Hack-tualité by G-echo - Securite - Mois 2019/05

Securite - Mois 2019/05

Sat, 11 May 2019 09:23:27 GMT
Five Things To Consider When Reporting To Your Board On Cybersecurity
Sat, 11 May 2019 09:23:27 GMT
Farida Ali
Technology leaders are having to take on new responsibilities for mitigating cybersecurity risk. Of these responsibilities, a key one is advising the corporate board on the status of cybersecurity defenses and informing them of known risks.<p>To address the broad scope of advising your board, consider …
Sun, 05 May 2019 19:30:22 GMT
Tesla met en garde ses employés contre les fuites d’informations
Sun, 05 May 2019 19:30:22 GMT
Valentin Cimino
La société d’Elon Musk a tenu a rendre cet avertissement public. En effet, Tesla a prévenu ses salariés : les potentielles fuites d’informations à …
Sat, 11 May 2019 09:18:35 GMT
This ransomware sneakily infects victims by disguising itself with anti-virus software | ZDNet
Sat, 11 May 2019 09:18:35 GMT
ZDNet
This file-locking malware family has evolved a new tactic which abuses trust to create new ransomware victims.<p>A successful family of ransomware which …
Tue, 14 May 2019 19:59:13 GMT
New secret-spilling flaw affects almost every Intel chip since 2011
Tue, 14 May 2019 19:59:13 GMT
Zack Whittaker
Security researchers have found a new class of vulnerabilities in Intel chips which, if exploited, can be used to steal sensitive information directly from the processor.,<p>The bugs are reminiscent of Meltdown and Spectre, which exploited a weakness in speculative execution, an important part of how …
Tue, 07 May 2019 05:27:52 GMT
How Chinese Spies Got the N.S.A.’s Hacking Tools, and Used Them for Attacks
Tue, 07 May 2019 05:27:52 GMT
By NICOLE PERLROTH, DAVID E. SANGER and SCOTT SHANE
Chinese intelligence agents acquired National Security Agency hacking tools and repurposed them in 2016 to attack American allies and private companies in Europe and Asia, a leading cybersecurity firm has discovered. The episode is the latest evidence that the United States has lost control of key …
Fri, 03 May 2019 07:28:48 GMT
The solution to quantum computers cracking cryptography
Fri, 03 May 2019 07:28:48 GMT
Jerry Chow
Quantum computers promise advantages in solving computationally complex problems that today’s classical computers cannot solve. Up until now, classical computers—like the one you’re reading this on—have helped do just about everything in our daily lives, from connecting us to one another, doing our …
Thu, 02 May 2019 05:45:28 GMT
New Electrum DDoS botnet steals $4.6M after infecting 152,000 hosts
Thu, 02 May 2019 05:45:28 GMT
Ryan De Souza
The majority of the bots are located in Brazil and Peru but the number of victims is constantly increasing across diverse regions.<p>Threat actors who …
Mon, 13 May 2019 18:10:06 GMT
Two years after WannaCry, a million computers remain at risk
Mon, 13 May 2019 18:10:06 GMT
Zack Whittaker
Two years ago today, a powerful ransomware began spreading across the world.<p>WannaCry spread like wildfire, encrypting hundreds of thousands of computers in more than 150 countries in a matter of hours. It was the first time that ransomware, a malware that encrypts a user’s files and demands …
Wed, 15 May 2019 07:20:00 GMT
Un hack de cartes SIM qui rapporte très gros : 2,4 millions de dollars !
Wed, 15 May 2019 07:20:00 GMT
Emmanuel Ghesquier
C’est un très gros coup de filet que viennent de réalises les forces de l’ordre aux Etats-Unis. On le sait depuis plusieurs mois, le piratage par …
Tue, 14 May 2019 05:16:15 GMT
A Cisco Router Bug Has Massive Global Implications
Tue, 14 May 2019 05:16:15 GMT
Lily Hay Newman
The Cisco 1001-X series router doesn't look much like the one you have in your home. It's bigger and much more expensive, responsible for reliable …
Thu, 02 May 2019 05:21:35 GMT
Journée mondiale du mot de passe
Thu, 02 May 2019 05:21:35 GMT
Damien Bancal
Ce 2 mai 2019, c’est la journée mondiale du mot de passe. Un rendez-vous mis en place par de nombreux acteurs de la cybersécurité pour rappeler …
Tue, 21 May 2019 17:21:23 GMT
Cyberattaque contre « ARIANE » : une expérience qui doit nous servir - rapport d'information n° 299
Tue, 21 May 2019 17:21:23 GMT
Rapport d'information n° 299 de MM. Olivier CADIC et Rachel MAZUIR, fait au nom de la commission des affaires étrangères, de la défense et des forces …
Fri, 03 May 2019 20:33:48 GMT
Mirrorthief Group Uses Magecart Skimming Attack to Hit Hundreds of Campus Online Stores in US and Canada
Fri, 03 May 2019 20:33:48 GMT
Joseph C Chen (Fraud Researcher)
We uncovered a recent activity involving the notorious online credit card skimming attack known as Magecart. The attack, facilitated by a new …
Thu, 09 May 2019 20:36:26 GMT
Microsoft recommends using a separate device for administrative tasks
Thu, 09 May 2019 20:36:26 GMT
Catalin Cimpanu
Microsoft's Security Team publishes basic advice for securing corporate networks.<p>In a rare article detailing insights about its staff's efforts in …
Mon, 20 May 2019 17:52:43 GMT
Security researchers discover Linux version of Winnti malware
Mon, 20 May 2019 17:52:43 GMT
Catalin Cimpanu
Winnti Linux variant used in 2015 in the hack of a Vietnamese gaming company.<p>For the first time, security researchers have uncovered and analyzed a …
Wed, 15 May 2019 07:23:19 GMT
Apple Patches Intel Side-Channel Bugs; Updates iOS, macOS and More
Wed, 15 May 2019 07:23:19 GMT
Tara Seals
Apple has rolled out 173 patches across in various products across its hardware portfolio, including for dangerous bugs in macOS for laptops and …
Wed, 15 May 2019 07:21:24 GMT
Microsoft warns wormable Windows bug could lead to another WannaCry
Wed, 15 May 2019 07:21:24 GMT
Dan Goodin
Company takes the unusual step of patching Win 2003 and XP. 7, Server 2008 and 2008 R2 also vulnerable.<p>Microsoft is warning that the Internet could …
Tue, 21 May 2019 07:12:55 GMT
The Most Expensive Lesson Of My Life: Details of SIM port hack
Tue, 21 May 2019 07:12:55 GMT
Sean Coonce
I lost north of $100,000 last Wednesday. It evaporated over a 24-hour time span in a “SIM port attack” that drained my Coinbase account. It has been …
Wed, 15 May 2019 07:28:19 GMT
Git ransom campaign incident report
Wed, 15 May 2019 07:28:19 GMT
Atlassian Bitbucket, GitHub, GitLab
Today, Atlassian Bitbucket, GitHub, and GitLab are issuing a joint blog post, in a coordinated effort to help educate and inform users of the three …
Sat, 11 May 2019 09:16:30 GMT
Microsoft SharePoint servers are under attack
Sat, 11 May 2019 09:16:30 GMT
Catalin Cimpanu
Canadian and Saudi cyber-security agencies warn of attacks that have been going on for at least two weeks.<p>Hacker groups are attacking Microsoft …
Sat, 25 May 2019 19:56:30 GMT
La ville de Baltimore prise en otage par des cybercriminels
Sat, 25 May 2019 19:56:30 GMT
Emmanuel Ghesquier
La ville américaine de Baltimore dans le Maryland est prise en otage par des hackers. Les pirates ont bloqué 10.000 ordinateurs de la ville avec un …
Mon, 13 May 2019 18:02:45 GMT
SHA-1 collision attacks are now actually practical and a looming danger
Mon, 13 May 2019 18:02:45 GMT
Catalin Cimpanu
Attacks on the SHA-1 hashing algorithm just got a lot more dangerous last week with the discovery of a cheap "chosen-prefix collision attack," a more …
Tue, 21 May 2019 07:16:24 GMT
Emsisoft releases a free decrypter for JSWorm 2.0 Ransomware
Tue, 21 May 2019 07:16:24 GMT
Katherine
Our malware research team just released a decrypter for the new ransomware we nicknamed JSWorm 2.0.<p>JSWorm 2.0 is written in C++ and uses Blowfish …
Fri, 03 May 2019 05:37:41 GMT
Cybersécurité : les principales leçons de la cyberattaque Triton
Fri, 03 May 2019 05:37:41 GMT
La rédaction de ZDNet.fr
L'attaque malveillante de Triton n'était pas la première à cibler les réseaux d'un site industriel. En revanche, c'est la première fois qu'un malware …
Mon, 06 May 2019 05:20:23 GMT
Ransomware: How cybercriminals hold data hostage... and why the best solution is often paying a ransom - 60 Minutes
Mon, 06 May 2019 05:20:23 GMT
Scott Pelley
This past week Cleveland's airport began to recover from a computer attack that took down its flight information, baggage displays, and its email. …
Tue, 21 May 2019 07:11:16 GMT
Google research: Most hacker-for-hire services are frauds
Tue, 21 May 2019 07:11:16 GMT
Catalin Cimpanu
Survey of 27 hacker-for-hire services found that only five launched attacks against victims.<p>Hacker-for-hire services available online are what we …
Wed, 15 May 2019 07:33:36 GMT
Un ransomware bloque un important distributeur de carburant Français
Wed, 15 May 2019 07:33:36 GMT
Damien Bancal
Une nouvelle entreprise Française se retrouve prise en otage par un logiciel de rançonnage. Le ransomware réclame 500 000€ pour libérer les fichiers. …
Fri, 17 May 2019 04:20:23 GMT
Un hacker prend le contrôle de 29 botnets IoT
Fri, 17 May 2019 04:20:23 GMT
Catalin Cimpanu
Au cours des dernières semaines, un internaute connu sous le nom de "Subby" a pris le contrôle de botnets IoT utilisés pour des attaques DDoS de 29 …
Mon, 06 May 2019 05:22:08 GMT
Finding Unlisted Public Bounty Programs with Google Dorks
Mon, 06 May 2019 05:22:08 GMT
nightwatchcyber
Bug bounty platforms are used by companies to coordinate the reporting, triaging and rewarding of security vulnerabilities. In many platforms the …
Fri, 03 May 2019 15:43:02 GMT
This password-stealing malware just evolved a new tactic to remain hidden
Fri, 03 May 2019 15:43:02 GMT
Danny Palmer
Windows malware campaign re-emerges with new techniques for attempting to stay under the radar.<p>A well-known form of malware which has been stealing …
Wed, 01 May 2019 09:36:35 GMT
DHS Orders Federal Agencies to Patch Critical Flaws Within 15 Days
Wed, 01 May 2019 09:36:35 GMT
May 01, 2019
In recent years, we have seen how hackers prey on those too lazy or ignorant to install security patches, which, if applied on time, would have …
Sat, 25 May 2019 19:56:15 GMT
Hackers are scanning for MySQL servers to deploy GandCrab ransomware
Sat, 25 May 2019 19:56:15 GMT
Catalin Cimpanu
At least one Chinese hacking crew is currently scanning the internet for Windows servers that are running MySQL databases so they can infect these …
Tue, 14 May 2019 21:22:58 GMT
Keyloggers Injected in Web Trust Seal Supply Chain Attack
Tue, 14 May 2019 21:22:58 GMT
Sergiu Gatlan
Hackers compromised the script used by Best of the Web to display their trust seal on their customers' websites and to add two key logging scripts …
Tue, 14 May 2019 21:24:07 GMT
Microsoft Releases Patches For A Critical "Wormable Flaw" and 78 Other Issues
Tue, 14 May 2019 21:24:07 GMT
May 14, 2019
It's Patch Tuesday—the day when Microsoft releases monthly security updates for its software.<p>Microsoft has software updates to address a total of 79 …
Wed, 08 May 2019 08:05:40 GMT
Chinese hackers were using NSA malware a year before Shadow Brokers leak
Wed, 08 May 2019 08:05:40 GMT
Catalin Cimpanu
Hacker group used a unique version of the DoublePulsar backdoor, not the one released by the Shadow Brokers.<p>A Chinese cyber-espionage group had used …
Wed, 01 May 2019 17:35:13 GMT
Mysterious hacker has been selling Windows 0-days to APT groups for three years
Wed, 01 May 2019 17:35:13 GMT
Catalin Cimpanu
Hacker has sold Windows zero-days to the likes of Fancy Bear, FruityArmor, and SandCat.<p>For the past three years, a mysterious hacker has been selling …
Sun, 26 May 2019 15:32:41 GMT
Tax delays and canceled home sales: The costly ripple effects of today's cyber-attacks
Sun, 26 May 2019 15:32:41 GMT
Kate Fazzini
On May 7, accounting software company Wolters Kluwer faced devastating malware attack, shutting off service and panicking many accountants who were …
Thu, 02 May 2019 05:43:36 GMT
Cartoon Network Hacked Worldwide to Show Brazilian Stripper Videos
Thu, 02 May 2019 05:43:36 GMT
Tara Seals
A famous Brazilian male stripper greeted Cartoon Network viewers worldwide when they tried to stream shows over the weekend – thanks to a pair of …
Tue, 07 May 2019 06:49:19 GMT
Les données d’Oracle, Airbus ou Volkswagen en danger après une cyberattaque de leur prestataire informatique
Tue, 07 May 2019 06:49:19 GMT
Grégoire Huvelin
Le prestataire de services allemand Citycomp, qui compte parmi ses clients des grandes multinationales telles qu’Airbus, Toshiba et Volkswagen, a été …
Wed, 01 May 2019 14:06:09 GMT
National Critical Functions Set
Wed, 01 May 2019 14:06:09 GMT
• Exploration and Extraction Of Fuels<br>• Fuel Refining and Processing Fuels<br>• Generate Electricity<br>• Manufacture Equipment<br>• Produce and Provide Agricultural …
Fri, 03 May 2019 05:39:32 GMT
Security Doesn't Trust IT - and IT Doesn't Trust Security
Fri, 03 May 2019 05:39:32 GMT
How a rocky relationship between IT operations and cybersecurity teams can compound security risks.<p>IT operations and security teams share the bulk of …
Mon, 20 May 2019 17:44:07 GMT
ZombieLoad: How Intel’s Latest Side Channel Bug Was Discovered and Disclosed
Mon, 20 May 2019 17:44:07 GMT
Lindsey O'Donnell
Daniel Gruss, the researcher behind Spectre, Meltdown - and most recently, ZombieLoad - Intel CPU side channel attacks, gives an inside look into how …
Sun, 05 May 2019 19:26:22 GMT
Japanese government to create and maintain defensive malware
Sun, 05 May 2019 19:26:22 GMT
Catalin Cimpanu
Japan to deploy malware against opponents in case the country is under attack.<p>The Japanese Defense Ministry will create and maintain cyber-weapons in …