What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2016-09-30 14:37:58 | Threatpost News Wrap, September 30, 2016 (lien direct) | The latest on the Yahoo breach, Germany's problem with WhatsApp-Facebook, Facebook's osquery tool for Windows, and Zerodium's $1.5M iOS bounty are all discussed. | Yahoo | ||
 |
2016-09-30 13:50:00 | Alien Eye in the Sky, Friday 30th September - Video Blog (lien direct) |
A roundup of the week’s news, commentary, and observations.
This week we shake things up and deliver the news via video format.
The stories mentioned in this week’s episode are:
A five person gang potentially behind the Yahoo breach.
A list of wifi hacking apps for your android
An investment bank held to ransom.
Docker and Microsoft announce a partnership.
Challenges to mobile application security
And Brian Kreb’s being DDoS’d by an IoT powered botnet.
      |
Yahoo | ||
 |
2016-09-29 23:16:34 | DarkReading: Researchers Shoot Down Yahoo Claim Of Nation-State Hackhttp://ubm.io/2don2zi (lien direct) | DarkReading: Researchers Shoot Down Yahoo Claim Of Nation-State Hackhttp://ubm.io/2don2zi | Yahoo | ||
 |
2016-09-29 19:29:00 | Yahoo! data breach likely exceeds 500 million records (lien direct) | The security firm InfoArmor believes the Yahoo! data breach far exceeds the 500 million number, that the hack was accomplished by a cybergang, not a nation-state, and that overall about 3.5 billion user records have been stolen over the years. |
Yahoo | ||
|
2016-09-29 18:15:18 | Yahoo Challenged on Claims Breach Was State-Sponsored Attack (lien direct) | Experts challenge Yahoo's assertion that state-sponsored hackers were behind a 2014 breach that resulted in 500 million lost records. | Yahoo | ||
|
2016-09-29 16:30:00 | Researchers Shoot Down Yahoo Claim Of Nation-State Hack (lien direct) | InfoArmor says the attackers who stole a half-billion Yahoo user accounts were seasoned cybercriminals who later sold the booty to an Eastern European nation-state. | Yahoo | ||
 |
2016-09-29 09:26:48 | Yahoo attack not \'state-sponsored,\' researchers claim (lien direct) | InfoArmor says that not only was customer data sold in the underground, but the damage is far more extensive than reported. | Yahoo | ||
 |
2016-09-29 09:21:26 | Leak of 200 Million Yahoo Accounts Linked to 2014 Hack (lien direct) | An investigation conducted into the two Yahoo security incidents disclosed recently revealed the existence of a connection and led researchers to believe that the claim of 200 million accounts being stolen in 2012 is likely false. | Yahoo | ||
 |
2016-09-29 00:24:27 | Yahoo could have reset all user passwords two years ago, but chose not to (lien direct) |  Yahoo insiders say that protecting against hackers took a back seat.
|
Yahoo | ||
|
2016-09-28 17:18:40 | Congressional Leaders Demand Answers on Yahoo Breach (lien direct) | A number of Democratic Congressional leaders wrote Yahoo CEO Marissa Mayer a letter seeking answers about the breach of 500 million customer records. | Guideline | Yahoo | |
 |
2016-09-28 16:32:33 | The Yahoo hackers weren\'t state-sponsored, a security firm says (lien direct) | Common criminals, not state-sponsored hackers, carried out the massive 2014 data breach that exposed information about millions of Yahoo user accounts, a security firm said Wednesday. Yahoo has blamed state actors for the attack, but it was actually elite hackers-for-hire who did it, according to InfoArmor, which claims to have some of the stolen information. Â Â The independent security firm found the alleged data as part of its investigation into "Group E," a team of five professional hackers believed to be from Eastern Europe.To read this article in full or to leave a comment, please click here | Yahoo | ||
 |
2016-09-28 15:56:24 | Marissa Mayer declined to reset Yahoo users\' passwords 2 years ago (lien direct) | Insiders say that strong security measures were repeatedly rejected in favor of developing new services and not inconveniencing users.  |
Yahoo | ||
 |
2016-09-28 10:55:43 | Christopher Soghoian: Yahoo hired one of the best security execs in the industry, then denied him and his team resources and power.http://mobile.nytimes.com/2016/09/29/technology/yahoo-data-breach-hacking.html … (lien direct) | Christopher Soghoian: Yahoo hired one of the best security execs in the industry, then denied him and his team resources and power.http://mobile.nytimes.com/2016/09/29/technology/yahoo-data-breach-hacking.html … | Yahoo | ||
|
2016-09-28 09:41:12 | Meet Apache Spot, a new open source project for cybersecurity (lien direct) | Hard on the heels of the discovery of the largest known data breach in history, Cloudera and Intel on Wednesday announced that they've donated a new open source project to the Apache Software Foundation with a focus on using big data analytics and machine learning for cybersecurity.Originally created by Intel and launched as the Open Network Insight (ONI) project in February, the effort is now called Apache Spot and has been accepted into the ASF Incubator."The idea is, let's create a common data model that any application developer can take advantage of to bring new analytic capabilities to bear on cybersecurity problems," Mike Olson, Cloudera co-founder and chief strategy officer, told an audience at the Strata+Hadoop World show in New York. "This is a big deal, and could have a huge impact around the world."To read this article in full or to leave a comment, please click here | Yahoo | ||
|
2016-09-27 18:16:48 | (Déjà vu) DarkReading: Yahoo Confirms August Data Dump Issue Unrelated To Breach Of 500 Million Usershttp://ubm.io/2dplSVl (lien direct) | DarkReading: Yahoo Confirms August Data Dump Issue Unrelated To Breach Of 500 Million Usershttp://ubm.io/2dplSVl | Yahoo | ||
|
2016-09-27 17:16:00 | DarkReading: Yahoo Breach: US Senator Seeks SEC Role In Probehttp://ubm.io/2dh4zRAÂ (lien direct) | DarkReading: Yahoo Breach: US Senator Seeks SEC Role In Probehttp://ubm.io/2dh4zRAÂ | Yahoo | ||
|
2016-09-27 17:16:00 | DarkReading: Yahoo Sued By User Over 2014 Hackinghttp://ubm.io/2dh5zoYÂ (lien direct) | DarkReading: Yahoo Sued By User Over 2014 Hackinghttp://ubm.io/2dh5zoYÂ | Yahoo | ||
|
2016-09-27 15:13:00 | Yahoo\'s delay in reporting hack "unacceptable," say senators (lien direct) | The lawmakers asked how it took two years to discover the "large intrusion." | Yahoo | ||
|
2016-09-27 11:27:00 | Yahoo Confirms August Data Dump Issue Unrelated To Breach Of 500 Million Users (lien direct) | No 'connection' between August 2016 data dump claims and 2014 nation-state attack, company says. | Yahoo | ||
|
2016-09-27 10:38:08 | Six senators demand more details about the Yahoo data breach (lien direct) | Six U.S. senators have called Yahoo's massive data breach "unacceptable," and they're demanding that the company provide more details about the incident.In a letter addressed to Yahoo's CEO, the lawmakers said they were particularly "disturbed" that the breach occurred in 2014, but that Yahoo only publicized it last week."That means millions of Americans' data may have been compromised for two years," the letter said. "This is unacceptable."The hacking incident, which Yahoo said it only learned recently, affects at least 500 million users, making it perhaps the largest known data breach in history. Account information, including email addresses, telephone numbers, and hashed passwords, may have been stolen.To read this article in full or to leave a comment, please click here | Guideline | Yahoo | |
|
2016-09-27 10:35:00 | Yahoo Sued By User Over 2014 Hacking (lien direct) | New Yorker files lawsuit against Yahoo for recklessness and delay in uncovering hack of half a billion accounts. | Yahoo | ||
|
2016-09-27 10:30:00 | Yahoo Breach: US Senator Seeks SEC Role In Probe (lien direct) | Democrat Mark Warner asks US Securities and Exchange Commission to investigate whether Yahoo completed obligations post breach discovery. | Yahoo | ||
 |
2016-09-27 08:45:19 | Yahoo breach underlines need for Security Serious Week (lien direct) | The recently disclosed Yahoo data breach shows that no business is immune, underlining the need to raise awareness and improve practices, say the organisers of Security Serious Week | Yahoo | ||
 |
2016-09-27 08:26:48 | Chiffrement : 27% des certificats sur Yahoo n\'ont réédités (lien direct) | Selon Venafi, Yahoo n’a pas pris les mesures pour se protéger et utilise des pratiques de chiffrement... Cet article Chiffrement : 27% des certificats sur Yahoo n’ont réédités est diffusé par Data Security Breach. | Yahoo | ||
|
2016-09-26 19:58:18 | Questions Mount Around Yahoo Breach (lien direct) | Crypto company Venafi points out potential holes in Yahoo's processes and policies around cryptography and digital certificates, any of which could have been exploited in the breach to move data off the Yahoo network. | Yahoo | ||
|
2016-09-26 19:30:39 | Yahoo faces congressional action and class action lawsuits following historic data breach (lien direct) | Yahoo is facing both legal and congressional action in the form of multiple class-action lawsuits and one senators call for a congressional probe. |
Yahoo | ||
|
2016-09-26 18:07:35 | Yahoo\'s claim of \'state-sponsored\' hackers meets with skepticism (lien direct) | Yahoo has blamed its massive data breach on a "state-sponsored actor." But the company isn't saying why it arrived at that conclusion. Nor has it provided any evidence.The lingering questions are causing some security experts to wonder why Yahoo isn't offering more details on a hack that stole account information from 500 million users."I think there's a lot of fishiness going on here," said Michael Lipinski, the chief security strategist at Securonix.Yahoo didn't respond to a request for comment. The company has protocols in place that can detect state-sponsored hacking into user accounts. In a December 2015 blog post, the company outlined its policy, saying it will warn users when this is suspected. To read this article in full or to leave a comment, please click here | Yahoo | ||
|
2016-09-26 17:17:24 | DarkReading: Yahoo Breach Could Delay $4.8 Billion Verizon Takeoverhttp://ubm.io/2dtN1mr (lien direct) | DarkReading: Yahoo Breach Could Delay $4.8 Billion Verizon Takeoverhttp://ubm.io/2dtN1mr | Yahoo | ||
|
2016-09-26 16:34:09 | Users File Lawsuit Against Yahoo Over Data Breach (lien direct) | Several class actions have been filed against Yahoo in California and Illinois over the recently disclosed data breach that affected at least 500 million accounts. | Yahoo | ||
|
2016-09-26 14:27:10 | Yahoo is being sued over its massive hack (lien direct) |  Could Yahoo could have done more to protect itself, and why didn't it notice it had suffered a data breach sooner?
While those questions are being pondered, legal eagles will be earning a pretty penny working on this lawsuit...
|
Yahoo | ||
|
2016-09-26 13:53:43 | Don\'t have a Yahoo email address and think you\'re safe from the hack? (lien direct) |  It turns out it's not as simple as just checking whether you have a Yahoo, BT Yahoo Mail or Sky email address...
You could have a Yahoo account without even knowing it.
|
Yahoo | ||
|
2016-09-26 11:13:13 | UK Man Involved in 2012 Yahoo Hack Sentenced to Prison (lien direct) | The U.K. National Crime Agency (NCA) announced last week that one of the members of an international cybercrime group has been given a two-year jail sentence. | Yahoo | ||
|
2016-09-26 10:30:26 | Yahoo sued over data breach (lien direct) | Yahoo is facing a class action lawsuit that alleges that the internet firm showed a reckless disregard for the security of its users that resulted in a breach affecting half a billion people | Yahoo | ||
|
2016-09-26 10:25:00 | Yahoo Breach Could Delay $4.8 Billion Verizon Takeover (lien direct) | Verizon may revisit contract with Yahoo on doubts of vulnerabilities in the system after 500 accounts were found hacked. | Yahoo | ||
|
2016-09-26 05:45:32 | Yahoo security still poor despite massive breach, claims Venafi (lien direct) | Yahoo is likely to have been a victim of its own encryption and security is still poor despite the huge breach that hit the company in 2014, according to security firm Venafi | Yahoo | ||
 |
2016-09-26 03:00:00 | Yahoo\'s compromised records likely hidden within encrypted traffic, vendor says (lien direct) | LOUISVILLE, KY – As Derby Con was winding down, an interesting email hit Salted Hash's inbox form Venafi. The security firm, known for their tools that secure digital keys and certificates, outlined a number of cryptographic issues at Yahoo.The email then claimed they're not saying these flaws led to the massive data breach that impacted 500 million users. Yet, that's exactly what their statements hint at.In Venafi's experience, an emailed statement from Alex Kaplunov, Venafi's vice president of engineering explains, breaches like the one suffered by Yahoo are often accompanied by weak cryptographic controls.Granted, Venafi has a horse in the race, so this isn't an unusual statement for them to make, but it's interesting – as it could explain how Yahoo failed to notice half-a-billion records moving into criminal hands over time.To read this article in full or to leave a comment, please click here | Yahoo | ||
|
2016-09-24 23:14:41 | Russia? China? Who Hacked Yahoo, and Why? (lien direct) | Yahoo's claim that it is the victim of a gigantic state-sponsored hack raises the question of whether it is the latest target for hackers with the backing of Russia, China or even North Korea, experts say. | Yahoo | ||
|
2016-09-23 16:59:15 | Threatpost News Wrap, September 23, 2016 (lien direct) | The massive Yahoo breach, this week's Security of Things Forum, Mamba ransomware, and Google Allo are discussed. | Yahoo | ||
|
2016-09-23 13:10:30 | Yahoo! Pressed to Explain Massive \'State Sponsored\' Hack (lien direct) |
Type:
Story
Image:
Link:
Yahoo! Pressed to Explain Massive 'State Sponsored' Hack
Yahoo! Pressed to Explain Massive 'State Sponsored' Hack
|
Yahoo | ||
|
2016-09-23 12:14:35 | Yahoo Pressed to Explain Huge \'State Sponsored\' Hack (lien direct) | 
Yahoo faced pressure Friday to explain how it sustained a massive cyber-attack -- one of the biggest ever, and allegedly state-sponsored -- allowing hackers to steal data from half a billion users two years ago.
|
Yahoo | ||
 |
2016-09-23 10:44:28 | Half a billion Yahoo users victim to \'biggest data breach in history\' (lien direct) | Yahoo has confirmed that half a billion users may have had their data stolen in what has been described as the 'biggest data breach in history.' | Yahoo | ||
|
2016-09-23 10:43:06 | Sky customers told to change passwords after massive Yahoo hack (lien direct) |  Do you have a Sky email account? There's potentially bad news - that service comes courtesy of Yahoo.
|
Yahoo | ||
|
2016-09-23 10:30:56 | BT investigates Yahoo hack, tells BT Yahoo mail users to reset passwords (lien direct) |  With at least 500 million Yahoo users exposed by the 2014 hack, other services are also advising customers to reset their passwords.
|
Yahoo | ||
|
2016-09-23 10:26:25 | Here\'s what you should know, and do, about the Yahoo breach (lien direct) | Yahoo's announcement that state-sponsored hackers have stolen the details of at least 500 million accounts shocks both through scale -- it's the largest data breach ever -- and the potential security implications for users.That's because Yahoo, unlike MySpace, LinkedIn and other online services that suffered large breaches in recent years, is an email provider; and email accounts are central to users' online lives. Not only are email addresses used for private communications, but they serve as recovery points and log-in credentials for accounts on many other websites.To read this article in full or to leave a comment, please click here | Yahoo | ||
|
2016-09-23 08:43:11 | Change your password! Yahoo confirms data breach of 500 million accounts (lien direct) | It's the biggest known data breach in history and dwarves all previous attacks.  |
Yahoo | ||
 |
2016-09-23 08:01:13 | Alain Charret: Yahoo blames "state-sponsored actor" for data hack... (Japan Broadcasting Corporation) (lien direct) | Alain Charret: Yahoo blames "state-sponsored actor" for data hack... (Japan Broadcasting Corporation) | Yahoo | ||
 |
2016-09-23 07:00:45 | Yahoo confirme le piratage de 500 millions de comptes utilisateurs (lien direct) |  Voila qui représente l'une des plus importantes brèche ayant touché une entreprise américaine. Yahoo vient en effet de confirmer ce jeudi soir avoir été victime d'une cyberattaque fin 2014 ayant compromis 500 millions de comptes utilisateurs. |
Yahoo | ||
|
2016-09-23 05:45:25 | Yahoo under fire over data breach affecting 500 million users (lien direct) | Yahoo comes under fire for not detecting and notifying users sooner of the biggest breach of personal details to date | Yahoo | ★★★★ | |
 |
2016-09-22 23:46:49 | Yahoo Confirms 500 Million Accounts Were Hacked by \'State Sponsored\' Hackers (lien direct) | 500 million accounts - that's half a Billion users!
That's how many Yahoo accounts were compromised in a massive data breach dating back to 2014 by what was believed to be a "state sponsored" hacking group.
Over a month ago, a hacker was found to be selling login information related to 200 million Yahoo accounts on the Dark Web, although Yahoo acknowledged that the breach was
|
Yahoo | ||
 |
2016-09-22 23:42:35 | (Déjà vu) YAHDD! (Yet another HUGE data Breach!), (Thu, Sep 22nd) (lien direct) | It looks like Yahoo! is the latest victim of a large scale data breach. It looks like the released data dates back to at least 2014 and contains more than 500 Million user accounts, so if you havent changed your Yahoo! password in the last couple of years then it is time. As one of the other ISC Handlers pointed out...not all Yahoo! customers may know they are Yahoo! customers. Yahoo! whitelabels email services on behalf of ISPs and email providers. I assume those white label providers will need to do notifications to their customers as well? -- Rick Wanner MSISE - rwanner at isc dot sans dot edu - http://namedeplume.blogspot.com/ - Twitter:namedeplume (Protected) (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. | Yahoo |
To see everything:
Our RSS (filtrered)
