India Tells Troops to Delete Chinese Apps From Phones Amidst Tracking Fears

The Indian Defence Ministry has advised troops stationed on the Chinese border to uninstall Chinese-made apps from their smartphones. [...]

https://www.bleepingcomputer.com/news/government/india-tells-troops-to-delete-chinese-apps-from-phones-amidst-tracking-fears/

Phishing Attacks on Bitcoin Wallets Intensify as Price Goes Higher and Higher

It was only natural that the Internet's cyber-criminal element would turn its gaze towards the Bitcoin ecosystem after the cryptocurrency's price has surged from $11,000 on Monday to almost $17,500 earlier today. [...]

https://www.bleepingcomputer.com/news/security/phishing-attacks-on-bitcoin-wallets-intensify-as-price-goes-higher-and-higher/

Script Recovers Event Logs Doctored by NSA Hacking Tool

Security researchers have found a way to reverse the effects of an NSA hacking utility that deletes event logs from compromised machines. [...]

https://www.bleepingcomputer.com/news/security/script-recovers-event-logs-doctored-by-nsa-hacking-tool/

ProxyM Botnet Used as Relay Point for SQLi, XSS, LFI Attacks

A botnet made up of IoT devices is helping hackers mask attacks on web applications, acting as a relay point for SQL injection (SQLi), cross-site scripting (XSS), and local file inclusion (LFI) attempts. [...]

https://www.bleepingcomputer.com/news/security/proxym-botnet-used-as-relay-point-for-sqli-xss-lfi-attacks/

Tech Support Scammers Invade Spotify Forums to Rank in Search Engines

Over the past few months, Tech Support scammers have been using the Spotify forums to inject their phone numbers into the first page of the Google & Bing search results. They do this by submitting a constant stream of spam posts to the Spotify forums, whose pages tend to rank well in Google.  [...]

https://www.bleepingcomputer.com/news/security/tech-support-scammers-invade-spotify-forums-to-rank-in-search-engines/

Day 6 of Microsoft's 12 Days of Deals: - Up to $70 off Xbox One + 2 free games

Today is Day 6 of Microsoft's 12 Days of Deals and the current deal is up to $70 off an Xbox One + 2 free games. For the full $70 off,  you would need to purchase the Xbox One S 1TB Console - Minecraft Limited Edition Bundle, while the rest of the bundles will give you $50 off. [...]

https://www.bleepingcomputer.com/news/deals/day-6-of-microsofts-12-days-of-deals-up-to-70-off-xbox-one-2-free-games/

How to Check Your HP Laptop for the Synaptic Keylogger and Remove It

With that said, if you have an HP laptop, you may be wondering if your laptop has the driver installed that contains this debug trace, or keylogging, feature. This article will tell you how to check if you have the affected driver installed on your laptop and how to update it to the latest version. [...]

https://www.bleepingcomputer.com/news/security/how-to-check-your-hp-laptop-for-the-synaptic-keylogger-and-remove-it/

BrickerBot Author Retires Claiming to Have Bricked over 10 Million IoT Devices

The author of the BrickerBot malware has announced his retirement in an email to Bleeping Computer, also claiming to have bricked over 10 million devices since he started the "Internet Chemotherapy" project in November 2016. [...]

https://www.bleepingcomputer.com/news/security/brickerbot-author-retires-claiming-to-have-bricked-over-10-million-iot-devices/

File Spider Ransomware Targeting the Balkans With Malspam

A new ransomware called File Spider is being distributed through spam that targets victims in Bosnia and Herzegovina, Serbia, and Croatia.  These spam emails contains malicious Word documents that will download and install the File Spider ransomware onto a victims computer. [...]

https://www.bleepingcomputer.com/news/security/file-spider-ransomware-targeting-the-balkans-with-malspam/

Google Security Expert Releases Proof-Of-Concept Code for iOS Jailbreak

Google security researcher Ian Beer has published proof-of-concept code for a rooting exploit that works both iOS and macOS devices. [...]

https://www.bleepingcomputer.com/news/apple/google-security-expert-releases-proof-of-concept-code-for-ios-jailbreak/

MoneyTaker Hacker Group Steals Millions from US and Russian Banks

A cyber-criminal group believed to be operating out of Russian-speaking territories has hit at least 20 banks and financial companies and stolen millions of US dollars in the process. [...]

https://www.bleepingcomputer.com/news/security/moneytaker-hacker-group-steals-millions-from-us-and-russian-banks/

Extended Validation (EV) Certificates Abused to Create Insanely Believable Phishing Sites

New research published yesterday reveals that putting your trust in Extended Validation ("EV") SSL certificates will not safeguard you from phishing sites and online fraud. [...]

https://www.bleepingcomputer.com/news/security/extended-validation-ev-certificates-abused-to-create-insanely-believable-phishing-sites/

Microsoft December Patch Tuesday Fixes 34 Security Issues

Microsoft has released security updates as part of its monthly Patch Tuesday release train, and this month, the company has patched 34 issues affecting eight products. [...]

https://www.bleepingcomputer.com/news/microsoft/microsoft-december-patch-tuesday-fixes-34-security-issues/

Here's How to Enable the Built-In Windows 10 OpenSSH Client

With each new release of Windows 10, we see more and more useful tools being ported from Linux. First, we had the Windows Subsystem for Linux, which is awesome, and now we have a built-in OpenSSH client and server, which uses version 7.5p1 of OpenSSH. [...]

https://www.bleepingcomputer.com/news/microsoft/heres-how-to-enable-the-built-in-windows-10-openssh-client/

Variation of 19-Year-Old Cryptographic Attack Affects Facebook, PayPal, Others

Three security researchers have discovered a variation to an old cryptographic attack that can be exploited to obtain the private encryption key necessary to decrypt sensitive HTTPS traffic under certain conditions. [...]

https://www.bleepingcomputer.com/news/security/variation-of-19-year-old-cryptographic-attack-affects-facebook-paypal-others/

Quant Loader Is Now Bundled with Other Crappy Malware

Despite not being the most advanced or stealthy malware downloader on the market right now, the Quant Loader malware dropper is seeing increased activity in recent months. [...]

https://www.bleepingcomputer.com/news/security/quant-loader-is-now-bundled-with-other-crappy-malware/

Cryptojackers Found on Starbucks WiFi Network, GitHub, Pirate Streaming Sites

The cryptojacking trend is not showing any signs of stopping anytime soon, and recent reports highlight some peculiar new ways that miscreants have found for pushing in-browser miners down their users' throats. [...]

https://www.bleepingcomputer.com/news/security/cryptojackers-found-on-starbucks-wifi-network-github-pirate-streaming-sites/

Google Releases an Updated SEO Starter Guide

After many years, Google has finally released an updated version of their SEO Starter Guide. This guide is a resource for webmasters that contains Google's recommendations on how to make sure web sites are search-engine-friendly. [...]

https://www.bleepingcomputer.com/news/google/google-releases-an-updated-seo-starter-guide/

Trump Signs Bill Banning Kaspersky Products on Government Computers

President Donald Trump has signed a bill into law on Tuesday that also includes a clause that officially bans the use of Kaspersky products on US federal government computers. [...]

https://www.bleepingcomputer.com/news/government/trump-signs-bill-banning-kaspersky-products-on-government-computers/

WORK Cryptomix Ransomware Variant Released

Today, BleepingComputer discovered a new variant of the CryptoMix ransomware that appends the .WORK extension to encrypted files and changes the contact emails used by the ransomware.  [...]

https://www.bleepingcomputer.com/news/security/work-cryptomix-ransomware-variant-released/

US Charges Three Men with Creating and Running First-Ever Mirai Botnet

Three men have pleaded guilty for their role in the creation of the Mirai malware and the use of the subsequent Mirai botnet to launch DDoS attacks on multiple targets across the Internet, according to documents unsealed today by the US Department of Justice (DOJ). [...]

https://www.bleepingcomputer.com/news/security/us-charges-three-men-with-creating-and-running-first-ever-mirai-botnet/