What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2022-10-05 21:49:24 | Former Uber CISO Joe Sullivan Found Guilty Over Breach Cover-Up (lien direct) | 
A San Francisco jury on Wednesday found former Uber security chief Joe Sullivan guilty of covering up a 2016 data breach and concealing information on a felony from law enforcement.
|
Data Breach | Uber Uber | |
|
2022-10-05 15:12:41 | KKR Boosts NetSPI Stake with $410 Million Investment (lien direct) | Private equity giant KKR is expanding its big bet on penetration testing and attack surface management firm NetSPI with a new $410 million investment round. | |||
|
2022-10-05 12:41:46 | Iranian Hackers Target Enterprise Android Users With New RatMilad Spyware (lien direct) | Zimperium is warning of an Iranian hacking group using a new piece of Android spyware in a broad campaign that has also targeted enterprise users. | |||
|
2022-10-05 10:30:15 | US Government Details Tools Used by APTs in Defense Organization Attack (lien direct) | The NSA, FBI and CISA have issued an alert describing the tools and techniques used by advanced persistent threat (APT) actors in an attack aimed at an unnamed defense industrial base organization in the United States. | Threat | ||
|
2022-10-05 10:27:39 | (Déjà vu) Seattle Woman Gets Probation for Massive Capital One Hack (lien direct) | A former Seattle tech worker convicted of several charges related to a massive hack of Capital One bank and other companies in 2019 was sentenced Tuesday to time served and five years of probation. | Hack | ||
|
2022-10-04 15:14:58 | Critical Packagist Vulnerability Opened Door for PHP Supply Chain Attack (lien direct) | Code security company SonarSource today published details on a severe vulnerability impacting Packagist, which could have been abused to mount supply chain attacks targeting the PHP community. | Vulnerability | ||
|
2022-10-04 13:40:02 | Webinar Today: The Ultimate Insider\'s Guide to DDoS Mitigation Strategies (lien direct) | 
|
|||
|
2022-10-04 01:10:35 | Report: Mexico Continued to Use Spyware Against Activists (lien direct) | The Mexican government or army has allegedly continued to use spyware designed to hack into the cellphones of activists, despite a pledge by President Andrés Manuel López Obrador to end such practices. | Hack | ||
|
2022-10-03 15:03:16 | Supply Chain Attack Targets Customer Engagement Firm Comm100 (lien direct) | CrowdStrike is warning of a recently identified supply chain attack involving Canada-based customer engagement software provider Comm100. | |||
|
2022-10-03 13:14:32 | Optus Says ID Numbers of 2.1 Million Compromised in Data Breach (lien direct) | Australian telecommunications company Optus says that 2.1 million of its customers had numbers associated with their identification documents compromised in a recent data breach. | Data Breach | ||
|
2022-10-01 11:35:22 | Shangri-La hotels Customer Database Hacked (lien direct) | The Shangri-La hotel group has said a database containing the personal information of customers at eight of its Asian properties between May and July has been hacked. The breach covered hotels in Hong Kong, Singapore, Chiang Mai, Taipei and Tokyo but the company said it had not yet been able to determine what data had been stolen. | |||
|
2022-10-01 01:05:39 | Hack Puts Latin American Security Agencies on Edge (lien direct) | A massive trove of emails from Mexico's Defense Department is among electronic communications taken by a group of hackers from military and police agencies across several Latin American countries, Mexico's president confirmed Friday. | |||
|
2022-09-30 12:54:38 | DoD Announces Final Results of \'Hack US\' Bug Bounty Program (lien direct) | The US Department of Defense (DoD) and HackerOne this week announced the results of the Hack US one-week bug bounty challenge that ran from July 4 to July 11, 2022. | |||
|
2022-09-29 21:47:02 | NSA Cyber Specialist, Army Doctor Charged in US Spying Cases (lien direct) | A cyber specialist who worked at the US National Security Agency and an army doctor and his wife were charged Thursday in separate cases with seeking to sell US secrets to foreign governments. | |||
|
2022-09-29 17:05:59 | North Korean Gov Hackers Caught Rigging Legit Software (lien direct) | Threat hunters at Microsoft have intercepted a notorious North Korean government hacking group lacing legitimate open source software with custom malware capable of data theft, espionage, financial gain and network destruction. | Malware | ||
|
2022-09-29 12:37:23 | Auth0 Finds No Breach Following Source Code Compromise (lien direct) | Okta-owned Auth0 this week announced that it has not identified an intrusion into its environment after a third-party said they were in the possession of older source code repositories. | |||
|
2022-09-28 15:29:22 | Fast Company Hack Impacts Website, Apple News Account (lien direct) | American business magazine Fast Company has confirmed that its Apple News account was hijacked after hackers compromised its content management system (CMS). The monthly magazine focuses on business, technology, and design. In addition to its online version, the magazine publishes six print issues each year. | Hack | ★★★★★ | |
|
2022-09-28 15:07:41 | Report Shows How Long It Takes Ethical Hackers to Execute Attacks (lien direct) | A survey of more than 300 ethical hackers conducted by cybersecurity companies Bishop Fox and SANS Institute found that many could execute an end-to-end attack in less than a day. | |||
|
2022-09-28 11:03:48 | Cyber Warfare Rife in Ukraine, But Impact Stays in Shadows (lien direct) | 
|
|||
|
2022-09-27 18:44:39 | Researchers Crowdsourcing Effort to Identify Mysterious Metador APT (lien direct) | Cybersecurity sleuths at SentinelLabs are calling on the wider threat hunting community to help decipher a new mysterious malware campaign hitting telcos, ISPs and universities in the Middle East and Africa. | Malware Threat | ||
|
2022-09-27 13:24:21 | New Infostealer Malware \'Erbium\' Offered as MaaS for Thousands of Dollars (lien direct) | Security researchers are warning of a new information stealer named Erbium being distributed under the Malware-as-a-Service (MaaS) model. The threat made its initial appearance in late July, when a Russian speaking threat actor started advertising it on a dark web forum. | Malware Threat | ||
|
2022-09-27 12:24:20 | Defense Giant Elbit Confirms Data Breach After Ransomware Gang Claims Hack (lien direct) | Elbit Systems of America, a subsidiary of Israeli defense giant Elbit Systems, has confirmed suffering a data breach, a few months after a ransomware gang claimed to have hacked the company's systems. | Ransomware Data Breach Hack | ||
|
2022-09-27 10:19:06 | Australian Police Probe Purported Hacker\'s Ransom Demand (lien direct) | Australian police were investigating a purported hacker's release of the stolen personal data of 10,000 Optus customers and demand for a $1 million ransom in cryptocurrency, the telecommunications company's chief executive said Tuesday. | |||
|
2022-09-26 15:23:00 | Hackers Leak French Hospital Patient Data in Ransom Fight (lien direct) | Hackers who crippled a French hospital and stole a trove of data last month have released personal records of patients online, officials have confirmed. The cyberattackers demanded a multimillion dollar ransom from the Corbeil-Essonnes hospital near Paris a month ago, but the institution refused to pay. | |||
|
2022-09-26 13:46:57 | Australia Mulls Tougher Cybersecurity Laws After Data Breach (lien direct) | The Australian government said on Monday it is considering tougher cybersecurity rules for telecommunications companies and blamed Optus, the nation's second-largest wireless carrier, for an unprecedented breach of personal data from 9.8 million customers. | Data Breach | ||
|
2022-09-26 13:44:27 | Breached American Airlines Email Accounts Abused for Phishing (lien direct) | American Airlines discovered it was breached after receiving reports of employee email accounts being used in phishing attacks. Last week, the airline started informing some of its customers that their personal data was likely compromised in a data breach identified in early July. | Data Breach | ||
|
2022-09-26 11:33:08 | Ukraine Cracks Down on Group Selling Hacked Accounts to Pro-Russia Propagandists (lien direct) | Ukrainian authorities take down cybercrime group that hacked 30 million accounts Ukrainian authorities say they have taken down a pro-Russia hacking group that compromised user accounts and then sold them for profit on dark web portals. | |||
|
2022-09-26 10:50:50 | Hacktivist Attacks Show Ease of Hacking Industrial Control Systems (lien direct) | Hacktivists might not know a lot about industrial control systems (ICS), but they're well aware of the potential implications of these devices getting compromised. That is why some groups have been targeting these systems - which are often unprotected and easy to hack - to draw attention to their cause. | Hack | ||
|
2022-09-23 13:45:42 | "Left and Right of Boom" - Having a Winning Strategy (lien direct) | As security practitioners are painfully aware, it is not a matter of if but when their organization will come under cyberattack. Given this year's geopolitical events, the likelihood of falling victim to an attack has exponentially increased. And while the cybersecurity landscape will continue to evolve; many organizations seem to be holding on to the belief that deploying more preventive security tools will result in greater protection against these threats. | |||
|
2022-09-22 14:53:33 | Twitter Logs Out Some Users Due to Security Issue Related to Password Resets (lien direct) | Twitter said on Wednesday that some users have been logged out of their active sessions in response to a bug that posed a security risk. The issue was related to password resets - when users reset their password, their active sessions on Android and iOS devices were not closed. Impacted users have been directly notified. | |||
|
2022-09-22 13:45:21 | Australian Telecoms Firm Optus Discloses Breach Impacting Customer Data (lien direct) | Australian telecoms company Optus has disclosed a data breach impacting the personal information of both former and current customers. Founded in 1981, Optus is the second largest wireless services provider in Australia, with nearly 9.7 million subscribers. It's currently owned by Singapore Telecommunications. | Data Breach | ||
|
2022-09-22 00:25:11 | European Spyware Investigators Criticize Israel and Poland (lien direct) | European Parliament members investigating the use of surveillance spyware by European Union governments sharply criticized Israel on Wednesday for a lack of transparency in allowing the sale of powerful Israeli spyware to European governments that have used it against critics. | |||
|
2022-09-21 10:35:00 | iBoot Power Distribution Unit Flaws Allow Hackers to Remotely Shut Down Devices (lien direct) | Critical vulnerabilities discovered by researchers in Dataprobe's iBoot power distribution unit (PDU) can allow malicious actors to remotely hack the product and shut down connected devices, potentially causing disruption within the targeted organization. | Hack | ||
|
2022-09-21 10:14:28 | VMware Warns of \'ChromeLoader\' Delivering Ransomware, Destructive Malware (lien direct) | VMware's Carbon Black team warns that the ChromeLoader malware is now delivering malware such as ZipBomb and the Enigma ransomware to business services and government organizations. | Ransomware Malware | ||
|
2022-09-20 15:05:06 | CrowdStrike to Buy Reposify, Invests in Salt Security (lien direct) | Endpoint detection and response pioneer CrowdStrike is elbowing its way into new security markets with a planned acquisition of attack surface management startup Reposify and a strategic investment in API security vendor Salt Security. | |||
|
2022-09-20 14:28:22 | (Déjà vu) Over 50,000 Revolut Customers Affected by Data Breach (lien direct) | Financial technology company Revolut has started informing some customers that it has been targeted in a cyberattack that resulted in their information getting compromised. | Data Breach | ||
|
2022-09-20 13:48:57 | Quantifying ROI in Cybersecurity Spend (lien direct) | In cybersecurity, there are too many variables on both the attack and defense sides to easily calculate ROI for specific spends | |||
|
2022-09-20 12:43:44 | New York Emergency Services Provider Says Patient Data Stolen in Ransomware Attack (lien direct) | The personal information of roughly 320,000 individuals was compromised following a ransomware attack at New York-based ambulance services provider Empress EMS (Emergency Medical Services). | Ransomware | ||
|
2022-09-20 12:34:22 | American Airlines Says Personal Data Exposed After Email Phishing Attack (lien direct) | American Airlines is informing some customers that their personal information may have been compromised after threat actors gained access to employee email accounts. | Threat | ||
|
2022-09-20 10:29:21 | EU Court Rules Against German Data Collection Law (lien direct) | A German law requiring telecoms companies to retain customer data is a breach of EU legislation, a European court ruled Tuesday, prompting the justice minister to vow an overhaul of the rules. | |||
|
2022-09-19 19:02:09 | Uber Confirms Hacker Accessed Internal Tools, Bug Bounty Dashboard (lien direct) | Ride-hailing giant Uber is moving quickly to downplay the impact from a devastating security breach that included the theft of employee credentials, access to the HackerOne bug bounty dashboard and data from an internal invoicing tool. | Uber Uber | ||
|
2022-09-19 14:03:12 | Rockstar Games Confirms Breach Leading to GTA 6 Leak (lien direct) | Video game publisher Rockstar Games has confirmed suffering a network breach that resulted in videos from the upcoming Grand Theft Auto (GTA) 6 game getting leaked. | |||
|
2022-09-19 13:24:40 | Eyeglass Reflections Can Leak Information During Video Calls (lien direct) | A group of academic researchers have devised a method of reconstructing text exposed via participants' eyeglasses and other reflective objects during video conferences. | |||
|
2022-09-19 10:47:33 | LastPass Found No Code Injection Attempts Following August Data Breach (lien direct) | Password management software provider LastPass says its investigation into the August 2022 data breach has not revealed any attempts to inject malicious code into LastPass software. | Data Breach | LastPass | |
|
2022-09-19 10:24:11 | GTA 6 Videos and Source Code Stolen in Rockstar Games Hack (lien direct) | The Rockstar Games hacker also claims to be behind the recent Uber breach | Hack | Uber Uber | |
|
2022-09-17 16:14:00 | Serious Breach at Uber Spotlights Hacker Social Deception (lien direct) | The ride-hailing service Uber said Friday that all its services were operational following what security professionals are calling a major data breach, claiming there was no evidence the hacker got access to sensitive user data. | Uber Uber | ||
|
2022-09-16 11:07:32 | Akamai Sees Europe\'s Biggest DDoS Attack to Date (lien direct) | Akamai recently mitigated a distributed denial-of-service (DDoS) attack that set a new record for attacks targeting European organizations in terms of packets per second. | |||
|
2022-09-16 09:22:19 | Uber Investigating Data Breach After Hacker Claims of Extensive Compromise (lien direct) |
Uber “responding to a cybersecurity incident” after hacker claims to have breached several systems
|
Data Breach | Uber | |
|
2022-09-14 14:35:30 | Bishop Fox Releases Open Source Cloud Hacking Tool \'CloudFox\' (lien direct) | Cybersecurity firm Bishop Fox has announced the release of CloudFox, an open source tool designed to help find exploitable attack paths in cloud infrastructure. The command line tool has been created for penetration testers and other offensive security professionals. | Tool | ||
|
2022-09-14 11:45:00 | Malware Infects Magento-Powered Stores via FishPig Distribution Server (lien direct) | For the past several weeks, Magento stores have been injected with malware via a supply chain attack that targeted the FishPig distribution server. Specialized in Magento optimizations and Magento-WordPress integrations, FishPig offers various Magento extensions that have gathered over 200,000 downloads. | Malware |
To see everything:
Our RSS (filtrered)
