An absurd number of CMS plugins and PHP libraries are disabling SSL/TLS certificate validation on purpose, and by doing so, they’re putting millions of internet users at great risk. To make matters worse, many of these plugins and libraries are used to establish connections to payment provider servers, connections through […]
Haythem Elmir
IBM CORRIGE PLUSIEURS VULNÉRABILITÉS CRITIQUES DANS DIVERS PRODUITS
IBM a publié 35 bulletins de sécurité sur ses produits, entre le 19 et le 26 octobre. Parmi ceux-ci, 18 sont jugées élevées, 16 modérées et 1 faible. Parmi les vulnérabilités corrigées les plus critiques, aucune n’est spécifique aux produits IBM. Celles-ci sont référencées de la manière suivante : CVE-2018-16741 [CVSS 9.8] : Une vulnérabilité dans […]
UNE VULNÉRABILITÉ CRITIQUE CORRIGÉE SUR SOPHOS HITMANPRO
Des chercheurs de Talos ont découvert deux vulnérabilités, dont une critique dans Sophos HitmanPro, un outil de détection et de suppression des malwares. Un attaquant pourrait l’exploiter pour exécuter du code à distance ou élever ses privilèges. L’attaque est peu complexe à réaliser, ne peut être effectuée qu’en local, ne nécessite ni privilèges ni […]
New malware turning smartphones into hidden proxies
Cybercriminals are distributing new Android malware via Phishing email campaign that turns infected smartphones into hidden mobile proxies. The proxies can be used to circumvent internal network security controls. The McAfee Mobile Research team has identified the active phishing campaign that traps users by sending an SMS to influence them […]
SamSam: Targeted Ransomware Attacks Continue
Ransomware group remains highly active in 2018, focussing mainly on organizations in the U.S. The group behind the SamSam ransomware (Ransom.SamSam) has continued to mount attacks against entire organizations during 2018, with fresh attacks seen against 67 different targets, mostly located in the U.S. SamSam specializes in targeted ransomware attacks, […]
Windows 10 UWP bug could give malicious devs access to all your files
Microsoft has quietly fixed a bug in the on-hold Windows 10 October 2018 Update that in earlier versions wasn’t telling users when apps requested permission to access all a user’s files. The bug in the Windows ‘broadFileSystemAccess’ API could have given a malicious developer of Universal Windows Platform (UWP) apps […]
Signal Secure Messaging App Now Encrypts Sender’s Identity As Well
Signal, the popular end-to-end encrypted messaging app, is planning to roll out a new feature that aims to hide the sender’s identity from potential attackers trying to intercept the communication. Although messages send via secure messaging services, like Signal, WhatsApp, and Telegram, are fully end-to-end encrypted as they transmit across their servers, each […]
Un nouveau botnet DDoS s’attaque aux serveurs d’entreprise Hadoop
Un groupe de pirates informatiques cible les composants YARN Hadoop mal configurés pour installer le logiciel malveillant DemonBot DDoS sur des serveurs riches en ressources. Depuis près d’un mois, un nouveau botnet se développe, profitant de serveurs Apache Hadoop mal sécurisés, et enrôle des bots sur des serveurs vulnérables qui […]
Seven new Mirai variants and the aspiring cybercriminal behind them
Two years after Mirai, botnets have become the playthings of script kids In September 2016, Twitter, CNN, Spotify, and many others were knocked offline by the biggest DDoS attack in history. Today we know it by the name Mirai, but no one would have imagined at the time that this attack […]
Windows Built-in Antivirus Gets Secure Sandbox Mode – Turn It ON
Microsoft Windows built-in anti-malware tool, Windows Defender, has become the very first antivirus software to have the ability to run inside a sandbox environment. Sandboxing is a process that runs an application in a safe environment isolated from the rest of the operating system and applications on a computer. So […]