Hackers Leak Data From Mandiant Security Researcher in Operation #LeakTheAnalyst

Earlier today, a hacker group named 31337 Hackers has leaked personal details and files belonging to a security researcher working for Mandiant, FireEye's breach investigation unit. [...]

https://www.bleepingcomputer.com/news/security/hackers-leak-data-from-mandiant-security-researcher-in-operation-leaktheanalyst/

Crypt GlobeImposter Ransomware Distributed via Blank Slate Malspam

The "Blank Slate" malspam campaign has switched to distributing a GlobeImposter variant that appends the .crypt extension to encrypted files. This downloaded executable is also code signed to make it appear more legitimate. [...]

https://www.bleepingcomputer.com/news/security/crypt-globeimposter-ransomware-distributed-via-blank-slate-malspam/

Copyfish Chrome Extension Hijacked to Show Adware

On Friday, an unknown hacker hijacked the Copyfish Chrome extension from its original authors and pushed an update that inserted ads in people's web pages. [...]

https://www.bleepingcomputer.com/news/security/copyfish-chrome-extension-hijacked-to-show-adware/

Hackers Breach HBO and Leak Game of Thrones Script

A hacker or group of hackers has breached the servers of HBO and have stolen over 1.5TB of information, some of which they leaked online over the weekend. [...]

https://www.bleepingcomputer.com/news/security/hackers-breach-hbo-and-leak-game-of-thrones-script/

Smart Pistol Locking System Foiled by $15 Magnets

A security researcher who goes by the nickname of Plore has bypassed the security locks of the Armatix IP1 smart gun by using only three magnets worth $15. [...]

https://www.bleepingcomputer.com/news/technology/smart-pistol-locking-system-foiled-by-15-magnets/

Security Flaws Found in 2G Modems Used by BMW, Ford, Infiniti, and Nissan Cars

A team of three security researchers has found and disclosed two security flaws in the TCU (telematics control unit) components that ship with various luxury car models. [...]

https://www.bleepingcomputer.com/news/security/security-flaws-found-in-2g-modems-used-by-bmw-ford-infiniti-and-nissan-cars/

US Pharma Giant "Not yet Producing Bulk Product" Because of NotPetya Outbreak

US pharmaceutics giant Merck was severely affected by the NotPetya ransomware outbreak that took place at the end of June, and the company is still struggling to restore all systems and resume normal operations, according to an 8-K report filed with the US Securities and Exchange Commission (SEC). [...]

https://www.bleepingcomputer.com/news/security/us-pharma-giant-not-yet-producing-bulk-product-because-of-notpetya-outbreak/

Mozilla Testing File Sharing, Voice Search, and Notes Experimental Features

Mozilla engineers have launched three experimental features today named Send, Voice Fill, and Notes. [...]

https://www.bleepingcomputer.com/news/software/mozilla-testing-file-sharing-voice-search-and-notes-experimental-features/

Ukrainian Firm Facing Legal Action for Damages Caused by NotPetya Ransomware

The Juscutum Attorneys Association, a Ukrainian law firm, is rallying NotPetya victims to join a collective lawsuit against Intellect-Service LLC, the company behind the M.E.Doc accounting software, the point of origin of the NotPetya ransomware outbreak. [...]

https://www.bleepingcomputer.com/news/security/ukrainian-firm-facing-legal-action-for-damages-caused-by-notpetya-ransomware/

Symantec Sells SSL Business to DigiCert for $950M in Cash and 30% Shares

In the face of devastating penalties prepared by Google, Symantec announced plans to sell its SSL issuance certificate business to rival company DigiCert. [...]

https://www.bleepingcomputer.com/news/business/symantec-sells-ssl-business-to-digicert-for-950m-in-cash-and-30-percent-shares/

Chrome Extension With Over One Million Users Hijacked to Serve Adware

The developer of a very popular Google Chrome extension has regained access over his tool after an unknown hacker had managed to hijack his developer account and push a malicious version that contained adware. [...]

https://www.bleepingcomputer.com/news/security/chrome-extension-with-over-one-million-users-hijacked-to-serve-adware/

Vault 7: CIA Tool Can Shut Down Webcams and Corrupt Video Recordings

WikiLeaks has released today eight manuals from the CIA's Dumbo project, a tool that the Agency uses to disable webcams, microphones, and other surveillance software. [...]

https://www.bleepingcomputer.com/news/security/vault-7-cia-tool-can-shut-down-webcams-and-corrupt-video-recordings/

MalwareTech Arrested by the FBI on Charges of Creating Kronos Banking Trojan

MalwareTech — the security researcher who stopped the WannaCry ransomware outbreak — was arrested in Las Vegas on accusations of creating the Kronos banking trojan together with another person. [...]

https://www.bleepingcomputer.com/news/security/malwaretech-arrested-by-the-fbi-on-charges-of-creating-kronos-banking-trojan/

Interpol and Security Firm Dox Pro-ISIS Hacktivists

In cooperation with Interpol, Group-IB, a Moscow-based cyber-security firm, has tracked down and revealed the real-world identities of five members of the United Islamic Cyber Force (UICF). [...]

https://www.bleepingcomputer.com/news/security/interpol-and-security-firm-dox-pro-isis-hacktivists/

Cerber Ransomware Can Now Steal Browser Passwords, Bitcoin Wallet Data

The Cerber ransomware has received an update that allows it to collect and steal data from a victim's computer, similar to an infostealer. [...]

https://www.bleepingcomputer.com/news/security/cerber-ransomware-can-now-steal-browser-passwords-bitcoin-wallet-data/

New Google Algorithm Downranks Android Apps That Crash Your Phone

Google announced yesterday a new Play Store search and ranking algorithm that takes into account an Android application's performance metrics. [...]

https://www.bleepingcomputer.com/news/mobile/new-google-algorithm-downranks-android-apps-that-crash-your-phone/

JavaScript Packages Caught Stealing Environment Variables

On August 1, npm Inc. — the company that runs the biggest JavaScript package repository — removed 38 JavaScript npm packages that were caught stealing environment variables from infected projects. [...]

https://www.bleepingcomputer.com/news/security/javascript-packages-caught-stealing-environment-variables/

Microsoft Will Not Patch SMBLoris Vulnerability

Microsoft has declined to patch a vulnerability in the Server Message Block (SMB) file sharing protocol that affects all versions of the Windows operating system released in the past two decades, since Windows 2000. [...]

https://www.bleepingcomputer.com/news/security/microsoft-will-not-patch-smbloris-vulnerability/

Hackers Leak Game of Thrones Season 7 Episode 4 Online

Earlier today, the hackers who announced they breached HBO over the weekend leaked the fourth episode of Game of Thrones season 7 on platforms such as Vidme and Google Drive. [...]

https://www.bleepingcomputer.com/news/security/hackers-leak-game-of-thrones-season-7-episode-4-online/

The Week in Ransomware - August 4th 2017 - GlobeImposter, NotPetya, and More

It has been a week heavily dominated by GlobeImposter variants being released here and there and smaller ransomware variants with little or no distribution. We also saw news about companies still being affected by the NotPetya attack. [...]

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-august-4th-2017-globeimposter-notpetya-and-more/

MalwareTech Pleads Not Guilty to Creating Kronos Trojan, To Be Released on Bail

Marcus Hutchins, the security researcher known as MalwareTech, has pleaded not guilty to today in a Las Vegas court to charges of creating and updating the Kronos banking trojan, according to his lawyer Adrian Marie Lobo. [...]

https://www.bleepingcomputer.com/news/security/malwaretech-pleads-not-guilty-to-creating-kronos-trojan-to-be-released-on-bail/