What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2021-08-21 11:08:34 | T-Mobile confirms fifth data breach in three years (lien direct) | T-Mobile has confirmed media reports from earlier this week that it had suffered a serious data breach. And it's not just existing T-Mobile users who should be alarmed, but former and prosepective customers as well. | Data Breach | ||
|
2021-08-19 13:36:50 | Want to ban someone from Instagram? That\'ll cost you just $60 (lien direct) | Got a grudge against an Instagram user? Like to wipe your ex-partner's sickening selfies off social media? Well, scammers may just have the perfect service for you - at quite an affordable price. Read more in my article on the Tripwire State of Security blog. | |||
|
2021-08-19 10:39:50 | Smashing Security podcast #239: TikTok vigilantes, sloppy IoT, and Wikipedia woe (lien direct) | The Great Londini has gathered a two million strong army to out TikTok trolls, there's a bad supply chain vulnerability in many IoT devices, and how did Wikipedia pages end up covered in Nazi swastikas? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes. | Vulnerability | ||
|
2021-08-18 15:39:34 | (Déjà vu) Learn how a culture of security can improve security and productivity across your business with 1Password (lien direct) | Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! The shift to remote and hybrid work has created an ecosystem of new vulnerabilities, putting your critical data at risk. With less oversight into security protocols and employee behaviors, it's more important than … Continue reading "Learn how a culture of security can improve security and productivity across your business with 1Password" | ★★★★★ | ||
|
2021-08-17 09:51:52 | Survey finds vast majority of people reusing personal passwords in the workplace, despite security training (lien direct) | New research suggests that not many people have learnt the lesson of not reusing passwords, putting themselves and the companies they work for at risk. Read more in my article on the Hot for Security blog. | |||
|
2021-08-16 12:35:15 | Indra hacking group blamed for attack on Iranian railway system that trolled country\'s supreme leader (lien direct) | On 9 July, Iran's railroad system came under attack from hackers. The attackers posted messages on station departure boards warning of "long delay[s] because of cyberattack", and suggesting inconvenienced passengers call "64411" for more information, the telephone number of Iran's supreme leader. And that's when things got really serious... | Guideline | ||
|
2021-08-16 11:29:06 | T-Mobile USA investigates possible breach after hacker offers to sell customer data (lien direct) | A hacker is offering for sale what they claim to be the personal data of over 100 million people, stolen from the servers of T-Mobile USA. | |||
|
2021-08-12 14:16:36 | Accenture hit by apparent ransomware attack (lien direct) | Accenture appears to have been hit by the LockBit ransomware gang, who are offering to sell data stolen from the global consultancy firm to interested parties. | Ransomware | ||
|
2021-08-10 14:07:23 | Learn how to build a culture of security with 1Password (lien direct) | Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! The shift to remote and hybrid work has created an ecosystem of new vulnerabilities, putting your critical data at risk. With less oversight into security protocols and employee behaviors, it's more important than … Continue reading "Learn how to build a culture of security with 1Password" | |||
|
2021-08-06 15:01:59 | Scanning for Child Sexual Abuse Material (CSAM) on iPhones (lien direct) | Apple announces its plan for detecting child sexual abuse images on users' iPhones and Macs. But it's unlikely to be welcomed by those who hold privacy close to their hearts. | ★★★★ | ||
|
2021-08-05 09:00:09 | (Déjà vu) Security tips from the experts – sign up to 1Password\'s free Security Summer School today (lien direct) | Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! You can ;earn from security experts at top organizations, hear about new security and technology trends, and get quick tips for building a culture of security at work and at home – in … Continue reading "Security tips from the experts – sign up to 1Password’s free Security Summer School today" | |||
|
2021-07-30 16:27:14 | Ransomware via a call centre? BazaCall means no email attachment or link required for infection (lien direct) | Unsuspecting users of Office 365 are being tricked by a cybercriminal gang into calling a bogus call centre, with the eventual intention of installing ransomware onto their computers. Read more in my article on the Hot for Security blog. | Ransomware | ||
|
2021-07-30 16:18:31 | Instagram influencer Hushpuppi admits his part in scams that stole more than $24 million (lien direct) | Ramon Olorunwa Abbas, also known as "Ray Hushpuppi," might have imagined he had it all. The self-proclaimed "Billionaire Gucci Master", flamboyantly boasted about his luxurious life of expensive cars, private jets, and designer clothes to his 2.3 million Instagram followers. But he left a digital trail online which has resulted in him facing a prison sentence of up to 20 years. Read more in my article on the Hot for Security blog. | |||
|
2021-07-29 19:06:21 | BlackMatter rises from the ashes of notorious cybercrime gangs to pose new ransomware threat (lien direct) | A new ransomware gang that calls itself BlackMatter has launched itself on the dark web, and is actively attempting to recruit criminal partners and affiliates to attack large organisations in the United States, UK, Canada, and Australia. Read more in my article on the Tripwire State of Security blog. | Ransomware Threat | ||
|
2021-07-29 08:36:26 | Smashing Security podcast #238: Fashion captain, fraud family, and DEF CON. D\'oh! (lien direct) | Pygmy hippopotamus bugs, DEF CON's data slip-up, and phishing fraudsters have their collars felt. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Naked Security's Paul Ducklin. | |||
|
2021-07-27 17:25:13 | Despite all the advice, 97.7% of Twitter users have still not enabled two-factor authentication (lien direct) | Twitter has revealed that the vast majority of its users have ignored advice to protect their accounts with two-factor authentication (2FA) - one of the simplest ways to harden account security. Read more in my article on the Hot for Security blog. | |||
|
2021-07-27 08:27:55 | Patch your iPhones and Macs against “actively exploited” zero-day right now (lien direct) | Apple has released a major security update for its devices, after finding a zero-day flaw that the company indicates has been the focus of in-the-wild attacks by hackers, and might have been used to plant malware. Read more in my article on the Hot for Security blog. | |||
|
2021-07-26 18:14:21 | Who us??? Kaseya says it hasn\'t paid anybody for its ransomware decryption key (lien direct) | Kaseya hasn't paid anyone for the decryptor it managed to get its paws on last week, and is offering to customers hit by a massive ransomware attack. Which only raises the question - who did? | Ransomware | ||
|
2021-07-26 17:52:52 | Average ransomware payments decline… but that\'s not good news (lien direct) | The latest research finds that ransomware attackers are attempt to extort, on average, a smaller amount of money through their criminal activities. | Ransomware | ||
|
2021-07-26 17:23:36 | No More Ransom website celebrates five years of providing free ransomware recovery tools and advice (lien direct) | The No More Ransom website has become one of the first ports of call for any individual or company whose computer has been hit by a ransomware attack. | Ransomware | ||
|
2021-07-26 13:46:44 | Good news! I\'m getting a salary increase! (lien direct) | It seems my boss here at “Grahamcluley” has decided that I deserve a wage increase. This is not only terrific news for my bank balance, but also terribly exciting as I never knew I even had a boss – let alone that my company had a human resources department and accounts team... | |||
|
2021-07-26 12:38:53 | Stay sharp this summer with security tips from the experts – sign up to 1Password\'s Security Summer School today (lien direct) | Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! Learn from security experts at top organizations, hear about new security and technology trends, and get quick tips for building a culture of security at work and at home – all in four … Continue reading "Stay sharp this summer with security tips from the experts – sign up to 1Password’s Security Summer School today" | |||
|
2021-07-26 10:20:28 | Vikings hack Instagram account of SBS News in Australia (lien direct) | The Instagram account of SBS Australia - a group of free-to-air TV and radio stations down under - has been hacked by someone who clearly loves "Vikings". | Hack | ||
|
2021-07-23 16:10:32 | Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands (lien direct) | Dutch police have arrested suspected members of a notorious cybercrime gang known as "Fraud Family," following a spate of sophisticated phishing attacks that have targeted users in the Netherlands and Belgium. Read more in my article on the Hot for Security blog. | |||
|
2021-07-23 10:32:20 | Kaseya offers universal decryptor to customers following ransomware attack (lien direct) | IT service firm Kaseya says that it has "obtained" a universal decryptor for customers hit by the REvil ransomware gang earlier this month. REvil had earlier offered to sell the decryptor for $70 million... | Ransomware | ||
|
2021-07-22 14:46:54 | British man arrested in connection with Twitter mega-hack that posted cryptocurrency scam from celebrity accounts (lien direct) | Police in Spain have arrested a British man in connection with what many consider the worst hack in Twitter's history. Read more in my article on the Tripwire State of Security blog. | Hack | ||
|
2021-07-22 12:55:01 | Homoglyph domains used in BEC scams shut down by Microsoft (lien direct) | 17 domains used in Business Email Compromise (BEC) scams have been seized by Microsoft's Digital Crimes Unit (DCU), following an investigation by the software giant into attacks that could have stolen millions of dollars from innocent firms. Read more in my article on the Hot for Security blog. | |||
|
2021-07-22 00:06:39 | Smashing Security podcast #237: NuNa, NuNu, NaNa (lien direct) | Spy software known as Pegasus has been used to carry out surveillance on the smartphones of journalists, activists, and political leaders. Can a “Freedom Phone” be trusted? And a ransomware-hit law firm demonstrates how not to keep its customers informed. All this and much more is discussed in the latest edition of the award-winning “Smashing … Continue reading "Smashing Security podcast #237: NuNa, NuNu, NaNa" | Guideline | ||
|
2021-07-21 19:15:23 | No, your Grindr activity is not necessarily private – just ask the senior Catholic priest who was outed and lost his job (lien direct) | A senior official of the US Catholic Church has resigned after a blog revealed it had cellphone data that showed he was a regular user of the gay dating app Grindr. | |||
|
2021-07-16 18:56:24 | Instagram Security Check hopes to make life harder for account hackers (lien direct) | Instagram has rolled out a new feature in the hope of better securing its one billion monthly active users' accounts. Is your account properly protected? Read more in my article on the Hot for Security blog. | |||
|
2021-07-16 13:45:20 | Irish hospital sued by cancer patient after ransomware attack (lien direct) | A cancer patient is taking legal proceedings against Mercy University Hospital in Cork, Ireland. Not because of negligent treatment, but because some of his personal medical files were published on the dark web after the hospital suffered a ransomware attack earlier this year. | Ransomware | ||
|
2021-07-15 14:23:22 | US offers $10 million reward in hunt for state-sponsored ransomware attackers (lien direct) | The United States Department of State is offering a reward of up to $10 million for information leading to the identification of anyone, working for a foreign government, who participates in a cybercriminal attack against American critical infrastructure. Read more in my article on the Tripwire State of Security blog. | Ransomware Guideline | ||
|
2021-07-15 11:24:04 | Smashing Security podcast #236: Stingrays, soccer, and smart homes (lien direct) | How did investigators ask a romance scammer out on a date, how are smart homes continuing to play dumb, and is it time for social media sites to do more about racist football fans? All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BBC technology reporter Zoe Kleinman. | |||
|
2021-07-13 07:12:48 | FBI warns hackers are targeting cryptocurrency wallets and exchanges (lien direct) | The FBI has sounded an alert amongst owners of cryptocurrency, digital currency exchanges, and cryptocurrency payment platforms that their virtual riches are being actively targeted by malicious hackers. Read more in my article on the Hot for Security blog. | |||
|
2021-07-12 10:20:27 | Spreadshop hacked. T-shirt lovers warned of “considerably vicious” data breach (lien direct) | Clients of Spreadshirt, Spreadshop, and TeamShirts have been warned of a data breach which has seen the details of customers, partners, and employees fall into the lap of cybercriminals. | Data Breach | ||
|
2021-07-08 15:34:48 | Lazarus gang targets engineers with job offers using poisoned emails (lien direct) | Security researchers report that a notorious North Korean hacking group has been targeting engineers working in the defence industry. Read more in my article on the Tripwire State of Security blog. | APT 38 | ||
|
2021-07-07 23:02:33 | Smashing Security podcast #235: REvil returns, TikTok grows, and Gettr defaced (lien direct) | A ransomware gang has exploited a security hole in software used by many businesses, and are demanding $70 million for a decryption tool. Plus we take a close look at TikTok, and a website which seems to have entirely ripped-off Twitter. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist and author Chris Stokel-Walker. | Ransomware | ||
|
2021-07-07 12:41:07 | Join over 45,000 others, and get FREE threat intelligence on hackers and exploits with the Recorded Future Cyber Daily (lien direct) | Many thanks to the great team at Recorded Future, who are sponsoring my website this week. Recorded Future provides deep, detailed insight into emerging threats by automatically collecting, analyzing, and organizing billions of data points from the web. And now, with its FREE Cyber Daily email all IT security professionals can access information about the … Continue reading "Join over 45,000 others, and get FREE threat intelligence on hackers and exploits with the Recorded Future Cyber Daily" | Threat | ★★★★ | |
|
2021-07-07 10:45:51 | Malware campaign targets companies waiting for Kaseya security patch (lien direct) | While the world continues to wait for Kaseya to issue an update to patch VSA installations against a vulnerability exploited by the REvil ransomware gang, security researchers spotted a malware campaign which is taking advantage of the vacuum. | Ransomware Malware Vulnerability | ||
|
2021-07-05 13:57:47 | REvil ransomware rampages following Kaseya supply-chain attack (lien direct) | Hundreds - if not thousands - of companies have been by a huge supply-chain REvil ransomware attack that struck on Friday July 2nd, just as companies in the United States were closing down for the Independence Day holiday weekend. | Ransomware | ||
|
2021-07-04 23:24:54 | Aled Jones says he was hacked, after rude picture posted on Twitter (lien direct) | British TV presenter Aled Jones has said that a hacker compromised his Twitter account and posted an image of a man's bulging underwear. | |||
|
2021-07-01 13:04:36 | PrintNightmare zero day exploit for Windows is in the wild – what you need to know (lien direct) | Proof-of-concept code has been accidentally released for a zero-day vulnerability in WIndows Print Spooler, in the mistaken belief that Microsoft had patched it. D'oh! | Vulnerability | ||
|
2021-07-01 10:47:40 | Smashing Security podcast #234: Cozy Bear, dildo scams, and robo hires and fires (lien direct) | Microsoft warns about a hacking gang that is far from cuddly, algorithms rather than managers are firing people, and our guest receives a surprising email from "Amazon"... And you will NOT want to miss checking out a very special "Pick of the week"! All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by David Bisson. | APT 29 | ||
|
2021-06-30 16:13:54 | Received a WhatsApp verification code without requesting it? Beware – you might be about to have your account stolen (lien direct) | Police in the UK are warning WhatsApp users of a surge they have seen in attempts made by fraudsters to steal accounts. Read more in my article on the Hot for Security blog. | ★★ | ||
|
2021-06-28 15:36:18 | One billion dollars lost by over-60s through online fraud in 2020, says FBI (lien direct) | According to a newly-published report by the FBI's Internet Crime Complaint Center (IC3), the elderly are more at risk from falling victim to online fraud and internet scammers than ever before. Read more in my article on the Hot for Security blog. | |||
|
2021-06-25 13:20:07 | FIN7 hacking gang\'s “pen tester” jailed for seven years by US court (lien direct) | The Western District of Washington has sentenced a Ukrainian man to seven years in prison for his role in a hacking gang that is estimated to have caused more than one billion dollars worth of damage. Read more in my article on the Hot for Security blog. | ★★ | ||
|
2021-06-25 12:51:40 | Disconnect your WD My Book Live from the internet or face data deletion, says Western Digital (lien direct) | Storage drive maker Western Digital is telling owners of its WD My Book Live device to disconnect it from the internet, after reports that some have had their data erased by malicious software. Read more in my article on the Tripwire State of Security blog. | |||
|
2021-06-24 14:45:59 | Smashing Security podcast #233: Peloton problems, romance regret, and Weiner woes (lien direct) | We take a look at why Peloton is being accused of ransomware-like behaviour, how one man lost $250,000 in a romance scam, and how a chap called Weiner has found himself in a political pickle. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Host Unknown's Andrew Agnês. | |||
|
2021-06-23 11:36:03 | (Déjà vu) Get serious about enterprise password management – download this 1Password white paper now (lien direct) | Graham Cluley Security News is sponsored this week by the folks at 1Password. Thanks to the great team there for their support! Most enterprise data breaches are still tied to weak password and secrets management habits among employees. 1Password’s white paper highlights how password management software is a top-level consideration for IT departments to close … Continue reading "Get serious about enterprise password management – download this 1Password white paper now" | |||
|
2021-06-22 08:56:57 | Smart thermostats cranked up remotely by Texas energy firms, as consumers swelter in heat wave (lien direct) | Some sweltering residents of Texas are reporting that they are unable to lower the temperature on their Wi-Fi enabled “smart” thermostats after it was mysteriously raised, and they are struggling to understand why. Read more in my article on the Bitdefender BOX blog. |
To see everything:
Our RSS (filtrered)
