 2019-09-09 06:18:04 New Malware Uses Windows BITS Service to Stealthy Exfiltrate Data (lien direct)

Cybersecurity researchers have discovered a new computer virus associated with the Stealth Falcon state-sponsored cyber espionage group that abuses a built-in component of the Microsoft Windows operating system to stealthily exfiltrate stolen data to attacker-controlled server. Active since 2012, Stealth Falcon is a sophisticated hacking group known for targeting journalists, activists, and

Malware
01net.png 2019-09-09 05:55:00 Piratages d\'iPhone : Apple contre-attaque après les révélations de Google (lien direct)

Piquée au vif par les analyses de Google Project Zero, la firme de Cupertino minimise d\'une manière assez maladroite les attaques sur la population ouïghoure. Une guerre de communication finalement pas très utile.

SecurityThroughEducation.PNG 2019-09-09 05:00:01 Real Estate Wire Fraud Has Devastating Effects (lien direct)

Like a wildfire, real estate wire fraud has devastating effects. Within minutes all that you own can be lost. In this blog, you\'ll learn about the tactics criminals use and what real estate professionals and home buyers can do to protect themselves.

The post Real Estate Wire Fraud Has Devastating Effects appeared first on Security Through Education.

SecurityWeek.png 2019-09-09 04:42:01 Parts of Wikipedia Offline After \'Malicious\' Attack (lien direct)

Popular online reference website Wikipedia went down in several countries after the website was targeted by what it described as a "malicious attack".

The server of the Wikimedia Foundation, which hosts the site, suffered a "massive" Distributed Denial of Service (DDoS) attack, the organization\'s German account said in a tweet late Friday.

read more

bleepingcomputer.png 2019-09-09 03:30:00 Hacked Instagram Account of Robert Downey Jr. Pushes iPhone Giveway (lien direct)

You can add Robert Downey Jr. to the list of celebrities whose social media accounts got hacked this week. The actor\'s Instagram account was hijacked by unknown individuals that tried to capitalize on the move by posting fake giveaways for Apple products. [...]

The_Hackers_News.png 2019-09-09 01:12:03 Facebook Patches "Memory Disclosure Using JPEG Images" Flaws in HHVM Servers (lien direct)

Facebook has patched two high-severity vulnerabilities in its server application that could have allowed remote attackers to unauthorisedly obtain sensitive information or cause a denial of service just by uploading a maliciously constructed JPEG image file. The vulnerabilities reside in HHVM (HipHop Virtual Machine)-a high-performance, open source virtual machine developed by Facebook for

ZDNet.png 2019-09-08 22:49:00 (Déjà vu) How to enable DNS-over-HTTPS (DoH) in Google Chrome (lien direct)

A step by step guide to enable DNS-over-HTTPS (DoH) support in the Firefox browser.

TechRepublic.png 2019-09-08 18:20:00 How IBM is delivering AI-generated highlights at the US Open (lien direct)

AI is being used at the US Open, so that fans watching the finals with Serena Williams and Bianca Andreescu or Rafael Nadal and Danlil Medvedev can see replays of the most emotional moments.

zataz.png 2019-09-08 17:04:05 Découverte de 950 millions de données d\'internautes (lien direct)

Pour les amateurs de bandes dessinées " Il est frais mon poisson, il est frais " devrait vous rappeler les pages d’Asterix et Obelix. Cette fois, je vais modifier ce texte par " Elle est fraîche ma donnée, elle est fraîche" . Dans la nuit de samedi à dimanche, le Service Veille ZATAZ a mis la ...

Cet article Découverte de 950 millions de données d’internautes est apparu en premier sur ZATAZ.

SecureMac.png 2019-09-08 16:00:01 5 Cybersecurity Tips for Study Abroad Students (lien direct)

Spending a semester or a year abroad can be a life-changing experience for college students. But while living in a strange new place is undoubtedly exciting, it can mean new safety challenges as well-and this includes cybersecurity.

The post 5 Cybersecurity Tips for Study Abroad Students appeared first on SecureMac.

SecurityAffairs.png 2019-09-08 15:30:03 WordPress 5.2.3 fixes multiple issues, including some severe XSS flaws (lien direct)

The WordPress development team released version 5.2.3 that includes 29 fixes, enhancements, and several security patches. WordPress developers released a security and maintenance version 5.2.3 that includes 29 fixes, several enhancements and security patches. These flaws affect the versions 5.2.2 and earlier of the popular CMS. Most of the security flaws addressed with the release […]

The post WordPress 5.2.3 fixes multiple issues, including some severe XSS flaws appeared first on Security Affairs.

SecurityAffairs.png 2019-09-08 14:07:01 (Déjà vu) Security Affairs newsletter Round 230 (lien direct)

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs Hi folk, let me inform you that I suspended the newsletter service, anyway I’ll continue to provide you a list of published posts every week through the blog. Once again thank you! Cisco addresses CVE-2019-12643 critical flaw in […]

The post Security Affairs newsletter Round 230 appeared first on Security Affairs.

SecurityAffairs.png 2019-09-08 13:47:04 (Déjà vu) Toyota Boshoku Corporation lost over $37 Million following BEC attack (lien direct)

Toyota Boshoku Corporation announced that one of its European subsidiaries lost more than $37 million due to a business email compromise (BEC) attack. Toyota Boshoku Corporation is a Japanese automotive component manufacturer, it is a member of the Toyota Group of companies.  Toyota Boshoku Corporation has announced that one of its European subsidiaries lost more than $37 million following a business […]

The post Toyota Boshoku Corporation lost over $37 Million following BEC attack appeared first on Security Affairs.

WiredThreatLevel.png 2019-09-08 13:00:00 The Boston Straight Pride Parade Tops This Week\'s Internet News Roundup (lien direct)

Also, British Prime Minister Boris Johnson had a very bad week and Walmart took a stand to curb gun violence.

WiredThreatLevel.png 2019-09-08 13:00:00 Imagine the Views From This Italian-Designed Swiss Train (lien direct)

Italian design firm Pininfarina has designed the new rail cars with nearly floor-to-ceiling windows for a line in the Swiss Alps.

WiredThreatLevel.png 2019-09-08 13:00:00 An Electric Porsche, a Tesla Probe, and More Car News This Week (lien direct)

Porsche\'s battery-powered Taycan can go 0 to 60 in 2.6 seconds and features a two-speed gearbox that\'s the first of its kind.

SecurityAffairs.png 2019-09-08 12:27:04 University, Professional Certification or Direct Experience? (lien direct)

How to improve technical skills? Would it be better a university course, a professional certification or an experience in a cybersecurity firm? Today I\'d like to share a simple and personal thought about teaching models on cybersecurity. Quite often students ask me how to improve their technical skills and the most common question is: “would […]

The post University, Professional Certification or Direct Experience? appeared first on Security Affairs.

WiredThreatLevel.png 2019-09-08 12:00:00 8 Best Electric Bikes for Every Kind of Ride (2019) (lien direct)

We\'ve tested ebikes for commuting, mountain biking, gravel, and even a few that can fold up. These are our favorites.

WiredThreatLevel.png 2019-09-08 12:00:00 Are We All Wrong About Black Holes? (lien direct)

A philosopher of science worries that the analogy between black holes and thermodynamics has been stretched too far.

no_ico.png 2019-09-08 11:52:03 Experts Comments on Wikipedia hit by DDoS attack, causes international outages (lien direct)

 A large-scale and prolonged DDoS attack which caused outages in Europe and internationally for Wikipedia on Friday 6 evening into Saturday 7th September. The Wikimedia Foundation running Wikipedia site condemned the attack saying it wanted to protect the “fundamental right” for people to be able to “freely access and share information”. News of the Wikipedia …

The ISBuzz Post: This Post Experts Comments on Wikipedia hit by DDoS attack, causes international outages appeared first on Information Security Buzz.

bleepingcomputer.png 2019-09-08 11:01:01 Fake PayPal Site Spreads Nemty Ransomware (lien direct)

A web page pretending to offer an official application from PayPal is currently spreading Nemty ransomware to unsuspecting users. [...]

Ransomware
WiredThreatLevel.png 2019-09-08 11:00:00 Concerning Consent, Chappelle, and Canceling Cancel Culture (lien direct)

Dave Chappelle hates cancel culture. Some people have canceled him. Should we just cancel cancel culture already?

SecurityAffairs.png 2019-09-08 09:43:02 Experts found Joker Spyware in 24 apps in the Google Play store (lien direct)

Security experts at Google have removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” Google has removed from Google Play 24 apps because they were infected with a new spyware tracked as “the Joker.” The spyware is able to steal SMS messages, contact lists and device […]

The post Experts found Joker Spyware in 24 apps in the Google Play store appeared first on Security Affairs.

WiredThreatLevel.png 2019-09-07 23:00:00 GM\'s Search for In-Car Tech Lands on Google (lien direct)

The automaker and the tech giant say Google\'s Android software will underpin the infotainment systems in future GM cars.

TechRepublic.png 2019-09-07 22:27:04 The pros and cons (but mostly pros) of comments in code (lien direct)

Good code self-documents, but sometimes comments are critical to helping developers understand why you wrote code a certain way.

SecurityAffairs.png 2019-09-07 21:52:04 Google report on iPhone hack created \'False Impression,\' states Apple (lien direct)

Apple replied to Google about the recent report suggesting iPhones may have been hacked as part of a long-running hacking campaign. Apple criticized the report recently published by Google that claims that iPhones may have been hacked by threat actors as part of a long-running hacking campaign. Apple defines the report as inaccurate and misleading. […]

The post Google report on iPhone hack created ‘False Impression,’ states Apple appeared first on Security Affairs.

Hack,Threat
ZDNet.png 2019-09-07 20:39:04 Millions of Exim servers vulnerable to root-granting exploit (lien direct)

The internet\'s most popular email server impacted by second major bug this summer.

SecurityWeek.png 2019-09-07 17:02:04 Apple: Security Report on iPhone Hack Created \'False Impression\' (lien direct)

Apple hit back Friday at a Google research report suggesting iPhones may have been targeted by a long-running hacking operation, calling it inaccurate and misleading.

read more

Hack
TechRepublic.png 2019-09-07 17:02:01 The key to open source sustainability is good old-fashioned self-interest (lien direct)

Don\'t look to donations to solve open source maintainers\' money woes. They just need to be connected to the companies that need them to make a buck.

SecurityAffairs.png 2019-09-07 14:36:00 Experts add a BlueKeep exploit module to MetaSploit (lien direct)

Maintainers of the open-source Metasploit penetration testing framework have added a public exploit module for the BlueKeep Windows flaw. There is a surprise for Metasploit users, maintainers of the open-source penetration testing framework have added a public exploit module for the BlueKeep Windows flaw. The BlueKeep vulnerability, tracked as CVE-2019-0708, impacts the Windows Remote Desktop Services (RDS) and was addressed by Microsoft […]

The post Experts add a BlueKeep exploit module to MetaSploit appeared first on Security Affairs.

WiredThreatLevel.png 2019-09-07 14:00:00 Is It OK to Change Hurricane Forecasts With a Sharpie Doodle? (lien direct)

A physicist wades into the dreaded "cone of uncertainty" surrounding White House weather advisories.

12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32

Information mise à jours le: 2019-09-22 08:07:45
Voir la liste des sources.

Mon email:

Vous souhaitez ne rien manquer: Notre RSS (filtré) Twitter