A Botnet of Rogue Chrome Extensions Assaulted Wix in April 2016

Website-building service Wix.com was the subject of a massive cyber-attack in April 2016 when a botnet of rogue Chrome extensions was creating Wix websites to spread itself to new users. [...]

https://www.bleepingcomputer.com/news/security/a-botnet-of-rogue-chrome-extensions-assaulted-wix-in-april-2016/

DDoS Extortionist Who Posed as Anonymous Hacker Arrested in the US

On Friday, US authorities arrested a man on charges of launching DDoS attacks and making death and bomb threats against several targets including Leagle.com, the Sydney Morning Herald, the Canadian Broadcasting Corporation (CBC), Metro News Canada, the official website of the Canadian government, and others. [...]

https://www.bleepingcomputer.com/news/security/ddos-extortionist-who-posed-as-anonymous-hacker-arrested-in-the-us/

BickerBot Dev Claims Cyber-Attack That Affected Over 60,000 Indian Modems

The author of the BrickerBot malware has claimed a cyber-attack that took place in various Indian states and has caused over 60,000 modems and routers to lose Internet connectivity. [...]

https://www.bleepingcomputer.com/news/security/bickerbot-dev-claims-cyber-attack-that-affected-over-60-000-indian-modems/

Hackers Leak Data From Mandiant Security Researcher in Operation #LeakTheAnalyst

Earlier today, a hacker group named 31337 Hackers has leaked personal details and files belonging to a security researcher working for Mandiant, FireEye's breach investigation unit. [...]

https://www.bleepingcomputer.com/news/security/hackers-leak-data-from-mandiant-security-researcher-in-operation-leaktheanalyst/

Crypt GlobeImposter Ransomware Distributed via Blank Slate Malspam

The "Blank Slate" malspam campaign has switched to distributing a GlobeImposter variant that appends the .crypt extension to encrypted files. This downloaded executable is also code signed to make it appear more legitimate. [...]

https://www.bleepingcomputer.com/news/security/crypt-globeimposter-ransomware-distributed-via-blank-slate-malspam/

Copyfish Chrome Extension Hijacked to Show Adware

On Friday, an unknown hacker hijacked the Copyfish Chrome extension from its original authors and pushed an update that inserted ads in people's web pages. [...]

https://www.bleepingcomputer.com/news/security/copyfish-chrome-extension-hijacked-to-show-adware/

Hackers Breach HBO and Leak Game of Thrones Script

A hacker or group of hackers has breached the servers of HBO and have stolen over 1.5TB of information, some of which they leaked online over the weekend. [...]

https://www.bleepingcomputer.com/news/security/hackers-breach-hbo-and-leak-game-of-thrones-script/

Smart Pistol Locking System Foiled by $15 Magnets

A security researcher who goes by the nickname of Plore has bypassed the security locks of the Armatix IP1 smart gun by using only three magnets worth $15. [...]

https://www.bleepingcomputer.com/news/technology/smart-pistol-locking-system-foiled-by-15-magnets/

Security Flaws Found in 2G Modems Used by BMW, Ford, Infiniti, and Nissan Cars

A team of three security researchers has found and disclosed two security flaws in the TCU (telematics control unit) components that ship with various luxury car models. [...]

https://www.bleepingcomputer.com/news/security/security-flaws-found-in-2g-modems-used-by-bmw-ford-infiniti-and-nissan-cars/

US Pharma Giant "Not yet Producing Bulk Product" Because of NotPetya Outbreak

US pharmaceutics giant Merck was severely affected by the NotPetya ransomware outbreak that took place at the end of June, and the company is still struggling to restore all systems and resume normal operations, according to an 8-K report filed with the US Securities and Exchange Commission (SEC). [...]

https://www.bleepingcomputer.com/news/security/us-pharma-giant-not-yet-producing-bulk-product-because-of-notpetya-outbreak/

Mozilla Testing File Sharing, Voice Search, and Notes Experimental Features

Mozilla engineers have launched three experimental features today named Send, Voice Fill, and Notes. [...]

https://www.bleepingcomputer.com/news/software/mozilla-testing-file-sharing-voice-search-and-notes-experimental-features/

Ukrainian Firm Facing Legal Action for Damages Caused by NotPetya Ransomware

The Juscutum Attorneys Association, a Ukrainian law firm, is rallying NotPetya victims to join a collective lawsuit against Intellect-Service LLC, the company behind the M.E.Doc accounting software, the point of origin of the NotPetya ransomware outbreak. [...]

https://www.bleepingcomputer.com/news/security/ukrainian-firm-facing-legal-action-for-damages-caused-by-notpetya-ransomware/

Symantec Sells SSL Business to DigiCert for $950M in Cash and 30% Shares

In the face of devastating penalties prepared by Google, Symantec announced plans to sell its SSL issuance certificate business to rival company DigiCert. [...]

https://www.bleepingcomputer.com/news/business/symantec-sells-ssl-business-to-digicert-for-950m-in-cash-and-30-percent-shares/

Chrome Extension With Over One Million Users Hijacked to Serve Adware

The developer of a very popular Google Chrome extension has regained access over his tool after an unknown hacker had managed to hijack his developer account and push a malicious version that contained adware. [...]

https://www.bleepingcomputer.com/news/security/chrome-extension-with-over-one-million-users-hijacked-to-serve-adware/

Vault 7: CIA Tool Can Shut Down Webcams and Corrupt Video Recordings

WikiLeaks has released today eight manuals from the CIA's Dumbo project, a tool that the Agency uses to disable webcams, microphones, and other surveillance software. [...]

https://www.bleepingcomputer.com/news/security/vault-7-cia-tool-can-shut-down-webcams-and-corrupt-video-recordings/

MalwareTech Arrested by the FBI on Charges of Creating Kronos Banking Trojan

MalwareTech — the security researcher who stopped the WannaCry ransomware outbreak — was arrested in Las Vegas on accusations of creating the Kronos banking trojan together with another person. [...]

https://www.bleepingcomputer.com/news/security/malwaretech-arrested-by-the-fbi-on-charges-of-creating-kronos-banking-trojan/

Interpol and Security Firm Dox Pro-ISIS Hacktivists

In cooperation with Interpol, Group-IB, a Moscow-based cyber-security firm, has tracked down and revealed the real-world identities of five members of the United Islamic Cyber Force (UICF). [...]

https://www.bleepingcomputer.com/news/security/interpol-and-security-firm-dox-pro-isis-hacktivists/

Cerber Ransomware Can Now Steal Browser Passwords, Bitcoin Wallet Data

The Cerber ransomware has received an update that allows it to collect and steal data from a victim's computer, similar to an infostealer. [...]

https://www.bleepingcomputer.com/news/security/cerber-ransomware-can-now-steal-browser-passwords-bitcoin-wallet-data/

New Google Algorithm Downranks Android Apps That Crash Your Phone

Google announced yesterday a new Play Store search and ranking algorithm that takes into account an Android application's performance metrics. [...]

https://www.bleepingcomputer.com/news/mobile/new-google-algorithm-downranks-android-apps-that-crash-your-phone/

JavaScript Packages Caught Stealing Environment Variables

On August 1, npm Inc. — the company that runs the biggest JavaScript package repository — removed 38 JavaScript npm packages that were caught stealing environment variables from infected projects. [...]

https://www.bleepingcomputer.com/news/security/javascript-packages-caught-stealing-environment-variables/

Microsoft Will Not Patch SMBLoris Vulnerability

Microsoft has declined to patch a vulnerability in the Server Message Block (SMB) file sharing protocol that affects all versions of the Windows operating system released in the past two decades, since Windows 2000. [...]

https://www.bleepingcomputer.com/news/security/microsoft-will-not-patch-smbloris-vulnerability/