The Week in Ransomware - May 5th 2017 - Wallet, GlobeImposter, and Cerber
Wow! What a brutal week. This week we have 37 ransomware stories, with 10 of them being on May 1st alone. Most of the new ransomware releases continue to be real crap, but together they add up to a wave of garbage that can do some serious harm. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-may-5th-2017-wallet-globeimposter-and-cerber/
Wow! What a brutal week. This week we have 37 ransomware stories, with 10 of them being on May 1st alone. Most of the new ransomware releases continue to be real crap, but together they add up to a wave of garbage that can do some serious harm. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-may-5th-2017-wallet-globeimposter-and-cerber/
BleepingComputer
The Week in Ransomware - May 5th 2017 - Wallet, GlobeImposter, and Cerber
Wow! What a brutal week. This week we have 37 ransomware stories, with 10 of them being on May 1st alone. Most of the new ransomware releases continue to be real crap, but together they add up to a wave of garbage that can do some serious harm.
WikiLeaks Dump Reveals CIA Tool for MitM Attacks
WikiLeaks dumped today the documentation of a new supposed CIA hacking tool called Archimedes, which the Agency had used to perform Man-in-the-Middle attacks on local networks. [...]
https://www.bleepingcomputer.com/news/security/wikileaks-dump-reveals-cia-tool-for-mitm-attacks/
WikiLeaks dumped today the documentation of a new supposed CIA hacking tool called Archimedes, which the Agency had used to perform Man-in-the-Middle attacks on local networks. [...]
https://www.bleepingcomputer.com/news/security/wikileaks-dump-reveals-cia-tool-for-mitm-attacks/
BleepingComputer
WikiLeaks Dump Reveals CIA Tool for MitM Attacks
WikiLeaks dumped today the documentation of a new supposed CIA hacking tool called Archimedes, which the Agency had used to perform Man-in-the-Middle attacks on local networks.
FrozrLock Ransomware Advertised on the Dark Web As "Great Security Tool"
A new Ransomware-as-a-Service has become available on the Dark Web, named FrozrLock, available for only $220, and advertised under the tagline of "great security tool that encrypts most of your files in several minutes." [...]
https://www.bleepingcomputer.com/news/security/frozrlock-ransomware-advertised-on-the-dark-web-as-great-security-tool-/
A new Ransomware-as-a-Service has become available on the Dark Web, named FrozrLock, available for only $220, and advertised under the tagline of "great security tool that encrypts most of your files in several minutes." [...]
https://www.bleepingcomputer.com/news/security/frozrlock-ransomware-advertised-on-the-dark-web-as-great-security-tool-/
BleepingComputer
FrozrLock Ransomware Advertised on the Dark Web As "Great Security Tool"
A new Ransomware-as-a-Service has become available on the Dark Web, named FrozrLock, available for only $220, and advertised under the tagline of "great security tool that encrypts most of your files in several minutes."
Website of HandBrake App Hacked to Spread Proton RAT for Mac Users
The website of the HandBrake app has been compromised, and one of its download mirrors modified to host a version of the Proton RAT embedded in the app's Mac client. [...]
https://www.bleepingcomputer.com/news/security/website-of-handbrake-app-hacked-to-spread-proton-rat-for-mac-users/
The website of the HandBrake app has been compromised, and one of its download mirrors modified to host a version of the Proton RAT embedded in the app's Mac client. [...]
https://www.bleepingcomputer.com/news/security/website-of-handbrake-app-hacked-to-spread-proton-rat-for-mac-users/
BleepingComputer
Website of HandBrake App Hacked to Spread Proton RAT for Mac Users
The website of the HandBrake app has been compromised, and one of its download mirrors modified to host a version of the Proton RAT embedded in the app's Mac client.
Researchers Explore Idea of Sabotage via Antivirus Engines
Four researchers from two universities in Germany have devised a method of turning an antivirus engine's malware scanning engine into an attack weapon. [...]
https://www.bleepingcomputer.com/news/security/researchers-explore-idea-of-sabotage-via-antivirus-engines/
Four researchers from two universities in Germany have devised a method of turning an antivirus engine's malware scanning engine into an attack weapon. [...]
https://www.bleepingcomputer.com/news/security/researchers-explore-idea-of-sabotage-via-antivirus-engines/
BleepingComputer
Researchers Explore Idea of Sabotage via Antivirus Engines
Four researchers from two universities in Germany have devised a method of turning an antivirus engine's malware scanning engine into an attack weapon.
Google Researchers Find Wormable "Crazy Bad" Windows Exploit
Two Google security experts have found a severe remote code execution (RCE) bug in the Windows OS, which they've described as "crazy bad." [...]
https://www.bleepingcomputer.com/news/security/google-researchers-find-wormable-crazy-bad-windows-exploit/
Two Google security experts have found a severe remote code execution (RCE) bug in the Windows OS, which they've described as "crazy bad." [...]
https://www.bleepingcomputer.com/news/security/google-researchers-find-wormable-crazy-bad-windows-exploit/
BleepingComputer
Google Researchers Find Wormable "Crazy Bad" Windows Exploit
Two Google security experts have found a severe remote code execution (RCE) bug in the Windows OS, which they've described as "crazy bad."
Dangerous Microsoft Edge Bug Displays One Set of Numbers, but Prints Another
In one of the weirdest β but equally dangerous β bugs of all time, it appears that Edge will display one set of numbers on the screen, but will send another set of numbers to the printer, effectively replacing content on your documents. [...]
https://www.bleepingcomputer.com/news/microsoft/dangerous-microsoft-edge-bug-displays-one-set-of-numbers-but-prints-another/
In one of the weirdest β but equally dangerous β bugs of all time, it appears that Edge will display one set of numbers on the screen, but will send another set of numbers to the printer, effectively replacing content on your documents. [...]
https://www.bleepingcomputer.com/news/microsoft/dangerous-microsoft-edge-bug-displays-one-set-of-numbers-but-prints-another/
BleepingComputer
Dangerous Microsoft Edge Bug Displays One Set of Numbers, but Prints Another
In one of the weirdest β but equally dangerous β bugs of all time, it appears that Edge will display one set of numbers on the screen, but will send another set of numbers to the printer, effectively replacing content on your documents.
Emsisoft Releases a Decryptor for the Amnesia Ransomware
On Satruday, Emsisoft's CTO and malware researcher Fabian Wosar released a decryptor for the Amnesia Ransomware. This ransomware was first spotted in early May and has had one other variant released. It was named Amnesia based on the extension appended to encrypted files by the first variant. [...]
https://www.bleepingcomputer.com/news/security/emsisoft-releases-a-decryptor-for-the-amnesia-ransomware/
On Satruday, Emsisoft's CTO and malware researcher Fabian Wosar released a decryptor for the Amnesia Ransomware. This ransomware was first spotted in early May and has had one other variant released. It was named Amnesia based on the extension appended to encrypted files by the first variant. [...]
https://www.bleepingcomputer.com/news/security/emsisoft-releases-a-decryptor-for-the-amnesia-ransomware/
BleepingComputer
Emsisoft Releases a Decryptor for the Amnesia Ransomware
On Satruday, Emsisoft's CTO and malware researcher Fabian Wosar released a decryptor for the Amnesia Ransomware. This ransomware was first spotted in early May and has had one other variant released. It was named Amnesia based on the extension appended toβ¦
News Brief: BitKangoroo Ransomware Deletes Your Files If You Do not Pay
In our first ransomware in brief article, we are taking a look at a new in-development ransomware called BitKangoroo that I discovered today. Yes, I know, skidz can't spell. This particular ransomware is developer by a real scumbag who intends to delete a victims files if they do not pay fast enough. [...]
https://www.bleepingcomputer.com/news/security/news-brief-bitkangoroo-ransomware-deletes-your-files-if-you-do-not-pay/
In our first ransomware in brief article, we are taking a look at a new in-development ransomware called BitKangoroo that I discovered today. Yes, I know, skidz can't spell. This particular ransomware is developer by a real scumbag who intends to delete a victims files if they do not pay fast enough. [...]
https://www.bleepingcomputer.com/news/security/news-brief-bitkangoroo-ransomware-deletes-your-files-if-you-do-not-pay/
BleepingComputer
News Brief: BitKangoroo Ransomware Deletes Your Files If You Do not Pay
In our first ransomware in brief article, we are taking a look at a new in-development ransomware called BitKangoroo that I discovered today. Yes, I know, skidz can't spell. This particular ransomware is developer by a real scumbag who intends to delete aβ¦
ISPs Could Damage Bitcoin Ecosystem If They Wanted To
Despite being a highly decentralized peer-to-peer network, the Bitcoin ecosystem is vulnerable to one of the most basic and widespread Internet attacks today β BGP hijacks, which is the act of falsely advertising to nearby ISPs/routers that an IP is found on your network, or it can be reached faster through your servers. [...]
https://www.bleepingcomputer.com/news/security/isps-could-damage-bitcoin-ecosystem-if-they-wanted-to/
Despite being a highly decentralized peer-to-peer network, the Bitcoin ecosystem is vulnerable to one of the most basic and widespread Internet attacks today β BGP hijacks, which is the act of falsely advertising to nearby ISPs/routers that an IP is found on your network, or it can be reached faster through your servers. [...]
https://www.bleepingcomputer.com/news/security/isps-could-damage-bitcoin-ecosystem-if-they-wanted-to/
BleepingComputer
ISPs Could Damage Bitcoin Ecosystem If They Wanted To
Despite being a highly decentralized peer-to-peer network, the Bitcoin ecosystem is vulnerable to one of the most basic and widespread Internet attacks today β BGP hijacks, which is the act of falsely advertising to nearby ISPs/routers that an IP is foundβ¦
Rakos Botnet Adds Support for P2P Backbone, Grows Larger
The author of the Rakos malware has built himself a nicely-sized botnet, according to a post today by Renato Marinho of Morphus Labs. [...]
https://www.bleepingcomputer.com/news/security/rakos-botnet-adds-support-for-p2p-backbone-grows-larger/
The author of the Rakos malware has built himself a nicely-sized botnet, according to a post today by Renato Marinho of Morphus Labs. [...]
https://www.bleepingcomputer.com/news/security/rakos-botnet-adds-support-for-p2p-backbone-grows-larger/
BleepingComputer
Rakos Botnet Adds Support for P2P Backbone, Grows Larger
The author of the Rakos malware has built himself a nicely-sized botnet, according to a post today by Renato Marinho of Morphus Labs.
Microsoft Issues Emergency Out-Of-Band Update to Fix "Crazy Bad" Vulnerability
In an emergency out-of-band update released late last night, Microsoft fixed a vulnerability in the Microsoft Malware Protection Engine discovered by two Google security experts over the weekend, and which the two described as "crazy bad" and "the worst Windows remote code exec in recent memory." [...]
https://www.bleepingcomputer.com/news/security/microsoft-issues-emergency-out-of-band-update-to-fix-crazy-bad-vulnerability/
In an emergency out-of-band update released late last night, Microsoft fixed a vulnerability in the Microsoft Malware Protection Engine discovered by two Google security experts over the weekend, and which the two described as "crazy bad" and "the worst Windows remote code exec in recent memory." [...]
https://www.bleepingcomputer.com/news/security/microsoft-issues-emergency-out-of-band-update-to-fix-crazy-bad-vulnerability/
BleepingComputer
Microsoft Issues Emergency Out-Of-Band Update to Fix "Crazy Bad" Vulnerability
In an emergency out-of-band update released late last night, Microsoft fixed a vulnerability in the Microsoft Malware Protection Engine discovered by two Google security experts over the weekend, and which the two described as "crazy bad" and "the worst Windowsβ¦
NemeS1S RaaS Is PadCrypt Ransomware's Affiliate System
A portal hidden on the Dark Web is responsible for the small deluge of PadCrypt ransomware versions that have been spotted almost on a monthly basis in the past year. [...]
https://www.bleepingcomputer.com/news/security/nemes1s-raas-is-padcrypt-ransomwares-affiliate-system/
A portal hidden on the Dark Web is responsible for the small deluge of PadCrypt ransomware versions that have been spotted almost on a monthly basis in the past year. [...]
https://www.bleepingcomputer.com/news/security/nemes1s-raas-is-padcrypt-ransomwares-affiliate-system/
BleepingComputer
NemeS1S RaaS Is PadCrypt Ransomware's Affiliate System
A portal hidden on the Dark Web is responsible for the small deluge of PadCrypt ransomware versions that have been spotted almost on a monthly basis in the past year.
FCC Says DDoS Attack Brought Down Commenting System, Not Angry John Oliver Fans
In a statement released last night, the US Federal Communications Commission (FCC) wanted to make sure everyone understood that it was a DDoS attack that prevented users from commenting on the proposal to knock down Net Neutrality, and not because of angry users flooding the site to complain about the FCC's decision. [...]
https://www.bleepingcomputer.com/news/technology/fcc-says-ddos-attack-brought-down-commenting-system-not-angry-john-oliver-fans/
In a statement released last night, the US Federal Communications Commission (FCC) wanted to make sure everyone understood that it was a DDoS attack that prevented users from commenting on the proposal to knock down Net Neutrality, and not because of angry users flooding the site to complain about the FCC's decision. [...]
https://www.bleepingcomputer.com/news/technology/fcc-says-ddos-attack-brought-down-commenting-system-not-angry-john-oliver-fans/
BleepingComputer
FCC Says DDoS Attack Brought Down Commenting System, Not Angry John Oliver Fans
In a statement released last night, the US Federal Communications Commission (FCC) wanted to make sure everyone understood that it was a DDoS attack that prevented users from commenting on the proposal to knock down Net Neutrality, and not because of angryβ¦
Adobe Patches Seven Security Flaws Affecting Flash Player
Today, Adobe has released two security advisories affecting two of its products, Adobe Flash Player and Adobe Experience Manager Forms, the latter being an application part of the Adobe Marketing Cloud service for, a collection of integrated online marketing and Web analytics products. [...]
https://www.bleepingcomputer.com/news/security/adobe-patches-seven-security-flaws-affecting-flash-player/
Today, Adobe has released two security advisories affecting two of its products, Adobe Flash Player and Adobe Experience Manager Forms, the latter being an application part of the Adobe Marketing Cloud service for, a collection of integrated online marketing and Web analytics products. [...]
https://www.bleepingcomputer.com/news/security/adobe-patches-seven-security-flaws-affecting-flash-player/
BleepingComputer
Adobe Patches Seven Security Flaws Affecting Flash Player
Today, Adobe has released two security advisories affecting two of its products, Adobe Flash Player and Adobe Experience Manager Forms, the latter being an application part of the Adobe Marketing Cloud service for, a collection of integrated online marketingβ¦
Mozilla Is Not Ditching Thunderbird After All
After exploring plans of ditching the Thunderbird project in the lap of another organization, the Mozilla Foundation has decided to keep its infamous email client under its wing for a little longer, albeit in a new role, and not as a core project. [...]
https://www.bleepingcomputer.com/news/software/mozilla-is-not-ditching-thunderbird-after-all/
After exploring plans of ditching the Thunderbird project in the lap of another organization, the Mozilla Foundation has decided to keep its infamous email client under its wing for a little longer, albeit in a new role, and not as a core project. [...]
https://www.bleepingcomputer.com/news/software/mozilla-is-not-ditching-thunderbird-after-all/
BleepingComputer
Mozilla Is Not Ditching Thunderbird After All
After exploring plans of ditching the Thunderbird project in the lap of another organization, the Mozilla Foundation has decided to keep its infamous email client under its wing for a little longer, albeit in a new role, and not as a core project.
Microsoft Security Updates for May 2017 Include Fixes for Three Zero-Days
Earlier today, Microsoft officially released its monthly updates, something that sysadmins all over the world call Patch Tuesday. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-security-updates-for-may-2017-include-fixes-for-three-zero-days/
Earlier today, Microsoft officially released its monthly updates, something that sysadmins all over the world call Patch Tuesday. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-security-updates-for-may-2017-include-fixes-for-three-zero-days/
BleepingComputer
Microsoft Security Updates for May 2017 Include Fixes for Three Zero-Days
Earlier today, Microsoft officially released its monthly updates, something that sysadmins all over the world call Patch Tuesday.
RSAUtil Ransomware (.helppme@india.com) Installed Via Hacked Remote Desktop Services
Today we are going to take a quick look at a new ransomware called RSAUtil that was discovered by Emsisoft malware researcher xXToffeeXx. RSAUtil is distributed by the developer hacking into remote desktop services and uploading a package of files. [...]
https://www.bleepingcomputer.com/news/security/rsautil-ransomware-helppme-india-com-installed-via-hacked-remote-desktop-services/
Today we are going to take a quick look at a new ransomware called RSAUtil that was discovered by Emsisoft malware researcher xXToffeeXx. RSAUtil is distributed by the developer hacking into remote desktop services and uploading a package of files. [...]
https://www.bleepingcomputer.com/news/security/rsautil-ransomware-helppme-india-com-installed-via-hacked-remote-desktop-services/
BleepingComputer
RSAUtil Ransomware (.helppme@india.com) Installed Via Hacked Remote Desktop Services
Today we are going to take a quick look at a new ransomware called RSAUtil that was discovered by Emsisoft malware researcher xXToffeeXx. RSAUtil is distributed by the developer hacking into remote desktop services and uploading a package of files.
3 of 4 Zero-Days Microsoft Patched Yesterday Were Used by Russian Cyberspies
Microsoft's May 2017 Patch Tuesday, released yesterday, included fixes for three zero-days, which according to ESET and FireEye, were used by cyber-espionage groups operating out of Russia. [...]
https://www.bleepingcomputer.com/news/security/3-of-4-zero-days-microsoft-patched-yesterday-were-used-by-russian-cyberspies/
Microsoft's May 2017 Patch Tuesday, released yesterday, included fixes for three zero-days, which according to ESET and FireEye, were used by cyber-espionage groups operating out of Russia. [...]
https://www.bleepingcomputer.com/news/security/3-of-4-zero-days-microsoft-patched-yesterday-were-used-by-russian-cyberspies/
BleepingComputer
3 of 4 Zero-Days Microsoft Patched Yesterday Were Used by Russian Cyberspies
Microsoft's May 2017 Patch Tuesday, released yesterday, included fixes for three zero-days, which according to ESET and FireEye, were used by cyber-espionage groups operating out of Russia.
Kaspersky Denies Report It Might Help Russian Government Spy on US Citizens
In an article published yesterday, ABC News cited congressional sources who claimed the Senate Intelligence Committee had started an investigation into Kaspersky Lab's relationship with the Russian government. [...]
https://www.bleepingcomputer.com/news/security/kaspersky-denies-report-it-might-help-russian-government-spy-on-us-citizens/
In an article published yesterday, ABC News cited congressional sources who claimed the Senate Intelligence Committee had started an investigation into Kaspersky Lab's relationship with the Russian government. [...]
https://www.bleepingcomputer.com/news/security/kaspersky-denies-report-it-might-help-russian-government-spy-on-us-citizens/
BleepingComputer
Kaspersky Denies Report It Might Help Russian Government Spy on US Citizens
In an article published yesterday, ABC News cited congressional sources who claimed the Senate Intelligence Committee had started an investigation into Kaspersky Lab's relationship with the Russian government.
Upcoming NIST Guideline Advocates Simpler Rules for Online Passwords
The US National Institute of Standards and Technology (NIST) is preparing to issue a new Digital Identity Guideline, which unlike its previous editions, will take a softer stance on the complexity of online passwords. [...]
https://www.bleepingcomputer.com/news/security/upcoming-nist-guideline-advocates-simpler-rules-for-online-passwords/
The US National Institute of Standards and Technology (NIST) is preparing to issue a new Digital Identity Guideline, which unlike its previous editions, will take a softer stance on the complexity of online passwords. [...]
https://www.bleepingcomputer.com/news/security/upcoming-nist-guideline-advocates-simpler-rules-for-online-passwords/
BleepingComputer
Upcoming NIST Guideline Advocates Simpler Rules for Online Passwords
The US National Institute of Standards and Technology (NIST) is preparing to issue a new Digital Identity Guideline, which unlike its previous editions, will take a softer stance on the complexity of online passwords.