Hack-tualité by G-echo - Securite - Semaine 2019/4

Securite - Semaine 2019/4

Dailymotion resets user passwords after being subject to “large scale” computer attack
Sun, 27 Jan 2019 18:46:51 GMT
Himanshu Arora
Popular video sharing site Dailymotion has been hit with a new cyber attack, prompting the company to reset passwords of impacted users. In a press …
Hackers are going after Cisco RV320/RV325 routers using a new exploit
Sun, 27 Jan 2019 16:34:31 GMT
Catalin Cimpanu
Attacks on Cisco routers started hours after the publication of proof-of-concept code on GitHub.<p>Security researchers have observed ongoing internet …
L’Armée française face aux hackers russes
Sun, 27 Jan 2019 12:11:11 GMT
Par 28 minutes / Arte
[Replay 28'] La Tribune publie chaque jour des extraits issus de l'émission "28 minutes", diffusée sur Arte. Aujourd'hui, la cyberguerre est déclarée …
How I abused 2FA to maintain persistence after a password change (Google, Microsoft, Instagram, Cloudflare, etc)
Sun, 27 Jan 2019 12:08:37 GMT
Luke BernerBlockedUnblockFollowFollowing<p>Jan 25<p><i>TL;DR: Waiting in the 2FA page could allow you to log in</i> <b>without knowing the current password</b> <i>in many</i> …
Les sous-traitants, le nouveau maillon faible de la chaine de la cybersécurité
Sat, 26 Jan 2019 17:38:30 GMT
Au forum international de la cybersécurité (FIC), l’ANSSI a tiré la sonnette d’alarme sur la vulnérabilité des petites entreprises. Pour attaquer les …
Internet experiment goes wrong, takes down a bunch of Linux routers
Fri, 25 Jan 2019 06:54:36 GMT
Catalin Cimpanu
Routers running FRR impacted in first experiment test run. Some ISPs in Asia and Australia affected the second time.<p>Earlier this month, an academic …
Redaman Targets Russian Banking Customers with 4-Month Mass Offensive
Thu, 24 Jan 2019 14:51:11 GMT
The Redaman banking trojan ramped up its activity in the last part of 2018, employing ongoing back-end changes in order to evade detection, according …
Qui sont les 100 Français qui comptent dans la cybersécurité
Thu, 24 Jan 2019 12:42:15 GMT
Exclusif L’Usine Nouvelle met en lumière 100 talents qui illustrent la diversité française en matière de cybersécurité. Dans ce secteur qui peine à …
DHS Issues Emergency Directive on DNS Security
Thu, 24 Jan 2019 08:11:46 GMT
All government domain owners are instructed to take immediate steps to strengthen the security of their DNS servers following a successful hacking …
Ingenious! The Android malware which only triggers if you're moving
Tue, 22 Jan 2019 06:45:59 GMT
Graham Cluley
If it detects no motion, it assumes it's being analysed by a security researcher.<p>Author:<p>Published<p>in Malware 0<p>It’s a truth universally acknowledged …
Bloomberg Alleges Powerful Hardware Backdoor in Supermicro Motherboards
Mon, 21 Jan 2019 09:56:26 GMT
Powerful Hardware Backdoor in Supermicro Motherboards<p>Apple and Amazon Web Services allegedly affected, but issued strong denials.<p>Shea …
WiFi firmware bug affects laptops, smartphones, routers, gaming devices
Sat, 19 Jan 2019 04:07:07 GMT
Catalin Cimpanu
List of impacted devices includes PS4, Xbox One, Samsung Chromebooks, and Microsoft Surface devices.<p>Details have been published today about a …
Les chefs d'entreprise US s'inquièteraient plus de la cybersécurité que d'une possible récession, à l'inverse de leurs homologues européens
Fri, 18 Jan 2019 17:51:58 GMT
<b>Les chefs d'entreprise US s'inquièteraient plus de la cybersécurité que d'une possible récession en 2019</b> <b><br>À l'inverse de leurs homologues européens</b><br>À …
This malware spreading tool is back with some new tricks
Fri, 18 Jan 2019 17:47:36 GMT
Danny Palmer
The Fallout exploit kit is back delivering GandCrab ransomware after a brief hiatus.<p>An exploit-kit used to distribute malware to unsuspecting victims …
Des hackers piratent une filiale de La Poste leur donnant accès à des numéros de cartes bancaires
Fri, 18 Jan 2019 12:57:46 GMT
Pendant plusieurs heures, un groupe de hackers a utilisé le logiciel de la régie publicitaire Adverline pour enregistrer les données de paiement de …
Cyberdéfense: Paris montre les crocs
Fri, 18 Jan 2019 09:04:36 GMT
Les armées françaises sont désormais dotées d'une doctrine de lutte informatique offensive, une manière de muscler leur posture face à la …
Flaw in Telegram Reveals Awful OpSec from Malware Author
Fri, 18 Jan 2019 06:28:06 GMT
Ionut Ilascu
A weakness in the protection of messages delivered using the Telegram Bot API gave researchers access to the communication flow between a piece of …
Awesome Bug Bounty
Thu, 17 Jan 2019 21:17:37 GMT
A comprehensive curated list of Bug Bounty Programs and write-ups from the Bug Bounty hunters.<p>Table of Contents<p>Getting Started<br>• Write Ups & …
West African banks hit by multiple hacking waves last year
Thu, 17 Jan 2019 21:16:21 GMT
Catalin Cimpanu
Banks in Cameroon, Congo (DR), Equatorial Guinea, Ghana, and the Ivory Coast have been hit<p>Banks and financial institutions in West Africa have been …
Hackers infect e-commerce sites by compromising their advertising partner
Wed, 16 Jan 2019 23:35:54 GMT
January 16, 2019
Magecart strikes again, one of the most notorious hacking groups specializes in stealing credit card details from poorly-secured e-commerce …
Want to play Global Thermonuclear War ? - CNIS mag
Wed, 16 Jan 2019 23:35:20 GMT
vaXzine<p><b>Le Department of Defense</b> US a publié un rapport d’un peu moins de 50 pages sur l’état de la sécurité des « <i>munitions complexes</i> » (missiles …
Advertising network compromised to deliver credit card stealing code
Wed, 16 Jan 2019 21:21:30 GMT
Catalin Cimpanu
Hundreds of online stores confirmed to be impacted, thousands of more under investigation.<p>A Paris-based online advertising company was hacked, and …
Emmanuel Macron, utilisateur de Gmail: pourquoi cela peut poser problème
Wed, 16 Jan 2019 14:11:02 GMT
D’après <i>Le Monde</i>, Emmanuel Macron échangerait de nombreux messages par le biais de son compte personnel Gmail. Mais utiliser la messagerie de Google …
Fortnite : Les chercheurs de Check Point dévoilent une série de failles de sécurité
Wed, 16 Jan 2019 14:06:33 GMT
<b>Check Point dévoile des failles sur les profils, les données et les moyens de paiement des utilisateurs de Fortnite. Les vulnérabilités identifiées</b> …
North Korean hackers infiltrate Chile's ATM network after Skype job interview
Wed, 16 Jan 2019 07:53:28 GMT
Catalin Cimpanu
Redbanc employee applied for a LinkedIn job and got a call from the world's most active hacker crews.<p>A Skype call and a gullible employee was all it …
This Clever New Ransomware Attempts To Steal Your PayPal Credentials
Wed, 16 Jan 2019 07:36:31 GMT
Kate O'Flaherty
Ransomware is by no means a new attack vector. Most people of heard of it and many individuals and businesses have already fallen victim to ransomware attacks, with some even paying hackers in the panic to unlock their data.<p>Of course, it goes without saying that paying the ransom isn’t a good idea. …
By G-echo