Hackers Are Using Automated Scans to Target Unfinished WordPress Installs

Experts from security firm Wordfence say they have observed a new type of web attack that took aim at unfinished WordPress installations. [...]

https://www.bleepingcomputer.com/news/security/hackers-are-using-automated-scans-to-target-unfinished-wordpress-installs/

Vault 7: CIA Developed Android Malware That Works as an SMS Proxy

WikiLeaks published today the manual of another CIA hacking tool part of the Vault 7 leak series. This tool is referenced internally at the CIA under the name of HighRise and is an Android application for intercepting and redirecting SMS messages to a remote web server. [...]

https://www.bleepingcomputer.com/news/security/vault-7-cia-developed-android-malware-that-works-as-an-sms-proxy/

"Particle" Chrome Extension Sold to New Dev Who Immediately Turns It Into Adware

A company is going around buying abandoned Chrome extensions from their original developers and converting these add-ons into adware. [...]

https://www.bleepingcomputer.com/news/security/-particle-chrome-extension-sold-to-new-dev-who-immediately-turns-it-into-adware/

Microsoft Adds Protection Against Process Hollowing and Atom Bombing

Microsoft has worked on adding security protections against two forms of code injection techniques known as process hollowing and atom bombing. [...]

https://www.bleepingcomputer.com/news/security/microsoft-adds-protection-against-process-hollowing-and-atom-bombing/

App Finds More Than 50,000 Computers Vulnerable to ETERNALBLUE Exploit

The developer of a tool named Eternal Blues that scans for computers vulnerable to the NSA's ETERNALBLUE exploit has published statistics gathered from the app's usage. [...]

https://www.bleepingcomputer.com/news/security/app-finds-more-than-50-000-computers-vulnerable-to-eternalblue-exploit/

Microsoft Adds Password Recovery Option to Windows 10 Lockscreen

Microsoft added a password recovery option to the Windows 10 locksreen for users that use a Microsoft account to log into their computer. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-adds-password-recovery-option-to-windows-10-lockscreen/

AlphaBay Dark Web Market Taken Down After Law Enforcement Raids

AlphaBay, an online marketplace that sold illegal products on the Dark Web, has been taken offline following raids in three countries, according to several reports. [...]

https://www.bleepingcomputer.com/news/security/alphabay-dark-web-market-taken-down-after-law-enforcement-raids/

New Ovidiy Stealer Malware Sold on Russian Site

A Russia-speaking malware developer going by the name of "TheBottle" has started selling a new infostealer with the name of Ovidiy Stealer. [...]

https://www.bleepingcomputer.com/news/security/new-ovidiy-stealer-malware-sold-on-russian-site/

21-Year-Old Bug in Kerberos Protocol Gets Patch in Windows, Linux

Two implementations of the Kerberos authentication protocol received patches this week against a vulnerability that allowed a threat actor to bypass authentication procedures. [...]

https://www.bleepingcomputer.com/news/security/21-year-old-bug-in-kerberos-protocol-gets-patch-in-windows-linux/

Google to Replace SMS Codes With Mobile Prompts in 2-Step-Verification Procedure

Starting next week Google will overhaul its two-step verification (2SV) procedure and replace one-time codes sent via SMS with prompts shown on the user's smartphone. [...]

https://www.bleepingcomputer.com/news/google/google-to-replace-sms-codes-with-mobile-prompts-in-2-step-verification-procedure/

New Exte CryptoMix Ransomware Variant Released

A new variant of the CryptoMix Ransomware was discovered that appends the .EXTE extension to encrypted files. This articles provides a brief overview of what has changed in this new version. [...]

https://www.bleepingcomputer.com/news/security/new-exte-cryptomix-ransomware-variant-released/

The Week in Ransomware - July 14th 2017 - NemucodAES, LeakerLocker, and More

It has been a slow week in terms of new releases, which is always a good thing. Still lots of small crapware being released that will never have much wide distribution. We also have some good news, which is the release of a NemucodAES decryptor by Emsisoft. This allows victims of this ransomware to get their files back for free. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-july-14th-2017-nemucodaes-leakerlocker-and-more/

DHS Ramps up Program to Scan People's Faces When They Leave the US

Air travelers taking international flights from US airports will soon have to submit to a face scan before boarding their plane. [...]

https://www.bleepingcomputer.com/news/government/dhs-ramps-up-program-to-scan-peoples-faces-when-they-leave-the-us/

Experts Recover AES256 Encryption Key From a PC's Electromagnetic Emissions

A team of researchers from Fox-IT and Riscure has put together a device using off-the-shelve electronic parts that deduces encryption keys using only electromagnetic emissions coming from a nearby computer. [...]

https://www.bleepingcomputer.com/news/security/experts-recover-aes256-encryption-key-from-a-pcs-electromagnetic-emissions/

Damages From a Well Executed Cyber Attack Could Reach $121.4 Billion

Lloyd's of London, one of the world's largest insurers, warns that a well executed cyber attack could cause damages around to world ranging from $53.1 billion to $121.4 billion, according to a report the company released today. [...]

https://www.bleepingcomputer.com/news/business/damages-from-a-well-executed-cyber-attack-could-reach-121-4-billion/

GhostCtrl Is an Android RAT That Also Doubles as Ransomware

A new Android RAT (Remote Access Trojan) detected under the name of GhostCtrl can lock mobile device by resetting their PIN and display a ransom note to infected victims. [...]

https://www.bleepingcomputer.com/news/security/ghostctrl-is-an-android-rat-that-also-doubles-as-ransomware/

751 Domains Hijacked to Redirect Traffic to Exploit Kits

On July 7, French domain registrar Gandi lost control over 751 customer domains, which had their DNS records altered to point incoming traffic to websites hosting exploits kits. [...]

https://www.bleepingcomputer.com/news/security/751-domains-hijacked-to-redirect-traffic-to-exploit-kits/

Exploit Derived From ETERNALSYNERGY Upgraded to Target Newer Windows Versions

Thai security researcher Worawit Wang has put together an exploit based on ETERNALENERGY that can also target newer versions of the Windows operating system. [...]

https://www.bleepingcomputer.com/news/security/exploit-derived-from-eternalsynergy-upgraded-to-target-newer-windows-versions/

22,000 People Agree to Clean Toilets Because Nobody Reads Terms & Conditions

Over 22,000 users unwittingly agreed to clean public toilets when they connected to free WiFi hotspots at various UK establishments. [...]

https://www.bleepingcomputer.com/news/technology/22-000-people-agree-to-clean-toilets-because-nobody-reads-terms-and-conditions/

Reyptson Ransomware Spams Your Friends by Stealing Thunderbird Contacts

The Reyptson Ransomware contains the unique ability to distribute itself by trying to conduct a fake invoice spam campaign directly from the victim's computer. [...]

https://www.bleepingcomputer.com/news/security/reyptson-ransomware-spams-your-friends-by-stealing-thunderbird-contacts/

Hacker Steals $7 Million Worth of Ethereum From CoinDash Platform

An unknown hacker has taken over the official website of the CoinDash platform and modified an Ethereum wallet address during the company's ICO (Initial Coin Offering). [...]

https://www.bleepingcomputer.com/news/security/hacker-steals-7-million-worth-of-ethereum-from-coindash-platform/