A North Korea-linked APT group, tracked as AndarielGroup, leveraged an ActiveX zero-day vulnerability in targeted attacks against South Korean entities. According to a report published by South Korean cyber-security firm AhnLab, the Andariel Group is a division of the dreaded Lazarus APT Group, it already exploited ActiveX vulnerabilities in past attacks The attackers exploited at […]
Le phishing se déchaîne sur les réseaux sociaux
La fraude ciblant les utilisateurs des réseaux sociaux (ou « angler phishing ») a bondi de 200% en un trimestre, selon Proofpoint. Proofpoint a publié son rapport trimestriel sur les menaces cyber qui pèsent sur les entreprises (Quaterly Threat Report Q1 2018). Le rapport s’appuie sur l’analyse quotidienne de 5 milliards de […]
Miscreants hijacked the defunct SpamCannibal blacklist service
The SpamCannibal blacklist service was hijacked since Wednesday morning, attackers changed the DNS name server settings for the website overnight. The SpamCannibal was born to blacklist IP address of malicious servers involved in spam campaigns and DoS attacks. SpamCannibal was using a continually updated database containing the IP addresses of spam or […]
La poste tunisienne victime d’une attaque par Phishing
D’abord considéré comme une technique frauduleuse , le phishing est devenue une véritable plaie sur internet. Autant utilisée par les pirates informatiques, elle vise à récupérer des informations auprès des clients des établissements financiers avec des méthodes de plus en plus sophistiquées. Des fausses pages sur les réseaux sociaux, des […]
US-CERT issued an alert on two malware associated with North Korea-linked APT Hidden Cobra
The Department of Homeland Security (DHS) and the FBI issued a joint Technical alert on two strain on malware, the Joanap backdoor Trojan and Brambul Server Message Block worm, associated with the HIDDEN COBRA North Korea-linked APT group. “Working with U.S. government partners, DHS and FBI identified Internet Protocol (IP) addresses […]
Des pirates ont volé les données de 90 000 clients de Simplii et de la BMO
Des pirates informatiques exigent une rançon de 1 million de dollars pour ne pas divulguer les renseignements volés de 90 000 clients des banques BMO et Simplii. Lundi, la Banque de Montréal et la banque en ligne Simplii Financial – propriété de la CIBC – ont révélé que les renseignements personnels permettant […]
Oracle Plans to Drop Java Serialization Support, the Source of Most Security Bugs
Oracle plans to drop support for data serialization/deserialization from the main body of the Java language, according to Mark Reinhold, chief architect of the Java platform group at Oracle. Serialization is the process of taking a data object and converting it into a stream of bytes (binary format), so it […]
BackSwap malware finds innovative ways to empty bank accounts
Banking malware (also referred to as banker) has been decreasing in popularity among cybercrooks for a few years now, one of the reasons being that both anti-malware companies and web browser developers are continuously widening the scope of their protection mechanisms against banking Trojan attacks. This results in conventional banking […]
Tech giants are all working on new Spectre and Meltdown attacks, so-called variant 3 and variant 4
Yesterday AMD, ARM, IBM, Intel, Microsoft and other major tech firms released updates, mitigations and published security advisories for two new variants of Meltdown and Spectre attacks. Spectre and Meltdown made the headlines again, a few days after the disclosure of a new attack technique that allowed a group of researchers to recover data […]
Adobe to Acquire Magento E-Commerce Platform for $1.68 Billion
Adobe announced yesterday plans to buy the Magento e-commerce platform for $1.68 billion. While the Magento brand is mostly known for the open source online store CMS of the same name, Adobe was mostly interested in Magento Commerce, an online-store-as-a-service platform. Adobe plans to embed the Magento Commerce platform into […]