Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-11-22 17:24:51 |
Over a million WordPress sites breached (lien direct) |
WordPress site owners hosted by GoDaddy woke this morning to find that their sites had been cracked open. |
|
|
|
|
2021-11-18 12:30:02 |
Cloud security firm Lacework secures $1.3 billion in new funding round (lien direct) |
New investors including Liberty Global have joined the fray. |
|
|
|
|
2021-11-17 12:00:02 |
Why are you still using QWERTY? 2021\'s most common passwords revealed (lien direct) |
Research reveals we are yet to adopt strong passwords, let alone more robust security measures. |
|
|
|
|
2021-11-16 16:50:02 |
Belarus government accused of \'partial responsibility\' for Ghostwriter campaigns (lien direct) |
Mandiant says the government is likely to blame for anti-NATO campaigns, and more. |
|
|
|
|
2021-11-16 11:44:00 |
MosesStaff attacks organizations with encryption malware - no payment demand made (lien direct) |
Israeli firms are being targeted for purely political and destructive purposes. |
Malware
|
|
|
|
2021-11-16 09:59:10 |
New banking Trojan SharkBot makes waves across Europe, US (lien direct) |
The malware specializes in infiltrating Android handsets. |
Malware
|
|
|
|
2021-11-11 17:00:01 |
Google debuts ClusterFuzzLite security tool for CI, CD workflows (lien direct) |
The fuzzing solution is set to bolster software supply chain security. |
Tool
|
|
|
|
2021-11-11 12:30:02 |
(Déjà vu) BazarBackdoor now abuses Windows 10 apps feature in \'call me back\' attack (lien direct) |
AppInstaller.exe has been twisted in a new form of phishing attack. |
|
|
|
|
2021-11-11 12:30:00 |
BazarBackdoor now abuses Windows 10 app feature in \'call me back\' attack (lien direct) |
AppInstaller.exe has been twisted in a new form of phishing attack. |
|
|
|
|
2021-11-11 08:00:02 |
EU pharmaceutical giants run old, vulnerable apps and fail to use encryption in login forms (lien direct) |
New research highlights hundreds of companies that are at risk of cyberattacks. |
|
|
|
|
2021-11-10 22:00:02 |
North Korean hackers target the South\'s think tanks through blog posts (lien direct) |
Responsibility for new attacks has been laid at the feet of the Kimsuky threat group. |
Threat
|
|
|
|
2021-11-10 14:00:00 |
A stalker\'s wishlist: PhoneSpy malware destroys Android privacy (lien direct) |
A new surveillance campaign has revealed widespread infection on Android devices. |
Malware
|
|
|
|
2021-11-09 11:00:01 |
Meet Lyceum: Iranian hackers targeting telecoms, ISPs (lien direct) |
The criminals climb up communication chains with the aim of reaching executives. |
|
|
|
|
2021-11-08 07:58:13 |
Cybersecurity firms provide threat intel for Clop ransomware group arrests (lien direct) |
The crackdown was codenamed Operation Cyclone. |
Ransomware
Threat
|
|
|
|
2021-11-05 10:29:43 |
SSL certificate research highlights pitfalls for company data, competition (lien direct) |
Analysis reveals hidden risks for organizations that do not monitor their certificate usage. |
|
|
|
|
2021-11-04 12:44:50 |
US indicts UK resident \'PlugwalkJoe\' for cryptocurrency theft (lien direct) |
The UK national is accused of stealing $784,000 in cryptocurrency. |
|
|
|
|
2021-11-04 11:00:00 |
Remote code execution flaw patched in Linux Kernel TIPC module (lien direct) |
The bug was spotted within a year of introduction to the codebase. |
|
|
|
|
2021-11-03 13:00:02 |
Almost half of rootkits are used for cyberattacks against government organizations (lien direct) |
Research institutes are also in the firing line. |
|
|
|
|
2021-11-03 12:00:05 |
Medical school exposes personal data of thousands of students (lien direct) |
ID cards, academic records, and more were open and accessible on the internet. |
|
|
|
|
2021-11-03 10:00:01 |
Arrests were made, but the Mekotio Trojan lives on (lien direct) |
Law enforcement cut off tails, but not the head of the cybercriminal operation. |
|
|
|
|
2021-11-02 10:35:46 |
Squid Game cryptocurrency creators pull the rug from under investors, steal millions (lien direct) |
The coin has crashed in what appears to be an exit scam. |
|
|
|
|
2021-11-02 09:00:02 |
Cybercriminals flog access to international shipping, logistics giants (lien direct) |
The underground hosts initial access brokers with entry to companies key in global supply chains. |
|
|
|
|
2021-10-27 13:09:38 |
Weeks early: Adobe dumps massive security patch update (lien direct) |
The security update targets 14 products. |
|
|
|
|
2021-10-27 11:30:00 |
Meet Balikbayan Foxes: a threat group impersonating the Philippine gov\'t (lien direct) |
The gang is also taking advantage of COVID-19 to propagate Trojan malware. |
Threat
|
|
|
|
2021-10-26 10:00:02 |
Nearly all US execs have experienced a cybersecurity threat, but some say there\'s still no plan (lien direct) |
A new survey suggests the disruption, share price drops, and theft are common consequences of attacks. |
|
|
|
|
2021-10-26 08:21:01 |
Schools put the brakes on facial recognition scheme for kids buying lunch (lien direct) |
UK regulators swooped in before the program gained full momentum. |
|
|
|
|
2021-10-26 07:19:40 |
Mozilla Firefox cracks down on malicious add-ons used by 455,000 users (lien direct) |
The troublesome add-ons misused an API that controlled how Firefox connected to the internet. |
|
|
|
|
2021-10-25 09:35:24 |
SolarWinds hackers, Nobelium, once again strike global IT supply chains, Microsoft warns (lien direct) |
The APT is probing potential new technology supply chain victims. |
|
|
|
|
2021-10-22 11:24:46 |
Ex-carrier employee sentenced for role in SIM-swapping scheme (lien direct) |
He was paid a daily fee to route victim numbers to handsets controlled by other criminals. |
|
|
|
|
2021-10-22 10:33:25 |
South African police arrest eight men suspected of targeting widows in romance scams (lien direct) |
The gang concocted "sob stories" to lure their victims into parting with cash. |
|
|
|
|
2021-10-21 07:37:31 |
US judge sentences duo for roles in running bulletproof hosting service (lien direct) |
The hosting service was used to deploy malware payloads including Zeus and the Blackhole exploit kit. |
Malware
|
|
|
|
2021-10-20 11:17:06 |
Black market traders cash in on fake COVID-19 vaccination records (lien direct) |
The EU vaccine passport and CDC certifications are hot ticket items. |
|
|
|
|
2021-10-19 11:05:14 |
FCC mulls over new rules demanding carriers block spam robot texts at network level (lien direct) |
The proposal hones in on rising rates of robot texts. |
Spam
|
|
★★★★
|
|
2021-10-19 09:25:47 |
Twitter accounts linked to cyberattacks against security researchers suspended (lien direct) |
North Korean hackers are luring professionals with "zero-day vulnerability hype." |
Vulnerability
|
|
|
|
2021-10-18 11:43:08 |
BlackByte ransomware decryptor released (lien direct) |
The "odd" malware avoids systems based on Russian and ex-USSR languages. |
Ransomware
Malware
|
|
|
|
2021-10-15 14:30:02 |
Critical infrastructure security dubbed \'abysmal\' by researchers (lien direct) |
Researchers find that lax ICS security is putting critical services at risk of exploitation. |
|
|
|
|
2021-10-13 12:30:00 |
International cryptocurrency scam ring targets European dating app users (lien direct) |
You might lose your money as well as your heart. |
|
|
|
|
2021-10-13 12:07:00 |
Apple: Forcing app sideloading would turn iPhones into virus-prone \'pocket PCs\' (lien direct) |
Apple says that sideloading would undermine the "privacy and security protections" of iPhones. |
|
|
|
|
2021-10-13 10:00:08 |
Bugs allowing malicious NFT uploads uncovered in OpenSea marketplace (lien direct) |
Malicious NFTs could have become an attack vector for hackers trying to steal digital wallet funds. |
|
|
|
|
2021-10-11 09:53:45 |
FontOnLake malware strikes Linux systems in targeted attacks (lien direct) |
The malware is accompanied by a rootkit to sink its claws firmly into vulnerable machines. |
Malware
|
|
|
|
2021-10-11 08:54:01 |
FBI arrests engineer for flogging nuclear warship data hidden in peanut butter sandwich (lien direct) |
A husband and wife team tried to sell critical information on US submarine nuclear reactors. |
|
|
|
|
2021-10-08 12:16:00 |
BrewDog exposed data of 200,000 shareholders for over a year (lien direct) |
The beer's on BrewDog, too. |
|
|
|
|
2021-10-07 16:07:57 |
No honor among thieves: One in five targets of FIN12 hacking group is in healthcare (lien direct) |
The group strikes big game targets with annual revenues of over $6 billion. |
|
|
|
|
2021-10-07 07:57:46 |
Former Kent police officer sentenced for downloading child sex abuse material (lien direct) |
The disgraced officer has avoided jail. |
|
|
|
|
2021-10-06 17:32:20 |
Becoming a new chief information security officer today: The steps for success (lien direct) |
It's no easy ride -- but here are some tips from an experienced CISO. |
|
|
|
|
2021-10-06 12:03:29 |
(Déjà vu) Apache HTTP Server Project patches exploited zero-day vulnerability (lien direct) |
The critical vulnerability is being actively exploited in the wild. |
Vulnerability
|
|
|
|
2021-10-06 11:06:47 |
Meet ESPecter: a new UEFI bootkit for cyber spying (lien direct) |
The bootkit is able to load unsigned drivers to hijack the ESP. |
|
|
|
|
2021-10-05 15:38:00 |
Facebook whistleblower: \'Morally bankrupt\' social giant will have to \'hook kids\' to grow (lien direct) |
The whistleblower has accused Facebook of putting its "astronomical profits before people." |
|
|
|
|
2021-10-05 13:00:02 |
New Python ransomware targets virtual machines, ESXi hypervisors to encrypt disks (lien direct) |
By targeting ESXi, encryption was achieved in less than three hours on a corporate network. |
Ransomware
|
|
|
|
2021-10-05 10:42:39 |
Atom Silo ransomware operators target vulnerable Confluence servers (lien direct) |
A weaponized exploit used by the cybercriminals was only disclosed in August. |
Ransomware
|
|
|