What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2019-07-22 14:28:03 | iCloud account hacker jailed for three years after preying on rappers and sports celebrities (lien direct) | A man, who posed as an Apple customer support representative for three years, has been sentenced to federal prison after breaking into the accounts of rappers, as well as NBA and NFL players. Read more in my article on the Hot for Security blog. | |||
|
2019-07-22 12:31:04 | No, the Met Police wasn\'t hacked. But its Twitter account and website were hijacked (lien direct) | Late on Friday night, some rather out-of-character tweets seemed to be coming out of New Scotland Yard. The Twitter account of London’s Metropolitan Police (@metpoliceuk) broadcast to its more than one million followers a series of bizarre and sometimes offensive messages. | |||
|
2019-07-19 12:56:01 | Slack response. Passwords reset four years after data breach (lien direct) | Slack would have been wiser – in an abundance of caution – to reset all of its users’ passwords back in March 2015. After all, leaving it until four years later looks a little bit… slack. | Data Breach | ||
|
2019-07-18 12:43:05 | Thousands of NHS computers are still running Windows XP from beyond the grave (lien direct) | Two years after the WannaCry ransomware outbreak shone a light on the computer security of the the UK's National Health Service, and five years after Microsoft said it would no longer release patches for Windows XP, the NHS still has 2300 PCs running the outdated operating system. Read more in my article on the Tripwire State of Security blog. | Ransomware | Wannacry | |
|
2019-07-18 07:58:00 | Security researcher arrested after data on every adult in Bulgaria hacked from government site (lien direct) | Police in Bulgaria have arrested a 20-year-old man after a hack against the Bulgarian tax authority, known as the National Revenue Agency (NRA), which saw data on every single adult living in Bulgaria stolen, and offered to the media. | Hack | ||
|
2019-07-17 23:25:02 | Smashing Security #137: Porn trolling lawyers, Insta hacking, and Ctrl-Alt-LED (lien direct) | Erection your honour! Lawyers find themselves behind bars after they make porn movies in an attempt to scam internet users, boffins in Israel detail a way to steal data from an air-gapped computer, and Instagram coughs up $30,000 after a researcher finds a simple way to hack into anybody’s account. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast. | Hack | ||
|
2019-07-17 10:49:04 | Apple pushes out another silent update to address flaws in RingCentral and other video conferencing apps (lien direct) | RingCentral and other video conferencing apps share the same flaws as those revealed in Zoom earlier this month, including the ability to hijack users’ webcams without their permission. Apple pushes out further silent updates to protect users from sketchy app behaviour. | |||
|
2019-07-15 17:07:00 | Alan Turing – the face of the new £50 note (lien direct) | The Bank of England has announced that Alan Turing's face will grace the new £50 note. | |||
|
2019-07-15 12:45:02 | How any Instagram account could be hacked in less than 10 minutes (lien direct) | A security researcher has been awarded $30,000 after discovering a serious vulnerability that could potentially have put any Instagram account at risk of being hacked. Read more in my article on the Hot for Security blog. | Vulnerability | ||
|
2019-07-11 14:15:00 | Apple pushes out silent update to remove sketchy Zoom code from Macs (lien direct) | Zoom, the makers of a video conferencing app used by millions of people around the world, did not handle the discovery of a privacy vulnerability its software at all well. It’s a good thing, then, that Apple has nixed the software’s dodgy behaviour. | Vulnerability | ★★ | |
|
2019-07-11 12:00:05 | Apple says its Walkie-Talkie app could be exploited to spy on iPhones (lien direct) | Apple has chosen to temporarily disable a key feature of the Apple Watch after a critical vulnerability was discovered that could allow someone to eavesdrop on another person without their knowledge. Read more in my article on the Tripwire State of Security blog. | Vulnerability | ||
|
2019-07-11 09:34:01 | Smashing Security #136: Oops, we created Iran\'s hacking exploit (lien direct) | Mac users of the Zoom video conferencing app are warned their webcams could be hijacked, security firms warn of how scammers are deepfaking audio to steal from businesses, and our guest owns up to the role he played in an Iranian cyberattack against US organisations. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Charl van der Walt. | |||
|
2019-07-10 12:23:01 | Marriott faces £99.2 million fine after hack exposed 393 million hotel guest records (lien direct) | The UK's Information Commissioner’s Office (IOC) has announced its intention to fine the US hotel group Marriott International £99.2 million (US $123 million) for a data breach that exposed the personal details of hundreds of millions of guests. Read more in my article on the Hot for Security blog. | Data Breach Hack | ||
|
2019-07-10 10:34:03 | Did a hacked smart TV upload footage of couple having sofa sex to a porn website? (lien direct) | A news report claims that hackers were able to secretly capture intimate footage of a married couple and upload it to a porn website. But I’ve got a number of questions… | |||
|
2019-07-09 10:29:04 | Zoom Mac flaw allows webcams to be hijacked – because they wanted to save you a click (lien direct) | If you have installed Zoom, any website can turn on your Mac’s webcam without asking your permission. Oh, and if you’ve since uninstalled Zoom – that doesn’t fix the problem. | |||
|
2019-07-04 14:43:00 | Derp! DDoS attacker who brought down EA, Sony, and Steam jailed for 27 months (lien direct) | A 23-year-old man has plenty of time to mull over whether it's funny to launch distributed denial-of-service attacks against online video gaming services, after he was sentenced to prison this week. Read more in my article on the Hot for Security blog. | |||
|
2019-07-04 13:36:03 | St John Ambulance service hit by ransomware attack (lien direct) | The UK’s St John Ambulance service says that it was hit by a ransomware attack earlier this week, but if the attackers hoped they might massively disrupt the volunteer first aid service then they’ll be massively disappointed. | Ransomware | ||
|
2019-07-03 23:42:02 | Smashing Security #135: Zombie grannies and unintended leaks (lien direct) | We take a bloodied baseball bat to Android malware, and debate the merits of a social media strike, as one of the team bites the bullet and buys a smart lock for the office. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Oli Skertchly. | |||
|
2019-07-03 12:47:03 | You lost US Customs Border data? You\'re losing your government contracts… (lien direct) | “Evidence of conduct indicating a lack of business honesty or integrity” led to suspension of federal contracts for hacked subcontracting firm. | |||
|
2019-07-03 12:02:05 | US Cyber Command warns nation-state hackers are exploiting old Microsoft Outlook bug. Make sure you\'re patched! (lien direct) | US Cyber Command has issued an alert about an unnamed foreign country’s attempt to spread malware through the exploitation of a vulnerability in Microsoft Outlook, as concerns are raised of a rise in an Iranian-backed hacking group’s activities. Read more in my article on the Hot for Security blog. | Malware Vulnerability | ||
|
2019-07-01 16:15:00 | Ex-Equifax CIO, who knew about huge data breach, jailed for insider trading (lien direct) | So, just what was Equifax doing during those 40 days between discovering it had been hacked and sharing the bad news with the world? Well, now we know. Or at least what Jun Ying, the CIO of Equifax US Information Solutions, was doing. | Equifax | ||
|
2019-07-01 13:43:02 | Malware makes an exhibition of itself (lien direct) | If you happen to be in the Netherlands in the next few months you may be interested in dropping into an unusual art exhibition. From Friday 5 July until 10 November, you’ll be able to check out “Malware: Symptoms of Viral Infection” at the Het Nieuwe Instituut in Rotterdam. | Malware | ||
|
2019-06-28 15:00:01 | Fortune 100 passwords, email archives, and corporate secrets left exposed on unsecured Amazon S3 servers (lien direct) | Some of the world’s biggest companies have had 750GB worth of their innermost secrets revealed on unsecured Amazon S3 buckets, available for anybody to download – no password required. Read more in my article on the Hot for Security blog. | |||
|
2019-06-27 12:48:01 | After €24 million stolen by typosquatting a cryptocurrency exchange, six people arrested (lien direct) | European police have arrested six people as part of an investigation into a theft which saw €24 million (US $27 millon) stolen from users of cryptocurrency exchange. Read more in my article on the Tripwire State of Security blog. | ★★★★★ | ||
|
2019-06-27 06:46:05 | Smashing Security #134: Sextortion, silicone face masks, and a DDoS doofus (lien direct) | Scammers steal millions by impersonating a French politician, we offer fashion tips for DDoS attackers, and hear how a small town fought a sextortionist preying on young women. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker. | |||
|
2019-06-26 13:02:02 | $1.1 million in two weeks – Florida cities pay out big to ransomware gangs (lien direct) | Cybercriminals have learnt something very valuable in the last couple of weeks: in order to regain access to their data, cities in Florida are prepared to pay out huge Bitcoin ransoms to hackers. Read more in my article on the Tripwire State of Security blog. | Ransomware | ||
|
2019-06-26 09:35:03 | Bought a second-hand Nest Cam? It might have been spying on you (lien direct) | Even if you initiated a factory reset of the popular Nest Cam Indoor home security camera, connected to third-party partner services via Works with Nest, it might still be possible for a user to access its video feed. Read more in my article on the Bitdefender BOX blog. | |||
|
2019-06-25 15:31:04 | 400GB of hacked files from US border surveillance contractor are available for anyone to download (lien direct) | Stolen CBP data has been distributed via torrent sites, and is now available for anyone to download. | ★★★★★ | ||
|
2019-06-25 07:04:01 | Two brothers arrested for Bitfinex hack and multi-year cryptocurrency phishing campaign (lien direct) | Computer crime authorities in Israel have arrested two brothers in connection with a phishing campaign that spread over multiple years and the 2016 hack of the Bitfinex cryptocurrency exchange. Read more in my article on the Hot for Security blog. | Hack | ||
|
2019-06-24 15:27:00 | WeTransfer security failure results in file transfer emails being sent to the wrong people (lien direct) | WeTransfer, the popular online service for sharing large files easily without having to worry about gobbling up email inbox quotas, has suffered what the company is calling a “security incident.” | |||
|
2019-06-21 14:45:02 | Office 365 proves popular with phishers (lien direct) | With 180 million active users it’s no wonder that Microsoft Office 365 has caught the attention of online criminals. Read more in my article on the Bitdefender Business Insights blog. | |||
|
2019-06-21 13:56:05 | Millions of Dell PCs vulnerable to attack, due to a flaw in bundled system-health software (lien direct) | Millions of Dell PCs and laptops running Windows are vulnerable to attack via a high severity security hole, that could be exploited by malicious hackers to seize control of devices. Read more in my article on the Hot for Security blog. | |||
|
2019-06-20 15:44:00 | Smashing Security #133: Cookie cock-ups, Hong Kong protests, and smart TV virus scans (lien direct) | We head to Hong Kong to look at how technology has helped anti-government protesters (and how China has tried to disrupt it), Samsung is skittish over whether to tell TV owners to virus-scan their devices, and you won’t believe whose website is not GDPR-compliant. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by James Thomson. | |||
|
2019-06-19 13:35:00 | 645,000 people warned their personal health data at risk after phishing attack (lien direct) | The Oregon Department of Human Services has started notifying more than 600,000 people that their personal details have been put at risk after staff were tricked into granting hackers access to millions of emails. Read more in my article on the Hot for Security blog. | |||
|
2019-06-19 11:02:02 | NHS service accidentally reveals identities of HIV patients in email blunder (lien direct) | An NHS health board has found itself in the awkward position of apologising to 37 HIV patients, after accidentally disclosing their identities. | |||
|
2019-06-18 11:32:02 | Bella Thorne releases her own topless photos after hacker threats (lien direct) | Actress refuses to play into hacker’s hands, and publishes topless images of herself. | |||
|
2019-06-12 23:05:03 | Smashing Security #132: CBP cyber attack, an iPhone privacy boost, and Twitter list abuse (lien direct) | United States Customs and Border Protection had sensitive data stolen, but the hackers didn’t have to breach its network. Apple has ambitious plans to make iPhone users safer online. And trolls are using Twitter lists to target their victims. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis. | |||
|
2019-06-12 10:29:03 | La Liga fined €250,000 after Android app spied on football fans (lien direct) | The Spanish football league La Liga has been hit with a fine after its official Android app was found sneakily listening to people’s surroundings when soccer matches were being played. Read more in my article on the Hot for Security blog. | |||
|
2019-06-12 10:23:04 | Donald Trump accidentally reveals “secret” plan by waving document around (lien direct) | The President of the United States took to the sunshine-filled garden of the White House to wave around what he claimed was a secret agreement on migration with Mexico. It wasn’t a secret for long… | |||
|
2019-06-12 07:08:00 | Radiohead refuses to pay $150,000 ransom for \'hacked\' recordings, releases them instead (lien direct) | How do you stop a hacker from making a fortune out of the files they have stolen from you? Files that thousands of people are probably desperate to own? Simple. You make the files readily available to anyone on the internet to access. | |||
|
2019-06-10 14:03:02 | Email blackmailer threatens to have your website blocked forever (lien direct) | Scammers have contacted websites demanding a ransom message be paid or else they will ensure the site will be blacklisted for aggressive spamming activities. Read more in my article on the Hot for Security blog. | |||
|
2019-06-10 11:31:00 | BlueKeep – everyone agrees, you should patch PCs running legacy versions of Windows (lien direct) | I have this horrible feeling that the only way we’re going to wake the world up to the need to patch their ageing versions of Windows against the BlueKeep vulnerability is to wait until a malicious worm begins to spread around the world. Prove me wrong. Patch now. | Vulnerability | ||
|
2019-06-07 15:27:03 | Umm.. that\'s not a movies password update. That\'s a downgrade (lien direct) | A cinema chain has given customers a password that any mischief-maker with half a brain cell could deduce. | |||
|
2019-06-07 14:31:00 | Cryptocurrency wallet GateHub hacked, nearly $10 million worth of Ripple (XRP) stolen (lien direct) | Cryptocurrency wallet service GateHub has warned that over 100 customers have had their ledger wallets hacked and funds stolen. Read more in my article on the Tripwire State of Security blog. | |||
|
2019-06-06 14:45:03 | Radisson Rewards may have leaked your data… again (lien direct) | If you’ve ever stayed at a Radisson Hotel and joined the Radisson Rewards loyalty program then your loyalty to the brand may be tested somewhat by an email they have been sending some members today. | |||
|
2019-06-05 23:06:01 | Smashing Security #131: Zap yourself from the net, and patch now against BlueKeep (lien direct) | Microsoft issues warning to unpatched Windows users about worm risk, and how do you delete all traces of yourself off the internet after you murder your podcast co-host? All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault. | |||
|
2019-06-05 11:26:02 | Smashing Security named the Best Security Podcast (lien direct) | “Smashing Security” has been named the Best Security Podcast 2019 at an awards ceremony in London. | |||
|
2019-06-03 11:19:02 | Facebook lawyer argues you should have \'no expectation of privacy\' (lien direct) | Next time someone connected to Facebook tries to convince you that it’s now really serious about privacy you know they’re pulling your leg. | |||
|
2019-06-03 10:22:05 | Data protection authority reports itself to itself after data breach (lien direct) | The Dutch Data Protection Authority has confessed to making the same kind of mistake that many others have made before – sending out an email with a long list of email addresses listed for all to see in the Cc: rather than hidden away via the Bcc: field. | Data Breach | ||
|
2019-05-30 14:55:05 | New Zealand budget details leaked due to website sloppiness, not hackers (lien direct) | Earlier this week, the New Zealand government was claiming that it had suffered a “deliberate and systematic” hacking attack that resulted in budget details ending up in the hands of its political opponents. But that’s not what had really happened… |
To see everything:
Our RSS (filtrered)
