Some Motherboards Plagued by BIOS Firmware Implementation Flaws
Alex Matrosov, a security researcher for Cylance, has discovered several flaws in how some motherboard vendors implemented Intel's UEFI BIOS firmware into their products. [...]
https://www.bleepingcomputer.com/news/security/some-motherboards-plagued-by-bios-firmware-implementation-flaws/
Alex Matrosov, a security researcher for Cylance, has discovered several flaws in how some motherboard vendors implemented Intel's UEFI BIOS firmware into their products. [...]
https://www.bleepingcomputer.com/news/security/some-motherboards-plagued-by-bios-firmware-implementation-flaws/
BleepingComputer
Some Motherboards Plagued by BIOS Firmware Implementation Flaws
Alex Matrosov, a security researcher for Cylance, has discovered several flaws in how some motherboard vendors implemented Intel's UEFI BIOS firmware into their products.
Cyberstalking Suspect Arrested After VPN Providers Shared Logs With the FBI
VPN providers often advertise their products as a method of surfing the web anonymously, claiming they never store logs of user activity, but a recent criminal case shows that at least some, do store user activity logs. [...]
https://www.bleepingcomputer.com/news/security/cyberstalking-suspect-arrested-after-vpn-providers-shared-logs-with-the-fbi/
VPN providers often advertise their products as a method of surfing the web anonymously, claiming they never store logs of user activity, but a recent criminal case shows that at least some, do store user activity logs. [...]
https://www.bleepingcomputer.com/news/security/cyberstalking-suspect-arrested-after-vpn-providers-shared-logs-with-the-fbi/
BleepingComputer
Cyberstalking Suspect Arrested After VPN Providers Shared Logs With the FBI
VPN providers often advertise their products as a method of surfing the web anonymously, claiming they never store logs of user activity, but a recent criminal case shows that at least some, do store user activity logs.
Market Research Firm Forrester Says Hackers Stole Sensitive Reports
Forrester, one of the world's leading market research and investment advisory firms, admitted late Friday afternoon to a security breach that took place during the past week. [...]
https://www.bleepingcomputer.com/news/security/market-research-firm-forrester-says-hackers-stole-sensitive-reports/
Forrester, one of the world's leading market research and investment advisory firms, admitted late Friday afternoon to a security breach that took place during the past week. [...]
https://www.bleepingcomputer.com/news/security/market-research-firm-forrester-says-hackers-stole-sensitive-reports/
BleepingComputer
Market Research Firm Forrester Says Hackers Stole Sensitive Reports
Forrester, one of the world's leading market research and investment advisory firms, admitted late Friday afternoon to a security breach that took place during the past week.
Malvertising Group Spreading Kovter Malware via Fake Browser Updates
A malvertising group nicknamed KovCoreG by security researchers has been using fake browser and Flash updates to trick users into installing the Kovter malware. [...]
https://www.bleepingcomputer.com/news/security/malvertising-group-spreading-kovter-malware-via-fake-browser-updates/
A malvertising group nicknamed KovCoreG by security researchers has been using fake browser and Flash updates to trick users into installing the Kovter malware. [...]
https://www.bleepingcomputer.com/news/security/malvertising-group-spreading-kovter-malware-via-fake-browser-updates/
Office Depot, Best Buy Pull Kaspersky Products From Shelves
Both Office Depot and Best Buy have removed Kaspersky Lab products from shelves. The ban has been in effect since mid-September, and the two chains are offering existing Kaspersky customers replacement security software. [...]
https://www.bleepingcomputer.com/news/software/office-depot-best-buy-pull-kaspersky-products-from-shelves/
Both Office Depot and Best Buy have removed Kaspersky Lab products from shelves. The ban has been in effect since mid-September, and the two chains are offering existing Kaspersky customers replacement security software. [...]
https://www.bleepingcomputer.com/news/software/office-depot-best-buy-pull-kaspersky-products-from-shelves/
BleepingComputer
Office Depot, Best Buy Pull Kaspersky Products From Shelves
Both Office Depot and Best Buy have removed Kaspersky Lab products from shelves. The ban has been in effect since mid-September, and the two chains are offering existing Kaspersky customers replacement security software.
Devilishly Clever KnockKnock Attack Tries to Break Into System Email Accounts
Security researchers have spotted a new type of low-and-slow brute-force attack β which they nicknamed KnockKnock β aimed at companies with Office 365 accounts. [...]
https://www.bleepingcomputer.com/news/security/devilishly-clever-knockknock-attack-tries-to-break-into-system-email-accounts/
Security researchers have spotted a new type of low-and-slow brute-force attack β which they nicknamed KnockKnock β aimed at companies with Office 365 accounts. [...]
https://www.bleepingcomputer.com/news/security/devilishly-clever-knockknock-attack-tries-to-break-into-system-email-accounts/
BleepingComputer
Devilishly Clever KnockKnock Attack Tries to Break Into System Email Accounts
Security researchers have spotted a new type of low-and-slow brute-force attack β which they nicknamed KnockKnock β aimed at companies with Office 365 accounts.
Android App Lets Users Detect Credit Card Skimmers at Gas Pumps
There is now an Android app that can search and detect gas pump skimmers based on their Bluetooth fingerprint. [...]
https://www.bleepingcomputer.com/news/security/android-app-lets-users-detect-credit-card-skimmers-at-gas-pumps/
There is now an Android app that can search and detect gas pump skimmers based on their Bluetooth fingerprint. [...]
https://www.bleepingcomputer.com/news/security/android-app-lets-users-detect-credit-card-skimmers-at-gas-pumps/
BleepingComputer
Android App Lets Users Detect Credit Card Skimmers at Gas Pumps
There is now an Android app that can search and detect gas pump skimmers based on their Bluetooth fingerprint.
New NIST and DHS Standards Get Ready to Tackle BGP Hijacks
Two US government agencies have united forces to coordinate the creation of a new set of standards aimed at securing the process of routing of information between major Internet entities, such as Internet Service Providers, hosting providers, cloud providers, educational, research, and national networks. [...]
https://www.bleepingcomputer.com/news/technology/new-nist-and-dhs-standards-get-ready-to-tackle-bgp-hijacks/
Two US government agencies have united forces to coordinate the creation of a new set of standards aimed at securing the process of routing of information between major Internet entities, such as Internet Service Providers, hosting providers, cloud providers, educational, research, and national networks. [...]
https://www.bleepingcomputer.com/news/technology/new-nist-and-dhs-standards-get-ready-to-tackle-bgp-hijacks/
BleepingComputer
New NIST and DHS Standards Get Ready to Tackle BGP Hijacks
Two US government agencies have united forces to coordinate the creation of a new set of standards aimed at securing the process of routing of information between major Internet entities, such as Internet Service Providers, hosting providers, cloud providersβ¦
A New Player Joins Coinhive on the Browser Cryptojacking Scene
The browser cryptojacking scene has just expanded from one player to two with the recent launch of the Crypto-Loot service, a website that's eerily similar to the now notorious Coinhive in-browser miner. [...]
https://www.bleepingcomputer.com/news/security/a-new-player-joins-coinhive-on-the-browser-cryptojacking-scene/
The browser cryptojacking scene has just expanded from one player to two with the recent launch of the Crypto-Loot service, a website that's eerily similar to the now notorious Coinhive in-browser miner. [...]
https://www.bleepingcomputer.com/news/security/a-new-player-joins-coinhive-on-the-browser-cryptojacking-scene/
BleepingComputer
A New Player Joins Coinhive on the Browser Cryptojacking Scene
The browser cryptojacking scene has just expanded from one player to two with the recent launch of the Crypto-Loot service, a website that's eerily similar to the now notorious Coinhive in-browser miner.
Over 37,000 Chrome Users Installed a Fake AdBlock Plus Extensions
Google has removed a malicious extension from its Chrome Web Store that posed as the popular AdBlock Plus ad blocker but forcibly opened new tabs to show ads to users. [...]
https://www.bleepingcomputer.com/news/security/over-37-000-chrome-users-installed-a-fake-adblock-plus-extensions/
Google has removed a malicious extension from its Chrome Web Store that posed as the popular AdBlock Plus ad blocker but forcibly opened new tabs to show ads to users. [...]
https://www.bleepingcomputer.com/news/security/over-37-000-chrome-users-installed-a-fake-adblock-plus-extensions/
BleepingComputer
Over 37,000 Chrome Users Installed a Fake AdBlock Plus Extensions
Google has removed a malicious extension from its Chrome Web Store that posed as the popular AdBlock Plus ad blocker but forcibly opened new tabs to show ads to users.
ATMii Malware Makes Windows 7 and Windows Vista ATMs Spit Out Cash
Security researchers have discovered a new ATM malware strain named ATMii that targets only ATMs running on Windows 7 and Windows Vista. [...]
https://www.bleepingcomputer.com/news/security/atmii-malware-makes-windows-7-and-windows-vista-atms-spit-out-cash/
Security researchers have discovered a new ATM malware strain named ATMii that targets only ATMs running on Windows 7 and Windows Vista. [...]
https://www.bleepingcomputer.com/news/security/atmii-malware-makes-windows-7-and-windows-vista-atms-spit-out-cash/
BleepingComputer
ATMii Malware Makes Windows 7 and Windows Vista ATMs Spit Out Cash
Security researchers have discovered a new ATM malware strain named ATMii that targets only ATMs running on Windows 7 and Windows Vista.
Russia Says It Will Ban Cryptocurrency Exchanges
Sergei Shvetsov, First Deputy Chairman of the Central Bank of Russia, said he plans to ban websites that offer cryptocurrencies inside the country. [...]
https://www.bleepingcomputer.com/news/government/russia-says-it-will-ban-cryptocurrency-exchanges/
Sergei Shvetsov, First Deputy Chairman of the Central Bank of Russia, said he plans to ban websites that offer cryptocurrencies inside the country. [...]
https://www.bleepingcomputer.com/news/government/russia-says-it-will-ban-cryptocurrency-exchanges/
BleepingComputer
Russia Says It Will Ban Cryptocurrency Exchanges
Sergei Shvetsov, First Deputy Chairman of the Central Bank of Russia, said he plans to ban websites that offer cryptocurrencies inside the country.
OxygenOS Telemetry Lets OS Maker Tie Phones to Individual Users
OxygenOS, a custom version of the Android operating system that comes installed on all OnePlus smartphones, is tracking users actions without anonymizing data, allowing OnePlus to connect each phone to its customer. [...]
https://www.bleepingcomputer.com/news/mobile/oxygenos-telemetry-lets-os-maker-tie-phones-to-individual-users/
OxygenOS, a custom version of the Android operating system that comes installed on all OnePlus smartphones, is tracking users actions without anonymizing data, allowing OnePlus to connect each phone to its customer. [...]
https://www.bleepingcomputer.com/news/mobile/oxygenos-telemetry-lets-os-maker-tie-phones-to-individual-users/
BleepingComputer
OxygenOS Telemetry Lets OS Maker Tie Phones to Individual Users
OxygenOS, a custom version of the Android operating system that comes installed on all OnePlus smartphones, is tracking users actions without anonymizing data, allowing OnePlus to connect each phone to its customer.
Microsoft October Patch Tuesday Fixes 62 Security Issues, Including a Zero-Day
Earlier today, Microsoft published the October 2017 Patch Tuesday, the company's monthly update train, addressing important security issues, but also some mundane bugfixes. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-october-patch-tuesday-fixes-62-security-issues-including-a-zero-day/
Earlier today, Microsoft published the October 2017 Patch Tuesday, the company's monthly update train, addressing important security issues, but also some mundane bugfixes. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-october-patch-tuesday-fixes-62-security-issues-including-a-zero-day/
BleepingComputer
Microsoft October Patch Tuesday Fixes 62 Security Issues, Including a Zero-Day
Earlier today, Microsoft published the October 2017 Patch Tuesday, the company's monthly update train, addressing important security issues, but also some mundane bugfixes.
Windows DNS Bug Lets Attackers Run Code on Your Computer
Microsoft has just fixed a nasty bug affecting the DNS client included with Windows 8, Windows 10, Windows Server 2012 and Windows Server 2016. [...]
https://www.bleepingcomputer.com/news/security/windows-dns-bug-lets-attackers-run-code-on-your-computer/
Microsoft has just fixed a nasty bug affecting the DNS client included with Windows 8, Windows 10, Windows Server 2012 and Windows Server 2016. [...]
https://www.bleepingcomputer.com/news/security/windows-dns-bug-lets-attackers-run-code-on-your-computer/
BleepingComputer
Windows DNS Bug Lets Attackers Run Code on Your Computer
Microsoft has just fixed a nasty bug affecting the DNS client included with Windows 8, Windows 10, Windows Server 2012 and Windows Server 2016.
Equifax Issues Second Breach Estimate Correction, Says 15.2M British Affected
For the second time since it fessed up to suffering a data breach last month, Equifax has issued a correction, acknowledging today in a press release that hackers stole details on over 15.2 million UK citizens. [...]
https://www.bleepingcomputer.com/news/security/equifax-issues-second-breach-estimate-correction-says-15-2m-british-affected/
For the second time since it fessed up to suffering a data breach last month, Equifax has issued a correction, acknowledging today in a press release that hackers stole details on over 15.2 million UK citizens. [...]
https://www.bleepingcomputer.com/news/security/equifax-issues-second-breach-estimate-correction-says-15-2m-british-affected/
BleepingComputer
Equifax Issues Second Breach Estimate Correction, Says 15.2M British Affected
For the second time since it fessed up to suffering a data breach last month, Equifax has issued a correction, acknowledging today in a press release that hackers stole details on over 15.2 million UK citizens.
Locky Ransomware Switches to the Asasin Extension via Broken Spam Campaigns
Today a new Locky Ransomware variant was released that now uses the .asasin extension for encrypted files. Personally, I thought the previous extension, ykcol, was more clever, while this one seriously needs a spell checker. Thankfully, the current distribution for this variant is broken due to malformed spam campaign. [...]
https://www.bleepingcomputer.com/news/security/locky-ransomware-switches-to-the-asasin-extension-via-broken-spam-campaigns/
Today a new Locky Ransomware variant was released that now uses the .asasin extension for encrypted files. Personally, I thought the previous extension, ykcol, was more clever, while this one seriously needs a spell checker. Thankfully, the current distribution for this variant is broken due to malformed spam campaign. [...]
https://www.bleepingcomputer.com/news/security/locky-ransomware-switches-to-the-asasin-extension-via-broken-spam-campaigns/
BleepingComputer
Locky Ransomware Switches to the Asasin Extension via Broken Spam Campaigns
Today a new Locky Ransomware variant was released that now uses the .asasin extension for encrypted files. Personally, I thought the previous extension, ykcol, was more clever, while this one seriously needs a spell checker. Thankfully, the current distributionβ¦
Insider Preview Update KB4046355 Silently Uninstalls Windows Media Player
After Windows Insiders installed update KB4046355 for the Insider Build 16299.15, they discovered that Windows Media Player had been removed from the computer. As Build 16299 is the Fall Creators Update that is scheduled to come out this month, it is unknown whether the removal of Windows Media Player is intentional or a bug. [...]
https://www.bleepingcomputer.com/news/security/insider-preview-update-kb4046355-silently-uninstalls-windows-media-player/
After Windows Insiders installed update KB4046355 for the Insider Build 16299.15, they discovered that Windows Media Player had been removed from the computer. As Build 16299 is the Fall Creators Update that is scheduled to come out this month, it is unknown whether the removal of Windows Media Player is intentional or a bug. [...]
https://www.bleepingcomputer.com/news/security/insider-preview-update-kb4046355-silently-uninstalls-windows-media-player/
BleepingComputer
Insider Preview Update KB4046355 Silently Uninstalls Windows Media Player
After Windows Insiders installed update KB4046355 for the Insider Build 16299.15, they discovered that Windows Media Player had been removed from the computer. As Build 16299 is the Fall Creators Update that is scheduled to come out this month, it is unknownβ¦
Because Everybody Loves Cortana on Windows, Microsoft Is Adding It to Skype
Microsoft announced on Monday that it started rolling out Cortana integration in Skype, bringing its smart AI-based virtual assistant to the company's instant messaging client. [...]
https://www.bleepingcomputer.com/news/microsoft/because-everybody-loves-cortana-on-windows-microsoft-is-adding-it-to-skype/
Microsoft announced on Monday that it started rolling out Cortana integration in Skype, bringing its smart AI-based virtual assistant to the company's instant messaging client. [...]
https://www.bleepingcomputer.com/news/microsoft/because-everybody-loves-cortana-on-windows-microsoft-is-adding-it-to-skype/
BleepingComputer
Because Everybody Loves Cortana on Windows, Microsoft Is Adding It to Skype
Microsoft announced on Monday that it started rolling out Cortana integration in Skype, bringing its smart AI-based virtual assistant to the company's instant messaging client.
Outlook Might Not Have Encrypted Your Emails If You Used S/MIME Encryption
Users who utilized Microsoft Outlook to send out secure emails encrypted via the S/MIME standard might have had the content of those emails leaked by an Outlook bug. [...]
https://www.bleepingcomputer.com/news/security/outlook-might-not-have-encrypted-your-emails-if-you-used-s-mime-encryption/
Users who utilized Microsoft Outlook to send out secure emails encrypted via the S/MIME standard might have had the content of those emails leaked by an Outlook bug. [...]
https://www.bleepingcomputer.com/news/security/outlook-might-not-have-encrypted-your-emails-if-you-used-s-mime-encryption/
BleepingComputer
Outlook Might Not Have Encrypted Your Emails If You Used S/MIME Encryption
Users who utilized Microsoft Outlook to send out secure emails encrypted via the S/MIME standard might have had the content of those emails leaked by an Outlook bug.
Bank Cyber-Thieves Get Clever With New Overdraft Technique
A cyber-criminal gang has stolen over $40 million from Eastern European banks using a clever new technique that combines hacking the bank's network, the manipulation of overdraft limits, disabling fraud alerts, and mass ATM withdrawals. [...]
https://www.bleepingcomputer.com/news/security/bank-cyber-thieves-get-clever-with-new-overdraft-technique/
A cyber-criminal gang has stolen over $40 million from Eastern European banks using a clever new technique that combines hacking the bank's network, the manipulation of overdraft limits, disabling fraud alerts, and mass ATM withdrawals. [...]
https://www.bleepingcomputer.com/news/security/bank-cyber-thieves-get-clever-with-new-overdraft-technique/
BleepingComputer
Bank Cyber-Thieves Get Clever With New Overdraft Technique
A cyber-criminal gang has stolen over $40 million from Eastern European banks using a clever new technique that combines hacking the bank's network, the manipulation of overdraft limits, disabling fraud alerts, and mass ATM withdrawals.