FreshRSS

🔒
❌ À propos de FreshRSS
Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
☐ ☆ ✇ BleepingComputer

Nokia subsidiary discloses data breach after Conti ransomware attack

Par : Sergiu Gatlan
SAC Wireless, a US-based and independently-operating Nokia company subsidiary, has disclosed a data breach following a ransomware attack where Conti operators were able to successfully breach its network, steal data, and encrypt systems. [...]
☐ ☆ ✇ BleepingComputer

Hacker gets 500K reward for returning stolen cryptocurrency

Par : Ionut Ilascu
The saga of what has been dubbed the biggest hack in the world of decentralized finance appears to be over as Poly Network recovered more than $610 million in cryptocurrency assets it lost two weeks ago and the hacker received a $500,000 bounty for returning the money. [...]
☐ ☆ ✇ BleepingComputer

Botnet targets hundreds of thousands of devices using Realtek SDK

Par : Sergiu Gatlan
A Mirai-based botnet now targets a critical vulnerability in the software SDK used by hundreds of thousands of Realtek-based devices, encompassing 200 models from at least 65 vendors, including Asus, Belkin, D-Link, Netgear, Tenda, ZTE, and Zyxel. [...]
☐ ☆ ✇ BleepingComputer

Phishing campaign uses UPS.com XSS vuln to distribute malware

Par : Lawrence Abrams
A clever UPS phishing campaign utilized an XSS vulnerability in UPS.com to push fake and malicious 'Invoice' Word documents. [...]
☐ ☆ ✇ BleepingComputer

FBI: OnePercent Group Ransomware targeted US orgs since Nov 2020

Par : Sergiu Gatlan
The Federal Bureau of Investigation (FBI) has shared info about a threat actor known as OnePercent Group that has been actively targeting US organizations in ransomware attacks since at least November 2020. [...]
☐ ☆ ✇ BleepingComputer

New zero-click iPhone exploit used to deploy NSO spyware

Par : Sergiu Gatlan
Digital threat researchers at Citizen Lab have uncovered a new zero-click iMessage exploit used to deploy NSO Group's Pegasus spyware on devices belonging to Bahraini activists. [...]
☐ ☆ ✇ BleepingComputer

Malicious WhatsApp mod infects Android devices with malware

Par : Sergiu Gatlan
A malicious version of the FMWhatsappWhatsApp mod delivers a Triadatrojan payload, a nasty surprise that infects their devices with additional malware, including the very hard-to-remove xHelper trojan. [...]
☐ ☆ ✇ BleepingComputer

Ransomware gang's script shows exactly the files they're after

Par : Lawrence Abrams
A PowerShell script used by the Pysa ransomware operation gives us a sneak peek at the types of data they attempt to steal during a cyberattack. [...]
☐ ☆ ✇ BleepingComputer

SteelSeries bug gives Windows 10 admin rights by plugging in a device

Par : Ionut Ilascu
The official app for installing SteelSeries devices on Windows 10 can be exploited to obtain administrator rights, a security researcher has found. [...]
☐ ☆ ✇ BleepingComputer

Samsung can remotely disable their TVs worldwide using TV Block

Par : Sergiu Gatlan
Samsung says that it can disable any of its Samsung TV sets remotely using TV Block, a feature built into all television products sold worldwide. [...]
☐ ☆ ✇ BleepingComputer

Windows 10 KB5005932 fixes devices that can't install new updates

Par : Lawrence Abrams
Microsoft has released the Windows 10 KB5005932 setup update to fix '"PSFX_E_MATCHING_BINARY_MISSING" errors when attempting to install the latest cumulative updates. [...]
☐ ☆ ✇ BleepingComputer

Fake OpenSea support staff are stealing cryptowallets and NFTs

Par : Lawrence Abrams
OpenSea users are being targeted in an ongoing and aggressive Discord phishing attack to steal cryptocurrency funds and NFTs. [...]
☐ ☆ ✇ BleepingComputer

FIN8 cybercrime gang backdoors US orgs with new Sardonic malware

Par : Sergiu Gatlan
A financially motivated cybercrime gang has breached and backdoored the network of a US financial organization with a new malware known dubbed Sardonic by Bitdefender researchers who first spotted it. [...]
☐ ☆ ✇ BleepingComputer

Ethereum urges Go devs to fix severe chain-split vulnerability

Par : Ax Sharma
Ethreum project is urging developers to apply a hotfix to squash a high-severity vulnerability. The chain-split vulnerability tracked as CVE-2021-39137, impacts "Geth," the official Golang implementation of the Ethereum protocol. [...]
☐ ☆ ✇ BleepingComputer

New Hampshire town loses $2.3 million to overseas scammers

Par : Sergiu Gatlan
Peterborough, a small New Hampshire town, has lost $2.3 million after BEC scammers redirected several bank transfers using forged documents sent to the town's Finance Department staff in multiple email exchanges. [...]
☐ ☆ ✇ BleepingComputer

Critical F5 BIG-IP bug impacts customers in sensitive sectors

Par : Ionut Ilascu
BIG-IP application services company F5 has fixed more than a dozen high-severity vulnerabilities in its networking device, one of them being elevated to critical severity under specific conditions. [...]
☐ ☆ ✇ BleepingComputer

Microsoft will add secure preview for Office 365 quarantined emails

Par : Sergiu Gatlan
Microsoft is updating Defender for Office 365 to protect customers from embedded email threats while previewing quarantined emails. [...]
☐ ☆ ✇ BleepingComputer

Microsoft: ProxyShell bugs “might be exploited,” patch servers now!

Par : Sergiu Gatlan
Microsoft has finally published guidance today for the actively exploited ProxyShell vulnerabilities impacting multiple on-premises Microsoft Exchange versions. [...]
☐ ☆ ✇ BleepingComputer

Microsoft accidentally lowers OneDrive for Business storage limits

Par : Sergiu Gatlan
Microsoft is investigating an ongoing issue impacting OneDrive for Business customers and causing their storage space to shrink down to the default setting or switching them to read-only mode, forcing some to delete files to free up space to work on their projects. [...]
❌