Vous êtes ici :   Accueil » RSS - net-security.org
 
Prévisualiser...  Imprimer...  Imprimer la page...
!Introduction
Technique
Outils
Base de connaissances
Visites

 1606192 visiteurs

 5 visiteurs en ligne

Contact

Notre site
griessenconsulting-Tag-Qrcode.png

info@griessenconsulting.ch

ch.linkedin.com/in/thierrygriessenCISA

Neuchâtel, Suisse


Mes coordonées
griessenconsulting-Tag-Vcard-OK.png

Crée votre Code

RSS - net-security.org

Help Net Security


Daily information security news with a focus on enterprise security.


Researcher releases PoC for Windows VCF file RCE vulnerability  Voir?

A vulnerability that exists in the way Windows processes VCard files (.vcf) can be exploited by remote attackers to achieve execute arbitrary code on vulnerable systems, security researcher John Page has shared. What’s a VCard? VCF is a standard file format used for storing contact information for individuals and businesses. They can contain the contact’s name, address, email address, phone number, their business or personal web page, etc. They are often used to quickly share … More

The post Researcher releases PoC for Windows VCF file RCE vulnerability appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 10:57)

Fortnite vulnerabilities would have allowed attackers to intercept and steal login credentials  Voir?

Researchers at Check Point today shared details of vulnerabilities that could have affected any player of the hugely popular online battle game, Fortnite. Vulnerability impact If exploited, the vulnerability would have given an attacker full access to a user’s account and their personal information, as well as enabling them to purchase virtual in-game currency using the victim’s payment card details. The vulnerability would also have allowed attackers to listen to and record in-game chat as … More

The post Fortnite vulnerabilities would have allowed attackers to intercept and steal login credentials appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 10:16)

BEC scammers add payroll diversion to their repertoire  Voir?

All the attention the most typical BEC scams have been receiving in the last few years must have affected their effectiveness and forced scammers to come up with new ways for extracting money from companies. Late last year the FBI warned about scammers tricking employees into sharing their login credentials, then using the acquired credentials to access the employee’s payroll account and change the bank account to which the pay is directed. The deception can’t … More

The post BEC scammers add payroll diversion to their repertoire appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 07:45)

The costs of cyberattacks increased 52% to $1.1 million  Voir?

Radware has released its 2018-2019 Global Application and Network Security Report, in which survey respondents estimate the average cost of a cyberattack at $1.1M. For those organizations that calculate (versus estimate) the cost of an attack, that number increases to $1.67M. Motives for cyberattacks on organizations vary by region The top impact of cyberattacks, as reported by respondents, is operational/productivity loss (54%), followed by negative customer experience (43%). What’s more, almost half (45%) reported that … More

The post The costs of cyberattacks increased 52% to $1.1 million appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 07:30)

Companies still struggle to detect IoT device breaches  Voir?

Only 48% of businesses can detect if any of their IoT devices suffers a breach, according to Gemalto. This comes despite companies having an increased focus on IoT security: Spending on protection has grown (from 11% of IoT budget in 2017 to 13% now) Nearly all (90%) believing it is a big consideration for customers Almost three times as many now see IoT security as an ethical responsibility (14%), compared to a year ago (4%) … More

The post Companies still struggle to detect IoT device breaches appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 07:15)

Radio frequency remote controller weaknesses have serious safety implications  Voir?

Trend Micro released a new report detailing inherent flaws and new vulnerabilities in radio frequency (RF) remote controllers found and disclosed through the Zero Day Initiative (ZDI). Overview of the five classes of attacks analyzed in this research Security analysis and recommendations The report, A Security Analysis of Radio Remote Controllers for Industrial Applications, demonstrates how an attacker could persistently and remotely take control of, or simulate the malfunction of, the attacked machinery. The report’s … More

The post Radio frequency remote controller weaknesses have serious safety implications appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 07:00)

BigID expands global sales organization to help enterprises meet worldwide privacy regulations  Voir?

BigID has expanded the company’s sales presence in Europe, Asia and LATAM to meet demand from new global privacy regulations. BigID has also appointed Michael Trites as senior vice president of global sales to oversee the company’s direct sales inside and outside the U.S., and Toby Penn as vice president of pre-sales engineering to lead the company’s technical field sales team. Building on the company’s seven-fold year-over-year sales growth in 2018, BigID has expanded its … More

The post BigID expands global sales organization to help enterprises meet worldwide privacy regulations appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 05:00)

Zix to acquire AppRiver, cloud-based cybersecurity solutions provider  Voir?

Zix has entered into a definitive agreement to acquire AppRiver for $275 million in cash. AppRiver is a provider of cloud-based cybersecurity and productivity services, serving more than 60,000 companies worldwide and supported by a 4,500-strong Managed Service Provider (MSP) reseller community. AppRiver launched its spam and virus service in 2002, and has since bolstered its suite of cloud-based security offerings with web protection, email encryption, secure archiving, and email continuity solutions. AppRiver also provides … More

The post Zix to acquire AppRiver, cloud-based cybersecurity solutions provider appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 04:30)

Endace joins IBM Security app exchange community  Voir?

Endace launched the EndaceProbe integration with IBM Security to enable customers to retrace the actions of an attacker to accelerate forensic investigation. EndaceProbe Network Analytics Platform captures, indexes, and stores network traffic while hosting a variety of network security and performance monitoring applications in Application Dock, EndaceProbe’s built-in hosting environment. The new application is freely available to the security community through IBM Security App Exchange, a marketplace where developers across the industry can create applications … More

The post Endace joins IBM Security app exchange community appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 04:00)

Quali introduces SaaS cloud management platform CloudShell Colony for accelerating DevOps  Voir?

Quali unveiled CloudShell Colony – a software-as-a-service (SaaS) cloud management platform for DevOps. CloudShell Colony automates DevOps environments all the way from development to production, while allowing IT and project managers to govern the use of cloud resources from a single pane of glass. This announcement follows the recent news highlighting Quali’s $22.5 million Series-C funding round in December 2018. CloudShell Colony initially being released as controlled availability (CA) software equips DevOps teams, developers and … More

The post Quali introduces SaaS cloud management platform CloudShell Colony for accelerating DevOps appeared first on Help Net Security.

... / ... Lire la suite

(16/01/2019 @ 03:30)

Dernière mise à jour : 15/01/2019 @ 14:29