NSA Suggests Enterprises Use ‘Designated’ DNS-over-HTTPS’ Resolvers

The U.S. National Security Agency (NSA) on Friday said DNS over HTTPS (DoH) — if configured appropriately in enterprise environments — can help prevent « numerous » initial access, command-and-control, and exfiltration techniques used by threat actors. « DNS over Hypertext Transfer Protocol over Transport Layer Security (HTTPS), often referred to as DNS over HTTPS (DoH), encrypts DNS requests by
Source de l’article sur The Hacker News

WhatsApp Delays Controversial ‘Data-Sharing’ Privacy Policy Update By 3 Months

WhatsApp said on Friday that it wouldn’t enforce its recently announced controversial data sharing policy update until May 15.
Originally set to go into effect next month on February 8, the three-month delay comes following « a lot of misinformation » about a revision to its privacy policy that allows WhatsApp to share data with Facebook, sparking widespread concerns about the exact kind of
Source de l’article sur The Hacker News

Researchers Disclose Undocumented Chinese Malware Used in Recent Attacks

Cybersecurity researchers have disclosed a series of attacks by a threat actor of Chinese origin that has targeted organizations in Russia and Hong Kong with malware — including a previously undocumented backdoor.
Attributing the campaign to Winnti (or APT41), Positive Technologies dated the first attack to May 12, 2020, when the APT used LNK shortcuts to extract and run the malware payload. A
Source de l’article sur The Hacker News

Vaccin Covid-19 : les cybercriminels déploient de nouveaux pièges à l’échelle mondiale

Depuis le début de la pandémie, les cybercriminels n’ont eu de cesse d’associer le thème de la COVID-19 à de nombreuses campagnes successives de malware et de phishing. Alors que la campagne de vaccination vient tout juste d’être entamée en France, les acteurs de la menace continuent de saisir l’actualité liée à la crise sanitaire pour adresser de manière opportune des campagnes malveillantes à leurs futures victimes.

The post Vaccin Covid-19 : les cybercriminels déploient de nouveaux pièges à l’échelle mondiale first appeared on UnderNews.
Source de l’article sur UNDERNEWS

Experts Uncover Malware Attacks Against Colombian Government and Companies

Cybersecurity researchers took the wraps off an ongoing surveillance campaign directed against Colombian government institutions and private companies in the energy and metallurgical industries.
In a report published by ESET on Tuesday, the Slovak internet security company said the attacks — dubbed « Operation Spalax » — began in 2020, with the modus operandi sharing some similarities to an APT
Source de l’article sur The Hacker News

Intel Adds Hardware-Enabled Ransomware Detection to 11th Gen vPro Chips

Intel and Cybereason have partnered to build anti-ransomware defenses into the chipmaker’s newly announced 11th generation Core vPro business-class processors.
The hardware-based security enhancements are baked into Intel’s vPro platform via its Hardware Shield and Threat Detection Technology (TDT), enabling profiling and detection of ransomware and other threats that have an impact on the CPU
Source de l’article sur The Hacker News

Les différentes utilisations d’un VPN en 2021

À l’heure actuelle, la plupart de notre vie est en ligne. Des réseaux sociaux, aux achats en ligne et à la banque à domicile, nos informations sur l’internet augmentent de jour en jour. Ainsi, à mesure que le cercle de la vie privée se resserre, de plus en plus de personnes se tournent vers les VPN (définition VPN) pour protéger leur activité en ligne et préserver, autant que possible, l’anonymat.

The post Les différentes utilisations d’un VPN en 2021 first appeared on UnderNews.
Source de l’article sur UNDERNEWS

Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor

As the investigation into the SolarWinds supply-chain attack continues, cybersecurity researchers have disclosed a third malware strain that was deployed into the build environment to inject the backdoor into the company’s Orion network monitoring platform.
Called « Sunspot, » the malignant tool adds to a growing list of previously disclosed malicious software such as Sunburst and Teardrop. « This
Source de l’article sur The Hacker News

Sunburst – Les experts ont trouvé des liens entre l’attaque de SolarWinds et le backdoor Kazuar

Le 13 décembre dernier, FireEye, Microsoft et SolarWinds découvraient dans leurs réseaux informatiques une attaque sophistiquée ciblant leur chaîne logistique. Cette attaque déployait alors un nouveau malware, jusqu’ici inconnu, « Sunburst », utilisé contre les clients informatiques d’Orion de SolarWinds.

The post Sunburst – Les experts ont trouvé des liens entre l’attaque de SolarWinds et le backdoor Kazuar first appeared on UnderNews.
Source de l’article sur UNDERNEWS

Russian Hacker Gets 12-Years Prison for Massive JP Morgan Chase Hack

A U.S. court on Thursday sentenced a 37-year-old Russian to 12 years in prison for perpetrating an international hacking campaign that resulted in the heist of a trove of personal information from several financial institutions, brokerage firms, financial news publishers, and other American companies.
Andrei Tyurin was charged with computer intrusion, wire fraud, bank fraud, and illegal online
Source de l’article sur The Hacker News