Latest news and stories from BleepingComputer.com
Android Banking Trojans Based on GM Bot Infected Over 200,000 Users in the Past 3 Months
Over the course of three months, more than 200,000 users have downloaded apps infected with an Android malware derived from the source code of the GM Bot, Czech security firm Avast reports. [...]

Latest news and stories from BleepingComputer.com
Security Firm Shows How to Hack a US Voting Machine
Three days before the US Presidential Election takes place, California-based security firm Cylance showed the world how easy is to hack one of the many voting machine models that will be deployed at voting stations across the US on Election Day. [...]

Latest news and stories from BleepingComputer.com
Hacked User Develops FileZilla Version That Encrypts FTP Passwords
A developer that had his sites hacked because the FileZilla FTP client stores passwords on disk in cleartext has taken things into his own hands and has put together FileZilla Secure, a FileZilla version that encrypts all the user's credentials with a master password. [...]

Latest news and stories from BleepingComputer.com
Google Updates Search Engine Rules, Will Rank Sites Based on Their Mobile Versions First
Google announced on late Friday afternoon plans to use a website's mobile version as the primary content source for ranking sites for its search engine's results, in a move that its engineers have hinted at for the past year at several SEO conferences. [...]

Latest news and stories from BleepingComputer.com
Over One Billion Android Users Susceptible to App Hijacking via OAuth 2.0 Attack
Three researchers from the Chinese University of Hong Kong discovered a flaw in how app developers and identity providers support Single-Sign-On (SSO) via the OAuth 2.0 protocol, a flaw that allows an attacker to assume the identity of another person. [...]

Latest news and stories from BleepingComputer.com
Zcash Promises the Anonymous Transactions Bitcoin Can't Deliver
A team of internationally-recognized cryptography experts has helped launch a new cryptocurrency called Zcash, which promises the anonymity Bitcoin couldn't deliver. [...]

Latest news and stories from BleepingComputer.com
Cerber 4.1.4 being Distributed. Uses 3 IP ranges for UDP Stats
Cerber 4.1.4 is currently being distributed using Word documents with malicious macros that download and install the ransomware. Another interesting feature that I have not seen in previous variants, is the use of multiple IP ranges that Cerber will use to send statistics and information about infected victims to C2 servers. [...]

Latest news and stories from BleepingComputer.com
MySQL Databases Need Urgent Updates to Address Three Critical Security Bugs
System administrators should be patching their MySQL installations if they haven't in the last three weeks, to safeguard their database servers against three critical security flaws discovered by Polish security researcher Dawid Golunski. [...]

Latest news and stories from BleepingComputer.com
Google and Mozilla Remove Extension That Was Caught Selling User Data
An investigation by German public broadcaster NDR revealed that MyWOT (WOT, or Web Of Trust) has been selling user data to third-parties without properly anonymizing user information, which in some cases exposed the user's real identity and details about his browsing habits. [...]

Latest news and stories from BleepingComputer.com
Dridex and Dyre Malware Gang Members Arrested in the UK
British authorities have arrested fourteen people across the country on suspicion of helping the cybercriminals behind the Dridex and Dyre malware launder ill-gotten funds. [...]

Latest news and stories from BleepingComputer.com
Over 318,000 Android Users Affected by Auto-Downloading Malvertising Attack
Crooks distributing the Svpeng Android banking trojan have discovered a flaw in how Google Chrome for Android handles file downloads and have used it to forcibly and secretly download their malicious payload on the devices of over 318,000 users in the span of three months, starting with July 2016. [...]

Latest news and stories from BleepingComputer.com
China Passes New Cybersecurity Law That Grants Government the Power to Shut Down the Internet at Will
On Monday, November 7, 2016, the Chinese government passed a new cybersecurity law that heavily restricts Internet freedom for the country's citizens and gives the government the power to shut down Internet access at will, in the name of "national security." [...]

Latest news and stories from BleepingComputer.com
IoT Worm Can Be Mounted on Cars, Drones to Take Over Entire Smart Cities
Security researchers have created an experimental IoT worm that can spread on its own to nearby compatible smart devices, causing havoc inside a modern smart city by allowing an attacker to jam WiFi connections, disturb the electric grid, or brick devices making entire critical systems inoperable. [...]

Latest news and stories from BleepingComputer.com
Dutch Police Posts Grim Warning on Seized Dark Web Marketplace
Police in the Netherlands have taken over a Dark Web marketplace used for selling illegal products and posted a grim warning addressed to former users and potential shoppers searching for illegal products. [...]

Latest news and stories from BleepingComputer.com
DDoS Attacks Bring Down Heating System for Two Buildings in Small Finnish Town
Residents of two building in Lappeenranta, Finland spent a few days in the cold over the past few days as DDoS attacks aimed at a service provider indirectly affected the smart building heating system installed at their residential complex. [...]

Latest news and stories from BleepingComputer.com
Adobe updates Flash Player and Connect to fix 10 Vulnerabilities
Today, Adobe released security updates for Adobe Flash Player and Adobe Connect that fix a total of ten vulnerabilities. The Adobe Connect update resolves a cross-site scripting (XSS) vulnerability, while the Flash Player updates resolves 9 critical vulnerabilities that could lead to remote code execution. [...]

Latest news and stories from BleepingComputer.com
November's Android Security Bulletin Patches Drammer and Dirty COW Exploits
Google released today Android's Security Bulletin for the month of November, which among a total of 83 security vulnerabilities has also patched two high profile bugs identified as Drammer and Dirty COW. [...]

Latest news and stories from BleepingComputer.com
Microsoft's November 2016 Patch Tuesday fixes Zero Day disclosed by Google
Today is the November 2016 Patch Tuesday and we have 14 security updates being released by Microsoft. Of these 14 updates, 6 of them are rated as Critical as they allow remote code execution on the affected computer. Of particular note is the MS16-135 update, which fixes the zero-day Windows vulnerability reported by Google last week [...]

Latest news and stories from BleepingComputer.com
Canada Immigration Website Crashes as Trump Prepares to Become US President
[...]

Latest news and stories from BleepingComputer.com
Microsoft to Retire Security Bulletins in January 2017 in Favor of Searchable Security Updates Database
Microsoft announced yesterday plans to retire the Security Bulletins system after January 2017, and replace it with a portal that provides a searchable database of all the company's security updates. [...]

Latest news and stories from BleepingComputer.com
Heimdall Open-Source PHP Ransomware Targets Web Servers
A Brazilian developer named Lenon Leite has released proof-of-concept code for a ransomware family coded in PHP that will allow an attacker to encrypt the contents of web servers. [...]