Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days

Install Latest Windows Update ASAP! Patches Issued for 6 Actively Exploited Zero-Days,

Microsoft’s latest round of monthly security updates has been released with fixes for 68 vulnerabilities spanning its software portfolio, including patches for six actively exploited zero-days.
12 of the issues are rated Critical, two are rated High, and 55 are rated Important in severity. This also includes the weaknesses that were closed out by OpenSSL the previous week.
Also separately 

,

Microsoft’s latest round of monthly security updates has been released with fixes for 68 vulnerabilities spanning its software portfolio, including patches for six actively exploited zero-days.
12 of the issues are rated Critical, two are rated High, and 55 are rated Important in severity. This also includes the weaknesses that were closed out by OpenSSL the previous week.
Also separately 

, ,
https://thehackernews.com/2022/11/install-latest-windows-update-asap.html

Amadey Bot Spotted Deploying LockBit 3.0 Ransomware on Hacked Machines

Amadey Bot Spotted Deploying LockBit 3.0 Ransomware on Hacked Machines,

The Amadey malware is being used to deploy LockBit 3.0 ransomware on compromised systems, researchers have warned.
« Amadey bot, the malware that is used to install LockBit, is being distributed through two methods: one using a malicious Word document file, and the other using an executable that takes the disguise of the Word file icon, » AhnLab Security Emergency Response Center (ASEC) said in a

,

The Amadey malware is being used to deploy LockBit 3.0 ransomware on compromised systems, researchers have warned.
« Amadey bot, the malware that is used to install LockBit, is being distributed through two methods: one using a malicious Word document file, and the other using an executable that takes the disguise of the Word file icon, » AhnLab Security Emergency Response Center (ASEC) said in a

, ,
https://thehackernews.com/2022/11/amadey-bot-spotted-deploying-lockbit-30.html

New Laplas Clipper Malware Targeting Cryptocurrency Users via SmokeLoader

New Laplas Clipper Malware Targeting Cryptocurrency Users via SmokeLoader,

Cryptocurrency users are being targeted with a new clipper malware strain dubbed Laplas by means of another malware known as SmokeLoader.
SmokeLoader, which is delivered by means of weaponized documents sent through spear-phishing emails, further acts as a conduit for other commodity trojans like SystemBC and Raccoon Stealer 2.0, according to an analysis from Cyble.

Observed in

,

Cryptocurrency users are being targeted with a new clipper malware strain dubbed Laplas by means of another malware known as SmokeLoader.
SmokeLoader, which is delivered by means of weaponized documents sent through spear-phishing emails, further acts as a conduit for other commodity trojans like SystemBC and Raccoon Stealer 2.0, according to an analysis from Cyble.

Observed in

, ,
https://thehackernews.com/2022/11/new-laplas-clipper-malware-targeting.html

U.S. Seizes Over 50K Bitcoin Worth $3.3 Billion Linked to Silk Road Dark Web

U.S. Seizes Over 50K Bitcoin Worth $3.3 Billion Linked to Silk Road Dark Web,

The U.S. Department of Justice (DoJ) on Monday said it seized 50,676 Bitcoin in November 2021 that was stolen in the 2012 hack of the now-defunct Silk Road dark web marketplace.
The bitcoin, which was obtained in 2012 and valued at $3.36 billion when it was discovered last year, is now worth $1.04 billion. Additionally recovered were $661,900 in cash, 25 Casascius coins with an approximate value

,

The U.S. Department of Justice (DoJ) on Monday said it seized 50,676 Bitcoin in November 2021 that was stolen in the 2012 hack of the now-defunct Silk Road dark web marketplace.
The bitcoin, which was obtained in 2012 and valued at $3.36 billion when it was discovered last year, is now worth $1.04 billion. Additionally recovered were $661,900 in cash, 25 Casascius coins with an approximate value

, ,
https://thehackernews.com/2022/11/us-seizes-over-50k-bitcoin-worth-33.html

5 Reasons to Consolidate Your Tech Stack

5 Reasons to Consolidate Your Tech Stack,

The news surrounding the slowing economy has many wondering how much of an impact it will have on their businesses – and lives. And there’s good reason to start preparing. 
A recent survey by McKinsey & Company found that 85% of small and midsize businesses plan to increase their security spending heading into 2023, while Gartner recently projected that 2022 IT spending will only grow by 3%,

,

The news surrounding the slowing economy has many wondering how much of an impact it will have on their businesses – and lives. And there’s good reason to start preparing. 
A recent survey by McKinsey & Company found that 85% of small and midsize businesses plan to increase their security spending heading into 2023, while Gartner recently projected that 2022 IT spending will only grow by 3%,

, ,
https://thehackernews.com/2022/11/5-reasons-to-consolidate-your-tech-stack.html

Ces cinq applications Android cherchent à piller votre compte bancaire

Ces cinq applications Android cherchent à piller votre compte bancaire,

play store android malware

Deux dangereux virus viennent d’être repérés sur le Play Store. Cachés dans le code de cinq applications Android, ils cherchent à siphonner le compte bancaire de leurs victimes. Découvrez la liste des banques françaises visées par les pirates.

,

play store android malware

Deux dangereux virus viennent d’être repérés sur le Play Store. Cachés dans le code de cinq applications Android, ils cherchent à siphonner le compte bancaire de leurs victimes. Découvrez la liste des banques françaises visées par les pirates.

, ,
https://www.01net.com/actualites/cinq-applications-android-piller-compte-bancaire.html

Medibank Refuses to Pay Ransom After 9.7 Million Customers Exposed in Ransomware Hack

Medibank Refuses to Pay Ransom After 9.7 Million Customers Exposed in Ransomware Hack,

Australian health insurer Medibank today confirmed that personal data belonging to around 9.7 million of its current and former customers were accessed following a ransomware incident.
The attack, according to the company, was detected in its IT network on October 12 in a manner that it said was « consistent with the precursors to a ransomware event, » prompting it to isolate its systems, but not

,

Australian health insurer Medibank today confirmed that personal data belonging to around 9.7 million of its current and former customers were accessed following a ransomware incident.
The attack, according to the company, was detected in its IT network on October 12 in a manner that it said was « consistent with the precursors to a ransomware event, » prompting it to isolate its systems, but not

, ,
https://thehackernews.com/2022/11/medibank-refuses-to-pay-ransom-after-97.html

This Hidden Facebook Tool Lets Users Remove Their Email or Phone Number Shared by Others

This Hidden Facebook Tool Lets Users Remove Their Email or Phone Number Shared by Others,

Facebook appears to have silently rolled out a tool that allows users to remove their contact information, such as phone numbers and email addresses, uploaded by others.
The existence of the tool, which is buried inside a Help Center page about « Friending, » was first reported by Business Insider last week. It’s offered as a way for « Non-users » to « exercise their rights under applicable laws. »

,

Facebook appears to have silently rolled out a tool that allows users to remove their contact information, such as phone numbers and email addresses, uploaded by others.
The existence of the tool, which is buried inside a Help Center page about « Friending, » was first reported by Business Insider last week. It’s offered as a way for « Non-users » to « exercise their rights under applicable laws. »

, ,
https://thehackernews.com/2022/11/this-hidden-facebook-tool-lets-users.html

Experts Find URLScan Security Scanner Inadvertently Leaks Sensitive URLs and Data

Experts Find URLScan Security Scanner Inadvertently Leaks Sensitive URLs and Data,

Security researchers are warning of « a trove of sensitive information » leaking through urlscan.io, a website scanner for suspicious and malicious URLs.
« Sensitive URLs to shared documents, password reset pages, team invites, payment invoices and more are publicly listed and searchable, » Positive Security co-founder, Fabian Bräunlein, said in a report published on November 2, 2022.
The

,

Security researchers are warning of « a trove of sensitive information » leaking through urlscan.io, a website scanner for suspicious and malicious URLs.
« Sensitive URLs to shared documents, password reset pages, team invites, payment invoices and more are publicly listed and searchable, » Positive Security co-founder, Fabian Bräunlein, said in a report published on November 2, 2022.
The

, ,
https://thehackernews.com/2022/11/experts-find-urlscan-security-scanner.html

Facebook connaît sûrement votre numéro de téléphone, mais vous pouvez le supprimer

Facebook connaît sûrement votre numéro de téléphone, mais vous pouvez le supprimer,

Facebook Messenger

Facebook a probablement collecté votre numéro de téléphone sans que vous en ayez conscience. Bonne nouvelle, il est possible d’effacer celui-ci de la base de données du réseau social en quelques clics. On vous explique comment.

,

Facebook Messenger

Facebook a probablement collecté votre numéro de téléphone sans que vous en ayez conscience. Bonne nouvelle, il est possible d’effacer celui-ci de la base de données du réseau social en quelques clics. On vous explique comment.

, ,
https://www.01net.com/actualites/facebook-connait-surement-numero-telephone-supprimer.html