Le correctif Patch Tuesday de Microsoft publié récemment a apporté de très mauvaises nouvelles : davantage de vulnérabilités RDP de type worm (ver), affectant cette fois-ci les utilisateurs de Windows 10. CVE-2019-1181 et -1182 sont des vulnérabilités critiques dans Remote Desktop Services (anciennement Windows terminal) qui sont de type ver […]
Haythem Elmir
Equifax devra verser 750 M$ pour avoir mal protégé les données de ses clients
La FTE américaine (Federal Trade Commission ) a annoncé, lundi, avoir conclu un accord avec la société d’évaluation de cote de crédit Equifax. Cette dernière va verser 575 millions $ d’amende à la suite d’une fuite massive de données personnelles de ses clients survenue en 2017. Le dédommagement pourrait même […]
GrandCrab Ransomware: la fin d’une gloire?
Une bonne nouvelle vient d’être annoncé et ce qu’on peut dire, c’est qu’elle fait le bonheur de plusieurs victimes du fameux Ransoware GrandCrab. En effet, Le FBI a mis à disposition des membres de son programme InfraGard trois clés cryptographiques sur lesquelles se fondent les dernières versions de GandCrab (4 à 5.2). […]
Une faille critique détecté dans les solutions de vidéoconférence « Zoom »
Une faille repérée dans l’application de vidéoconférences Zoom permet à un utilisateur malveillant de vous filmer et de joindre une discussion sans que vous le sachiez. Malgré la publication d’un patch, le danger est toujours présent selon des experts. Solution phare de vidéoconférence, « Zoom » pourrait payer les frais de sa […]
25 Million Android Users Infected with “Agent Smith” Malware Through Exploiting Several Mobile Vulnerabilities
Researchers discovered a new Android malware called “Agent Smith” that infects nearly 25 million mobile users around the globe without letting users know about the malicious activities. Agent Smith malware activities have a similar appearance of previously reported malware campaigns such as Gooligan, HummingBad, and CopyCat. Malware posed as a legitimate Google app […]
Crooks stole millions from Bitrue Cryptocurrency Exchange
Another cryptocurrency exchange announced to have suffered a theft, this time is the victim is the Singapore-based Bitrue. It has happened again, crooks stole funds from another cryptocurrency exchange, this time the victim is the Singapore-based Bitrue. Bitrue revealed on Thursday that hackers accessed the accounts of tens of its customers and stole […]
Cisco addressed critical flaws in Cisco Data Center Network Manager
Cisco disclosed several vulnerabilities in its Data Center Network Manager (DCNM), including “critical” and “high severity. issues” Cisco informed its customers about the presence of multiple security vulnerabilities in the web-based interface of the DCNM data center network management platform, including two critical security holes. The first critical issue tracked […]
Important Flaw in Outlook App for Android Affects Over 100 Millions Users
Microsoft today released an updated version of its « Outlook for Android » that patches an important security vulnerability in the popular email app that is currently being used over 100 million users. According to an advisory, Outlook app with versions before 3.0.88 for Android contains a stored cross-site scripting vulnerability (CVE-2019-1105) in […]
Critical Flaw Reported in Popular Evernote Extension for Chrome Users
Cybersecurity researchers discover a critical flaw in the popular Evernote Chrome extension that could have allowed hackers to hijack your browser and steal sensitive information from any website you accessed. Evernote is a popular service that helps people taking notes and organize their to-do task lists, and over 4,610,000 users […]
Millions of Linux Servers Under Worm Attack Via Exim Flaw
Attackers are exploiting a Linux Exim critical flaw to execute remote commands, download crypto miners and sniff out other vulnerable servers. A widespread campaign is exploiting a vulnerability in the Exim mail transport agent (MTA) to gain remote command-execution on victims’ Linux systems. Researchers say that currently more than 3.5 […]