Messages récents

Pages: [1] 2 3 4 5 6 7 8 ... 10
1
Windows 10 / Re : KB4100347 - Mises à jour de microcode de Intel
« Dernier message par chantal11 le Aujourd'hui à 08:08:59 »
Bonjour,

C'est la 1ère fois que les petits utilitaires InSpectre et Spectre Meltdown CPU Checker sont "tout vert"   :QQQ





@+
2
Windows 10 / KB4100347 - Mises à jour de microcode de Intel
« Dernier message par chantal11 le Aujourd'hui à 08:06:36 »
Bonjour,

Peut-être pour vous aussi, du moins ceux qui ont un processeur Intel, je viens de recevoir via Windows Update cette mise à jour KB4100347 : Mises à jour de microcode de Intel

https://support.microsoft.com/fr-fr/help/4100347/intel-microcode-updates-for-windows-10-version-1803-and-windows-server

Disponible aussi sur le Catalogue Microsoft Update
KB4100347

Citer
Intel a récemment annoncé qu’ils ont terminé leurs validations et a commencé à la mise à jour du microcode pour les plates-formes du processeur récentes liées à Spectre variante 2 (CVE 2017-5715 [« branche cible Injection »]). Cette mise à jour contient des mises à jour du microcode fournies par Intel pour les processeurs suivants :

voir la liste sur la fiche Microsoft

Un redémarrage est requis.

@+
3
Suspected Iranian Influence Operation Leverages Network of Inauthentic
News Sites & Social Media Targeting Audiences in U.S., UK, Latin
America, Middle East


FireEye has identified a suspected influence operation that appears
  to originate from Iran aimed at audiences in the U.S., U.K., Latin
  America, and the Middle East. This operation is leveraging a network
  of inauthentic news sites and clusters of associated accounts across
  multiple social media platforms to promote political narratives in
  line with Iranian interests. These narratives include anti-Saudi,
  anti-Israeli, and pro-Palestinian themes, as well as support for
  specific U.S. policies favorable to Iran, such as the U.S.-Iran
  nuclear deal (JCPOA). The activity we have uncovered is significant,
  and demonstrates that actors beyond Russia continue to engage in and
  experiment with online, social media-driven influence operations to
  shape political discourse.


 

What Is This Activity?


 

Figure 1 maps the registration and content promotion connections
  between the various inauthentic news sites and social media account
  clusters we have identified thus far. This activity dates back to at
  least 2017. At the time of publication of this blog post, we continue
  to investigate and identify additional social media accounts and
  websites linked to this activity. For example, we have identified
  multiple Arabic-language, Middle East-focused sites that appear to be
  part of this broader operation that we do not address here.


 


 
 
 Figure 1: Connections among components of
    suspected Iranian influence operation


 

We use the term “inauthentic” to describe sites that are not
  transparent in their origins and affiliations, undertake concerted
  efforts to mask these origins, and often use false social media
  personas to promote their content. The content published on the
  various websites consists of a mix of both original content and news
  articles appropriated, and sometimes altered, from other sources.


 

Who Is Conducting this Activity and Why?


 

Based on an investigation by FireEye Intelligence’s Information
  Operations analysis team, we assess with moderate confidence that this
  activity originates from Iranian actors. This assessment is based on a
  combination of indicators, including site registration data and the
  linking of social media accounts to Iranian phone numbers, as well as
  the promotion of content consistent with Iranian political interests.
  For example:


 
  • Registrant emails for the sites ‘Liberty Front Press’ and
        ‘Instituto Manquehue’ are associated with advertisements for website
        designers in Tehran and with the Iran-based site gahvare[.]com,
      respectively.
  • We have identified multiple Twitter accounts
        directly affiliated with the sites, as well as other associated
        Twitter accounts, that are linked to phone numbers with the +98
        Iranian country code.
  • We have observed inauthentic social
        media personas, masquerading as American liberals supportive of U.S.
        Senator Bernie Sanders, heavily promoting Quds Day, a holiday
        established by Iran in 1979 to express support for Palestinians and
        opposition to Israel.

 

We limit our assessment regarding Iranian origins to moderate
  confidence because influence operations, by their very nature, are
  intended to deceive by mimicking legitimate online activity as closely
  as possible. While highly unlikely given the evidence we have
  identified, some possibility nonetheless remains that the activity
  could originate from elsewhere, was designed for alternative purposes,
  or includes some small percentage of authentic online behavior. We do
  not currently possess additional visibility into the specific actors,
  organizations, or entities behind this activity. Although the
  Iran-linked APT35 (Newscaster) has previously used inauthentic news
  sites and social media accounts to facilitate espionage, we have not
  observed any links to APT35.


 

Broadly speaking, the intent behind this activity appears to be to
  promote Iranian political interests, including anti-Saudi,
  anti-Israeli, and pro-Palestinian themes, as well as to promote
  support for specific U.S. policies favorable to Iran, such as the
  U.S.-Iran nuclear deal (JCPOA). In the context of the U.S.-focused
  activity, this also includes significant anti-Trump messaging and the
  alignment of social media personas with an American liberal identity.
  However, it is important to note that the activity does not appear to
  have been specifically designed to influence the 2018 U.S. midterm
  elections, as it extends well beyond U.S. audiences and U.S. politics.


 

Conclusion


 

The activity we have uncovered highlights that multiple actors
  continue to engage in and experiment with online, social media-driven
  influence operations as a means of shaping political discourse. These
  operations extend well beyond those conducted by Russia, which has
  often been the focus of research into information operations over
  recent years. Our investigation also illustrates how the threat posed
  by such influence operations continues to evolve, and how similar
  influence tactics can be deployed irrespective of the particular
  political or ideological goals being pursued.


 

Additional Details


 

FireEye will be releasing additional details on this operation that
  will lay out the clusters of influence activity identified so far, the
  links between these, and how our observations support our attribution
  assessment. Submit your name and email address in the box at the top
  right of the page to receive the report when it is available.


Source: Suspected Iranian Influence Operation Leverages Network of Inauthentic
News Sites & Social Media Targeting Audiences in U.S., UK, Latin
America, Middle East
4
News / [AVAST]The Privacy and Security Risks of Consumer Genomics Kits | Avast
« Dernier message par igor51 le Aujourd'hui à 03:00:07 »
The Privacy and Security Risks of Consumer Genomics Kits | Avast

Consumer genomics kits are all the rage. On Black Friday and Cyber Monday last year, industry leader 23&Me sold 1.5 million. I can understand the appeal. For one, it’s fun to learn about where your ancestors came from and perhaps even pick up a surprising fact about your family heritage to share at cocktail parties. You might even discover a long-lost family member or two. More seriously, people want to find out which diseases they are more susceptible to and steps they can take to mitigate their risk. Setting aside concerns about the accuracy and reliability of these tests, we are still left with a major potential pitfall: the privacy and security threats of amassing large quantities of biometric data.


Source: The Privacy and Security Risks of Consumer Genomics Kits | Avast
5
News / [Sophos]Firefox axes 23 add-ons, developer pushes back
« Dernier message par igor51 le Aujourd'hui à 01:00:30 »
Firefox axes 23 add-ons, developer pushes back

Mozilla has wiped 23 extensions from its directory of Firefox browser add-ons after finding what it says were inappropriate functions in the code.
Source: Firefox axes 23 add-ons, developer pushes back
6
Serious Security: How to stop dodgy HTTP headers clogging your website

It's been dubbed ReDos, for Regular Expression Denial of Service - where a few rogue HTTP requests could clog your whole site.
Source: Serious Security: How to stop dodgy HTTP headers clogging your website
7
Windows 10 Insider Preview Build 17744 via Windows Update – canal Rapide

   Windows 10 Insider Preview, une nouvelle Build 17744 pour PC est disponible pour les Insiders, via Windows Update – canal Rapide https://blogs.windows.com/windowsexperience/2018/08/21/announcing-windows-10-insider-preview-build-17744/
Source: Windows 10 Insider Preview Build 17744 via Windows Update – canal Rapide
8
News / [AVAST]Avast at IFA+ Summit: The humanity of AI | Avast
« Dernier message par igor51 le Hier à 20:00:05 »
Avast at IFA+ Summit: The humanity of AI | Avast

Avast Security Ambassador and Chess Grandmaster Garry Kasparov will be making the first splash into next month’s thought leadership pool at IFA+ Summit in Berlin. Garry is kicking off the “Intelligence” cluster of presentations with an opening speech titled “Timeless Values in the Digital World — Where AI Decisions Meet Human Responsibility.” The conference, a gathering of the greatest cybersecurity minds focused on “Next Level of Thinking,” will occur September 2 & 3.


Source: Avast at IFA+ Summit: The humanity of AI | Avast
9
Bonjour,

Windows 10 Insider Preview, une nouvelle Build 17744 pour PC est disponible pour les Insiders, via Windows Update – canal Rapide

https://blogs.windows.com/windowsexperience/2018/08/21/announcing-windows-10-insider-preview-build-17744/

@+
10
News / [Sophos]WhatsApp urges Android users to manually backup their chats
« Dernier message par igor51 le Hier à 17:01:00 »
WhatsApp urges Android users to manually backup their chats

WhatsAppers have until 12 November. That's when WhatsApp will sweep out dusty old backups that haven't been updated in more than a year.
Source: WhatsApp urges Android users to manually backup their chats
Pages: [1] 2 3 4 5 6 7 8 ... 10