Un nouveau CERT tunisien adhère au Forum FIRST L’Agence Nationale de la Sécurité Informatique (ANSI) annonce que le CERT privé CSIRT.tn vient d’adhérer au forum international FIRST (Forum of Incident Response and Security Teams) et ce, depuis le 12 avril 2019. A ce titre, le CSIRT.tn est le deuxième CERT tunisien […]
Over 23 million breached accounts were using ‘123456’ as password
A cyber survey conducted by the United Kingdom’s National Cyber Security Centre (NCSC) revealed that ‘123456’ is still the most hacked password. Security experts at the United Kingdom’s National Cyber Security Centre (NCSC) analyzed the 100,000 most-commonly re-occurring breached passwords using data from Have I Been Pwned(HIBP). Have I Been Pwned […]
Critical Unpatched Flaw Disclosed in WordPress WooCommerce Extension
If you own an eCommerce website built on WordPress and powered by WooCommerce plugin, then beware of a new, unpatched vulnerability that has been made public and could allow attackers to compromise your online store. A WordPress security company—called « Plugin Vulnerabilities« —that recently gone rogue in order to protest against moderators of the […]
Facebook Could Be Fined Up To $5 Billion Over Privacy Violations
Facebook expects to face a massive fine of up to $5 billion from the Federal Trade Commission (FTC) as the result of an investigation into its privacy policies—that’s about one month’s revenue for the social media giant. To be clear the amount of fine is not what the FTC has […]
‘Highly Critical’ Unpatched Zero-Day Flaw Discovered In Oracle WebLogic
A team of cybersecurity researchers today published a post warning enterprises of an unpatched, highly critical zero-day vulnerability in Oracle WebLogic server application that some attackers might have already started exploiting in the wild. Oracle WebLogic is a scalable, Java-based multi-tier enterprise application server that allows businesses to quickly deploy new products […]
Avast, Avira, Sophos and other antivirus solutions show problems after
Antivirus solutions from different vendors are having malfunctions after the installation of Windows security patches released on April 9, including McAfee, Avast and Sophos. Antivirus solutions from different vendors are showing malfunctions after the installation of Windows security patches released on April 9. Antivirus solutions from Sophos, Avira, ArcaBit, Avast, […]
60 Million records of LinkedIn users exposed online
Researcher discovered eight unsecured databases exposed online that contained approximately 60 million records of LinkedIn user data. Researcher Sanyam Jain at GDI foundation discovered eight unsecured databases exposed online that contained approximately 60 million records of LinkedIn user data. Most of the data are publicly available, the databases also include the email […]
‘Karkoff’ Is the New ‘DNSpionage’ With Selective Targeting Strategy
The cybercriminal group behind the infamous DNSpionage malware campaign has been found running a new sophisticated operation that infects selected victims with a new variant of the DNSpionage malware. First uncovered in November last year, the DNSpionage attacks used compromised sites and crafted malicious documents to infect victims’ computers with DNSpionage—a […]
Facebook Stored Millions of Instagram Users’ Passwords in Plaintext
Facebook late last month revealed that the social media company mistakenly stored passwords for « hundreds of millions » of Facebook users in plaintext, including « tens of thousands » passwords of its Instagram users as well. Now it appears that the incident is far worse than first reported. Facebook today quietly updated its March press […]
Le secteur financier tunisien teste sa réactivité face aux cyber-attaques via un exercice de simulation
Jeudi le 18 Avril 2019, le CERT Bancaire de l’APTBEF « Financial CERT » ,entité de coordination au sein du secteur financier tunisien pour la lutte contre les cyber-attaques, a organisé son quatrième CyberDrill. Ce cyber exercice ayant pour objet ” Investigation sur une machine compromise par un malware bancaire” a eu […]