Le phishing et les faux courriels sont le plus gros problème de sécurité pour les entreprises et l’un des plus difficiles à résoudre. Selon la Cyber Security Breaches Survey de 2019 publiée par le gouvernement britannique, les cyberattaques les plus courantes sont les attaques par hameçonnage, qu’il s’agisse de courriels frauduleux ou de fausses […]
Haythem Elmir
540 Million Facebook User Records Found On Unprotected Amazon Servers
It’s been a bad week for Facebook users. First, the social media company was caught asking some of its new users to share passwords for their registered email accounts and now… …the bad week gets worse with a new privacy breach. More than half a billion records of millions of Facebook users […]
The German chemicals giant Bayer hit by a cyber attack
The German chemicals giant Bayer confirmed that of a cyber attack, it confirmed the incident but clarified that no data has been stolen. The chemicals giant Bayer is the last victims of a cyber attack, it confirmed the incident, but pointed out the hackers haven’t stolen any data. According to the company, […]
Cisco fixes flaws RV320 and RV325 routers targeted in attacks
On Thursday Cisco announced new security patches to definitively address two vulnerabilities in Small Business RV320 and RV325 routers. Last week Cisco revealed that security patches released in January to address vulnerabilities in Small Business RV320 and RV325 routers were incomplete. “The initial fix for this vulnerability was found to be incomplete. Cisco […]
More than 2 million Apache HTTP servers still affected by CVE-2019-0211 flaw
Security experts at Rapid7 have discovered that over 2 million Apache HTTP servers are still affected by the CVE-2019-0211 critical privilege escalation flaw. An important privilege escalation vulnerability (CVE-2019-0211) affecting the Apache HTTP server could be exploited by users with the right to write and run scripts to gain root […]
VMware addressed vulnerabilities disclosed at Pwn2Own 2019
VMware released security updates to address vulnerabilities in its vCloud Director, ESXi, Workstation and Fusion products. The company also fixed the security flaws disclosed at the Pwn2Own 2019 hacking competition. VMware released updates to address vulnerabilities in vCloud Director, ESXi, Workstation and Fusion products, including ones disclosed at the Pwn2Own 2019. Amat Cama […]
Computer systems in the City of Albany hit in Ransomware Attack
Another ransomware attack made the headlines, this time the victim is the City of Albany, its computer systems were infected with the malware. Computer systems in the City of Albany, New York, were infected with ransomware over the weekend that disrupted some municipal computers. According to Albany Mayor Kathy Sheehan, no personal information belonging […]
Closure JavaScript Library introduced XSS issue in Google Search and potentially other services
A change made months ago in an open-source JavaScript library introduced a cross-site scripting (XSS) vulnerability in Google Search. The Japanese security researcher Masato Kinugawa discovered an XSS vulnerability in Google Search that was introduced with a change made months ago in an open-source JavaScript library. The library is named Closure and according to the expert it fails […]
Lazarus APT continues to target cryptocurrency businesses with Mac malware
North Korea-linked Lazarus group made the headlines again, it has been leveraging PowerShell to target both Windows and macOS machines. The North Korea-linked Lazarus APT group made has been leveraging PowerShell to target both Windows and macOS machines in a new wave of attacks. The discovery was made by experts at Kaspersky Lab, the campaign has […]
ASUS fixes supply chain of Live Update tool hit in Operation ShadowHammer
ASUS released security patches to fix the issues in the Live Update utility that were exploited by threat actors in Operation ShadowHammer. ASUS announced to have released a fix for the Live Update utility that was exploited by threat actors behind the Operation ShadowHammer to deliver malware to hundreds of users. The Operation ShadowHammer […]