WORK Cryptomix Ransomware Variant Released
Today, BleepingComputer discovered a new variant of the CryptoMix ransomware that appends the .WORK extension to encrypted files and changes the contact emails used by the ransomware. [...]
https://www.bleepingcomputer.com/news/security/work-cryptomix-ransomware-variant-released/
Today, BleepingComputer discovered a new variant of the CryptoMix ransomware that appends the .WORK extension to encrypted files and changes the contact emails used by the ransomware. [...]
https://www.bleepingcomputer.com/news/security/work-cryptomix-ransomware-variant-released/
BleepingComputer
WORK Cryptomix Ransomware Variant Released
Today, BleepingComputer discovered a new variant of the CryptoMix ransomware that appends the .WORK extension to encrypted files and changes the contact emails used by the ransomware.
US Charges Three Men with Creating and Running First-Ever Mirai Botnet
Three men have pleaded guilty for their role in the creation of the Mirai malware and the use of the subsequent Mirai botnet to launch DDoS attacks on multiple targets across the Internet, according to documents unsealed today by the US Department of Justice (DOJ). [...]
https://www.bleepingcomputer.com/news/security/us-charges-three-men-with-creating-and-running-first-ever-mirai-botnet/
Three men have pleaded guilty for their role in the creation of the Mirai malware and the use of the subsequent Mirai botnet to launch DDoS attacks on multiple targets across the Internet, according to documents unsealed today by the US Department of Justice (DOJ). [...]
https://www.bleepingcomputer.com/news/security/us-charges-three-men-with-creating-and-running-first-ever-mirai-botnet/
BleepingComputer
US Charges Three Men with Creating and Running First-Ever Mirai Botnet
Three men have pleaded guilty for their role in the creation of the Mirai malware and the use of the subsequent Mirai botnet to launch DDoS attacks on multiple targets across the Internet, according to documents unsealed today by the US Department of Justiceβ¦
Adware Maker Tries to Intimidate Security Firm with Cease and Desist Letters
Cyber-security firm Cybereason says it received multiple cease and desist letters from an Israeli company they suspect of being behind the OSX/Pirrit adware strain. [...]
https://www.bleepingcomputer.com/news/security/adware-maker-tries-to-intimidate-security-firm-with-cease-and-desist-letters/
Cyber-security firm Cybereason says it received multiple cease and desist letters from an Israeli company they suspect of being behind the OSX/Pirrit adware strain. [...]
https://www.bleepingcomputer.com/news/security/adware-maker-tries-to-intimidate-security-firm-with-cease-and-desist-letters/
BleepingComputer
Adware Maker Tries to Intimidate Security Firm with Cease and Desist Letters
Cyber-security firm Cybereason says it received multiple cease and desist letters from an Israeli company they suspect of being behind the OSX/Pirrit adware strain.
Most Android-Based TV Set-Top Boxes Run Old and Insecure OS Versions
Android-based TV set-top boxes sold online are most likely running outdated operating systems that have not received security updates for at least a year, according to research published today by US cyber-security firm Tripwire. [...]
https://www.bleepingcomputer.com/news/security/most-android-based-tv-set-top-boxes-run-old-and-insecure-os-versions/
Android-based TV set-top boxes sold online are most likely running outdated operating systems that have not received security updates for at least a year, according to research published today by US cyber-security firm Tripwire. [...]
https://www.bleepingcomputer.com/news/security/most-android-based-tv-set-top-boxes-run-old-and-insecure-os-versions/
BleepingComputer
Most Android-Based TV Set-Top Boxes Run Old and Insecure OS Versions
Android-based TV set-top boxes sold online are most likely running outdated operating systems that have not received security updates for at least a year, according to research published today by US cyber-security firm Tripwire.
Data Breach at Website with 45 Million Users Discovered During Academic Research
A team of three researchers from the University of California, San Diego (UCSD) has created a tool that can detect when user-registration-based websites suffer a data breach. [...]
https://www.bleepingcomputer.com/news/security/data-breach-at-website-with-45-million-users-discovered-during-academic-research/
A team of three researchers from the University of California, San Diego (UCSD) has created a tool that can detect when user-registration-based websites suffer a data breach. [...]
https://www.bleepingcomputer.com/news/security/data-breach-at-website-with-45-million-users-discovered-during-academic-research/
BleepingComputer
Data Breach at Website with 45 Million Users Discovered During Academic Research
A team of three researchers from the University of California, San Diego (UCSD) has created a tool that can detect when user-registration-based websites suffer a data breach.
Fortinet VPN Client Exposes VPN Creds, Palo Alto Firewalls Allow Remote Attacks
It's been a bad week for two of the world's biggest vendors of enterprise hardware and software β Fortinet and Palo Alto Networks. Both companies fixed security issues this week affecting some of their most popular products, with some bugs being quite intrusive and dangerous. [...]
https://www.bleepingcomputer.com/news/security/fortinet-vpn-client-exposes-vpn-creds-palo-alto-firewalls-allow-remote-attacks/
It's been a bad week for two of the world's biggest vendors of enterprise hardware and software β Fortinet and Palo Alto Networks. Both companies fixed security issues this week affecting some of their most popular products, with some bugs being quite intrusive and dangerous. [...]
https://www.bleepingcomputer.com/news/security/fortinet-vpn-client-exposes-vpn-creds-palo-alto-firewalls-allow-remote-attacks/
BleepingComputer
Fortinet VPN Client Exposes VPN Creds, Palo Alto Firewalls Allow Remote Attacks
It's been a bad week for two of the world's biggest vendors of enterprise hardware and software β Fortinet and Palo Alto Networks. Both companies fixed security issues this week affecting some of their most popular products, with some bugs being quite intrusiveβ¦
TRITON Malware Used in Attacks Against Industrial Safety Equipment
Security researchers from FireEye's Mandiant investigative division have spotted a new form of malware that's capable of targeting industrial equipment. FireEye named this malware TRITON and said they've spotted a threat actor deploying it in live attacks. [...]
https://www.bleepingcomputer.com/news/security/triton-malware-used-in-attacks-against-industrial-safety-equipment/
Security researchers from FireEye's Mandiant investigative division have spotted a new form of malware that's capable of targeting industrial equipment. FireEye named this malware TRITON and said they've spotted a threat actor deploying it in live attacks. [...]
https://www.bleepingcomputer.com/news/security/triton-malware-used-in-attacks-against-industrial-safety-equipment/
BleepingComputer
TRITON Malware Used in Attacks Against Industrial Safety Equipment
Security researchers from FireEye's Mandiant investigative division have spotted a new form of malware that's capable of targeting industrial equipment. FireEye named this malware TRITON and said they've spotted a threat actor deploying it in live attacks.
How to Install the Built-In Windows 10 OpenSSH Server
For those who would like remote console access to their Windows 10 computers, the built-in Windows 10 OpenSSH Server may be what you are looking for. Even better, for those who are familiar with OpenSSH from using it in Linux, the Windows 10 version operates pretty much the same. [...]
https://www.bleepingcomputer.com/news/microsoft/how-to-install-the-built-in-windows-10-openssh-server/
For those who would like remote console access to their Windows 10 computers, the built-in Windows 10 OpenSSH Server may be what you are looking for. Even better, for those who are familiar with OpenSSH from using it in Linux, the Windows 10 version operates pretty much the same. [...]
https://www.bleepingcomputer.com/news/microsoft/how-to-install-the-built-in-windows-10-openssh-server/
BleepingComputer
How to Install the Built-In Windows 10 OpenSSH Server
For those who would like remote console access to their Windows 10 computers, the built-in Windows 10 OpenSSH Server may be what you are looking for. Even better, for those who are familiar with OpenSSH from using it in Linux, the Windows 10 version operatesβ¦
Top Security Firm Admits to MitM Security Incident
Netherlands-based Fox-IT, one of the world's leading IT security providers, disclosed today a security breach during which an unknown attacker carried out a Man-in-the-Middle (MitM) attack and spied on a small number of Fox-IT customers. [...]
https://www.bleepingcomputer.com/news/security/top-security-firm-admits-to-mitm-security-incident/
Netherlands-based Fox-IT, one of the world's leading IT security providers, disclosed today a security breach during which an unknown attacker carried out a Man-in-the-Middle (MitM) attack and spied on a small number of Fox-IT customers. [...]
https://www.bleepingcomputer.com/news/security/top-security-firm-admits-to-mitm-security-incident/
BleepingComputer
Top Security Firm Admits to MitM Security Incident
Netherlands-based Fox-IT, one of the world's leading IT security providers, disclosed today a security breach during which an unknown attacker carried out a Man-in-the-Middle (MitM) attack and spied on a small number of Fox-IT customers.
FCC Kills Net Neutrality. What Does That Mean for You?
In a 3-2 vote along party lines, FCC chairman Ajit Pai and his two fellow Republican commissioners have voted to repeal Obama's Net Neutrality regulations. According to Pai, the repeal of Net Neutrality will only help consumers and promote competition among businesses that are currently being stifled by these regulations. [...]
https://www.bleepingcomputer.com/news/security/fcc-kills-net-neutrality-what-does-that-mean-for-you/
In a 3-2 vote along party lines, FCC chairman Ajit Pai and his two fellow Republican commissioners have voted to repeal Obama's Net Neutrality regulations. According to Pai, the repeal of Net Neutrality will only help consumers and promote competition among businesses that are currently being stifled by these regulations. [...]
https://www.bleepingcomputer.com/news/security/fcc-kills-net-neutrality-what-does-that-mean-for-you/
BleepingComputer
FCC Kills Net Neutrality. What Does That Mean for You?
In a 3-2 vote along party lines, FCC chairman Ajit Pai and his two fellow Republican commissioners have voted to repeal Obama's Net Neutrality regulations. According to Pai, the repeal of Net Neutrality will only help consumers and promote competition amongβ¦
GlassWire 2.0 Released With VirusTotal Scanning, Evil Twin Detection, and More
GlassWire 2.0 has been released that comes with some new features such as VirusTotal scanning, Windows Firewall rules synchronization, WiFi evil twin discovery, multi-monitor support, and hi-res monitor support. [...]
https://www.bleepingcomputer.com/news/software/glasswire-2-0-released-with-virustotal-scanning-evil-twin-detection-and-more/
GlassWire 2.0 has been released that comes with some new features such as VirusTotal scanning, Windows Firewall rules synchronization, WiFi evil twin discovery, multi-monitor support, and hi-res monitor support. [...]
https://www.bleepingcomputer.com/news/software/glasswire-2-0-released-with-virustotal-scanning-evil-twin-detection-and-more/
BleepingComputer
GlassWire 2.0 Released With VirusTotal Scanning, Evil Twin Detection, and More
GlassWire 2.0 has been released that comes with some new features such as VirusTotal scanning, Windows Firewall rules synchronization, WiFi evil twin discovery, multi-monitor support, and hi-res monitor support.
Microsoft Disables DDE Feature in Word to Prevent Further Malware Attacks
As part of the December 2017 Patch Tuesday, Microsoft has shipped an Office update that disables the DDE feature in Word applications, after several malware campaigns have abused this feature to install malware. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-disables-dde-feature-in-word-to-prevent-further-malware-attacks/
As part of the December 2017 Patch Tuesday, Microsoft has shipped an Office update that disables the DDE feature in Word applications, after several malware campaigns have abused this feature to install malware. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-disables-dde-feature-in-word-to-prevent-further-malware-attacks/
BleepingComputer
Microsoft Disables DDE Feature in Word to Prevent Further Malware Attacks
As part of the December 2017 Patch Tuesday, Microsoft has shipped an Office update that disables the DDE feature in Word applications, after several malware campaigns have abused this feature to install malware.
Microsoft Considers Adding Python as an Official Scripting Language to Excel
Microsoft is considering adding Python as one of the official Excel scripting languages, according to a topic on Excel's feedback hub opened last month. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-considers-adding-python-as-an-official-scripting-language-to-excel/
Microsoft is considering adding Python as one of the official Excel scripting languages, according to a topic on Excel's feedback hub opened last month. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-considers-adding-python-as-an-official-scripting-language-to-excel/
BleepingComputer
Microsoft Considers Adding Python as an Official Scripting Language to Excel
Microsoft is considering adding Python as one of the official Excel scripting languages, according to a topic on Excel's feedback hub opened last month.
Vigilante Removes Malware from Netgear Site After Company Fails to Do So for 2 Years
An anonymous vigilante has taken matters into his own hands and removed malware from a Netgear site after the company failed to clean up a two-year-old malware infection. [...]
https://www.bleepingcomputer.com/news/security/vigilante-removes-malware-from-netgear-site-after-company-fails-to-do-so-for-2-years/
An anonymous vigilante has taken matters into his own hands and removed malware from a Netgear site after the company failed to clean up a two-year-old malware infection. [...]
https://www.bleepingcomputer.com/news/security/vigilante-removes-malware-from-netgear-site-after-company-fails-to-do-so-for-2-years/
BleepingComputer
Vigilante Removes Malware from Netgear Site After Company Fails to Do So for 2 Years
An anonymous vigilante has taken matters into his own hands and removed malware from a Netgear site after the company failed to clean up a two-year-old malware infection.
California Voter Database Compromised in MongoDB Incident
The details of over 19 million California voters were left exposed online in an unsecured MongoDB database and were later held for ransom, according to researchers from the Kromtech Security Center. [...]
https://www.bleepingcomputer.com/news/security/california-voter-database-compromised-in-mongodb-incident/
The details of over 19 million California voters were left exposed online in an unsecured MongoDB database and were later held for ransom, according to researchers from the Kromtech Security Center. [...]
https://www.bleepingcomputer.com/news/security/california-voter-database-compromised-in-mongodb-incident/
BleepingComputer
California Voter Database Compromised in MongoDB Incident
The details of over 19 million California voters were left exposed online in an unsecured MongoDB database and were later held for ransom, according to researchers from the Kromtech Security Center.
The Week in Ransomware - December 15th 2017 - File Spider, California Voters Database, and More
This week was mostly about in-dev ransomware or new variants of older ransomware being released. The biggest news was the File Spider Ransomware campaign that was targeting countries in the Balkans. The other big news is the entire California voters database being leaked on the Internet and held for ransom. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-december-15th-2017-file-spider-california-voters-database-and-more/
This week was mostly about in-dev ransomware or new variants of older ransomware being released. The biggest news was the File Spider Ransomware campaign that was targeting countries in the Balkans. The other big news is the entire California voters database being leaked on the Internet and held for ransom. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-december-15th-2017-file-spider-california-voters-database-and-more/
BleepingComputer
The Week in Ransomware - December 15th 2017 - File Spider, California Voters Database, and More
This week was mostly about in-dev ransomware or new variants of older ransomware being released. The biggest news was the File Spider Ransomware campaign that was targeting countries in the Balkans. The other big news is the entire California voters databaseβ¦
Windows 10 Bundles a Password Manager. Password Manager Bundles a Security Flaw
A Google security researcher has found and helped patch a severe vulnerability in Keeper, a password manager application that Microsoft has been bundling with some Windows 10 distributions this year. [...]
https://www.bleepingcomputer.com/news/security/windows-10-bundles-a-password-manager-password-manager-bundles-a-security-flaw/
A Google security researcher has found and helped patch a severe vulnerability in Keeper, a password manager application that Microsoft has been bundling with some Windows 10 distributions this year. [...]
https://www.bleepingcomputer.com/news/security/windows-10-bundles-a-password-manager-password-manager-bundles-a-security-flaw/
BleepingComputer
Windows 10 Bundles a Password Manager. Password Manager Bundles a Security Flaw
A Google security researcher has found and helped patch a severe vulnerability in Keeper, a password manager application that Microsoft has been bundling with some Windows 10 distributions this year.
Synaptics Denies HP Driver Contains a Keylogger and Says It's a Debug Tool
Synaptics issued a security brief regarding the reports of a HP Synaptics Keyboard Driver that contained keylogging functionality. In their security brief, Synaptic states that their driver is being mischaracterized as a keylogger and it's simply a debug tool that was purposely added to the driver to help OEMs manufacturers. [...]
https://www.bleepingcomputer.com/news/security/synaptics-denies-hp-driver-contains-a-keylogger-and-says-its-a-debug-tool/
Synaptics issued a security brief regarding the reports of a HP Synaptics Keyboard Driver that contained keylogging functionality. In their security brief, Synaptic states that their driver is being mischaracterized as a keylogger and it's simply a debug tool that was purposely added to the driver to help OEMs manufacturers. [...]
https://www.bleepingcomputer.com/news/security/synaptics-denies-hp-driver-contains-a-keylogger-and-says-its-a-debug-tool/
BleepingComputer
Synaptics Denies HP Driver Contains a Keylogger and Says It's a Debug Tool
Synaptics issued a security brief regarding the reports of a HP Synaptics Keyboard Driver that contained keylogging functionality. In their security brief, Synaptic states that their driver is being mischaracterized as a keylogger and it's simply a debugβ¦
Bank Employee Gets Prison Time for Helping Dridex Malware Gang
A UK court has sentenced a Barclays bank employee to six years and four months in prison for helping members of the Dridex cyber-criminal network launder over Β£2.5 million, which is approximately $3.33 million at today's exchange rate. [...]
https://www.bleepingcomputer.com/news/security/bank-employee-gets-prison-time-for-helping-dridex-malware-gang/
A UK court has sentenced a Barclays bank employee to six years and four months in prison for helping members of the Dridex cyber-criminal network launder over Β£2.5 million, which is approximately $3.33 million at today's exchange rate. [...]
https://www.bleepingcomputer.com/news/security/bank-employee-gets-prison-time-for-helping-dridex-malware-gang/
BleepingComputer
Bank Employee Gets Prison Time for Helping Dridex Malware Gang
A UK court has sentenced a Barclays bank employee to six years and four months in prison for helping members of the Dridex cyber-criminal network launder over Β£2.5 million, which is approximately $3.33 million at today's exchange rate.
Mozilla Angers Firefox Users After Force-Installing Mr. Robot Promo Add-On
Mozilla took a bit of heat this week after the organization force-installed a Mr. Robot promotional add-on in some Firefox browsers. [...]
https://www.bleepingcomputer.com/news/software/mozilla-angers-firefox-users-after-force-installing-mr-robot-promo-add-on/
Mozilla took a bit of heat this week after the organization force-installed a Mr. Robot promotional add-on in some Firefox browsers. [...]
https://www.bleepingcomputer.com/news/software/mozilla-angers-firefox-users-after-force-installing-mr-robot-promo-add-on/
BleepingComputer
Mozilla Angers Firefox Users After Force-Installing Mr. Robot Promo Add-On
Mozilla took a bit of heat this week after the organization force-installed a Mr. Robot promotional add-on in some Firefox browsers.
"Zealot" Campaign Uses NSA Exploits to Mine Monero on Windows and Linux Servers
An aggressive and sophisticated malware campaign is currently underway, targeting Linux and Windows servers with an assortment of exploits with the goal of installing malware that mines the Monero cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/-zealot-campaign-uses-nsa-exploits-to-mine-monero-on-windows-and-linux-servers/
An aggressive and sophisticated malware campaign is currently underway, targeting Linux and Windows servers with an assortment of exploits with the goal of installing malware that mines the Monero cryptocurrency. [...]
https://www.bleepingcomputer.com/news/security/-zealot-campaign-uses-nsa-exploits-to-mine-monero-on-windows-and-linux-servers/
BleepingComputer
"Zealot" Campaign Uses NSA Exploits to Mine Monero on Windows and Linux Servers
An aggressive and sophisticated malware campaign is currently underway, targeting Linux and Windows servers with an assortment of exploits with the goal of installing malware that mines the Monero cryptocurrency.