Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
The European Union has officially linked Russia to a hacking operation known as Ghostwriter that targets high-profile EU officials, journalists, and the general public. […] Source: leepingcomputer.com Post Views: 35
Continue ReadingLarge-scale well-organized phishing as a service (PhaaS) operation is uncovered recently by Microsoft. This platform helps users to customize campaigns and develop their own phishing ploys. The PhaaS platform can be used for phishing kits, email templates, and hosting services. The operation was marketed by the threat actors as Bulletprooflink when they found a high […]
Continue ReadingBy Jon Munshaw. The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page. We also preach the importance of multi-factor authentication. But what happens when the bad guys start going after… [[ This is only the beginning! Please visit […]
Continue ReadingThe mobile baddie grants itself access to almost everything, enabling spying, data-harvesting, stalking and fraud attacks, among others. Source: Threatpost.com Post Views: 32
Continue ReadingThe definitive OWASP Top 10 2021 list is out, and it shows that broken access control is currently the most serious web application security risk. How is the list compiled? “We get data from organizations that are testing vendors by trade, bug bounty vendors, and organizations that contribute internal testing data. Once we have the […]
Continue ReadingBy Deeba Ahmed Lithuania Defense Ministry has released a warning, urging consumers to get rid of their Chinese phones and not to buy new ones amid data security. This is a post from HackRead.com Read the original post: Lithuania wants users to dump Chinese phones citing data collection Source: hack read com Post Views: 31
Continue ReadingA cyberespionage group active since at least 2019 started exploiting ProxyLogon one day after the Microsoft Exchange vulnerability was publicly disclosed, ESET security researchers say. read more Source: Security Week Post Views: 32
Continue Reading
Researcher release PoC exploit code for three iOS zero-day flaws after Apple delayed addressing them and did not credit him. An unknown researcher publicly released on GitHub proof-of-concept exploit code for three iOS zero-day vulnerabilities and one flaw addressed by Apple in July. The experts discovered the four zero-day issues between March 10 and May […]
Continue ReadingLatest episode – listen now! Source: Naked Security Sophos New feed Post Views: 33
Continue ReadingNewcomer Wants Journalists to Publicize Victims, to Pressure Them Into Paying RansomA new and still little-known ransomware group called Karma has been pursuing a novel strategy to pressure victims into paying: Get journalists to publicize businesses hit by the ransomware operation, adding pressure on victims to pay the ransom demand. Source: Bank Info Security Post […]
Continue Reading