The Week in Ransomware - January 5th 2018 - Slow For The Holidays
Looks like even ransomware developers take time off for the holidays as there was not much activity over the past couple of weeks. We have seen mostly new variants being release, with the biggest being CryptoMix. Otherwise, just a few small in development ransomwares being released. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-5th-2018-slow-for-the-holidays/
Looks like even ransomware developers take time off for the holidays as there was not much activity over the past couple of weeks. We have seen mostly new variants being release, with the biggest being CryptoMix. Otherwise, just a few small in development ransomwares being released. [...]
https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-january-5th-2018-slow-for-the-holidays/
BleepingComputer
The Week in Ransomware - January 5th 2018 - Slow For The Holidays
Looks like even ransomware developers take time off for the holidays as there was not much activity over the past couple of weeks. We have seen mostly new variants being release, with the biggest being CryptoMix. Otherwise, just a few small in developmentβ¦
Security Flaw in AMD's Secure Chip-On-Chip Processor Disclosed Online
AMD has fixed, but not yet released BIOS/UEFI/firmware updates for the general public for a security flaw affecting the AMD Secure Processor. [...]
https://www.bleepingcomputer.com/news/security/security-flaw-in-amds-secure-chip-on-chip-processor-disclosed-online/
AMD has fixed, but not yet released BIOS/UEFI/firmware updates for the general public for a security flaw affecting the AMD Secure Processor. [...]
https://www.bleepingcomputer.com/news/security/security-flaw-in-amds-secure-chip-on-chip-processor-disclosed-online/
BleepingComputer
Security Flaw in AMD's Secure Chip-On-Chip Processor Disclosed Online
AMD has fixed, but not yet released BIOS/UEFI/firmware updates for the general public for a security flaw affecting the AMD Secure Processor.
Adware Bundle Adds Persistence to Download More Malware at Later Time
For about a week now there have been repeated posts on the BleepingComputer and Malwarebytes forums regarding a BITSADMIN 3.0 command prompt that repeatedly opens on its own and downloads files. What all of these users had in common were numerous adware and unwanted programs installed on the computer. [...]
https://www.bleepingcomputer.com/news/security/adware-bundle-adds-persistence-to-download-more-malware-at-later-time/
For about a week now there have been repeated posts on the BleepingComputer and Malwarebytes forums regarding a BITSADMIN 3.0 command prompt that repeatedly opens on its own and downloads files. What all of these users had in common were numerous adware and unwanted programs installed on the computer. [...]
https://www.bleepingcomputer.com/news/security/adware-bundle-adds-persistence-to-download-more-malware-at-later-time/
BleepingComputer
Adware Bundle Adds Persistence to Download More Malware at Later Time
For about a week now there have been repeated posts on the BleepingComputer and Malwarebytes forums regarding a BITSADMIN 3.0 command prompt that repeatedly opens on its own and downloads files. What all of these users had in common were numerous adwareβ¦
Microsoft Halts Bitcoin Transactions Because It's An "Unstable Currency"
Microsoft has stopped supporting Bitcoin as a payment method for Microsoft products, Bleeping Computer has learned. [...]
https://www.bleepingcomputer.com/news/cryptocurrency/microsoft-halts-bitcoin-transactions-because-its-an-unstable-currency-/
Microsoft has stopped supporting Bitcoin as a payment method for Microsoft products, Bleeping Computer has learned. [...]
https://www.bleepingcomputer.com/news/cryptocurrency/microsoft-halts-bitcoin-transactions-because-its-an-unstable-currency-/
BleepingComputer
Microsoft Halts Bitcoin Transactions Because It's An "Unstable Currency"
Microsoft has stopped supporting Bitcoin as a payment method for Microsoft products, Bleeping Computer has learned.
Backdoor Account Removed from Western Digital NAS Hard Drives
A security researcher is urging owners of Western Digital MyCloud NAS devices to update the firmware of their portable hard-drives to fix a series of important security bugs he reported to the vendor, among which there is an easy exploitable and wormable hardcoded (backdoor) account. [...]
https://www.bleepingcomputer.com/news/security/backdoor-account-removed-from-western-digital-nas-hard-drives/
A security researcher is urging owners of Western Digital MyCloud NAS devices to update the firmware of their portable hard-drives to fix a series of important security bugs he reported to the vendor, among which there is an easy exploitable and wormable hardcoded (backdoor) account. [...]
https://www.bleepingcomputer.com/news/security/backdoor-account-removed-from-western-digital-nas-hard-drives/
BleepingComputer
Backdoor Account Removed from Western Digital NAS Hard Drives
A security researcher is urging owners of Western Digital MyCloud NAS devices to update the firmware of their portable hard-drives to fix a series of important security bugs he reported to the vendor, among which there is an easy exploitable and wormableβ¦
US Customs and Border Protection Publishes New Rules for Searching Electronic Devices
The US Customs and Border Protection (CBP) agency published last week a new guideline containing updated procedures for searching travelers' electronic devices at US borders. [...]
https://www.bleepingcomputer.com/news/government/us-customs-and-border-protection-publishes-new-rules-for-searching-electronic-devices/
The US Customs and Border Protection (CBP) agency published last week a new guideline containing updated procedures for searching travelers' electronic devices at US borders. [...]
https://www.bleepingcomputer.com/news/government/us-customs-and-border-protection-publishes-new-rules-for-searching-electronic-devices/
BleepingComputer
US Customs and Border Protection Publishes New Rules for Searching Electronic Devices
The US Customs and Border Protection (CBP) agency published last week a new guideline containing updated procedures for searching travelers' electronic devices at US borders.
Online Shop Can't Determine Card Breach Severity Due To "Lack of Backups"
In a data breach notification letter submitted to the Office of the Attorney General for the state of California, a makeup product vendor said it could not fully assess the impact of a recent card security breach due to a lack of backups. [...]
https://www.bleepingcomputer.com/news/security/online-shop-cant-determine-card-breach-severity-due-to-lack-of-backups/
In a data breach notification letter submitted to the Office of the Attorney General for the state of California, a makeup product vendor said it could not fully assess the impact of a recent card security breach due to a lack of backups. [...]
https://www.bleepingcomputer.com/news/security/online-shop-cant-determine-card-breach-severity-due-to-lack-of-backups/
BleepingComputer
Online Shop Can't Determine Card Breach Severity Due To "Lack of Backups"
In a data breach notification letter submitted to the Office of the Attorney General for the state of California, a makeup product vendor said it could not fully assess the impact of a recent card security breach due to a lack of backups.
Apple Releases Security Updates for Spectre CPU Flaw
Apple has released today security updates to mitigate the effects of the Spectre vulnerability that affects processors deployed with Apple devices such as smartphones, tablets, and desktop computers. [...]
https://www.bleepingcomputer.com/news/apple/apple-releases-security-updates-for-spectre-cpu-flaw/
Apple has released today security updates to mitigate the effects of the Spectre vulnerability that affects processors deployed with Apple devices such as smartphones, tablets, and desktop computers. [...]
https://www.bleepingcomputer.com/news/apple/apple-releases-security-updates-for-spectre-cpu-flaw/
BleepingComputer
Apple Releases Security Updates for Spectre CPU Flaw
Apple has released today security updates to mitigate the effects of the Spectre vulnerability that affects processors deployed with Apple devices such as smartphones, tablets, and desktop computers.
New VirusTotal Graph Makes It Easy to Visualize Malware
VirusTotal released a new feature today that allows a user to visualize data such as the hosts a file connects to, what files it creates, and more. Even better, this new tool is available to all members and not only to subscribers of VirusTotal's premium Intelligence platform. [...]
https://www.bleepingcomputer.com/news/security/new-virustotal-graph-makes-it-easy-to-visualize-malware/
VirusTotal released a new feature today that allows a user to visualize data such as the hosts a file connects to, what files it creates, and more. Even better, this new tool is available to all members and not only to subscribers of VirusTotal's premium Intelligence platform. [...]
https://www.bleepingcomputer.com/news/security/new-virustotal-graph-makes-it-easy-to-visualize-malware/
BleepingComputer
New VirusTotal Graph Makes It Easy to Visualize Malware
VirusTotal released a new feature today that allows a user to visualize data such as the hosts a file connects to, what files it creates, and more. Even better, this new tool is available to all members and not only to subscribers of VirusTotal's premiumβ¦
WPA3 WiFi Standard Announced After Researchers KRACKed WPA2 Three Months Ago
People say "every kick in the ass is a step forward." Well, Belgian security researcher Mathy Vanhoef gave the WiFi Protected Access (WPA) standard a huge kick in the ass last fall when it disclosed details about KRACK, a vulnerability in the WPA2 WiFi protocol used by billions of devices. [...]
https://www.bleepingcomputer.com/news/hardware/wpa3-wifi-standard-announced-after-researchers-kracked-wpa2-three-months-ago/
People say "every kick in the ass is a step forward." Well, Belgian security researcher Mathy Vanhoef gave the WiFi Protected Access (WPA) standard a huge kick in the ass last fall when it disclosed details about KRACK, a vulnerability in the WPA2 WiFi protocol used by billions of devices. [...]
https://www.bleepingcomputer.com/news/hardware/wpa3-wifi-standard-announced-after-researchers-kracked-wpa2-three-months-ago/
BleepingComputer
WPA3 WiFi Standard Announced After Researchers KRACKed WPA2 Three Months Ago
People say "every kick in the ass is a step forward." Well, Belgian security researcher Mathy Vanhoef gave the WiFi Protected Access (WPA) standard a huge kick in the ass last fall when it disclosed details about KRACK, a vulnerability in the WPA2 WiFi protocolβ¦
Microsoft Says No More Windows Security Updates Unless AVs Set a Registry Key
Microsoft has added a new and very important detail on the help page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-says-no-more-windows-security-updates-unless-avs-set-a-registry-key/
Microsoft has added a new and very important detail on the help page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-says-no-more-windows-security-updates-unless-avs-set-a-registry-key/
BleepingComputer
Microsoft Says No More Windows Security Updates Unless AVs Set a Registry Key
Microsoft has added a new and very important detail on the help page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches.
Microsoft Pauses Rollout of Windows Meltdown and Spectre Patches for AMD Devices
Microsoft has halted the rollout of Windows OS security updates for the Meltdown and Spectre patches for all customer devices that use an AMD CPU. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-pauses-rollout-of-windows-meltdown-and-spectre-patches-for-amd-devices/
Microsoft has halted the rollout of Windows OS security updates for the Meltdown and Spectre patches for all customer devices that use an AMD CPU. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-pauses-rollout-of-windows-meltdown-and-spectre-patches-for-amd-devices/
BleepingComputer
Microsoft Pauses Rollout of Windows Meltdown and Spectre Patches for AMD Devices
Microsoft has halted the rollout of Windows OS security updates for the Meltdown and Spectre patches for all customer devices that use an AMD CPU.
The Number of IoT Botnet C&C Servers Doubled in 2017
In 2017, the number of command and control (C&C) servers used for managing IoT botnets has more than doubled, going from 393 in 2016 to 943 in 2017. [...]
https://www.bleepingcomputer.com/news/security/the-number-of-iot-botnet-candc-servers-doubled-in-2017/
In 2017, the number of command and control (C&C) servers used for managing IoT botnets has more than doubled, going from 393 in 2016 to 943 in 2017. [...]
https://www.bleepingcomputer.com/news/security/the-number-of-iot-botnet-candc-servers-doubled-in-2017/
BleepingComputer
The Number of IoT Botnet C&C Servers Doubled in 2017
In 2017, the number of command and control (C&C) servers used for managing IoT botnets has more than doubled, going from 393 in 2016 to 943 in 2017.
Microsoft: Performance Dip on Old Windows Versions Due Meltdown & Spectre Fixes
A Microsoft official confirmed today that some devices running on older Windows versions will see a significant slowdown and decrease in system performance after applying the Meltdown and Spectre security patches. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-performance-dip-on-old-windows-versions-due-meltdown-and-spectre-fixes/
A Microsoft official confirmed today that some devices running on older Windows versions will see a significant slowdown and decrease in system performance after applying the Meltdown and Spectre security patches. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-performance-dip-on-old-windows-versions-due-meltdown-and-spectre-fixes/
BleepingComputer
Microsoft: Performance Dip on Old Windows Versions Due Meltdown & Spectre Fixes
A Microsoft official confirmed today that some devices running on older Windows versions will see a significant slowdown and decrease in system performance after applying the Meltdown and Spectre security patches.
Fake MinerBlock Extension Repeatedly Playing Videos in the Background
Security researcher Bryan Campbell discovered a malicious Chrome extension today that is masquerading as the legitimate MinerBlock extension. The legitimate MinerBlock extension is used to block sites that utilize in-browser cryptocurrency mining, while the malicious version causes Chrome to repeatedly play videos in the background. [...]
https://www.bleepingcomputer.com/news/security/fake-minerblock-extension-repeatedly-playing-videos-in-the-background/
Security researcher Bryan Campbell discovered a malicious Chrome extension today that is masquerading as the legitimate MinerBlock extension. The legitimate MinerBlock extension is used to block sites that utilize in-browser cryptocurrency mining, while the malicious version causes Chrome to repeatedly play videos in the background. [...]
https://www.bleepingcomputer.com/news/security/fake-minerblock-extension-repeatedly-playing-videos-in-the-background/
BleepingComputer
Fake MinerBlock Extension Repeatedly Playing Videos in the Background
Security researcher Bryan Campbell discovered a malicious Chrome extension today that is masquerading as the legitimate MinerBlock extension. The legitimate MinerBlock extension is used to block sites that utilize in-browser cryptocurrency mining, while theβ¦
Microsoft January Patch Tuesday Fixes 56 Security Issues, Including a Zero-Day
Earlier today, Microsoft published the January 2018 Patch Tuesday security updates, containing fixes for 56 vulnerabilities and three special security advisories with fixes for Adobe Flash, the Meltdown & Spectre flaws, and a defense-in-depth update for Office applications. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-january-patch-tuesday-fixes-56-security-issues-including-a-zero-day/
Earlier today, Microsoft published the January 2018 Patch Tuesday security updates, containing fixes for 56 vulnerabilities and three special security advisories with fixes for Adobe Flash, the Meltdown & Spectre flaws, and a defense-in-depth update for Office applications. [...]
https://www.bleepingcomputer.com/news/microsoft/microsoft-january-patch-tuesday-fixes-56-security-issues-including-a-zero-day/
BleepingComputer
Microsoft January Patch Tuesday Fixes 56 Security Issues, Including a Zero-Day
Earlier today, Microsoft published the January 2018 Patch Tuesday security updates, containing fixes for 56 vulnerabilities and three special security advisories with fixes for Adobe Flash, the Meltdown & Spectre flaws, and a defense-in-depth update for Officeβ¦
HC7 Planetary Ransomware May Be the First to Accept Ethereum
A new variant of the HC7 Ransomware is in the wild that encrypts a victim's files and appends the .PLANETARY extension to the filename. What makes this particular ransomware variant unique is that it may be the first one that accepts Ethereum as a ransom payment. [...]
https://www.bleepingcomputer.com/news/security/hc7-planetary-ransomware-may-be-the-first-to-accept-ethereum/
A new variant of the HC7 Ransomware is in the wild that encrypts a victim's files and appends the .PLANETARY extension to the filename. What makes this particular ransomware variant unique is that it may be the first one that accepts Ethereum as a ransom payment. [...]
https://www.bleepingcomputer.com/news/security/hc7-planetary-ransomware-may-be-the-first-to-accept-ethereum/
BleepingComputer
HC7 Planetary Ransomware May Be the First to Accept Ethereum
A new variant of the HC7 Ransomware is in the wild that encrypts a victim's files and appends the .PLANETARY extension to the filename. What makes this particular ransomware variant unique is that it may be the first one that accepts Ethereum as a ransomβ¦
Russian Cyber-Spies Are Carrying Out Some Pretty Clever Hacks These Days
Some cyber-espionage outfits are so advanced that it takes months of sleuthing and digging through malware code to discover the ways they've carried out some of their hacks. [...]
https://www.bleepingcomputer.com/news/security/russian-cyber-spies-are-carrying-out-some-pretty-clever-hacks-these-days/
Some cyber-espionage outfits are so advanced that it takes months of sleuthing and digging through malware code to discover the ways they've carried out some of their hacks. [...]
https://www.bleepingcomputer.com/news/security/russian-cyber-spies-are-carrying-out-some-pretty-clever-hacks-these-days/
BleepingComputer
Russian Cyber-Spies Are Carrying Out Some Pretty Clever Hacks These Days
Some cyber-espionage outfits are so advanced that it takes months of sleuthing and digging through malware code to discover the ways they've carried out some of their hacks.
Electrum Bitcoin Wallets Left Exposed to Hacks for Two Years
The administrators of the Electrum Bitcoin wallet app have released a security update that fixes a vulnerability that existed in the software for almost two years. [...]
https://www.bleepingcomputer.com/news/security/electrum-bitcoin-wallets-left-exposed-to-hacks-for-two-years/
The administrators of the Electrum Bitcoin wallet app have released a security update that fixes a vulnerability that existed in the software for almost two years. [...]
https://www.bleepingcomputer.com/news/security/electrum-bitcoin-wallets-left-exposed-to-hacks-for-two-years/
BleepingComputer
Electrum Bitcoin Wallets Left Exposed to Hacks for Two Years
The administrators of the Electrum Bitcoin wallet app have released a security update that fixes a vulnerability that existed in the software for almost two years.
Chinese Man Arrested for Hacking and Demanding Ransom from Travel Agencies
It took Chinese police only four days to arrest a hacker they believe breached the servers of two Hong Kong travel agencies, stole their data, and then asked for a ransom in Bitcoin. [...]
https://www.bleepingcomputer.com/news/security/chinese-man-arrested-for-hacking-and-demanding-ransom-from-travel-agencies/
It took Chinese police only four days to arrest a hacker they believe breached the servers of two Hong Kong travel agencies, stole their data, and then asked for a ransom in Bitcoin. [...]
https://www.bleepingcomputer.com/news/security/chinese-man-arrested-for-hacking-and-demanding-ransom-from-travel-agencies/
BleepingComputer
Chinese Man Arrested for Hacking and Demanding Ransom from Travel Agencies
It took Chinese police only four days to arrest a hacker they believe breached the servers of two Hong Kong travel agencies, stole their data, and then asked for a ransom in Bitcoin.
Meltdown & Spectre Patches Bricking Ubuntu 16.04 Computers
Ubuntu Xenial 16.04 users who updated to receive the Meltdown and Spectre patches are reporting they are unable to boot their systems and have been forced to roll back to an earlier Linux kernel image. [...]
https://www.bleepingcomputer.com/news/software/meltdown-and-spectre-patches-bricking-ubuntu-16-04-computers/
Ubuntu Xenial 16.04 users who updated to receive the Meltdown and Spectre patches are reporting they are unable to boot their systems and have been forced to roll back to an earlier Linux kernel image. [...]
https://www.bleepingcomputer.com/news/software/meltdown-and-spectre-patches-bricking-ubuntu-16-04-computers/
BleepingComputer
Meltdown & Spectre Patches Causing Boot Issues for Ubuntu 16.04 Computers
Ubuntu Xenial 16.04 users who updated to receive the Meltdown and Spectre patches are reporting they are unable to boot their systems and have been forced to roll back to an earlier Linux kernel image.